Creating, modifying and storing service abstractions and role abstractions representing one or more packet rules
First Claim
1. A method of controlling usage of network resources on a communications network, the method comprising acts of:
- (A) creating one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
(B) creating one or more service abstractions, each service abstraction representing a named set of one or more of the packet rules.
11 Assignments
0 Petitions
Accused Products
Abstract
Usage of network resources on a communications network is controlled by creating one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition, and creating one or more service abstractions, each service abstraction representing a named set of one or more of the packet rules. Further, one or more role abstractions may be created, each role abstraction representing a role of a user with respect to the communications network, and each role abstraction including a set of one more packet rules, and possibly one or more service abstractions. These role abstractions and service abstractions may be stored and distributed to network devices on the communications network. Role abstractions and service abstractions ease the configuration, implementation, and administration of packet rules and network policy by enabling the reuse, storage, and modification of an aggregation of one or more packet rules. Instead of configuring each existing or new device in a network individually, roles and service abstractions can be used to simultaneously configure a number of devices, regardless of location in the network. Role abstractions and service abstractions allow a network administrator to aggregate complex technological configuration parameters providing translation between the languages of technical and non-technical members of an organization.
-
Citations
40 Claims
-
1. A method of controlling usage of network resources on a communications network, the method comprising acts of:
-
(A) creating one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
(B) creating one or more service abstractions, each service abstraction representing a named set of one or more of the packet rules. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system for controlling usage of network resources on a communications network, the system comprising:
-
a rule editing module to create one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
a service editing module to create one or more service abstractions, each service abstraction representing a named set of one or more of the packet rules. - View Dependent Claims (14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
-
25. A system for controlling usage of network resources on a communications network, the system comprising:
-
a rule editing module to create one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
means for creating one or more service abstractions, each service abstraction representing a named set of one or more of the packet rules.
-
-
26. A computer program product, comprising:
-
a computer readable medium; and
computer readable signals stored on the computer readable medium that define instructions that, as a result of being executed by a computer, instruct the computer to perform a process of controlling usage of network resources on a communications network, the process comprising acts of;
(A) creating one or more packet rules for analyzing packets received at one or more devices of the communication network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
(B) creating one or more service abstractions, each service abstraction representing a named set of one or more of the packet rules.
-
-
27. A method of controlling usage of network resources on a communications network, the method comprising acts of:
-
(A) creating one or more packet rules for analyzing packets received at one or more devices of the communication network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
(B) creating one or more role abstractions, each role abstraction representing a role of a user with respect to the communications network, and each role abstraction including a set of one more packet rules. - View Dependent Claims (28, 29, 30, 31, 32)
-
-
33. A system for controlling usage of network resources on a communications network, the system comprising:
-
a rule editing module to create one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
a role editing module to create one or more role abstractions, each role abstraction representing a role of a user with respect to the communications network, and each role abstraction including a set of one more packet rules. - View Dependent Claims (34, 35, 36, 37, 38)
-
-
39. A system for controlling usage of network resources on a communications network, the system comprising:
-
a rule editing module to create one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
means for creating one or more role abstractions, each role abstraction representing a role of a user with respect to the communications network, and each role abstraction including a set of one more service abstractions.
-
-
40. A computer program product, comprising:
-
a computer readable medium; and
computer readable signals stored on the computer readable medium that define instructions that, as a result of being executed by a computer, instruct the computer to perform a process of controlling usage of network resources on a communications network, the process comprising acts of;
(A) creating one or more packet rules for analyzing packets received at one or more devices of the communications network, each rule including a condition and action to be taken if a packet received at a device satisfies the condition; and
(B) creating one or more role abstractions, each role abstraction representing a role of a user with respect to the communications network, and each role abstraction including a set of one more service abstractions.
-
Specification