Methods, apparatuses and systems facilitating concurrent classification and control of tunneled and non-tunneled network traffic
First Claim
1. A method facilitating concurrent classification and control of tunneled and non-tunneled network traffic, the method comprising:
- receiving a tunneled data flow;
associating the tunneled data flow to a tunnel traffic class;
recording at least one metric associated with the tunneled data flow;
transferring the tunneled data flow to a tunnel mechanism;
receiving a converted data flow from the tunnel mechanism;
associated the at least one metric associated with the tunneled data flow to the converted data flow;
identifying at least one traffic class corresponding to the converted data flow, wherein the at least one traffic class is a child traffic class of the tunnel traffic class in a hierarchical traffic class configuration;
enforcing a bandwidth utilization control associated with the at least one traffic class on the converted data flow based at least in part on the at least one metric associated with the tunneled data flow.
12 Assignments
0 Petitions
Accused Products
Abstract
Methods, apparatuses and systems facilitating the concurrent classification and control of tunneled and non-tunneled data flows in a packet-based computer network environment. As discussed in more detail below, embodiments of the present invention allow for the “intra-tunnel” classification of data flows and, based on the classification, the deterministic and intelligent application of aggregate bandwidth utilization controls on data flows corresponding to a given tunnel. Embodiments of the present invention allow for the allocation of bandwidth on an application-level basis between tunneled and non-tunneled traffic, as well as between applications within a given tunnel. Other embodiments of the present invention can be configured to provide a differentiated security model for non-tunneled and tunneled traffic. In addition, embodiments of the present invention can be further configured to implement a layered security model for tunneled traffic.
-
Citations
1 Claim
-
1. A method facilitating concurrent classification and control of tunneled and non-tunneled network traffic, the method comprising:
-
receiving a tunneled data flow; associating the tunneled data flow to a tunnel traffic class; recording at least one metric associated with the tunneled data flow; transferring the tunneled data flow to a tunnel mechanism; receiving a converted data flow from the tunnel mechanism; associated the at least one metric associated with the tunneled data flow to the converted data flow; identifying at least one traffic class corresponding to the converted data flow, wherein the at least one traffic class is a child traffic class of the tunnel traffic class in a hierarchical traffic class configuration; enforcing a bandwidth utilization control associated with the at least one traffic class on the converted data flow based at least in part on the at least one metric associated with the tunneled data flow.
-
Specification