Managing rogue devices through a network backhaul
First Claim
Patent Images
1. A method comprising:
- detecting a rogue device in a network;
sending a rogue device message that includes an identification of the rogue device to a plurality of switches in a backhaul of the network;
adding the identification of the rogue device into a rogue monitor table including a learned status field indicating whether the rogue device is In-Net or Out-Of-Net;
determining whether the rogue device is In-Net or Out-Of-Net using forwarding tables of the plurality of switches in the backhaul of the network and the rogue monitor table by removing entries in the forwarding tables that include a MAC address of the rogue device and determining whether a new learned MAC address in the forwarding tables is the MAC address of the rogue device;
when it is determined that the rogue device is In-Net, performing mitigation of the rogue device using a nearest switch to the rogue device of the plurality of switches in the backhaul of the network;
updating the rogue monitor table to indicate an identification of the nearest switch to the rogue device and updating the learned status field to indicate that the rogue device is In-Net.
4 Assignments
0 Petitions
Accused Products
Abstract
Managing rogue devices in a network through a network backhaul. A rogue device is detected in a network and a rogue device message that includes the rogue device is sent to a plurality of switches in a backhaul of the network. The rogue device is added into a rogue monitor table. Whether the rogue device is In-Net or Out-Of-Net is determined using forwarding tables of the plurality of switches in the backhaul of the network and the rogue monitor table. Mitigation is performed using a nearest switch to the rogue device of the plurality of switches in the backhaul of the network if it is determined that the rogue device is In-Net.
208 Citations
19 Claims
-
1. A method comprising:
-
detecting a rogue device in a network; sending a rogue device message that includes an identification of the rogue device to a plurality of switches in a backhaul of the network; adding the identification of the rogue device into a rogue monitor table including a learned status field indicating whether the rogue device is In-Net or Out-Of-Net; determining whether the rogue device is In-Net or Out-Of-Net using forwarding tables of the plurality of switches in the backhaul of the network and the rogue monitor table by removing entries in the forwarding tables that include a MAC address of the rogue device and determining whether a new learned MAC address in the forwarding tables is the MAC address of the rogue device; when it is determined that the rogue device is In-Net, performing mitigation of the rogue device using a nearest switch to the rogue device of the plurality of switches in the backhaul of the network; updating the rogue monitor table to indicate an identification of the nearest switch to the rogue device and updating the learned status field to indicate that the rogue device is In-Net. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system comprising:
-
a detector access point configured to detect a rogue device in a network; a rogue device message engine configured to send a rogue device message that includes an identification of the rogue device to a plurality of switches in a backhaul of the network; a rogue monitor table management engine configured to add the identification of the rogue device into a rogue monitor table including a learned status field indicating whether the rogue device is In-Net or Out-Of-Net; a rogue device status determination engine configured to determine whether the rogue device is In-Net or Out-Of-Net using forwarding tables of the plurality of switches in the backhaul of the network and the rogue monitor by removing entries in the forwarding tables that include a MAC address of the rogue device and determining whether a new learned MAC address in the forwarding tables is the MAC address of the rogue device; a network backhaul rogue device management system configured to perform mitigation of the rogue device using a nearest switch to the rogue device of the plurality of switches in the backhaul of the network, when it is determined that the rogue device is In-Net; wherein the rogue monitor table management engine is further configured to update the rogue monitor table to indicate an identification of the nearest switch to the rogue device and update the learned status field to indicate that the rouge device is In-Net. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system comprising:
-
means for detecting a rogue device in a network; means for sending a rogue device message that includes an identification of the rogue device to a plurality of switches in a backhaul of the network; means for adding the identification identity of the rogue device into a rogue monitor table including a learned status field indicating whether the rogue device is In-Net or Out-Of-Net; means for determining whether the rogue device is In-Net or Out-Of-Net using forwarding tables of the plurality of switches in the backhaul of the network and the rogue monitor table by removing entries in the forwarding tables that include a MAC address of the rogue device and determining whether a new learned MAC address in the forwarding tables is the MAC address of the rogue device; means for performing mitigation of the rogue device using a nearest switch to the rogue device of the plurality of switches in the backhaul of the network, when it is determined that the rogue device is In-Net; means for updating the rogue monitor table to indicate an identification of the nearest switch to the rogue device and updating the learned status field to indicate that the rouge device is In-Net.
-
Specification