Multi-service network switch with policy based routing
First Claim
1. In a multi-service switch, a method for forwarding data blocks comprising:
- receiving from a user a connection request comprising at least one characteristic selected from a group consisting of a type of line interface, user login information and telephone number;
identifying the at least one characteristic of the connection request;
selecting a router based on the identified at least one characteristic; and
forwarding a data block originated from the user to the selected router.
7 Assignments
0 Petitions
Accused Products
Abstract
A multi-service network switch capable of providing multiple network services from a single platform. The switch incorporates a distributed packet forwarding architecture where each of the various cards is capable of making independent forwarding decisions. The switch further allows for dynamic resource management for dynamically assigning modem and ISDN resources to an incoming call. The switch may also include fault management features to guard against single points of failure within the switch. The switch further allows the partitioning of the switch into multiple virtual routers where each virtual router has its own wet of resources and a routing table. Each virtual router is further partitioned into virtual private networks for further controlling access to the network. The switch supports policy based routing where specific routing paths are selected based on a domain name, a telephone number, and the like. The switch also provides tiered access of the Internet by defining quality of access levels to each incoming connection request. The switch may further support an IP routing protocol and architecture in which the layer two protocols are independent of the physical interface they run on. Furthermore, the switch includes a generic forwarding interface software for hiding the details of transmitting and receiving packets over different interface types.
-
Citations
41 Claims
-
1. In a multi-service switch, a method for forwarding data blocks comprising:
-
receiving from a user a connection request comprising at least one characteristic selected from a group consisting of a type of line interface, user login information and telephone number;
identifying the at least one characteristic of the connection request;
selecting a router based on the identified at least one characteristic; and
forwarding a data block originated from the user to the selected router. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 29)
identifying the resource requested by the connection request;
determining an amount of current usage for the identified resource; and
allocating the identified resource to the connection request if the amount of current usage is less than the access threshold associated with the assigned access level.
-
-
6. The method of claim 3, wherein the call profile information includes a virtual router identifier to be assigned to the connection request, the virtual router being allocated a portion of the system resources.
-
7. The method of claim 6 further comprising:
-
maintaining in each interface module a list of resources and information about availability of each of the resources;
identifying a particular resource to be allocated to the connection request;
querying the list of resources for the particular resource; and
allocating the particular resource to the connection request if the particular resource is identified as being available.
-
-
8. The method of claim 1, wherein the router is associated to a particular service provider.
-
9. The method of claim 1 further comprising selecting an authentication server based on the identified at least one characteristic.
-
29. The method of claim 1, wherein an additional characteristic for connection request identification is source address of the data block.
-
10. A multi-service network switch comprising:
-
means for receiving from a user a connection request comprising at least one characteristic selected from a group consisting of a type of line interface, user login information and telephone number;
means for identifying the at least one characteristic of the connection request;
means for selecting a router based on the identified at least one characteristic; and
means for forwarding a data block originated from the user to the selected router. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 30)
means for identifying the resource requested by the connection request;
means for determining an amount of current usage for the identified resource; and
means for allocating the identified resource to the connection request if the amount for current usage is less than the access threshold associated with the assigned access level.
-
-
15. The switch of claim 12, wherein the call profile information includes a virtual router identifier to be assigned to the connection request, the virtual router being allocated a portion of the system resources.
-
16. the switch of claim 15 further comprising:
-
means for maintaining in each interface module a list of resources and information about availability of each of the resources;
means for identifying a particular resource to be allocated to the connection request;
means for querying the list of resources for the particular resource; and
means for allocating the particular resource to the connection request if the particular resource is identified as being available.
-
-
17. The switch of claim 10, wherein the router is associated to a particular service provider.
-
18. The switch of claim 10 further comprising selecting an authentication server based on the identified at least one characteristic.
-
30. The method of claim 10, wherein an additional characteristic for connection request identification is source address of the data block.
-
19. A multi-service network switch comprising:
-
an interface line for receiving from a user a connection request comprising at least one characteristic selected from a group consisting of a type of line interface, user login information and telephone number;
an interface module coupled to the interface line, the interface module including a processor operable to execute program instructions including;
identifying the at least one characteristic of the connection request;
selecting a router based on the identified at least one characteristic; and
forwarding a data block originated from the user to the selected router. - View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 31)
identifying the resource requested by the connection request;
determining an amount of current usage for the identified resource; and
allocating the identified resource to the connection request if the amount of the current usage is less than the access threshold associated with the assigned access level.
-
-
24. The switch of claim 21, wherein the call profile information includes a virtual router identifier to be assigned to the connection request, the virtual router being allocated a portion of the system resources.
-
25. The switch of claim 24, wherein the interface module further includes a memory coupled to the processor for maintaining a list of resources and information about availability of each of the resources, and the program instructions further include:
-
identifying a particular resource to be allocated to the connection request;
querying the list of resources for the particular resource; and
allocating the particular resource to the connection request if the particular resource is identified as being available.
-
-
26. The switch of claim 19, wherein the router is associated to a particular service provider.
-
27. The switch of claim 19, wherein the program instructions further include selecting an authentication server based on the identified at least one characteristic.
-
31. The method of claim 19, wherein an additional characteristic for connection request identification is source address of the data block.
-
28. In a multi-service network switch, a method for forwarding a plurality of data blocks comprising:
-
receiving from a user a connection request comprising at least one characteristic selected from a group consisting of a type of line interface, user login information, telephone number and destination address of the data block;
identifying the at least one characteristic of the connection request;
selecting a next hop router based on the identified at least one characteristic; and
forwarding a data block originated from the user to the selected next hop router. - View Dependent Claims (32)
-
-
33. A method of policy-based routing of a plurality of data packets comprising the steps of:
-
receiving a connection request comprising at least one characteristic at a multi-service network switch comprising a call policy database having at least one policy parameter and at least one call policy record;
determining whether the at least one characteristic of the connection request comprises user login information;
if the at least one characteristic of the connection request comprises the characteristic, then;
interrogating the call policy database for access privilege;
if the call policy database indicates that the connection request possesses an access privilege, then;
authenticating the connection request;
identifying a router to which to route the connection request based on the call policy database;
accepting the connection request; and
routing a plurality of data packets associated with the accepted connection request to the identified router. - View Dependent Claims (34, 35, 36, 37, 38, 39, 40, 41)
determining, in the multi-service network switch further enabled for routing based upon user login information, whether the at least one characteristic of the connection request comprises user login information;
if the at least one characteristic of the connection request comprises user login information, then;
interrogating at least one associated server for authentication, of an Internet Service Provider, for connection acceptance and router identification of the connection request;
if the at least one associated server indicates that the connection request possesses an access privilege, then;
authenticating the connection request;
identifying a router for a domain operated by the Internet Service Provider;
accepting the connection request; and
routing a plurality of data packets associated with the accepted connection request to the identified router.
-
-
39. The method of claim 33, wherein the interrogated at least one associated server for authentication maintains a domain database having a parameter comprising at least one domain name associated with at least one next hop router address.
-
40. The method of claim 33, wherein the method further comprises the steps of:
-
determining, in multi-service network switch further enabled for routing based upon source information, whether the at least one characteristic of the connection request comprises source information;
if the at least one characteristic of the connection request comprises source information, then;
interrogating at least one associated authentication server, of an Internet Service Provider, for connection acceptance and router identification of the connection request;
if the at least one associated authentication server indicates that the connection request possesses an access privilege, then;
authenticating the connection request;
identifying a router for a domain operated by the Internet Service Provider;
accepting the connection request; and
routing a plurality of data packets associated with the accepted connection request to the identified router.
-
-
41. The method of claim 33, wherein the method further comprises the steps of:
-
determining, in the multi-service network switch further enabled for routing based upon destination information, whether the at least one characteristic of the connection request comprises destination information;
if the at least one characteristic of the connection request comprises destination information, then;
interrogating at least one associated authentication server, of an Internet Service Provider, for connection acceptance and router identification of the connection request;
if the at least one associated authentication server indicates that the connection request possesses an access privilege, then;
identifying a router for a domain operated by the Internet Service Provider;
accepting the connection request; and
routing a plurality of data packets of the accepted connection request to the identified router.
-
Specification