Method and system for controlling a policy-based network
First Claim
1. A method for controlling a policy-based network, comprising the steps of:
- establishing a first policy within a policy server of the network, wherein the first policy includes at least a first function and a second function;
converting the first policy into at least a second policy and a third policy, wherein the second policy defines a virtual flow label and the third policy is associated with the virtual flow label, and wherein the second policy is associated with the first function and the third policy is associated with the second function;
distributing the second policy and the third policy within the network to at least one node; and
controlling the at least one node using the second policy and the third policy.
4 Assignments
0 Petitions
Accused Products
Abstract
A method and system are described for controlling a policy-based network. According to an exemplary embodiment of the present invention, a first policy is established within a policy server of the network, wherein the first policy includes at least a first function and a second function. The first policy is converted into at least a second policy and a third policy, wherein the second policy is associated with the first function and the third policy is associated with the second function. The second policy and the third policy are distributed within the network to at least one node. The at least one node is controlled using the second policy and the third policy.
277 Citations
14 Claims
-
1. A method for controlling a policy-based network, comprising the steps of:
-
establishing a first policy within a policy server of the network, wherein the first policy includes at least a first function and a second function; converting the first policy into at least a second policy and a third policy, wherein the second policy defines a virtual flow label and the third policy is associated with the virtual flow label, and wherein the second policy is associated with the first function and the third policy is associated with the second function; distributing the second policy and the third policy within the network to at least one node; and controlling the at least one node using the second policy and the third policy. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A method for controlling a policy-based network, comprising the steps of:
-
establishing a first policy within a policy server of the network, wherein the first policy includes at least a first function and a second function; converting the first policy into at least a second policy and a third policy, wherein the second policy is associated with the first function and the third policy is associated with the second function; distributing the second policy and the third policy within the network to at least one node; and controlling the at least one node using the second policy and the third policy, wherein the first policy includes at least a first policy rule having the first function in an action part of the first policy rule and a second policy rule having a first reference and having the second function in an action part of the second policy rule, wherein the first function modifies the contents of a field in each of a plurality of data packets, wherein the first reference refers to a value of the field modified by the first function, wherein the second policy includes at least a third policy rule having the first function and a virtual flow label value in an action part of the third policy rule and a fourth policy rule having the first reference in a condition part of the fourth policy rule, and wherein the third policy includes at least a fifth policy rule having a reference to the virtual flow label value in a condition part of the fifth policy rule and having the second function.
-
-
7. A method for controlling a policy-based network, comprising the steps of:
-
establishing a first policy within a policy server of the network, wherein the first policy includes at least a first function and a second function; converting the first policy into at least a second policy and a third policy, wherein the second policy is associated with the first function and the third policy is associated with the second function; distributing the second policy and the third policy within the network to at least one node; and controlling the at least one node using the second policy and the third policy, wherein the first policy includes at least a first policy rule having a first reference in a condition part of the first policy rule and a second policy rule having a second reference and having a second function in an action part of the second policy rule, wherein the first reference refers to the contents of a field in each of a plurality of data packets, wherein the second reference refers to a value of the field modified by the first function, wherein the second policy includes at least a third policy rule having the first reference in a condition part of the third policy rule and a fourth policy rule having the second reference and a virtual flow label in a condition part of the fourth policy rule, and wherein the third policy includes at least a fifth policy rule having a reference to the virtual flow label in a condition part of the fifth policy rule and having the second function.
-
-
8. A method for controlling a policy-based network, comprising the steps of:
-
establishing a first policy within a policy server of the network, wherein the first policy includes at least a first function and a second function; converting the first policy into at least a second policy and a third policy, wherein the second policy is associated with the first function and the third policy is associated with the second function; distributing the second policy and the third policy within the network to at least one node; and controlling the at least one node using the second policy and the third policy, wherein the first policy includes at least a first policy rule having at least a first condition and a second condition in a condition part of the first policy rule, wherein the first condition and the second condition are coupled with a logical “
OR”
operator,wherein the second policy includes at least a second policy rule having the first condition in a condition part of the second policy rule and a third policy rule having the second condition in a condition part of the third policy rule, wherein the second policy rule and the third policy rule each define a first virtual flow label value, and wherein the third policy includes at least a fourth policy rule, and a condition part of the fourth policy rule determines the first virtual flow label value.
-
-
9. A method for controlling a policy-based network, comprising the steps of:
-
establishing at least a first policy and a second policy within a policy server of the network, wherein the first policy includes at least a first function and the second policy includes at least a second function, wherein the first policy defines a virtual flow label and the second policy is associated with the virtual flow label; converting the first policy and the second policy into a third policy, wherein the third policy is associated with the first function and the second function; distributing the third policy within the network to at least one node; and controlling the at least one node using the third policy. - View Dependent Claims (10, 11, 12)
-
-
13. A system for controlling a policy-based network, comprising:
-
a policy server for establishing policies; conversion means for converting at least one of a high-level policy into a plurality of low-level policies and a plurality of high-level policies into a low-level policy, wherein the high-level policies are based on virtual flow labels; distributing means for distributing within the network at least one of the low-level policy and the plurality of low-level-policies; a network node for receiving at least one of the low-level policy and the plurality of low-level-policies. - View Dependent Claims (14)
-
Specification