公开(公告)号：US07181527B2

公开(公告)日：2007-02-20

申请号：US10113481

申请日：2002-03-29

申请人： Moshe Valenci ,  Tal Shustak ,  Gil Baruch ,  Rony Bitan

发明人： Moshe Valenci ,  Tal Shustak ,  Gil Baruch ,  Rony Bitan

IPC分类号： G06F15/16

CPC分类号： H04L67/101 ,  H04L47/10 ,  H04L47/125 ,  H04L67/1002 ,  H04L67/1023 ,  H04L67/1025 ,  H04L69/28

摘要： A method for transmitting load balancing in mixed speed environments such as physical interface speed changes and client flow speed changes is disclosed. Components such as an association module, a flow redirector, a channel assignment module, and a balancing timer are employed. The association module is a data structure that contains an association between client connections and a network interface. The flow redirector redirects transmitted network packets to the network interfaces based on the data, which is provided by the load balancing association. The channel assignment module is advised when such association data does not exist. The channel assignment module creates the association between the client connection- and the network interface, which is stored in the load balancing association. The decisions that this module makes affect the actual balancing between the network interfaces. The balancing timer computes throughput for client flows and re-associates client flows to the network interfaces.

摘要翻译： 公开了一种用于在诸如物理接口速度变化和客户端流速变化的混合速度环境中传送负载平衡的方法。 使用诸如关联模块，流重定向器，信道分配模块和平衡定时器的组件。 关联模块是包含客户端连接和网络接口之间的关联的数据结构。 流重定向器基于由负载平衡关联提供的数据将传输的网络数据包重定向到网络接口。 当这种关联数据不存在时，建议使用通道分配模块。 信道分配模块创建存储在负载均衡关联中的客户端连接与网络接口之间的关联。 该模块决定影响网络接口之间的实际平衡。 平衡计时器计算客户端流的吞吐量，并将客户端流重新关联到网络接口。

公开(公告)号：US20090070467A1

公开(公告)日：2009-03-12

申请号：US11899991

申请日：2007-09-07

申请人： Hormuzd Khosravi ,  Venkat R. Gokulrangan ,  Tal Shustak ,  Avigdor Eldar

发明人： Hormuzd Khosravi ,  Venkat R. Gokulrangan ,  Tal Shustak ,  Avigdor Eldar

IPC分类号： G06F15/173

CPC分类号： H04L63/10 ,  G06F21/305 ,  H04L63/162

摘要： In network access control networks, it may be difficult to provide certain remote accesses such as remote boot or remote storage access. An available network connection established through chipset firmware (e.g. active management technology (AMT)) may be utilized to establish a connection and to enable the remote access. Then as soon the completion of the activity is detected, such as remote booting, then the connection may be immediately terminated to prevent access by improper agents.

摘要翻译： 在网络访问控制网络中，可能难以提供某些远程访问，例如远程启动或远程存储访问。 可以利用通过芯片组固件（例如主动管理技术（AMT））建立的可用网络连接来建立连接并实现远程访问。 然后，一旦检测到活动的完成（例如远程启动），则可能立即终止连接，以防止不正当的代理访问。

公开(公告)号：US20080080373A1

公开(公告)日：2008-04-03

申请号：US11529985

申请日：2006-09-29

申请人： Avigdor Eldar ,  Eran Rousseau ,  Tal Shustak

发明人： Avigdor Eldar ,  Eran Rousseau ,  Tal Shustak

IPC分类号： H04L12/26

CPC分类号： H04L63/162 ,  H04L63/08 ,  H04L69/40

摘要： In an embodiment, a method is provided. The method of this embodiment provides detecting failure of a first device on a system to authenticate the system through a controlled port from which a service is requested; and using a second device on the system to authenticate the system through the controlled port, the second device sharing a link with the first device.

摘要翻译： 在一个实施例中，提供了一种方法。 该实施例的方法提供了系统上的第一设备的检测故障，以通过从其请求服务的受控端口认证系统; 并且在所述系统上使用第二设备通过所述受控端口认证所述系统，所述第二设备与所述第一设备共享链路。

公开(公告)号：US09239915B2

公开(公告)日：2016-01-19

申请号：US11904322

申请日：2007-09-26

申请人： Avigdor Eldar ,  Tal Roth ,  Hormuzd Khosravi ,  Tal Shustak ,  Yael Yanai

发明人： Avigdor Eldar ,  Tal Roth ,  Hormuzd Khosravi ,  Tal Shustak ,  Yael Yanai

IPC分类号： H04L29/06 ,  G06F21/33 ,  G06F21/71 ,  G06F21/85

CPC分类号： G06F21/33 ,  G06F21/71 ,  G06F21/85 ,  H04L63/0227 ,  H04L63/08 ,  H04L63/162

摘要： In network access controlled networks, it is desirable to prevent access to the network by any non-authenticated entities. Access control may be established through a trusted agent that, in some embodiments, may be implemented with a management co-processor. In some cases, active management technology may establish a connection while a host is inactive. Then, after the host becomes active, the host can attempt to use the management co-processor connection without obtaining the necessary authentications. This may be prevented, in some embodiments, by scanning for an active host and, if such an active host is found, blocking the host from using a layer 2 authentication channel unless the host is properly authenticated and has a proper Internet Protocol address.

公开(公告)号：US09178884B2

公开(公告)日：2015-11-03

申请号：US11899991

申请日：2007-09-07

申请人： Hormuzd Khosravi ,  Venkat R. Gokulrangan ,  Tal Shustak ,  Avigdor Eldar

发明人： Hormuzd Khosravi ,  Venkat R. Gokulrangan ,  Tal Shustak ,  Avigdor Eldar

IPC分类号： H04L29/06 ,  G06F21/30

CPC分类号： H04L63/10 ,  G06F21/305 ,  H04L63/162

摘要： In network access control networks, it may be difficult to provide certain remote accesses such as remote boot or remote storage access. An available network connection established through chipset firmware (e.g. active management technology (AMT)) may be utilized to establish a connection and to enable the remote access. Then as soon the completion of the activity is detected, such as remote booting, then the connection may be immediately terminated to prevent access by improper agents.

公开(公告)号：US08607058B2

公开(公告)日：2013-12-10

申请号：US11529985

申请日：2006-09-29

申请人： Avigdor Eldar ,  Eran Rousseau ,  Tal Shustak

发明人： Avigdor Eldar ,  Eran Rousseau ,  Tal Shustak

IPC分类号： H04L29/06 ,  G06F7/04

CPC分类号： H04L63/162 ,  H04L63/08 ,  H04L69/40

摘要： In an embodiment, a method is provided. The method of this embodiment provides detecting failure of a first device on a system to authenticate the system through a controlled port from which a service is requested; and using a second device on the system to authenticate the system through the controlled port, the second device sharing a link with the first device.

摘要翻译： 在一个实施例中，提供了一种方法。 该实施例的方法提供了系统上的第一设备的检测故障，以通过从其请求服务的受控端口认证系统; 并且在所述系统上使用第二设备通过所述受控端口认证所述系统，所述第二设备与所述第一设备共享链路。

公开(公告)号：US20090083844A1

公开(公告)日：2009-03-26

申请号：US11904322

申请日：2007-09-26

申请人： Avigdor Eldar ,  Tal Roth ,  Hormuzd Khosravi ,  Tal Shustak ,  Yael Yanai

发明人： Avigdor Eldar ,  Tal Roth ,  Hormuzd Khosravi ,  Tal Shustak ,  Yael Yanai

IPC分类号： G06F21/20 ,  G06F15/173

CPC分类号： G06F21/33 ,  G06F21/71 ,  G06F21/85 ,  H04L63/0227 ,  H04L63/08 ,  H04L63/162

摘要： In network access controlled networks, it is desirable to prevent access to the network by any non-authenticated entities. Access control may be established through a trusted agent that, in some embodiments, may be implemented with a management co-processor. In some cases, active management technology may establish a connection while a host is inactive. Then, after the host becomes active, the host can attempt to use the management co-processor connection without obtaining the necessary authentications. This may be prevented, in some embodiments, by scanning for an active host and, if such an active host is found, blocking the host from using a layer 2 authentication channel unless the host is properly authenticated and has a proper Internet Protocol address.

摘要翻译： 在网络访问控制网络中，期望防止任何未经认证的实体访问网络。 访问控制可以通过可信代理来建立，在一些实施例中，可以使用管理协处理器来实现。 在某些情况下，主动管理技术可能会在主机处于非活动状态时建立连接。 然后，在主机变为活动状态之后，主机可以尝试使用管理协处理器连接，而无需获得必要的认证。 在一些实施例中，可以通过扫描活动主机来防止这种情况，并且如果发现这样的活动主机，则阻止主机使用第2层认证信道，除非主机被正确认证并具有适当的因特网协议地址。