Managing rogue devices through a network backhaul
First Claim
Patent Images
1. The method performed by a switch in a network backhaul comprising:
- receiving from a network backhaul rogue device management system in the network backhaul, a rogue device message including a media access control (MAC) address of a rogue device;
providing the rogue device message to a plurality of switches in the network backhaul;
in response to the rogue device message, flushing entries of a forwarding table of a switch of the plurality of switches, the entries of the forwarding table associated with MAC addresses of devices in a network, respectively, for routing traffic;
in response to the rogue device message, adding an entry associated with the MAC address to a rogue monitor table, entries of the rogue monitor table associated with MAC addresses of devices in the network, respectively, for monitoring rogue devices;
monitoring the forwarding table and the rogue monitor table to determine whether a MAC address of an entry included in the rogue monitor table is aged out and whether a new MAC address newly included in an entry of the forwarding table is included in the rogue monitor table;
upon determining that a MAC address included in an entry of the forwarding table is aged out, sending a rogue aged MAC message including aged device data that contains the aged MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an access point (AP) associated with the aged device data as out-of-net;
upon determining that the new MAC address is included in the rogue monitor table, sending a rogue learned MAC message including new learned device data that contains the new MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an AP associated with the new learned device data as in-net;
performing mitigation of the rogue device using a nearest switch in the backhaul network to the rogue device;
further comprising;
receiving from the network backhaul rogue device management system, a rogue update message including a MAC address of a rogue device that has been determined to be valid;
in response to the rogue update message, removing an entry associated with the MAC address of the valid rogue device from the rogue monitor table.
4 Assignments
0 Petitions
Accused Products
Abstract
Managing rogue devices in a network through a network backhaul. A rogue device is detected in a network and a rogue device message that includes the rogue device is sent to a plurality of switches in a backhaul of the network. The rogue device is added into a rogue monitor table. Whether the rogue device is In-Net or Out-Of-Net is determined using forwarding tables of the plurality of switches in the backhaul of the network and the rogue monitor table. Mitigation is performed using a nearest switch to the rogue device of the plurality of switches in the backhaul of the network if it is determined that the rogue device is In-Net.
266 Citations
18 Claims
-
1. The method performed by a switch in a network backhaul comprising:
-
receiving from a network backhaul rogue device management system in the network backhaul, a rogue device message including a media access control (MAC) address of a rogue device; providing the rogue device message to a plurality of switches in the network backhaul; in response to the rogue device message, flushing entries of a forwarding table of a switch of the plurality of switches, the entries of the forwarding table associated with MAC addresses of devices in a network, respectively, for routing traffic; in response to the rogue device message, adding an entry associated with the MAC address to a rogue monitor table, entries of the rogue monitor table associated with MAC addresses of devices in the network, respectively, for monitoring rogue devices; monitoring the forwarding table and the rogue monitor table to determine whether a MAC address of an entry included in the rogue monitor table is aged out and whether a new MAC address newly included in an entry of the forwarding table is included in the rogue monitor table; upon determining that a MAC address included in an entry of the forwarding table is aged out, sending a rogue aged MAC message including aged device data that contains the aged MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an access point (AP) associated with the aged device data as out-of-net; upon determining that the new MAC address is included in the rogue monitor table, sending a rogue learned MAC message including new learned device data that contains the new MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an AP associated with the new learned device data as in-net; performing mitigation of the rogue device using a nearest switch in the backhaul network to the rogue device; further comprising; receiving from the network backhaul rogue device management system, a rogue update message including a MAC address of a rogue device that has been determined to be valid; in response to the rogue update message, removing an entry associated with the MAC address of the valid rogue device from the rogue monitor table. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A switch for a network backhaul comprising one or more processors and memory storing instructions, when executed by the one or more processors, configured to cause the one or more processors to:
-
receive from a network backhaul rogue device management system in the network backhaul, a rogue device message including a media access control (MAC) address of a rogue device; in response to the rogue device message, flush entries of a forwarding table of the switch, the entries of the forwarding table associated with MAC addresses of devices in a network, respectively, for routing traffic; in response to the rogue device message, add an entry associated with the MAC address to a rogue monitor table, entries of the rogue monitor table associated with MAC addresses of devices in the network, respectively, for monitoring rogue devices; monitor the forwarding table and the rogue monitor table to determine whether a MAC address of an entry included in the rogue monitor table is aged out and whether a new MAC address newly included in an entry of the forwarding table is included in the rogue monitor table; upon determining that a MAC address included in an entry of the forwarding table is aged out, send a rogue aged MAC message including aged device data that contains the aged MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an access point (AP) associated with the aged device data as out-of-net; upon determining that the new MAC address is included in the rogue monitor table, send a rogue learned MAC message including new learned device data that contains the new MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an AP associated with the new learned device data as in-net; wherein the instructions are further configured to cause the one or more processors to; receive from the network backhaul rogue device management system, a rogue update message including a MAC address of a rogue device that has been determined to be valid; in response to the rogue update message, remove an entry associated with the MAC address of the valid rogue device from the rogue monitor table. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A system comprising:
-
a means for receiving from a network backhaul rogue device management system in the network backhaul, a rogue device message including a media access control (MAC) address of a rogue device; a means for flushing entries of a forwarding table of the switch, the entries of the forwarding table associated with MAC addresses of devices in a network, respectively, for routing traffic, in response to the rogue device message; a means for adding an entry associated with the MAC address to a rogue monitor table, entries of the rogue monitor table associated with MAC addresses of devices in the network, respectively, for monitoring rogue devices, in response to the rogue device message; a means for monitoring the forwarding table and the rogue monitor table to determine whether a MAC address of an entry included in the rogue monitor table is aged out and whether a new MAC address newly included in an entry of the forwarding table is included in the rogue monitor table; a means for sending, upon determining that a MAC address included in an entry of the forwarding table is aged out, a rogue aged MAC message including aged device data that contains the aged MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an access point (AP) associated with the aged device data as out-of-net; a means for sending, upon determining that the new MAC address is included in the rogue monitor table, a rogue learned MAC message including new learned device data that contains the new MAC address to the network backhaul rogue device management system, so as to cause the network backhaul rogue device management system to update a status of an AP associated with the new learned device data as in-net; a means for receiving from the network backhaul rogue device management system, a rogue update message including a MAC address of a rogue device that has been determined to be valid; a means for, in response to the rogue update message, removing an entry associated with the MAC address of the valid rogue device from the rogue monitor table.
-
Specification