公开(公告)号：US08706883B2

公开(公告)日：2014-04-22

申请号：US13495845

申请日：2012-06-13

申请人： Gautam Aggarwal ,  Pritam Shah ,  Ajith Thrivikramannair ,  Dana Blair

发明人： Gautam Aggarwal ,  Pritam Shah ,  Ajith Thrivikramannair ,  Dana Blair

IPC分类号： G06F15/173

CPC分类号： H04L45/24 ,  H04L45/125 ,  H04L45/22 ,  H04L45/26 ,  H04L63/0272

摘要： In one embodiment, a plurality of spoke-to-hub virtual private network (VPN) tunnels are established from a spoke router located at an edge of a spoke network to a hub network. The spoke router is configured as an optimized edge routing (OER) node. The spoke router monitors a network statistic for each of a plurality of prefixes on each of the plurality of spoke-to-hub VPN tunnels. The monitored network statistic is analyzed to determine whether a distribution of traffic between the spoke network and the hub network can be optimized. In the event the distribution of traffic between the spoke network and the hub network can be optimized, traffic is redistributed on a per-prefix basis among the plurality of spoke-to-hub VPN tunnels based on the monitored network statistic, such that at least a portion of the traffic is routed over each of the plurality of spoke-to-hub VPN tunnels.

摘要翻译： 在一个实施例中，从位于分支网络的边缘的分支路由器建立到集线器网络的多个辐射对集线器虚拟专用网络（VPN）隧道。 分支路由器配置为优化边缘路由（OER）节点。 所述分支路由器监视所述多个辐照到中心VPN隧道中的每一个上的多个前缀中的每一个的网络统计信息。 分析监控的网络统计信息，以确定辐射网络和集线器网络之间的流量分布是否可以优化。 在可以优化分布式网络和集线器网络之间的流量分配的情况下，基于所监视的网络统计信息，在多个辐射对中心VPN隧道之间的每个前缀基础上重新分配流量，使得至少 一部分业务被路由到多个辐对方VPN隧道中的每一个上。

公开(公告)号：US08073968B1

公开(公告)日：2011-12-06

申请号：US10980550

申请日：2004-11-03

申请人： Pritam Shah ,  Vamsidhar Valluri ,  Dana Blair ,  Philip C. Jacobs ,  Kathleen Nguyen

发明人： Pritam Shah ,  Vamsidhar Valluri ,  Dana Blair ,  Philip C. Jacobs ,  Kathleen Nguyen

IPC分类号： G06F15/173 ,  G06F15/16

CPC分类号： H04L45/00 ,  H04L43/0829 ,  H04L43/0852 ,  H04L43/0864 ,  H04L45/04 ,  H04L49/20

摘要： An Optimized Edge Routing (OER) technique provides efficiently data routing at the edge of a network or subnetwork. The technique employs a Master node that manages a set of border nodes located at the edge of the network or subnetwork. The Master node may be a stand-alone network management node or may be incorporated into a network node, such as a border node. Unlike prior implementations, the Master node instructs the border nodes to dynamically acquire (“learn”) prefixes of incoming and outgoing data flows and to selectively filter a set of learned address prefixes whose corresponding data flows match a predetermined set of criteria. The criteria may be based on routing metrics other than, or in addition to, conventional cost-based or distance-based metrics. Further, the criteria may include a set of filtering parameters that may be reconfigured, e.g., by the Master node, from time to time. Using the learned prefixes filtered by the border nodes, the Master node can distribute network traffic and utilize network bandwidth more efficiently than conventionally done.

摘要翻译： 优化的边缘路由（OER）技术可在网络或子网的边缘高效地提供数据路由。 该技术采用主节点来管理位于网络或子网边缘的一组边界节点。 主节点可以是独立的网络管理节点，或者可以并入到诸如边界节点的网络节点中。 与先前的实现不同，主节点指示边界节点动态地获取（“学习”）入局和出站数据流的前缀，并且选择性地过滤一组学习的地址前缀，其相应的数据流与预定标准集匹配。 该标准可以基于除了常规的基于成本或基于距离的度量之外的除了或附加的路由度量。 此外，标准可以包括可以例如由主节点不时地重新配置的一组过滤参数。 使用由边界节点过滤的学习前缀，主节点可以比传统方式更高效地分配网络流量并利用网络带宽。

公开(公告)号：US08098578B1

公开(公告)日：2012-01-17

申请号：US11337195

申请日：2006-01-20

申请人： Pritam Shah ,  Philip C. Jacobs

发明人： Pritam Shah ,  Philip C. Jacobs

IPC分类号： H04L12/26

CPC分类号： H04L47/122 ,  G01V1/28 ,  H04L29/06027 ,  H04L41/00 ,  H04L41/0213 ,  H04L41/0866 ,  H04L45/00 ,  H04L45/02 ,  H04L45/04 ,  H04L45/12 ,  H04L45/123 ,  H04L45/125 ,  H04L45/70 ,  H04L47/125

摘要： A technique dynamically increases the granularity of prefix control in a computer network. According to the novel technique, a routing table is populated with one or more reachable prefixes, e.g., learned or configured prefixes, and performance characteristics (e.g., bandwidth, cost, delay, etc.) of the prefixes are monitored. Upon determining that a need exists for more granular prefix control (i.e., smaller prefixes), one or more boundaries may be determined upon which to divide one or more of the prefixes based on the monitored characteristics and/or need. Once the one or more boundaries are determined, the one or more prefixes may be “split” accordingly, e.g., by injecting more specific prefixes into the routing table, thus providing more granular prefix control (i.e., by controlling the split prefixes).

摘要翻译： 一种技术动态地增加了计算机网络中前缀控制的粒度。 根据新颖技术，路由表被填充有一个或多个可达到的前缀，例如学习或配置的前缀，并且监视前缀的性能特征（例如，带宽，成本，延迟等）。 在确定需要存在更多的粒度前缀控制（即，较小的前缀）时，可以根据所监视的特性和/或需要确定一个或多个前缀来划分一个或多个前缀的一个或多个边界。 一旦确定了一个或多个边界，则一个或多个前缀可以相应地“分割”，例如通过将更多的特定前缀注入到路由表中，从而提供更细粒度的前缀控制（即，通过控制分割前缀）。

公开(公告)号：US20120120795A1

公开(公告)日：2012-05-17

申请号：US13313773

申请日：2011-12-07

申请人： Pritam Shah ,  Philip C. Jacobs

发明人： Pritam Shah ,  Philip C. Jacobs

IPC分类号： H04L12/26

CPC分类号： H04L47/122 ,  G01V1/28 ,  H04L29/06027 ,  H04L41/00 ,  H04L41/0213 ,  H04L41/0866 ,  H04L45/00 ,  H04L45/02 ,  H04L45/04 ,  H04L45/12 ,  H04L45/123 ,  H04L45/125 ,  H04L45/70 ,  H04L47/125

摘要： In one embodiment, a routing table of a router is populated with a plurality of prefixes. One or more performance characteristics of the plurality of prefixes are monitored. The router determines that a need exists to split a selected prefix of the plurality of prefixes. The router determines one or more boundaries upon which to split the selected prefix based on the monitored performance characteristics. The router then injects one or more more-specific prefixes into the routing table, each more-specific prefix referring to a smaller subset of nodes than the selected prefix, to split the selected prefix on the one or more boundaries to create a plurality of split prefixes. The split prefixes are controlled to optimize distribution of traffic.

摘要翻译： 在一个实施例中，路由器的路由表被填充有多个前缀。 监视多个前缀的一个或多个性能特征。 路由器确定存在分割多个前缀的所选前缀的需要。 路由器基于所监视的性能特征确定将所选择的前缀拆分到哪一个边界。 路由器然后将一个或多个更具体的前缀注入到路由表中，每个更具体的前缀引用比所选择的前缀更小的节点子集，以在一个或多个边界上分割所选择的前缀以创建多个分裂 前缀。 控制分割前缀以优化流量分配。

公开(公告)号：US07606159B2

公开(公告)日：2009-10-20

申请号：US11216589

申请日：2005-08-30

申请人： Mitesh Dalal ,  Pritam Shah ,  Amol Khare ,  Vamsidhar Valluri

发明人： Mitesh Dalal ,  Pritam Shah ,  Amol Khare ,  Vamsidhar Valluri

IPC分类号： H04L12/28

CPC分类号： H04L45/04 ,  H04L45/02 ,  H04L45/125 ,  H04L45/22 ,  H04L45/38 ,  H04L45/42 ,  H04L45/70 ,  H04L47/31

摘要： Techniques are provided for updating best path based on real-time congestion feedback. A method comprises monitoring packets received from an internetworked system, wherein the packets are received on one of a plurality of external interfaces of a networking device; detecting that a received packet includes real-time information that signals a present or pending congestion condition on a path from the external interfaces of the networking device to the internetworked system; notifying a control logic of the real-time information; receiving from the control logic control information defining a change in one or more paths from the external interfaces to the internetworked system; and changing the one or more paths from the external interfaces to the internetworked system. Examining ingress traffic on external interfaces of an internetworked system can cause changes to routes, routing policies and PBRs in routers of the first internetworked system in response to real-time congestion.

摘要翻译： 提供了基于实时拥塞反馈来更新最佳路径的技术。 一种方法包括监视从互联网络系统接收的分组，其中分组在网络设备的多个外部接口之一上被接收; 检测所接收的分组包括实时信息，所述实时信息表示从所述网络设备的外部接口到所述互联网络系统的路径上的当前或未完成拥塞状况; 通知实时信息的控制逻辑; 从控制逻辑控制信息接收定义从外部接口到互联网系统的一个或多个路径的变化; 并将一个或多个路径从外部接口改变为互联网络系统。 检查互联网络系统的外部接口上的入口流量可能会导致第一个互联网络系统的路由器中的路由，路由策略和PBR的更改，以响应实时拥塞。

公开(公告)号：US20140241515A1

公开(公告)日：2014-08-28

申请号：US13777202

申请日：2013-02-26

申请人： Anand K. Oswal ,  Pritam Shah

发明人： Anand K. Oswal ,  Pritam Shah

IPC分类号： H04M3/56

CPC分类号： H04M3/56 ,  H04M3/42348 ,  H04M2203/2094 ,  H04M2242/30

摘要： In one embodiment, a method includes receiving a first request to join a conference from a first user device. The location of the first user device is determined. Based on the location of the first user device, the proximity of the first user device relative to endpoints configured to facilitate the conference is identified. A first one of the endpoints that is more proximate to the first user device than other endpoints is selected for handling the conferences.

摘要翻译： 在一个实施例中，一种方法包括从第一用户设备接收加入会议的第一请求。 确定第一用户设备的位置。 基于第一用户设备的位置，识别第一用户设备相对于被配置为便于会议的端点的接近度。 选择比其他端点更接近第一用户设备的端点中的第一个端点用于处理会议。

公开(公告)号：US09020109B2

公开(公告)日：2015-04-28

申请号：US13777202

申请日：2013-02-26

申请人： Anand K. Oswal ,  Pritam Shah

发明人： Anand K. Oswal ,  Pritam Shah

IPC分类号： H04M11/00 ,  H04M3/56

CPC分类号： H04M3/56 ,  H04M3/42348 ,  H04M2203/2094 ,  H04M2242/30

摘要： In one embodiment, a method includes receiving a first request to join a conference from a first user device. The location of the first user device is determined. Based on the location of the first user device, the proximity of the first user device relative to endpoints configured to facilitate the conference is identified. A first one of the endpoints that is more proximate to the first user device than other endpoints is selected for handling the conferences.

摘要翻译： 在一个实施例中，一种方法包括从第一用户设备接收加入会议的第一请求。 确定第一用户设备的位置。 基于第一用户设备的位置，识别第一用户设备相对于被配置为便于会议的端点的接近度。 选择比其他端点更接近第一用户设备的端点中的第一个端点用于处理会议。

公开(公告)号：US09015299B1

公开(公告)日：2015-04-21

申请号：US11336734

申请日：2006-01-20

申请人： Pritam Shah

发明人： Pritam Shah

IPC分类号： G06F15/173 ,  H04L29/06 ,  G01R31/08 ,  G08C15/00 ,  H04J1/16 ,  H04L12/26

CPC分类号： H04L29/06 ,  H04L69/14 ,  Y02D50/30

摘要： A technique manages route optimization for one or more groups of links in a computer network. According to the novel technique, each group or “subgroup” of links comprises one or more links, wherein the group may be configured based on various measures, such as, e.g., connectivity (physical or virtual), policies to be applied, per-prefix, per-application (e.g., Internet traffic or voice over IP, VoIP), geographic location, and/or quality-based (e.g., primary links and secondary/backup links). One or more policies may be defined for the groups of links (i.e., where these group policies are to be applied to the group as a whole), in addition to policies that may be defined for individual to links and/or prefixes. Once the link groups are established, traffic over the groups of links (e.g., routes to reachable address prefixes) may be managed and optimized according to the group policies, such as in accordance with Optimized Edge Routing (OER) techniques.

摘要翻译： 一种技术管理计算机网络中一个或多个链路组的路由优化。 根据新颖技术，链路的每个组或“子组”包括一个或多个链路，其中可以基于各种措施来配置组，例如，连接（物理或虚拟），要应用的策略， 前缀，每个应用程序（例如，Internet流量或IP语音，VoIP），地理位置和/或基于质量（例如，主链接和辅助/备用链路）。 除了可以为个人链接和/或前缀定义的策略之外，可以为链路组定义一个或多个策略（即，将这些组策略应用于整个组）。 一旦建立了链路组，就可以根据组策略（例如，根据优化边缘路由（OER）技术）来管理和优化链路组上的流量（例如，到可到达地址前缀的路由）。

公开(公告)号：US07266754B2

公开(公告)日：2007-09-04

申请号：US10641494

申请日：2003-08-14

申请人： Pritam Shah ,  Chengelpet Ramesh ,  Vamsidhar Valluri

发明人： Pritam Shah ,  Chengelpet Ramesh ,  Vamsidhar Valluri

IPC分类号： H03M13/00

CPC分类号： H04L69/22 ,  H04L69/16 ,  H04L69/161 ,  H04L69/163

摘要： A method for detecting a suspicious packet flow in a packet-switched network comprises the computer-implemented step of receiving a first packet in which the SYN bit but not the ACK or RST bit of the packet's TCP header is set. If a specified first time has elapsed, a packet counter associated with the destination address of the flow is incremented. A determination as to whether the packet counter is greater than a specified threshold values is made. If the packet counter is greater than the threshold value, a notification message is generated. In one embodiment, information identifying a packet flow is aggregated to an aggregation cache based on the destination address of the flow.

摘要翻译： 用于检测分组交换网络中的可疑分组流的方法包括计算机实现的步骤，用于接收其中设置了该分组的TCP报头的SYN位而不是ACK或RST位的第一分组。 如果指定的第一次已经过去，则与流的目的地地址相关联的分组计数器递增。 确定分组计数器是否大于指定的阈值。 如果分组计数器大于阈值，则生成通知消息。 在一个实施例中，基于流的目的地地址将标识分组流的信息聚合到聚合高速缓存。

公开(公告)号：US20070100776A1

公开(公告)日：2007-05-03

申请号：US11336584

申请日：2006-01-20

申请人： Pritam Shah ,  Philip Jacobs ,  Rahul Patel

发明人： Pritam Shah ,  Philip Jacobs ,  Rahul Patel

IPC分类号： G06F17/00

CPC分类号： H04L12/14 ,  G06Q30/0283 ,  H04L12/145 ,  H04L12/1485

摘要： A technique performs route optimization of services provided by one or more service providers (SPs) for communication links that are combined in a computer network. According to the novel technique, performance characteristics and statistics (“link data”) for two or more combined links are merged to form link data for a single “virtual combined link.” Route optimization techniques (e.g., priority-based route optimization) may then be applied to one or more virtual combined links based on the combined link data, in addition to link data for zero or more conventional single links (physical or virtual). Illustratively, a route optimization technique may be used in accordance with the present invention to efficiently and accurately minimize costs associated with services provided by a plurality of SPs, wherein each SP charges for utilization of its service based on a tiered pricing structure. The tiered pricing structure comprises one or more tiers, wherein each tier correlates to an amount of service provided by the SP and an associated cost.

摘要翻译： 一种技术对由一个或多个服务提供商（SP）提供的用于组合在计算机网络中的通信链路的服务的路由优化。 根据新技术，将两个或多个组合链路的性能特征和统计（“链路数据”）合并形成单个“虚拟组合链路”的链路数据。 除了零个或多个传统单链路（物理或虚拟）的链路数据之外，路由优化技术（例如，基于优先级的路由优化）可以基于组合的链路数据被应用于一个或多个虚拟组合链路。 说明性地，根据本发明可以使用路由优化技术来有效和准确地最小化与由多个SP提供的服务相关联的成本，其中每个SP基于分层定价结构收费以利用其服务。 分层定价结构包括一个或多个层，其中每个层与由SP提供的服务量和相关联的成本相关。