Apparatus and method for managing a provider network
First Claim
1. A method for managing a network configuration of a provider network, comprising:
- a memory; and
a processor, wherein the processor is configured to perform the steps of determining, by an administration system, a first network resource supported by at least one network communication system over which a subscriber has control wherein the first network resource provides network services to the subscriber and network services to other subscribers;
receiving, at the administration system, at least one network configuration change from the subscriber, the at least one network configuration change being related to the first network resource;
detecting, by a network management system associated with the administration system, a denial of service attack on the subscriber;
sending, to a host device operated by the subscriber, a message indicating the denial of service attack;
providing, by the administration system in an interface, to the subscriber with a plurality of mitigation options within the interface, wherein the at least one network configuration change is represented by at least one of the plurality of mitigation options;
restricting, by the administration system, implementation of the at least one network configuration change to the at least one network communication system that affects the network services provided to the subscriber and not to configuration changes to the at least one network communication system that affect network services provided to other subscribers; and
responsive to the subscriber selecting the at least one of the plurality of mitigation options, performing, by the administration system, a network configuration change to the at least one network communication system that supports the first network resource;
determining a second network resource over which a second subscriber has control;
receiving a second network configuration change from the second subscriber, the second network configuration change being related to the second network resource;
implementing the received second network configuration change; and
denying, to the subscriber, control over the second network resource.
2 Assignments
0 Petitions
Accused Products
Abstract
An administration system is defined that provides an interface between a subscriber and resources on a provider network. The subscriber, via the administration system, has access to and control over certain of the resources on the provider network. The subscriber may have access to and control over only those resources on the provider network related to the services provided to his network. Also, the subscriber may not be capable of altering resources on the provider network in a way that affects the services provided to another subscriber. Because the administration system allows a user to control resources on the provider network that relate to services provided to his network, the amount of support required by the provider to administer those resources is reduced.
34 Citations
50 Claims
-
1. A method for managing a network configuration of a provider network, comprising:
a memory; and
a processor, wherein the processor is configured to perform the steps of determining, by an administration system, a first network resource supported by at least one network communication system over which a subscriber has control wherein the first network resource provides network services to the subscriber and network services to other subscribers;
receiving, at the administration system, at least one network configuration change from the subscriber, the at least one network configuration change being related to the first network resource;
detecting, by a network management system associated with the administration system, a denial of service attack on the subscriber;
sending, to a host device operated by the subscriber, a message indicating the denial of service attack;
providing, by the administration system in an interface, to the subscriber with a plurality of mitigation options within the interface, wherein the at least one network configuration change is represented by at least one of the plurality of mitigation options;
restricting, by the administration system, implementation of the at least one network configuration change to the at least one network communication system that affects the network services provided to the subscriber and not to configuration changes to the at least one network communication system that affect network services provided to other subscribers; and
responsive to the subscriber selecting the at least one of the plurality of mitigation options, performing, by the administration system, a network configuration change to the at least one network communication system that supports the first network resource;
determining a second network resource over which a second subscriber has control;
receiving a second network configuration change from the second subscriber, the second network configuration change being related to the second network resource;
implementing the received second network configuration change; and
denying, to the subscriber, control over the second network resource.- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50)
Specification