摘要:
A system adapts access to a packet switching network. A dynamic bandwidth adaptation continuously monitors the mean bit rate of a signal source and the loss probability of a connection in the network. A filtering means removes noise from the mean bit rate and loss probabilty. A test means determine whether the values fall within a pre-defined acceptable adaptation region in a mean bit rate, loss probability plane. Triggering means initiate bandwidth adaptation procedures when the values fall outside of the region which in turn, initiate means for acquiring a new connection bandwidth, and determining new parameters for the adaptation mechanism.
摘要:
Method and system for adapting access to a packet switching network including a dynamic bandwidth adjustment mechanism which continuously monitors the mean bit rate of the signal source and the loss probability of the connection. These values are filtered to remove noise and then used to test whether the values fall within a pre-defined acceptable adaptation region in the mean bit rate, loss probability plane. Values falling outside of this region trigger bandwidth adaptation procedures which, in turn, result in acquiring a new connection bandwidth, and determining new parameters for the adaptation mechanism. Furthermore, the mechanism controls the number of connections that can be adapted by a single processor, given its processing capability. It ensures fairness between the connections in the sense that it prevents a single connection from using, on the average, a greater portion of the processor capacity than it should.
摘要:
A packet scheduling system for use in a switching node of a high speed packet switching network. Incoming packets are enqueued in connection queues. Each connection is classified as red (exceeding traffic profile) or green (within traffic profile). QOS priority is also identified for each connection. Packets are dequeued for transmission as a function of priority class and connection class. Higher priority class connections have priority over lower priority class connections. Within a given priority class of connections, green connections have priority over red connections. Round robin scheduling is used for packets from connections in the same priority and connection class. In addition, a dynamic priority coupling mechanism is provided to prevent red higher priority traffic from blocking green lower priority traffic.
摘要:
An identity management method and system is disclosed. The method includes identity context management (ICM) clients monitoring access to Internet resources using dedicated Virtual Machines (VM). An ICM server monitors associations between Internet resource identifiers (IDs) and the Internet resources accessed by the VMs. The VMs register context for the ICM clients with the ICM server. An ICM client enables access to Internet resources and presentation of Webpages and Internet contents associated with the Internet resources within the associated Virtual Machine context.
摘要:
A method of synchronizing firewalls in a communication system comprising a server farm wherein any user connected to the Internet can access customer servers, and at least two firewalls using a Virtual Router Redundancy Protocol (VRRP) to set up as primary interface firewall the firewall which owns the primary interface of the VRRP group of interfaces to at least one customer server. The method includes initializing, in a secondary interface firewall, a synchronization message exchange with the primary firewall after receiving a packet for a connection having a state which is incompatible with the received packet or after the standard firewall processing of a packet corresponding to a new connection, and registering in a common connection table the state of any connection if the connection is new or if the connection state has changed.
摘要:
A method and system for managing a service level of a service provided by a service provider to a customer under a service level agreement. The measurement data is adjudicated to correct the measurement data in accordance with at least one adjudication element that identifies a rule specifying how to correct the measurement data. The adjudicated measurement data is transformed into operational data by merging the adjudicated measurement data using a logic specified in the service level agreement. The operational data is evaluated by applying a formula to the operational data, resulting in the operational data being configured for being subsequently qualified. The operational data is qualified by comparing the evaluated operational data with specified service level targets for at least one service level period and identifying operational data points meeting and/or not meeting the specified service level targets.
摘要:
The invention provides a system and method for providing a high availability application at low cost for a wide range of solution architectures. A user runs a simplistic web-based wizard to install the high availability application. Then, a user designs the high availability application's logic for an individual process or process-group using a finite state table. Next, a standard UNIX init process spawner subsystem is extended to implement the high availability application as a property of a process. Finally, the logic from the finite state table is used to make each process or process-group highly available.
摘要:
A security system for a communication system that includes an IP network and groups of servers in a farm, wherein each group is associated with a customer. A user connected to the network can access information provided by a customer from a server within the group of servers associated with this customer through a dispatching device. The security system comprises setting means in each of the switches which are located between the dispatching device and the customer servers for setting a field of bits in the IP header of potentially irregular packets transmitted from a customer server and the dispatching device, means in the dispatching device for identifying any packet wherein the field of bits has been set to the predefined value, and means for deleting or logging the potentially irregular packet when the destination of the packet is not the dispatching device.
摘要:
A method and system for managing a service level of a service provided by a service provider to a customer under a service level agreement. The measurement data is adjudicated to correct the measurement data in accordance with at least one adjudication element that identifies a rule specifying how to correct the measurement data. The adjudicated measurement data is transformed into operational data by merging the adjudicated measurement data using a logic specified in the service level agreement. The operational data is evaluated by applying a formula to the operational data, resulting in the operational data being configured for being subsequently qualified. The operational data is qualified by comparing the evaluated operational data with specified service level targets for at least one service level period and identifying operational data points meeting and/or not meeting the specified service level targets.
摘要:
An identity management method and system is disclosed. The method includes identity context management (ICM) clients monitoring access to Internet resources using dedicated Virtual Machines (VM). An ICM server monitors associations between Internet resource identifiers (IDs) and the Internet resources accessed by the VMs. The VMs register context for the ICM clients with the ICM server. An ICM client enables access to Internet resources and presentation of Webpages and Internet contents associated with the Internet resources within the associated Virtual Machine context.