Method and apparatus for redirecting packets using encapsulation
First Claim
1. A method for selectively redirecting packets of information, said method comprising:
- a) receiving a first packet of information from a first source, said first packet of information having a first destination specified in a header of said first packet of information;
b) examining said first packet to determine whether a service request of said first packet exceeds a pre-determined service level available to said first source; and
c) processing said first packet of information to redirect said first packet of information to a second destination in place of said first destination if said first packet exceeds said pre-determined service level available to said first source, wherein said first packet of information is processed to be redirected to said second destination and include said first destination as specified in said header of said first packet of information, said step of processing enables said second destination to generate a reply packet to said first source, and said reply packet identifies said first destination as a source of said reply packet.
10 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus for redirecting packets using encapsulation techniques. In one embodiment, an Internet subscriber transmits an Internet service request to a Network Access Server (NAS). The service request is transmitted in a first packet. The NAS analyzes the first packet to determine whether the service request exceeds the subscriber'"'"'s internet subscription. If the request exceeds the subscriber'"'"'s subscription, the NAS encapsulates the first packet into a second packet and redirects the second to a redirection server. The packet is encapsulated to preserve the address of the original destination of the service request. Upon receipt, the redirection server generates a reply to the internet service request which specifies why the service request was denied. The redirection server also substitutes the address of the original destination as the source of the reply message to allow the reply message to be received as reply from the original destination.
74 Citations
46 Claims
-
1. A method for selectively redirecting packets of information, said method comprising:
-
a) receiving a first packet of information from a first source, said first packet of information having a first destination specified in a header of said first packet of information;
b) examining said first packet to determine whether a service request of said first packet exceeds a pre-determined service level available to said first source; and
c) processing said first packet of information to redirect said first packet of information to a second destination in place of said first destination if said first packet exceeds said pre-determined service level available to said first source, wherein said first packet of information is processed to be redirected to said second destination and include said first destination as specified in said header of said first packet of information, said step of processing enables said second destination to generate a reply packet to said first source, and said reply packet identifies said first destination as a source of said reply packet. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A computer-readable medium having stored thereon a plurality of instructions, including a first set of instructions for selectively redirecting packets of information, said first set of instructions, when executed by a processor, cause said processor to perform:
-
a) receiving a first packet of information from a first source, said first packet of information having a first destination specified in a header of said first packet of information;
b) examining said first packet to determine whether a service request of said first packet exceeds a pre-determined service level available to said first source; and
c) processing said first packet of information to redirect said first packet of information to a second destination in place of said first destination if said first packet exceeds said pre-determined service level available to said first source, wherein said first packet of information is processed to be redirected to said second destination and include said first destination as specified in said header of said first packet of information, said step of processing enables said second destination to generate a reply packet to said first source, and said reply packet identifies said first destination as a source of said reply packet. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A Network Access System (NAS) comprising:
-
a) a first device operable to receive a first packet of information from a first source, said first packet of information having a first destination specified in a header of said first packet of information;
b) said first device operable to examine said first packet to determine whether a service request of said first packet exceeds a pre-determined service level available to said first source; and
c) said first device further operable to process said first packet of information to redirect said first packet of information to a second destination in place of said first destination if said first packet exceeds said pre-determined service level available to said first source, said first packet of information is processed to be redirected to said second destination and include said first destination as specified in said header of said first packet of information, said step of processing enables said second destination to generate a reply packet to said first source, and said reply packet identifies said first destination as a source of said reply packet. - View Dependent Claims (14, 15, 16, 17)
-
-
18. A computer-readable medium having stored thereon a plurality of instructions, including a first set of instructions for redirecting packets of information, said first set of instructions, when executed by a processor, cause said processor to perform:
-
a) receiving, at a first server, a packet from a client, the packet including a header that identifies a second server as the destination of the packet;
b) examining the packet to determine whether a service request associated with the packet exceeds a pre-determined service level available to the client;
c) preserving the destination of the packet by encapsulating the packet within a new packet; and
d) if said service request associated with the packet exceeds said predetermined service level available to the client, redirecting the new packet to a third server in place of the second server, said encapsulating the packet within the new packet enables the third server to generate a reply packet to the client, wherein the reply packet identifies the second server as the source of the reply packet. - View Dependent Claims (19, 20, 21, 22)
-
-
23. A Network Access System (NAS) comprising:
-
a) a first server operable to receive a packet of information from a client, the packet of information including a header that identifies a second server as the destination of the packet;
b) said first server operable to examine the packet to determine whether a service request associated with the packet exceeds a pre-determined service level available to the client; and
c) said first server further operable to preserve the destination of the packet by encapsulating the packet within a new packet; and
d) if said service request associated with the packet exceeds said predetermined service level available to the client, said first server further operable to redirect the new packet to a third server in place of the second server, the encapsulating the packet within the new packet enables the third server to generate a reply packet to the client, wherein the reply identifies the second server as the source of the reply packet. - View Dependent Claims (24, 25, 26)
-
-
27. An apparatus, comprising:
-
a) means for receiving, at a first server, a packet from a client, the packet including a header that identifies a second server as the destination of the packet;
b) means for examining the packet to determine whether a service request associated with the packet exceeds a pre-determined service level available to the client;
c) means for preserving the destination of the packet by encapsulating the packet within a new packet; and
d) means for determining that if said service request associated with the packet exceeds said predetermined service level available to the client, redirecting the new packet to a third server in place of the second server, said encapsulating the packet within the new packet enables the third server to generate a reply packet to the client, wherein the reply packet identifies the second server as the source of the reply packet. - View Dependent Claims (28, 29, 30, 31)
-
-
32. A data signal embodied in a propagation medium, the data signal including a plurality of instructions, which when executed by a processor, cause the processor to:
-
a) receive, at a first server, a packet from a client, the packet including a header that identifies a second server as the destination of the packet;
c) examine the packet to determine whether a service request associated with the packet exceeds a pre-determined service level available to the client;
c) preserve the destination of the packet by encapsulating the packet within a new packet; and
d) if said service request associated with the packet exceeds said predetermined service level available to the client, redirect the new packet to a third server in place of the second server, said encapsulating the packet within the new packet enables the third server to generate a reply packet to the client, wherein the reply packet identifies the second server as the source of the reply packet. - View Dependent Claims (33, 34, 35, 36)
-
-
37. A first network device that selectively redirects a packet that is transmitted from a client, where the packet identifies a second network device in a destination field of a header that is associated with the packet, in order to facilitate providing an indication of denial of access to a service associated with the packet, comprising:
-
a) at least one port through which the packet of information is received;
b) processing circuitry that assists examination of the packet to determine whether the service associated with the packet is available to the client; and
c) redirection circuitry that causes generation of a new packet that encapsulates the packet, and transmission of the new packet to a third network device in place of the second network device if the service associated with the packet is determined to be unavailable to the client, whereby said third network device is facilitated in providing, for transmission to the client, a reply packet that identifies the second network device in a source field of a header that is associated with the reply packet. - View Dependent Claims (38, 39, 40, 41)
-
-
42. A method for selectively redirecting a packet that is transmitted from a client, where the packet identifies a first network device in a destination field of a header that is associated with the packet, in order to facilitate providing an indication of denial of access to a service associated with the packet, comprising the steps of:
-
receiving the packet at a second network device;
examining the packet to determine whether the service associated with the packet is available to the client; and
if the service associated with the packet is determined to be unavailable to the client, encapsulating the packet in a new packet and transmitting the new packet to a third network device in place of the first network device, whereby said third network device is facilitated in providing, for transmission to the client, a reply packet that identifies the second network device in a source field of a header that is associated with the reply packet. - View Dependent Claims (43, 44, 45, 46)
-
Specification