System and method for prioritization of traffic through internet access network
First Claim
1. A method of prioritizing traffic in a packet communication system destined for a receiving sub-network hosting a virtual private network (VPN) gateway, the method comprising:
- forwarding packets from an end user device and destined for the receiving sub-network through a gateway in an access network;
at the gateway, determining whether packets from the end user device are requesting a new session with the VPN gateway;
at the gateway, non-invasively and independently of any shared secrets between the VPN gateway and the end user device inferring from packets requesting a new session whether the request was accepted by the VPN gateway; and
if it is inferred that the request was accepted by the VPN gateway, maintaining traffic flows for a session between the VPN gateway and the end user device at a priority level higher than a default priority level.
4 Assignments
0 Petitions
Accused Products
Abstract
A method is provided for ensuring that specific traffic flows are adequately prioritized in a public packet communication network even when the network is heavily congested. Per-flow QoS capability is added to VPN tunnels. Connection requests are routed through a specific port in an access provider'"'"'s network to designated VPN gateway. Deep packet inspection is performed on traffic through the port in an attempt to determine whether the connection request was accepted. If the connection request was accepted, the traffic flows associated with that session may be given a specific priority of QoS level when transiting a packet access network.
135 Citations
12 Claims
-
1. A method of prioritizing traffic in a packet communication system destined for a receiving sub-network hosting a virtual private network (VPN) gateway, the method comprising:
-
forwarding packets from an end user device and destined for the receiving sub-network through a gateway in an access network;
at the gateway, determining whether packets from the end user device are requesting a new session with the VPN gateway;
at the gateway, non-invasively and independently of any shared secrets between the VPN gateway and the end user device inferring from packets requesting a new session whether the request was accepted by the VPN gateway; and
if it is inferred that the request was accepted by the VPN gateway, maintaining traffic flows for a session between the VPN gateway and the end user device at a priority level higher than a default priority level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for prioritizing traffic in a packet communication system destined for a receiving sub-network hosting a virtual private network (VPN) gateway, the system being in access network and comprising:
-
a subscriber and policy management system (SPMS) for informing other network elements within the access network to maintain traffic flows for a session at a priority level higher than a default priority level;
a gateway providing communication to the VPN gateway;
an edge router for forwarding traffic destined for the VPN gateway to the gateway;
means at the gateway for determining whether packets from an end user device are requesting a new session with the VPN gateway;
means at the gateway for non-invasively and independently of any shared secrets between the VPN gateway and the end user device inferring from packets requesting a new session whether the request was accepted by the VPN gateway; and
means at the gateway for informing the SPMS that a session is to be given a priority level higher than a default priority level in the event that it is inferred that packets requesting the new session were accepted by the VPN gateway. - View Dependent Claims (12)
-
Specification