-
公开(公告)号:US08990619B1
公开(公告)日:2015-03-24
申请号:US13401416
申请日:2012-02-21
CPC分类号: G06F8/65
摘要: Stackable Layer 2 switches may be upgraded through a stateless upgrade procedure that minimizes software upgrade complexity while leveraging the intrinsic redundancy of the network to minimize traffic disruption. Disclosed methods may be targeted to platforms that lack support for other non-disruptive upgrade technologies, but that can leverage the intrinsic network redundancy to minimize traffic impact during a stack upgrade.
摘要翻译: 可堆叠的第2层交换机可以通过无状态升级过程进行升级,从而最大限度地降低软件升级的复杂性,同时利用网络的固有冗余来最大限度地减少流量中断。 公开的方法可能针对的是不支持其他无中断升级技术的平台,但可以利用内在的网络冗余来最大程度地减少堆栈升级过程中的流量影响。
-
公开(公告)号:US20110113482A1
公开(公告)日:2011-05-12
申请号:US12987717
申请日:2011-01-10
IPC分类号: G06F21/00
CPC分类号: H04L63/1441 , H04L29/12028 , H04L61/103
摘要: Automatic filter generation and maintenance comprises detecting, from network packets, an IP address and a first MAC address; the IP address and the first MAC address are used to determine that the IP address and another MAC address that are detected in second network packets is an illegal binding and the other MAC address is different from the first MAC address; causing a network element to create, in an ARP filter, based on the IP address and the first MAC address, rules that cause the network element to prevent an address resolution protocol table from including a binding that includes only one of the IP address and the first MAC address; in response to detecting the IP address and said another MAC address in the second network packets, preventing the address resolution protocol table from including the illegal binding that includes the IP address and the other MAC address.
摘要翻译: 自动过滤器生成和维护包括从网络分组检测IP地址和第一MAC地址; IP地址和第一MAC地址用于确定在第二网络分组中检测到的IP地址和另一MAC地址是非法绑定,另一MAC地址与第一MAC地址不同; 使得网络元件在ARP过滤器中基于IP地址和第一MAC地址创建使网络元素阻止地址解析协议表包括仅包含IP地址和 第一个MAC地址; 响应于检测到第二网络分组中的IP地址和所述另一MAC地址,防止地址解析协议表包括包括IP地址和其他MAC地址的非法绑定。
-
公开(公告)号:US20100054152A1
公开(公告)日:2010-03-04
申请号:US12231635
申请日:2008-09-04
IPC分类号: H04L12/26
CPC分类号: H04L43/0811 , H04L41/0866 , H04L41/0886 , H04L41/12 , H04L43/10
摘要: A method and network device to generate a remote traffic monitoring session using an automated technique to configure the source and destination devices of the monitoring system is disclosed. The method includes discovering a Layer 3 (L3) source device and an L3 destination device and automatically configuring the devices. The L3 source device passes target traffic that will be monitored via the L3 destination device in a remote traffic monitoring session. The method verifies configurations of the L3 source device and the L3 destination device, and determines remote monitoring capabilities common to the L3 source device and the L3 destination device. The method negotiates relevant parameters for the remote traffic monitoring session and establishes the remote traffic monitoring session between the L3 source device and the L3 destination device.
摘要翻译: 公开了一种使用自动化技术来生成远程流量监控会话的方法和网络设备来配置监控系统的源和目的设备。 该方法包括发现三层(L3)源设备和L3目的设备,并自动配置设备。 L3源设备通过远程流量监控会话中将通过L3目标设备进行监控的目标流量。 该方法验证L3源设备和L3目的设备的配置,并确定L3源设备和L3目的设备通用的远程监控功能。 该方法协商远程流量监控会话的相关参数,并建立L3源设备与L3目的设备之间的远程流量监控会话。
-
公开(公告)号:US20070121617A1
公开(公告)日:2007-05-31
申请号:US11289799
申请日:2005-11-29
申请人: Bhushan Kanekar , Marco Foschiano
发明人: Bhushan Kanekar , Marco Foschiano
IPC分类号: H04L12/56
CPC分类号: H04L45/22 , H04L12/4641 , H04L45/04 , H04L45/28 , H04L45/586 , H04L49/552 , H04L61/2015 , H04L69/40
摘要: Disclosed are mechanisms for facilitating the use of DHCP (dynamic host configuration protocol) binding data. In general, certain applications include mechanisms for intercepting data being sent from a node and then determining whether the data corresponds to a valid IP address and MAC address binding. Embodiments of the present invention provide mechanisms for sharing such DHCP binding data between routers (or other type of network devices) in a redundancy group so that any of the routers may take over the data inspection to validate DHCP bindings. In particular aspects of the invention, the DHCP binding data is validated in procedures related to DHCP snooping, dynamic ARP (address resolution protocol) inspection, and the like.
摘要翻译: 公开了促进使用DHCP(动态主机配置协议)绑定数据的机制。 通常,某些应用包括拦截从节点发送的数据,然后确定数据是否对应于有效的IP地址和MAC地址绑定的机制。 本发明的实施例提供了用于在冗余组中的路由器(或其他类型的网络设备)之间共享这样的DHCP绑定数据的机制,使得任何路由器可以接管数据检查以验证DHCP绑定。 在本发明的特定方面,DHCP绑定数据在与DHCP Snooping,动态ARP(地址解析协议)检查等相关的过程中得到验证。
-
公开(公告)号:US08644151B2
公开(公告)日:2014-02-04
申请号:US11805308
申请日:2007-05-22
申请人: Marco Foschiano
发明人: Marco Foschiano
IPC分类号: G01R31/08 , G06F11/00 , G08C15/00 , H04J1/16 , H04J3/14 , H04L1/00 , H04L12/26 , H04L12/28 , H04L12/56
CPC分类号: H04L63/1441 , H04L43/022 , H04L43/026 , H04L43/16
摘要: In one embodiment, an apparatus comprises a first logic configured to determine an identifier associated with a packet and determine a flow count index associated with the identifier, and a flow counter, coupled to the first logic and configured to count a number of packet flows associated with the flow count index. The embodiment also includes a second logic, coupled to the first logic and the flow counter, wherein the second logic is configured analyze the packet to determine if the packet is a part of a new packet flow that has not been counting in the flow counter, and if it has not been counted, incrementing the flow counter.
摘要翻译: 在一个实施例中,一种装置包括第一逻辑,其被配置为确定与分组相关联的标识符并且确定与该标识符相关联的流量计数索引以及流计数器,该流计数器耦合到第一逻辑并且被配置为对相关联的数据包流进行计数 与流量指数。 该实施例还包括耦合到第一逻辑和流计数器的第二逻辑,其中配置第二逻辑以分析分组以确定分组是否是在流计数器中尚未计数的新分组流的一部分, 如果还没有计数,则增加流量计数器。
-
公开(公告)号:US20080291915A1
公开(公告)日:2008-11-27
申请号:US11805308
申请日:2007-05-22
申请人: Marco Foschiano
发明人: Marco Foschiano
IPC分类号: H04L12/56
CPC分类号: H04L63/1441 , H04L43/022 , H04L43/026 , H04L43/16
摘要: In one embodiment, an apparatus comprises a first logic configured to determine an identifier associated with a packet and determine a flow count index associated with the identifier, and a flow counter, coupled to the first logic and configured to count a number of packet flows associated with the flow count index. The embodiment also includes a second logic, coupled to the first logic and the flow counter, wherein the second logic is configured analyze the packet to determine if the packet is a part of a new packet flow that has not been counting in the flow counter, and if it has not been counted, incrementing the flow counter.
摘要翻译: 在一个实施例中,一种装置包括第一逻辑,其被配置为确定与分组相关联的标识符并且确定与该标识符相关联的流量计数索引以及流计数器,该流计数器耦合到第一逻辑并且被配置为对相关联的数据包流进行计数 与流量指数。 该实施例还包括耦合到第一逻辑和流计数器的第二逻辑,其中配置第二逻辑以分析分组以确定分组是否是在流计数器中尚未计数的新分组流的一部分, 如果还没有计数,则增加流量计数器。
-
公开(公告)号:US08995829B2
公开(公告)日:2015-03-31
申请号:US11758407
申请日:2007-06-05
IPC分类号: H04B10/08 , H04B10/079 , H04J3/14 , H04B10/00 , H04J14/02
CPC分类号: H04B10/0793 , H04B10/07955 , H04J3/14 , H04J14/0221
摘要: In one embodiment, a local network device collects local optical power information for at least one of either a local optical transmit interface and a local optical receive interface of the local network device. The local network device may then exchange the local information for remote optical power information of corresponding remote optical receive and transmit interfaces of a remote network device at an opposing end of at least one corresponding optical link (fiber). For example, an exchange may use a point-to-point protocol which may dynamically determine/discover neighboring relationships between capable peer device interfaces and establish a suitable communication exchange between the capable peers. Based on the local information and exchanged remote information, the local network device may calculate an optical power loss of each corresponding optical link.
摘要翻译: 在一个实施例中,本地网络设备收集本地光传输接口和本地网络设备的本地光接收接口中的至少一个的本地光功率信息。 然后,本地网络设备可以在至少一个对应的光链路(光纤)的相对端交换用于远程网络设备的对应的远程光接收和发射接口的远程光功率信息的本地信息。 例如,交换机可以使用点对点协议,其可以动态地确定/发现能力对等设备接口之间的相邻关系,并且在能力对等体之间建立适当的通信交换。 根据本地信息和交换的远程信息,本地网络设备可以计算每个对应的光链路的光功率损耗。
-
公开(公告)号:US07940658B2
公开(公告)日:2011-05-10
申请号:US12231635
申请日:2008-09-04
IPC分类号: H04J3/14 , H04L12/26 , G06F15/173
CPC分类号: H04L43/0811 , H04L41/0866 , H04L41/0886 , H04L41/12 , H04L43/10
摘要: A method and network device to generate a remote traffic monitoring session using an automated technique to configure the source and destination devices of the monitoring system is disclosed. The method includes discovering a Layer 3 (L3) source device and an L3 destination device and automatically configuring the devices. The L3 source device passes target traffic that will be monitored via the L3 destination device in a remote traffic monitoring session. The method verifies configurations of the L3 source device and the L3 destination device, and determines remote monitoring capabilities common to the L3 source device and the L3 destination device. The method negotiates relevant parameters for the remote traffic monitoring session and establishes the remote traffic monitoring session between the L3 source device and the L3 destination device.
摘要翻译: 公开了一种使用自动化技术来生成远程流量监控会话的方法和网络设备来配置监控系统的源和目的设备。 该方法包括发现三层(L3)源设备和L3目的设备,并自动配置设备。 L3源设备通过远程流量监控会话中将通过L3目标设备进行监控的目标流量。 该方法验证L3源设备和L3目的设备的配置,并确定L3源设备和L3目的设备通用的远程监控功能。 该方法协商远程流量监控会话的相关参数,并建立L3源设备与L3目的设备之间的远程流量监控会话。
-
公开(公告)号:US20080304824A1
公开(公告)日:2008-12-11
申请号:US11758407
申请日:2007-06-05
CPC分类号: H04B10/0793 , H04B10/07955 , H04J3/14 , H04J14/0221
摘要: In one embodiment, a local network device collects local optical power information for at least one of either a local optical transmit interface and a local optical receive interface of the local network device. The local network device may then exchange the local information for remote optical power information of corresponding remote optical receive and transmit interfaces of a remote network device at an opposing end of at least one corresponding optical link (fiber). For example, an exchange may use a point-to-point protocol which may dynamically determine/discover neighboring relationships between capable peer device interfaces and establish a suitable communication exchange between the capable peers. Based on the local information and exchanged remote information, the local network device may calculate an optical power loss of each corresponding optical link.
摘要翻译: 在一个实施例中,本地网络设备收集本地光传输接口和本地网络设备的本地光接收接口中的至少一个的本地光功率信息。 然后,本地网络设备可以在至少一个对应的光链路(光纤)的相对端交换用于远程网络设备的对应的远程光接收和发射接口的远程光功率信息的本地信息。 例如,交换机可以使用点对点协议,其可以动态地确定/发现能力对等设备接口之间的相邻关系,并且在能力对等体之间建立适当的通信交换。 根据本地信息和交换的远程信息,本地网络设备可以计算每个对应的光链路的光功率损耗。
-
公开(公告)号:US07200145B1
公开(公告)日:2007-04-03
申请号:US10840212
申请日:2004-05-05
IPC分类号: H04L12/56
CPC分类号: H04L12/4641 , H04L12/467
摘要: The invention uses a layer 2 switch (L2 switch), or bridge, to separate user's message traffic by use of Virtual Local Area Networks (VLANs) defined within the switch. Three new types of ports are defined, “promiscuous” ports “isolated” ports, and “community” ports. Three types of VLANs internal to the switch are defined, “primary” VLANs, “isolated” VLANs and “community” VLANs. The promiscuous ports are connected to layer 3 or layer 4 devices. Isolated ports and community ports are connected to individual user's servers, etc., and maintain traffic for each user separate from other users. The primary VLAN connects to all promiscuous ports, to all isolated ports, and to all community ports. The primary VLAN is a one way connection from promiscuous ports to isolated or community ports. An isolated VLAN connects to all promiscuous ports and to all isolated ports. The isolated VLAN is a one way connection from an isolated port to the promiscuous ports. A community VLAN is defined as connecting to a group of community ports, and also connecting to all of the promiscuous ports. The group of community ports is referred to as a “community” of community ports. A community VLAN is a one way connection from a community of ports to the promiscuous ports, but allows a packet received by one community port to be transmitted out of the switch, through the other community ports connected to that community VLAN.
摘要翻译: 本发明使用第2层交换机(L2交换机)或桥接器来通过使用在交换机内定义的虚拟局域网(VLAN)来分离用户的消息业务。 定义了三种新类型的端口,“混杂”端口“隔离”端口和“社区”端口。 交换机内部的三种VLAN定义为“主”VLAN,“隔离”VLAN和“社区”VLAN。 混杂端口连接到第3层或第4层设备。 隔离的端口和社区端口连接到个人用户的服务器等,并保持每个用户与其他用户分开的流量。 主VLAN连接到所有混杂端口,所有隔离端口和所有社区端口。 主VLAN是从混杂端口到隔离或社区端口的单向连接。 隔离VLAN连接到所有混杂端口和所有隔离端口。 隔离VLAN是从隔离端口到混杂端口的单向连接。 社区VLAN被定义为连接到一组社区端口,并且还连接到所有混杂端口。 社区港口群体被称为社区港口的“社区”。 社区VLAN是从端口群组到混杂端口的单向连接,但允许通过连接到该社区VLAN的其他社区端口将一个社区端口接收的数据包从交换机传输出去。
-
-
-
-
-
-
-
-
-
搜索结果
21 条记录 (耗时 0.014 秒)