Method and apparatus for providing network VPN services on demand

US 7,561,586 B2
Filed: 09/19/2003
Issued: 07/14/2009
Est. Priority Date: 09/19/2003
Status: Expired due to Fees

First Claim

Patent Images

1. A method of obtaining network Virtual Private Network (VPN) services on demand in a MultiProtocol Label Switching (MPLS) communication network, the method comprising the steps of:

receiving a Session Initiation Protocol (SIP) message containing a request for network VPN services from an initiating application, the SIP message containing the request for network VPN services containing VPN information; and

registering the VPN information from the SIP message on the MPLS communication network to cause the MPLS communication network to reserve network resources to establish network VPN tunnels to provide the network VPN services.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A S-VPN gateway provides a signaling gateway to integrate SIP signaling and UNI/NNI signaling, and manage the mapping between SIP sessions and VPN connections. The mapping relationship reflects the access of user applications to the specific VPN tunnels, multiplexing of media service sessions to VPN tunnels, VPN service creation, service duration, VPN QoS, VPN service life cycle management, and VPN service charge based on a per-service-usage. The S-VPN gateway also provides VPN access policy/security management (i.e., inter-domain AAA process), VPN membership auto-discovery, service auto-discovery, network resource auto-discovery, address resolution service for both SIP and VPN naming space, VPN service mobility, and SLA management. The S-VPN gateway enables network VPN tunnels to be created in advanced and accessed on-demand, for example by enterprise VPN applications such as GRID applications, through a SIP interface.

27 Citations

View as Search Results

13 Claims

1. A method of obtaining network Virtual Private Network (VPN) services on demand in a MultiProtocol Label Switching (MPLS) communication network, the method comprising the steps of:
- receiving a Session Initiation Protocol (SIP) message containing a request for network VPN services from an initiating application, the SIP message containing the request for network VPN services containing VPN information; and
  
  registering the VPN information from the SIP message on the MPLS communication network to cause the MPLS communication network to reserve network resources to establish network VPN tunnels to provide the network VPN services.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the step of registering uses Multi-Protocol Border Gateway Protocol (MP-BGP) to distribute routing information associated with the initiating application to the communication network.
  - 3. The method of claim 1, wherein the request for network VPN resources comprises VPN information including requested bandwidth, duration, and quality of service.
  - 4. The method of claim 1, further comprising signaling the request to the MPLS communication network.
  - 5. The method of claim 4, wherein signaling the request to the communication network comprises instructing the communication network to reserve network VPN resources on a network VPN tunnel according to the VPN information.
  - 6. The method of claim 1, further comprising forwarding a SIP invite message toward a destination application.

7. A computer-readable medium containing instructions for controlling at least one processor to perform a method of providing network VPN services on demand, the method comprising the steps of:
- using Session Initiation Protocol (SIP) signaling to register application-VPN-ID information associated with a first application on a communication network to reserve resources on the communication network; and
  
  interfacing with the communication network to obtain network VPN resources associated with the application-VPN-ID information upon receipt of a request for access to the network VPN resources from the first application.
- View Dependent Claims (8, 9)
- - 8. The method of claim 7, further comprising the step of maintaining a mapping between the first application and the network VPN resources provided to the first application.
  - 9. The method of claim 7, further comprising the step of receiving session initiation protocol (SIP) signaling from a SIP agent associated with the first application and to generate SIP signaling directed to a second application.

10. A Service-Virtual Private Network (S-VPN) gateway for obtaining network Virtual Private Network (VPN) services on-demand in a MultiProtocol Label Switching (MPLS) communication network, comprising:
- a Session Initiation Protocol (SIP) server configured to receive a SIP message containing a request for network VPN services, the SIP message containing the VPN information; and
  
  a media signaling gateway configured to register the VPN information from the SIP message on the MPLS communication network to cause the MPLS communication network to reserve network resources to establish the network VPN tunnels to provide the network VPN services over the MPLS communication network.
- View Dependent Claims (11, 12, 13)
- - 11. The S-VPN gateway of claim 10, wherein the SIP server is further configured to handle SIP signaling to enable the first application to request access to said network VPN services.
  - 12. The S-VPN gateway of claim 11, further comprising a services module configured to provide authentication, authorization, and accounting services on the communication network.
  - 13. The S-VPN gateway of claim 10, further comprising an application-VPN database configured to store information associating applications with network VPN resources on the communication network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
RPX Clearinghouse LLC (RPX Corporation)
Original Assignee
Nortel Networks Limited (Nortel Networks Corporation)
Inventors
Ravindran, Ravi, Wang, Guo-Quiang, Xia, Min
Primary Examiner(s)
Harper, Kevin C

Application Number

US10/666,529
Publication Number

US 20050063411A1
Time in Patent Office

2,125 Days
Field of Search

370400-401, 370/522
US Class Current

370/401
CPC Class Codes

H04L 12/4608 LAN interconnection over AT...

Method and apparatus for providing network VPN services on demand

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

27 Citations

13 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for providing network VPN services on demand

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

27 Citations

13 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links