Network operating system for managing and securing networks
First Claim
1. A method for managing a network, comprising:
- maintaining a view of current state of the network, the current state of the network characterizing the network topology and network constituents, the network constituents including network entities and network elements residing in or on the network;
characterizing the location and identity of network entities;
announcing events corresponding to changes in the state of the network; and
configuring one or more of the network elements based on the network view and/or one or more of the events.
2 Assignments
0 Petitions
Accused Products
Abstract
Systems and methods for managing a network are described. A view of current state of the network is maintained where the current state of the network characterizes network topology and network constituents, including network entities and network elements residing in or on the network. Events are announced that correspond to changes in the state of the network and one or more network elements can be configured accordingly. Methods for managing network traffic are described that ensure forwarding and other actions taken by network elements implement globally declared network policy and refer to high-level names, independently of network topology and the location of network constituents. Methods for discovering network constituents are described, whereby are automatically configured. Routing may be performed using ACL and packets can be intercepted to permit host to continue in sleep mode. The methods are applicable to virtual environments.
-
Citations
24 Claims
-
1. A method for managing a network, comprising:
-
maintaining a view of current state of the network, the current state of the network characterizing the network topology and network constituents, the network constituents including network entities and network elements residing in or on the network; characterizing the location and identity of network entities; announcing events corresponding to changes in the state of the network; and configuring one or more of the network elements based on the network view and/or one or more of the events. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
- 10. A method for managing network traffic, comprising enforcing a globally declared network policy, wherein enforcing the globally declared network policy includes ensuring that actions taken by network elements implement the globally declared network policy, wherein the actions including forwarding, and wherein the globally declared network policy refers to high-level names, is independent of network topology and is independent of the location of network constituents.
- 17. A method for managing a network, in which new network constituents are discovered automatically, comprising automatically configuring one or more elements to adapt to the presence of the new network constituents.
-
21. A method comprising routing a majority of traffic using ACL capabilities of commercial switches.
-
22. A method for intelligently intercepting packets destined for hosts, thereby enabling hosts to remain in reduced power modes until critical traffic is sent to them.
- 23. A method for selectively intercepting traffic destined for certain hosts, the certain hosts operating in a reduced power mode, wherein the hosts remain in reduced power mode until critical traffic is intercepted.
Specification