Electrical computers and digital processing systems: multicomput – Network computer configuring
Reexamination Certificate
1998-10-02
2001-11-20
Barot, Bharat (Department: 2154)
Electrical computers and digital processing systems: multicomput
Network computer configuring
C709S202000, C709S203000, C709S221000, C709S223000, C709S224000, C707S793000, C707S793000, C707S793000, C707S793000
Reexamination Certificate
active
06321259
ABSTRACT:
BACKGROUND
This invention relates to configuration management of network packet switches.
The development of different network technologies and the need to interconnect multiple packet networks each using different protocols led to the growth of inter-networking. The so-called “the Internet” is an example of inter-networking. The Internet allows diverse computers on different physical networks to communicate, using a standard set of TCP/IP protocols. So-called “Intranets” are another example of inter-networking. Intranets use the same set of TCP/IP protocols over a private network of computers. While the Internet is global, “Intranets” are private, often associated with a single firm or organization.
Security requirements have caused investments in so-called firewalls. There are several types of firewall architectures. Some types incorporate special routers that use packet-filtering techniques to identify source addresses of users trying to enter networks. Such routers can be programmed to deny access to unauthorized traffic. Other firewall products rely on gateways-connections between different networks-that oversee traffic, authenticate users and control access. Secure computer gateways known as proxy servers, installed between specific applications or agency work groups, can be programmed to hide critical information from outsiders. Gateways can be difficult to maintain and administer.
SUMMARY
According to an aspect of the invention, an attribute inheritance schema for nodes in a database stored on a computer system includes a plurality of database entries organized in a hierarchical structure. The database entries include a plurality of group entries having sets of configuration attributes with a portion of said group entries being parent entries for others of said plurality of group entries and a plurality of person entries having sets of configuration attributes, arranged at sublevels of the hierarchical structure, with a portion of said person entries being parent entries for others of said person entries. The schema permits each attribute of a first one of the plurality of person entries to be specifically set in the first one of the plurality of person entries or be inherited from at least a second entry of the plurality of group entries that precedes the first one of the plurality of person entries in the hierarchical structure.
According to a further aspect of the invention, a method of managing a switch includes accessing the switch through either a tunneling client on a public side of the switch or through a client on a private side of the switch, with the switch responding with an HTML page containing an embedded script that corresponds to views of management objects on the switch. The methods uses the HTML page to launch a script corresponding to a desired administrative function to be performed on the switch, parses the script to produce objects that are needed by the script and maps objects produced in the parser into entries in a hierarchical database. The method returns the entries; and populates the HTML page with information corresponding to the entries that were return from the database.
According to a still further aspect of the invention, a method of determining values of configuration attributes for user accounts on a switch includes accessing a database containing a schema that is arranged as a hierarchical structure having a series of hierarchical levels, containing group entries that can be parents for other group entries and person entries, and wherein the group entries and person entries contain sets of configuration attributes for the user account and finding attributes for the account associated with a person entry with the attributes being either set in the person entry corresponding to the user account or in one or more sets of attributes contained in corresponding one or more group entries that are a higher level in the hierarchical structure.
REFERENCES:
patent: 5621201 (1997-04-01), Langhans et al.
patent: 5684957 (1997-11-01), Kondo et al.
patent: 5721913 (1998-02-01), Ackroff et al.
patent: 5745891 (1998-04-01), Minakuchi et al.
patent: 5774689 (1998-06-01), Curtis et al.
patent: 5889953 (1999-03-01), Thebaut et al.
patent: 5999941 (1999-12-01), Andersen
patent: 6026393 (2000-02-01), Gupta et al.
patent: 6052720 (2000-04-01), Traversat et al.
patent: 6101539 (2000-08-01), Kennelly et al.
patent: 6154212 (2000-11-01), Eick et al.
patent: 6154743 (2000-11-01), Leung et al.
“SNMP MIB Extension for Multiprotocol Interconnect over X.25”, D. Throop, Data General Corporation, 5/93, pp. 1-14.
“View-Based Access Control Model (VACM) for the Simple Network Management Protocol (SNMP)”, B. Wijnen et al., 8/98, pp. 1-3 (Internet Draft).
Kennelly Richard J.
Ouellette Kenneth W.
Philippou James A.
Barot Bharat
Fish & Richardson P.C.
Nortel Networks Limited
LandOfFree
Attribute inheritance schema for network switches does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Attribute inheritance schema for network switches, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Attribute inheritance schema for network switches will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2618255