System and/or method relating to managing a network

US 7,739,605 B2
Filed: 09/09/2005
Issued: 06/15/2010
Est. Priority Date: 09/09/2005
Status: Active Grant

First Claim

Patent Images

1. A method for managing a computer network through a graphical representation of a multi-layer network, comprising:

displaying the graphical representation of the multi-layer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;

representing a plurality of front end units of the front end layer as a plurality of front end graphical objects in the graphical representation;

representing a plurality of back end units of the back end layer as a plurality of back end graphical objects in the graphical representation;

displaying information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;

selecting a front end graphical object representing a selected front end unit in the graphical representation and selecting a plurality of back end graphical objects representing a plurality of selected back end units in the graphical representation to form a logical connection between the selected front end unit and the plurality of selected back end units;

granting, through the graphical representation, the selected front end unit with firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;

arbitrating shared bandwidth access between the plurality of front end units and the plurality of back end units through the graphical representation;

interposing, between the selected front end unit and the plurality of selected back end units in the graphical representation, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units; and

issuing, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention displays a graphical representation of a multi-layer network having a front end layer and a back end layer. A plurality of front end units of the front end layer and a plurality of back end units of the back end layer are represented as a plurality of front end graphical objects and a plurality of back end graphical objects. A user selects a front end graphical object representing a selected front end unit and a back end graphical object representing a selected back end unit to form a logical connection between the front end unit and the back end unit. The logical connection grants the selected front end unit access to the selected back end unit.

Citations

36 Claims

1. A method for managing a computer network through a graphical representation of a multi-layer network, comprising:
- displaying the graphical representation of the multi-layer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  representing a plurality of front end units of the front end layer as a plurality of front end graphical objects in the graphical representation;
  
  representing a plurality of back end units of the back end layer as a plurality of back end graphical objects in the graphical representation;
  
  displaying information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  selecting a front end graphical object representing a selected front end unit in the graphical representation and selecting a plurality of back end graphical objects representing a plurality of selected back end units in the graphical representation to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  granting, through the graphical representation, the selected front end unit with firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  arbitrating shared bandwidth access between the plurality of front end units and the plurality of back end units through the graphical representation;
  
  interposing, between the selected front end unit and the plurality of selected back end units in the graphical representation, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units; and
  
  issuing, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising:
    - utilizing one or more front end units to store unencrypted data and utilizing one or more back end units to store encrypted data.
  - 3. The method of claim 2, further comprising:
    - using storage devices as at least some of the back end units.
  - 4. The method of claim 2, further comprising:
    - using logically combined portions of discrete, physically separate storage devices as at least some of the back end units.
  - 5. The method of claim 1, further comprising:
    - changing the graphical association between particular front end units and particular back end units to change the multilayer network.
  - 6. The method of claim 1, further comprising:
    - associating at least one of the one or more second layer units with at least a one of the plurality of front end units by selecting a graphical representation of a second layer unit and a graphical representation of a front end unit.

7. A method for managing a computer network through a graphical representation of a multi-layer network, comprising:
- displaying the graphical representation of the multi-layer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  representing a plurality of front end units of a first layer as a plurality of front end graphical objects in the graphical representation;
  
  representing a plurality of back end units of a second layer as a plurality of back end graphical objects in the graphical representation;
  
  displaying information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  arbitrating shared bandwidth access between the plurality of front end units and the plurality of back end units through the graphical representation;
  
  selecting a front end graphical object representing a selected front end unit in the graphical representation and selecting a plurality of back end graphical objects representing a plurality of selected back end units in the graphical representation to form a logical connection between the selected front end unit and the plurality of selected back end unit;
  
  granting, through the graphical representation, the selected front end unit with firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  interposing, between the selected front end unit and the plurality of selected back end units in the graphical representation, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer unit is a network security appliance that is configured to encrypt and decrypt data; and
  
  issuing, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (8, 9, 10)
- - 8. The method of claim 7, further comprising:
    - performing the data access request includes having sufficient authority via network protocols.
  - 9. The method of claim 7, further comprising:
    - changing the graphical association between the selected front end unit of the front end layer and the plurality of back end units of the back end layer, thereby changing the capability of the front end units to access data on the back end units.
  - 10. The method of claim 7, further comprising:
    - having the units of at least one of the layers represent users.

11. A system for managing a computer network through a graphical representation of a multi-layer network, comprising:
- a graphical user interface to display the graphical representation of the multi-layer network, the multi-layer network including at least a front end layer and a back end layer, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  the graphical user interface to represent a plurality of front end units of the front end layer as a plurality of front end graphical objects;
  
  the graphical user interface to represent a plurality of back end units of the back end layer as a plurality of back end graphical objects;
  
  one or more layer unit information panels configured to display information, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  a process to select a front end graphical object representing a selected front end unit and selecting a plurality of back end graphical objects representing a plurality of selected back end units to form a logical connection between the selected front end unit and the plurality of selected back end units, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  the process to grant the selected front end unit with firewall functionality access to the plurality of selected back end units;
  
  an arbitrated loop configured to arbitrate shared bandwidth access through the graphical representation between the plurality of front end units and the plurality of back end units;
  
  the process to interpose, between the selected front end unit and the plurality of selected back end units in the graphical representation, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units; and
  
  the selected front end unit to issue a data access request directed to the plurality of second layer units, the second layer units to forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.

12. A computer readable medium containing executable program instructions executed by a processor, comprising:
- program instructions that display a graphical representation of a multi-layer network, the multi-layer network including at least a front end layer and a back end layer, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  program instructions that represent a plurality of front end units of the front end layer as a plurality of front end graphical objects in the graphical representation;
  
  program instructions that represent a plurality of back end units of the back end layer as a plurality of back end graphical objects in the graphical representation;
  
  program instructions that display information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  program instructions that select a front end graphical object representing a selected front end unit in the graphical representation and selecting a plurality of back end graphical objects representing a plurality of selected back end units in the graphical representation to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  program instructions that grant, through the graphical representation, the selected front end unit with firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  program instructions that arbitrate shared bandwidth access between the plurality of front end units and the plurality of back end units through the graphical representation;
  
  program instructions that interpose, between the selected front end unit and the plurality of selected back end units in the graphical representation, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units; and
  
  program instructions that issue, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (13)
- - 13. The computer readable media of claim 12, further comprising:
    - program instructions that display the multi-layer network, so that changing the graphical association of a particular selected front end units and a plurality of particular selected back end units changes the capability of the front end units to access data from the back end units.

14. A method for managing a computer network through a graphical representation of a multi-layer network, comprising:
- displaying the graphical representation of the multi-layer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  representing a plurality of first layer units of a first layer as a plurality of first layer graphical objects in the graphical representation;
  
  representing a plurality of second layer units of a second layer as a plurality of second layer graphical objects in the graphical representation;
  
  representing a plurality of third layer units of the third layer as a plurality of third layer graphical objects in the graphical representation;
  
  displaying information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  selecting a first layer graphical object representing a selected first layer unit in the graphical representation and selecting a second layer graphical object representing a selected second layer unit in the graphical representation to form a logical connection between the selected first layer unit in the graphical representation and the selected second layer unit;
  
  selecting a plurality of third layer graphical objects representing a plurality of selected third layer units in the graphical representation to form a logical connection between the selected second layer unit in the graphical representation and the plurality of selected third layer units;
  
  arbitrating, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  granting, through the graphical representation, the selected first layer unit with firewall functionality access to the selected second layer unit and granting the selected second layer unit access to the plurality of selected third layer units in response to selecting the first layer graphical object, the second layer graphical object, and the plurality of third layer graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address; and
  
  issuing, by the selected front end unit through the graphical representation, a data access request directed to the selected second layer unit, wherein the selected second layer unit forwards the request to selected portions of the plurality of selected third layer units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (15, 16, 17)
- - 15. The method as in claim 14, further comprising:
    - receiving data at the selected first layer unit, the data received from a client;
      
      processing the data by the selected second layer unit; and
      
      storing the output of the second layer unit by the plurality of selected third layer units.
  - 16. The method as in claim 14, further comprising:
    - encrypting data flowing from the selected first layer unit, the encrypting done by the selected second layer unit; and
      
      storing the encrypted data by the plurality of selected third layer units.
  - 17. The method as in claim 14, further comprising:
    - encrypting data flowing from the selected first layer unit, the encrypting done by the selected second layer unit;
      
      storing the encrypted data by the plurality of selected third layer units;
      
      receiving a request for requested data stored by the plurality of selected third layer units;
      
      decrypting the requested data by the selected second layer unit; and
      
      transferring the decrypted data to a client of the selected first layer unit.

18. A system for managing a computer network through a graphical representation of a multi-layer network, comprising:
- a graphical user interface to display the graphical representation of the multi-layer network, the multi-layer network including at least a front end layer and a back end layer, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  the graphical user interface to represent a plurality of first layer units of a first layer as a plurality of first layer graphical objects;
  
  the graphical user interface to represent a plurality of second layer units of a second layer as a plurality of second layer graphical objects;
  
  the graphical user interface to represent a plurality of third layer units of the third layer as a plurality of third layer graphical objects;
  
  an arbitrated loop configured to arbitrate shared bandwidth access between the plurality of front end units and the plurality of back end units through the graphical representation;
  
  one or more layer unit information panels configured to display information, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  a process to select a first layer graphical object representing a selected first layer unit and selecting a second layer graphical object representing a selected second layer unit to form a logical connection between the selected first layer unit and the selected second layer unit, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  the process to select a plurality of third layer graphical objects representing a plurality of selected third layer units to form a logical connection between the selected second layer unit and the plurality of selected third layer units;
  
  the selected first layer unit to have firewall functionality access to the selected second layer unit and the selected second layer unit to have access to the plurality of selected third layer units in response to the first layer graphical object, the second layer graphical object, and the plurality of third layer graphical objects being selected; and
  
  the selected front end unit to issue a data access request directed to the selected second layer unit, wherein the selected second layer unit forwards the data access request to selected portions of the plurality of selected third layer units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (19, 20, 21)
- - 19. The system as in claim 18, further comprising:
    - the selected first layer unit to receive data from a client;
      
      the selected second layer unit to process the data; and
      
      the plurality of selected third layer units to store the output of the selected second layer unit.
  - 20. The system as in claim 18, further comprising:
    - the selected second layer unit to encrypt data flowing from the selected first layer unit; and
      
      the plurality of selected third layer units to store the encrypted data.
  - 21. The system as in claim 18, further comprising:
    - the selected second layer unit to encrypt data flowing from the selected first layer unit;
      
      the plurality of selected third layer units to store the encrypted data;
      
      a request received for data stored on the plurality of selected third layer units;
      
      the selected second layer unit to decrypt the requested data; and
      
      the selected first layer unit to transfer the decrypted data to a client.

22. A computer readable medium containing executable program instructions executed by a processor, comprising:
- program instructions that display a graphical representation of a multi-layer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  program instructions that represent a plurality of first layer units of a first layer as a plurality of first layer graphical objects in the graphical representation;
  
  program instructions that represent a plurality of second layer units of a second layer as a plurality of second layer graphical objects in the graphical representation;
  
  program instructions that represent a plurality of third layer units of the third layer as a plurality of third layer graphical objects in the graphical representation;
  
  program instructions that display information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  program instructions that select a first layer graphical object representing a selected first layer unit in the graphical representation and select a second layer graphical object representing a selected second layer unit in the graphical representation to form a logical connection between the selected first layer unit in the graphical representation and the selected second layer unit;
  
  program instructions that arbitrate, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  program instructions that select, through the graphical representation, a plurality of third layer graphical objects representing a plurality of selected third layer units to form a logical connection between the selected second layer unit and the plurality of selected third layer units;
  
  program instructions that grant, through the graphical representation, the selected first layer unit with firewall functionality access to the selected second layer unit and granting the selected second layer unit access to the plurality of selected third layer units in response to selecting the first layer graphical object, the second layer graphical object, and the plurality of third layer graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address; and
  
  program instructions that issue through the graphical representation, by the selected first layer unit, a data access request directed to the selected second layer unit, the selected second layer unit to forward to the data access request to selected portions of the plurality of third layer units to perform the data access request upon the selected portions of the plurality of third layer units.

23. A method for managing a computer network through a graphical representation of a multi-layer network, comprising:
- displaying the graphical representation of the multi-layer network, the multi-layer network having a plurality of units, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  representing a plurality of front end units as a plurality of front end graphical objects;
  
  representing a plurality of back end units as a plurality of back end graphical objects;
  
  displaying information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  selecting a front end graphical object representing a selected front end unit and selecting a plurality of back end graphical objects representing a plurality of selected back end units, to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  granting, through the graphical representation, the selected front end unit communication access and firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects;
  
  arbitrating, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  interposing, between the selected front end unit and the plurality of selected back end units, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer unit is a simulated network address; and
  
  issuing, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (24, 25, 26)
- - 24. The method as in claim 23, further comprising:
    - receiving data at the selected front end unit of a first layer, the data received from a client;
      
      processing the data by a particular second layer unit of the plurality of second layer units of a second layer; and
      
      storing the output of the particular second layer unit by the plurality of selected back end units of a third layer.
  - 25. The method as in claim 23, further comprising:
    - encrypting data flowing from the selected front end unit of a first layer, the encrypting done by a particular second layer unit of a second layer; and
      
      storing the encrypted data by the plurality of selected back end units of a third layer.
  - 26. The method as in claim 23, further comprising:
    - encrypting data flowing from the selected front end unit of a first layer, the encrypting done by a particular second layer unit of the plurality of second layer units of a second layer;
      
      storing the encrypted data by the plurality of selected back end units of a third layer;
      
      receiving a request for data stored by the plurality of selected back end units;
      
      decrypting the requested data by the particular second layer unit; and
      
      transferring the decrypted data to a client of the selected front end unit.

27. A system for managing a computer network through a graphical representation of a multi-layer network, comprising:
- a graphical user interface to display the graphical representation of the multi-layer network, the multi-layer network having a plurality of units;
  
  the graphical user interface to represent a plurality of front end units as front end graphical objects;
  
  the graphical user interface to represent a plurality of back end units as back end graphical objects;
  
  one or more layer unit information panels configured to display information, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  a process to select a front end graphical object representing a selected front end unit and the process to select a plurality of back end graphical objects representing a plurality of selected back end units to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  an arbitrated loop configured to arbitrate, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  the process to grant, through the graphical representation, the selected front end unit communication access and firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects;
  
  the process to interpose, between the selected front end unit and the plurality of selected back end units, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer unit is a network security appliance that is configured to encrypt and decrypt data; and
  
  the selected front end unit to issue a data access request directed to the plurality of second layer units, the second layer units to forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (28, 29, 30)
- - 28. The system as in claim 27, further comprising:
    - the selected front end unit of a first layer unit to receive data;
      
      a particular second layer unit of the plurality of second layer unit to process the data; and
      
      the plurality of selected back end units of a third layer to store the output from the particular second layer unit.
  - 29. The system as in claim 27, further comprising:
    - a particular second layer unit of a second layer to encrypt data flowing from the selected front end unit of a first layer; and
      
      the plurality of selected back end units of a third layer to store the encrypted data.
  - 30. The system as in claim 27, further comprising:
    - a particular second layer unit of the plurality of second layer units of a second layer to encrypt data flowing from the selected front end unit of a first layer;
      
      the plurality of selected back end units of a third layer to store the encrypted data;
      
      a request received for data stored on the plurality of selected back end units;
      
      the particular second layer unit to decrypt the requested data; and
      
      the selected front end unit to transfer the decrypted data to a client.

31. A computer readable medium containing executable program instructions executed by a process, comprising:
- program instructions that display a graphical representation of a multi-layer network, the multi-layer network having a plurality of units, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  program instructions that represent a plurality of front end units as front end graphical objects;
  
  program instructions that represent a plurality of back end units as back end graphical objectsprogram instructions that display information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  program instructions that select a front end graphical object representing a selected front end unit and a plurality of back end graphical objects representing a plurality of selected back end units, to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  program instructions that arbitrate, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  program instructions that grant, through the graphical representation, the selected front end unit communication access and firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects;
  
  program instructions that interpose, between the selected front end unit and the plurality of selected back end units, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer end unit is a network security appliance configured to encrypt and decrypt data; and
  
  program instructions that issue, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.

32. A method for managing a computer network through a graphical representation of a multi-layer network, comprising:
- displaying the graphical representation of the computer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  representing a plurality of front end units in the computer network as a plurality front end graphical objects;
  
  representing a plurality of back end units in the computer network as a plurality of back end graphical objects;
  
  displaying information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  selecting a front end graphical object representing a selected front end unit and selecting a plurality of back end graphical objects representing a plurality of selected back end units to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  granting, through the graphical representation, the selected front end unit communication access and firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  arbitrating, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  interposing, between the selected front end unit and the plurality of selected back end units, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer unit is a fabric switch; and
  
  issuing, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (33)
- - 33. The method as in claim 32, further comprising:
    - receiving data at the selected front end unit, the data received from a client;
      
      processing the data by a particular second layer unit of the plurality of second layer units; and
      
      storing the output from the particular second layer unit by the plurality of back end units.

34. A system for managing a computer network through a graphical representation of a multi-layer network, comprising:
- a graphical user interface to display the graphical representation of the computer network, wherein the graphical representation comprises at least one panel display for each layer of the multi-layer network;
  
  the graphical user interface to represent a plurality of front end units in the network as a plurality front end graphical objects;
  
  the graphical user interface to represent a plurality of back end units in the network as a plurality of back end graphical objects;
  
  one or more layer unit information panels configured to display information, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  a process to select a front end graphical object representing a selected front end unit and a plurality of back end graphical objects representing a plurality of selected back end objects to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  an arbitrated loop configured arbitrate shared bandwidth access through the graphical representation between the plurality of front end units and the plurality of back end units;
  
  the process to grant, through the graphical representation, the selected front end object communication access and firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects;
  
  the process to interpose, between the selected front end unit and the plurality of selected back end units, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer unit is a simulated network address; and
  
  the selected front end unit to issue a data access request directed to the plurality of second layer units, the second layer units to forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.
- View Dependent Claims (35)
- - 35. The system as in claim 34, further comprising:
    - the selected front end unit to receive data;
      
      a particular second layer unit of the plurality of second layer units to process the data; and
      
      the plurality of selected back end units to store the output from the particular second layer unit.

36. A computer readable medium containing executable program instructions executed by a process, comprising:
- program instructions that display a graphical representation of a computer network, wherein the graphical representation comprises at least one panel display for each layer of a multi-layer network;
  
  program instructions that represent a plurality of front end units in the computer network as front end unit graphical objects;
  
  program instructions that represent a plurality of back end units in the computer network as back end graphical objects;
  
  program instructions that display information through one or more layer unit information panels, wherein the information comprises status information, network associations, applicable protocols including applicable encryption, data transfer and protocols being executed;
  
  program instructions that arbitrate, through the graphical representation, shared bandwidth access between the plurality of front end units and the plurality of back end units;
  
  program instructions that select a front end graphical object representing a selected front end unit and a plurality of back end graphical objects representing a plurality of selected back end units to form a logical connection between the selected front end unit and the plurality of selected back end units;
  
  program instructions that grant, through the graphical representation, the selected front end unit communication access and firewall functionality access to the plurality of selected back end units in response to selecting the front end graphical object and the plurality of back end graphical objects in the graphical representation, wherein at least one back end graphical object of the plurality of back end graphical objects is a simulated network address;
  
  program instructions that interpose, between the selected front end unit and the plurality of selected back end units, a plurality of second layer units that are configured to correspond to one or more portions of the plurality of selected back end units, wherein each second layer unit is a simulated network address; and
  
  program instructions that issue, by the selected front end unit, a data access request directed to the plurality of second layer units, wherein the plurality of second layer units forward the data access request to selected portions of the plurality of selected back end units to perform the data access request upon the selected portions of the plurality of selected back end units.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
United States Of America As Represented By The Secretary Of The Army (Government of the United States of America), NetApp, Inc.
Original Assignee
NetApp, Inc.
Inventors
Plotkin, Serge, Bojinov, Hristo
Primary Examiner(s)
Campbell; Joshua D
Assistant Examiner(s)
Alvesteffer; Stephen

Application Number

US11/223,443
Publication Number

US 20070061432A1
Time in Patent Office

1,740 Days
Field of Search

715/853, 715/736, 715/743, 709/223
US Class Current

715/736
CPC Class Codes

H04L 41/22   comprising specially adapte...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

System and/or method relating to managing a network

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

36 Claims

Specification

Solutions

Use Cases

Quick Links

System and/or method relating to managing a network

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

36 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links