Distributed service level management for network traffic
First Claim
1. A method comprising:
- determining by a first network management device, separate and distinct from a first router of a network, whether the first router is meeting a service level for a first group of network traffic of the network serviced by the first router; and
regulating a second group of network traffic of the network, also being serviced by said first router, by blocking the second group to assist the first router in meeting the service level for the first group of network traffic and nullify a denial of service attack involving the first router, the second group of network traffic being separate and distinct from said first group of network traffic;
wherein said first group of network traffic comprises network traffic destined for/sourced from first one or more network nodes of said network, and said second group of network traffic comprises network traffic destined for/sourced from second one or more network nodes of said network that are separate and distinct from said first one or more network nodes.
3 Assignments
0 Petitions
Accused Products
Abstract
One or more networking apparatuses are employed to practice a networking method that improves a first networking device'"'"'s likelihood in meeting its service level goals/commitments for a first group of network traffic serviced by the first networking device. Determination is made, away from the networking device, on whether the first network device is meeting the service level goals/commitments for the first group of network traffic. Determination may include monitoring the first group of network traffic at or away from the networking device. If the service level goals/commitments are not being met, a second group of network traffic (also serviced by the first networking device) is regulated. Regulation may be made at the networking device or away from the network device. Additionally, if the condition for regulation is no longer presents, regulation may be moderated or removed. Further, the service level goals/commitments may include reliability and/or performance goals/commitments.
35 Citations
19 Claims
-
1. A method comprising:
-
determining by a first network management device, separate and distinct from a first router of a network, whether the first router is meeting a service level for a first group of network traffic of the network serviced by the first router; and regulating a second group of network traffic of the network, also being serviced by said first router, by blocking the second group to assist the first router in meeting the service level for the first group of network traffic and nullify a denial of service attack involving the first router, the second group of network traffic being separate and distinct from said first group of network traffic; wherein said first group of network traffic comprises network traffic destined for/sourced from first one or more network nodes of said network, and said second group of network traffic comprises network traffic destined for/sourced from second one or more network nodes of said network that are separate and distinct from said first one or more network nodes. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A method comprising:
-
determining by a network management device, separate and distinct from a router of a network, whether the router is meeting a service level for a first group of network traffic of the network serviced by the router; regulating a second group of network traffic of the network, also being serviced by said router, by blocking the second group to assist the router in meeting the service level for the first group of network traffic and nullify a denial of service attack involving the router, the second group of network traffic being separate and distinct from said first group of network traffic; determining by a second network management device, away from said router, whether said second group of network traffic substantially contributes to said router'"'"'s non-meeting of said service level for said first group of network traffic, and said regulating of said second group of network traffic is conditionally performed, upon determining said second group of network traffic substantially contributes to said router not meeting of said service level for said first group of network traffic; and determining by the second network management device, whether said second group of network traffic are being regulated, and if said second group of network traffic are being regulated, whether the regulation is to be moderated to unblock the second group.
-
-
19. A system comprising:
-
a managed networking device transmitting network traffic to and from other networking devices; a sensor, located away from a managed networking device, that determines whether the managed networking device is meeting a service level for a first group of the network traffic serviced by the managed networking device by monitoring a packet drop rate associated with said first group of network traffic; a director, located away from a managed networking device, that determines whether a second group of network traffic substantially contributes to said managed networking device failure to meet the said service level for said first group of network traffic, the second group of network traffic being also serviced by the managed networking device, but separate and distinct from said first group of network traffic, wherein said first group of network traffic comprises network traffic destined for/sourced from first one or more network nodes of said network, and said second group of network traffic comprises network traffic destined for/sourced from second one or more network nodes of said network that are separate and distinct from said first one or more network nodes, wherein the director regulates the second group of network traffic of the network by signaling the second networking device to block the second group of network traffic to assist the managed networking device in meeting the service level for the first group of network traffic and nullify a denial of service attack involving the managed networking device, if said second group of network traffic is determined to substantially contribute to a failure to meet the service level for said first group of network traffic.
-
Specification