Identifying network management policies
First Claim
1. A method comprising providing a capability to perform operations on a computer system, the operations comprising:
- identifying one or more policies associated with a network component;
generating a list of one or more groups to which the network component belongs; and
identifying one or more policies associated with each of the groups in the generated list.
1 Assignment
0 Petitions
Accused Products
Abstract
A policy based network management (PBNM) system may identify one or more policies associated with a network component (e.g., a network device, a device group, a device subgroup, a user, an application, an end-host, etc.) by identifying one or more policies directly associated with the network component, generating a list of one or more groups to which the network component belongs, and identifying one or more policies associated with each of the groups in the generated list. An aggregated data set (e.g., a hash table or a balanced tree) may be used to store network component identity elements, one or more pointers to a deployed policy tree, and one or more pointers to a network configuration tree. Each identity element in the data set identifies a network component and has an associated network configuration tree pointer and one or more associated deployed policy tree pointers.
-
Citations
39 Claims
-
1. A method comprising providing a capability to perform operations on a computer system, the operations comprising:
-
identifying one or more policies associated with a network component;
generating a list of one or more groups to which the network component belongs; and
identifying one or more policies associated with each of the groups in the generated list. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. An article comprising:
a storage medium having a plurality of machine readable instructions, wherein execution of the instructions causes a machine to perform operations comprising;
identify one or more policies associated with a network component;
generate a list of one or more groups to which the network component belongs; and
identify one or more policies associated with each of the groups in the generated list. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24)
-
25. A policy based network management (PBNM) system comprising:
-
a network configuration tree configured to store a tree representation of a network configuration, the tree representation being formed of a plurality of nodes, each node corresponding to a network component;
a deployed policy tree configured to store a tree representation of policies associated with network components;
an aggregated data set configured to store a plurality of data elements including one or more identity elements, one or more pointers to the deployed policy tree, and one or more pointers to the network configuration tree, each identity element identifying a network component and having an associated network configuration tree pointer and one or more associated deployed policy tree pointers; and
one or more software components configured to identify one or more policies associated with a network component;
generate a list of one or more groups to which the network component belongs; and
identify one or more policies associated with each of the groups in the generated list. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32)
-
-
33. A method comprising providing a capability to perform operations on a computer system, the operations comprising:
-
receiving a request to identify one or more policies associated with a specified subject;
identifying one or more policies directly associated with the specified subject;
generating a list of one or more groups to which the specified subject belongs; and
identifying one or more policies associated with each of the groups in the generated list. - View Dependent Claims (34, 35, 36, 37, 38, 39)
-
Specification