APPLICATION NUMBER
`09/611,775
`
`PATENT NUMBER
`7013482
`
`GROUP ART UNIT
`2134
`
`FILE WRAPPER LOCATION
`9200
`
`1111111111111111111111m~mmmm1~11,u11,111111111111111111111111
`
`Ul\TfED STATES DEPA RTME'IT OF COMMERCE
`United States Patent and Trademark Office
`Adiliess. COMMISSIO'JER FOR PATENTS
`PO Box 1450
`Alexandria, Virgmia 22313-1450
`\VVi\V.USpto.gov
`
`Correspondence Address/Fee Address Change
`
`The following fields have been set to Customer Number 107299 on 11/06/2012
`• Correspondence Address
`• Maintenance Fee Address
`
`The address of record for Customer Number 107299 is:
`
`107299
`Alan R. Loudermilk
`511 N. Washington Ave
`Marshall, TX 75670
`
`PART 1 - ATTORNEY/APPLICANT COPY
`page 1 of 1
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 1 of 456
`
`

`

`UNITED STATES PATENT AND TRADEMARK OFFICE
`
`UNITED STATES DEPARTMENT OF COMMERCE
`United States Patent and Trademark Office
`Address: COMMISSIONER FOR PA TENTS
`P.O. Box 1450
`Alexandria, Virginia 22313-1450
`www.uspto.gov
`
`APPLICATION NO.
`
`09/611,775
`
`FILING DATE
`
`07/07/2000
`
`FIRST NAMED INVENTOR
`
`ATTORNEY DOCKET NO.
`
`CONFIRMATION NO.
`
`Andrew K. Krumel
`
`802-001
`
`6989
`
`12/29/2005
`7590
`Loudermilk. & Associates
`P.O. Box 3607
`Los Altos, CA 94024-0607
`
`EXAMINER
`
`SIMITOSKl, MICHAEL J
`
`ART UNIT
`
`2134
`
`PAPER NUMBER
`
`DATE MAILED: 12/29/2005
`
`Please find below and/or attached an Office communication concerning this application or proceeding.
`
`PTO-90C (Rev. 10/03)
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 2 of 456
`
`

`

`UNITED STATES DEPARTMENT OF COMMERCE
`U.S. Patent and Trademark Office
`Mdress: COMMISSIONER FOR PATENTS
`P.O. Box 1450
`Alexandria, Virginia 22313-1450
`
`APPLICATION NO./
`CONTROL NO.
`
`FILING DATE
`
`FIRST NAMED INVENTOR/
`PATENT IN REEXAMINATION
`
`ATTORNEY DOCKET NO.
`
`EXAMINER
`
`ART UNIT
`
`I PAPER
`
`12192005
`
`DATE MAILED:
`
`Please find below and/or attached an Office communication concerning this application or
`proceeding.
`
`The information disclosure statement (IDS) submitted on 12/05/2005 was filed after the mailing date of the Notice of Allowance on
`9/27/2005. The submission is in compliance with the provisions of 37 CFR 1.97. Accordingly, the information disclosure statement
`is being considered by the examiner. The drawings submitted 12/5/2005 are acceptable and overcome any previous objections. The
`amendments to the claims however, is not considered because the amendments constitute a change in the scope of the claims. For
`instance, regarding claims 1 & 31, "by the time the end portion of the packet is received" is considered to be substantially equivalent
`to "at the instant the end portion becomes fully received". However, "by a time when the end portion of the packet is received" can be
`any time after. Regarding claims 20, 37, 41 & 50, the amendatory language would require further search and consideration.
`
`Commissioner for Patents
`
`,-
`
`. -..r~ .
`
`/v~·7(a(
`
`PTO-90C (Rev.04-03)
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 3 of 456
`
`

`

`'
`
`.
`.
`
`,~ E
`0
`
`'1..o,
`
`11\t, I \¢ ll
`
`I
`\~
`.#/
`~&~~ U.S. DEPARTMENT OF COMMERCE Attorney's Docket Number
`Form PTO-1449
`(REV. 7-92)
`Patent and Trademark Office
`INFORMATION DISCLOSURE STATEMENT
`BY APPLICANT
`(Use several sheets if necessary)
`
`Sheet_l_of -1.
`
`Serial No.
`
`09/611,775
`
`802-001
`
`Applicant(s): Krumel
`
`I,
`
`Filing Date: 7n/00
`
`Group Art Unit: 2134
`
`DOCUMt:NTNUMBER
`
`U.S. PATENT DOCUMENTS
`DATE
`
`NAME
`
`CLASS
`
`SUBCLASS
`
`6
`
`7
`
`0
`
`0
`
`8·
`
`9
`
`1
`
`03/02/04 Wong
`
`370
`
`401
`
`'EXAMINER
`INITIAL
`
`I/IIJ1f
`,
`
`nLINCDATEIP
`APPROPRIATE
`
`-----
`
`EXAMINER
`
`A,""1 . .,,
`
`;,,,,,'1
`
`'AT
`
`L
`
`~
`
`I DATECONSIDERED 1.i./tl'fa1
`
`'l!XAMINER:
`
`lnldal If dlalloo coodclend, •l1111her ar not dlaUoa t, la coafarmam:e wllll MPEP §'°'•Draw lblo throup dWlllD If not la c:oal'onlWI .. and not COll.lldend. ladude aipy orlhl, form ..tlb
`DUI commlllllcatlOD IO ljlpllaat.
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 4 of 456
`
`

`

`Serial No.: 09/611,775
`
`Filed: July 7, 2000
`
`Examiner: Simitoski, Michael J.
`
`Attorney Docket No.: 802-001
`THE UNITED STATES PATENT AND TRADEMARK OFFICE
`Krumel
`)
`)
`)
`)
`)
`)
`) Group Art Unit: 2134
`)
`)
`)
`
`For: Real Time Firewall/Data Protection
`Systems and Methods
`
`Mail Stop Issue Fee
`Commissioner for Patents
`P.O. Box 1450
`Alexandria, VA 22313-1450
`
`AMENDMENT PURSUANT TO RULE 312
`
`Sir or Madam:
`
`In response to the notice of allowance mailed September 27, 2005, please re(cid:173)
`
`examine the above-identified application in view of the following amendment and remarks.
`
`The issue fee transmittal, substitute formal drawings and an IDS accompany this
`
`submission.
`
`IN THE TITLE:
`
`Please change the title to:
`
`--METHODS FOR PACKET FILTERING INCLUDING PACKET INVALIDATION IF
`
`PACKET VALIDITY DETERMINATION NOT TIMELY MADE--
`
`1
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 5 of 456
`
`

`

`UNITED STATES PATENT AND TRADEMARK OFFICE
`
`EPARTMENT OF COMMERCE
`ate t and Trademark Office
`NER FOR PATENTS
`
`APPLICATION NO.
`
`FILING DATE
`
`FIRST NAMED INVENTOR
`
`ATTORNEY DOCKET NO.
`
`CONFIRMATION NO,
`
`09/611,775
`
`07/07/2000
`
`Andrew K. Krumel
`
`802-001
`
`6989
`
`12/09/2005
`7590
`Loudermilk & Associates
`P.O. Box 3607
`Los Altos, CA 94024-0607
`
`EXAMINER
`
`SIMITOSKI, MICHAEL J
`
`ART UNIT
`
`2134
`
`PAPER NUMBER
`
`DATE MAILED: 12/09/2005
`
`Please find below and/or attached an Office communication concerning this application or proceeding.
`
`PTO-90C (Rev. 10/03)
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 6 of 456
`
`

`

`Supplemental
`Notice of Allowability
`
`Application No.
`
`Applicant(s)
`
`09/611,775
`Examiner
`
`KRUMEL, ANDREW K.
`Art Unit
`
`Michael J. Simitoski
`
`2134
`
`- The MAILING DA TE of this communication appears on the cover sheet with the correspondence address(cid:173)
`All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included
`herewith (or previously mailed), a Notice of Allowance (PTOL-85) or other appropriate communication will be mailed in due course. THIS
`NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative
`of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308.
`1. 181 This communication is responsive to RCE of 7128/2005.
`2. 181 The allowed claim(s) is/are 1-66.
`3. D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f).
`a) D All
`b) D Some* c) D None of the:
`1. D Certified copies of the priority documents have been received.
`2. D Certified copies of the priority documents have been received in Application No. __ .
`3. D Copies of the certified copies of the priority documents have been received in this national stage application from the
`International Bureau (PCT Rule 17.2(a)).
`* Certified copies not received: __ .
`
`Applicant has THREE MONTHS FROM THE "MAILING DATE" of this communication to file a reply complying with the requirements
`noted below. Failure to timely comply will result in ABANDONMENT of this application.
`THIS THREE-MONTH PERIOD IS NOT EXTENDABLE.
`4. 0 A SUBSTITUTE OATH OR DECLARATION must be submitted. Note the attached EXAMINER'S AMENDMENT or NOTICE OF
`INFORMAL PATENT APPLICATION (PTO-152) which gives reason(s) why the oath or declaration is deficient.
`5. D CORRECTED DRAWINGS ( as "replacement sheets") must be submitted.
`(a) D including changes required by the Notice of Draftsperson's Patent Drawing Review ( PT0-948) attached
`1) D hereto or 2) D to Paper No./Mail Date __ .
`(b) D including changes required by the attached Examiner's Amendment/ Comment or in the Office action of
`Paper No./Mail Date __ .
`Identifying indicia such as the application number (see 37 CFR 1.84(c)) should be written on the drawings in the front (not the back) of
`each sheet. Replacement sheet(s) should be labeled as such in the header according to 37 CFR 1.121(d).
`
`6. (cid:143) DEPOSIT OF and/or INFORMATION about the deposit of BIOLOGICAL MATERIAL must be submitted. Note the
`
`attached Examiner's comment regarding REQUIREMENT FOR THE DEPOSIT OF BIOLOGICAL MATERIAL.
`
`Attachment(s)
`1. D Notice of References Cited (PTO-892)
`2. D Notice of Draftperson's Patent Drawing Review (PT0-948)
`3. D Information Disclosure Statements (PTO-1449 or PTO/SB/08),
`Paper No./Mail Date __
`4. D Examiner's Comment Regarding Requirement for Deposit
`of Biological Material
`
`5. D Notice of Informal Patent Application (PTO-152)
`6. D Interview Summary (PT0-413),
`Paper No./Mail Date __ .
`7.181 Examiner's AmendmenUComment ·
`8. D Examiner's Statement of Reasons for Allowance
`9. D Other __ .
`
`U.S. Patent and·Trademark Office
`PTOL-37 (Rev. 7-05)
`
`Notice of Allowabillty
`
`Part of Paper No./Mail Date 11302005
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 7 of 456
`
`

`

`Application/Control Number: 09/611,775
`Art Unit: 2134
`
`Page2
`
`SUPPLEMENTAL EXAMINER'S AMENDMENT
`
`The IDS and response of 7/28/2005 was received and considered.
`
`Claims 1-66 are allowed, a Notice of Allowance was mailed 9/27/2005.
`
`An examiner's informal supplemental amendment to the record appears below. Should
`
`1.
`
`2.
`
`3.
`
`the changes and/or additions be unacceptable to applicant, an amendment may be filed as
`
`provided by 3 7 CFR 1.312. To ensure consideration of such an amendment, it MUST be
`
`submitted no later than the payment of the issue fee.
`
`The application has been amended as follows:
`
`In claim 16: Please replace "The method of claim 16" (in line 1 of the claim) to "The
`
`method of claim 15".
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 8 of 456
`
`

`

`Application/Control Number: 09/611,775
`Art Unit: 2134
`
`Page 3
`
`Conclusion
`
`4.
`
`Any inquiry concerning this communication or earlier communications from the
`
`examiner should be directed to Michael J. Simitoski whose telephone number is (571) 272-3841.
`
`The examiner can normally be reached on Monday-Thursday, 6:45 a.m. - 4:15 p.m .. The
`
`examiner can also be reached on alternate Fridays from 6:45 a.m. - 3:15 p.m.
`
`If attempts to reach the examiner by telephone are unsuccessful, the examiner's
`
`supervisor, Gregory Morse can be reached at (571) 272-3838.
`
`Any response to this action should be mailed to:
`Commissioner for Patents
`P.O. Box 1450
`Alexandria, VA 22313-1450
`Or faxed to:
`(571) 273-8300
`(for formal communications intended for entry)
`
`Or:
`
`(571) 273-3841 (Examiner's fax, for informal or draft communications, please
`label "PROPOSED" or "DRAFT")
`
`Any inquiry of a general nature or relating to the status of this application or proceeding should
`be directed to the receptionist whose telephone number is (571) 272-2100.
`
`Information regarding the status of an application may be obtained from the Patent
`
`Application Information Retrieval (PAIR) system. Status information for published applications
`
`may be obtained from either Private PAIR or Public PAIR. Status information for unpublished
`
`applications is available through Private PAIR only. For more information about the PAIR
`
`system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR
`
`system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free).
`
`:!f/
`
`November 28, 2005
`
`~ \ 1
`
`~, '
`
`••• ,.
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 9 of 456
`
`

`

`Serial No.: 09/611,775
`
`Filed: July 7, 2000
`
`Examiner: Simitoski, Michael J.
`
`Attorney Docket No.: 802-001
`THE UNITED STATES PATENT AND TRADEMARK OFFICE
`Krumel
`)
`)
`)
`)
`)
`)
`)
`)
`)
`)
`
`For: Real Time Firewall/Data Protection
`Systems and Methods
`
`Group Art Unit: 2134
`
`Mail Stop Issue Fee
`Commissioner for Patents
`P.O. Box 1450
`Alexandria, VA 22313-1450
`
`AMENDMENT PURSUANT TO RULE 312
`
`Sir or Madam:
`
`In response to the notice of allowance mailed September 27, 2005, please re(cid:173)
`
`examine the above-identified application in view of the following amendment and remarks.
`
`The issue fee transmittal, substitute formal drawings and an IDS accompany this
`
`submission.
`
`IN THE TITLE:
`
`Please change the title to:
`
`--METHODS FOR PACKET FILTERING INCLUDING PACKET INVALIDATION IF
`
`PACKET VALIDITY DETERMINATION NOT TIMELY MADE--
`
`1
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 10 of 456
`
`

`

`IN THE CLAIMS:
`
`1. ( currently amended) A method for communicating data between an external
`
`computing system and an internal computing system over a packet-based network,
`
`wherein data is transmitted and received in the form of a plurality of packets, the method
`
`comprising the steps of:
`
`receiving a packet from the external computing system over the network, the
`
`packet having at least a first portion and an end portion, and transmitting the packet to the
`
`internal computing system;
`
`in parallel with the step of receiving and transmitting the packet, determining
`
`characteristics of the packet from the first portion;
`
`in parallel with the step of receiving and transmitting the packet, performing a
`
`plurality of checks on the packet, wherein at least certain of the plurality of checks are
`
`performing performed in parallel with other of the plurality of checks;
`
`in parallel with the step of receiving and transmitting the packet, determining if the
`
`packet should be a valid packet or an invalid packet based on the plurality of checks; and
`
`after receiving the end portion of the packet, selectively altering the end portion of
`
`the packet based on whether the packet has been determined to be a valid packet or an
`
`invalid packet, wherein the packet is selectively altered·to be invalid ifit was determined
`
`that the packet should be an invalid packet, wherein the packet is selectively altered to be
`
`invalid if a determination has not been made as to whether the packet is valid or invalid by
`
`the ~ time when the end portion of the packet is received.
`
`2. (original) The method of claim 1, wherein the packet is analyzed in real time to
`
`determine if the packet should be valid or invalid while the packet is being concurrently
`
`transmitted to the internal computing system.
`
`3. ( original) The method of claim 1, wherein the packet is analyzed to determine
`
`if the packet is valid without the packet having been completely received and buffered.
`
`4. ( original) The method of claim 1, wherein the packet is determined to be an
`
`invalid packet if it is determined that the packet contains a virus, is unauthorized or
`
`presents a risk of harm to the internal computing system.
`
`2
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 11 of 456
`
`

`

`5. ( original) The method of claim 1, wherein the plurality of checks are at least in
`
`part selectively ·performed based on a state of a physical switch.
`
`6. (original) The method of claim 5, wherein the physical switch comprises one or
`
`more user-controlled switches, wherein the plurality of checks are selectively performed
`
`based on a user-defined state of the one or more user-controlled switches.
`
`7. (original) The method of claim 6, wherein the one or more user-controlled
`
`switches comprise at least one user-controlled switch that controls a configuration or
`
`reconfiguration of a circuit that performs the plurality of checks.
`
`8. ( original) The method of claim 7, wherein the configuration or reconfiguration
`
`of the circuit that performs the plurality of checks is performed without requiring user
`
`entry of configuration commands via software running on the internal computing system.
`
`9. ( original) The method of claim 7, wherein the circuit that performs the plurality
`
`of checks is configured or reconfigured based on commands from the internal computing
`
`system and based on a state of the at least one user-controlled switch.
`
`10. (original) The method of claim 5, wherein at least a subset ofthe plurality of
`
`checks are selectively enabled or disabled based on the user-defined state of the user-·
`
`controlled switches.
`
`11. ( original) The method of claim 1, wherein the plurality of checks are
`
`performed with a programmable logic device, wherein logic within the programmable
`
`logic device is selectively programmed to perform the plurality of checks in parallel with
`
`the receiving and transmitting of the packet.
`
`12. ( original) The method of claim 11, wherein a first physical interface circuit
`
`receives the packet from the network, wherein the packet is coupled to the programmable
`
`logic device, wherein the packet is coupled from the programmable logic device to a
`
`second physical interface circuit for transmission to the internal computing system.
`
`13. ( original) The m~thod of claim 12, wherein the programmable logic device
`
`performs the plurality of checks while the packet is being coupled from the first physical
`
`interface to the second physical interface.
`
`3
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 12 of 456
`
`

`

`14. ( original) The method of claim 1, wherein the plurality of checks are
`
`selectively performed based on a communication state between the external computing .
`
`system and the internal computing system.
`
`15. ( original) The method of claim 14, wherein the communication state
`
`comprises one or more network addresses and/or one ·or more port numbers.
`16. ( currently amended) · The method of claim M 12., wherein the one or more
`
`network address addresses eomprises comprise an IP address for the external computing
`
`system and/or the internal computing system.
`
`17. (original) The method of claim 1, further comprising the step of providing
`
`visual or audio feedback with one or more visual or audio feedback devices, wherein the
`
`one or more visual or audio feedback devices selectively provide visual or audio feedback
`
`of the operation or status of a packet filter process.
`
`18. ( original) The method of claim 1 7, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback that a system performing the packet
`
`filter process is powered or operational.
`
`19. ( original) The method of claim 18, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback that the system performing the packet
`
`filter process is subjecting a packet to filtering criteria.
`
`20. ( currently amended) The method of claim 18, wherein the one or more visual
`
`or audio feedback devices provide visual or audio feedback that the system performing the
`
`packet filter process has rejeeted invalidated one or more packets.
`
`21. ( original) The method of claim 1 7, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback that the internal computing system is
`
`suspected to be under attack.
`
`\'
`
`22. (original) The method of claim 21, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback of an estimated severity of the attack.
`
`23. ( original) The method of claim 18, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback of a state of the system performing the
`
`packet filter process until the one or more visual or audio feedback devices are reset by a
`
`user.
`
`4
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 13 of 456
`
`

`

`24. (currently amended) The method of claim 23, wherein the one or more visual
`
`or audio feedback devices are reset by the ~ state of a physical switch.
`
`25. ( currently amended) The method of claim 18, wherein the one or more visual
`
`or audio feedback devices comprise at least one light source, wherein the light source is
`
`selectively controlled to provide information indicative of the an operation or status of tbe
`
`system performing the packet filter process.
`
`26. ( original) The method of claim 25, wherein the light source is controlled to .
`
`have a first color or a second color depending on the operation or status of the system
`
`performing the packet filter process.
`
`27. (original) The method of claim 25, wherein the light source is controlled to
`
`selectively blink depending on the operation or status of the system performing the packet
`
`filter process.
`
`28. ( original) The method of claim 27, wherein the light source is controlled to
`
`selectively blink at a rate that is indicative of a severity level of a suspected attack on the
`
`internal computing system.
`
`29. ( original) The method of claim 25, wherein the at least one light source
`
`comprises an LED.
`
`30. (original) The method of claim 17, wherein the one or more visual or audio
`
`feedback devices comprise a speaker.
`
`31. ( currently amended) A system for filtering packets of data between at least an
`
`external network and an internal network, wherein data is transmitted and received in the
`
`form of a plurality of packets, comprising:
`
`a first interface circuit for coupling data packets to and from the external network;
`
`a second interface circuit for coupling data packets to and from the internal
`
`network;
`
`a programmable logic device coupled between the first interface circuit and the
`
`second interface circuit;
`
`wherein, as a packet is being received and transmitted between the first and second
`
`interface circuits, the packet is simultaneously subjected to a plurality of filtering criteria
`
`by the programmable logic device, wherein an end portion of the packet is selectively
`
`5
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 14 of 456
`
`

`

`altered by the programmable logic device based on the filtering criteria, wherein the packet
`
`is selectively altered to be invalid if a determination has not been made as to whether the
`
`packet is valid or invalid by the~ time when the end portion of the packet is received.
`
`32. (original) The system of claim 31, wherein the filtering criteria determine
`
`whether the packet is to be a valid packet or an invalid packet, wherein the packet is
`
`selectively altered to be invalid if it was determined that the packet should be an invalid
`
`packet.
`
`3 3. ( currently amended) The system of claim 31, wherein the programmable logic
`
`circuit includes at least first ~ logic portion for determining characteristics of the packet
`
`being received and transmitted between the first and second interface circuits and at least a
`
`filter portion that subjects the packet to the plurality of filtering criteria while the packet is
`
`being received and transmitted between the first and second interface circuits.
`
`34. ( original) The system of claim 33, wherein the filter portion includes at least a
`
`stateful filter portion and a non-stateful filter portion.
`
`35. (original) The system of claim 34, wherein the stateful filter portion subjects
`
`the packet to one or more stateful filtering criterion and the·non-stateful filter portion
`
`subjects the packet to one or more non-stateful filtering criterion.
`
`36. ( original) The system of claim 34; wherein the stateful filter portion subjects
`
`the packet to one or more stateful filtering criteripn while the non-stateful filter portion
`
`subjects the packet to one or more non-stateful filtering criterion.
`
`J
`
`37. (currently amended) The system of claim 34, wherein a result aggregator
`
`logic receives one or more signal~ from the stateful filter portion and one or more signals
`
`. from the non-stateful filter portion, wherein based on the received signals the result
`
`aggregator logic controls whether the packet is selectively altered to be invalid.
`
`3 8. ( original) The system of claim 3 7, wherein the result aggregator logic
`
`receives a completion signal that indicates whether the stateful and/or non-stateful filter
`
`portions have subjected the packet to all of the filtering criteria.
`
`3 9. ( currently amended) The system of claim 3 8, wherein, if the completion
`
`signal is not received by the result aggregator logic by a the time when the end portion of
`
`6
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 15 of 456
`
`

`

`the packet has beea ~ received, then the packet is selectively altered by the programmable
`
`logic device to be invalid.
`
`40. (currently amended) The system of claim 31, wherein the packet is subjected
`
`to the plurality of filtering criteria in parallel with the packet being received and
`
`transmitted between the first and second interface circuits, wherein a decision is made
`
`whether to selectively alter the packet to be invalid by-a before the time when the end
`
`portion of the packet has beea ~ received.
`
`41. (currently amended) The system of claim 31, wherein the packet is subjected
`
`to the plurality of filtering criteria in real time with while the packet being received and
`
`transmitted between the first and second interface circuits.
`
`42. (original) The system of claim 31, further comprising one or more physical
`
`switches, wherein the packet is selectively subjected to the filtering criteria based on the
`
`I
`
`.
`
`state of the one or more physical switches.
`
`43. (original) The system of claim 42, wherein the state of the one or more
`
`-physical switches selectively enable or disable a predetermined portion of ~he filtering
`
`criteria.
`
`44. (previously amended) The system of claim 42, wherein the state of the one or
`
`more physical switches selectively enable or disable a predetermined portion of the
`
`filtering criteria based on whether a computer coupled to the internal network is controlled
`
`to operate in a client mode or a server mode.
`
`4 5. ( original) The system of claim 4 2, wherein the state of the one or more
`
`physical switches selectively controls a configuration or reconfiguration operation of the
`
`programmable logic device.
`
`46. ( original) The system of claim 4 2, wherein the state of the one or more
`
`physical switches selectively controls a reset operation of the programmable logic device.
`
`4 7. ( original) The system of claim 31, further comprising one or more visual or
`
`audio feedback devices, wherein the one or more visual or audio feedback devices
`
`selectively provide visual or audio feedback of the operation or status of the system.
`
`7
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 16 of 456
`
`

`

`48. (original) The system of claim 47, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback that the system is powered or
`
`operational.
`
`49. (original) The system of claim 47, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback that the system is subjecting a packet to
`
`the filtering criteria.
`
`50. (currently amended) The system of claim 47, wherein the one or more visual
`
`or audio feedback devices provide visual or audio feedback that the system has rejected
`
`invalidated one or more packets.
`
`51. ( original) The system of claim 4 7, wherein the one or more visual or audio
`
`feedback devices-provide visual or audio feedback that a computer coupled to the internal
`
`network is suspected to be under attack.
`
`52. (original) The system of claim 51, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback of an estimated severity of the attack.
`
`53. (original) The system of claim 47, wherein the one or more visual or audio
`
`feedback devices provide visual or audio feedback of a state of the system until the one or
`
`more visual or audio feedback devices are reset by a user.
`
`54. (currently amended) The system of claim 53, wherein the one or more visual
`
`or audio feedback devices are reset by the fl state of a physical switch.
`
`5 5. ( currently amended) The system of claim 4 7, wherein the one or more visual
`
`or audio feedback devices comprise at least one light source, wherein the light source is
`
`selectively controlled to provide information indicative of $e an operation or status of the
`
`system.
`
`56. ( original) The system of claim 55, wherein the light source is controlled to
`
`have a first color or a second color depending on the operation or status of the system.
`
`57. ( original) The system of claim 55, wherein the light source is controlled to
`
`selectively blink depending on the operation or status of the system.
`
`·58. (original) The system of claim 57, wherein the light source is controlled to
`
`selectively blink at a rate that is indicative of a severity level of a suspected attack on a
`
`computer coupled to the internal network.
`
`8
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 17 of 456
`
`

`

`59. (original) The system of claim 55, wherein the at least one light source
`
`comprises an LED.
`
`60. ( original) The system of claim 4 7, wherein the one or more visual or audio
`
`feedback devices comprise a speaker.
`
`61. ( currently amended) The system of claim 3 6, wherein the one or more stateful
`
`filtering eriteria criterion are dependent upon physical switch position, packet
`
`characteristics, clock time and/or user-specified criteria.
`
`62. ( original) The system of claim 61, wherein the user-specified criteria are
`
`entered via a physical input device.
`
`63. ( original) The system of claim 62, wherein the physical input device
`
`comprises one or more switches, an audio input device, or display input device.
`
`64. ( original) The system of claim 61, wherein the user specified criteria are
`
`entered via a configuration software.
`
`65. ( original) The system of claim 64, wherein the user _specified criteria are
`
`transferred from the configuration software to the system using a network protocol,
`
`infrared port or cable attachment.
`
`66. (original) The system of claim 63, wherein the one or more switches comprise a
`
`toggle switch, button switch or multi-state switch.
`
`9
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 18 of 456
`
`

`

`REMARKS
`
`Claims 1-66 are in the application and have been allowed. Herein Applicant is
`
`correcting certain typographical errors, informalities, etc., that were noted during a final
`
`review of the claims. Applicant also reviewed the drawings based on the originally-filed
`
`informal drawings and is herewith submitting substitute formal drawings.
`
`No new matter has been added.
`
`Applicant also is submitting an additional prior art reference cited in one of the
`
`related applications (09/745,599) (these applications were referenced in a previous
`
`amendment). The cited reference, however, among other distinctions, does not disclose or
`
`suggest the packet being selectively altered to be invalid if a determination has not been
`
`made as to whether the packet is valid or invalid by a time when the end portion of the
`
`packet is received. Thus, the presently pending claims remain allowable, and
`
`consideration of the IDS is respectfully requested.
`
`Entry of this amendment is requested ..
`
`If there are any questions regarding the foregoing, Applicant's attorney requests an
`
`opportunity to discuss such matters with the Examiner by way of another interview, either
`
`in-person or by telephone.
`
`Please charge any additional fees due, or credit any overpayment, to Deposit
`
`Account No. 50-0251. No new matter has been added.
`
`Respectfully submitted,
`
`~
`
`Alan R. Loudermilk
`Registration No. 32,788
`Attorney for Applicant( s)
`
`December 2, 2005
`Loudermilk & Associates
`P.O. Box 3607
`Los Altos, CA 94024-0607
`408-868-1516
`I hereby certify that the foregoing is being deposited with the U.S. Postal Service, postage prepaid, to Mail
`Stop Issue Fee, Commissioner for Patents, P.O. Box 1450, Al xand · V 22313-1450, on the date
`indicated above.
`
`10
`
`Ex.1002
`CISCO SYSTEMS, INC. / Page 19 of 456
`
`

`

`- PART B - FEE(S) TRANSMIT.TAL -
`
`send this form, together with applicable fee(s), to: M!ill Mail Stop ISSUE FEE
`Commissioner for Patents
`P.O. Box 1450
`Alexandria, Virginia 22313-1450
`(571) 273-2885
`or Fax
`· This form should be. used _for transmitting the ISSUE FEE and _PUB!,-ICATIO!'J FEE (if requi~ed). Blo<iks I through 5 should be completed where
`her correspondence mcludmg the Patent advance orders and notification of maintenance fees will be mailed to the current correspondence address as
`corrected below or directed otherwise in Block I, by (a) specifying a new correspondence address; and/or (b) indicating a separate "FEE ADDRESS" for
`fee notifications.
`CURRENT CORRESPONDENCE ADDRESS (Note: Use Block I for any change of address)
`
`NSTRUCTIO
`!Pl.'ropriate
`'fl!
`·
`
`7590
`Loudermilk & Associates
`P.O. Box 3607
`Los Altos, CA 94024-0607
`
`09/27/2005
`
`12/06/2005 WABDELR3 00000082 500251
`700.00 DA
`01 FC:2501
`FILING DATE
`APPLICATION NO.
`
`09/611,775
`
`07/07/2000
`
`09611775
`
`Note: A certificate of mailing can only be used for domestic mailings of the
`Fee(s) Transmittal. This certificate cannot be used for any other accompanying
`papers. Each additional paper, such as an assignment or formal drawing, must
`have its own certificate of mailing or transmission.
`
`Certificate of Mailing or Transmission
`I hereby certify that this Fee(s) Transmittal is being deposited with the United
`States Postal Service with sufficient postage for first class mail in an enveloP.e
`addressed to the Mail Stop ISSUE FEE address above, or being facsimile
`transmitted to the USP