公开(公告)号：US08503396B2

公开(公告)日：2013-08-06

申请号：US13198084

申请日：2011-08-04

申请人： Richard H. Blanchette ,  Martin Bouchard ,  Anil Gupta ,  Yannick Koehler ,  Gilbert Moineau ,  Fréderic D. Mouveaux ,  Roger D. Sands ,  Pierre Trudeau

发明人： Richard H. Blanchette ,  Martin Bouchard ,  Anil Gupta ,  Yannick Koehler ,  Gilbert Moineau ,  Fréderic D. Mouveaux ,  Roger D. Sands ,  Pierre Trudeau

IPC分类号： H04W4/00 ,  H04H20/71 ,  H04L12/66 ,  H04L12/28 ,  H04B1/16

CPC分类号： H04W8/02 ,  H04L45/66 ,  H04W40/36 ,  H04W80/02 ,  H04W80/04

摘要： To enable a network apparatus to detect L3 roaming users and to take appropriate forwarding actions, L3 knowledge is introduced inside an L2 bridge forwarding table in the network apparatus. As a client moves from a subnet associated with a first network element to a subnet associated with the network apparatus, a determination is made regarding whether the client is roaming by evaluating a source IP address within a L3 packet header within a first frame received at the network apparatus. If, as a result of the evaluating step, it is determined that the client is roaming, the L2 bridge forwarding table is configured to include a source MAC address of the client together with information identifying a destination interface for use in directing client data traffic back towards the subnet associated with the first network element.

摘要翻译： 为了使网络设备能够检测L3漫游用户并采取适当的转发动作，在网络设备的L2桥转发表中引入L3知识。 当客户端从与第一网元相关联的子网移动到与网络装置相关联的子网时，通过评估在第一帧中接收到的第一帧内的L3分组报头内的源IP地址来确定客户端是否正在漫游 网络设备 如果作为评估步骤的结果，确定客户端正在漫游，则L2桥转发表被配置为包括客户端的源MAC地址以及标识目的地接口的信息，以用于将客户端数据业务引导回来 朝向与第一网络元件相关联的子网。

公开(公告)号：US20120039230A1

公开(公告)日：2012-02-16

申请号：US13198084

申请日：2011-08-04

申请人： Richard H. Blanchette ,  Martin Bouchard ,  Anil Gupta ,  Yannick Koehler ,  Gilbert Moineau ,  Fréderic D. Mouveaux ,  Roger D. Sands ,  Pierre Trudeau

发明人： Richard H. Blanchette ,  Martin Bouchard ,  Anil Gupta ,  Yannick Koehler ,  Gilbert Moineau ,  Fréderic D. Mouveaux ,  Roger D. Sands ,  Pierre Trudeau

IPC分类号： H04W40/20 ,  H04W4/06

CPC分类号： H04W8/02 ,  H04L45/66 ,  H04W40/36 ,  H04W80/02 ,  H04W80/04

摘要： To enable a network apparatus to detect L3 roaming users and to take appropriate forwarding actions, L3 knowledge is introduced inside an L2 bridge forwarding table in the network apparatus. As a client moves from a subnet associated with a first network element to a subnet associated with the network apparatus, a determination is made regarding whether the client is roaming by evaluating a source IP address within a L3 packet header within a first frame received at the network apparatus. If, as a result of the evaluating step, it is determined that the client is roaming, the L2 bridge forwarding table is configured to include a source MAC address of the client together with information identifying a destination interface for use in directing client data traffic back towards the subnet associated with the first network element.

摘要翻译： 为了使网络设备能够检测L3漫游用户并采取适当的转发动作，在网络设备的L2桥转发表中引入L3知识。 当客户端从与第一网元相关联的子网移动到与网络装置相关联的子网时，通过评估在第一帧中接收到的第一帧内的L3分组报头内的源IP地址来确定客户端是否正在漫游 网络设备 如果作为评估步骤的结果，确定客户端正在漫游，则L2桥转发表被配置为包括客户端的源MAC地址以及标识目的地接口的信息，以用于将客户端数据业务引导回来 朝向与第一网络元件相关联的子网。

公开(公告)号：US08018900B2

公开(公告)日：2011-09-13

申请号：US11646904

申请日：2006-12-28

申请人： Richard H. Blanchette ,  Martin Bouchard ,  Anil Gupta ,  Yannick Koehler ,  Gilbert Moineau ,  Fréderic D. Mouveaux ,  Roger D. Sands ,  Pierre Trudeau

发明人： Richard H. Blanchette ,  Martin Bouchard ,  Anil Gupta ,  Yannick Koehler ,  Gilbert Moineau ,  Fréderic D. Mouveaux ,  Roger D. Sands ,  Pierre Trudeau

IPC分类号： H04W4/00 ,  H04W36/00 ,  H04L12/28

CPC分类号： H04W8/02 ,  H04L45/66 ,  H04W40/36 ,  H04W80/02 ,  H04W80/04

摘要： To enable devices to detect L3 roaming users and to take appropriate forwarding actions, L3 knowledge is introduced inside a bridge in a non-intrusive way. In particular, as a client moves from a subnet associated with a first network element to a subnet associated with a second network element, a determination is made regarding whether the client is roaming. This is done by evaluating a source IP address within a L3 packet header within a first frame received at the second network element. If, as a result of the evaluating step, it is determined that the client is roaming, an L2 bridge forwarding table in the second network element is configured to include a source MAC address of the client together with information identifying at least a destination interface for use in directing client data traffic back towards the subnet associated with the first network element. The first frame is then forwarded. In one embodiment, the traffic is directed back towards the subnet associated with the first network element via a GRE encapsulation tunnel, although any convenient tunneling mechanism can be used. According to another feature, given information cached at the foreign access point is used to enable the roaming client to continue to seamlessly receive inbound traffic prior to or during the configuration of the L2 bridge forwarding table (i.e., before any outbound traffic is actually sent from the client).

摘要翻译： 为了使设备能够检测L3漫游用户并采取适当的转发动作，L3桥梁内部以非侵入式方式引入知识。 特别地，当客户端从与第一网络元件相关联的子网移动到与第二网络元件相关联的子网时，确定客户端是否正在漫游。 这是通过评估在第二网络单元接收的第一帧内的L3分组报头内的源IP地址来完成的。 如果作为评估步骤的结果，确定客户端正在漫游，则第二网元中的L2桥转发表被配置为将客户端的源MAC地址与至少标识至少目的地接口的信息 用于将客户端数据业务引导回与第一网络元件相关联的子网。 然后转发第一帧。 在一个实施例中，尽管可以使用任何方便的隧道机制，但是业务通过GRE封装隧道被引导回到与第一网络元件相关联的子网。 根据另一特征，在外部接入点处缓存的给定信息被用于使得漫游客户端能够在配置L2网桥转发表之前或期间继续无缝地接收入站流量（即，在任何出站流量实际上从 客户端）。

公开(公告)号：US07873352B2

公开(公告)日：2011-01-18

申请号：US11430547

申请日：2006-05-09

申请人： Hien Nguyen ,  Pierre Trudeau ,  Anil Gupta ,  Roger D. Sands ,  Thomas S. Stefanski

发明人： Hien Nguyen ,  Pierre Trudeau ,  Anil Gupta ,  Roger D. Sands ,  Thomas S. Stefanski

IPC分类号： H04M1/66 ,  H04W36/00 ,  H04W4/00

CPC分类号： H04L63/06 ,  H04L63/08 ,  H04L63/166 ,  H04W12/04 ,  H04W12/06 ,  H04W36/0011 ,  H04W36/0016 ,  H04W84/12 ,  H04W88/08

摘要： A fast roaming (handoff) service is provided for a WLAN infrastructure. A given mobile station (STA) obtains a pairwise master key (PMK) when it associates with an access point (AP) in the infrastructure. A neighbor graph identifies prospective APs to which the STA may then roam. At initialization, preferably the neighbor graph is fully-connected (i.e., each AP is assumed to be connected to every other AP). The PMK (obtained by the STA initially) is shared proactively with the neighbor APs as indicated in the neighbor graph. Thus, when the STA roams to a neighbor AP, because the PMK is already available, there is no requirement that the STA initiate a real-time request to an authentication server to re-associate to the new AP. Further, the new AP causes an update to the neighbor graph information implicitly by simply issuing a notification that it is now handling the STA that arrived from the prior AP; in this manner, the prior AP is confirmed as a neighbor, but there is no requirement for any inter-AP dialog before a given neighbor graph is updated. As roaming occurs the neighbor graph is pruned down (to reflect the actual neighbor AP connections) using the implicit notification data.

摘要翻译： 为WLAN基础设施提供快速漫游（切换）服务。 当给定移动站（STA）与基础设施中的接入点（AP）相关联时，获得成对主密钥（PMK）。 邻居图识别STA可能漫游的预期AP。 在初始化时，优选邻居图是完全连接的（即，假设每个AP被连接到每个其他AP）。 PMK（由STA最初获得）与邻居图中所示的相邻AP主动共享。 因此，当STA漫游到邻居AP时，由于PMK已经可用，所以不要求STA向认证服务器发起与新AP重新关联的实时请求。 此外，新的AP通过简单地发出它正在处理从先前的AP到达的STA的通知来隐式地更新邻居图信息; 以这种方式，先前的AP被确认为邻居，但是在给定的邻居图更新之前不需要任何AP间对话。 当漫游发生时，使用隐式通知数据修剪邻居图（以反映实际的邻居AP连接）。