Source-Based Steering Data Communications Packets For Transparent, Bump-In-The-Wire Processing Among Multiple Service Applications
First Claim
1. A method of steering data communications packets for transparent, bump-in-the-wire processing among multiple service applications,the method carried out in link-level data communications switching apparatus, the switching apparatus comprising at least one link-level data communications switch, the switching apparatus comprising a plurality of data communications ports, at least four of the ports coupling the switching apparatus to at least four data communications networks, the networks organized into at least two pairs of networks, at least two additional ports connected to service applications that carry out transparent, bump-in-the-wire data processing of data communications packets traveling among the networks, each service application associated with a unique, link-level identifier;
- the switching apparatus further comprising rules governing the steering of data communications among service applications and networks connected to the switching apparatus each rule comprising an association of an ingress port and a switch egress, the rules including at least one rule that further includes at least one network code that identifies a network pair and a direction of travel between the networks in the identified network pair, the rules configured to permit data communications through the switching apparatus only between networks in a pair, excluding data communications across pairs of networks;
the method comprising;
receiving, in the switching apparatus through an ingress port from a source network, data communications packets directed to a destination network, the source network and the destination network being members of a same pair of networks, each packet containing a source network address that identifies the source of the packet in the source network, each packet optionally also containing a destination network address that identifies a destination of the packet in the destination network; and
steering by the switching apparatus each packet among the service applications and through an egress port to the destination network, the steering carried out only in accordance with the rules, using neither the source network address of the packet, the destination network address of the packet, nor the link-level identifier of any service application.
1 Assignment
0 Petitions
Accused Products
Abstract
Steering data communications packets among multiple service applications in a link-level data communications switching apparatus that includes a link-level data communications switch and data communications ports coupling the switching apparatus to networks organized into pairs of networks, and ports connected to service applications, the switching apparatus further including rules governing the steering of data communications among service applications and networks, at least one rule that includes a network code that identifies a network pair and a direction of travel between the networks, including receiving data communications packets directed to a destination network, each packet containing a source network address, and steering by the switching apparatus each packet, the steering carried out only in accordance with the rules, using neither the source network address of the packet, the destination network address of the packet, nor the link-level identifier of any service application.
-
Citations
21 Claims
-
1. A method of steering data communications packets for transparent, bump-in-the-wire processing among multiple service applications,
the method carried out in link-level data communications switching apparatus, the switching apparatus comprising at least one link-level data communications switch, the switching apparatus comprising a plurality of data communications ports, at least four of the ports coupling the switching apparatus to at least four data communications networks, the networks organized into at least two pairs of networks, at least two additional ports connected to service applications that carry out transparent, bump-in-the-wire data processing of data communications packets traveling among the networks, each service application associated with a unique, link-level identifier; -
the switching apparatus further comprising rules governing the steering of data communications among service applications and networks connected to the switching apparatus each rule comprising an association of an ingress port and a switch egress, the rules including at least one rule that further includes at least one network code that identifies a network pair and a direction of travel between the networks in the identified network pair, the rules configured to permit data communications through the switching apparatus only between networks in a pair, excluding data communications across pairs of networks; the method comprising; receiving, in the switching apparatus through an ingress port from a source network, data communications packets directed to a destination network, the source network and the destination network being members of a same pair of networks, each packet containing a source network address that identifies the source of the packet in the source network, each packet optionally also containing a destination network address that identifies a destination of the packet in the destination network; and steering by the switching apparatus each packet among the service applications and through an egress port to the destination network, the steering carried out only in accordance with the rules, using neither the source network address of the packet, the destination network address of the packet, nor the link-level identifier of any service application. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. Apparatus for steering data communications packets for transparent, bump-in-the-wire processing among multiple service applications, the apparatus comprising:
-
a link-level data communications switching apparatus, the switching apparatus comprising at least one link-level data communications switch, the switching apparatus comprising a plurality of data communications ports, at least four of the ports coupling the switching apparatus to at least four data communications networks, the networks organized into at least two pairs of networks, at least two additional ports connected to service applications that carry out transparent, bump-in-the-wire data processing of data communications packets traveling among the networks, each service application associated with a unique, link-level identifier; the switching apparatus further comprising rules governing the steering of data communications among service applications and networks connected to the switching apparatus each rule comprising an association of an ingress port and a switch egress, the rules including at least one rule that further includes at least one network code that identifies a network pair and a direction of travel between the networks in the identified network pair, the rules configured to permit data communications through the switching apparatus only between networks in a pair, excluding data communications across pairs of networks; the apparatus configured to carry out the steps of; receiving, in the switching apparatus through an ingress port from a source network, data communications packets directed to a destination network, the source network and the destination network being members of a same pair of networks, each packet containing a source network address that identifies the source of the packet in the source network, each packet optionally also containing a destination network address that identifies a destination of the packet in the destination network; and steering by the switching apparatus each packet among the service applications and through an egress port to the destination network, the steering carried out only in accordance with the rules, using neither the source network address of the packet, the destination network address of the packet, nor the link-level identifier of any service application. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A computer program product for steering data communications packets for transparent, bump-in-the-wire processing among multiple service applications in link-level data communications switching apparatus, the computer program product disposed upon a recordable medium for machine-readable information,
the switching apparatus comprising at least one link-level data communications switch, the switching apparatus comprising a plurality of data communications ports, at least four of the ports coupling the switching apparatus to at least four data communications networks, the networks organized into at least two pairs of networks, at least two additional ports connected to service applications that carry out transparent, bump-in-the-wire data processing of data communications packets traveling among the networks, each service application associated with a unique, link-level identifier; -
the switching apparatus further comprising rules governing the steering of data communications among service applications and networks connected to the switching apparatus each rule comprising an association of an ingress port and a switch egress, the rules including at least one rule that further includes at least one network code that identifies a network pair and a direction of travel between the networks in the identified network pair, the rules configured to permit data communications through the switching apparatus only between networks in a pair, excluding data communications across pairs of networks; the computer program product comprising computer program instructions which, when executed by a data communications processor, cause the switch to carry out the steps of; receiving, in the switching apparatus through an ingress port from a source network, data communications packets directed to a destination network, the source network and the destination network being members of a same pair of networks, each packet containing a source network address that identifies the source of the packet in the source network, each packet optionally also containing a destination network address that identifies a destination of the packet in the destination network; and steering by the switching apparatus each packet among the service applications and through an egress port to the destination network, the steering carried out only in accordance with the rules, using neither the source network address of the packet, the destination network address of the packet, nor the link-level identifier of any service application. - View Dependent Claims (16, 17, 18, 19, 20, 21)
-
Specification