Methods, apparatuses and systems facilitating concurrent classification and control of tunneled and non-tunneled network traffic
First Claim
1. A method facilitating concurrent classification and control of tunneled and non-tunneled network traffic, the method comprising:
- receiving a tunneled data flow;
associating the tunneled data flow to a tunnel traffic class;
recording at least one metric associated with the tunneled data flow;
transferring the tunneled data flow to a tunnel mechanism;
receiving a converted data flow from the tunnel mechanism;
associated the at least one metric associated with the tunneled data flow to the converted data flow;
identifying at least one traffic class corresponding to the converted data flow, wherein the at least one traffic class is a child traffic class of the tunnel traffic class in a hierarchical traffic class configuration;
enforcing a bandwidth utilization control associated with the at least one traffic class on the converted data flow based at least in part on the at least one metric associated with the tunneled data flow.
12 Assignments
0 Petitions
Accused Products
Abstract
Methods, apparatuses and systems facilitating the concurrent classification and control of tunneled and non-tunneled data flows in a packet-based computer network environment. As discussed in more detail below, embodiments of the present invention allow for the “intra-tunnel” classification of data flows and, based on the classification, the deterministic and intelligent application of aggregate bandwidth utilization controls on data flows corresponding to a given tunnel. Embodiments of the present invention allow for the allocation of bandwidth on an application-level basis between tunneled and non-tunneled traffic, as well as between applications within a given tunnel. Other embodiments of the present invention can be configured to provide a differentiated security model for non-tunneled and tunneled traffic. In addition, embodiments of the present invention can be further configured to implement a layered security model for tunneled traffic.
351 Citations
1 Claim
-
1. A method facilitating concurrent classification and control of tunneled and non-tunneled network traffic, the method comprising:
-
receiving a tunneled data flow; associating the tunneled data flow to a tunnel traffic class; recording at least one metric associated with the tunneled data flow; transferring the tunneled data flow to a tunnel mechanism; receiving a converted data flow from the tunnel mechanism; associated the at least one metric associated with the tunneled data flow to the converted data flow; identifying at least one traffic class corresponding to the converted data flow, wherein the at least one traffic class is a child traffic class of the tunnel traffic class in a hierarchical traffic class configuration; enforcing a bandwidth utilization control associated with the at least one traffic class on the converted data flow based at least in part on the at least one metric associated with the tunneled data flow.
-
Specification
-
- Resources
-
Current AssigneeCA, Inc. (d/b/a CA Technologies) (Broadcom, Inc.)
-
Original AssigneePacketeer Incorporated (Gen Digital Inc.)
-
InventorsMorford, Michael Robert
-
Primary Examiner(s)Duong; Frank
-
Application NumberUS10/260,802Time in Patent Office1,947 DaysField of SearchNoneUS Class Current370/231CPC Class CodesH04L 41/08 Configuration management of...H04L 41/0896 Bandwidth or capacity manag...
