专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20070115990A1 Method of providing an encrypted multipoint VPN service 有权
标题翻译：提供加密多点VPN服务的方法
公开(公告)号：US20070115990A1
公开(公告)日：2007-05-24
申请号：US11284951
申请日：2005-11-22
申请人： Rajiv Asati , Mohamed Khalid , Haseeb Niazi , Vijay Bollapragada
发明人： Rajiv Asati , Mohamed Khalid , Haseeb Niazi , Vijay Bollapragada
IPC分类号： H04L12/56 , H04J3/24
CPC分类号： H04L45/00 , H04L63/0272 , H04L63/164
摘要： A method, apparatus and computer program product for providing an encrypted multipoint Virtual Private Network (VPN) service is presented. A first packet of a plurality of packets is received at an ingress provider edge (PE) the plurality of packets destined for a remote server in communication with said egress PE router. A lookup for a destination prefix of a first packet is preformed, and a determination made that a next-hop for the first packet is reachable through a mGRE tunnel. A resolution request is sent to a hub to acquire a routable IP address. The packets sent to the hub are encapsulated, and encrypting until a resolution reply is received and until security associations (SAs) have been exchanged. Then a VPN is established between the ingress and egress PEs and is used for all subsequent packets.
摘要翻译：提出了一种用于提供加密的多点虚拟专用网（VPN）服务的方法，装置和计算机程序产品。多个分组的第一分组在入口提供商边缘（PE）处接收去往与所述出口PE路由器通信的远程服务器的多个分组。执行对第一分组的目的地前缀的查找，并且确定通过mGRE隧道可以达到第一分组的下一跳。将解析请求发送到集线器以获取可路由的IP地址。发送到集线器的数据包被封装，并进行加密，直到收到解决回复，直到交换安全关联（SA）为止。然后在入口和出口PE之间建立VPN，并用于所有后续数据包。

2. 发明授权

US08918531B2 Automated network device provisioning using dynamic host configuration protocol 有权
标题翻译：使用动态主机配置协议的自动网络设备配置
公开(公告)号：US08918531B2
公开(公告)日：2014-12-23
申请号：US12437404
申请日：2009-05-07
申请人： Rajiv Asati , Ralph Droms , Vijay Bollapragada
发明人： Rajiv Asati , Ralph Droms , Vijay Bollapragada
IPC分类号： G06F15/16 , H04L12/715 , H04L12/24 , H04L12/46 , H04L29/12
CPC分类号： H04L41/0823 , H04L12/4641 , H04L41/0806 , H04L41/0816 , H04L41/0886 , H04L45/04 , H04L61/2015
摘要： In an embodiment, an electronic digital data packet router performs receiving a DHCP initiation message on a particular interface among a plurality of network interfaces,; modifying the DHCP initiation message by adding a particular DHCP option that signals a DHCP server to provide router configuration data, resulting in a modified DHCP initiation message; relaying the modified DHCP initiation message to the DHCP server; receiving, from the DHCP server, a DHCPOFFER message that comprises the particular DHCP option containing configuration data; configuring the router using the configuration data; relaying the DHCPOFFER message without the particular DHCP option on the particular interface toward another data packet router.
摘要翻译：在一个实施例中，电子数字数据包路由器在多个网络接口之间的特定接口上执行DHCP发起消息; 通过添加特定的DHCP选项来修改DHCP启动消息，该选项指示DHCP服务器提供路由器配置数据，导致修改的DHCP启动消息; 将修改的DHCP启动消息中继到DHCP服务器; 从DHCP服务器接收包含包含配置数据的特定DHCP选项的DHCPOFFER消息; 使用配置数据配置路由器; 将特定接口上没有特定DHCP选项的DHCPOFFER消息中继到另一个数据包路由器。

3. 发明申请

US20100287266A1 AUTOMATED NETWORK DEVICE PROVISIONING USING DYNAMIC HOST CONFIGURATION PROTOCOL 有权
标题翻译：使用动态主机配置协议的自动网络设备提供
公开(公告)号：US20100287266A1
公开(公告)日：2010-11-11
申请号：US12437404
申请日：2009-05-07
申请人： Rajiv Asati , Ralph Droms , Vijay Bollapragada
发明人： Rajiv Asati , Ralph Droms , Vijay Bollapragada
IPC分类号： G06F15/177
CPC分类号： H04L41/0823 , H04L12/4641 , H04L41/0806 , H04L41/0816 , H04L41/0886 , H04L45/04 , H04L61/2015
摘要： In an embodiment, an electronic digital data packet router performs receiving a DHCP initiation message on a particular interface among a plurality of network interfaces,; modifying the DHCP initiation message by adding a particular DHCP option that signals a DHCP server to provide router configuration data, resulting in a modified DHCP initiation message; relaying the modified DHCP initiation message to the DHCP server; receiving, from the DHCP server, a DHCPOFFER message that comprises the particular DHCP option containing configuration data; configuring the router using the configuration data; relaying the DHCPOFFER message without the particular DHCP option on the particular interface toward another data packet router.
摘要翻译：在一个实施例中，电子数字数据包路由器在多个网络接口之间的特定接口上执行DHCP发起消息; 通过添加特定的DHCP选项来修改DHCP启动消息，该选项指示DHCP服务器提供路由器配置数据，导致修改的DHCP启动消息; 将修改的DHCP启动消息中继到DHCP服务器; 从DHCP服务器接收包含包含配置数据的特定DHCP选项的DHCPOFFER消息; 使用配置数据配置路由器; 将特定接口上没有特定DHCP选项的DHCPOFFER消息中继到另一个数据包路由器。

4. 发明授权

US07590123B2 Method of providing an encrypted multipoint VPN service 有权
标题翻译：提供加密多点VPN服务的方法
公开(公告)号：US07590123B2
公开(公告)日：2009-09-15
申请号：US11284951
申请日：2005-11-22
申请人： Rajiv Asati , Mohamed Khalid , Haseeb Niazi , Vijay Bollapragada
发明人： Rajiv Asati , Mohamed Khalid , Haseeb Niazi , Vijay Bollapragada
IPC分类号： H04J3/16 , H04J3/22 , H04L12/28 , H04L12/56
CPC分类号： H04L45/00 , H04L63/0272 , H04L63/164
摘要： A method, apparatus and computer program product for providing an encrypted multipoint Virtual Private Network (VPN) service is presented. A first packet of a plurality of packets is received at an ingress provider edge (PE) the plurality of packets destined for a remote server in communication with said egress PE router. A lookup for a destination prefix of a first packet is preformed, and a determination made that a next-hop for the first packet is reachable through a mGRE tunnel. A resolution request is sent to a hub to acquire a routable IP address. The packets sent to the hub are encapsulated, and encrypting until a resolution reply is received and until security associations (SAs) have been exchanged. Then a VPN is established between the ingress and egress PEs and is used for all subsequent packets.
摘要翻译：提出了一种用于提供加密的多点虚拟专用网（VPN）服务的方法，装置和计算机程序产品。多个分组的第一分组在入口提供商边缘（PE）处接收去往与所述出口PE路由器通信的远程服务器的多个分组。执行对第一分组的目的地前缀的查找，并且确定通过mGRE隧道可以达到第一分组的下一跳。将解析请求发送到集线器以获取可路由的IP地址。发送到集线器的数据包被封装，并进行加密，直到收到解决回复，直到交换安全关联（SA）为止。然后在入口和出口PE之间建立VPN，并用于所有后续数据包。

5. 发明申请

US20070248091A1 Methods and apparatus for tunnel stitching in a network 审中-公开
标题翻译：网络中隧道拼接的方法和装置
公开(公告)号：US20070248091A1
公开(公告)日：2007-10-25
申请号：US11409586
申请日：2006-04-24
申请人： Mohamed Khalid , Rajiv Asati , Vijay Bollapragada , Sunil Cherukuri
发明人： Mohamed Khalid , Rajiv Asati , Vijay Bollapragada , Sunil Cherukuri
IPC分类号： H04L12/56
CPC分类号： H04L63/0272 , H04L63/029 , H04L63/061
摘要： An edge router (disposed between a packet-switched network and a label-switching network) is configured to receive an IKE message originating from a client on the Internet (e.g., packet-switched network) attempting to set up a tunnel. Upon receipt of the IKE message, the edge router utilizes a unique identifier in the IKE message to identify a virtual private network in the label-switching network. In lieu of terminating an IPSec tunnel at the edge router and performing a respective key exchange with the client, the edge router identifies a corresponding forwarding table associated with the virtual private network (identified by the unique identifier in the IKE message) and, based on the corresponding forwarding table, forwards the IKE message to a destination reachable via the label-switching network. The destination (e.g., a key server in a corresponding VPN) communicates with the client through the edge router to set up the tunnel.
摘要翻译：边缘路由器（布置在分组交换网络和标签交换网络之间）被配置为接收来自尝试建立隧道的因特网上的客户端（例如，分组交换网络）的IKE消息。在接收到IKE消息时，边缘路由器利用IKE消息中的唯一标识符来标识标签交换网络中的虚拟专用网络。边缘路由器代替在边缘路由器上终止IPSec隧道并与客户端进行相应的密钥交换，从而识别与虚拟专用网络相关联的对应转发表（由IKE消息中的唯一标识符标识），并且基于相应的转发表，将IKE消息转发到可通过标签交换网络到达的目的地。目的地（例如，对应的VPN中的密钥服务器）通过边缘路由器与客户端进行通信，以建立隧道。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式