-
公开(公告)号:US06662223B1
公开(公告)日:2003-12-09
申请号:US09346080
申请日:1999-07-01
IPC分类号: G06F15173
CPC分类号: H04L41/5009 , H04L41/0213 , H04L41/5003 , H04L43/0829 , H04L43/087 , H04L69/16 , H04L69/28
摘要: The invention provides a control mechanism that enables a destination router to authenticate response time requests issued by a source router before providing the requests to service software for processing. The control mechanism comprises a Network Endpoint Control Protocol (NECP) message format that is exchanged between the source and destination routers when measuring response time throughout the network. The NECP message format encapsulates a Command Length Status Data (CLSD) message that actually holds the response time requests. A collector router issues a novel control message to a responder router over a default responder port. If the responder is enabled for encryption communication, it will decrypt the control message according to the specified key and algorithm. If the responder is not so configured, it will check a conventional ACL to determine whether the client is authorized to communicate with the server. If permitted, the responder then responds to the collector in a manner dependent upon the particular protocol. In the case of a request to enable a UDP port for a particular time period, the responder processes a request and then sends back an acknowledgment to the collector. The collector receives the acknowledgment and then sends out a UDP probe packet to the responder. The responder then “echoes” the packet back to the collector, which keeps the result.
摘要翻译: 本发明提供了一种控制机制,其使得目的路由器能够在向处理服务软件提供请求之前,验证源路由器发出的响应时间请求。 控制机制包括当测量整个网络的响应时间时,在源路由器和目的地路由器之间交换的网络端点控制协议(NECP)消息格式。 NECP消息格式封装了实际保存响应时间请求的命令长度状态数据(CLSD)消息。 收集器路由器通过默认响应端口向响应者路由器发出新颖的控制消息。 如果响应者启用加密通信,则会根据指定的密钥和算法对控制消息进行解密。 如果响应者未配置,则会检查传统的ACL,以确定客户端是否被授权与服务器进行通信。 如果允许,则响应者以取决于特定协议的方式响应于收集器。 在特定时间段内启用UDP端口的请求的情况下,响应者处理请求,然后将确认发回给收集器。 收件人收到确认,然后向响应者发出一个UDP探测包。 然后响应者将数据包“回显”回收集器,从而保持结果。
-
公开(公告)号:US07787404B2
公开(公告)日:2010-08-31
申请号:US11416708
申请日:2006-05-03
CPC分类号: H04L47/826 , H04L41/0213 , H04L41/0233 , H04L41/5022 , H04L43/00 , H04L43/0858 , H04L43/106 , H04L43/50 , H04L45/00 , H04L45/34 , H04L47/283 , H04L47/70 , H04L47/724 , H04L63/0428 , H04L63/08
摘要: A method for operating a computer network has a source router transmit a first message to be received by an intermediate router of the computer network, the first message to activate the intermediate router to listen for a designated time period for the intermediate router to receive a second message. Upon receiving a second message by the intermediate router during the designated time period, the intermediate router responds to the second message in response to receiving the second message during the designated time period.
摘要翻译: 用于操作计算机网络的方法具有源路由器传送要由计算机网络的中间路由器接收的第一消息,所述第一消息激活中间路由器以监听指定的时间段,以使中间路由器接收第二消息 信息。 在指定的时间段内由中间路由器接收到第二消息后,中间路由器响应于在指定的时间段期间接收到第二消息来响应第二消息。
-
公开(公告)号:US07088706B2
公开(公告)日:2006-08-08
申请号:US10926808
申请日:2004-08-26
IPC分类号: H08L12/66
CPC分类号: H04L47/826 , H04L41/0213 , H04L41/0233 , H04L41/5022 , H04L43/00 , H04L43/0858 , H04L43/106 , H04L43/50 , H04L45/00 , H04L45/34 , H04L47/283 , H04L47/70 , H04L47/724 , H04L63/0428 , H04L63/08
摘要: A control mechanism enables a destination router to authenticate a response time request issued by a source router. The control mechanism uses a control message that is transmitted by the source router to the destination router. Receipt of the control message by the destination router causes the destination router to listen for a server request message for a designated response time. The source router, after sending the control message, transmits a server request message to the destination router. In the event that the destination router receives the server request message within the designated response time, then the destination router responds to the server request message by providing the request to service software. The control message may encapsulate a message that holds the response time request. The request message may be encrypted.
摘要翻译: 控制机制使目的路由器能够认证源路由器发出的响应时间请求。 控制机制使用由源路由器发送到目标路由器的控制消息。 由目的地路由器接收控制消息使目的路由器监听指定响应时间的服务器请求消息。 源路由器在发送控制消息后,向目的路由器发送服务器请求消息。 在目的地路由器在指定的响应时间内接收到服务器请求消息的情况下,目的路由器通过向服务软件提供请求来响应服务器请求消息。 控制消息可以封装保存响应时间请求的消息。 请求消息可以被加密。
-
公开(公告)号:US20060203808A1
公开(公告)日:2006-09-14
申请号:US11416708
申请日:2006-05-03
IPC分类号: H04L12/66
CPC分类号: H04L47/826 , H04L41/0213 , H04L41/0233 , H04L41/5022 , H04L43/00 , H04L43/0858 , H04L43/106 , H04L43/50 , H04L45/00 , H04L45/34 , H04L47/283 , H04L47/70 , H04L47/724 , H04L63/0428 , H04L63/08
摘要: A method for operating a computer network has a source router transmit a first message to be received by an intermediate router of the computer network, the first message to activate the intermediate router to listen for a designated time period for the intermediate router to receive a second message. Upon receiving a second message by the intermediate router during the designated time period, the intermediate router responds to the second message in response to receiving the second message during the designated time period.
摘要翻译: 用于操作计算机网络的方法具有源路由器传送要由计算机网络的中间路由器接收的第一消息,所述第一消息激活中间路由器以监听指定的时间段,以使中间路由器接收第二消息 信息。 在指定的时间段内由中间路由器接收到第二消息后,中间路由器响应于在指定的时间段期间接收到第二消息来响应第二消息。
-
公开(公告)号:US20050089016A1
公开(公告)日:2005-04-28
申请号:US10926808
申请日:2004-08-26
CPC分类号: H04L47/826 , H04L41/0213 , H04L41/0233 , H04L41/5022 , H04L43/00 , H04L43/0858 , H04L43/106 , H04L43/50 , H04L45/00 , H04L45/34 , H04L47/283 , H04L47/70 , H04L47/724 , H04L63/0428 , H04L63/08
摘要: A control mechanism enables a destination router to authenticate a response time request issued by a source router. The control mechanism uses a control message that is transmitted by the source router to the destination router. Receipt of the control message by the destination router causes the destination router to listen for a server request message for a designated response time. The source router, after sending the control message, transmits a server request message to the destination router. In the event that the destination router receives the server request message within the designated response time, then the destination router responds to the server request message by providing the request to service software. The control message may encapsulate a message that holds the response time request. The request message may be encrypted.
摘要翻译: 控制机制使目的路由器能够认证源路由器发出的响应时间请求。 控制机制使用由源路由器发送到目标路由器的控制消息。 由目的地路由器接收控制消息使目的路由器监听指定响应时间的服务器请求消息。 源路由器在发送控制消息后,向目的路由器发送服务器请求消息。 在目的地路由器在指定的响应时间内接收到服务器请求消息的情况下,目的路由器通过向服务软件提供请求来响应服务器请求消息。 控制消息可以封装保存响应时间请求的消息。 请求消息可以被加密。
-
6.发明授权公开(公告)号:US07287069B1
公开(公告)日:2007-10-23
申请号:US10322850
申请日:2002-12-18
申请人: Ramanathan Kavasseri , Sankha Basu , Praveen Joshi , Shankar Natarajan , John Lautmann , Richard Pratt
发明人: Ramanathan Kavasseri , Sankha Basu , Praveen Joshi , Shankar Natarajan , John Lautmann , Richard Pratt
IPC分类号: G06F15/177
CPC分类号: H04L41/22 , H04L41/0816
摘要: Methods and devices are disclosed for changing the configuration state of a network device such as a router, a switch or a similar device without the need for a person to interpret a textual diff. According to some aspects of the invention, a programmatic diff file that includes the output of two comparisons is used as an input file to a program that “rolls back” the current configuration state to a prior configuration state. According to other aspects of the invention, the output of a single comparison is input to an “incremental diff” process, which adds new commands to a configuration state. According to preferred aspects of the invention, the output files generated by the comparison processes preserve the hierarchical context of each command in a programmatic format that is usable as direct input by the network device or by another device (such as a host controlled by a network administrator) that performs the incremental diff.
摘要翻译: 公开了用于改变诸如路由器,交换机或类似设备的网络设备的配置状态的方法和设备,而不需要人解释文本差异。 根据本发明的一些方面,包括两个比较的输出的程序化差异文件被用作向当前配置状态“回滚”到先前配置状态的程序的输入文件。 根据本发明的其他方面,单个比较的输出被输入到“增量差分”过程,其将新的命令添加到配置状态。 根据本发明的优选方面,由比较过程产生的输出文件以编程格式保存每个命令的分层上下文,该格式可用作网络设备或另一设备(例如由网络控制的主机)的直接输入 管理员)执行增量差异。
-
公开(公告)号:US06560644B1
公开(公告)日:2003-05-06
申请号:US09396958
申请日:1999-09-15
申请人: John Lautmann , Mark Denny
发明人: John Lautmann , Mark Denny
IPC分类号: G05F15173
CPC分类号: H04L41/0213
摘要: A complete management system for specialized routers such as, for example, DLSw routers is provided. The management system uses a server to maintain a DLSw Directory, for example an LDAP directory. Whenever a DLSw router is booted, the DLSw router sends a registration message to the Server giving the network address of the DLSw router. The Server then maintains a directory of all DLSw routers in the network (the DLSw Directory). The information maintained in the DLSw Directory has the network address of each DLSw router, as received when the router is booted up. Also, at later times, the DLSw router sends a message to the DLSw Directory giving further information about the DLSw router. The further information comprises data such as: the types of encapsulation being received and routed by the router, etc.
摘要翻译: 提供了一种完整的专用路由器管理系统,例如DLSw路由器。 管理系统使用服务器来维护DLSw目录,例如LDAP目录。 每当DLSw路由器被引导时,DLSw路由器向发出DLSw路由器的网络地址的服务器发送注册消息。 然后,服务器将维护网络中所有DLSw路由器的目录(DLSw目录)。 在DLSw目录中保存的信息具有每个DLSw路由器的网络地址,当路由器启动时接收。 此外,在稍后的时间,DLSw路由器向DLSw目录发送消息,提供有关DLSw路由器的更多信息。 进一步的信息包括诸如:由路由器接收和路由的封装类型等的数据
-
公开(公告)号:US06680942B2
公开(公告)日:2004-01-20
申请号:US09347512
申请日:1999-07-02
申请人: Andrew Mead , Arunkumar Thippeswamy , John Lautmann , Mark Denny , Scott Bales
发明人: Andrew Mead , Arunkumar Thippeswamy , John Lautmann , Mark Denny , Scott Bales
IPC分类号: H04L1256
CPC分类号: H04L61/1523 , H04L29/12018 , H04L45/00 , H04L61/10 , H04L61/1517
摘要: A new directory service is established for a peer router receiving a data packet from an end station on a local area network connected to a port of the peer router, the peer router hereinafter being referred to as the source router. The data packet is addressed to a destination address. The source router determines that the data packet is to be encapsulated as an encapsulated packet, and the encapsulated packet routed by a peer-to-peer protocol to a destination router. The destination router then transmits the packet onto a local area network to the destination address. The source router locates the proper peer destination router by use of a database. The database is maintained on a server, where the database has entries for destination address, and an entry for a particular destination address gives the address of a peer router capable of routing a packet to that particular destination address. The database is populated by peer routers updating the database with information concerning the destination address which the peer routers can reach. The database on the server is interrogated by the source router to learn the address of a destination peer router, and an encapsulated packet is then transmitted onto a connectionless network for transmission to the destination router. The peer-to-peer routing protocol may be DLSw protocol. The database may be maintained in accordance with the X.500 directory standard. The database may be interrogated using the lightweight data access protocol (LDAP).
摘要翻译: 为对等体路由器建立新的目录服务,该对等体路由器从连接到对等路由器的端口的局域网上的终端站接收数据分组,该对等体路由器在下文中称为源路由器。 数据包被寻址到目的地址。 源路由器确定数据包将被封装为封装的数据包,并且封装的数据包通过对等协议路由到目标路由器。 然后目的路由器将分组发送到局域网到目的地址。 源路由器通过使用数据库定位正确的对等目的地路由器。 数据库被维护在服务器上,其中数据库具有用于目的地地址的条目,并且用于特定目的地地址的条目给出能够将分组路由到该特定目的地地址的对等路由器的地址。 数据库由对等路由器填充,通过对等路由器可以达到的目的地址信息更新数据库。 源路由器询问服务器上的数据库,以学习目的地对等路由器的地址,然后将封装的数据包发送到无连接网络,以传输到目标路由器。 对等路由协议可以是DLSw协议。 可以根据X.500目录标准维护数据库。 可以使用轻量级数据访问协议(LDAP)来询问数据库。
-
9.发明授权Arrangement for controlling network proxy device traffic on a transparently-bridged local area network using a master proxy device 有权用于使用主代理设备在透明桥接的局域网上控制网络代理设备流量的布置
公开(公告)号:US6061728A
公开(公告)日:2000-05-09
申请号:US318431
申请日:1999-05-25
申请人: Andrew Joseph Mead , Frank Gerard Bordonaro , John Lautmann , Scott Allen Bales , Uwe Sellentin
发明人: Andrew Joseph Mead , Frank Gerard Bordonaro , John Lautmann , Scott Allen Bales , Uwe Sellentin
IPC分类号: G06F13/00
CPC分类号: H04L12/462
摘要: A transparently-bridged wide area network connecting Ethernet/IEEE 802.3-based local area networks uses redundant proxy devices on each LAN for internetwork communications. The proxy devices on a given LAN, implemented as data link switching (DLSw) devices, identify amongst each other a master proxy device for mediating services to be provided to an end station on the local area network. Each proxy device connected to the local area network sends a request to the identified master proxy device in response to detecting a frame transmitted by an end station on the local area network, for permission to establish a circuit connection for transfer of the frame via a wide area network. The master proxy device, based on prescribed criteria, selects one of the proxy devices for transferring the frame, and sends a grant response to the selected proxy device. The master proxy device sends an "inuse" response as a denial response to the other proxy devices indicating the corresponding request has been denied, thereby avoiding contention for proxy services. Databases within the proxy devices track the request, grants, and denials to minimize generation of repeated requests. The inventory of granted requests may also be modified based on failures detected within the master proxy device, or any proxy device having received grants. Hence, redundant DLSw-type proxy devices may be implemented on a local area network while maintaining a stable and a robust communications system.
摘要翻译: 连接以太网/ IEEE 802.3的局域网的透明桥接广域网在每个LAN上使用冗余代理设备进行互联网通信。 实现为数据链路交换(DLSw)设备的给定LAN上的代理设备在彼此之间识别主代理设备,用于中介要提供给局域网上终端站的服务。 连接到局域网的每个代理设备响应于检测到由局域网上的终端站发送的帧来向所识别的主代理设备发送请求,以允许建立用于经由宽的传输帧的电路连接 区域网络。 主代理设备基于规定的标准,选择一个代理设备来传送该帧,并向所选择的代理设备发送授权响应。 主代理设备发送“使用”响应作为对其他代理设备的拒绝响应,指示相应的请求已经被拒绝,从而避免了代理服务的争用。 代理设备内的数据库跟踪请求,授予和拒绝以最小化重复请求的生成。 授权请求的清单也可以基于在主代理设备或已经接收到授权的任何代理设备中检测到的故障来修改。 因此,可以在局域网上实现冗余的DLSw型代理设备,同时保持稳定和健壮的通信系统。
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.03 秒)
