NEIGHBOR DISCOVERY PROXY WITH DISTRIBUTED PACKET INSPECTION SCHEME
First Claim
Patent Images
1. A system, comprising:
- a network component containing circuitry configured to;
receive a packet encapsulated with a plurality of protocol layers;
inspect the received packet to determine whether the received packet is a neighbor discovery message, wherein a first inner layer of the protocol layers is analyzed during the inspection;
if the received packet is a neighbor discovery message according to the inspection, modify an attribute of a second layer according to a distributed inspection scheme between the network component and a remote routing device, wherein the second modified layer is an outer layer with respect to the first inner layer, wherein the second modified layer encapsulates the first analyzed layer; and
forward the packet having the modified attribute.
1 Assignment
0 Petitions
Accused Products
Abstract
A network device is to receive traffic including neighbor discovery messages from requesting customer devices, and can detect the neighbor discovery messages within the traffic according to a distributed inspection scheme that includes the network device and a remote component. The network device is to then examine the neighbor discovery messages to determine if the neighbor discovery message should be forwarded to other of the customer devices, and respond to the requesting customer devices.
104 Citations
20 Claims
-
1. A system, comprising:
-
a network component containing circuitry configured to; receive a packet encapsulated with a plurality of protocol layers; inspect the received packet to determine whether the received packet is a neighbor discovery message, wherein a first inner layer of the protocol layers is analyzed during the inspection; if the received packet is a neighbor discovery message according to the inspection, modify an attribute of a second layer according to a distributed inspection scheme between the network component and a remote routing device, wherein the second modified layer is an outer layer with respect to the first inner layer, wherein the second modified layer encapsulates the first analyzed layer; and forward the packet having the modified attribute. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A Cable Modem Termination System (CMTS), comprising circuitry configured to:
-
exchange traffic between a cable network and another network; identify an upstream portion of the traffic that is received over the cable network; inspect a layer two portion of packets included in the identified traffic portion, said inspection to identify ones of the packets containing a predefined bit value in their respective layer two portion; and filter the identified packets according to an address comparison. - View Dependent Claims (10, 11, 12, 13)
-
-
14. A method, comprising:
-
inspecting, at a first device, a first layer of a packet, the first layer encapsulated in a second different layer; according to whether the inspection indicates that the packet is a neighbor discovery packet, modifying information contained in the second different layer of the packet to indicate a result of the inspection; and forwarding the packet having the modified information from the first device, over a network, to a second device. - View Dependent Claims (15, 16, 17, 18, 19, 20)
-
Specification