Forwarding inter-switch connection (ISC) frames in a network-to-network interconnect topology
Granted: October 7, 2014
Patent Number:
8855124
Systems, mechanisms, apparatuses, and methods are disclosed for forwarding Inter-Switch Connection (ISC) frames in a Network-to-Network Interconnect (NNI) topology, for example, via a network switch which includes a first physical switch port to receive a physical switch link from a second network switch; logic to implement a first logical ISC and a second logical ISC? connection to the second network switch via the physical switch link; a second physical switch port to receive an…
Forwarding inter-switch connection (ISC) frames in a network-to-network interconnect topology
Granted: September 23, 2014
Patent Number:
8842684
Systems, mechanisms, apparatuses, and methods are disclosed for forwarding Inter-Switch Connection (ISC) frames in a Network-to-Network Interconnect (NNI) topology, for example, via a network switch which includes a first and second physical switch port to receive a first and second physical switch link from a second network switch; logic to implement first and second logical ISC? connections to the second switch via the first and second physical switch links respectively; logic to…
System, method and apparatus for traffic mirror setup, service and security in communication networks
Granted: August 26, 2014
Patent Number:
8819213
The present invention provides method and systems for dynamically mirroring network traffic. The mirroring of network traffic may comprise data that may be considered of particular interest. The network traffic may be mirrored by a mirror service portal from a mirror sender, referred to as a mirror source, to a mirror receiver, referred to as a mirror destination, locally or remotely over various network segments, such as private and public networks and the Internet. The network traffic…
Redundant ethernet automatic protection switching access to virtual private LAN services
Granted: August 5, 2014
Patent Number:
8797849
Embodiments disclosed herein provide redundant connectivity between an Ethernet Automatic Protection Switching (EAPS) access network and a Virtual Private LAN Service (VPLS) network. A first VPLS node is provided to function as an EAPS controller node. A second VPLS node is provided to function as an EAPS partner node. The first and second VPLS nodes are linked by a pseudowire and an EAPS shared-link. Additional EAPS nodes are also provided. The additional EAPS nodes are linked to each…
Methods, systems, and computer program products for dynamic network access device port and user device configuration for implementing device-based and user-based policies
Granted: July 8, 2014
Patent Number:
8775571
Methods, systems, and computer program products for dynamic network access device port and user device configuration are disclosed. According to one method, when a user device is connected to a port of a network access device, the type of user device is determined. The type of user device is used to locate a corresponding port configuration policy. The port to which the device is connected is dynamically configured based on the port configuration policy.
3×8 stacked RJ45 connector with integrated LEDs option for 1U product form factor
Granted: July 8, 2014
Patent Number:
8771009
Systems and apparatuses are disclosed having a 3×8 stacked RJ45 connector with an integrated LEDs option for a 1U product form factor to provide increased density of an RJ45 connector which utilizes open source and non-proprietary modular connectors in conformity with published standards. For example, in one embodiment such systems and apparatuses include a networking component having therein a connector which includes a plurality of RJ45 jacks arranged into exactly three horizontal…
Integrated methods of performing network switch functions
Granted: July 1, 2014
Patent Number:
8767549
On-switch methods for enforcing a policy relating to one or more network switch resources, for detecting and mitigating a network anomaly, and for selectively filtering packets to an externally-accessible port, are provided. The methods may each be embodied as one or more rules held by one or more processor readable media, with one or more of the rules defining one or more conditions to be met by one or more usage-derived packet statistics, and one or more actions to be performed if the…
Port management system
Granted: June 10, 2014
Patent Number:
8751649
A method is provided for a port management system in which a switch is automatically provisioned with network resources. A command or set of commands are stored and automatically executed on the switch upon the occurrence of a defined network event. The command or set of commands may be associated with one or more ports on the switch. When executed, the commands cause a change to a port configuration and/or policy on the switch to control access to a network resource. The network…
Method and apparatus for network login authorization
Granted: June 10, 2014
Patent Number:
8751647
A method and apparatus is provided to control the admission of a user to a network by preventing a port through which the user connects to the network from forwarding data packets until the user is authorized. A network login controller operates in conjunction with a user interface to receive a user identification data from the port user. The network login controller further operates in conjunction with an authorization server to authenticate the user by sending a user authentication…
Methods, systems, and computer readable media for improved multi-switch link aggregation group (MLAG) convergence
Granted: May 20, 2014
Patent Number:
8730963
The subject matter described herein includes methods, systems, and computer readable media for improved multi-switch link aggregation group (MLAG) convergence. According to one aspect of the subject matter described herein, a system for improved multi-switch link aggregation group (MLAG) convergence is provided. The system includes a packet forwarding device. The packet forwarding device includes a packet processor for receiving a packet and determining that the packet is destined for a…
Methods and systems for selectively processing virtual local area network (VLAN) traffic from different networks while allowing flexible VLAN identifier assignment
Granted: May 13, 2014
Patent Number:
8724638
Methods and systems for selectively processing VLAN traffic from different networks while allowing flexible VLAN identifier assignment are disclosed. According to one aspect, a layer 2 switch includes a virtual switch identifier data structure that associates a VLAN identifier extracted from a layer 2 frame and a port identifier corresponding to a port on which a frame is received with a virtual switch identifier. The virtual switch identifier is used to select a per-virtual-switch data…
Method and system for detecting and preventing access intrusion in a network
Granted: April 22, 2014
Patent Number:
8707432
A wireless computer network includes components cooperating together to prevent access intrusions by detecting unauthorized devices connected to the network, disabling the network connections to the devices, and then physically locating the devices. The network can detect both unauthorized client stations and unauthorized edge devices such as wireless access points (APs). The network can detect intruders by monitoring information transferred over wireless channels, identifying protocol…
Methods, systems, and computer program products for selective layer 2 port blocking using layer 2 source addresses
Granted: April 22, 2014
Patent Number:
8705532
Methods, systems, and computer program products for selective layer 2 port blocking using layer 2 source addresses are disclosed. According to one method, a layer 2 frame is received. An I/O port block list is identified based on a layer 2 source address in the layer 2 frame. A set of ports to which the layer 2 fame should be forwarded is identified. The frame is blocked from being forwarded to ports in the set that are also in the I/O port block list.
Methods, systems, and computer readable media for next hop scaling
Granted: February 25, 2014
Patent Number:
8660118
The subject matter described herein includes a packet forwarding device that implements next hop scaling. Rather than storing a complete set of next hop bindings at each packet processor, the storage of next hop bindings is distributed among packet processors in the packet forwarding device such that each packet processor stores next hop bindings for the hosts that are directly connected to the packet processor. For hosts that are not directly connected to a packet processor, the packet…
Priority domains for protection switching processes
Granted: February 25, 2014
Patent Number:
8659993
Embodiments of the invention describe apparatus, systems and methods for creating a protection switching domain having a control virtual local area network (vlan), a first set of high priority protected data vlans, and a second set of lower priority protected data vlans. When a fault is detected at a ring network, indicating a failed link between adjacent nodes, said fault is communicated to a master node of the ring network via the control vlan. Embodiments of the invention allow a user…
Method of providing virtual router functionality
Granted: December 10, 2013
Patent Number:
8605732
A method of presenting different virtual routers to different end users, classes of service, or packets is provided. An incoming packet is received having a VLAN field and at least one additional field. A key is formed from the VLAN field and at least one other packet field, and mapped into a virtual router identifier (VRID) using an indirection mapping process. The VRID identifies a particular virtual router configuration from a plurality of possible virtual router configurations. A…
Methods, systems, and computer readable media for next hop scaling with link aggregation
Granted: December 10, 2013
Patent Number:
8605726
The subject matter described herein includes methods, systems, and computer readable media for next hop scaling with link aggregation. According to one aspect of the subject matter described herein, a system for next hop scaling is provided. The system includes a packet forwarding device including a plurality of packet processors for performing next hop and link aggregation group (LAG) selection operations. Within this plurality of packet processors, ingress packet processors are…
Ring topology discovery
Granted: November 12, 2013
Patent Number:
8583833
A method is provided for determining the integrity of a domain defined in a network. The method includes processes and systems to facilitate the discovery a conceptual ring topology of the domain in the network, and the determination of the integrity of the domain based on the conceptual ring topology that was discovered.
Method of and system for allocating resources to resource requests based on application of persistence policies
Granted: October 15, 2013
Patent Number:
8560693
A system for and method of allocating a resource to a service request based on application of a persistence policy is described. In one embodiment, upon or after allocation of a resource to a resource request, an entry representing the allocation is made in a data structure using a first index derived from information relating to the resource request if such is available. An entry representing the allocation is also made in the data structure using a second index derived from information…
Ethernet automatic protection switching
Granted: August 27, 2013
Patent Number:
8520507
Preventing a loop in a virtual network that spans at least two rings when there is a failure in a segment shared between the rings. A node connected to the shared segment and the rings detects a failure in the segment to transmit data traffic; and prevents transmitting data traffic between the node and all the rings except for one ring, in response to detecting the failure.
