公开(公告)号：US07443849B2

公开(公告)日：2008-10-28

申请号：US11026891

申请日：2004-12-30

申请人： Kaushik P. Biswas ,  Senthil M. Sivakumar ,  Melinda L. Shore

发明人： Kaushik P. Biswas ,  Senthil M. Sivakumar ,  Melinda L. Shore

IPC分类号： H04L12/28 ,  H04L12/56 ,  H04J3/16 ,  H04J3/22

CPC分类号： H04L29/12009 ,  H04L29/12528 ,  H04L29/12537 ,  H04L61/2575 ,  H04L61/2578 ,  H04L69/40

摘要： Disclosed are methods and apparatus for facilitating translation of packet addresses (or ports) by one or more translation devices (e.g., Network Address Translation or NAT devices) using a specialized protocol to handle an address (or port) that is used to form part of a payload. In one implementation, this specialized protocol is referred to as Network Layer Signaling (NLS). As a packet traverses along a path containing one or more translation devices, each translation device is configured to translate an address (or port) of such packet's IP header if the packet is traversing between different domains (e.g., traversing between a private and public domain or between two different private domains). One or more of these translation devices may also be configured to implement the specialized protocol which includes translation device traversal mechanisms for detecting whether the traversal path contains a translation device that fails to implement such specialized protocol. When such a failure is detected, recovery mechanisms are also triggered.

摘要翻译： 公开了一种用于利用专用协议来利用一个或多个翻译设备（例如，网络地址转换或NAT设备）来转换分组地址（或端口）以处理用于形成部分的地址（或端口）的方法和装置 有效载荷 在一个实现中，该专用协议被称为网络层信令（NLS）。 当分组沿着包含一个或多个翻译设备的路径穿越时，如果分组在不同域之间遍历（例如，在私有域和公共域之间遍历），则每个翻译设备被配置为转换该分组的IP报头的地址（或端口） 或两个不同的私有域之间）。 这些翻译装置中的一个或多个还可以被配置为实现专用协议，其包括用于检测穿越路径是否包含不能实现这种专用协议的翻译装置的翻译装置遍历机制。 当检测到这种故障时，还会触发恢复机制。

公开(公告)号：US07542463B2

公开(公告)日：2009-06-02

申请号：US10950288

申请日：2004-09-24

申请人： Kaushik P. Biswas ,  Thimmappa Thejaswi ,  Senthil M. Sivakumar ,  Siva S. Jayasenan

发明人： Kaushik P. Biswas ,  Thimmappa Thejaswi ,  Senthil M. Sivakumar ,  Siva S. Jayasenan

IPC分类号： H04J11/00

CPC分类号： H04L61/00 ,  H04L29/12009

摘要： Communicating packets along a control channel and a media channel includes receiving at a network address translator a first message having a first internal address from a first communication device. The first internal address is translated to a first external control address operable to route a control packet along a control channel. A second message having a first embedded media address is received from the first communication device. The first embedded media address is translated to a first external media address operable to route a media packet along a media channel.

摘要翻译： 沿着控制信道和媒体信道通信分组包括在网络地址转换器处接收具有来自第一通信设备的第一内部地址的第一消息。 第一内部地址被转换为可操作以沿着控制信道路由控制分组的第一外部控制地址。 从第一通信设备接收具有第一嵌入式媒体地址的第二消息。 第一嵌入式媒体地址被转换为可操作以沿着媒体信道路由媒体分组的第一外部媒体地址。

公开(公告)号：US07518987B2

公开(公告)日：2009-04-14

申请号：US11189478

申请日：2005-07-25

申请人： Kaushik P. Biswas ,  Senthil M. Sivakumar

发明人： Kaushik P. Biswas ,  Senthil M. Sivakumar

IPC分类号： G06F11/00 ,  G06F15/16 ,  G01R31/08

CPC分类号： H04L65/1006 ,  H04L29/12094 ,  H04L29/12301 ,  H04L29/12367 ,  H04L61/1529 ,  H04L61/2076 ,  H04L61/2514 ,  H04L67/14 ,  H04L69/40

摘要： Disclosed are methods and apparatus for facilitating reliable session based communication with a local host via a subnet of redundant network devices that also implement network address translation (NAT) or the like. In general, embodiments of the present invention include mechanisms for reestablishing access to a local host after the local host's active network device has failed and been replaced by a new active network device with an address space that differs from the failed network device. In this invention, the network devices associated with the same local host also implement NAT, or the like. In brief, for each of its associated local hosts, the new active network device causes an address server to be updated with a new public address that is assigned from its address space to the local host. This update allows other remote hosts access to the local hosts by obtaining the updated address information from the address server. Communication sessions that were established prior to the failing active network device may also be retained by the new active network device. In this aspect, for each ongoing particular session between a remote host and a local host of the new active network device, the new active network device updates the remote host with a new public address assigned to local host for use in the particular session.

摘要翻译： 公开了用于通过还实现网络地址转换（NAT）等的冗余网络设备的子网来促进与本地主机的基于会话的通信的方法和装置。 通常，本发明的实施例包括在本地主机的活动网络设备发生故障之后重新建立对本地主机的访问的机制，并且被具有不同于故障网络设备的地址空间的新的活动网络设备所替代。 在本发明中，与同一本地主机相关联的网络设备也实现NAT等。 简而言之，对于每个相关联的本地主机，新的活动网络设备使得使用从其地址空间分配给本地主机的新的公共地址来更新地址服务器。 此更新允许其他远程主机通过从地址服务器获取更新的地址信息来访问本地主机。 在故障的活动网络设备之前建立的通信会话也可以由新的活动网络设备保留。 在这方面，对于远程主机和新的活动网络设备的本地主机之间的每个正在进行的特定会话，新的活动网络设备使用分配给本地主机的新的公共地址来更新远程主机以在特定会话中使用。

公开(公告)号：US07280557B1

公开(公告)日：2007-10-09

申请号：US10187168

申请日：2002-06-28

申请人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Mahadev Somasundaram ,  Mark A. Denny

发明人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Mahadev Somasundaram ,  Mark A. Denny

IPC分类号： H04J3/16

CPC分类号： H04L29/12367 ,  H04L29/12415 ,  H04L29/12481 ,  H04L45/22 ,  H04L45/58 ,  H04L47/125 ,  H04L61/2514 ,  H04L61/2532 ,  H04L61/2557 ,  H04L67/1002 ,  H04L69/40

摘要： Various techniques are described which may be used for improving traffic flows between private networks and public networks. According to one aspect of the present invention, a technique is described for implementing asymmetric routing in a NAT routing environment. Another aspect of the present invention provides a technique for implementing load balancing and resource allocation assignments among peers in a redundant, multiple NAT router environment.

摘要翻译： 描述了可以用于改善专用网络和公共网络之间的业务流的各种技术。 根据本发明的一个方面，描述了在NAT路由环境中实现非对称路由的技术。 本发明的另一方面提供了一种用于在冗余的多个NAT路由器环境中的对等体之间实现负载平衡和资源分配分配的技术。

公开(公告)号：US07624195B1

公开(公告)日：2009-11-24

申请号：US10434581

申请日：2003-05-08

申请人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Michael J. Sullenberger ,  Mark A. Denny ,  Senthil Sivakumar ,  Suresh Satapati

发明人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Michael J. Sullenberger ,  Mark A. Denny ,  Senthil Sivakumar ,  Suresh Satapati

IPC分类号： G06F15/16 ,  H04L12/56

CPC分类号： H04L45/04 ,  H04L29/12283 ,  H04L29/12386 ,  H04L61/2015 ,  H04L61/2061 ,  H04L61/2521

摘要： Methods and apparatuses for distributing network address translation. By having a gateway inform inside devices of global addresses, the gateway can avoid performing many functions of a traditional NAT box. Specifically, an inside device is informed of a global address shared by all devices on the inside device's network segment. Each device on that segment would be assigned a range of ports to distinguish messages from separate devices that use the same global address.

摘要翻译： 分配网络地址转换的方法和装置。 通过在全球地址的设备内部通知网关，网关可以避免执行传统NAT框的许多功能。 具体地说，向内部装置通知内部设备网络上所有设备共享的全局地址。 该分段上的每个设备将被分配一系列端口，以区分消息与使用相同全局地址的单独设备。

公开(公告)号：US08019889B1

公开(公告)日：2011-09-13

申请号：US10160321

申请日：2002-05-31

申请人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Michael L. Sullenberger ,  Mark A. Denny

发明人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Michael L. Sullenberger ,  Mark A. Denny

IPC分类号： G06F15/16

CPC分类号： H04L61/2575 ,  H04L29/12226 ,  H04L29/12528 ,  H04L61/2015

摘要： Disclosed are methods and apparatus for handling data having an embedded address (and port). In general terms, a host of a private network is operable to obtain from its corresponding edge router a global address (GA) and optionally an additional global port range (GPR). When the host then wishes to transmit data out of the private network, the obtained GA (and GPR) may then be used for an embedded address (and port) within data sent by the host to a public network. The obtained GA (and GPR) may also be used by the host to translate its own source address and port in its IP and/or TCP/UDP header if needed.

摘要翻译： 公开了用于处理具有嵌入地址（和端口）的数据的方法和装置。 一般来说，专用网络的主机可操作以从其对应的边缘路由器获得全局地址（GA）和可选的附加全局端口范围（GPR）。 当主机希望从私有网络发送数据时，获得的GA（和GPR）然后可以用于由主机发送到公共网络的数据内的嵌入式地址（和端口）。 如果需要，所获得的GA（和GPR）也可以被主机用于在其IP和/或TCP / UDP报头中翻译其自己的源地址和端口。

公开(公告)号：US07561575B2

公开(公告)日：2009-07-14

申请号：US11559591

申请日：2006-11-14

申请人： Kaushik P. Biswas ,  Vinay Jayant Pande ,  Jayesh Chokshi

发明人： Kaushik P. Biswas ,  Vinay Jayant Pande ,  Jayesh Chokshi

IPC分类号： G06F15/173 ,  H04L12/56 ,  H04J3/22

CPC分类号： H04L29/12462 ,  H04L29/1249 ,  H04L61/255 ,  H04L61/256

摘要： Disclosed are apparatus and methods for managing session data in a session border controller (SBC), where the session data is sent from a first node, such as a first phone, to a second node, such as a registrar or second phone. In one example embodiment, the following operations are performed in a first intermediary node that is configured to provide network address translation (NAT) for both a header and payload of a session packet and has an inside interface coupled with a second intermediary node that is configured to perform NAT for only a header of session packets. It is determined whether an end node is sending session packets that are not used to set up a session and that result in a binding that was formed by the second intermediary node being retained. The binding associates inside and outside addresses of the end node, and an end node is defined as a node that originates a session packet. It is determined whether to inhibit a registration throttling process from being performed by the first intermediary node, that results in the binding being retained, based on whether it is determined that the end node is sending session packets that are not used to set up a session and that result in the binding being retained.

摘要翻译： 公开了一种用于在会话边界控制器（SBC）中管理会话数据的装置和方法，其中会话数据从诸如第一电话的第一节点发送到诸如注册器或第二电话的第二节点。 在一个示例实施例中，在被配置为为会话分组的报头和有效载荷提供网络地址转换（NAT）的第一中间节点中执行以下操作，并且具有与配置的第二中间节点耦合的内部接口 仅为会话数据包的报头执行NAT。 确定终端节点是否正在发送不用于建立会话的会话分组，并且导致由第二中间节点形成的绑定被保留。 绑定关联端节点的内部和外部地址，并且结束节点被定义为发起会话分组的节点。 基于是否确定终端节点正在发送不用于建立会话的会话分组，确定是否禁止由第一中间节点执行注册限制处理，导致绑定被保留 并导致绑定被保留。

公开(公告)号：US20080114871A1

公开(公告)日：2008-05-15

申请号：US11559591

申请日：2006-11-14

申请人： Kaushik P. Biswas ,  Vinay Jayant Pande ,  Jayesh Chokshi

发明人： Kaushik P. Biswas ,  Vinay Jayant Pande ,  Jayesh Chokshi

IPC分类号： G06F15/173

CPC分类号： H04L29/12462 ,  H04L29/1249 ,  H04L61/255 ,  H04L61/256

摘要： Disclosed are apparatus and methods for managing session data in a session border controller (SBC), where the session data is sent from a first node, such as a first phone, to a second node, such as a registrar or second phone. In one example embodiment, the following operations are performed in a first intermediary node that is configured to provide network address translation (NAT) for both a header and payload of a session packet and has an inside interface coupled with a second intermediary node that is configured to perform NAT for only a header of session packets. It is determined whether an end node is sending session packets that are not used to set up a session and that result in a binding that was formed by the second intermediary node being retained. The binding associates inside and outside addresses of the end node, and an end node is defined as a node that originates a session packet. It is determined whether to inhibit a registration throttling process from being performed by the first intermediary node, that results in the binding being retained, based on whether it is determined that the end node is sending session packets that are not used to set up a session and that result in the binding being retained.

摘要翻译： 公开了一种用于在会话边界控制器（SBC）中管理会话数据的装置和方法，其中会话数据从诸如第一电话的第一节点发送到诸如注册器或第二电话的第二节点。 在一个示例实施例中，在被配置为为会话分组的报头和有效载荷提供网络地址转换（NAT）的第一中间节点中执行以下操作，并且具有与配置的第二中间节点耦合的内部接口 仅为会话数据包的报头执行NAT。 确定终端节点是否正在发送不用于建立会话的会话分组，并且导致由第二中间节点形成的绑定被保留。 绑定关联端节点的内部和外部地址，并且结束节点被定义为发起会话分组的节点。 基于是否确定终端节点正在发送不用于建立会话的会话分组，确定是否禁止由第一中间节点执行注册限制处理，导致绑定被保留 并导致绑定被保留。

公开(公告)号：US07227872B1

公开(公告)日：2007-06-05

申请号：US10235523

申请日：2002-09-04

申请人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Mahadev Somasundaram ,  Mark A. Denny

发明人： Kaushik P. Biswas ,  Siva S. Jayasenan ,  Mahadev Somasundaram ,  Mark A. Denny

IPC分类号： H04J3/16

CPC分类号： H04L29/12367 ,  H04L29/12415 ,  H04L29/12481 ,  H04L45/22 ,  H04L45/58 ,  H04L47/125 ,  H04L61/2514 ,  H04L61/2532 ,  H04L61/2557 ,  H04L67/1002 ,  H04L69/40

摘要： Various techniques are described which may be used for improving traffic flows between private networks and public networks. According to one aspect of the present invention, a technique is described for implementing asymmetric routing in a NAT routing environment. Another aspect of the present invention provides a technique for implementing load balancing and resource allocation assignments among peers in a redundant, multiple NAT router environment.

公开(公告)号：US08755370B1

公开(公告)日：2014-06-17

申请号：US11864520

申请日：2007-09-28

申请人： Kaushik P. Biswas ,  Vinay Jayant Pande ,  Jayesh Chokshi ,  Tuan Q. Le

发明人： Kaushik P. Biswas ,  Vinay Jayant Pande ,  Jayesh Chokshi ,  Tuan Q. Le

IPC分类号： H04L12/66 ,  H04L12/28

CPC分类号： H04L12/6418 ,  H04L61/2514 ,  H04L61/2517 ,  H04L61/256 ,  H04L65/1003 ,  H04L65/1036

摘要： In one embodiment, a device comprises an input port for receiving network packets that are being communicated via a computer network. A processor is in communication with the input port. The processor is configured to facilitate dynamic monitoring and updating of port addresses assigned by at least one non-ALG PAT router so as to facilitate communication of packets that are exchanged between an inside user agent and an outside user agent in a manner that mitigates a likelihood of communication interruption during a VOIP session. An output port is in communication with the processor for transmitting packets via the computer network.

摘要翻译： 在一个实施例中，设备包括用于接收经由计算机网络传送的网络分组的输入端口。 处理器与输入端口通信。 处理器被配置为促进由至少一个非ALG PAT路由器分配的端口地址的动态监视和更新，以便于以减轻可能性的方式在内部用户代理和外部用户代理之间交换的分组的通信 VOIP会话期间的通信中断。 输出端口与处理器通信，用于经由计算机网络发送分组。