Tools and techniques for directing packets over disparate networks
DC CAFCFirst Claim
1. A controller which controls access to multiple independent disparate networks in a parallel network configuration, the disparate networks comprisinig at least one private network and at least one network based on the Internet, the controller comprising:
- a sit interface connecting the controller to a site;
at least two network interfaces which send packets toward the disparate networks; and
a packet path selector which selects between network interfaces according to at least;
a destination of the packet, an optional presence of alternate paths to that destination, and at least one specified criterion for selecting between alternate paths when such alternate paths are present;
wherein the controller receives a packet through the site interface and sends the packet through the network interface that was selected by the packet path selector; and
wherein the packet path selector selects between network interfaces according to a security criterion, thereby promoting use of multiple disparate networks to carry different pieces of a given message so that unauthorized interception of packets on fewer than all of the disparate networks used to carry the message will not provide the total content of the message.
5 Assignments
Litigations
4 Petitions
Accused Products
Abstract
Methods, configured storage media, and systems are provided for communications using two or more disparate networks in parallel to provide load balancing across network connections, greater reliability, and/or increased security. A controller provides access to two or more disparate networks in parallel, through direct or indirect network interfaces. When one attached network fails, the failure is sensed by the controller and traffic is routed through one or more other disparate networks. When all attached disparate networks are operating, one controller preferably balances the load between them.
-
Citations
24 Claims
-
1. A controller which controls access to multiple independent disparate networks in a parallel network configuration, the disparate networks comprisinig at least one private network and at least one network based on the Internet, the controller comprising:
-
a sit interface connecting the controller to a site;
at least two network interfaces which send packets toward the disparate networks; and
a packet path selector which selects between network interfaces according to at least;
a destination of the packet, an optional presence of alternate paths to that destination, and at least one specified criterion for selecting between alternate paths when such alternate paths are present;
wherein the controller receives a packet through the site interface and sends the packet through the network interface that was selected by the packet path selector; and
wherein the packet path selector selects between network interfaces according to a security criterion, thereby promoting use of multiple disparate networks to carry different pieces of a given message so that unauthorized interception of packets on fewer than all of the disparate networks used to carry the message will not provide the total content of the message. - View Dependent Claims (2, 3)
-
-
4. A controller which controls access to multiple networks in a parallel network configuration, suitable networks comprising Internet-based networks and private networks from at least one more provider, in combination, the controller comprising:
-
a site interface connecting the controller to a site;
at least two network interfaces which send packets toward the networks; and
a packet path selector which selects between network interfaces on a per-packet basis according to at least;
a destination of the packet, an optional presence of alternate paths to that destination, and at least one specified criterion for selecting between alternate paths when such alternate paths are present;
wherein the controller receives a packet through the site inter-face and sends the packet through the network interface that was selected by the packet path selector.
-
-
5. A method for combining connections for access to multiple parallel disparate networks, the method comprising the steps of:
-
obtaining at least two known location address ranges which have associated networks;
obtaining topology information which specifies associated networks that provide, when working, connectivity between a current location and at least one destination location;
receiving at the current location a packet which identifies a particular destination location by specifying a destination address for the destination location;
determining whether the destination address lies within a known location address range;
selecting a network path from among paths to disparate associated networks, said networks being in parallel at the current location, each of said networks specified in the topology information as capable of providing connectivity between the current location and the destination location;
forwarding the packet on the selected network path. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A method for combining connections for access to parallel networks, the method comprising the steps of:
-
sending a packet to a site interface of a controller, the controller comprising the site interface which receives packets, at least two network interfaces to parallel networks, and a packet path selector which selects between the network interfaces on a per-session basis to promote load-balancing; and
forwarding the packet-through the network interface selected byte packet path selector;
wherein the step of sending a packet to the controller site interface is repeated as multiple packets are sent, and the controller sends different packets of a given message to different parallel networks.
-
-
20. A method for combining connections for access to parallel networks, the method comprising the steps of:
-
receiving at a first controller a packet which has a first site IP address as source address and a second site IP address as destination address;
modifying the packet to have an IP address of the first controller as the source address and an IP address of a second controller as the destination address; and
forwarding the modified packet along a selected path toward the second site.
-
-
21. A method for combining connections for access to parallel networks, the method comprising the steps of:
-
receiving at a first controller a packet which has a first VPN IP address as source address and a second VPN IF address as destination address;
modifying the packet to have an IP address of the first controller as the source address and an IP address of a second controller as the destination address; and
forwarding to modified packet along a selected path toward the second VPN.
-
-
22. A computer storage medium having a configuration that represents data and instructions which will cause performance of a method for combining connections for access to multiple parallel disparate networks, the method comprising the steps of:
-
obtaining at least two known location address ranges which have associated networks;
obtaining topology information which specifies associated networks that provide, when working, connectivity between a current location and at least one destination location;
receiving at the current location a packet which identifies a particular destination location by specifying a destination address for the destination location;
determining whether the destination address lies within a known location address range;
selecting a network path from among paths to disparate associated networks, said networks being in parallel at the current location, each of said networks specified in the topology information as capable of providing connectivity between the current location and the destination location;
modifying the packet destination address to lie within a known location address range associated with the selected network if it does not already do so; and
forwarding the packet on the selected network path. - View Dependent Claims (23, 24)
-
Specification