公开(公告)号：US12250097B2

公开(公告)日：2025-03-11

申请号：US17731440

申请日：2022-04-28

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn

IPC: H04L12/46 ,  H04L43/062 ,  H04L45/64 ,  H04W40/24

Abstract: Methods and systems for flexible nodal layer 3 overlay of layer 2 traffic is described. A network includes an access device for receiving layer 2 traffic from user devices, a packet inspection device for inspecting the layer 2 traffic, and a layer 3 tunnel instantiation device for encapsulating the layer 2 traffic into layer 3 traffic. The layer 3 tunnel instantiation device provides a first tunnel endpoint for a layer 3 tunnel, which is connected to a second tunnel endpoint instantiated at a network gateway. The layer 3 tunnel instantiation device establishes a moveable demarcation between a layer 2 domain and a layer 3 domain with respect to the packet inspection device, where the access device and the packet inspection device operate in the layer 2 domain. The layer 3 traffic is transmitted over the layer 3 tunnel.

公开(公告)号：US20240298176A1

公开(公告)日：2024-09-05

申请号：US18115919

申请日：2023-03-01

Applicant: Charter Communications Operating, LLC

Inventor： Venkata Divvi ,  Christopher Teague ,  Cheryl Warne ,  Timothy Bleidorn

IPC: H04W12/069 ,  H04W12/69

CPC classification number: H04W12/069 ,  H04W12/69

Abstract: The present invention relates to methods and apparatus for providing services in high density deployments using dynamic assignment Virtual Local Area Network (VLAN) stacking during client device authentication. An exemplary method includes the steps of: receiving wirelessly, by a first Access Point (AP), a first authentication request message including first user equipment device identification information from a first user equipment device; generating, by the first AP, a second message based on the first authentication request message, the second message including the first user equipment device identification information and location information for the first AP; transmitting, by first AP, the second message to a first server; and receiving in response to the second message, by the first AP, a third message, said third message including dynamically assigned stacked VLAN information including a first Service-VLAN Identifier and a first Customer-VLAN Identifier dynamically assigned to the first user equipment device.

公开(公告)号：US20240259294A1

公开(公告)日：2024-08-01

申请号：US18171911

申请日：2023-02-21

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn ,  Tomas Lovato

IPC: H04L45/00 ,  H04L12/46 ,  H04L41/0654

CPC classification number: H04L45/22 ,  H04L12/4633 ,  H04L12/4641 ,  H04L41/0654 ,  H04L2212/00

Abstract: Redundant configuration and testing for flexible nodal layer 3 overlay of layer 2 traffic. A network deployed at a site includes a local network to carry layer 2 traffic, a pair of layer 3 tunnel instantiation devices in a failover configuration. Each layer 3 tunnel instantiation device encapsulates the layer 2 traffic into layer 3 traffic and forwards the layer 3 traffic to a network gateway using a configurable layer 3 tunnel. A virtual client on each layer 3 tunnel instantiation device sends simulated client traffic to the network gateway via the local network and a partner layer 3 tunnel instantiation device to check end-to-end operability of the local network, the partner layer 3 tunnel instantiation device, and the network gateway. A testing layer 3 tunnel instantiation device initiates an action with respect to the partner layer 3 tunnel instantiation device based on a response to the simulated client traffic.

公开(公告)号：US11924078B2

公开(公告)日：2024-03-05

申请号：US18078178

申请日：2022-12-09

Applicant: CHARTER COMMUNICATIONS OPERATING, LLC

Inventor： Timothy Bleidorn ,  Christopher Teague ,  Janath Kumar Madhamanchi

IPC: H04L43/0823 ,  H04L47/11 ,  H04L69/16 ,  H04W24/02

CPC classification number: H04L43/0847 ,  H04L47/11 ,  H04L69/16 ,  H04W24/02

Abstract: Various embodiments comprise systems, methods, mechanisms, and apparatus by which a network operator such as a wireline internet service provider (ISP) may determine that an endpoint device has one or more other wireless devices tethered to it, such as a mobile handset providing dual-Wi-Fi ad-hoc tethering (i.e., connected to a high-speed Wi-Fi network while simultaneously providing Wi-Fi connections to wireless devices tethered to the mobile handset), by monitoring Transmission Control Protocol (TCP)/IP traffic flow associated with endpoint devices (i.e., to or through endpoint devices), characterizing these traffic flows in accordance with one or more error indicative criteria to establish thereby a baseline profile of error indicative criteria that is indicative of a TCP/IP traffic flow associated with an endpoint device that is not associated with tethering (e.g., a rate or number of duplicate ACKs), wherein deviations from the baseline profile of error indicative criteria beyond a threshold are indicative of a TCP/IP traffic flow associated with an endpoint device that is associated with tethering.

公开(公告)号：US12218792B2

公开(公告)日：2025-02-04

申请号：US18178862

申请日：2023-03-06

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn

IPC: H04L41/06 ,  H04L1/1607 ,  H04L12/46 ,  H04L12/66 ,  H04L41/12 ,  H04L45/00 ,  H04L61/5014 ,  H04L61/5038

Abstract: A bridged gateway coupled to a local area network (LAN) receives a layer 2 frame from a device coupled to the LAN. The bridged gateway forwards, to a network gateway router that provides layer 3 routing services for the LAN, the layer 2 frame via a layer 2 tunnel. The bridged gateway determines that the layer 2 frame comprises a dynamic host configuration protocol (DHCP) discover message, the DHCP discover message including an initial message in a four message sequence used by the network gateway router and the device to provide an internet protocol (IP) address to the device. The bridged gateway determines that the four message sequence between the device and the network gateway router did not complete. The bridged gateway, in response to determining the four message sequence did not complete, sends, to a destination, an alert that comprises information indicating a problem with the network gateway router.

公开(公告)号：US12074845B2

公开(公告)日：2024-08-27

申请号：US18110172

申请日：2023-02-15

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn ,  Cheryl Warne ,  Shane Newberg ,  Christopher Teague

IPC: H04L61/5014 ,  H04L12/66 ,  H04L47/70 ,  H04L61/00 ,  H04L101/618

CPC classification number: H04L61/5014 ,  H04L12/66 ,  H04L47/70 ,  H04L61/35 ,  H04L2101/618

Abstract: Systems, methods, and devices for performing targeted filtering of network traffic generated by user equipment (UE) devices connected to a customer premise equipment (CPE) device in a communication system that includes a distributed residential gateway. A network server may determine that the communication system includes a UE device that is compromised, misconfigured, or operating outside normal communication parameters, identify the UE device, determine an Internet protocol (IP) address or a media access control (MAC) address of the identified UE device, generate a quarantine request message that includes the IP address or the MAC address of the identified UE device in response to determining that the preconfigured virtual local area network access control list (VACL) on the CPE lists source IP addresses from which the CPE will filter outbound traffic, and send the generated quarantine request message to a bridged residential gateway (BRG) associated with the CPE device.

公开(公告)号：US20240305516A1

公开(公告)日：2024-09-12

申请号：US18178862

申请日：2023-03-06

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn

IPC: H04L41/06 ,  H04L1/1607 ,  H04L12/46 ,  H04L12/66 ,  H04L41/12 ,  H04L45/00 ,  H04L61/5014 ,  H04L61/5038

CPC classification number: H04L41/06 ,  H04L1/1607 ,  H04L12/4633 ,  H04L12/66 ,  H04L41/12 ,  H04L45/66 ,  H04L61/5014 ,  H04L61/5038

Abstract: A bridged gateway coupled to a local area network (LAN) receives a layer 2 frame from a device coupled to the LAN. The bridged gateway forwards, to a network gateway router that provides layer 3 routing services for the LAN, the layer 2 frame via a layer 2 tunnel. The bridged gateway determines that the layer 2 frame comprises a dynamic host configuration protocol (DHCP) discover message, the DHCP discover message including an initial message in a four message sequence used by the network gateway router and the device to provide an internet protocol (IP) address to the device. The bridged gateway determines that the four message sequence between the device and the network gateway router did not complete. The bridged gateway, in response to determining the four message sequence did not complete, sends, to a destination, an alert that comprises information indicating a problem with the network gateway router.

公开(公告)号：US11641341B2

公开(公告)日：2023-05-02

申请号：US17356710

申请日：2021-06-24

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn ,  Cheryl Warne ,  Shane Newberg ,  Christopher Teague

IPC: H04L61/5014 ,  H04L12/66 ,  H04L47/70 ,  H04L61/00 ,  H04L101/618

Abstract: Systems, methods, and devices for performing targeted filtering of network traffic generated by user equipment (UE) devices connected to a customer premise equipment (CPE) device in a communication system that includes a distributed residential gateway. A network server may determine that the communication system includes a UE device that is compromised, misconfigured, or operating outside normal communication parameters, identify the UE device, determine an Internet protocol (IP) address or a media access control (MAC) address of the identified UE device, generate a quarantine request message that includes the IP address or the MAC address of the identified UE device in response to determining that the preconfigured virtual local area network access control list (VACL) on the CPE lists source IP addresses from which the CPE will filter outbound traffic, and send the generated quarantine request message to a bridged residential gateway (BRG) associated with the CPE device.

公开(公告)号：US11533244B1

公开(公告)日：2022-12-20

申请号：US17380695

申请日：2021-07-20

Applicant: CHARTER COMMUNICATIONS OPERATING, LLC

Inventor： Timothy Bleidorn ,  Christopher Teague ,  Janath Kumar Madhamanchi

IPC: H04L43/0823 ,  H04L47/11 ,  H04W24/02 ,  H04L69/16

Abstract: Various embodiments comprise systems, methods, mechanisms, and apparatus by which a network operator such as a wireline internet service provider (ISP) may determine that an endpoint device has one or more other wireless devices tethered to it, such as a mobile handset providing dual-Wi-Fi ad-hoc tethering (i.e., connected to a high-speed Wi-Fi network while simultaneously providing Wi-Fi connections to wireless devices tethered to the mobile handset), by monitoring Transmission Control Protocol (TCP)/IP traffic flow associated with endpoint devices (i.e., to or through endpoint devices), characterizing these traffic flows in accordance with one or more error indicative criteria to establish thereby a baseline profile of error indicative criteria that is indicative of a TCP/IP traffic flow associated with an endpoint device that is not associated with tethering (e.g., a rate or number of duplicate ACKs), wherein deviations from the baseline profile of error indicative criteria beyond a threshold are indicative of a TCP/IP traffic flow associated with an endpoint device that is associated with tethering.

公开(公告)号：US20240305503A1

公开(公告)日：2024-09-12

申请号：US18179589

申请日：2023-03-07

Applicant: Charter Communications Operating, LLC

Inventor： Timothy Bleidorn

IPC: H04L12/66 ,  H04L12/46 ,  H04L61/5014

CPC classification number: H04L12/66 ,  H04L12/4641 ,  H04L61/5014

Abstract: A bridged gateway (BG) coupled to a local area network (LAN) receives a layer 2 frame from a device coupled to the LAN. The BG determines that the layer 2 frame is addressed to a network gateway router that provides layer 3 routing services for the LAN. The BG forwards, to the network gateway router via a layer 2 tunnel, the layer 2 frame. The BG starts a timer that corresponds to the device. The BG determines that the timer has elapsed and no response to the layer 2 frame has been received by the BG. In response to determining that the timer has elapsed, the BG sends to a destination, an alert, the alert indicating that the device has not received a response to a message destined for the network gateway router.