Method and apparatus for identifying network data traffic flows and for applying quality of service treatments to the flows
First Claim
Patent Images
1. A method for applying a service treatment to a plurality of network messages issued by a network entity connected to a computer network, the network messages corresponding to a traffic flow, the computer network configured to support transport and network communication layers and having a policy enforcer, the method comprising the steps of:
- receiving from the policy enforcer a request policy message identifying the traffic flow and including one or more application-level parameters;
utilizing at least some of the included application-level parameters to select one or more service treatments to be applied to the traffic flow;
generating a policy decision message containing the one or more service treatments selected for the traffic flow; and
sending the policy decision message to the policy enforcer.
0 Assignments
0 Petitions
Accused Products
Abstract
A system within a computer network identifies specific traffic flows originating from a given network entity and requests and applies appropriate policy rules or service treatments to the traffic flows. A network entity includes a flow declaration component that communicates with one or more application programs executing on the entity. The flow declaration component includes a message generator and an associated memory for storing one or more traffic flow data structures. For a given traffic flow, the application program issues one or more calls to the flow declaration component providing it with information identifying the traffic flows. The flow declaration component then opens a flow management session with a local policy enforcer that obtains policy rules or service treatments for the identified flow from a policy server and applies those rules or treatments to the specific traffic flows from the network entity.
420 Citations
16 Claims
-
1. A method for applying a service treatment to a plurality of network messages issued by a network entity connected to a computer network, the network messages corresponding to a traffic flow, the computer network configured to support transport and network communication layers and having a policy enforcer, the method comprising the steps of:
-
receiving from the policy enforcer a request policy message identifying the traffic flow and including one or more application-level parameters;
utilizing at least some of the included application-level parameters to select one or more service treatments to be applied to the traffic flow;
generating a policy decision message containing the one or more service treatments selected for the traffic flow; and
sending the policy decision message to the policy enforcer. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
formulating one or more classification rules for instructing the policy enforcer to mark network messages corresponding to the traffic flow with one or more of a selected Differentiated Services Codepoint (DSCP), a selected Type of Service (ToS), and a selected user_priority; and
loading the policy decision message with the one or more classification rules.
-
-
5. The method of claim 4 wherein the policy enforcer has a plurality of queues and queue scheduling algorithms, the method further comprising the steps of:
formulating one or more behavioral rules for instructing the policy enforcer to map network messages marked with a selected DSCP, ToS and/or user_priority to a particular queue and to apply a designated queue scheduling algorithm.
-
6. The method of claim 5 wherein a behavioral rule instructs the policy enforcer to apply a Weighted Fair Queuing (WFQ) queue scheduling algorithm.
-
7. The method of claim 1 wherein the computer network further has a repository configured to store information, and the step of utilizing comprises the steps of:
-
requesting information from the repository; and
utilizing the information from the repository in selecting the one or more service treatments to be applied to the traffic flow.
-
-
8. The method of claim 1 further comprising the step of sending a decision change message to the policy enforcer, following the step of sending the policy decision message, wherein the decision change message contains one or more service treatments that differ from the service treatments specified by the policy decision message.
-
9. The method of claim 1 further comprising the steps of:
-
receiving a request policy update message from the policy server, the request policy update message containing traffic flow and/or application-level parameters that differ from the traffic flow and/or application-level parameters contained in the request policy message;
utilizing the traffic flow and/or application-level parameters from the request policy update message to select one or more new service treatments;
generating a policy decision update message containing the one or more new service treatments; and
sending the policy decision update message to the policy enforcer.
-
-
10. A computer readable medium containing executable program instructions for use in applying a service treatment to a plurality of network messages issued by a network entity connected to a computer network, the network messages corresponding to a traffic flow, the computer network configured to support transport and network communication layers and having a policy server, the executable program instructions comprising program instructions for:
-
receiving from the network entity a message identifying the traffic flow and including one or more application-level parameters;
generating a request policy message for the identified traffic flow, the request policy message containing at least some of the application-level parameters included in the message;
sending the request policy message to the policy server; and
receiving a policy decision message from the policy server specifying one or more service treatments to be applied to the traffic flow, the one or more service treatments based, at least in part, upon the application-level parameters contained in the request policy message. - View Dependent Claims (11, 12, 13, 14)
identifying network messages corresponding to the traffic flow; and
applying the one or more service treatments specified in the policy decision message to those network messages identified as corresponding to the traffic flow.
-
-
12. The computer readable medium of claim 10 wherein the application-level parameters included in the request policy message specify one or more of the following characteristics:
- the size of a file being transmitted, a video segment name, a video segment viewer, a user name, a user department, an application identifier, a transaction type, a transaction name, an application state, a calling party, a called party, a compression method, a service level, a uniform resource locator (URL) and a mime type.
-
13. The computer readable medium of claim 10 wherein the one or more service treatments specified in the policy decision message include instructions for marking network messages corresponding to the traffic flow with one or more of a selected Differentiated Services Codepoint (DSCP), a selected Type of Service (ToS), and a selected user_priority.
-
14. The computer readable medium of claim 12 further comprising program instructions for generating and sending to the policy server one or more client accept messages carrying a keep alive timer value.
-
15. A policy server for use in applying a service treatment to a plurality of network messages issued by a network entity connected to a computer network, the network messages corresponding to a traffic flow, the computer network configured to support transport and network communication layers and having a policy enforcer, the policy server comprising:
-
means for sending and receiving messages to and from the policy enforcer via the computer network; and
means, responsive to receipt of a request policy message identifying the traffic flow and containing one or more application-level parameters, for selecting one or more service treatments to be applied to the traffic flow, wherein the one or more service treatments are selected based at least in part on the one or more application-level parameters, and the message sending and receiving means sends a policy decision message to the policy enforcer carrying the one or more selected service treatments.
-
-
16. A policy enforcer for use in applying a service treatment to a plurality of network messages issued by an application program running on a network entity connected to a computer network, the network messages corresponding to a traffic flow, the computer network configured to support transport and network communication layers and having a policy server, the policy enforcer comprising:
-
means for sending and receiving messages via the computer network to the network entity and the policy server; and
means for applying varying service treatments to traffic flows, wherein in response to receiving a flow start message from the network entity identifying the traffic flow and containing one or more application-level parameters, the policy enforcer generates and sends to the policy server a request policy message for the identified traffic flow, the request policy message containing at least some of the application-level parameters included in the flow start message, in response to receiving a policy decision message from the policy server specifying one or more service treatments, applying the one or more service treatments to the traffic flow from the network entity, and the one or more service treatments based, at least in part, upon the application-level parameters contained in the request policy message.
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeCisco Technology, Inc. (Cisco Systems, Inc.)
-
Original AssigneeCisco Technology, Inc. (Cisco Systems, Inc.)
-
InventorsMcCloghrie, Keith, Gai, Silvano, Mohaban, Shai
-
Primary Examiner(s)VU, VIET DUY
-
Application NumberUS10/191,605Time in Patent Office497 DaysField of Search709/223, 709/224, 709/225, 709/238, 709/249, 709/311, 370/235US Class Current709/224CPC Class CodesH04L 41/0893 Assignment of logical group...H04L 41/0894 Policy-based network config...H04L 41/0895 Configuration of virtualise...H04L 41/5003 Managing SLA; Interaction b...H04L 41/5045 Making service definitions ...H04L 41/5096 wherein the managed service...H04L 47/10 Flow control; Congestion co...H04L 47/20 Traffic policingH04L 47/2408 for supporting different se...H04L 47/2433 Allocation of priorities to...H04L 47/2441 relying on flow classificat...H04L 47/2475 for supporting traffic char...H04L 47/70 Admission control; Resource...H04L 47/724 at intermediate nodes, e.g....H04L 47/803 Application awareH04L 47/808 User-type aware
