公开(公告)号：US07082133B1

公开(公告)日：2006-07-25

申请号：US09654587

申请日：2000-09-01

Applicant: Kar-Wing Edward Lor ,  Mohan Kalkunte ,  Shekhar Ambe

Inventor： Kar-Wing Edward Lor ,  Mohan Kalkunte ,  Shekhar Ambe

IPC: H04L12/28

CPC classification number: H04L47/10 ,  H04L12/5601 ,  H04L12/6402 ,  H04L12/6418 ,  H04L29/06027 ,  H04L47/13 ,  H04L47/2408 ,  H04L47/2433 ,  H04L47/2441 ,  H04L47/2458 ,  H04L47/32 ,  H04L49/109 ,  H04L49/206 ,  H04L49/3072 ,  H04L49/351 ,  H04L49/352 ,  H04L65/103 ,  H04L65/104 ,  H04L65/605 ,  H04L65/80 ,  H04L2012/6408 ,  H04L2012/6464 ,  H04L2012/6472 ,  H04L2012/6481

Abstract: An apparatus and method for switching VOIP packets in a data network, wherein the method includes the steps of receiving a first packet in a network switch and determining if the first packet is a VOIP packet. Further, method includes determining a dynamically negotiated VOIP port for a VOIP session from at least one of the first packet and a second packet received in the network switch, if the first packet is determined to be the VOIP packet. Finally, the method includes the steps of classifying all subsequent VOIP packets corresponding to the dynamically negotiated VOIP port in accordance with predetermined parameters. The apparatus includes a network switch having at least one data port interface controller supporting a plurality of data ports for transmitting and receiving data, and a fast filtering processor in communication with the at least one data port interface. At least one filtering table in communication with the fast filtering processor is provided, wherein the fast filtering processor is configured to snoop packets being transmitted through the network switch to trap a VOIP call setup message, and thereafter, determine a dynamically negotiated VOIP port so that all subsequent VOIP packets can be filtered and assigned an appropriate priority.

Abstract translation: 一种用于在数据网络中切换VOIP分组的装置和方法，其中所述方法包括以下步骤：在网络交换机中接收第一分组，并确定所述第一分组是否为VOIP分组。 此外，方法包括：如果第一分组被确定为VOIP分组，则从第一分组和网络交换机中接收的第二分组中的至少一个确定VOIP会话的动态协商VOIP端口。 最后，该方法包括根据预定参数对与动态协商的VOIP端口对应的所有后续VOIP分组进行分类的步骤。 该装置包括具有支持用于发送和接收数据的多个数据端口的至少一个数据端口接口控制器的网络交换机，以及与该至少一个数据端口接口通信的快速过滤处理器。 提供与快速过滤处理器通信的至少一个过滤表，其中快速过滤处理器被配置为窥探通过网络交换机发送的数据包以捕获VOIP呼叫建立消息，此后，确定动态协商的VOIP端口，使得 所有后续VOIP数据包可以被过滤并分配适当的优先级。

公开(公告)号：US07072335B1

公开(公告)日：2006-07-04

申请号：US09635232

申请日：2000-08-09

Applicant: Shiri Kadambi ,  Shekhar Ambe

Inventor： Shiri Kadambi ,  Shekhar Ambe

IPC: H04L12/28 ,  H04L12/56

CPC classification number: H04L12/5601 ,  H04L12/18 ,  H04L12/42 ,  H04L12/46 ,  H04L12/4625 ,  H04L12/4641 ,  H04L12/4645 ,  H04L12/467 ,  H04L12/56 ,  H04L12/5602 ,  H04L29/06 ,  H04L45/00 ,  H04L45/24 ,  H04L45/245 ,  H04L45/742 ,  H04L47/10 ,  H04L47/125 ,  H04L47/2408 ,  H04L47/2441 ,  H04L47/2458 ,  H04L47/30 ,  H04L47/50 ,  H04L47/522 ,  H04L47/525 ,  H04L47/6205 ,  H04L47/6215 ,  H04L47/6225 ,  H04L47/623 ,  H04L49/102 ,  H04L49/103 ,  H04L49/107 ,  H04L49/108 ,  H04L49/109 ,  H04L49/201 ,  H04L49/205 ,  H04L49/254 ,  H04L49/3009 ,  H04L49/3036 ,  H04L49/3072 ,  H04L49/3081 ,  H04L49/309 ,  H04L49/351 ,  H04L49/352 ,  H04L49/354 ,  H04L49/602 ,  H04L49/606 ,  H04L49/90 ,  H04L49/901 ,  H04L49/9047 ,  H04L49/9057 ,  H04L49/9073 ,  H04L67/10 ,  H04L69/14 ,  H04L69/16 ,  H04L69/161 ,  H04L69/323 ,  H04L69/329 ,  H04L2012/5651 ,  H04L2012/5665 ,  H04L2012/5667 ,  H04L2012/5679 ,  H04L2012/568 ,  H04L2012/5682 ,  H04L2012/5683 ,  Y02D50/30 ,  Y10S707/99931 ,  Y10S707/99945

Abstract: The present invention is directed to a system and method of sending packets between ports on trunked network switches. A trunk connection is provided between first and second switches, with the trunk connection including at least two of the plurality of ports from the first switch being connected to at least two of the plurality of ports of the second switch. A packet is received at an ingress submodule of the first switch, and a lookup is performed on one of a source address and a destination address of the packet based upon a lookup table provided in the ingress submodule. A rules tag bit is then compared to a rules table defining which trunk port of the trunk bundle will be used for communication. The rules tag determines which address bits will be used to identify a trunk port for communication.

Abstract translation: 本发明涉及在集群网络交换机上的端口之间发送分组的系统和方法。 在第一和第二交换机之间提供中继线连接，其中主干连接包括来自第一交换机的多个端口中的至少两个端口连接到第二交换机的多个端口中的至少两个端口。 在第一交换机的入口子模块处接收到分组，并且基于在入口子模块中提供的查找表，对分组的源地址和目的地地址之一执行查找。 然后将规则标签位与规则表进行比较，该规则表定义将用于通信的中继线束的哪个中继端口。 规则标签确定哪些地址位将用于标识用于通信的中继端口。

公开(公告)号：US20050141501A1

公开(公告)日：2005-06-30

申请号：US11065562

申请日：2005-02-25

Applicant: Shiri Kadambi ,  Shekhar Ambe

Inventor： Shiri Kadambi ,  Shekhar Ambe

IPC: H04L12/18 ,  H04L12/42 ,  H04L12/46 ,  H04L12/56 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L12/46 ,  H04L12/18 ,  H04L12/42 ,  H04L12/4625 ,  H04L12/4645 ,  H04L12/467 ,  H04L12/5602 ,  H04L45/24 ,  H04L45/245 ,  H04L45/54 ,  H04L45/742 ,  H04L47/10 ,  H04L47/125 ,  H04L47/2408 ,  H04L47/2441 ,  H04L47/2458 ,  H04L47/286 ,  H04L47/32 ,  H04L49/3081 ,  H04L49/351 ,  H04L49/352 ,  H04L49/354 ,  H04L49/602 ,  H04L49/90 ,  H04L49/9073 ,  H04L67/10 ,  H04L69/14 ,  H04L69/16 ,  H04L69/161 ,  H04L2012/5665

Abstract: A network switch for switching packets from a source to a destination includes a source port for receiving an incoming packet from a source, a destination port that contains a path to a destination for the packet, and a programmable counter unit for counting a number of packets of selected packet types which are received by the switch.

Abstract translation: 用于从源到目的地切换分组的网络交换机包括用于从源接收输入分组的源端口，包含到分组的目的地的路径的目的地端口以及用于对分组数量进行计数的可编程计数器单元 由交换机接收的所选分组类型。

公开(公告)号：US20050063398A1

公开(公告)日：2005-03-24

申请号：US10883978

申请日：2004-07-02

Applicant: Abhijit Choudhury ,  Mathew Kayalackakom ,  Shekhar Ambe ,  Ken Chin

Inventor： Abhijit Choudhury ,  Mathew Kayalackakom ,  Shekhar Ambe ,  Ken Chin

IPC: H04L12/28 ,  H04L12/56 ,  H04L29/06

CPC classification number: H04L63/0428 ,  H04L49/351 ,  H04L49/602 ,  H04L63/08 ,  H04L63/10 ,  H04W88/08 ,  H04W88/12

Abstract: An apparatus provides a hardware-based solution to enable support for L3 switching, network address port translation and application level gateways. The architecture involved in this hardware approach is such that it is scalable for implementation in a variety networking products that fulfill enterprise security and all possible combinations of wired and wireless networking needs, such as access points, access point concentrators, wireless-ready wiring closet or edge switches, and wireless co-processors.

Abstract translation: 一种设备提供基于硬件的解决方案，以支持L3交换，网络地址端口转换和应用级网关。 涉及这种硬件方法的架构使得它可以在实现企业安全的各种网络产品以及有线和无线网络需求的所有可能组合（例如接入点，接入点集中器，无线就绪配线柜或者 边缘交换机和无线协处理器。

公开(公告)号：US20050063381A1

公开(公告)日：2005-03-24

申请号：US10884392

申请日：2004-07-02

Applicant: Mathew Kayalackakom ,  Abhijit Choudhury ,  Ken Chin ,  Shekhar Ambe ,  Joseph Tardo

Inventor： Mathew Kayalackakom ,  Abhijit Choudhury ,  Ken Chin ,  Shekhar Ambe ,  Joseph Tardo

IPC: H04L12/28 ,  H04L12/56 ,  H04L29/06

CPC classification number: H04L63/0485 ,  H04L63/08 ,  H04L63/164 ,  H04L63/166 ,  H04L69/12 ,  H04W12/0013 ,  H04W12/06 ,  H04W80/00 ,  H04W84/12

Abstract: An apparatus provides an integrated single chip solution to solve a multitude of WLAN problems, and especially Switching/Bridging, and Security. In accordance with an aspect of the invention, the apparatus is able to terminate secured tunneled IPSec and L2TP with IPSec traffic. In accordance with a further aspect of the invention, the architecture can handle both tunneled and non-tunneled traffic at line rate, and manage both types of traffic in a unified fashion. The architecture is such that it not only resolves the problems pertinent to WLAN, it is also scalable and useful for building a number of useful networking products that fulfill enterprise security and all possible combinations of wired and wireless networking needs.

Abstract translation: 一种设备提供集成的单芯片解决方案来解决大量的WLAN问题，特别是开关/桥接和安全。 根据本发明的一个方面，该装置能够以IPSec流量终止安全的隧道式IPSec和L2TP。 根据本发明的另一方面，该架构可以以线路速率处理隧道和非隧道业务，并且以统一的方式管理两种类型的业务。 架构不仅可以解决与WLAN有关的问题，而且还可以构建一些实现企业安全性和有线和无线网络需求的所有可能组合的有用的网络产品。

公开(公告)号：US06643261B2

公开(公告)日：2003-11-04

申请号：US09985251

申请日：2001-11-02

Applicant: Shiri Kadambi ,  Shekhar Ambe

Inventor： Shiri Kadambi ,  Shekhar Ambe

IPC: G01R3108

CPC classification number: H04L12/5601 ,  H04L12/18 ,  H04L12/42 ,  H04L12/46 ,  H04L12/4625 ,  H04L12/4641 ,  H04L12/4645 ,  H04L12/467 ,  H04L12/56 ,  H04L12/5602 ,  H04L29/06 ,  H04L45/00 ,  H04L45/24 ,  H04L45/245 ,  H04L45/742 ,  H04L47/10 ,  H04L47/125 ,  H04L47/2408 ,  H04L47/2441 ,  H04L47/2458 ,  H04L47/30 ,  H04L47/50 ,  H04L47/522 ,  H04L47/525 ,  H04L47/6205 ,  H04L47/6215 ,  H04L47/6225 ,  H04L47/623 ,  H04L49/102 ,  H04L49/103 ,  H04L49/107 ,  H04L49/108 ,  H04L49/109 ,  H04L49/201 ,  H04L49/205 ,  H04L49/254 ,  H04L49/3009 ,  H04L49/3036 ,  H04L49/3072 ,  H04L49/3081 ,  H04L49/309 ,  H04L49/351 ,  H04L49/352 ,  H04L49/354 ,  H04L49/602 ,  H04L49/606 ,  H04L49/90 ,  H04L49/901 ,  H04L49/9047 ,  H04L49/9057 ,  H04L49/9073 ,  H04L67/10 ,  H04L69/14 ,  H04L69/16 ,  H04L69/161 ,  H04L69/323 ,  H04L69/329 ,  H04L2012/5651 ,  H04L2012/5665 ,  H04L2012/5667 ,  H04L2012/5679 ,  H04L2012/568 ,  H04L2012/5682 ,  H04L2012/5683 ,  Y02D50/30 ,  Y10S707/99931 ,  Y10S707/99945

Abstract: A data switch for network communications includes at least one first data port interface which supports a plurality of data ports which transmit and receive data at a first data rate. At least one second data port interface is provided; the at least one second data port interface supports a plurality of data ports transmitting and receiving data at a second data rate. A CPU interface is provided, with the CPU interface configured to communicate with a CPU. An internal memory is provided, and communicates with the at least one first data port interface and the at least one second data port interface. A memory management unit is provided, and includes an external memory interface for communicating data from at least one of the first data port interface and the second data port interface and an external memory. A communication channel is provided, with the communication channel communicating data and messaging information between the at least one first data port interface, the at least one second data port interface, the internal memory, and the memory management unit. The memory management unit directs data from one of the first data port and the second data port to one of the internal memory and the external memory interface, according to a predetermined algorithm.

公开(公告)号：US6104696A

公开(公告)日：2000-08-15

申请号：US343718

申请日：1999-06-30

Applicant: Shiri Kadambi ,  Shekhar Ambe

Inventor： Shiri Kadambi ,  Shekhar Ambe

IPC: G06F17/30 ,  H04L12/18 ,  H04L12/28 ,  H04L12/42 ,  H04L12/46 ,  H04L12/50 ,  H04L12/56 ,  H04L29/06 ,  H04L29/08 ,  H04L12/26

CPC classification number: H04L12/5601 ,  H04L12/46 ,  H04L12/4625 ,  H04L12/4641 ,  H04L12/4645 ,  H04L12/467 ,  H04L12/56 ,  H04L12/5602 ,  H04L12/5693 ,  H04L29/06 ,  H04L45/00 ,  H04L45/24 ,  H04L45/245 ,  H04L45/742 ,  H04L47/10 ,  H04L47/125 ,  H04L47/2408 ,  H04L47/2441 ,  H04L47/2458 ,  H04L47/30 ,  H04L47/522 ,  H04L47/525 ,  H04L47/6205 ,  H04L47/6215 ,  H04L47/6225 ,  H04L47/623 ,  H04L49/102 ,  H04L49/103 ,  H04L49/107 ,  H04L49/108 ,  H04L49/109 ,  H04L49/3081 ,  H04L49/309 ,  H04L49/351 ,  H04L49/352 ,  H04L49/606 ,  H04L49/90 ,  H04L49/901 ,  H04L49/9047 ,  H04L49/9057 ,  H04L49/9073 ,  H04L67/10 ,  H04L69/16 ,  H04L69/161 ,  H04L12/18 ,  H04L12/42 ,  H04L2012/5651 ,  H04L2012/5665 ,  H04L2012/5667 ,  H04L2012/5679 ,  H04L2012/568 ,  H04L2012/5682 ,  H04L2012/5683 ,  H04L49/201 ,  H04L49/205 ,  H04L49/254 ,  H04L49/3009 ,  H04L49/3036 ,  H04L49/3072 ,  H04L49/354 ,  H04L49/602 ,  H04L69/14 ,  H04L69/323 ,  H04L69/329 ,  Y02B60/33 ,  Y10S707/99931 ,  Y10S707/99945

Abstract: The present invention is directed to a system and method of sending packets between ports on trunked network switches. The method includes providing a first switch having a plurality of communication ports thereupon, and providing a second switch having a plurality of communication ports thereupon. A trunk connection is provided between the first switch and the second switch, with the trunk connection including at least two of the plurality of ports from the first switch being connected to at least two of the plurality of ports of the second switch. A rules table is provided, defining a set of rules identifying which port of the trunk connection will be used for communication. A packet is sent from a first port on the first switch to a second port on the second switch. The packet is received at an ingress submodule of the first switch, and a lookup is performed on one of a source address and a destination address of the packet based upon a lookup table provided in the ingress submodule. It is then identified that the first switch and second switch are connected with the trunk connection by a trunk bit in a lookup entry matched by the destination address. A rules tag bit in the lookup entry is then identified, and the rules tag bit is then compared to a rules table defining which trunk port of the trunk bundle will be used for communication. The rules tag determines which address bits will be used to identify a trunk port for communication. The packet is then forwarded to the destination address on the identified trunk port. The packet is then stored in memory, and then retrieved from memory with an egress unit. The egress unit then forwards the packet to the identified trunk port.

Abstract translation: 本发明涉及在集群网络交换机上的端口之间发送分组的系统和方法。 该方法包括提供具有多个通信端口的第一交换机，并提供具有多个通信端口的第二交换机。 在第一开关和第二开关之间提供中继线连接，其中包括来自第一开关的多个端口中的至少两个端口的主干连接被连接到第二开关的多个端口中的至少两个端口。 提供了规则表，定义了一组规则，用于标识将用于通信的中继线连接的哪个端口。 分组从第一交换机上的第一端口发送到第二交换机上的第二端口。 在第一交换机的入口子模块处接收分组，并且基于在入口子模块中提供的查找表，对分组的源地址和目的地地址之一执行查找。 然后，识别出第一交换机和第二交换机通过与目的地址匹配的查找条目中的中继线位与中继线连接。 然后识别查找条目中的规则标签位，然后将规则标签位与规则表进行比较，规则表定义将用于通信的中继线束的哪个中继端口。 规则标签确定哪些地址位将用于标识用于通信的中继端口。 然后将数据包转发到所标识的中继端口上的目标地址。 然后将数据包存储在存储器中，然后从出口单元的存储器中检索。 出口单元然后将分组转发到所识别的中继端口。

公开(公告)号：US07856015B2

公开(公告)日：2010-12-21

申请号：US11790906

申请日：2007-04-27

Applicant: Mohan Kalkunte ,  Shekhar Ambe ,  Sam Sampath

Inventor： Mohan Kalkunte ,  Shekhar Ambe ,  Sam Sampath

IPC: H04L12/28

CPC classification number: H04L49/3009 ,  H04L49/351 ,  H04L49/354 ,  H04L49/357

Abstract: A switch is configured to block packets from being transmitted through designated ports. The switch has port bitmap generator configured to obtain a port bitmap and a table is configured to store a block mask indicating which port the packet should not be transmitted. A block mask lookup is configured to determine the block mask for the packet from the table, and a transmit port bitmap generator is configured to determine which ports the packet should be transmitted using the port bitmap and the block mask.

Abstract translation: 交换机被配置为阻止通过指定端口传输数据包。 交换机具有端口位图生成器，其被配置为获得端口位图，并且表被配置为存储指示哪个端口不应该发送该分组的块掩码。 块掩模查找被配置为确定来自表的分组的块掩码，并且发送端口位图生成器被配置为使用端口位图和块掩码来确定应该发送数据包的哪些端口。

公开(公告)号：US07778254B2

公开(公告)日：2010-08-17

申请号：US11698860

申请日：2007-01-29

Applicant: Shiri Kadambi ,  Mohan Kalkunte ,  Shekhar Ambe

Inventor： Shiri Kadambi ,  Mohan Kalkunte ,  Shekhar Ambe

IPC: H04L12/56

CPC classification number: H04L47/20 ,  H04L47/10 ,  H04L47/125 ,  H04L47/30 ,  H04L49/201 ,  H04L49/351 ,  H04L49/552

Abstract: A method for managing congestion in a stack of network switches includes the steps of receiving an incoming packet on a first port of a network switch for transmission to a destination port and determining if the destination port of the packet is a monitored port. Thereafter, the method determines a queue status of the destination port, if the destination port is determined to be a monitored port, and preschedules transmission of the incoming packet to the destination port if the destination port is determined to be a monitored port.

Abstract translation: 一种用于管理网络交换机堆叠中的拥塞的方法包括以下步骤：在网络交换机的第一端口上接收输入分组，以传输到目的端口，并确定分组的目的端口是否为被监控端口。 此后，如果目的地端口被确定为被监视的端口，则该方法确定目的地端口的队列状态，并且如果目的地端口被确定为被监视的端口，则预先将传入的分组传输到目的地端口。

公开(公告)号：US07643481B2

公开(公告)日：2010-01-05

申请号：US11065562

申请日：2005-02-25

Applicant: Shiri Kadambi ,  Shekhar Ambe

Inventor： Shiri Kadambi ,  Shekhar Ambe

IPC: H04L12/56

CPC classification number: H04L12/46 ,  H04L12/18 ,  H04L12/42 ,  H04L12/4625 ,  H04L12/4645 ,  H04L12/467 ,  H04L12/5602 ,  H04L45/24 ,  H04L45/245 ,  H04L45/54 ,  H04L45/742 ,  H04L47/10 ,  H04L47/125 ,  H04L47/2408 ,  H04L47/2441 ,  H04L47/2458 ,  H04L47/286 ,  H04L47/32 ,  H04L49/3081 ,  H04L49/351 ,  H04L49/352 ,  H04L49/354 ,  H04L49/602 ,  H04L49/90 ,  H04L49/9073 ,  H04L67/10 ,  H04L69/14 ,  H04L69/16 ,  H04L69/161 ,  H04L2012/5665

Abstract: A network switch for switching packets from a source to a destination includes a source port for receiving an incoming packet from a source, a destination port that contains a path to a destination for the packet, and a programmable counter unit for counting a number of packets of selected packet types which are received by the switch.

Abstract translation: 用于从源到目的地切换分组的网络交换机包括用于从源接收输入分组的源端口，包含到分组的目的地的路径的目的地端口以及用于对分组数量进行计数的可编程计数器单元 由交换机接收的所选分组类型。