-
公开(公告)号:US06914905B1
公开(公告)日:2005-07-05
申请号:US09595608
申请日:2000-06-16
申请人: Michael Yip , Shehzad T. Merchant , Kenneth T. Yin
发明人: Michael Yip , Shehzad T. Merchant , Kenneth T. Yin
CPC分类号: H04L45/00 , H04L12/4641 , H04L29/12009 , H04L29/12783 , H04L29/12801 , H04L45/586 , H04L61/35 , H04L61/6004
摘要: A method and system for an aggregated virtual local area network (VLAN) architecture in which several VLANs in a network share the same default router address and subnet mask, but remain isolated from one another's network traffic. Instead of the traditional method of assigning one subnet to a VLAN, each VLAN is assigned only a portion of a subnet's IP address space, and is further grouped into a super-VLAN uniquely associated with that subnet. Intra-VLAN traffic is forwarded only to host IP addresses assigned to that same VLAN according to a VLAN identifier carried in the data packet. Inter-VLAN traffic is processed by a virtual router interface which routes the data packet by applying the routing configuration for the subnet uniquely associated with the super-VLAN, according to a super-VLAN identifier carried in the data packet. The routing configuration used by the virtual router interface includes routing protocols, static routes, redundant router protocols and access-lists. Since each VLAN shares the same virtual router interlace, the traditional address overhead of a subnet is minimized, requiring only one default router and subnet mask, as well as only one pair of subnet broadcast addresses for all hosts on the subnet and the subnet itself. The aggregated VLAN architecture provides for the efficient use and management of a network's IP address space.
摘要翻译: 用于聚合虚拟局域网(VLAN)架构的方法和系统,其中网络中的多个VLAN共享相同的默认路由器地址和子网掩码,但是彼此之间的网络流量保持隔离。 代替将一个子网分配给VLAN的传统方法,每个VLAN只分配一部分子网的IP地址空间,并进一步分组成与该子网唯一相关联的超级VLAN。 根据数据包中携带的VLAN标识,VLAN内流量仅转发到分配给同一VLAN的主机IP地址。 VLAN间流量由虚拟路由器接口进行处理,虚拟路由器接口根据数据包携带的超VLAN标识,对与Super-VLAN唯一相关的子网应用路由配置路由数据包。 虚拟路由器接口使用的路由配置包括路由协议,静态路由,冗余路由器协议和访问列表。 由于每个VLAN共享相同的虚拟路由器交错,子网的传统地址开销最小化,只需要一个默认路由器和子网掩码,以及子网上所有主机和子网本身只有一对子网广播地址。 聚合VLAN架构提供了有效利用和管理网络的IP地址空间。
-
公开(公告)号:US06859438B2
公开(公告)日:2005-02-22
申请号:US10728638
申请日:2003-12-05
IPC分类号: H04L12/56
CPC分类号: H04L47/10
摘要: A flexible, policy-based, mechanism for managing, monitoring, and prioritizing traffic within a network and allocating bandwidth to achieve true quality of service (QoS) is provided. According to one aspect of the present invention, a method is provided for managing bandwidth allocation in a network that employs a non-deterministic access protocol, such as an Ethernet network. A packet forwarding device receives information indicative of a set of traffic groups, such as: a MAC address, or IEEE 802.1p priority indicator or 802.1Q frame tag, if the QoS policy is based upon individual station applications; or a physical port if the QoS policy is based purely upon topology. The packet forwarding device additionally receives bandwidth parameters corresponding to the traffic groups. After receiving a packet associated with one of the traffic groups on a first port, the packet forwarding device schedules the packet for transmission from a second port based upon bandwidth parameters corresponding to the traffic group with which the packet is associated. According to another aspect of the present invention, a method is provided for managing bandwidth allocation in a packet forwarding device. The packet forwarding device receives information indicative of a set of traffic groups. The packet forwarding device additionally receives information defining a QoS policy for the traffic groups. After a packet is received by the packet forwarding device, a traffic group with which the packet is associated is identified. Subsequently, rather than relying on an end-to-end signaling protocol for scheduling, the packet is scheduled for transmission based upon the QoS policy for the identified traffic group.
摘要翻译: 提供了一种灵活的基于策略的机制,用于管理,监控和优先化网络中的流量,并分配带宽以实现真正的服务质量(QoS)。 根据本发明的一个方面,提供一种用于管理采用诸如以太网之类的非确定性接入协议的网络中的带宽分配的方法。 如果QoS策略基于个别站应用,则分组转发设备接收指示一组业务组的信息,诸如:MAC地址或IEEE 802.1p优先级指示符或802.1Q帧标签; 或物理端口,如果QoS策略完全基于拓扑。 分组转发设备另外接收对应于业务组的带宽参数。 在接收到与第一端口上的一个流量组相关联的分组后,分组转发设备基于与分组所关联的业务组相对应的带宽参数,从第二端口调度分组以进行传输。 根据本发明的另一方面,提供一种用于管理分组转发设备中的带宽分配的方法。 分组转发设备接收指示一组业务组的信息。 分组转发设备另外接收定义业务组的QoS策略的信息。 在分组转发设备接收到分组后,识别与该分组相关联的业务组。 随后,不是依靠用于调度的端到端信令协议,而是基于所识别的业务组的QoS策略来调度分组以进行传输。
-
公开(公告)号:US06766482B1
公开(公告)日:2004-07-20
申请号:US09999796
申请日:2001-10-31
申请人: Michael Yip , Sunil P. Shah , Michelle M. Ragonese
发明人: Michael Yip , Sunil P. Shah , Michelle M. Ragonese
IPC分类号: G01R3128
CPC分类号: H04L12/437
摘要: A method and apparatus is provided for automatic protection switching in a ring network by creating a protection domain having a control vlan and protected data vlans and designating a master node and transit nodes connected by a primary port and a secondary port. The master node blocks the secondary port for data vlan traffic until it detects a fault either by notice from a transit node or by polling. When a fault is detected, the master node unblocks the secondary port for data vlan traffic. When the fault is restored, the transit node temporarily blocks the restored port to data vlan traffic thereby preventing a loop. Each time the secondary port is blocked and unblocked, the forwarding databases on all the nodes are flushed.
摘要翻译: 提供了一种用于通过创建具有控制VLAN和受保护数据卷的保护域并指定主节点和由主端口和辅助端口连接的传输节点来在环网中自动保护交换的方法和装置。 主节点阻止数据VLAN流量的辅助端口,直到通过传输节点的通知或轮询检测到故障为止。 检测到故障时,主节点解除阻塞辅助端口的数据VLAN流量。 当故障恢复时,传输节点临时将恢复的端口阻塞到数据VLAN流量,从而防止环路。 每次次要端口被阻塞和解除阻塞时,都会刷新所有节点上的转发数据库。
-
公开(公告)号:US08751647B1
公开(公告)日:2014-06-10
申请号:US09895144
申请日:2001-06-30
申请人: Michael Yip , Indranil Bagchi , Brian Bunker , Michael Polo
发明人: Michael Yip , Indranil Bagchi , Brian Bunker , Michael Polo
IPC分类号: G06F15/16 , G06F15/173 , H04L12/46 , H04L29/12
CPC分类号: H04L12/4641 , H04L29/12226 , H04L29/12245 , H04L61/2015 , H04L63/083
摘要: A method and apparatus is provided to control the admission of a user to a network by preventing a port through which the user connects to the network from forwarding data packets until the user is authorized. A network login controller operates in conjunction with a user interface to receive a user identification data from the port user. The network login controller further operates in conjunction with an authorization server to authenticate the user by sending a user authentication request containing the user identification data to the authentication server. The network login controller grants or denies permission to the user to access the network based on the user authentication response from the authentication server. If permission is granted, then the network login controller unblocks the port through which the user is connected to place it in packet-forwarding mode. If permission is denied, then the port remains in packet non-forwarding mode (i.e. it remains blocked).
摘要翻译: 提供了一种方法和装置,用于通过防止用户连接到网络的端口转发数据分组直到用户被授权来控制用户对网络的准入。 网络登录控制器与用户界面一起操作以从端口用户接收用户标识数据。 网络登录控制器还与授权服务器一起操作,通过向认证服务器发送包含用户标识数据的用户认证请求来认证用户。 网络登录控制器根据来自认证服务器的用户认证响应,授予或拒绝用户访问网络的权限。 如果许可被授权,则网络登录控制器解除阻止用户连接的端口将其置于分组转发模式。 如果权限被拒绝,则端口保持在分组不转发模式(即它保持阻塞)。
-
公开(公告)号:US07792058B1
公开(公告)日:2010-09-07
申请号:US11050165
申请日:2005-02-02
CPC分类号: H04L45/00 , H04L12/4641 , H04L29/12009 , H04L29/12783 , H04L29/12801 , H04L45/586 , H04L61/35 , H04L61/6004
摘要: A method and system for an aggregated virtual local area network (VLAN) architecture in which several VLANs in a network share the same default router address and subnet mask, but remain isolated from one another's network traffic. Instead of the traditional method of assigning one subnet to a VLAN, each VLAN is assigned only a portion of a subnet's IP address space, and is further grouped into a super-VLAN uniquely associated with that subnet. Intra-VLAN traffic is forwarded only to host IP addresses assigned to that same VLAN according to a VLAN identifier carried in the data packet. Inter-VLAN traffic is processed by a virtual router interface which routes the data packet by applying the routing configuration for the subnet uniquely associated with the super-VLAN, according to a super-VLAN identifier carried in the data packet.
摘要翻译: 用于聚合虚拟局域网(VLAN)架构的方法和系统,其中网络中的多个VLAN共享相同的默认路由器地址和子网掩码,但是彼此之间的网络流量保持隔离。 代替将一个子网分配给VLAN的传统方法,每个VLAN只分配一部分子网的IP地址空间,并进一步分组成与该子网唯一相关联的超级VLAN。 根据数据包中携带的VLAN标识,VLAN内流量仅转发到分配给同一VLAN的主机IP地址。 VLAN间流量由虚拟路由器接口进行处理,虚拟路由器接口根据数据包携带的超VLAN标识,对与Super-VLAN唯一相关的子网应用路由配置路由数据包。
-
36.发明申请Methods for Utilizing the Resources of a Digital Display Device by a Computer 审中-公开利用计算机数字显示设备资源的方法公开(公告)号:US20100205146A1
公开(公告)日:2010-08-12
申请号:US12684107
申请日:2010-01-07
申请人: Yong Wan , Jinsong Han , Qiang Wang , Zhao Rong Pan , Michael Yip
发明人: Yong Wan , Jinsong Han , Qiang Wang , Zhao Rong Pan , Michael Yip
CPC分类号: G06Q10/109 , G06F11/1456 , G06F11/1464 , G09G2380/16
摘要: A method for utilizing the resources of a digital display device (“DDD”) for use by a computer comprises the steps of: connecting the DDD to the computer; displaying one or more images on the DDD, wherein the images are transmitted from the computer to the DDD; updating and storing PIM information on the DDD, wherein the PIM information is retrieved from the computer; and generating by the DDD one or more alerts based on the updated PIM information to be displayed on the DDD.
摘要翻译: 一种利用计算机使用的数字显示装置(“DDD”)的资源的方法包括以下步骤:将DDD连接到计算机; 在DDD上显示一个或多个图像,其中图像从计算机传送到DDD; 在DDD上更新和存储PIM信息,其中从计算机检索PIM信息; 并且通过DDD生成基于要在DDD上显示的更新的PIM信息的一个或多个警报。
-
37.发明申请公开(公告)号:US20090295787A1
公开(公告)日:2009-12-03
申请号:US12131908
申请日:2008-06-02
申请人: Ting Yao , Jiping Zhu , Xuyun Chen , Michael Yip
发明人: Ting Yao , Jiping Zhu , Xuyun Chen , Michael Yip
IPC分类号: G06F17/00
CPC分类号: G06T11/00 , G06T2210/22
摘要: The present invention relates to methods for dynamically displaying an image on a display window of a digital display device, such as a digital picture frame. These methods may include the following steps: identifying one or more objects of interest in a source image; defining a crop area as a function of the one or more objects of interest; decoding the crop area of the source image into a canvas image; and displaying the selected area of the canvas image.
摘要翻译: 本发明涉及用于在诸如数字图像帧的数字显示装置的显示窗口上动态显示图像的方法。 这些方法可以包括以下步骤:识别源图像中的一个或多个感兴趣对象; 将作物区域定义为所述一个或多个感兴趣对象的函数; 将源图像的裁剪区域解码为画布图像; 并显示画布图像的所选区域。
-
38.发明授权Methods and systems for associating and translating virtual local area network (VLAN) tags 有权用于关联和翻译虚拟局域网(VLAN)标签的方法和系统公开(公告)号:US07558273B1
公开(公告)日:2009-07-07
申请号:US10745412
申请日:2003-12-23
IPC分类号: H04L12/28
CPC分类号: H04L12/4645
摘要: Methods and systems for associating and translating VLAN tags are disclosed. In one implementation, multiple different member VLAN tags are associated with a translation VLAN tag. When a frame addressed to an unknown MAC address and containing one of the member VLAN tags is received, the frame is flooded to the translation VLAN and to ports associated with the source member VLAN other than the originating port. In the copy sent to the translation VLAN, the VLAN tag is replaced with the tag of the translation VLAN, for tagged ports. For untagged ports, the input VLAN tag may simply be stripped from the frames. When a layer 2 frame addressed to an unknown MAC address and containing the translation VLAN tag is received, the layer 2 frame is flooded to each of the member VLANs and to ports of the translation VLAN other than the originating port. The VLAN tag in the frames forwarded to each of the member VLANs may be replaced with the VLAN tag corresponding to each member VLAN, for tagged ports. For untagged ports, the input VLAN tag may simply be stripped from the frames. MAC address learning for frames received from member VLANs extends to the translation VLAN but not to other member VLANs. MAC address learning for frames from the translation VLAN extends to the member VLANs.
摘要翻译: 披露了关联和翻译VLAN标签的方法和系统。 在一个实现中,多个不同的成员VLAN标签与转换VLAN标签相关联。 当收到寻址到未知MAC地址并包含其中一个成员VLAN标签的帧时,该帧将被泛洪到转换VLAN以及与源端口不同的源端口关联的端口。 在发送到转换VLAN的副本中,VLAN标签被替换为转换VLAN的标签,用于标记端口。 对于未标记的端口,可以简单地从帧中剥离输入VLAN标签。 当接收到一个寻址到未知MAC地址并包含转换VLAN标签的二层帧时,第二层帧被泛洪到每个成员VLAN和除了始发端口之外的转换VLAN的端口。 转发到每个成员VLAN的帧中的VLAN标签可以替换为与每个成员VLAN相对应的VLAN标签,用于标记端口。 对于未标记的端口,可以简单地从帧中剥离输入VLAN标签。 从成员VLAN接收到的帧的MAC地址学习扩展到转换VLAN,但不扩展到其他成员VLAN。 来自转换VLAN的帧的MAC地址学习扩展到成员VLAN。
-
公开(公告)号:US20080043628A1
公开(公告)日:2008-02-21
申请号:US11924523
申请日:2007-10-25
申请人: David Parker , Eric Swenson , Michael Yip , Christopher Young
发明人: David Parker , Eric Swenson , Michael Yip , Christopher Young
IPC分类号: G06F11/00
CPC分类号: H04L69/16 , H04L47/10 , H04L47/2441 , H04L47/2458 , H04L47/31 , H04L49/90 , H04L69/161 , H04L69/22
摘要: A packet processing system architecture and method are provided. According to a first aspect of the invention, packet parser functions are distributed throughout a packet processing system comprising a packet classification system and a packet modification system. According to a second aspect of the invention, an egress mirroring function is provided to the system. According to a third aspect of the invention, a multi-dimensional quality of service indicator for a packet is provided. According to a fourth aspect of the invention, a cascaded combination of multiple, replicated packet processing systems is used to process a packet. A fifth aspect of the invention involves any combination of one or more of the foregoing.
摘要翻译: 提供了一种分组处理系统架构和方法。 根据本发明的第一方面,分组解析器功能分布在包括分组分类系统和分组修改系统的分组处理系统中。 根据本发明的第二方面,向系统提供出口镜像功能。 根据本发明的第三方面,提供了一种用于分组的多维度服务质量指示符。 根据本发明的第四方面,使用多个复制分组处理系统的级联组合来处理分组。 本发明的第五方面涉及一种或多种前述的任何组合。
-
公开(公告)号:US07245619B1
公开(公告)日:2007-07-17
申请号:US10160141
申请日:2002-05-31
申请人: Tao Guan , Leo Huber , Michael Yip
发明人: Tao Guan , Leo Huber , Michael Yip
IPC分类号: H04L12/28 , H04L12/56 , G06F15/173
摘要: A method and apparatus for managing routes. A route manager receives a route to a destination, the route having been discovered by a routing protocol application. The route manager maintains the route in a route table and distributes the route to a second routing protocol application. In addition, the route manager maintains a subset of the routes in a second route table and distributes routes to a subsidiary application not having access to the routing protocol applications. The route manager recovers routes when a routing protocol application becomes inoperable by setting a timer when the routing protocol application becomes inoperable and purging routes when the route manager cannot confirm the routes upon expiration of the timer.
摘要翻译: 一种管理路线的方法和装置。 路由管理器接收到目的地的路由,该路由已被路由协议应用发现。 路由管理器将路由维护在路由表中,并将路由分发到第二路由协议应用。 此外,路由管理器维护第二路由表中的路由的子集,并将路由分发给不具有对路由协议应用的访问的辅助应用。 当路由协议应用无法操作时,路由管理器通过在路由协议应用无法操作时设置定时器,并在路由管理器在定时器到期后无法确认路由时清除路由,从而恢复路由。
-
-
-
-
-
-
-
-
-
搜索结果
44 条记录 (耗时 0.027 秒)
