公开(公告)号：US08462820B2

公开(公告)日：2013-06-11

申请号：US12854153

申请日：2010-08-10

Applicant: Roopesh R. Varier ,  David Jacobsen ,  Guy Riddle

Inventor： Roopesh R. Varier ,  David Jacobsen ,  Guy Riddle

IPC: H04L12/28 ,  H04L12/56 ,  H04J3/14 ,  H04J3/06

CPC classification number: H04L45/00 ,  H04L41/0893 ,  H04L41/0896 ,  H04L45/586

Abstract: Methods, apparatuses and systems directed to a network traffic synchronization mechanism facilitating the deployment of network devices in redundant network topologies. In certain embodiments, when a first network device directly receives network traffic, it copies the network traffic and transmits it to at least one partner network device. The partner network device processes the copied network traffic, just as if it had received it directly, but, in one embodiment, discards the traffic before forwarding it on to its destination. In one embodiment, the partner network devices are operative to exchange directly received network traffic. As a result, the present invention provides enhanced reliability and seamless failover. Each unit, for example, is ready at any time to take over for the other unit should a failure occur. As discussed below, the network traffic synchronization mechanism can be applied to a variety of network devices, such as firewalls, gateways, network routers, and bandwidth management devices.

Abstract translation: 针对网络流量同步机制的方法，装置和系统，便于在冗余网络拓扑中部署网络设备。 在某些实施例中，当第一网络设备直接接收网络业务时，它复制网络流量并将其发送到至少一个伙伴网络设备。 合作伙伴网络设备处理复制的网络流量，就像它直接接收到的，但是在一个实施例中，在将流量转发到其目的地之前丢弃该流量。 在一个实施例中，伙伴网络设备可操作以交换直接接收的网络业务。 因此，本发明提供增强的可靠性和无缝故障切换。 例如，如果发生故障，每个单元随时准备接管另一个单元。 如下所述，网络流量同步机制可以应用于各种网络设备，如防火墙，网关，网络路由器和带宽管理设备。

公开(公告)号：US07599283B1

公开(公告)日：2009-10-06

申请号：US10858340

申请日：2004-06-01

Applicant: Roopesh R. Varier ,  James J. Stabile ,  Paul Leslie Archard ,  Guy Riddle ,  David Jacobson

Inventor： Roopesh R. Varier ,  James J. Stabile ,  Paul Leslie Archard ,  Guy Riddle ,  David Jacobson

IPC: G01R31/08 ,  H04L12/28 ,  H04L12/26 ,  H04J3/18 ,  G06F15/173

CPC classification number: H04L41/0896 ,  H04L41/0893 ,  H04L45/00 ,  H04L45/586

Abstract: Synchronization of network traffic compression mechanisms deployed in redundant network topologies. In one implementation, the present invention features the synchronization of compression statistics on redundant network devices to facilitate failover and load sharing operations in the management of data flows traversing computer network environments. In one implementation, compression meta data is appended to synchronization packets and transmitted to one or more partner or redundant network devices. The receiving network devices use the compression meta data to synchronize one or more data flow control processes or data structures. Implementations of the present invention also feature process flows that increase the efficiency of synchronizing compression related operations.

Abstract translation: 部署在冗余网络拓扑中的网络流量压缩机制的同步。 在一个实施方式中，本发明的特征在于冗余网络设备上的压缩统计的同步，以便于在跨越计算机网络环境的数据流的管理中的故障切换和负载共享操作。 在一个实现中，压缩元数据被附加到同步分组并被发送到一个或多个伙伴或冗余网络设备。 接收网络设备使用压缩元数据来同步一个或多个数据流控制过程或数据结构。 本发明的实现还具有提高同步压缩相关操作的效率的处理流程。

公开(公告)号：US07324553B1

公开(公告)日：2008-01-29

申请号：US10676631

申请日：2003-09-30

Applicant: Roopesh R. Varier ,  Guy Riddle ,  David Jacobson

Inventor： Roopesh R. Varier ,  Guy Riddle ,  David Jacobson

IPC: H04J3/16 ,  H04L12/28 ,  G01R31/08

CPC classification number: H04L47/2441 ,  H04L41/0213 ,  H04L41/0803 ,  H04L41/0896 ,  H04L43/00 ,  H04L43/0882 ,  H04L45/38 ,  H04L45/70

Abstract: Methods, apparatuses and systems allowing for dynamic bandwidth management schemes responsive to the state of a plurality of access links in redundant network topologies. In one embodiment, the present invention provides a bandwidth management device that periodically queries routing systems associated with access links, conceptually grouped into a virtual access link, to monitor that load of the access links and, depending on the detected load, adjust the configuration of the bandwidth management device to avoid overloading one or more of the access links. Embodiments of the present invention increases network efficiency and help network traffic to flow more smoothly with higher throughput. In one embodiment, the dynamic link control functionality is invoked when any given access link reaches a threshold capacity level. Assuming that network traffic will scale in the same ratio as presently observed, the present invention calculates the maximum traffic that can be let through so that no network interface or access link is overloaded.

Abstract translation: 允许动态带宽管理方案的响应于冗余网络拓扑中的多个接入链路的状态的方法，装置和系统。 在一个实施例中，本发明提供了一种带宽管理设备，其周期性地查询与接入链路相关联的路由系统，概念上分组为虚拟接入链路，以监视接入链路的负载，并根据检测到的负载调整 带宽管理设备，以避免超载一个或多个接入链路。 本发明的实施例提高了网络效率，并帮助网络流量以更高的吞吐量更平稳地流动。 在一个实施例中，当任何给定的接入链路达到阈值容量级别时，调用动态链路控制功能。 假设网络流量将以与目前观察到的相同的比例缩放，本发明计算出可以通过的最大流量，从而没有网络接口或接入链路过载。

公开(公告)号：US07773530B2

公开(公告)日：2010-08-10

申请号：US12046089

申请日：2008-03-11

Applicant: Roopesh R. Varier ,  David Jacobson ,  Guy Riddle

Inventor： Roopesh R. Varier ,  David Jacobson ,  Guy Riddle

IPC: H04J3/14 ,  H04J3/06 ,  H04L12/28 ,  H04L12/56

CPC classification number: H04L45/00 ,  H04L41/0893 ,  H04L41/0896 ,  H04L45/586

Abstract: Methods, apparatuses and systems directed to a network traffic synchronization mechanism facilitating the deployment of network devices in redundant network topologies. In certain embodiments, when a first network device directly receives network traffic, it copies the network traffic and transmits it to at least one partner network device. The partner network device processes the copied network traffic, just as if it had received it directly, but, in one embodiment, discards the traffic before forwarding it on to its destination. In one embodiment, the partner network devices are operative to exchange directly received network traffic. As a result, the present invention provides enhanced reliability and seamless failover. Each unit, for example, is ready at any time to take over for the other unit should a failure occur. As discussed below, the network traffic synchronization mechanism can be applied to a variety of network devices, such as firewalls, gateways, network routers, and bandwidth management devices.

Abstract translation: 针对网络流量同步机制的方法，装置和系统，便于在冗余网络拓扑中部署网络设备。 在某些实施例中，当第一网络设备直接接收网络业务时，它复制网络流量并将其发送到至少一个伙伴网络设备。 合作伙伴网络设备处理复制的网络流量，就像它直接接收到的，但是在一个实施例中，在将流量转发到其目的地之前丢弃该流量。 在一个实施例中，伙伴网络设备可操作以交换直接接收的网络业务。 因此，本发明提供增强的可靠性和无缝故障切换。 例如，如果发生故障，每个单元随时准备接管另一个单元。 如下所述，网络流量同步机制可以应用于各种网络设备，如防火墙，网关，网络路由器和带宽管理设备。

公开(公告)号：US07453804B1

公开(公告)日：2008-11-18

申请号：US11053596

申请日：2005-02-08

Applicant: Azeem Feroz ,  Wei-Lung Lai ,  Roopesh R. Varier ,  James J. Stabile ,  Jon Eric Okholm

Inventor： Azeem Feroz ,  Wei-Lung Lai ,  Roopesh R. Varier ,  James J. Stabile ,  Jon Eric Okholm

IPC: G01R31/08 ,  H04L12/28 ,  H04J3/16

CPC classification number: H04L47/522 ,  H04L41/0803 ,  H04L43/026 ,  H04L43/0894 ,  H04L47/10 ,  H04L47/2441 ,  H04L47/50 ,  H04L47/6215 ,  H04L47/623 ,  Y02D50/30

Abstract: Methods, apparatuses and systems directed to an aggregate bandwidth utilization control scheme including fair share bandwidth allocation and dynamic allocation of bandwidth in response to detected traffic utilization. In one implementation, the present invention includes a weighted, fair share aggregate bandwidth allocation mechanism that dynamically responds to observed bandwidth utilization to provide unutilized or excess bandwidth to flows and partitions that require it. In another implementation, the present invention features a weighted fair share allocation scheme for hierarchical partition configurations. In other implementations, the present invention provides a per-flow target rate assignment mechanism that prevents spiraling decline of data flow rates.

Abstract translation: 针对包括公平共享带宽分配和响应于检测到的流量利用率的带宽的动态分配的聚合带宽利用控制方案的方法，装置和系统。 在一个实现中，本发明包括加权的，公平的共享聚合带宽分配机制，其动态地响应于观察到的带宽利用率，以向需要它的流和分区提供未使用的或过量的带宽。 在另一实现中，本发明的特征在于用于分层分区配置的加权公平共享分配方案。 在其他实施方式中，本发明提供了一种每流量目标速率分配机制，其防止数据流速的下降。

公开(公告)号：US20080181226A1

公开(公告)日：2008-07-31

申请号：US12046089

申请日：2008-03-11

Applicant: Roopesh R. Varier ,  David Jacobson ,  Guy Riddle

Inventor： Roopesh R. Varier ,  David Jacobson ,  Guy Riddle

IPC: H04L12/56

CPC classification number: H04L45/00 ,  H04L41/0893 ,  H04L41/0896 ,  H04L45/586

Abstract: Methods, apparatuses and systems directed to a network traffic synchronization mechanism facilitating the deployment of network devices in redundant network topologies. In certain embodiments, when a first network device directly receives network traffic, it copies the network traffic and transmits it to at least one partner network device. The partner network device processes the copied network traffic, just as if it had received it directly, but, in one embodiment, discards the traffic before forwarding it on to its destination. In one embodiment, the partner network devices are operative to exchange directly received network traffic. As a result, the present invention provides enhanced reliability and seamless failover. Each unit, for example, is ready at any time to take over for the other unit should a failure occur. As discussed below, the network traffic synchronization mechanism can be applied to a variety of network devices, such as firewalls, gateways, network routers, and bandwidth management devices.

Abstract translation: 针对网络流量同步机制的方法，装置和系统，有助于在冗余网络拓扑中部署网络设备。 在某些实施例中，当第一网络设备直接接收网络业务时，它复制网络流量并将其发送到至少一个伙伴网络设备。 合作伙伴网络设备处理复制的网络流量，就像它直接接收到的，但是在一个实施例中，在将流量转发到其目的地之前丢弃该流量。 在一个实施例中，伙伴网络设备可操作以交换直接接收的网络业务。 因此，本发明提供增强的可靠性和无缝故障切换。 例如，如果发生故障，每个单元随时准备接管另一个单元。 如下所述，网络流量同步机制可以应用于各种网络设备，如防火墙，网关，网络路由器和带宽管理设备。

公开(公告)号：US20110103407A1

公开(公告)日：2011-05-05

申请号：US12854153

申请日：2010-08-10

Applicant: Roopesh R. Varier ,  David Jacobson ,  Guy Riddle

Inventor： Roopesh R. Varier ,  David Jacobson ,  Guy Riddle

IPC: H04J3/06

CPC classification number: H04L45/00 ,  H04L41/0893 ,  H04L41/0896 ,  H04L45/586

Abstract: Methods, apparatuses and systems directed to a network traffic synchronization mechanism facilitating the deployment of network devices in redundant network topologies. In certain embodiments, when a first network device directly receives network traffic, it copies the network traffic and transmits it to at least one partner network device. The partner network device processes the copied network traffic, just as if it had received it directly, but, in one embodiment, discards the traffic before forwarding it on to its destination. In one embodiment, the partner network devices are operative to exchange directly received network traffic. As a result, the present invention provides enhanced reliability and seamless failover. Each unit, for example, is ready at any time to take over for the other unit should a failure occur. As discussed below, the network traffic synchronization mechanism can be applied to a variety of network devices, such as firewalls, gateways, network routers, and bandwidth management devices.

Abstract translation: 针对网络流量同步机制的方法，装置和系统，便于在冗余网络拓扑中部署网络设备。 在某些实施例中，当第一网络设备直接接收网络业务时，它复制网络流量并将其发送到至少一个伙伴网络设备。 合作伙伴网络设备处理复制的网络流量，就像它直接接收到的，但是在一个实施例中，在将流量转发到其目的地之前丢弃该流量。 在一个实施例中，伙伴网络设备可操作以交换直接接收的网络业务。 因此，本发明提供增强的可靠性和无缝故障切换。 例如，如果发生故障，每个单元随时准备接管另一个单元。 如下所述，网络流量同步机制可以应用于各种网络设备，如防火墙，网关，网络路由器和带宽管理设备。

公开(公告)号：US07643418B1

公开(公告)日：2010-01-05

申请号：US11388495

申请日：2006-03-24

Applicant: Roopesh R. Varier ,  Michael J. Quinn ,  Jon Eric Okholm

Inventor： Roopesh R. Varier ,  Michael J. Quinn ,  Jon Eric Okholm

IPC: H04J3/14

CPC classification number: H04L47/10 ,  H04L47/263 ,  H04L47/27 ,  H04L47/283 ,  H04L47/35

Abstract: A method for use in a network device that uses a proportional/integral/derivative (PID)-type algorithm to compute one or more flow control parameters intended to achieve a target rate for a data flow.

Abstract translation: 一种在网络设备中使用的方法，其使用比例/积分/微分（PID）型算法来计算旨在实现数据流的目标速率的一个或多个流控制参数。

公开(公告)号：US09755984B1

公开(公告)日：2017-09-05

申请号：US12250684

申请日：2008-10-14

Applicant: Azeem Feroz ,  Wei-Lung Lai ,  Roopesh R. Varier ,  James J. Stabile ,  Jon Eric Okholm

Inventor： Azeem Feroz ,  Wei-Lung Lai ,  Roopesh R. Varier ,  James J. Stabile ,  Jon Eric Okholm

IPC: H04L12/873 ,  H04L12/863

CPC classification number: H04L47/522 ,  H04L41/0803 ,  H04L43/026 ,  H04L43/0894 ,  H04L47/10 ,  H04L47/2441 ,  H04L47/50 ,  H04L47/6215 ,  H04L47/623 ,  Y02D50/30

Abstract: Methods, apparatuses and systems directed to an aggregate bandwidth utilization control scheme including fair share bandwidth allocation and dynamic allocation of bandwidth in response to detected traffic utilization. In one implementation, the present invention includes a weighted, fair share aggregate bandwidth allocation mechanism that dynamically responds to observed bandwidth utilization to provide unutilized or excess bandwidth to flows and partitions that require it. In another implementation, the present invention features a weighted fair share allocation scheme for hierarchical partition configurations. In other implementations, the present invention provides a per-flow target rate assignment mechanism that prevents spiraling decline of data flow rates.

公开(公告)号：US07500014B1

公开(公告)日：2009-03-03

申请号：US10431010

申请日：2003-05-07

Applicant: David Jacobson ,  Roopesh R. Varier ,  Michael J. Quinn

Inventor： David Jacobson ,  Roopesh R. Varier ,  Michael J. Quinn

IPC: G06F15/173

CPC classification number: H04L41/0677 ,  H04L41/0896 ,  H04L43/026 ,  H04L43/0811 ,  H04L43/0817 ,  H04L43/0882

Abstract: Methods, apparatuses and systems allowing for network link state mirroring in intermediate network devices. A variety of intermediate network devices disposed between two network devices are operationally transparent to the two network devices. For example, a bandwidth management device disposed between a gateway router and a LAN hub or switch, is operationally transparent, to both network devices since the bandwidth management device, pacing or otherwise controlling packet flows, does not alter the essential routing or switching functions of the devices. The present invention promotes or enhances this operational transparency by mirroring the link state detected at a first network interface on other network interfaces. This functionality is highly useful in today's network topologies where information regarding failure of a link can be used to re-route traffic, alert a network administrator, and the like.

Abstract translation: 在中间网络设备中允许网络链路状态镜像的方法，设备和系统。 布置在两个网络设备之间的各种中间网络设备对于两个网络设备在操作上是透明的。 例如，设置在网关路由器和LAN集线器或交换机之间的带宽管理设备对于两个网络设备是可操作地透明的，因为带宽管理设备，起搏或其他控制分组流不改变基本路由或交换功能 设备。 本发明通过镜像在其他网络接口上的第一网络接口处检测到的链路状态来促进或增强该操作透明度。 该功能在当今的网络拓扑中非常有用，其中有关链路故障的信息可用于重新路由流量，提醒网络管理员等。