公开(公告)号：US06262974B1

公开(公告)日：2001-07-17

申请号：US09213506

申请日：1998-12-17

申请人： Denis Chevalier ,  Olivier Bertin ,  Claude Galand ,  Yves Ouvry ,  Marcel Villaflor

发明人： Denis Chevalier ,  Olivier Bertin ,  Claude Galand ,  Yves Ouvry ,  Marcel Villaflor

IPC分类号： H04L1226

CPC分类号： H04L47/822 ,  H04L47/70 ,  H04L47/724 ,  H04L47/765 ,  H04L47/801 ,  H04L47/805 ,  H04L47/808 ,  H04L47/829

摘要： A method based on predefined connection priorities for assigning link bandwidth to a requesting user in a high speed digital network interconnecting network users through a path including network nodes connected through high speed links. According to this method, a predefined reservable link bandwidth is split into so-called nominal bandwidth portions and common bandwidth portions, both assignable to the same connections on a priority basis. Each of the common bandwidth priorities is individually related to a nominal bandwidth priority through a predefined relationship, making the common bandwidth priorities always lower than any nominal priority. In this way the requested link connection bandwidth, whatever be its nominal priority, is made preemptable primarily on all common bandwidth, thus avoiding the disruption of any network connection which is already established.

摘要翻译： 一种基于预定义的连接优先级的方法，用于将高速数字网络中的请求用户分配链路带宽，通过包括通过高速链路连接的网络节点的路径互连网络用户。根据该方法，预定义的可预留链路带宽被分为 称为标称带宽部分和公共带宽部分，可以优先分配给相同的连接。 每个公共带宽优先级通过预定义的关系单独地与标称带宽优先级相关，使得共同带宽优先级始终低于任何标称优先级。 以这种方式，无论作为其标称优先级，所请求的链路连接带宽主要在所有公共带宽上可抢占，从而避免已经建立的任何网络连接的中断。

公开(公告)号：US5881050A

公开(公告)日：1999-03-09

申请号：US785944

申请日：1997-01-22

申请人： Denis Chevalier ,  Olivier Bertin ,  Claude Galand ,  Yves Ouvry ,  Marcel Villaflor

发明人： Denis Chevalier ,  Olivier Bertin ,  Claude Galand ,  Yves Ouvry ,  Marcel Villaflor

IPC分类号： H04L12/54 ,  H04L12/911 ,  H04L12/913 ,  H04L12/919 ,  H04L12/927 ,  H04L12/44

CPC分类号： H04L12/5695 ,  H04L47/724 ,  H04L47/765 ,  H04L47/801 ,  H04L47/805 ,  H04L47/808 ,  H04L47/822 ,  H04L47/829

摘要： A method based on predefined connection priorities for assigning link bandwidth to a requesting user in a high speed digital network interconnecting network users through a path including network nodes connected through high speed links. According to this method, a predefined reservable link bandwidth is split into so-called nominal bandwidth portions and common bandwidth portions, both assignable to the same connections on a priority basis. Each of the common bandwidth priorities is individually related to a nominal bandwidth priority through a predefined relationship, making the common bandwidth priorities always lower than any nominal priority. In this way the requested link connection bandwidth, whatever be its nominal priority, is made preemptable primarily on all common bandwidth, thus avoiding the disruption of any network connection which is already established.

摘要翻译： 一种基于预定义的连接优先级的方法，用于将高速数字网络中的请求用户分配链路带宽，通过包括通过高速链路连接的网络节点的路径互连网络用户。 根据该方法，将预定义的可预留链路带宽分为所谓的标称带宽部分和公共带宽部分，两者都可优先分配给相同的连接。 每个公共带宽优先级通过预定义的关系单独地与标称带宽优先级相关，使得共同带宽优先级始终低于任何标称优先级。 以这种方式，无论作为其标称优先级，所请求的链路连接带宽主要在所有公共带宽上可抢占，从而避免已经建立的任何网络连接的中断。

公开(公告)号：US07324552B1

公开(公告)日：2008-01-29

申请号：US10348301

申请日：2003-01-21

申请人： Claude Galand ,  Marcel Villaflor

发明人： Claude Galand ,  Marcel Villaflor

IPC分类号： H04J3/22

CPC分类号： H04L12/5602

摘要： A method is given for sharing reserved bandwidth between a plurality of connections issuing from a port of a node. A connection bandwidth is determined for each connection of the plurality of connections. An aggregate bandwidth is determined for all connections of the plurality of connections issuing from the port, the aggregate bandwidth being less than a sum of the connection bandwidth for all connections. The aggregate bandwidth is compared with a maximum access rate for the port, and in the event that the aggregate bandwidth does not exceed the maximum access rate, reserving the aggregate bandwidth for the port.

摘要翻译： 给出了在从节点的端口发出的多个连接之间共享保留带宽的方法。 为多个连接的每个连接确定连接带宽。 为从端口发出的多个连接的所有连接确定聚合带宽，所述总带宽小于所有连接的连接带宽之和。 将总带宽与端口的最大访问速率进行比较，如果聚合带宽不超过最大访问速率，则保留端口的总带宽。

公开(公告)号：US06628670B1

公开(公告)日：2003-09-30

申请号：US09429796

申请日：1999-10-29

申请人： Claude Galand ,  Marcel Villaflor

发明人： Claude Galand ,  Marcel Villaflor

IPC分类号： H04L1256

CPC分类号： H04L47/24 ,  H04L45/02 ,  H04L45/24 ,  H04L47/11 ,  H04L47/15 ,  H04L47/70 ,  H04L47/724 ,  H04L47/726 ,  H04L47/805 ,  H04L47/822 ,  H04L47/828 ,  H04L47/829

摘要： The present application discloses a method and system of sharing reserved bandwidth among several connections issuing from a same physical port in an origin node of a packet switching communication network comprising a plurality of nodes interconnected with transmission links. At each request for establishing a connection i from an origin node to a destination node, the dependent connection management process: selects for connection i a routing path comprising one or a plurality of links from the origin node to the destination node: identifies on the selected path all consecutive links starting from the origin node and shared with another connection issuing from the same physical port; reserves on each link of these identified consecutive links an aggregate bandwidth for all connections issuing from the same physical port, said aggregate bandwidth being less than the sum of the bandwidth reserved for each connection considered individually.

摘要翻译： 本申请公开了一种在包括与传输链路互连的多个节点的分组交换通信网络的原点节点中从相同物理端口发出的若干连接中共享保留带宽的方法和系统。 在从源节点到目的地节点建立连接i的每个请求时，依赖连接管理过程：选择连接包括从原始节点到目的地节点的一条或多条链路的路由路径：在所选择的路径上标识 从原始节点开始并与从相同物理端口发出的另一个连接共享的所有连续链路;在这些标识的连续链路的每个链路上保留从相同物理端口发出的所有连接的聚合带宽，所述聚合带宽小于总和 为每个单独连接保留的带宽。

公开(公告)号：US06647008B1

公开(公告)日：2003-11-11

申请号：US09097131

申请日：1998-06-12

申请人： Claude Galand ,  Marcel Villaflor

发明人： Claude Galand ,  Marcel Villaflor

IPC分类号： H04L1244

CPC分类号： H04L12/5602

摘要： A method for establishing a network connection through a link issuing from a physical port is disclosed. The link has an aggregation of connections. The network connection has a required capacity. The method first computes, from mean bit rates of the aggregation of connections, a mean aggregate bit rate over the aggregation of connections. The method secondly computes, from burst durations from the aggregation of connections, a mean aggregate burst duration over the aggregation of connections. The method thirdly computes an equivalent capacity required on the link by the aggregation of connections, the equivalent capacity being a function of the mean aggregate bit rate and the mean aggregate burst duration. The method fourthly computes an aggregate equivalent capacity, the aggregate equivalent capacity being a function of the equivalent capacity and the required capacity of the connection. The method fifthly computes a bandwidth that would be reserved on the link after establishing the connection, the bandwidth being a minimum of a Gaussian approximation and the aggregate equivalent capacity. Then the network connection is established if the bandwidth is less than or equal to a total capacity for the link.

摘要翻译： 公开了一种通过从物理端口发出的链路建立网络连接的方法。 链接具有连接的聚合。 网络连接具有所需容量。 该方法首先从连接聚合的平均比特率计算出连接聚合上的平均聚合比特率。 该方法第二次从连接聚合的突发持续时间计算在连接聚合上的平均聚合突发持续时间。 该方法第三次通过连接的聚合计算链路上所需的等效容量，等效容量是平均聚合比特率和平均聚合突发持续时间的函数。 该方法第四次计算聚合当量容量，聚合当量容量是等效容量和连接所需容量的函数。 该方法第五计算在建立连接之后将在链路上保留的带宽，带宽是高斯近似的最小值和聚合当量容量。 那么如果带宽小于或等于链路的总容量，则建立网络连接。

公开(公告)号：US07920589B2

公开(公告)日：2011-04-05

申请号：US12101313

申请日：2008-04-11

申请人： Jean-Francois Le Pennec ,  Aurelien Bruno ,  Claude Galand ,  Didier Giroir

发明人： Jean-Francois Le Pennec ,  Aurelien Bruno ,  Claude Galand ,  Didier Giroir

IPC分类号： H04J3/16 ,  H04J3/22

CPC分类号： H04L63/0272 ,  H04L12/4641 ,  H04L29/12009 ,  H04L29/12358 ,  H04L29/12481 ,  H04L29/12801 ,  H04L45/50 ,  H04L61/251 ,  H04L61/2557 ,  H04L61/6004 ,  H04L63/101 ,  H04L69/16 ,  H04L69/167

摘要： Certain exemplary embodiments provide a method for converting data packets based upon IPv4 protocol into data packets based upon IPv6 protocol, said method comprising converting any data packet based upon the IPv4 protocol into a data packet based upon the IPv6 protocol before transmitting it to an IP switched network using information provided by an external server, and converting any data packet based upon the IPv6 protocol provided by said IP switched network into a data packet based upon the IPv4 protocol before transmitting it to a first or second workstation.

摘要翻译： 某些示例性实施例提供了一种用于基于IPv6协议将基于IPv4协议的数据分组转换成数据分组的方法，所述方法包括：在将其发送到IP交换机之前，将基于IPv4协议的任何数据分组转换为基于IPv6协议的数据分组 网络使用由外部服务器提供的信息，并且在将其发送到第一或第二工作站之前，将基于所述IP交换网络提供的IPv6协议的任何数据分组转换为基于IPv4协议的数据分组。

公开(公告)号：US07543332B2

公开(公告)日：2009-06-02

申请号：US11703020

申请日：2007-02-06

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Pennec ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/00

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，可以将原始数据分组转发到其原始的接收者。

公开(公告)号：US20070169187A1

公开(公告)日：2007-07-19

申请号：US11703020

申请日：2007-02-06

申请人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Penncc ,  Jean-Marie Sommerlatt

发明人： Joel Balissat ,  Claude Galand ,  Jean-Francois Le Penncc ,  Jean-Marie Sommerlatt

IPC分类号： G06F15/16

CPC分类号： H04L63/0209 ,  H04L63/0272 ,  H04L63/0435 ,  H04L63/0464

摘要： A method and system for implementing secure network communications between a first device and a second device, at least one of the devices communicating with the other device via a firewall device, are provided. The method and system may include obtaining an encryption parameter that is shared by the first device, second device and firewall device. A data packet sent by the first device may then be copied within the firewall device, so that decryption of the copy of the data packet within a portion of the firewall device may take place. In particular, the portion of the firewall device in which decryption takes place is defined such that contents of the portion are inaccessible to an operator of the firewall device. Thus, scanning of the decrypted copy of the data packet for compliance with a predetermined criterion may take place within the firewall device, without an operator of the firewall device having access to the contents of the data packet to be transmitted. Thereafter, the original data packet can be forwarded to its originally intended recipient.

摘要翻译： 提供了一种用于在第一设备和第二设备之间实现安全网络通信的方法和系统，至少一个设备经由防火墙设备与另一设备通信。 该方法和系统可以包括获得由第一设备，第二设备和防火墙设备共享的加密参数。 然后可以在防火墙设备内复制由第一设备发送的数据分组，从而可以在防火墙设备的一部分内对数据分组的副本进行解密。 特别地，定义防火墙设备中发生解密的部分，使得该部分的内容对于防火墙设备的操作者是不可访问的。 因此，在防火墙设备内可以进行符合预定标准的数据分组的解密副本的扫描，而防火墙设备的操作者可以访问要发送的数据分组的内容。 此后，可以将原始数据分组转发到其原始的接收者。

公开(公告)号：US06870850B1

公开(公告)日：2005-03-22

申请号：US09512562

申请日：2000-02-24

申请人： Aline Fichou ,  Claude Galand ,  Jacques Fieschi ,  Jean-Francoise Le Pennec

发明人： Aline Fichou ,  Claude Galand ,  Jacques Fieschi ,  Jean-Francoise Le Pennec

IPC分类号： H04L12/46 ,  H04L29/06 ,  H04L12/28 ,  H04L12/56

CPC分类号： H04L29/06 ,  H04L12/4604 ,  H04L69/08 ,  H04L69/16 ,  H04L69/22 ,  H04L2212/00

摘要： A method and system of transmitting data frames from a sending unit (10) to a receiving unit (12) in a data transmission network comprising at least a backbone (14) wherein the data are transmitted over high speed links enabling long Maximum Transmission Units (MTU) between an ingress node (18) connected to the sending unit by a first access link (16) and an egress node (22) connected to the receiving node by a second access link (20), with at least one of the first and second access links being a low speed access link requiring the data frames to be segmented into short MTUs between the sending unit and the ingress node and between the egress node and the receiving unit. A plurality of consecutive segmented data frames (28) belonging to the same flow of data transmitted from the sending unit to the ingress node are assembled by the ingress node into an assembled data frame (30) corresponding to the long MTU, the assembled data frame is transmitted over the backbone from the ingress node to the egress node at a high speed authorized by the backbone links, and the assembled data frame is de-assembled into consecutive segmented data frames (32) corresponding to the short MTUs by the egress node before being transmitted to the receiving unit.

摘要翻译： 一种将数据帧从发送单元（10）发送到至少包括主干（14）的数据传输网络中的接收单元（12）的方法和系统，其中所述数据通过高速链路传输，从而能够实现长的最大传输单元 在由第一接入链路（16）连接到发送单元的入口节点（18）和通过第二接入链路（20）连接到接收节点的出口节点（22）之间的MTU中，至少一个第一接入链路 并且第二接入链路是低速接入链路，需要将数据帧分段成发送单元和入节点之间以及出口节点与接收单元之间的短MTU。 属于从发送单元向入口节点发送的相同数据流的多个连续分段数据帧（28）由入口节点组装成对应于长MTU的组合数据帧（30），组合数据帧 以骨干链路授权的高速通过骨干网从入口节点传送到出口节点，组装好的数据帧在出口节点之前被去组装成与出口节点对应的短MTU的连续分段数据帧（32） 被发送到接收单元。

公开(公告)号：US06690678B1

公开(公告)日：2004-02-10

申请号：US09437820

申请日：1999-11-10

申请人： Claude Basso ,  Aline Fichou ,  Claude Galand ,  Laurent Nicolas

发明人： Claude Basso ,  Aline Fichou ,  Claude Galand ,  Laurent Nicolas

IPC分类号： H04J1500

CPC分类号： H04L12/5602 ,  H04L2012/5619 ,  H04L2012/5634 ,  H04Q11/0478

摘要： The present invention relates to a system and method for dynamically adjusting the bandwidth of a continuous bit rate virtual path connection established between a source node and a destination node within a packet or cell switching network comprising a plurality of nodes interconnected with transmission links. In the network, a bandwidth management server having access to information concerning network nodes and transmission links is defined. This server is informed each time a virtual path connection or a virtual channel connection is established on the network with an indication concerning the initial bandwidth reserved for said connection. The server detects and shares, on a continuous or periodical mode, the bandwidth which is available on transmission links among the bandwidth adjustable continuous bit rate virtual path connections and determines for each connection a new bandwidth. The source node is informed each time a new bandwidth is computed. It adjusts the bandwidth of the corresponding bandwidth adjustable continuous bit rate virtual path connection accordingly.

摘要翻译： 本发明涉及一种系统和方法，用于动态地调整在包括与传输链路互连的多个节点的分组或小区交换网络内的源节点和目的地节点之间建立的连续比特率虚拟路径连接的带宽。 在网络中，定义了具有访问有关网络节点和传输链路的信息的带宽管理服务器。 每当在网络上建立虚拟路径连接或虚拟通道连接时，通知该服务器，并显示关于为所述连接保留的初始带宽。 服务器以连续或周期模式检测和共享带宽可调连续比特率虚拟路径连接之间的传输链路上可用的带宽，并为每个连接确定新的带宽。 每次计算新的带宽时通知源节点。 它相应地调整相应带宽可调连续比特率虚拟路径连接的带宽。