公开(公告)号：US07869351B2

公开(公告)日：2011-01-11

申请号：US11713504

申请日：2007-03-02

申请人： David D. Ward ,  Earl Hardin Booth, III ,  Stefano Previdi

发明人： David D. Ward ,  Earl Hardin Booth, III ,  Stefano Previdi

IPC分类号： G01R31/08

CPC分类号： H04J3/14 ,  H04J2203/006 ,  H04J2203/0083 ,  H04L12/66

摘要： In one embodiment, software code in a respective computer system such as one or more data communication devices establishes multiple layer 2 network links between a first data communication device and a second data communication device. The first data communication device and the second data communication device include corresponding layer 3 interfaces enabling layer 3 network communications over each of the multiple layer 2 network links. The first and second data communication devices route traffic over one (e.g., a primary layer 2 link) of the multiple layer 2 network links using the layer 3 network communications. The private links are media independent. Upon detection of a failure associated with the primary layer 2 link, the data communication devices can automatically switch to sending traffic over a backup link of the multiple layer 2 network links without disrupting publicly advertised routing topology information.

摘要翻译： 在一个实施例中，诸如一个或多个数据通信设备的相应计算机系统中的软件代码在第一数据通信设备和第二数据通信设备之间建立多个第2层网络链路。 第一数据通信设备和第二数据通信设备包括相应的层3接口，其能够在多层2网络链路中的每一个上实现层3网络通信。 第一和第二数据通信设备使用第3层网络通信路由多层2网络链路的一个（例如，主层2链路）上的业务。 私人链接是媒体独立的。 在检测到与主层2链路相关联的故障时，数据通信设备可以自动切换到通过多层2网络链路的备份链路发送流量，而不会中断公开发布的路由拓扑信息。

公开(公告)号：US06816462B1

公开(公告)日：2004-11-09

申请号：US09630794

申请日：2000-08-02

申请人： Earl Hardin Booth, III ,  Charles Steven Lingafelt ,  Phuong Thanh Nguyen ,  Leo Temoshenko ,  Xiaogang Wang

发明人： Earl Hardin Booth, III ,  Charles Steven Lingafelt ,  Phuong Thanh Nguyen ,  Leo Temoshenko ,  Xiaogang Wang

IPC分类号： H04L1226

CPC分类号： H04L43/50

摘要： A method and system for determining the connectivity of a virtual private network IP security (IPSec) tunnel between two network elements by originating a plurality of connection tests between the network elements. The first network element transmits a connectivity test message to the second network element over the secure tunnel upon receipt of an initiate connectivity test command. The secure tunnel includes two unidirectional tunnels. The second network element receives the connectivity test message over the first unidirectional secure tunnel and transmits a response back to the first network element over the second unidirectional secure tunnel. The number of successful responses received from the second network element are accumulated and the results are reported back to the source of the connectivity test command.

摘要翻译： 一种用于通过发起网络元件之间的多个连接测试来确定两个网络元件之间的虚拟专用网络IP安全（IPSec）隧道的连接性的方法和系统。 第一网络元件在接收到启动连接测试命令时，通过安全隧道向第二网络元件发送连接测试消息。 安全隧道包括两个单向隧道。 第二网元通过第一单向安全隧道接收连接性测试消息，并通过第二单向安全隧道将响应发送回第一网元。 累积从第二网元接收到的成功响应的数量，并将结果报告回到连接测试命令的源。

公开(公告)号：US5964847A

公开(公告)日：1999-10-12

申请号：US814034

申请日：1997-03-10

申请人： Earl Hardin Booth, III ,  Brian Ashley Carpenter ,  Robert Bedford Ferrier ,  Russell Alan Resnick ,  William Walter Vetter

发明人： Earl Hardin Booth, III ,  Brian Ashley Carpenter ,  Robert Bedford Ferrier ,  Russell Alan Resnick ,  William Walter Vetter

IPC分类号： G06F13/14 ,  G06F1/16 ,  G06F3/00 ,  H04B1/38 ,  H04M1/725 ,  G06F13/00

CPC分类号： H04M1/72527 ,  G06F1/1632 ,  H04B1/38 ,  H04M1/7253 ,  H04B1/3877 ,  H04M1/72561

摘要： A computer, and particularly a mobile client computer system, in which flexibility in use of the system is enhanced by a capability of receiving and dynamically recognizing a variety of what are here called docking options. Docking options are peripheral devices, such as radio transceivers, which can be selectively connected to and used with a mobile client system. A docked option is identified by an exchange of signals between the system and the option, accomplished through a plurality of input/output ports which together define an interface to the option.

摘要翻译： 计算机，特别是移动客户端计算机系统，其中通过接收并动态地识别各种所谓的对接选项的能力来增强系统使用的灵活性。 对接选项是诸如无线电收发器的外围设备，其可以选择性地连接到移动客户端系统并与移动客户端系统一起使用。 通过在系统和选项之间交换信号来识别对接选项，该多个输入/输出端口一起界定了该选项的接口。

公开(公告)号：US08059527B2

公开(公告)日：2011-11-15

申请号：US11281269

申请日：2005-11-16

申请人： William Mark Townsley ,  Earl Hardin Booth, III

发明人： William Mark Townsley ,  Earl Hardin Booth, III

IPC分类号： H04L12/26

CPC分类号： H04L12/4641 ,  H04L12/4633 ,  H04L41/0631 ,  H04L41/0886 ,  H04L41/0896 ,  H04L43/0876

摘要： Techniques for operating a network interface include automatically determining whether communications are terminated over a particular attachment circuit on a network interface on an intermediate network node at an edge of a provider network, whereby a sign of death (SOD) on the particular attachment circuit is indicated. The attachment circuit is switched with a particular virtual private network that is a link layer virtual private network (VPN) encapsulated in a higher layer protocol. The provider network is a packet-switched network. The network interface is for a direct communication link to a customer network node outside the provider network. If it is determined that there is an indication of the SOD, then a new network action is initiated in response to the SOD on the particular attachment circuit. These techniques allow for automatic logging of usage, billing, and fault detection, as well as for over-subscription of network resources for multiple VPNs.

摘要翻译： 用于操作网络接口的技术包括自动确定在提供商网络的边缘处的中间网络节点上的网络接口上的特定附件电路上是否终止通信，从而指示特定附接电路上的死亡符号（SOD） 。 附件电路是以封装在更高层协议中的链路层虚拟专用网（VPN）的特定虚拟专用网络来切换的。 提供商网络是分组交换网络。 网络接口用于与供应商网络之外的客户网络节点的直接通信链路。 如果确定存在SOD的指示，则响应于特定附接电路上的SOD启动新的网络动作。 这些技术允许自动记录使用，计费和故障检测，以及多个VPN的网络资源的超额订阅。

公开(公告)号：US07778199B2

公开(公告)日：2010-08-17

申请号：US11143551

申请日：2005-06-02

申请人： Earl Hardin Booth, III ,  William Mark Townsley ,  Greg Weber ,  Wei Luo

发明人： Earl Hardin Booth, III ,  William Mark Townsley ,  Greg Weber ,  Wei Luo

IPC分类号： H04L12/28 ,  G06F15/177 ,  G06F17/00

CPC分类号： H04L41/0806 ,  H04L41/0213 ,  H04L41/0253 ,  H04L41/0866 ,  H04L41/0886

摘要： Techniques for configuring a particular network interface on a particular node at an edge of a provider network to support a particular virtual private network include receiving customer input data. The provider network is a packet-switched network and the particular virtual private network is a link layer virtual private network. The customer input data indicates a topology for customer equipment devices outside the provider network on the particular virtual private network, and may include properties for corresponding interfaces that connect the customer equipment devices to the edge nodes. Based on the customer input data, configuration data is determined for configuring the particular interface at the particular node. The particular node is caused to configure the particular interface based on the configuration data without human intervention. Among other effects, these techniques support zero-touch provisioning of virtual private networks.

摘要翻译： 用于在供应商网络的边缘上的特定节点上配置特定网络接口以支持特定虚拟专用网络的技术包括接收客户输入数据。 提供商网络是分组交换网络，特定的虚拟专用网络是链路层虚拟专用网络。 客户输入数据指示特定虚拟专用网络上的供应商网络之外的客户设备设备的拓扑，并且可以包括将客户设备设备连接到边缘节点的相应接口的属性。 基于客户输入数据，确定配置数据以配置特定节点处的特定接口。 使特定节点在没有人为干预的情况下根据配置数据配置特定接口。 除此之外，这些技术支持虚拟专用网络的零接触配置。

公开(公告)号：US20090150904A1

公开(公告)日：2009-06-11

申请号：US11951161

申请日：2007-12-05

申请人： Jean-Philippe Champagne ,  Richard Manfred Pruss ,  Earl Hardin Booth, III

发明人： Jean-Philippe Champagne ,  Richard Manfred Pruss ,  Earl Hardin Booth, III

IPC分类号： G06F13/00

CPC分类号： G06F13/387

摘要： In an example embodiment, a method is provided to receive a request message. A client that transmitted the request message then is identified. Here, the client is associated with a client identifier. The client identifier is inserted into a response message, and this response message includes a redirect to a portal. The response message then is transmitted.

摘要翻译： 在示例实施例中，提供了一种接收请求消息的方法。 然后识别发送请求消息的客户端。 这里，客户端与客户端标识符相关联。 将客户端标识符插入到响应消息中，并且该响应消息包括到门户的重定向。 然后发送响应消息。

公开(公告)号：US06668282B1

公开(公告)日：2003-12-23

申请号：US09630936

申请日：2000-08-02

申请人： Earl Hardin Booth, III ,  Charles Steven Lingafelt ,  Phuong Thanh Nguyen ,  Leo Temoshenko ,  Xiaogang Wang

发明人： Earl Hardin Booth, III ,  Charles Steven Lingafelt ,  Phuong Thanh Nguyen ,  Leo Temoshenko ,  Xiaogang Wang

IPC分类号： G06F15173

CPC分类号： H04L43/0817 ,  H04L41/0681 ,  H04L43/106 ,  H04L43/16 ,  H04L63/0272 ,  H04L63/0428 ,  H04L63/1408 ,  H04L63/164

摘要： A method and system for monitoring the status of an active secure tunnel between a pair of network elements in a communications network. The first network element originates and transmits an Internet Protocol Security (IPSec) test message to a second network element using a first unidirectional secure tunnel in response to the receipt of an active tunnel monitor command. The second network element receives the IPSec test message and transmits a response back to the first network element using a second unidirectional secure tunnel. The number of times that second network element failed to return a response to an IPSec test message is accumulated during a predetermined time interval and then compared with a threshold value to determine if the active secure tunnel has become disabled.

摘要翻译： 一种用于监测通信网络中的一对网络元件之间的主动安全隧道的状态的方法和系统。 响应于接收到主动隧道监视命令，第一网络元件使用第一单向安全隧道发起并发送到第二网络元件的互联网协议安全（IPSec）测试消息。 第二网元接收IPSec测试消息，并使用第二单向安全隧道将响应发送回第一网元。 在预定时间间隔期间累积第二网络元件未能返回对IPSec测试消息的响应的次数，然后与阈值进行比较，以确定主动安全隧道是否已被禁用。