-
公开(公告)号:US07944854B2
公开(公告)日:2011-05-17
申请号:US11969457
申请日:2008-01-04
IPC分类号: H04L12/28
CPC分类号: H04L45/302 , H04L41/0803 , H04L45/00 , H04L45/02 , H04L63/164
摘要: A method for IP Security within Multi-Topology Routing is disclosed. Disclosed methods may also include IKE extensions. A route eligible for IPSec protection is injected into a topology routing table. Network traffic can then be protected in accordance with a security session, such as an IPSec session, between a first network node and a second network node and forwarded through a selected topology to take advantage of the service-differentiation capabilities of MTR.
摘要翻译: 披露了多拓扑路由中IP安全的方法。 公开的方法还可以包括IKE扩展。 符合IPSec保护条件的路由注入到拓扑路由表中。 然后可以根据第一网络节点和第二网络节点之间的安全会话(例如IPSec会话)来保护网络流量,并通过选定的拓扑转发,以利用MTR的服务区分能力。
-
公开(公告)号:US20100085977A1
公开(公告)日:2010-04-08
申请号:US12246432
申请日:2008-10-06
IPC分类号: H04L12/56
CPC分类号: H04L12/4641 , H04L29/12358 , H04L61/251
摘要: Method and apparatus including registering a first spoke router with a hub router, forwarding an Internet Protocol version Four (IPv4) data packet from the first spoke router to a second spoke router over an Internet Protocol version Six (IPv6) multipoint tunnel via the hub router, transmitting a binding information associated with the first spoke router from the hub router to the second spoke router, and establishing a direct communication path by the second spoke router with the first spoke router based on the received binding information are provided.
摘要翻译: 一种方法和装置,包括:将第一辐条路由器与集线器路由器进行注册;经由集线器路由器通过互联网协议版本六(IPv6)多点隧道将互联网协议版本四(IPv4)数据分组从第一分支路由器转发到第二分支路由器 向所述第二分支路由器发送与所述第一分支路由器相关联的绑定信息,以及基于所接收的绑定信息,利用所述第二分支路由器与所述第一分支路由器建立直接通信路径。
-
3.发明授权公开(公告)号:US07869446B2
公开(公告)日:2011-01-11
申请号:US12246432
申请日:2008-10-06
IPC分类号: H04L12/28
CPC分类号: H04L12/4641 , H04L29/12358 , H04L61/251
摘要: Method and apparatus including registering a first spoke router with a hub router, forwarding an Internet Protocol version Four (IPv4) data packet from the first spoke router to a second spoke router over an Internet Protocol version Six (IPv6) multipoint tunnel via the hub router, transmitting a binding information associated with the first spoke router from the hub router to the second spoke router, and establishing a direct communication path by the second spoke router with the first spoke router based on the received binding information are provided.
摘要翻译: 一种方法和装置,包括:将第一辐条路由器与集线器路由器进行注册;经由集线器路由器通过互联网协议版本六(IPv6)多点隧道将互联网协议版本四(IPv4)数据分组从第一分支路由器转发到第二分支路由器 向所述第二分支路由器发送与所述第一分支路由器相关联的绑定信息,以及基于所接收的绑定信息,利用所述第二分支路由器与所述第一分支路由器建立直接通信路径。
-
公开(公告)号:US20090175194A1
公开(公告)日:2009-07-09
申请号:US11969457
申请日:2008-01-04
IPC分类号: H04L12/28
CPC分类号: H04L45/302 , H04L41/0803 , H04L45/00 , H04L45/02 , H04L63/164
摘要: A method for IP Security within Multi-Topology Routing is disclosed. Disclosed methods may also include IKE extensions. A route eligible for IPSec protection is injected into a topology routing table. Network traffic can then be protected in accordance with a security session, such as an IPSec session, between a first network node and a second network node and forwarded through a selected topology to take advantage of the service-differentiation capabilities of MTR.
摘要翻译: 披露了多拓扑路由中IP安全的方法。 公开的方法还可以包括IKE扩展。 符合IPSec保护条件的路由注入到拓扑路由表中。 然后可以根据第一网络节点和第二网络节点之间的安全会话(例如IPSec会话)来保护网络流量,并通过选定的拓扑转发,以利用MTR的服务区分能力。
-
5.发明授权公开(公告)号:US08503453B2
公开(公告)日:2013-08-06
申请号:US11601948
申请日:2006-11-20
申请人: Rajiv Asati , Mohamed Khalid , Aamer Akhter , Pratima Sethi
发明人: Rajiv Asati , Mohamed Khalid , Aamer Akhter , Pratima Sethi
IPC分类号: H04L12/26
CPC分类号: H04L41/5006 , H04L12/4641 , H04L41/0893 , H04L41/5003 , H04L47/10 , H04L47/20
摘要: In one embodiment, a QoS manager process that receives, at an EzVPN server device, connection speed data from an EzVPN client device. In addition, the QoS manager process processes, at the EzVPN server device, the connection speed data to determine a QoS policy for a communications session between the EzVPN client device and the EzVPN server device. Furthermore, the QoS manager process applies, at the EzVPN server device, the QoS policy to the communications session between the EzVPN client device and the EzVPN server device as determined by the processing of the connection speed data.
摘要翻译: 在一个实施例中,在EzVPN服务器设备处接收来自EzVPN客户端设备的连接速度数据的QoS管理器进程。 另外,QoS管理器处理在EzVPN服务器设备处理连接速度数据,以确定EzVPN客户端设备和EzVPN服务器设备之间的通信会话的QoS策略。 此外,QoS管理器进程在EzVPN服务器设备处将QoS策略应用于由连接速度数据的处理确定的EzVPN客户端设备和EzVPN服务器设备之间的通信会话。
-
公开(公告)号:US08515079B1
公开(公告)日:2013-08-20
申请号:US11627637
申请日:2007-01-26
申请人: Rajiv Asati , Mohamed Khalid , Aamer Akhter , Brian Weis , Shashi Sastry
发明人: Rajiv Asati , Mohamed Khalid , Aamer Akhter , Brian Weis , Shashi Sastry
IPC分类号: H04L29/06
CPC分类号: H04L63/062 , H04L63/0272
摘要: In one embodiment, a rekey distribution process transmits, from a key server, a multicast probe message intended to be received by at least one group member device. The rekey distribution process also receives, at the key server, an acknowledgement message from each group member device that received the multicast probe message. In turn, the rekey distribution process transmits, from the key server, a multicast rekey data message intended to be received by each group member device from which the key server received an acknowledgment message. Furthermore, the rekey distribution process transmits, from the key server, a unicast rekey data message to each group member device from which the key server did not receive an acknowledgment message.
摘要翻译: 在一个实施例中,密钥分发处理从密钥服务器发送旨在被至少一个组成员设备接收的多播探测消息。 密钥分发过程还在密钥服务器处接收到来自接收到多播探测消息的每个组成员设备的确认消息。 依次,密钥分发处理从密钥服务器发送打算由密钥服务器从其收到确认消息的每个组成员设备接收的多播重新密钥数据消息。 此外,密钥分发处理从密钥服务器向单个密钥服务器未接收到确认消息的每个组成员设备发送单播重新密钥数据消息。
-
7.发明授权Methods and systems for dynamically updating a routing table in a virtual private network 有权用于在虚拟专用网络中动态更新路由表的方法和系统公开(公告)号:US07987506B1
公开(公告)日:2011-07-26
申请号:US11592505
申请日:2006-11-03
申请人: Mohamed Khalid , Rajiv Asati , Shashidhar P. Patil , Aamer Akhter
发明人: Mohamed Khalid , Rajiv Asati , Shashidhar P. Patil , Aamer Akhter
IPC分类号: G06F15/16
CPC分类号: H04L63/0272 , H04L12/4633 , H04L12/4641 , H04L45/02
摘要: A method, system, and computer program product for dynamically updating a routing table in a virtual private network including a concentrator with a routing table and one or more security associations is provided. A change is identified in the virtual private network, and related network information is also identified. A notification update message is created, including (i) a type of change to be made to the routing table based on to the identified change and (ii) the related network information. The notification update message is sent to the concentrator, which updates the routing table according to the notification update message. During the updating of the routing table of the concentrator, current security associations of the virtual private network tunnel are maintained.
摘要翻译: 提供了一种用于动态地更新包括具有路由表和一个或多个安全关联的集中器的虚拟专用网中的路由表的方法,系统和计算机程序产品。 在虚拟专用网中识别出变化,并且还识别相关的网络信息。 创建通知更新消息,包括(i)基于所识别的改变对路由表进行的改变的类型和(ii)相关的网络信息。 通知更新消息被发送到集中器,其根据通知更新消息来更新路由表。 在更新集中器的路由表期间,维护虚拟专用网隧道的当前安全关联。
-
8.发明申请公开(公告)号:US20080117821A1
公开(公告)日:2008-05-22
申请号:US11601948
申请日:2006-11-20
申请人: Rajiv Asati , Mohamed Khalid , Aamer Akhter , Pratima Sethi
发明人: Rajiv Asati , Mohamed Khalid , Aamer Akhter , Pratima Sethi
IPC分类号: H04L12/26
CPC分类号: H04L41/5006 , H04L12/4641 , H04L41/0893 , H04L41/5003 , H04L47/10 , H04L47/20
摘要: In one embodiment, a QoS manager process that receives, at an EzVPN server device, connection speed data from an EzVPN client device. In addition, the QoS manager process processes, at the EzVPN server device, the connection speed data to determine a QoS policy for a communications session between the EzVPN client device and the EzVPN server device. Furthermore, the QoS manager process applies, at the EzVPN server device, the QoS policy to the communications session between the EzVPN client device and the EzVPN server device as determined by the processing of the connection speed data.
摘要翻译: 在一个实施例中,在EzVPN服务器设备处接收来自EzVPN客户端设备的连接速度数据的QoS管理器进程。 另外,QoS管理器处理在EzVPN服务器设备处理连接速度数据,以确定EzVPN客户端设备和EzVPN服务器设备之间的通信会话的QoS策略。 此外,QoS管理器进程在EzVPN服务器设备处将QoS策略应用于由连接速度数据的处理确定的EzVPN客户端设备和EzVPN服务器设备之间的通信会话。
-
公开(公告)号:US08429400B2
公开(公告)日:2013-04-23
申请号:US11766309
申请日:2007-06-21
申请人: Mohamed Khalid , Warren S. Wainner , Aamer Akhter , Paul Quinn
发明人: Mohamed Khalid , Warren S. Wainner , Aamer Akhter , Paul Quinn
IPC分类号: H04L29/06
CPC分类号: H04L9/0833 , H04L63/0272 , H04L63/065
摘要: In one embodiment, a method can include: (i) sending a request to join a group to a service broker; (ii) receiving from the service broker a list of key servers servicing the group; and (iii) sending registration information to a selected one of the key servers in the list.
摘要翻译: 在一个实施例中,一种方法可以包括:(i)向服务代理发送加入组的请求; (ii)从服务代理接收服务该组的密钥服务器的列表; 和(iii)向注册列表中的一个密钥服务器发送注册信息。
-
公开(公告)号:US20080320303A1
公开(公告)日:2008-12-25
申请号:US11766309
申请日:2007-06-21
申请人: Mohamed Khalid , Warren S. Wainner , Aamer Akhter , Paul Quinn
发明人: Mohamed Khalid , Warren S. Wainner , Aamer Akhter , Paul Quinn
IPC分类号: H04L9/14
CPC分类号: H04L9/0833 , H04L63/0272 , H04L63/065
摘要: In one embodiment, a method can include: (i) sending a request to join a group to a service broker; (ii) receiving from the service broker a list of key servers servicing the group; and (iii) sending registration information to a selected one of the key servers in the list.
摘要翻译: 在一个实施例中,一种方法可以包括:(i)向服务代理发送加入组的请求; (ii)从服务代理接收服务该组的密钥服务器的列表; 和(iii)向注册列表中的一个密钥服务器发送注册信息。
-
-
-
-
-
-
-
-
-
搜索结果
20 条记录 (耗时 0.018 秒)
