System and method to access and use layer 2 and layer 3 information used in communications
First Claim
Patent Images
1. A method of reviewing network information comprising:
- receiving communication information for a plurality of network elements from routers and switches within a plurality of local area networks, wherein the communication information includes layer 2 information including media access controller identifiers of elements within a network, layer 3 information including network addresses used by the elements within the network, and coupling identifiers corresponding to couplings between different elements within the network;
storing the communication information;
determining that a portion of the layer 2 information and the layer 3 information is expected information;
determining, by utilizing instructions from memory that are executed by a processor, whether a particular piece of the layer 2 and layer 3 information matches a corresponding piece of expected information to identify stored information that is incorrect, and policy violations, wherein the particular piece of the layer 2 and layer 3 information is determined to match the corresponding piece of the expected information when at least a portion of the particular piece of the layer 2 and layer 3 information matches a subset of the corresponding piece of the expected information, wherein the subset includes a description of an expected port name that includes a description of a type of each of the plurality of network elements;
compiling, if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information, a list that indicates that the particular piece of the layer 2 and layer 3 information does not match the corresponding piece of the expected information; and
correcting the communication information if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method can be used to collect communication information including Layer 2 and Layer 3 information during normal communications between devices or other elements within a network. In a particular embodiment, the information can be generated as address resolution protocol tables and media access control tables, which are used to keep track of which elements are connected to other elements and to map network addresses to media access control identifiers. The communication information can be used in performing an action, such as servicing the system, auditing the system, checking for security breaches or policy violations, or other suitable action.
-
Citations
19 Claims
-
1. A method of reviewing network information comprising:
-
receiving communication information for a plurality of network elements from routers and switches within a plurality of local area networks, wherein the communication information includes layer 2 information including media access controller identifiers of elements within a network, layer 3 information including network addresses used by the elements within the network, and coupling identifiers corresponding to couplings between different elements within the network; storing the communication information; determining that a portion of the layer 2 information and the layer 3 information is expected information; determining, by utilizing instructions from memory that are executed by a processor, whether a particular piece of the layer 2 and layer 3 information matches a corresponding piece of expected information to identify stored information that is incorrect, and policy violations, wherein the particular piece of the layer 2 and layer 3 information is determined to match the corresponding piece of the expected information when at least a portion of the particular piece of the layer 2 and layer 3 information matches a subset of the corresponding piece of the expected information, wherein the subset includes a description of an expected port name that includes a description of a type of each of the plurality of network elements; compiling, if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information, a list that indicates that the particular piece of the layer 2 and layer 3 information does not match the corresponding piece of the expected information; and correcting the communication information if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An information handling system comprising:
-
local area networks operable to be used by subscribers of a service provider; and a management system coupled to the local area networks, the management system comprising; a storage device comprising layer 2 information, layer 3 information, and coupling identifiers, wherein the layer 2 information includes media access controller identifiers, the layer 3 information includes network addresses, and coupling identifiers corresponding to couplings between different elements within the network, wherein the layer 2 information and the layer 3 information has been provided by routers and switches in a plurality of local area networks, and the layer 2 information and the layer 3 information relates to a plurality of network elements in the local area networks, wherein the layer 2 information and layer 3 information are contained within communication information; and a processor that executes instructions from memory to perform operations, the operations comprising; determining that a portion of the layer 2 information and the layer 3 information is expected information; determining whether a particular piece of the layer 2 information or the layer 3 information matches a corresponding piece of the expected information to identify stored information that is incorrect, and policy violations, wherein the particular piece of the layer 2 and layer 3 information is determined to match the corresponding piece of the expected information when at least a portion of the particular piece of the layer 2 and layer 3 information matches a subset of the corresponding piece of the expected information, wherein the subset includes a description of an expected port name that includes a description of a type of each of the plurality of network elements; compiling, if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information, a list that indicates that the particular piece of the layer 2 and layer 3 information does not match the corresponding piece of the expected information; and correcting the communication information if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A non-transitory storage medium including instructions that are executed by a processor to perform operations, the operations comprising:
-
receiving communication information for a plurality of network elements from routers and switches within a plurality of local area networks, wherein the communication information includes layer 2 information including media access controller identifiers of elements within a network, layer 3 information including network addresses used by the elements within the network, and coupling identifiers corresponding to couplings between different elements within the network; storing the communication information; determining that a portion of the layer 2 information and the layer 3 information is expected information; and determining whether a particular piece of the layer 2 and layer 3 information matches a corresponding piece of expected information to identify stored information that is incorrect, and policy violations, wherein the particular piece of the layer 2 and layer 3 information is determined to match the corresponding piece of the expected information when at least a portion of the particular piece of the layer 2 and layer 3 information matches a subset of the corresponding piece of the expected information, wherein the subset includes a description of an expected port name that includes a description of a type of each of the plurality of network elements; compiling, if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information, a list that indicates that the particular piece of the layer 2 and layer 3 information does not match the corresponding piece of the expected information; and correcting the communication information if the particular piece of the layer 2 and layer 3 information is determined to not match the corresponding piece of expected information. - View Dependent Claims (17, 18, 19)
-
Specification