Enforcing network service level agreements in a network element

US 7,962,582 B2
Filed: 06/21/2006
Issued: 06/14/2011
Est. Priority Date: 06/21/2005
Status: Active Grant

First Claim

Patent Images

1. A data processing apparatus, comprising:

a plurality of network interfaces that are coupled to a data network for receiving one or more packets therefrom and sending one or more packets thereto;

one or more processors;

a switching system coupled to the one or more processors and packet forwarding logic, wherein the switching system and packet forwarding logic are configured to receive packets on a first network interface, determine a second network interface on which to send the packets, and to send the packets on the second network interface;

logic which when executed by the one or more processors is operable to cause;

receiving over the network an application-layer message encapsulated in one or more of the packets;

wherein the received one or more of the packets are addressed to a destination endpoint that hosts a receiving application or service, and wherein the data processing apparatus is not at the destination endpoint;

wherein the application-layer message communicates application-level information between a sending application or service and the receiving application or service;

wherein the application-level information comprises application-level attributes that are contained in a body of the application-layer message;

forwarding the one or more of the packets toward the destination endpoint and concurrently copying at least part of the one or more of the packets without disrupting the forwarding;

extracting the application-layer message from the copied at least part of the one or more of the packets;

detecting one or more application-level attributes from the body of the extracted application-layer message;

using the one or more application-level attributes from the body of the extracted application-layer message, discovering that the receiving application or service is using the network;

using the extracted application-layer message, identifying one or more network-layer condition metrics and one or more application-layer condition metrics;

determining, based on the identified network-layer condition metrics and the application-layer condition metrics, whether one or more conditions of a service level agreement are violated;

in response to determining a violation, performing one or more responsive operations on one or more network elements.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Enforcing network service level agreements in a network infrastructure element comprises receiving, at the network infrastructure element, an application-layer message comprising one or more of the packets; forwarding the application-layer message toward a destination endpoint and concurrently copying the application-layer message without disrupting the forwarding; using the copied application-layer message, discovering one or more applications or services that are using the network; using the copied application-layer message, identifying one or more network-layer condition metrics, and identifying one or more application-layer condition metrics; determining, based on the identified network-layer condition metrics and the application-layer condition metrics, whether one or more conditions of a service level agreement are violated; and in response to determining a violation, performing one or more responsive operations on one or more network elements.

242 Citations

37 Claims

1. A data processing apparatus, comprising:
- a plurality of network interfaces that are coupled to a data network for receiving one or more packets therefrom and sending one or more packets thereto;
  
  one or more processors;
  
  a switching system coupled to the one or more processors and packet forwarding logic, wherein the switching system and packet forwarding logic are configured to receive packets on a first network interface, determine a second network interface on which to send the packets, and to send the packets on the second network interface;
  
  logic which when executed by the one or more processors is operable to cause;
  
  receiving over the network an application-layer message encapsulated in one or more of the packets;
  
  wherein the received one or more of the packets are addressed to a destination endpoint that hosts a receiving application or service, and wherein the data processing apparatus is not at the destination endpoint;
  
  wherein the application-layer message communicates application-level information between a sending application or service and the receiving application or service;
  
  wherein the application-level information comprises application-level attributes that are contained in a body of the application-layer message;
  
  forwarding the one or more of the packets toward the destination endpoint and concurrently copying at least part of the one or more of the packets without disrupting the forwarding;
  
  extracting the application-layer message from the copied at least part of the one or more of the packets;
  
  detecting one or more application-level attributes from the body of the extracted application-layer message;
  
  using the one or more application-level attributes from the body of the extracted application-layer message, discovering that the receiving application or service is using the network;
  
  using the extracted application-layer message, identifying one or more network-layer condition metrics and one or more application-layer condition metrics;
  
  determining, based on the identified network-layer condition metrics and the application-layer condition metrics, whether one or more conditions of a service level agreement are violated;
  
  in response to determining a violation, performing one or more responsive operations on one or more network elements.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22)
- - 2. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause:
    - in response to determining a violation, performing one or more responsive operations that re-engineer one or more network elements to address the violation.
  - 3. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause identifying network latency and application latency using the extracted application-layer message.
  - 4. The apparatus of claim 3, wherein the logic when executed by the one or more processors is operable to cause creating and storing a database record that correlates the identified network latency and application latency.
  - 5. The apparatus of claim 3, wherein the logic when executed by the one or more processors is operable to cause identifying the network latency by receiving one or more TCP events from a TCP layer that identifies one or more anomalies in received TCP segments.
  - 6. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause:
    - determining that the extracted application-layer message is incompatible with a destination application;
      
      transforming the extracted application-layer message from a first format to a second format that is compatible with the destination application.
  - 7. The apparatus of claim 1, wherein the destination endpoint is a first destination endpoint, wherein the logic when executed by the one or more processors is operable to cause performing one or more responsive operations on one or more network elements by:
    - identifying a second destination endpoint that also hosts the receiving application or service and is associated with a better application-layer condition metric than the first destination endpoint;
      
      routing the copied application-layer message to the second destination endpoint.
  - 8. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause performing one or more responsive operations on one or more network elements by modifying a type of service (ToS) value in an IP header of the application-layer message before performing the forwarding.
  - 9. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause performing one or more responsive operations on one or more network elements by modifying a differentiated service code point (DSCP) value in an IP header of the application-layer message before performing the forwarding.
  - 10. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause performing one or more responsive operations on one or more network elements by issuing a resource reservation request using RSVP protocol before performing the forwarding.
  - 11. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause performing one or more responsive operations on one or more network elements by modifying a differentiated service code point (DSCP) value in an IP header of the application-layer message before performing the forwarding.
  - 12. The apparatus of claim 1, wherein the logic when executed by the one or more processors is operable to cause performing one or more responsive operations on one or more network elements by modifying a forwarding path of the application-layer message before performing the forwarding.
  - 13. The apparatus of claim 1, further comprising:
    - a volatile or non-volatile computer-readable storage medium recorded with one or more message classification rules and a mapping of message classification values to network-level QoS values, wherein each of the one or more message classification rules specifies one or more application-level attributes and one of the message classification values;
      
      application QoS logic which when executed by the one or more processors is operable to cause;
      
      matching one or more application-level attributes from the body of the application-layer message to the one or more message classification rules;
      
      determining a message classification value of the application-layer message based on the matching;
      
      selecting one of the network-level QoS values using the mapping and based on the determined message classification value;
      
      marking a network-level header of the at least one of the one or more of the packets using the selected network-level QoS value.
  - 14. The apparatus of claim 13, wherein the message classification rules classify the application-layer message as one of mission critical, transactional data, bulk data transfer, and best effort.
  - 15. The apparatus of claim 13, wherein the network-level QoS values are differentiated services code point (DSCP) values.
  - 16. The apparatus of claim 15, wherein the application QoS logic comprises logic which when executed by the one or more processors is operable to mark an IP header of the at least one of the one or more of the packets with one of the DSCP values.
  - 17. The apparatus of claim 13, wherein the network-level QoS values are IP Type of Service (ToS) values.
  - 18. The apparatus of claim 17, wherein the application QoS logic comprises logic which when executed by the one or more processors is operable to mark an IP header of the at least one of the one or more of the packets with one of the ToS values.
  - 19. The apparatus of claim 13, wherein the application QoS logic comprises logic which when executed by the one or more processors is operable to forward the application-layer message to a next hop, wherein the forwarding is prioritized based on the selected network-level QoS value and a set of priority queues.
  - 20. The apparatus of claim 13, wherein the application QoS logic comprises logic which when executed by the one or more processors is operable to establish a plurality of prioritized virtual connections between the apparatus and a next hop apparatus, and to forward the application-layer message to a next hop, wherein the forwarding is prioritized based on writing the application-layer message to one of the virtual connections that is associated with the selected network-level QoS value.
  - 21. The apparatus of claim 13, wherein the application-layer message is a first application-layer message, wherein the application QoS logic comprises logic which when executed by the one or more processors is operable to:
    - forward the first application-layer message to the destination endpoint;
      
      receive a second application-layer message from the destination endpoint;
      
      determine that the second application-layer message is associated with the first application-layer message;
      
      mark one or more packets containing the second application-layer message with the same selected network-level QoS value that was used to mark the at least one of the one or more of the packets containing the first application-layer message; and
      
      forward the second application-layer message to a next hop, wherein the forwarding is prioritized based on writing the application-layer message to one of the virtual connections that is associated with the selected network-level QoS value.
  - 22. The apparatus of claim 1, comprising any of a packet data router and a packet data switch in a packet-switched network.

23. A non-transitory computer-readable storage medium comprising logic which when executed by one or more processors is operable to cause:
- receiving, at a network infrastructure element comprising a plurality of network interfaces that are coupled to a data network for receiving one or more packets therefrom and sending one or more packets thereto, an application-layer message encapsulated in one or more of the packets;
  
  wherein the received one or more of the packets are addressed to a destination endpoint that hosts a receiving application or service, and wherein the data processing apparatus is not at the destination endpoint;
  
  wherein the application-layer message communicates application-level information between a sending application or service and the receiving application or service;
  
  wherein the application-level information comprises application-level attributes that are contained in a body of the application-layer message;
  
  forwarding the one or more of the packets toward the destination endpoint and concurrently copying at least part of the one or more of the packets without disrupting the forwarding;
  
  extracting the application-layer message from the copied at least part of the one or more of the packets;
  
  detecting one or more application-level attributes from the body of the extracted application-layer message;
  
  using the one or more application-level attributes from the body of the extracted application-layer message, discovering that the receiving application or service is using the network;
  
  using the extracted application-layer message, identifying one or more network-layer condition metrics and one or more application-layer condition metrics;
  
  determining, based on the identified network-layer condition metrics and the application-layer condition metrics, whether one or more conditions of a service level agreement are violated;
  
  in response to determining a violation, performing one or more responsive operations on one or more network elements.
- View Dependent Claims (24, 25, 26, 27)
- - 24. A non-transitory computer-readable storage medium as recited in claim 23, wherein the logic, when executed by one or more processors, is operable to further cause:
    - determining that the extracted application-layer message is incompatible with a destination application;
      
      transforming the extracted application-layer message from a first format to a second format that is compatible with the destination application.
  - 25. A non-transitory computer-readable storage medium as recited in claim 23, wherein the destination endpoint is a first destination endpoint;
    - wherein the logic, when executed by one or more processors, is operable to cause performing one or more responsive operations on one or more network elements by;
      
      identifying a second destination endpoint that also hosts the receiving application or service and is associated with a better application-layer condition metric than the first destination endpoint;
      
      routing the copied application-layer message to the second destination endpoint.
  - 26. A non-transitory computer-readable storage medium as recited in claim 23, wherein the logic, when executed by one or more processors, is operable to further cause:
    - storing one or more message classification rules and a mapping of message classification values to network-level QoS values, wherein each of the one or more message classification rules specifies one or more application-level attributes and one of the message classification values;
      
      matching one or more application-level attributes from the body of the application-layer message to the one or more message classification rules;
      
      determining a message classification value of the application-layer message based on the matching;
      
      selecting one of the network-level QoS values using the mapping and based on the determined message classification value;
      
      marking a network-level header of the at least one of the one or more of the packets using the selected network-level QoS value.
  - 27. A non-transitory computer-readable storage medium as recited in claim 26, wherein the application-layer message is a first application-layer message, wherein the logic, when executed by one or more processors, is operable to cause:
    - forwarding the first application-layer message to the destination endpoint;
      
      receiving a second application-layer message from the destination endpoint;
      
      determining that the second application-layer message is associated with the first application-layer message;
      
      marking one or more packets containing the second application-layer message with the same selected network-level QoS value that was used to mark the at least one of the one or more of the packets containing the first application-layer message; and
      
      forwarding the second application-layer message to a next hop, wherein the forwarding is prioritized based on writing the application-layer message to one of the virtual connections that is associated with the selected network-level QoS value.

28. A data processing apparatus, comprising:
- a plurality of network interfaces that are coupled to a data network for receiving one or more packets therefrom and sending one or more packets thereto;
  
  one or more processors;
  
  a switching system coupled to the one or more processors and packet forwarding logic, wherein the switching system and packet forwarding logic are configured to receive packets on a first network interface, determine a second network interface on which to send the packets, and to send the packets on the second network interface;
  
  means for receiving over the network an application-layer message encapsulated in one or more of the packets;
  
  wherein the received one or more of the packets are addressed to a destination endpoint that hosts a receiving application or service, and wherein the data processing apparatus is not at the destination endpoint;
  
  wherein the application-layer message communicates application-level information between a sending application or service and the receiving application or service;
  
  wherein the application-level information comprises application-level attributes that are contained in a body of the application-layer message;
  
  means for forwarding the one or more of the packets toward the destination endpoint and concurrently copying at least part of the one or more of the packets without disrupting the forwarding;
  
  means for extracting the application-layer message from the copied at least part of the one or more of the packets;
  
  means for detecting one or more application-level attributes from the body of the extracted application-layer message;
  
  means for using the one or more application-level attributes from the body of the extracted application-layer message, discovering that the receiving application or service is using the network;
  
  means for identifying, using the extracted application-layer message, one or more network-layer condition metrics and one or more application-layer condition metrics;
  
  means for determining, based on the identified network-layer condition metrics and the application-layer condition metrics, whether one or more conditions of a service level agreement are violated;
  
  means for performing one or more responsive operations on one or more network elements in response to determining a violation.
- View Dependent Claims (29, 30, 31, 32)
- - 29. A data processing apparatus as recited in claim 28, further comprising:
    - means for determining that the extracted application-layer message is incompatible with a destination application;
      
      means for transforming the extracted application-layer message from a first format to a second format that is compatible with the destination application.
  - 30. A data processing apparatus as recited in claim 28, wherein the destination endpoint is a first destination endpoint, wherein the means for performing one or more responsive operations on one or more network elements comprises:
    - means for identifying a second destination endpoint that also hosts the receiving application or service and is associated with a better application-layer condition metric than the first destination endpoint;
      
      means for routing the copied application-layer message to the second destination endpoint.
  - 31. A data processing apparatus as recited in claim 28, further comprising:
    - means for storing one or more message classification rules and a mapping of message classification values to network-level QoS values, wherein each of the one or more message classification rules specifies one or more application-level attributes and one of the message classification values;
      
      means for matching one or more application-level attributes from the body of the application-layer message to the one or more message classification rules;
      
      means for determining a message classification value of the application-layer message based on the matching;
      
      means for selecting one of the network-level QoS values using the mapping and based on the determined message classification value;
      
      means for marking a network-level header of the at least one of the one or more of the packets using the selected network-level QoS value.
  - 32. A data processing apparatus as recited in claim 31, further comprising:
    - means for forwarding the first application-layer message to the destination endpoint;
      
      means for receiving a second application-layer message from the destination endpoint;
      
      means for determining that the second application-layer message is associated with the first application-layer message;
      
      means for marking one or more packets containing the second application-layer message with the same selected network-level QoS value that was used to mark the at least one of the one or more of the packets containing the first application-layer message; and
      
      means for forwarding the second application-layer message to a next hop, wherein the forwarding is prioritized based on writing the application-layer message to one of the virtual connections that is associated with the selected network-level QoS value.

33. A computer-implemented method, comprising:
- receiving, at a network infrastructure element comprising a plurality of network interfaces that are coupled to a data network for receiving one or more packets therefrom and sending one or more packets thereto, an application-layer message encapsulated in one or more of the packets;
  
  wherein the received one or more of the packets are addressed to a destination endpoint that hosts a receiving application or service, and wherein the data processing apparatus is not at the destination endpoint;
  
  wherein the application-layer message communicates application-level information between a sending application or service and the receiving application or service;
  
  wherein the application-level information comprises application-level attributes that are contained in a body of the application-layer message;
  
  forwarding the one or more of the packets toward a destination endpoint and concurrently copying at least part of the one or more of the packets without disrupting the forwarding;
  
  extracting the application-layer message from the copied at least part of the one or more of the packets;
  
  detecting one or more application-level attributes from the body of the extracted application-layer message;
  
  using the one or more application-level attributes from the body of the extracted application-layer message, discovering that the receiving application or service is using the network;
  
  using the extracted application-layer message, identifying one or more network-layer condition metrics and one or more application-layer condition metrics;
  
  determining, based on the identified network-layer condition metrics and the application-layer condition metrics, whether one or more conditions of a service level agreement are violated;
  
  in response to determining a violation, performing one or more responsive operations on one or more network elements;
  
  wherein the method is performed by one or more computing devices.
- View Dependent Claims (34, 35, 36, 37)
- - 34. A computer-implemented method as recited in claim 33, further comprising:
    - determining that the extracted application-layer message is incompatible with a destination application;
      
      transforming the extracted application-layer message from a first format to a second format that is compatible with the destination application.
  - 35. A computer-implemented method as recited in claim 33, wherein the destination endpoint is a first destination endpoint, wherein the performing one or more responsive operations on one or more network elements comprises:
    - identifying a second destination endpoint that also hosts the receiving application or service and is associated with a better application-layer condition metric than the first destination endpoint;
      
      routing the copied application-layer message to the second destination endpoint.
  - 36. A computer-implemented method as recited in claim 33, further comprising:
    - storing one or more message classification rules and a mapping of message classification values to network-level QoS values, wherein each of the one or more message classification rules specifies one or more application-level attributes and one of the message classification values;
      
      matching one or more application-level attributes from the body of the application-layer message to the one or more message classification rules;
      
      determining a message classification value of the application-layer message based on the matching;
      
      selecting one of the network-level QoS values using the mapping and based on the determined message classification value;
      
      marking a network-level header of the at least one of the one or more of the packets using the selected network-level QoS value.
  - 37. A computer-implemented method as recited in claim 36, further comprising:
    - forwarding the first application-layer message to the destination endpoint;
      
      receiving a second application-layer message from the destination endpoint;
      
      determining that the second application-layer message is associated with the first application-layer message;
      
      marking one or more packets containing the second application-layer message with the same selected network-level QoS value that was used to mark the at least one of the one or more of the packets containing the first application-layer message; and
      
      forwarding the second application-layer message to a next hop, wherein the forwarding is prioritized based on writing the application-layer message to one of the virtual connections that is associated with the selected network-level QoS value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Original Assignee
Cisco Technology, Inc. (Cisco Systems, Inc.)
Inventors
Joshi, Praveen, Potti, Sunil, Phillips, Steve, Tripathi, Rahul
Primary Examiner(s)
Winder; Patrice L
Assistant Examiner(s)
Golabbakhsh; Ebrahim

Application Number

US11/473,298
Publication Number

US 20070156919A1
Time in Patent Office

1,819 Days
Field of Search

709/22
US Class Current

709/220
CPC Class Codes

G06F 2221/2141   Access rights, e.g. capabil...

G06F 8/656   while running

H04L 41/026   using e-messaging for trans...

H04L 41/06   Management of faults, event...

H04L 41/0893   Assignment of logical group...

H04L 41/0894   Policy-based network config...

H04L 41/12   Discovery or management of ...

H04L 41/22   comprising specially adapte...

H04L 41/5003   Managing SLA; Interaction b...

H04L 41/5009   Determining service level p...

H04L 41/5012   determining service availab...

H04L 41/5096   wherein the managed service...

H04L 43/0811   by checking connectivity

H04L 45/00   Routing or path finding of ...

H04L 45/56   Routing software

H04L 45/563   Software download or update

H04L 63/0245   Filtering by information in...

H04L 63/0428   wherein the data content is...

H04L 63/08   for authentication of entit...

H04L 63/102   Entity profiles

H04L 63/12 : Applying verification of th...

H04L 67/02 : based on web technology, e....

H04L 67/34 : involving the movement of s...

H04L 69/22 : Parsing or analysis of headers

H04L 9/40 : Network security protocols

View All

Enforcing network service level agreements in a network element

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

242 Citations

37 Claims

Specification

Solutions

Use Cases

Quick Links

Enforcing network service level agreements in a network element

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

242 Citations

37 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links