-
公开(公告)号:US08483183B2
公开(公告)日:2013-07-09
申请号:US13528729
申请日:2012-06-20
申请人: Changming Liu , Yong Kang , Jianlin Zeng , Sreekanth Reddy
发明人: Changming Liu , Yong Kang , Jianlin Zeng , Sreekanth Reddy
IPC分类号: H04W4/00
CPC分类号: H04W36/0011 , H04L12/4633 , H04L63/0876 , H04W8/005 , H04W8/02 , H04W8/087 , H04W8/18 , H04W8/26 , H04W12/04 , H04W28/08 , H04W36/0016 , H04W36/0061 , H04W36/0066 , H04W36/08 , H04W36/245 , H04W48/16 , H04W76/12 , H04W76/22 , H04W84/12 , H04W88/08
摘要: Wireless access points detect neighboring wireless access points in different subnets. Upon connecting with a wireless client, a wireless access point determines predictive roaming information for the wireless client. Predictive roaming information identifies the wireless client; its home network subnet; and includes connection information associated with the wireless client. The wireless access point forwards the predictive roaming information associated with a wireless client to neighboring wireless access points while the wireless client is still connected with the wireless access point. Neighboring wireless access points store received predictive roaming information. Upon connecting with a wireless client, a neighboring wireless access point determines if the wireless client matches the stored predictive roaming information. If so, the neighboring wireless access point uses the predictive roaming information to quickly connect with the wireless client and to establish a tunnel to redirect network traffic associated with the wireless client through to its home subnet.
-
2.发明授权Predictive and nomadic roaming of wireless clients across different network subnets 有权不同网络子网的无线客户端的预测和游牧漫游公开(公告)号:US08218502B1
公开(公告)日:2012-07-10
申请号:US12120338
申请日:2008-05-14
申请人: Changming Liu , Yong Kang , Jianlin Zeng , Sreekanth Reddy
发明人: Changming Liu , Yong Kang , Jianlin Zeng , Sreekanth Reddy
CPC分类号: H04W36/0011 , H04L12/4633 , H04L63/0876 , H04W8/005 , H04W8/02 , H04W8/087 , H04W8/18 , H04W8/26 , H04W12/04 , H04W28/08 , H04W36/0016 , H04W36/0061 , H04W36/0066 , H04W36/08 , H04W36/245 , H04W48/16 , H04W76/12 , H04W76/22 , H04W84/12 , H04W88/08
摘要: Wireless access points detect neighboring wireless access points in different subnets. Upon connecting with a wireless client, a wireless access point determines predictive roaming information for the wireless client. Predictive roaming information identifies the wireless client; its home network subnet; and includes connection information associated with the wireless client. The wireless access point forwards the predictive roaming information associated with a wireless client to neighboring wireless access points while the wireless client is still connected with the wireless access point. Neighboring wireless access points store received predictive roaming information. Upon connecting with a wireless client, a neighboring wireless access point determines if the wireless client matches the stored predictive roaming information. If so, the neighboring wireless access point uses the predictive roaming information to quickly connect with the wireless client and to establish a tunnel to redirect network traffic associated with the wireless client through to its home subnet.
摘要翻译: 无线接入点检测不同子网中的相邻无线接入点。 当与无线客户端连接时,无线接入点确定无线客户端的预测漫游信息。 预测漫游信息标识无线客户端; 其家庭网络子网; 并且包括与无线客户端相关联的连接信息。 当无线客户端仍然与无线接入点连接时,无线接入点将与无线客户端相关联的预测漫游信息转发到相邻的无线接入点。 相邻的无线接入点存储接收到的预测漫游信息。 在与无线客户端连接时,相邻无线接入点确定无线客户端是否匹配所存储的预测漫游信息。 如果是这样,相邻的无线接入点使用预测漫游信息来与无线客户端快速连接并且建立隧道以将与无线客户端相关联的网络流量重定向到其归属子网。
-
公开(公告)号:US08127349B2
公开(公告)日:2012-02-28
申请号:US12834726
申请日:2010-07-12
申请人: Changming Liu , Choung-Yaw Shieh , Yonghui Cheng
发明人: Changming Liu , Choung-Yaw Shieh , Yonghui Cheng
CPC分类号: H04L45/00 , H04L12/4633 , H04L29/06 , H04L63/0272 , H04L63/20
摘要: A system establishes a virtual private network (VPN) tunnel to a destination and determines a next hop for the VPN tunnel. The system inserts the next hop, and an address associated with the destination, into an entry of a first table. The system inserts the next hop, and a tunnel identifier corresponding to the established VPN tunnel, into an entry of a second table. The system associates one or more security parameters, used to encrypt traffic sent via the VPN tunnel, with the tunnel identifier.
摘要翻译: 系统建立到目的地的虚拟专用网(VPN)隧道,并确定VPN隧道的下一跳。 系统将下一跳和与目的地相关联的地址插入到第一个表的条目中。 系统将下一跳和对应于已建立的VPN隧道的隧道标识符插入第二个表的条目。 该系统将用于加密经由VPN隧道发送的流量的一个或多个安全参数与隧道标识符相关联。
-
公开(公告)号:US20110310742A1
公开(公告)日:2011-12-22
申请号:US13222568
申请日:2011-08-31
申请人: Changming LIU , Yan Ke
发明人: Changming LIU , Yan Ke
IPC分类号: H04L12/26
CPC分类号: H04L47/10 , H04L47/215 , H04L47/22
摘要: In one aspect the invention provides a method for allocating bandwidth in a network appliance where the network appliance includes a plurality of guaranteed bandwidth buckets used to evaluate when to pass traffic through the network appliance. The method includes providing a shared bandwidth bucket associated with a plurality of the guaranteed bandwidth buckets, allocating bandwidth to the shared bandwidth bucket based on the underutilization of bandwidth in the plurality of guaranteed bandwidth buckets and sharing excess bandwidth developed from the underutilization of the guaranteed bandwidth allocated to the individual guaranteed bandwidth buckets. The step of sharing includes borrowing bandwidth from the shared bandwidth bucket by a respective guaranteed bandwidth bucket to allow traffic to pass immediately through the network appliance.
摘要翻译: 在一个方面,本发明提供了一种在网络设备中分配带宽的方法,其中网络设备包括用于评估何时通过网络设备传送流量的多个保证带宽桶。 该方法包括提供与多个保证带宽桶相关联的共享带宽桶,基于多个保证带宽桶中的带宽利用不足而分配带宽到共享带宽桶,并且分担从保证带宽的利用不足而产生的超额带宽 分配给个人保证带宽桶。 共享的步骤包括通过相应的保证带宽桶从共享带宽桶借用带宽,以允许流量立即通过网络设备。
-
公开(公告)号:US08032653B1
公开(公告)日:2011-10-04
申请号:US09658424
申请日:2000-09-08
申请人: Changming Liu , Yan Ke
发明人: Changming Liu , Yan Ke
CPC分类号: H04L47/10 , H04L47/215 , H04L47/22
摘要: In one aspect the invention provides a method for allocating bandwidth in a network appliance where the network appliance includes a plurality of guaranteed bandwidth buckets used to evaluate when to pass traffic through the network appliance. The method includes providing a shared bandwidth bucket associated with a plurality of the guaranteed bandwidth buckets, allocating bandwidth to the shared bandwidth bucket based on the underutilization of bandwidth in the plurality of guaranteed bandwidth buckets and sharing excess bandwidth developed from the underutilization of the guaranteed bandwidth allocated to the individual guaranteed bandwidth buckets. The step of sharing includes borrowing bandwidth from the shared bandwidth bucket by a respective guaranteed bandwidth bucket to allow traffic to pass immediately through the network appliance.
摘要翻译: 在一个方面,本发明提供了一种在网络设备中分配带宽的方法,其中网络设备包括用于评估何时通过网络设备传送流量的多个保证带宽桶。 该方法包括提供与多个保证带宽桶相关联的共享带宽桶,基于多个保证带宽桶中的带宽利用不足而分配带宽到共享带宽桶,并且分担从保证带宽的利用不足而产生的超额带宽 分配给个人保证带宽桶。 共享的步骤包括通过相应的保证带宽桶从共享带宽桶借用带宽,以允许流量立即通过网络设备。
-
公开(公告)号:US20090292917A1
公开(公告)日:2009-11-26
申请号:US12512098
申请日:2009-07-30
CPC分类号: H04L63/065 , H04L12/185 , H04L12/4633 , H04L63/08
摘要: Secure tunneled multicast transmission and reception through a network is provided. A join request may be received from a second tunnel endpoint, the join request indicating a multicast group to be joined. Group keys may be transmitted to the second tunnel endpoint, where the group keys are based at least on the multicast group. A packet received at the first tunnel endpoint may be cryptographically processed to generate an encapsulated payload. A header may be appended to the encapsulated payload to form an encapsulated packet, wherein the header includes information associated with the second tunnel endpoint. A tunnel may be established between the first tunnel endpoint and the second tunnel endpoint based on the appended header. The encapsulated packet may be transmitted through the tunnel to the second tunnel endpoint. The second tunnel endpoint may receive the encapsulated packet. Cryptographic processing of the encapsulated packet may reveal the packet having a second header. The packet may then be forwarded on an interface toward at least one multicast recipient identified in the second header.
摘要翻译: 提供通过网络进行安全隧道传输和接收。 可以从第二隧道端点接收加入请求,该连接请求指示要加入的多播组。 组密钥可以被发送到第二隧道端点,其中组密钥至少基于多播组。 可以对在第一隧道端点处接收的分组进行密码处理以产生封装的有效载荷。 报头可以附加到封装的有效载荷以形成封装的分组,其中报头包括与第二隧道端点相关联的信息。 可以基于附加的报头在第一隧道端点和第二隧道端点之间建立隧道。 封装的分组可以通过隧道传输到第二隧道端点。 第二隧道端点可以接收封装的分组。 封装分组的加密处理可以揭示具有第二报头的分组。 然后,分组可以在接口上朝向在第二报头中标识的至少一个多播接收机转发。
-
公开(公告)号:US07197660B1
公开(公告)日:2007-03-27
申请号:US10186239
申请日:2002-06-26
申请人: Changming Liu , Yan Ke , Lin Chen , Xiaosong Yang , Gregory M. Lebovitz
发明人: Changming Liu , Yan Ke , Lin Chen , Xiaosong Yang , Gregory M. Lebovitz
IPC分类号: G06F11/00
CPC分类号: G06F11/2035 , G06F11/2097 , H04L45/586 , H04L63/0272
摘要: A system and method for a network security system are provided. The method includes providing a master device and a backup device within a cluster of network security devices, providing the backup device with state information for the master device, detecting failure in the cluster and using the state information to recover from the failure.
摘要翻译: 提供了一种用于网络安全系统的系统和方法。 该方法包括在网络安全设备集群内提供主设备和备份设备,为备份设备提供主设备的状态信息,检测集群中的故障,并使用状态信息从故障中恢复。
-
公开(公告)号:US09002277B2
公开(公告)日:2015-04-07
申请号:US12877048
申请日:2010-09-07
申请人: Huizhao Wang , Chris Scheers , Changming Liu
发明人: Huizhao Wang , Chris Scheers , Changming Liu
CPC分类号: H04W72/085 , H04W16/10 , H04W24/02 , H04W48/16 , H04W72/0493
摘要: Wireless networking devices scan for available channels and gather data about the channels and the RF environment. Using this information, each wireless networking device determines a cost value for each available channel and a quality value for its overall RF neighborhood. Each wireless networking device select the channel with the best cost value as a candidate channel for use. The wireless networking devices may submit channel requests to the arbiter for approval. If two or more wireless networking devices are requesting the same channel, the arbiter assigns the channel to the wireless networking device with the worst RF neighborhood quality. The arbiter informs the wireless networking devices if their channel requests are approved. If a wireless networking device's channel request is not approved, the wireless networking device will rescan the remaining available channels to select a different candidate channel to be approved.
摘要翻译: 无线网络设备扫描可用频道并收集关于频道和RF环境的数据。 使用该信息,每个无线网络设备确定每个可用信道的成本值和其整个RF邻域的质量值。 每个无线网络设备选择具有最佳成本值的信道作为候选信道用于使用。 无线网络设备可以向仲裁者提交信道请求以供批准。 如果两个或多个无线网络设备正在请求相同的信道,则仲裁器将信道分配给具有最差RF邻域质量的无线网络设备。 仲裁器通知无线网络设备,如果他们的频道请求被批准。 如果无线网络设备的信道请求未被批准,则无线网络设备将重新扫描剩余的可用信道以选择要批准的不同候选信道。
-
公开(公告)号:US08614989B2
公开(公告)日:2013-12-24
申请号:US13452437
申请日:2012-04-20
申请人: Changming Liu , Yong Kang , Jianlin Zeng , Sreekanth Reddy
发明人: Changming Liu , Yong Kang , Jianlin Zeng , Sreekanth Reddy
IPC分类号: H04W4/00
CPC分类号: H04W36/0011 , H04L12/4633 , H04L63/0876 , H04W8/005 , H04W8/02 , H04W8/087 , H04W8/18 , H04W8/26 , H04W12/04 , H04W28/08 , H04W36/0016 , H04W36/0061 , H04W36/0066 , H04W36/08 , H04W36/245 , H04W48/16 , H04W76/12 , H04W76/22 , H04W84/12 , H04W88/08
摘要: A network device of a subnet determines predictive roaming information for a wireless client. Predictive roaming information can identify the wireless client and a home network subnet of the wireless client. The network device provides predictive roaming information associated with a wireless client to neighboring subnets. Neighboring subnets store received predictive roaming information, and use the predictive roaming information if the wireless client roams to them.
-
公开(公告)号:US20120304251A1
公开(公告)日:2012-11-29
申请号:US13571544
申请日:2012-08-10
申请人: Changming LIU , Lee Chik Cheung
发明人: Changming LIU , Lee Chik Cheung
IPC分类号: G06F21/00
CPC分类号: H04L63/02 , G06F21/60 , H04L63/0227 , H04L63/10 , H04L67/146
摘要: A security device may be interconnected, via multiple links, between multiple network devices in a network. The firewall device may include multiple input interfaces that receive data units from a first network device destined for a second network device of the multiple network devices, identify a session associated with each of the data units, and process the data units in accordance with the identified sessions and a security policy.
摘要翻译: 安全设备可以经由多个链路在网络中的多个网络设备之间互连。 防火墙设备可以包括多个输入接口,从输入到多个网络设备的第二网络设备的第一网络设备接收数据单元,识别与每个数据单元相关联的会话,并根据所识别的处理数据单元 会话和安全策略。
-
-
-
-
-
-
-
-
-
搜索结果
47 条记录 (耗时 0.019 秒)
