-
21.发明授权Packet filter system using BITMAP vector of filter rules for routing packet through network 失效包过滤系统使用BITMAP向量的过滤规则,通过网络路由数据包
公开(公告)号:US5951651A
公开(公告)日:1999-09-14
申请号:US899423
申请日:1997-07-23
CPC分类号: H04L63/0263 , H04L29/06 , H04L45/742 , H04L69/22
摘要: A filter method for designating one of a plurality of packet filter rules contained in a router for routing a packet of information through a network, each packet characterized as having parameters, the method comprising: generating one or more partitioned sets, each partitioned set associated with a different packet parameter with each partition of a set having zero or more associated filter rules; generating a vector corresponding to each of the parameters, the vector defining structure indicating one or more potential filter rules to be applied; comparing each parameter of the received packet with each partition of a corresponding partitioned set and determining one or more potential filter rules to be applied to the packet for each parameter; and determining from each of the vectors one or more identical potential filter rules associated with each vector, one of the identical filter rules capable of being applied to the received packet, with the rule to be applied being the rule of greatest priority.
摘要翻译: 一种过滤方法,用于指定包含在路由器中的多个分组过滤规则中的一个,用于通过网络路由信息分组,每个分组被表征为具有参数,所述方法包括:生成一个或多个分区集,每个分区集与 不同的分组参数,其中具有零个或多个相关联的过滤规则的集合的每个分区; 生成与每个参数对应的向量,所述向量定义结构指示要应用的一个或多个潜在过滤规则; 将接收的分组的每个参数与对应的分区集的每个分区进行比较,并且确定要应用于每个参数的分组的一个或多个潜在过滤规则; 并且从每个向量确定与每个向量相关联的一个或多个相同的电势滤波器规则,能够被应用于所接收的分组的相同的过滤规则中的一个,要应用的规则是最优先的规则。
-
公开(公告)号:US07489638B2
公开(公告)日:2009-02-10
申请号:US10820596
申请日:2004-04-08
摘要: A network of nodes interconnected by links, such as a wavelength division multiplexing (WDM) ring network, is modeled by a delayed graph in which propagation delay between nodes is accounted for. Given the delayed graph, a traffic matrix for an admissible traffic pattern is scheduled over a frame period. Scheduling of the traffic matrix formulates a set of scheduling constraints based on the delays and decomposes the traffic matrix into a set of transmission matrices. Each of the set of transmission matrices is scheduled over the frame period.
摘要翻译: 通过诸如波分复用(WDM)环形网络的链路互连的节点网络由延迟图形建模,其中考虑节点之间的传播延迟。 给定延迟图,在帧周期内调度用于允许的业务模式的业务矩阵。 业务矩阵的调度基于延迟制定一组调度约束,并将业务矩阵分解成一组传输矩阵。 在帧周期中调度传输矩阵集合中的每一个。
-
公开(公告)号:US07466703B1
公开(公告)日:2008-12-16
申请号:US09303718
申请日:1999-04-30
IPC分类号: H04L12/28
CPC分类号: H04L45/00 , H04L45/60 , H04L45/64 , H04L49/201 , H04L49/254 , H04L49/3009
摘要: A scalable, high-speed router for routing packets of information through an interconnected network comprises an interface for receiving a packet containing header and data information; a device for extracting routing information from the header of an arrived packet and generating a corresponding header packet for the arrived packet; a memory device for storing the data information of the arrived packet at predetermined memory locations; a device for processing the corresponding header packet to determine a route for the arrived packet and assigning packet forwarding information to the header packet; and, a device for retrieving the data information from the predetermined memory locations and forwarding both the data and header packet containing the packet forwarding information to the interface for routing the packet to a further destination in accordance with the packet forwarding information. The processing device includes devices performing filtering, route-table lookup and flow identification functions and which devices are organized in a pipelined fashion for successive, high-speed operations on the header packet. The router ensures that the arrived packet is forwarded in accordance with any quality of service requirements and flow specifications.
摘要翻译: 用于通过互连网络路由信息包的可扩展的高速路由器包括用于接收包含报头和数据信息的分组的接口; 从到达分组的头部提取路由信息的装置,并生成用于所述到达分组的对应的报头分组; 存储装置,用于将预定分组的数据信息存储在预定的存储位置; 用于处理对应的报头分组以确定所述到达分组的路由并将分组转发信息分配给所述报头分组的设备; 以及用于从预定存储器位置检索数据信息的装置,并且将包含分组转发信息的数据和报头分组转发到接口,用于根据分组转发信息将分组路由到另外的目的地。 处理设备包括执行过滤,路由表查找和流识别功能的设备,并且哪些设备以流水线方式组织,用于对报头分组进行连续的高速操作。 路由器确保到达的数据包根据任何服务质量要求和流量规范进行转发。
-
24.发明申请METHOD AND APPARATUS FOR NOTIFICATION AND DELIVERY OF MESSAGES TO MOBILE PC USERS 有权用于通信和传送移动PC用户的消息的方法和装置公开(公告)号:US20080183825A1
公开(公告)日:2008-07-31
申请号:US11668800
申请日:2007-01-30
申请人: Monsoor Ali Khan Alicherry , Mary S. Chan , Sanjay D. Kamat , Pramod V.N. Koppol , Sunder Rathnavelu Raj , Dimitrios Stiliadis
发明人: Monsoor Ali Khan Alicherry , Mary S. Chan , Sanjay D. Kamat , Pramod V.N. Koppol , Sunder Rathnavelu Raj , Dimitrios Stiliadis
IPC分类号: G06F15/16
CPC分类号: H04L12/12 , H04L51/24 , H04L51/38 , H04W4/12 , H04W52/0229 , H04W52/0274 , Y02D70/1222 , Y02D70/1224 , Y02D70/1242 , Y02D70/1244 , Y02D70/142 , Y02D70/168
摘要: The invention includes a method and apparatus for notification and delivery of messages to mobile users using a secure client associated with a user device. The secure client includes a power module, a communication module, a storage module, and an alert module. The power module powers the client device independent of a power state of the user device. The communication module receives a wake-up message and responsively triggers the secure client to switch from an inactive state to an active state without changing the power state of the user device, initiates a secure connection with a secure gateway in response to the wake-up message, and requests and receives a user message from a messaging application using the secure connection. The storage module stores the received message independent of the power state of the user device. The alert module activates an alert to indicate that the message is available.
摘要翻译: 本发明包括一种用于使用与用户设备相关联的安全客户端向移动用户通知和传递消息的方法和装置。 安全客户端包括电源模块,通信模块,存储模块和警报模块。 电源模块独立于用户设备的电源状态为客户端设备供电。 通信模块接收到唤醒消息,并响应于触发安全客户端从非活动状态切换到活动状态,而不改变用户设备的电源状态,响应唤醒启动与安全网关的安全连接 消息,并使用安全连接从消息应用程序请求并接收用户消息。 存储模块存储接收到的消息,而与用户设备的功率状态无关。 警报模块激活警报以指示消息可用。
-
公开(公告)号:US20050226214A1
公开(公告)日:2005-10-13
申请号:US10820596
申请日:2004-04-08
摘要: A network of nodes interconnected by links, such as a wavelength division multiplexing (WDM) ring network, is modeled by a delayed graph in which propagation delay between nodes is accounted for. Given the delayed graph, a traffic matrix for an admissible traffic pattern is scheduled over a frame period. Scheduling of the traffic matrix formulates a set of scheduling constraints based on the delays and decomposes the traffic matrix into a set of transmission matrices. Each of the set of transmission matrices is scheduled over the frame period.
摘要翻译: 通过诸如波分复用(WDM)环形网络的链路互连的节点网络由延迟图形建模,其中考虑节点之间的传播延迟。 给定延迟图,在帧周期内调度用于允许的业务模式的业务矩阵。 业务矩阵的调度基于延迟制定一组调度约束,并将业务矩阵分解成一组传输矩阵。 在帧周期中调度传输矩阵集合中的每一个。
-
公开(公告)号:US06594268B1
公开(公告)日:2003-07-15
申请号:US09266622
申请日:1999-03-11
IPC分类号: H04L1228
CPC分类号: H04L47/10 , H04L45/04 , H04L45/302 , H04L47/2408
摘要: A packet network employs routers that determine network routing based on quality of service (QoS) provisioning parameters and network topology information. QoS provisioning parameters are provided to each router from a network management database, and the network topology information is determined from a link state database of the router. The link state database may include network topology information collected by the router in accordance with the open shortest path protocol (OSPF). A network link, router, or other node failure initiates a new path-selection process. First, a temporary set of provisioning entries may be determined with a shortest path first (SPF) routing method. Then, the network packet flows may be classified into packet flows, real-time and non-real-time, and then as packet flows that require reserved bandwidth or that may be multiplexed. A multicommodity flow (MCF) routing method is then employed to determine an optimized set of candidate provisioning entries for the packet flows that may be multiplexed. The MCF routing method determines new routing for the packet flows based on QoS provisioning commitments as parameters. The MCF routing method determines the new routing based on an optimization criterion, such as maximized revenue. Once the new routing is determined, routing of network traffic is enabled by converting the provisioning entries into filter rules, which are then loaded into the packet classifier of the router.
摘要翻译: 分组网络使用基于服务质量(QoS)提供参数和网络拓扑信息来确定网络路由的路由器。 从网络管理数据库向每个路由器提供QoS配置参数,并从路由器的链路状态数据库确定网络拓扑信息。 链路状态数据库可以包括根据开放最短路径协议(OSPF)由路由器收集的网络拓扑信息。 网络链路,路由器或其他节点故障启动新的路径选择过程。 首先,可以用最短路径优先(SPF)路由方法来确定一组临时配置条目。 然后,网络分组流可以被分类为分组流,实时和非实时,然后作为需要预留带宽或可以被多路复用的分组流。 然后使用多业务流(MCF)路由方法来确定可以被复用的分组流的优化的候选供应条目集合。 MCF路由方法基于QoS配置承诺来确定分组流的新路由作为参数。 MCF路由方法基于优化标准(如最大收入)来确定新路由。 一旦确定了新路由,就可以通过将配置条目转换为过滤规则来启用网络通信的路由,然后将其过滤到规则中,然后将其加载到路由器的分组分类器中。
-
27.发明授权Method and apparatus for notification and delivery of messages to mobile PC users 有权用于向移动PC用户通知和传递消息的方法和装置公开(公告)号:US08533272B2
公开(公告)日:2013-09-10
申请号:US11668800
申请日:2007-01-30
申请人: Mansoor Ali Khan Alicherry , Mary S. Chan , Sanjay D. Kamat , Pramod V. N. Koppol , Sunder Rathnavelu Raj , Dimitrios Stiliadis
发明人: Mansoor Ali Khan Alicherry , Mary S. Chan , Sanjay D. Kamat , Pramod V. N. Koppol , Sunder Rathnavelu Raj , Dimitrios Stiliadis
IPC分类号: G06F12/14
CPC分类号: H04L12/12 , H04L51/24 , H04L51/38 , H04W4/12 , H04W52/0229 , H04W52/0274 , Y02D70/1222 , Y02D70/1224 , Y02D70/1242 , Y02D70/1244 , Y02D70/142 , Y02D70/168
摘要: The invention includes a method and apparatus for notification and delivery of messages to mobile users using a secure client associated with a user device. The secure client includes a power module, a communication module, a storage module, and an alert module. The power module powers the client device independent of a power state of the user device. The communication module receives a wake-up message and responsively triggers the secure client to switch from an inactive state to an active state without changing the power state of the user device, initiates a secure connection with a secure gateway in response to the wake-up message, and requests and receives a user message from a messaging application using the secure connection. The storage module stores the received message independent of the power state of the user device. The alert module activates an alert to indicate that the message is available.
摘要翻译: 本发明包括一种用于使用与用户设备相关联的安全客户端向移动用户通知和传递消息的方法和装置。 安全客户端包括电源模块,通信模块,存储模块和警报模块。 电源模块独立于用户设备的电源状态为客户端设备供电。 通信模块接收到唤醒消息,并响应于触发安全客户端从非活动状态切换到活动状态,而不改变用户设备的电源状态,响应唤醒启动与安全网关的安全连接 消息,并使用安全连接从消息应用程序请求并接收用户消息。 存储模块存储接收到的消息,而与用户设备的功率状态无关。 警报模块激活警报以指示消息可用。
-
28.发明授权Load balancing method and apparatus for ethernet over SONET and other types of networks 有权基于SONET和其他类型网络的以太网负载均衡方法和装置公开(公告)号:US07440404B2
公开(公告)日:2008-10-21
申请号:US10785352
申请日:2004-02-24
IPC分类号: H04L12/16
CPC分类号: H04L47/10
摘要: A load-balanced network architecture is disclosed in which a traffic flow at a given network node is split into a plurality of parts, and the parts are distributed to respective ones of the plurality of nodes that are designated as participating in a load balancing process for the traffic flow. Each of at least a subset of the participating nodes receiving one of the parts routes at least a portion of its received part to one or more destination nodes.
摘要翻译: 公开了一种负载平衡的网络架构,其中给定网络节点处的业务流被分割成多个部分,并且将这些部分分配给被指定为参与负载平衡过程的多个节点中的相应节点 交通流量。 接收该部分之一的参与节点的至少一个子集将其接收的部分的至少一部分路由到一个或多个目的地节点。
-
公开(公告)号:US06341130B1
公开(公告)日:2002-01-22
申请号:US09146122
申请日:1998-09-02
IPC分类号: H04L1266
CPC分类号: H04L45/00 , H04L45/54 , H04L45/742 , H04L63/0263
摘要: A packet filter for a router performs generalized packet filtering allowing range matches in two dimensions, where ranges in one dimension at least one dimension is defined as a power of two. To associate a filter rule with a received packet EP, the packet filter employs a 2-dimensional interval search and memory look-up with the filter-rule table. Values of sm of filter-rule rm=(sm,dm) in one dimension are desirably ranges that are a power of two, such as prefix ranges, which are represented by a binary value having a “length” defined as the number of bits to of the prefix. The dm may be single points, ranges defined as prefix ranges, and/or ranges defined as continuous ranges. The packet filter employs preprocessing of the filter-rules based on prefix length as a power of 2 in one dimension and decomposition of overlapping segments into non-overlapping intervals in the other dimension to form the filter-rule table. A preprocessing algorithm searches in one dimension through filter rules and arranges the corresponding filter-rule rectangle segments according to prefix length. Then, in the other dimension, the overlapping filter rectangle segments are decomposed into non-overlapping intervals, and the highest priority filter-rule overlapping each non-overlapping interval is associated with that interval. A filter-rule table is then constructed with entries ordered according to prefix length and non-overlapping interval, each entry associated with a particular filter-rule. A packet classification algorithm then matches the field or other parameter information in the packet to the filter-rule table entries to identify the filter-rule rectangle associated with the filter-rule to be applied to the packet.
摘要翻译: 用于路由器的分组过滤器执行广义分组过滤,允许在二维中进行范围匹配,其中一维中的至少一维的范围被定义为二的幂。 为了将过滤规则与接收到的分组EP相关联,分组过滤器采用二维间隔搜索和存储器查找与过滤规则表。 一维中滤波器规则rm =(sm,dm)的sm的值优选为2的幂,例如前缀范围的范围,前缀范围由具有定义为位数的“长度”的二进制值表示 到前缀。 dm可以是单点,定义为前缀范围的范围,和/或定义为连续范围的范围。 分组过滤器使用基于前缀长度的过滤规则的预处理作为一维中的2的幂,并且将重叠段的分解在另一维度中的非重叠间隔中以形成过滤规则表。 预处理算法通过过滤规则在一维中进行搜索,并根据前缀长度排列相应的过滤规则矩形段。 然后,在另一个维度上,重叠的过滤器矩形段被分解成非重叠的间隔,并且与每个非重叠间隔重叠的最高优先级过滤器规则与该间隔相关联。 然后,根据前缀长度和不重叠间隔排序的条目构建过滤规则表,每个条目与特定过滤规则相关联。 然后,分组分类算法将分组中的字段或其他参数信息与过滤器规则表条目匹配,以标识与要应用于分组的过滤规则相关联的过滤规则矩形。
-
公开(公告)号:US06289013B1
公开(公告)日:2001-09-11
申请号:US09145433
申请日:1998-09-02
IPC分类号: H04L900
CPC分类号: H04L49/602 , H04L49/205
摘要: A packet filter method and apparatus for a router employs an algorithm that decomposes a set of n filter rules of a k-dimensional space into sets of rule segments associated with non-overlapping intervals in each dimension. Such packet filter may be employed for layer four switching applications. Bit-parallel processing may be employed to compare each interval with corresponding fields of a packet received by the router. Bitmaps defined by the sets of rule segments, and so related to the corresponding filter rules are associated with the intervals. The interval bitmaps are combined to form a filter rule bitmap that identifies and associates one or more filter rules with the packet. For a case storing complete bitmaps for all intervals, the packet filter employs k*n2+O(n) bits of memory for each dimension, [log(2n)]+1 comparisons per dimension which may be performed in parallel, and [n/w] memory accesses for a pairwise combining operation, where w is a width of a bitmap used to identify the filter rule. Incremental memory read operations are employed to reduce memory space requirements of this packet filter case, allowing the packet-filter operation to be optimized in accordance with time complexity and memory space. Since a dominant contributing factor of execution time is off-chip memory accesses, availability of on-chip memory and the use of modified bitmap storage using interval bitmap pointers for incremental memory read operations significantly increases the number of filter rules that may be searched and applied within a given time constraint. For this algorithm employing incremental memory read operations, memory requirements may be reduced to O(n log n) bits while increasing the execution time by only a constant value, when log n≦w.
摘要翻译: 用于路由器的分组过滤方法和装置采用将k维空间的一组n个滤波器规则分解为与每个维度中的非重叠间隔相关联的规则分段的集合的算法。 这种分组过滤器可以用于第四层交换应用。 可以采用位并行处理来将每个间隔与由路由器接收的分组的相应字段进行比较。 由规则段集合定义的位图以及与相应的过滤规则相关的位图与间隔相关联。 间隔位图被组合以形成一个过滤器规则位图,用于标识和关联一个或多个过滤器规则与数据包。 对于存储所有间隔的完整位图的情况,分组过滤器对于可以并行执行的每个维度的每个维度[log(2n)] + 1比较采用k * n2 + O(n)个比特的存储器,并且[n / w]成对组合操作的存储器访问,其中w是用于标识过滤规则的位图的宽度。 采用增量存储器读取操作来减少该分组过滤器情况的存储空间需求,允许根据时间复杂度和存储器空间优化分组过滤器操作。 由于执行时间的主要贡献因素是片外存储器访问,片上存储器的可用性以及使用间隔位图指针进行增量存储器读取操作的修改位图存储的使用显着增加了可以搜索和应用的过滤器规则的数量 在给定的时间限制内。 对于采用增量存储器读取操作的该算法,当log n <= w时,存储器需求可以减少到O(nlog n)位,同时将执行时间仅增加一个恒定值。
-
-
-
-
-
-
-
-
-
搜索结果
32 条记录 (耗时 0.024 秒)
