-
公开(公告)号:US07061858B1
公开(公告)日:2006-06-13
申请号:US09714246
申请日:2000-11-16
申请人: Marco Di Benedetto , Mrinal Baruah , Chengelpet Veeravalli Ramesh , Alagu Annaamalai , Ramana Mellacheruvu , Sridhar K. Aswathnarayan , Hei Tao Fung , Umesh Mahajan
发明人: Marco Di Benedetto , Mrinal Baruah , Chengelpet Veeravalli Ramesh , Alagu Annaamalai , Ramana Mellacheruvu , Sridhar K. Aswathnarayan , Hei Tao Fung , Umesh Mahajan
IPC分类号: G01R31/08
CPC分类号: H04L45/00 , H04L41/00 , H04L45/48 , H04L45/586
摘要: A method and apparatus allows for continued operation of one or more applications running at a network device with reduced delay despite crashes or failures at that device. The network device includes two or more supervisor cards for running the applications and a plurality of line cards. According to the invention, one supervisor card is designated the active supervisor card and one supervisor card is designated the standby supervisor card. As changes in state and other operating conditions take place on the active supervisor events are generating for passing at least some of this information to the standby supervisor where it is stored. Following a crash or failure of the active supervisor card, the standby becomes the newly active supervisor card. The standby supervisor performs a consistency check with the line cards and resets those that fail the check. The standby supervisor also determines which data records and state information stored at the standby supervisor are valid, and begins running the applications loaded onto the device. Those data records and state information determined by the standby supervisor to be valid are utilized by the applications in continuing their operation, while invalid data records and state information are discarded.
摘要翻译: 一种方法和装置允许在网络设备上运行的一个或多个应用继续运行,尽管在该设备上发生故障或故障,但延迟延迟。 网络设备包括用于运行应用的两个或更多个管理卡和多个线卡。 根据本发明,一个管理卡被指定为主动管理卡,一个管理卡被指定为备用主管卡。 由于状态和其他操作条件的改变发生在活动主管上,所产生的事件将至少部分信息传送到备用主管,在该主管处存储。 在活动主管卡出现故障或故障后,备用电源将成为新建的主管卡。 备用主管使用线路卡进行一致性检查,并重新设置检查失败的那些。 备用主管还确定在备用主管上存储的哪些数据记录和状态信息有效,并开始运行加载到设备上的应用程序。 被备用主管确定为有效的那些数据记录和状态信息被应用程序用于继续操作,而无效数据记录和状态信息被丢弃。
-
公开(公告)号:US06937576B1
公开(公告)日:2005-08-30
申请号:US09690619
申请日:2000-10-17
CPC分类号: H04L12/4641 , H04L12/462 , H04L12/4691 , H04L12/4695 , H04L45/02 , H04L45/48
摘要: A multiple instance spanning tree protocol (MI-STP) creates a plurality of active topologies (i.e., loop-free paths) within a computer network. These active topologies may be established through the exchange and processing of multiple instance spanning tree bridge protocol data unit messages (MI-STP BPDUs) by the intermediate network devices within the network. The active topologies are preferably created independently of any virtual local area network (VLAN) designations defined within the network. Once the active topologies are defined, each VLAN designation is then mapped to a single active topology, although multiple VLAN designations are preferably mapped to the same active topology to provide load balancing.
-
公开(公告)号:US20090327518A1
公开(公告)日:2009-12-31
申请号:US12555768
申请日:2009-09-08
IPC分类号: G06F15/173
CPC分类号: H04L41/0879 , H04L41/00 , H04L41/0803 , H04L45/00
摘要: A storage area network and method for defining a static Fibre Channel Fabric that does not require a Principal Switch. The storage area network comprises one or more hosts, one or more storage devices, and a static Fabric connecting the one or more hosts and storage devices. Within the static Fabric, the Switches have their Domain_ID and Fabric_Name statically set. The method comprises accessing the Fabric, selecting a Switch in the Fabric, and statically configuring the Domain_ID and Fabric_Name for the selected Switch. The above sequence is repeated for each Switch in the static Fabric. In one embodiment, after being statically configured, the Switch is isolated from any dynamically set Switches in the Fabric. The Switch detects which of its Ports are connected to dynamically set Switches, and then isolates them, while maintaining operational the Ports connected to statically configured Switches.
摘要翻译: 用于定义不需要主交换机的静态光纤通道结构的存储区域网络和方法。 存储区域网络包括一个或多个主机,一个或多个存储设备和连接一个或多个主机和存储设备的静态Fabric。 在静态Fabric中,交换机的Domain_ID和Fabric_Name静态设置。 该方法包括访问Fabric,选择Fabric中的Switch,并静态配置所选Switch的Domain_ID和Fabric_Name。 对静态Fabric中的每个交换机重复上述顺序。 在一个实施例中,在静态配置之后,交换机与Fabric中任何动态设置的交换机隔离。 交换机检测到哪个端口连接到动态设置的交换机,然后隔离它们,同时保持端口连接到静态配置的交换机的操作。
-
公开(公告)号:US07606167B1
公开(公告)日:2009-10-20
申请号:US10118386
申请日:2002-04-05
IPC分类号: H04L12/28
CPC分类号: H04L41/0879 , H04L41/00 , H04L41/0803 , H04L45/00
摘要: A storage area network and method for defining a static Fibre Channel Fabric that does not require a Principal Switch. The storage area network comprises one or more hosts, one or more storage devices, and a static Fabric connecting the one or more hosts and storage devices. Within the static Fabric, the Switches have their Domain_ID and Fabric_Name statically set. The method comprises accessing the Fabric, selecting a Switch in the Fabric, and statically configuring the Domain_ID and Fabric_Name for the selected Switch. The above sequence is repeated for each Switch in the static Fabric. In one embodiment, after being statically configured, the Switch is isolated from any dynamically set Switches in the Fabric. The Switch detects which of its Ports are connected to dynamically set Switches, and then isolates them, while maintaining operational the Ports connected to statically configured Switches.
摘要翻译: 用于定义不需要主交换机的静态光纤通道结构的存储区域网络和方法。 存储区域网络包括一个或多个主机,一个或多个存储设备和连接一个或多个主机和存储设备的静态Fabric。 在静态Fabric中,交换机的Domain_ID和Fabric_Name静态设置。 该方法包括访问Fabric,选择Fabric中的Switch,并静态配置所选Switch的Domain_ID和Fabric_Name。 对静态Fabric中的每个交换机重复上述顺序。 在一个实施例中,在静态配置之后,交换机与Fabric中任何动态设置的交换机隔离。 交换机检测到哪个端口连接到动态设置的交换机,然后隔离它们,同时保持端口连接到静态配置的交换机的操作。
-
公开(公告)号:US20130080638A1
公开(公告)日:2013-03-28
申请号:US13240020
申请日:2011-09-22
申请人: Marco Di Benedetto , Dante Malagrino , Alessandro Salvatori , Arthur Lihder Chang , Vijay Chander , Thomas Vincent Flynn
发明人: Marco Di Benedetto , Dante Malagrino , Alessandro Salvatori , Arthur Lihder Chang , Vijay Chander , Thomas Vincent Flynn
IPC分类号: G06F15/173
CPC分类号: H04L47/70 , H04L12/6418 , H04L45/586
摘要: A distributed virtual appliance is disclosed, including: allocating network traffic to a plurality of compute units implementing a network service associated with the distributed virtual appliance; and dynamically adding or removing one or more compute units implementing the network service without disruption to the network traffic.
摘要翻译: 公开了一种分布式虚拟设备,包括:将网络流量分配给实现与分布式虚拟设备相关联的网络服务的多个计算单元; 以及动态地添加或移除实现网络服务的一个或多个计算单元,而不中断网络流量。
-
公开(公告)号:US07965843B1
公开(公告)日:2011-06-21
申请号:US10034367
申请日:2001-12-27
IPC分类号: H04L9/12
CPC分类号: H04L63/123 , H04L9/0838 , H04L9/3239 , H04L63/12
摘要: Methods and apparatus are provided for improving both node-based and message-based security in a fibre channel network. Entity to entity authentication and key exchange services can be included in existing initialization messages used for introducing fibre channel network entities into a fibre channel fabric, or with specific messages exchanged over an already initialized communication channel. Both per-message authentication and encryption mechanisms can be activated using the authentication and key exchange services. Messages passed between fibre channel network entities can be encrypted and authenticated using information provided during the authentication sequence. Security services such as per-message authentication, confidentiality, integrity protection, and anti-replay protection can be implemented.
摘要翻译: 提供了用于改进光纤通道网络中的基于节点和基于消息的安全性的方法和装置。 可以将实体认证和密钥交换服务的实体包括在用于将光纤信道网络实体引入光纤信道结构的现有初始化消息中,或者通过已经初始化的通信信道交换的特定消息。 可以使用认证和密钥交换服务来激活每消息认证和加密机制。 在光纤通道网络实体之间通过的消息可以使用在认证序列期间提供的信息进行加密和认证。 可以实现诸如每消息认证,机密性,完整性保护和反重放保护等安全服务。
-
17.发明申请APPARATUS AND METHOD FOR PREVENTING DISRUPTION OF FIBRE CHANNEL FABRICS CAUSED BY RECONFIGURE FABRIC (RCF) MESSAGES 有权用于防止由重建织物(RCF)消息引起的纤维通道织物的破坏的装置和方法公开(公告)号:US20080159172A1
公开(公告)日:2008-07-03
申请号:US12049932
申请日:2008-03-17
IPC分类号: G01R31/08
CPC分类号: H04Q11/0005 , H04Q2011/0039
摘要: An apparatus and method for preventing the disruption of Fibre Channel Fabrics caused by ReConfigure Fabric (RCF) messages is disclosed. The apparatus includes a storage area network and a plurality of Fibre Channel Switches arranged in a Fabric. Each of the plurality of Switches includes logic to selectively configure their Ports to either reject or accept RCF messages. When configured to reject RCF messages, the Switch Port that receives an RCF message will generate a reject message along with a reason code explanation “E_Port Isolated”, and then transition into an Isolated state. When the Switch that generated the RCF message receives the reject message, its Port also transition into the Isolated state. In accordance with the method of the present invention, either a Storage Service Provider or a client can access the Switches of the Fabric through either a command line interpreter or a management application. Once access to the Fabric is established, the logic of the Ports of the Switches can be selectively configured to reject or accept RCF messages as described above.
摘要翻译: 公开了一种用于防止由ReConfigure Fabric(RCF)消息引起的光纤通道结构中断的设备和方法。 该装置包括存储区域网络和布置在织物中的多个光纤通道交换机。 多个开关中的每一个包括用于选择性地配置其端口以拒绝或接受RCF消息的逻辑。 当配置为拒绝RCF消息时,接收RCF消息的交换机端口将生成拒绝消息以及原因代码说明“E_Port Isolated”,然后转换到隔离状态。 当生成RCF消息的交换机接收到拒绝消息时,其端口也转换到隔离状态。 根据本发明的方法,存储服务提供商或客户端可以通过命令行解释器或管理应用程序访问结构的交换机。 一旦建立了对Fabric的访问,交换机端口的逻辑可以有选择地配置为拒绝或接受RCF消息,如上所述。
-
公开(公告)号:US09112812B2
公开(公告)日:2015-08-18
申请号:US13240020
申请日:2011-09-22
申请人: Marco Di Benedetto , Dante Malagrino , Alessandro Salvatori , Arthur Lihder Chang , Vijay Chander , Thomas Vincent Flynn
发明人: Marco Di Benedetto , Dante Malagrino , Alessandro Salvatori , Arthur Lihder Chang , Vijay Chander , Thomas Vincent Flynn
IPC分类号: G06F15/173 , G06F15/177 , H04L12/911 , H04L12/64 , H04L12/713
CPC分类号: H04L47/70 , H04L12/6418 , H04L45/586
摘要: A distributed virtual appliance is disclosed, including: allocating network traffic to a plurality of compute units implementing a network service associated with the distributed virtual appliance; and dynamically adding or removing one or more compute units implementing the network service without disruption to the network traffic.
摘要翻译: 公开了一种分布式虚拟设备,包括:将网络流量分配给实现与分布式虚拟设备相关联的网络服务的多个计算单元; 以及动态地添加或移除实现网络服务的一个或多个计算单元,而不中断网络流量。
-
公开(公告)号:US07424533B1
公开(公告)日:2008-09-09
申请号:US10444718
申请日:2003-05-23
IPC分类号: G06F15/173 , G06F15/177
CPC分类号: G06F21/6218 , H04L67/1097
摘要: Methods and devices are provided for role-based access control of network devices. The network devices may constitute the fabric of a storage area network (“SAN”) that has been logically partitioned into virtual storage area networks (“VSANs”) that are allocated to various administrators. Roles assigned according to preferred aspects of the invention do not need to be hierarchical, but are customized according to administrators' needs.
摘要翻译: 为网络设备的角色访问控制提供了方法和设备。 网络设备可以构成已经被逻辑划分成分配给各种管理员的虚拟存储区域网络(“VSAN”)的存储区域网络(“SAN”)的结构。 根据本发明的优选方面分配的角色不需要是分级的,而是根据管理员的需要进行定制。
-
公开(公告)号:US07281138B1
公开(公告)日:2007-10-09
申请号:US10407344
申请日:2003-04-03
申请人: Marco Di Benedetto
发明人: Marco Di Benedetto
IPC分类号: G06F11/30
CPC分类号: G06F11/362
摘要: A software module includes a functional portion for day-to-day management and configuration of one or more network devices. During the development of the functional portion, the software module also includes a debugging portion, used primarily for debugging and troubleshooting the functional portion. Customer access to the debugging portion is limited in various ways. The functional portion may be shipped to customers without the debugging portion, or at least without most of the debugging portion. The debugging portion (or part of the debugging portion) may be provided only on an “as-needed” basis. If part of the debugging portion is shipped with the functional portion, special permission may be required to “unlock” that part. Part of the debugging portion may be provided separately from the functional portion, for example in the form of a downloadable plug-in. Moreover, access to commands for controlling the debugging portion is limited.
摘要翻译: 软件模块包括用于日常管理和配置一个或多个网络设备的功能部分。 在功能部分的开发过程中,软件模块还包括主要用于调试和故障排除功能部分的调试部分。 调试部分的客户访问受到各种限制。 功能部分可以没有调试部分运送到客户,或至少没有大部分的调试部分。 调试部分(或调试部分的一部分)可以仅在“根据需要”的基础上提供。 如果调试部分的一部分附带功能部分,则可能需要特别许可才能“解锁”该部件。 调试部分的一部分可以与功能部分分开提供,例如以可下载插件的形式。 此外,对用于控制调试部分的命令的访问受到限制。
-
-
-
-
-
-
-
-
-
搜索结果
29 条记录 (耗时 0.019 秒)
