利索-全球专利检索

  1. 登录
  2. 注册

搜索结果

119 条记录 (耗时 0.027 秒)

    Method and apparatus for avoiding unwanted data packets
    1.
    发明授权
    Method and apparatus for avoiding unwanted data packets 有权
    用于避免不需要的数据分组的方法和装置

    公开(公告)号:US08576845B2

    公开(公告)日:2013-11-05

    申请号:US13059515

    申请日:2008-08-22

    申请人: András Császár Lars Westberg Mats Näslund Lars G. Magnusson

    发明人: András Császár Lars Westberg Mats Näslund Lars G. Magnusson

    IPC分类号: H04L12/26

    CPC分类号: H04L45/00 H04L9/083 H04L29/12066 H04L29/12207 H04L45/50 H04L61/1511 H04L61/20 H04L63/08 H04L63/14

    摘要: Method and apparatus for controlling transmission of data packets in a packet-switched network. When a first end-host (A) sends an address query to a DNS system (300) for a second end-host, the DNS system responds by providing a sender key created from a destination key registered for the second end-host, if the first end-host is authorized to send packets to the second end-host. Thereby, the first end-host, if authorized, is able to get across data packets to the second end-host by attaching a sender tag (TAG) generated from the sender key, as ingress tag to each transmitted data packet. A router (302) in the network matches an ingress tag in a received packet with entries in a forwarding table and sends out the packet on an output port (X) according to a matching entry. Otherwise, the router discards the packet if no matching entry is found in the table.

    摘要翻译: 用于控制分组交换网络中数据分组传输的方法和装置。 当第一终端主机(A)向第二终端主机的DNS系统(300)发送地址查询时,DNS系统通过提供从为第二终端主机注册的目的地密钥创建的发送者密钥进行响应,如果 第一个终端主机被授权将数据包发送到第二个终端主机。 因此,如果授权,第一终端主机能够通过将从发送方密钥生成的发送者标签(TAG)作为入口标签附加到每个发送的数据分组,来跨越数据分组到达第二终端主机。 网络中的路由器(302)将接收到的分组中的入口标签与转发表中的条目匹配,并根据匹配条目在输出端口(X)上发送分组。 否则,如果表中没有匹配的条目,路由器将丢弃该数据包。

    Method and apparatuses for allowing a nomadic terminal to access a home network on layer 2 level
    2.
    发明授权
    Method and apparatuses for allowing a nomadic terminal to access a home network on layer 2 level 有权
    用于允许游牧终端在层2级访问家庭网络的方法和装置

    公开(公告)号:US09225548B2

    公开(公告)日:2015-12-29

    申请号:US12676663

    申请日:2007-09-07

    申请人: András Császár János Harmatos Attila Mihaly Oktavian Papp Lars Westberg

    发明人: András Császár János Harmatos Attila Mihaly Oktavian Papp Lars Westberg

    IPC分类号: H04W4/00 H04L12/46

    CPC分类号: H04L12/4641 H04L12/4633

    摘要: A method of allowing a nomadic terminal to access a home network on the Layer 2 level. The method comprises connecting said terminal to a remote access network via an access point, the remote access network being connected to an operator's backbone network via a remote access router. Signalling is exchanged between the access point and an authentication server within the backbone network in order to authenticate the terminal to the authentication server and, following successful authentication, a Layer 2 tunnel extending across the backbone network is established for the purpose of connecting said nomadic terminal to the home network.

    摘要翻译: 允许游牧终端访问第2层级的家庭网络的方法。 该方法包括经由接入点将所述终端连接到远程接入网络,所述远程接入网络经由远程接入路由器连接到运营商的骨干网络。 在接入点和骨干网内的认证服务器之间交换信令,以便向认证服务器认证终端,并且在成功认证之后,建立跨越骨干网的两层隧道,用于连接所述游牧终端 到家庭网络。

    SETTING UP A VIRTUAL PRIVATE NETWORK USING VIRTUAL LAN IDENTIFIERS
    3.
    发明申请
    SETTING UP A VIRTUAL PRIVATE NETWORK USING VIRTUAL LAN IDENTIFIERS 审中-公开
    使用虚拟LAN标识符设置虚拟私有网络

    公开(公告)号:US20110032843A1

    公开(公告)日:2011-02-10

    申请号:US12936972

    申请日:2008-04-10

    申请人: Oktavian Papp András Császár Attila Mihály Lars Westberg Gabor Toth

    发明人: Oktavian Papp András Császár Attila Mihály Lars Westberg Gabor Toth

    IPC分类号: H04L12/28

    CPC分类号: H04L12/4666 H04L45/02 H04L45/04 H04L45/50 H04L45/66

    摘要: A method for setting up a VPN is described. The VPN is set up in a backbone network having a plurality of PE routers for controlling the transfer of IP traffic to and from CE routers in satellite networks. In a PE router, a VRF is configured for the VPN and populated with local routes for the VPN. A VLAN identifier is assigned for the VPN, and advertised to other PE routers in the backbone network. Alternatively, the VLAN identifier may be determined by a predetermined mapping algorithm so it will be unique to the VPN in all PE routers, in which case the advertisement to other PE routers may contain an implicit NULL label.

    摘要翻译: 描述了一种设置VPN的方法。 VPN设置在具有多个PE路由器的骨干网络中,用于控制到卫星网络中的CE路由器的IP业务的传输。 在PE路由器中,为VPN配置VRF,并为VPN填充本地路由。 为VPN分配VLAN标识符,并通告给骨干网中的其他PE路由器。 或者,VLAN标识符可以由预定的映射算法来确定,所以在所有PE路由器中VPN将是唯一的,在这种情况下,到其他PE路由器的广告可以包含隐式NULL标签。

    Tunnel gateway managed caching architecture
    6.
    发明授权
    Tunnel gateway managed caching architecture 有权
    隧道网关管理缓存架构

    公开(公告)号:US08767728B2

    公开(公告)日:2014-07-01

    申请号:US13037705

    申请日:2011-03-01

    申请人: Attila Mihály András Császár Lars Westberg

    发明人: Attila Mihály András Császár Lars Westberg

    IPC分类号: H04L12/28 H04L12/56

    CPC分类号: H04W8/082 H04L12/4633 H04L67/2842

    摘要: In an access network, a tunnel gateway (TGW) managed network caching architecture is proposed. The proposed TGW receives a terminal request directed to a data server for a flow of data. The terminal request is forwarded to the TGW through a tunnel from a tunnel endpoint located below the TGW. The TGW selects a network cache to handle the data traffic of the flow requested by the requesting terminal. The TGW then redirects the terminal request to the selected network cache to provide the requested service. The TGW redirects the terminal request through a tunnel whose endpoint is the selected network cache.

    摘要翻译: 在接入网中,提出了一种隧道网关(TGW)管理的网络缓存架构。 所提出的TGW接收针对数据服务器的数据流的终端请求。 终端请求通过位于TGW下方的隧道端点的隧道转发到TGW。 TGW选择网络缓存来处理由请求终端请求的流的数据业务。 然后,TGW将终端请求重定向到所选择的网络缓存以提供所请求的服务。 TGW通过其端点是所选网络缓存的隧道重定向终端请求。

    Technique of processing network traffic that has been sent on a tunnel
    7.
    发明授权
    Technique of processing network traffic that has been sent on a tunnel 有权
    处理在隧道上发送的网络流量的技术

    公开(公告)号:US09204336B2

    公开(公告)日:2015-12-01

    申请号:US13817186

    申请日:2010-08-17

    申请人: Attila Mihály András Császár Lars Westberg

    发明人: Attila Mihály András Császár Lars Westberg

    IPC分类号: H04L12/46 H04L29/12 H04W28/06 H04W8/08

    CPC分类号: H04W28/065 H04L12/4633 H04L29/12367 H04L29/12462 H04L61/2514 H04L61/255 H04W8/082

    摘要: A technique of processing network traffic that is sent on a tunnel between a first tunnel and a second tunnel node in a communication network is provided. A device implementation of this technique comprises an enhanced network address translation, eNAT, component (10) comprising a first obtaining unit (14) configured to obtain an uplink data packet (26) from an uplink tunnel from the first tunnel node to the second tunnel node, the uplink data packet comprising a first network address associated with the first tunnel node, a second network address associated with the second tunnel node, a first identifier associated with the uplink tunnel an internal network address, and an internal port number, a second obtaining unit (16) configured to obtain a second identifier associated with a downlink tunnel from the second tunnel node to the first tunnel node, wherein the downlink tunnel is related to the uplink tunnel, a checking unit (18) configured to check, based on the second network address and the first identifier, whether a database entry comprising the second network address and the first identifier exists in a database (12), an updating unit (20) configured to update the database (12) in case the checked database entry does not exist in the database (12), and a manipulating unit (22) configured to manipulate the uplink data packet (26).

    摘要翻译: 提供了一种处理在通信网络中的第一隧道和第二隧道节点之间的隧道上发送的网络流量的技术。 该技术的设备实现包括增强的网络地址转换,eNAT,组件(10),包括第一获取单元(14),第一获取单元(14)被配置为从第一隧道节点到第二隧道的上行链路隧道获取上行链路数据分组(26) 节点,所述上行链路数据分组包括与所述第一隧道节点相关联的第一网络地址,与所述第二隧道节点相关联的第二网络地址,与所述上行链路隧道相关联的第一标识符,内部网络地址,以及内部端口号,第二 获取单元(16),被配置为获得与从所述第二隧道节点到所述第一隧道节点的下行链路隧道相关联的第二标识符,其中所述下行链路隧道与所述上行链路隧道相关;检查单元(18),被配置为基于 第二网络地址和第一标识符,包括第二网络地址的数据库条目和第一标识符是否存在于数据库(12)中,更新 单元(20),被配置为在数据库(12)中不存在所检查的数据库条目的情况下更新数据库(12);以及操纵单元(22),其被配置为操纵上行链路数据分组(26)。

    Technique of Processing Network Traffic That Has Been Sent on a Tunnel
    8.
    发明申请
    Technique of Processing Network Traffic That Has Been Sent on a Tunnel 有权
    在隧道上发送的网络流量处理技术

    公开(公告)号:US20130258963A1

    公开(公告)日:2013-10-03

    申请号:US13817186

    申请日:2010-08-17

    申请人: Attila Mihály András Császár Lars Westberg

    发明人: Attila Mihály András Császár Lars Westberg

    IPC分类号: H04W28/06

    CPC分类号: H04W28/065 H04L12/4633 H04L29/12367 H04L29/12462 H04L61/2514 H04L61/255 H04W8/082

    摘要: A technique of processing network traffic that is sent on a tunnel between a first tunnel and a second tunnel node in a communication network is provided. A device implementation of this technique comprises an enhanced network address translation, eNAT, component (10) comprising a first obtaining unit (14) configured to obtain an uplink data packet (26) from an uplink tunnel from the first tunnel node to the second tunnel node, the uplink data packet comprising a first network address associated with the first tunnel node, a second network address associated with the second tunnel node, a first identifier associated with the uplink tunnel an internal network address, and an internal port number, a second obtaining unit (16) configured to obtain a second identifier associated with a downlink tunnel from the second tunnel node to the first tunnel node, wherein the downlink tunnel is related to the uplink tunnel, a checking unit (18) configured to check, based on the second network address and the first identifier, whether a database entry comprising the second network address and the first identifier exists in a database (12), an up-dating unit (20) configured to update the database (12) in case the checked database entry does not exist in the database (12), and a manipulating unit (22) configured to manipulate the uplink data packet (26).

    摘要翻译: 提供了一种处理在通信网络中的第一隧道和第二隧道节点之间的隧道上发送的网络流量的技术。 该技术的设备实现包括增强的网络地址转换,eNAT,组件(10),包括第一获取单元(14),第一获取单元(14)被配置为从第一隧道节点到第二隧道的上行链路隧道获取上行链路数据分组(26) 节点,所述上行链路数据分组包括与所述第一隧道节点相关联的第一网络地址,与所述第二隧道节点相关联的第二网络地址,与所述上行链路隧道相关联的第一标识符,内部网络地址,以及内部端口号,第二 获取单元(16),被配置为获得与从所述第二隧道节点到所述第一隧道节点的下行链路隧道相关联的第二标识符,其中所述下行链路隧道与所述上行链路隧道相关;检查单元(18),被配置为基于 第二网络地址和第一标识符,数据库(12)中是否存在包括第二网络地址的数据库条目和第一标识符, 单元(20),被配置为在数据库(12)中不存在所检查的数据库条目的情况下更新数据库(12);以及操纵单元(22),其被配置为操纵上行链路数据分组(26)。

    TECHNIQUE FOR ADDRESS RESOLUTION IN A DATA TRANSMISSION NETWORK
    9.
    发明申请
    TECHNIQUE FOR ADDRESS RESOLUTION IN A DATA TRANSMISSION NETWORK 审中-公开
    数据传输网络中地址解析的技术

    公开(公告)号:US20100272107A1

    公开(公告)日:2010-10-28

    申请号:US12744876

    申请日:2007-11-26

    申请人: Oktavian Papp András Császár Attila Mihály Lars Westberg

    发明人: Oktavian Papp András Császár Attila Mihály Lars Westberg

    IPC分类号: H04L12/56

    CPC分类号: H04L29/12028 H04L29/12933 H04L61/103 H04L61/6068

    摘要: A technique for address resolution in data transmission networks, for example ARP-based address resolution in IPv4 networks. An embodiment of the technique comprises the following steps performed in a host of the data transmission network: Maintaining an association of at least one physical address with at least one network address range comprising multiple network addresses; obtaining a target network address; comparing the target network address with the network address range to determine an associated target physical address; and providing the determined target physical address, e.g. for initiating a data transmission.

    摘要翻译: 数据传输网络中的地址解析技术,例如IPv4网络中基于ARP的地址解析技术。 该技术的实施例包括在数据传输网络的主机中执行的以下步骤:维护至少一个物理地址与至少一个包括多个网络地址的网络地址范围的关联; 获取目标网络地址; 将目标网络地址与网络地址范围进行比较以确定相关联的目标物理地址; 并提供确定的目标物理地址,例如。 用于启动数据传输。

    Method and apparatus for forwarding data packets using aggregating router keys
    10.
    发明授权
    Method and apparatus for forwarding data packets using aggregating router keys 有权
    使用聚合路由器密钥转发数据包的方法和装置

    公开(公告)号:US08665874B2

    公开(公告)日:2014-03-04

    申请号:US13128012

    申请日:2008-11-07

    申请人: Andras Czaszar Lars G. Magnusson Mats Naslund Lars Westberg

    发明人: Andras Czaszar Lars G. Magnusson Mats Naslund Lars Westberg

    IPC分类号: H04L12/28 H04L12/56

    CPC分类号: H04L45/00 H04L63/0227

    摘要: Method and apparatus for supporting the forwarding of received data packets in a router (402,702) of a packet-switched network. A forwarding table (706a) is configured in the router based on aggregating router keys and associated aggregation related instructions received from a key manager (400,700). Each aggregating router key represents a set of destinations. When a data packet (P) is received comprising an ingress tag derived from a sender key or router key, the ingress tag is matched with entries in the forwarding table. An outgoing port is selected for the packet according to a found matching table entry that further comprises an associated aggregation related instruction. An egress tag is then created according to the aggregation related instruction, and the packet with the created egress tag attached is sent from the selected outgoing port to a next hop router.

    摘要翻译: 用于支持在分组交换网络的路由器(402,702)中转发所接收的数据分组的方法和装置。 基于从密钥管理器(400,700)接收的聚合路由器密钥和相关联的聚合相关指令,在路由器中配置转发表(706a)。 每个聚合路由器密钥代表一组目的地。 当接收到包含从发送方密钥或路由器密钥导出的入口标签的数据分组(P)时,入口标签与转发表中的条目匹配。 根据发现的匹配表条目,为分组选择输出端口,进一步包括相关联的聚合相关指令。 然后根据聚合相关指令创建出口标签,并将附加了创建的出口标签的数据包从所选出口端口发送到下一跳路由器。