Patent application number | Description | Published |
20120124660 | VIRTUAL PRIVATE NETWORK NODE INFORMATION PROCESSING METHOD, RELEVANT DEVICE AND SYSTEM - A Virtual Private Network (VPN) node information processing method and a VPN node information processing device are provided, in which the method comprises: receiving an access request message sent by a node, in which the access request message at least carries authentication information, a current real Internet Protocol (IP) address, a node name and information indicating whether to accept extranet connection of the node; allocating a virtual IP address for the node when the authentication information of the node is correct; and registering the current real IP address, the node name, the information indicating whether to accept the extranet connection, and the virtual IP address of the node as registration information. Through the method and the device, when a node is added into a VPN, configuration of other nodes does not need to be adjusted. | 05-17-2012 |
20120300776 | METHOD FOR CREATING VIRTUAL LINK, COMMUNICATION NETWORK ELEMENT, AND ETHERNET NETWORK SYSTEM - Embodiments of the present invention provide a method for creating a virtual link, a communication network element, and an Ethernet network system. The method includes the following: a first communication network element receives a communication request message sent by a second communication network element; the first communication network element allocates a first virtual MAC address and a second virtual MAC address for the virtual link between the first communication network element and the second communication network element; the first communication network element sends a response message in response to the communication request message to the second communication network element, where the response message carries the first virtual MAC address and the second virtual MAC address. Using the technical solutions provided in the embodiments of the present invention, two communication network elements on the Ethernet are capable of performing communication using a fibre channel on the Ethernet. | 11-29-2012 |
20130315242 | Network Communication Method and Device - The present invention provides a network communication method and device. The method includes: receiving, by a VNC on a physical host, a network communication packet sent by a first virtual machine of which a host machine is the physical host and which has a mapping relationship with the VNC, where a source address carried in the network communication packet is an address of the first virtual machine, a destination address carried in the network communication packet is an address of a second virtual machine or an address of another physical host; selecting, by the physical host, a VPN network corresponding to the VNC on the physical host according to preset correspondence between the VPN network and the VNC; and sending, by the physical host, the network communication packet through the selected VPN network. The present invention lowers the restriction on setting an IP address of a virtual machine in a VPN. | 11-28-2013 |
20140359137 | METHOD, APPARATUS, NAME SERVER AND SYSTEM FOR ESTABLISHING FCOE COMMUNICATION CONNECTION - Embodiments of the present invention disclose a method, an apparatus, and a system for establishing an FCoE communication connection and a name server. According to a WWN world wide name identifier of a target to be accessed, a destination MAC address used to access the target to be accessed is acquired. According to the destination MAC address, a login operation is performed for the target to be accessed, to establish an FCoE fiber channel over Ethernet communication connection, so that an FCoE initiator may directly establish a communication connection with an FCoE target, thereby reducing data transmission delay and lightening the processing load of an original FCoE forwarder. | 12-04-2014 |
20140380415 | Method and Device for Synchronizing Network Data Flow Detection Status - A method and a device for synchronizing network data flow detection status are provided. The method includes: a status synchronizing server receives a first request sent by a first security device node, where the first request carries a first flow entry of a first data flow that is currently detected by the first security device node; determines first network data flow detection status corresponding to the first flow entry; sends a first response to the first security device node, where the first response carries the first network data flow detection status. A security device node requests previous network data flow detection status of a data flow from a status synchronizing server so as to synchronize network data flow detection status, thereby allowing the security device node to detect a network attack in a more accurate way and improving network system security. | 12-25-2014 |
20150079931 | COMMUNICATIONS METHOD, DEVICE AND SYSTEM IN MOBILE BACKHAUL TRANSPORT NETWORK - A communications method, device, and system in a mobile backhaul transport network are used to resolve a problem in the prior art that communication security in a backhaul transport network cannot be ensured in an LTE scenario. A first network node sends a request message to a control server in the mobile backhaul transport network, where the request message is used to request security information of a second network node in the mobile backhaul transport network; the first network node receives the security information of the second network node, which is returned by the control server; the first network node establishes a secure tunnel with the second network node according to the security information of the second network node to perform communication. This enables two network nodes in a mobile backhaul transport network to perform secure communication and ensures security of communication between network nodes. | 03-19-2015 |
20150106913 | Method, Apparatus, Host, and Network System for Processing Packet - A method, an apparatus, a host, and a network system for processing a packet. The method includes receiving, by a physical host through a virtual bridge in the physical host, a network packet sent by a source virtual machine in the physical host, where the network packet carries a source media access control (MAC) address and a target MAC address; obtaining, by the physical host according to the source MAC address and the target MAC address by querying correspondence between each virtual machine MAC address and a security domain, a security domain to which the source virtual machine corresponds and a security domain to which a target virtual machine corresponds; and controlling, by the physical host, the virtual bridge to discard the network packet, when the security domain to which the source virtual machine corresponds is different from a security domain corresponding to the virtual bridge. | 04-16-2015 |
20150249608 | Method, System and Apparatus for Controlling Flow Detection, Controller and Detection Device - A control method, system and apparatus for flow detection, a controller and a detection device. The method includes the controller acquires a flow identifier of a flow to be detected by each flow detection module in a network; adjusts the flow to be detected by each flow detection module according to a set load balancing policy; and delivers a detection instruction to each flow detection module, where the detection instruction includes a flow identifier of a flow to be detected by each flow detection module after the adjustment. In the present invention, because multiple flow detection modules are deployed in a network in a distributed manner, when there are a large number of switching devices included in the network, load balancing can be performed for detection of flows transmitted between these switching devices. | 09-03-2015 |
20150281347 | Method and Apparatus for Determining Virtual Machine Migration - A method for determining virtual machine migration relates to the field of communications and can reduce a deployment cost. The method includes a client in a host machine obtains a unique identifier of a virtual machine on the host machine and an address of the host machine; and if the unique identifier of the virtual machine does not exist in a local record of the client, the client sends a packet to a server in a network in which the host machine is located, where the packet carries the unique identifier of the virtual machine and the address of the host machine, so that the server determines, according to the unique identifier of the virtual machine and the address of the host machine, whether the virtual machine is migrated; and the client adds the unique identifier of the virtual machine to the local record to update the local record. | 10-01-2015 |
Patent application number | Description | Published |
20130287038 | SYNCHRONIZATION OF TRAFFIC MULTIPLEXING IN LINK AGGREGATION - Synchronization of traffic multiplexing in link aggregation is described. In an embodiment, a first link aggregator and a second link aggregator are associated with a plurality of links. The first link aggregator maintains an identifier for each link indicating at least a state of enabled or disabled. A synchronized clock is established between the first link aggregator and the second link aggregator. A particular link of the plurality of links is transitioned. Wherein, the transitioning is performed by the first link aggregator sending, to the second link aggregator, a first message identifying a particular time to transition the particular link. The first link aggregator receives, from the second link aggregator, a second message indicating that the particular time is acceptable. In response to a determination that the second message indicates that the particular time is acceptable and that the synchronized clock has reached the particular time, transitioning the link. | 10-31-2013 |
20130301407 | METHOD AND APPARATUS FOR ADAPTIVE FAST START IN LINK AGGREGATION - In one embodiment, a period between periodic transmissions of protocol data units (PDUs) used to form or maintain a link aggregation group is initially set to a fixed value. When a stress condition is detected, the period between periodic transmissions of PDUs is increased from the initial value. When the stress condition is determined to have eased, the period between periodic transmissions of PDUs is reduced back toward the fixed value. | 11-14-2013 |
20130301427 | GRACE STATE AND PACING IN LINK AGGREGATION - In one embodiment, one or more indicia of stress are monitored. Based on the one or more indicia of stress, it is determined a stress condition exists. In response to the stress condition, one or more link aggregation actors and partners are caused to enter a grace state for a grace period. While the one or more link aggregation actors and partners are in the grace state, link aggregation formation is paced on a plurality of links by delaying formation of one or more new link aggregation groups on the plurality of links until a hold is released. Upon expiration of the grace period, the grace state is exited. | 11-14-2013 |
20140056178 | TRILL OPTIMAL FORWARDING AND TRAFFIC ENGINEERED MULTIPATHING IN CLOUD SWITCHING - In one embodiment, a plurality of leaf switches that include host facing ports are configured as a cloud switch. An indication of connectivity between the leaf switches of the cloud switch and routing bridges (RBridges) external to the cloud switch may be added to link state packets (LSPs) sent over the at least one logical shared media link. A lookup table may be generated that specifies next hop leaf switches. The generated lookup table may be used to forward frames to one or more particular nexthop leaf switches. Further, traffic engineering parameters may be collected. Equal cost multipath (ECMP) nexthop leaf switches and distribution trees to reach one or more destinations may be examined. Traffic may be distributed across ones of them based on the traffic engineering parameters. | 02-27-2014 |
20140092780 | METHODS AND APPARATUSES FOR RAPID TRILL CONVERGENCE THROUGH INTEGRATION WITH LAYER TWO GATEWAY PORT - Methods and apparatuses for rapid TRILL convergence are disclosed herein. The methods can be implemented in a network including a plurality of RBridges or in a cloud network environment including a plurality of cloud switch domains. An example method for rapid TRILL convergence can include: Executing a spanning tree protocol (STP) for network topology in a network; and executing a Hello protocol for control and forwarding at the RBridge. The Hello protocol can be configured to elect a designated RBridge and assign an appointed forwarder. The method can also include assigning a transient appointed forwarder during a period of time between convergence of the STP and convergence of the Hello protocol. The transient appointed forwarder can be configured to forward frames in the network during the period of time between convergence of the STP and convergence of the Hello protocol. | 04-03-2014 |
20150117188 | METHOD AND APPARATUS FOR ADAPTIVE FAST START IN LINK AGGREGATION - In one embodiment, a period between periodic transmissions of protocol data units (PDUs) used to form or maintain a link aggregation group is initially set to a fixed value. When a stress condition is detected, the period between periodic transmissions of PDUs is increased from the initial value. When the stress condition is determined to have eased, the period between periodic transmissions of PDUs is reduced back toward the fixed value. | 04-30-2015 |