Multiplex communications – Pathfinding or routing – Switching a message which includes an address header
Reexamination Certificate
1999-10-26
2001-05-15
Olms, Douglas (Department: 2661)
Multiplex communications
Pathfinding or routing
Switching a message which includes an address header
C370S233000
Reexamination Certificate
active
06233240
ABSTRACT:
STATEMENT REGARDING FEDERALLY SPONSORED RESEARCH OR DEVELOPMENT
BACKGROUND OF THE INVENTION
The present invention relates generally to communication systems, and more specifically to a system and method for monitoring and controlling traffic through a network device in order to protect network resources against unauthorized or malicious use.
In existing systems, access to communication networks, such as Asynchronous Transfer Mode (ATM) networks, is provided through interfaces provided in or associated with host computer systems. The interface between a host computer system and an ATM network is known as a User Network Interface (UNI). Each UNI may include one or more virtual connections (“connections”) between the host computer system and other host systems. When a virtual connection is established, bandwidth may be reserved for use by the connection. Such reserved bandwidth is referred to as “guaranteed” bandwidth. An amount of bandwidth in addition to the guaranteed bandwidth may also be defined in association with a virtual connection. Such additional bandwidth is known as “available” bandwidth. Network resources are used to support available bandwidth traffic for a virtual connection only to the extent they are not being used to support guaranteed bandwidth traffic. Guaranteed bandwidth and available bandwidth are sometimes referred to as the Committed Information Rate (“CIR”) and Excess Information Rate (“EIR”) of a virtual connection.
In order for multiple connections to coexist within a given network device, each connection must be monitored to determine when the amount of traffic it is carrying is exceeding its guaranteed bandwidth allocation. Otherwise, resources may be allocated to support available bandwidth traffic on a first connection that should be allocated to support guaranteed bandwidth on another connection. Accordingly, network devices such as switches provide functionality known as “rate policing” to ensure that received data units are correctly identified as being within the guaranteed bandwidth or available bandwidth of their respective connections.
In existing systems, rate policing has been performed by monitoring the amount of data that is received and accepted on a virtual connection over a fixed time period, referred to as the rate policing window. A guaranteed bandwidth data limit for the rate policing window of a given connection is determined as a function of the amount of guaranteed bandwidth for the connection, and the duration of the connection's rate policing window. When the amount of traffic received over a connection exceeds the guaranteed bandwidth data limit of the connection during a rate policing window, any further traffic received over that connection during the rate policing window is considered available bandwidth traffic.
Existing rate policing systems have employed a byte counter and a rate policing window timer to monitor the received traffic for each connection they support. These systems modify the counter as traffic is received to reflect the amount of traffic received. When the value of the byte counter for a connection indicates that the guaranteed bandwidth limit for a rate policing window has been reached, the rate policing function turns off the connection, dropping any subsequent data units received for the remainder of the rate policing window. The amount of traffic discarded during the remainder of the rate policing window may be counted so that it can later be read or reported for purposes of network management. At the end of each rate policing window, the counter for the associated connection is set to zero and the connection turned back on if necessary.
As the number of connections that must be supported by a network device increases, the costs associated with performing rate policing have become unacceptably high. Specifically, the costs associated with providing hardware and/or software support for periodically resetting a separate timer and counter for each of several thousand connections, irrespective of whether the connections are currently being used, may be prohibitively high.
For these reasons, it would be desirable to have a system for performing rate policing which does not require constant monitoring of separate timers and counters for each of a large number of connections, including resetting such counters and timers at the end of each rate policing window. The system should further be capable of conveniently supporting large numbers of virtual connections, and operating compatibly with contemporary communications protocols such as Asynchronous Transfer Mode (ATM).
BRIEF SUMMARY OF THE INVENTION
In accordance with the invention there is disclosed a system and method for performing event-based rate policing using varying window start times. In the disclosed system, rate policing processing overhead, including counter and timer monitoring and resetting, is performed only as needed and in response to actual received traffic on each connection. As the last bit of a data unit is received from an external network, an “event time stamp” is generated and associated with the data unit, for example as part of an internal header or trailer attached to the data unit. In order to determine if a rate policing window was active when the frame was received, the event time stamp is compared with a sum of a window start time and a window period value stored in association with the connection on which the data unit was received. If the associated event time-stamp indicates a time prior to the sum of the associated window start time and window period, then a rate policing window is determined to have been active when the frame was received. In that case, rate policing is performed on the received frame with respect to the active rate policing window. If a rate policing window was not active when the frame was received, then a new rate policing window is started, and the frame is rate policed in a new rate policing window, which is started at a time equal to the event time-stamp associated with the received frame.
In this way, there is provided a system and method for supporting rate policing which does not require constant monitoring and resetting of counters and timers for all connections. The disclosed system conveniently supports large numbers of virtual connections through a network device, and may be employed in network devices supporting various communication protocols, including Asynchronous Transfer Mode (ATM) and Frame Relay protocols.
REFERENCES:
patent: 5218456 (1993-06-01), Stegbauer et al.
patent: 5313454 (1994-05-01), Bustini et al.
patent: 5315591 (1994-05-01), Brent et al.
patent: 5408472 (1995-04-01), Hluchyj et al.
patent: 5425029 (1995-06-01), Hluchyj et al.
patent: 5461611 (1995-10-01), Drake, Jr. et al.
patent: 5485455 (1996-01-01), Dobbins et al.
patent: 5490141 (1996-02-01), Lai et al.
patent: 5497375 (1996-03-01), Hluchyj et al.
patent: 5519689 (1996-05-01), Kim
patent: 5524006 (1996-06-01), Hluckyj
patent: 5541913 (1996-07-01), Witters et al.
patent: 5550808 (1996-08-01), Shimokoshi
patent: 5553073 (1996-09-01), Barraclough et al.
patent: 5581545 (1996-12-01), Moritomo
patent: 5666353 (1997-09-01), Klausmeier et al.
patent: 5771234 (1998-06-01), Wu et al.
patent: 5802278 (1998-09-01), Isfeld et al.
patent: 5812774 (1998-09-01), Kempf
patent: 5818815 (1998-10-01), Carpentier et al.
patent: 5828653 (1998-10-01), Goss
patent: 5828654 (1998-10-01), Takase et al.
patent: 5872769 (1999-02-01), Caldara et al.
patent: 5901147 (1999-05-01), Joffe
patent: 6108303 (2000-08-01), Fahmi et al.
Barbas Steve N.
Homberg Michael J.
Fujitsu Network Communications, Inc.
Olms Douglas
Vanderpuye Ken
Weingarten, Schurgin Gagnebin & Hayes LLP
LandOfFree
Event based rate policing with a jumping window does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Event based rate policing with a jumping window, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Event based rate policing with a jumping window will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-2565679