×

Packet routing system and method

  • US 8,260,918 B2
  • Filed: 09/12/2006
  • Issued: 09/04/2012
  • Est. Priority Date: 09/13/2000
  • Status: Expired due to Term
First Claim
Patent Images

1. A method comprising:

  • providing a service provider with a service processing switch including a plurality of blades each having a plurality of processor elements;

    partitioning a plurality of virtual routers (VRs) of the service processing switch between a first subscriber and a second subscriber of the service provider by associating a first set of processor element identifiers (PEIDs) with a first set of processor elements of the plurality of processor elements supporting a first set of VRs of the plurality of VRs partitioned to the first subscriber and a second set of PEIDs with a second set of processor elements of the plurality of processor elements supporting a second set of VRs of the plurality of VRs partitioned to the second subscriber, wherein PEIDs are assigned to each of the plurality of processor elements based on a combination of a blade ID of a blade of the plurality of blades with which the processor element is associated and a processor element number of the processor element;

    configuring the first set of VRs to provide a first set of managed network-based security services on behalf of the first subscriber by creating within the first set of VRs a first object group including a first subset of objects selected to be supportive of the first set of managed network-based security services;

    configuring the second set of VRs to provide a second set of managed network-based security services on behalf of the second subscriber by creating within the second set of VRs a second object group including a second subset of objects selected to be supportive of the second set of managed network-based security services;

    the service processing switch providing appropriate managed network-based security services for the first subscriber and the second subscriber bysteering a first subscriber packet destined for or originating from a site of the first subscriber to an appropriate processor element of the first set of processor elements supporting the first set of VRs and an appropriate object within the first object group based on a PEID value associated with the first subscriber packet and a logical queue identifier (LQID) value associated with the first subscriber packet, the PEID value associated with the first subscriber packet corresponding to a PEID assigned to the appropriate processor element of the first set of processor elements, and the LQID value associated with the first subscriber packet corresponding to an LQID assigned to the appropriate object within the first object group; and

    steering a second subscriber packet destined for or originating from a site of the second subscriber to an appropriate processor element of the second set of processor elements supporting the second set of VRs and an appropriate object within the second object group based on a PEID value associated with the second subscriber packet and a logical queue identifier (LQID) value associated with the second subscriber packet, the PEID value associated with the second subscriber packet corresponding to a PEID assigned to the appropriate processor element of the second set of processor elements, and the LQID value associated with the second subscriber packet corresponding to an LQID assigned to the appropriate object within the second object group.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×