公开(公告)号：US20050195840A1

公开(公告)日：2005-09-08

申请号：US11070374

申请日：2005-03-02

申请人： Steven Krapp ,  Thomas Cloonan ,  Tim Doiron ,  Dan Hickey

发明人： Steven Krapp ,  Thomas Cloonan ,  Tim Doiron ,  Dan Hickey

IPC分类号： H04L12/28

CPC分类号： H04L63/1458 ,  H04L43/026 ,  H04L43/0894 ,  H04L43/16 ,  H04L47/2475 ,  H04L63/162 ,  H04L63/164 ,  H04L63/166

摘要： Leaky bucket state machines police packets and throttle packets of a stream or streams that are flowing from hosts towards the processor of a switch or router of a network. The throttling is performed by measuring and analyzing the actual flow rate(s) of the streams' packets. The actual flow rate(s) is compared to a predetermined threshold, which may be based on historical or estimated normal traffic patterns. If the actual flow rate exceeds the threshold associated with characteristics that relate packets to certain streams, packets are discarded from the streams having excessive flow rates. By discarding excessive packets having characteristics that correspond to packet information that typically causes a switch/router's processor to execute operations, the effects of a DoS attack are minimized while also minimizing the discarding of legitimate traffic packets.

摘要翻译： 泄漏桶状态机将警报数据包和流量从主机流向网络交换机或路由器的处理器的流或节流包。 通过测量和分析流的分组的实际流速来执行节流。 将实际流量与预定阈值进行比较，其可以基于历史或估计的正常流量模式。 如果实际流速超过与分组与特定流相关联的特性相关联的阈值，则从具有过大流量的流中丢弃分组。 通过丢弃具有通常导致交换机/路由器的处理器执行操作的分组信息的特征的过多分组，DoS攻击的影响被最小化，同时最小化丢弃合法的流量分组。

公开(公告)号：US09699102B2

公开(公告)日：2017-07-04

申请号：US11200313

申请日：2005-08-09

申请人： Thomas J. Cloonan ,  Tim Doiron ,  Max Robbins ,  Carol Ansley ,  Mark Bugajski ,  Russ Enderby ,  Bruce McClelland

发明人： Thomas J. Cloonan ,  Tim Doiron ,  Max Robbins ,  Carol Ansley ,  Mark Bugajski ,  Russ Enderby ,  Bruce McClelland

IPC分类号： H04L12/28 ,  H04L12/801 ,  H04L12/851 ,  H04L12/861 ,  H04L29/06

CPC分类号： H04L47/34 ,  H04L12/2801 ,  H04L47/10 ,  H04L47/2441 ,  H04L49/90 ,  H04L49/9094 ,  H04L69/14 ,  Y02D50/30

摘要： A system for increasing bandwidth to a communication device, comprising:a packet scheduler; and a transmitter; the system configured to operate the packet scheduler to schedule packets of a service flow onto multiple media access control (MAC) channels forming a MAC channel group before operating the transmitter to send the scheduled packets from an origination device toward a destination device, the packet scheduler waiting a maximum group cross channel skew time for an out-of sequence packet, the maximum group cross channel skew time a maximum of multiple pair cross channel skew times, one pair cross channel skew time associated with each pair grouping of MAC channels configured to be formed from the MAC channel group; and the system configured with a setting to allow only a single channel of the multiple channels of the MAC channel group to carry DOCSIS messages, and to override the setting to share at least some of the channels of the MAC channel group among multiple cable modems while the MAC channel group forms a bonded channel.

公开(公告)号：US20060039380A1

公开(公告)日：2006-02-23

申请号：US11200313

申请日：2005-08-09

申请人： Thomas Cloonan ,  Tim Doiron ,  Max Robbins ,  Carol Ansley ,  Mark Bugajski ,  Russ Enderby ,  Bruce McClelland

发明人： Thomas Cloonan ,  Tim Doiron ,  Max Robbins ,  Carol Ansley ,  Mark Bugajski ,  Russ Enderby ,  Bruce McClelland

IPC分类号： H04L12/56

CPC分类号： H04L47/34 ,  H04L12/2801 ,  H04L47/10 ,  H04L47/2441 ,  H04L49/90 ,  H04L49/9094 ,  H04L69/14 ,  Y02D50/30

摘要： A flow bonder at a CMTS and another at a cable modem distribute packets of a service flow over multiple channels and collect them in the downstream direction respectively; vice versa in the upstream direction. The collector uses a service flow identifier and a sequence number identifier inserted by the distributor into each packet of the flow to reassemble the packets into the order they left the distributor. Packets received at the collector are stored to a buffer. If a stored packet is the next to be transmitted, it is transmitted. If not, the collector waits a predetermined period until the next packet to be sent is received. If it is not received during the wait period, the previously stored packet is sent. The wait period is based on the maximum transmission time difference between any two of the multiple channels.

摘要翻译： 在CMTS处的流接合器和电缆调制解调器上的另一个流分布器分配多个信道上的服务流的分组，并分别在下游方向收集它们; 反之亦然。 收集器使用服务流标识符和由分发器插入到流的每个分组中的序列号标识符，以按照它们离开分发者的顺序重新组合分组。 收集器收到的数据包存储到缓冲区。 如果存储的分组是要发送的分组，则发送它。 如果不是，则收集器等待预定的周期，直到接收到要发送的下一个分组。 如果在等待期间没有收到，则发送先前存储的数据包。 等待时间基于多个通道中的任何两个之间的最大传输时间差。