Integrating security server policies with optimized routing control
First Claim
Patent Images
1. A method, comprising:
- receiving a first set of one or more control policies, from a control server of a network domain, at a routing master controller of the network domain, the routing master controller having a second set of one or more traffic policies used to determine optimal paths for directing traffic through the network domain;
generating a third set of one or more integrated policies at the routing master controller based on the first and second sets of policies;
classifying one or more traffic classes at the routing master controller; and
associating at least one optimal path with each of the one or more traffic classes at the routing master controller based on the third set of integrated policies.
2 Assignments
0 Petitions
Accused Products
Abstract
In one embodiment, a first set of one or more control policies at a control server of a network domain may be transmitted to a routing master controller of the network domain, which uses a second set of one or more traffic policies to determine optimal paths for directing traffic through the domain. The routing master controller may then generate a third set of one or more integrated policies based on the first and second sets of policies, e.g., based on the knowledge and policies of both the control server and the routing master controller.
-
Citations
21 Claims
-
1. A method, comprising:
-
receiving a first set of one or more control policies, from a control server of a network domain, at a routing master controller of the network domain, the routing master controller having a second set of one or more traffic policies used to determine optimal paths for directing traffic through the network domain; generating a third set of one or more integrated policies at the routing master controller based on the first and second sets of policies; classifying one or more traffic classes at the routing master controller; and associating at least one optimal path with each of the one or more traffic classes at the routing master controller based on the third set of integrated policies. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method, comprising:
-
receiving a first set of one or more control policies, from a control server of a network domain, at a routing master controller of the network domain, the routing master controller having a second set of one or more traffic policies used to determine optimal paths for directing traffic through the network domain; and generating a third set of one or more integrated policies at the routing master controller based on the first and second sets of policies, wherein generating the third set of integrated policies further comprises combining the first and second sets of policies. - View Dependent Claims (14)
-
-
15. A method, comprising:
-
receiving a first set of one or more control policies, from a control server of a network domain, at a routing master controller of the network domain, the routing master controller having a second set of one or more traffic policies used to determine optimal paths for directing traffic through the network domain; generating a third set of one or more integrated policies at the routing master controller based on the first and second sets of policies; detecting a security event based on the third set of integrated policies; and
in response,performing a security action associated with the security event based on the third set of integrated policies.
-
-
16. A system, comprising:
-
a control server of a network domain configured to determine a first set of one or more control policies; a routing master controller of the network domain configured to receive the first set of control policies from the control server, the routing master controller having a second set of one or more traffic policies used to determine optimal paths for directing traffic through the network domain, the routing master controller configured to generate a third set of one or more integrated policies based on the first and second sets of policies, classify one or more traffic classes, associate at least one optimal path with each of the one or more traffic classes based on the third set of integrated policies, and notify one or more routers in the network domain of the at least one optimal path associated with each of the one or more traffic classes; and wherein the one or more routers are configured to receive traffic, determine the traffic class of the traffic, and route the traffic based on the traffic class and the associated optimal path.
-
-
17. An apparatus, comprising:
-
one or more network interfaces configured to communicate with a control server and one or more routers of a network domain; a processor coupled to the network interfaces and configured to execute one or more processes; and a memory configured to store a routing master controller process executable by the processor, the routing master controller process, when executed, operable to;
receive a first set of one or more control policies from the control server, use a second set of one or more traffic policies to determine optimal paths for directing traffic through the network domain, generate a third set of one or more integrated policies based on the first and second sets of policies, classify one or more traffic classes, and associate at least one optimal path with each of the one or more traffic classes based on the third set of integrated policies. - View Dependent Claims (18, 19, 20)
-
-
21. An apparatus, comprising:
-
means for receiving a first set of one or more control policies, from a control server of a network domain; means for maintaining a second set of one or more traffic policies used to determine optimal paths for directing traffic through the network domain; means for generating a third set of one or more integrated policies based on the first and second sets of policies; means for classifying one or more traffic classes; and means for associating at least one optimal path with each of the one or more traffic classes based on the third set of integrated policies.
-
Specification