US20030107590A1 - Policy rule management for QoS provisioning - Google Patents

Policy rule management for QoS provisioning Download PDF

Info

Publication number
US20030107590A1
US20030107590A1 US10/289,698 US28969802A US2003107590A1 US 20030107590 A1 US20030107590 A1 US 20030107590A1 US 28969802 A US28969802 A US 28969802A US 2003107590 A1 US2003107590 A1 US 2003107590A1
Authority
US
United States
Prior art keywords
policy
network
processing
user interface
service
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US10/289,698
Inventor
Phillippe Levillain
Raymond Hanson
Lawrence Helmerich
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nokia of America Corp
Original Assignee
Alcatel Internetworking Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Alcatel Internetworking Inc filed Critical Alcatel Internetworking Inc
Priority to US10/289,698 priority Critical patent/US20030107590A1/en
Assigned to ALCATEL INTERNETWORKING, INC. reassignment ALCATEL INTERNETWORKING, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: HELMERICH, LAWRENCE, LEVILLAIN, PHILLIPPE
Assigned to ALCATEL INTERNETWORKING, INC. reassignment ALCATEL INTERNETWORKING, INC. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: HANSON, RAYMOND
Publication of US20030107590A1 publication Critical patent/US20030107590A1/en
Priority to US11/304,375 priority patent/US7930376B2/en
Priority to US13/044,249 priority patent/US8316144B2/en
Priority to US13/646,912 priority patent/US9118694B2/en
Assigned to ALCATEL USA MARKETING, INC. reassignment ALCATEL USA MARKETING, INC. MERGER (SEE DOCUMENT FOR DETAILS). Assignors: ALCATEL INTERNETWORKING, INC.
Assigned to ALCATEL-LUCENT USA INC. reassignment ALCATEL-LUCENT USA INC. MERGER (SEE DOCUMENT FOR DETAILS). Assignors: ALCATEL USA MARKETING, INC.
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1069Session establishment or de-establishment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/02Standardisation; Integration
    • H04L41/0213Standardised network management protocols, e.g. simple network management protocol [SNMP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0893Assignment of logical groups to network elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0894Policy-based network configuration management
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/22Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5003Managing SLA; Interaction between SLA and QoS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5041Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the time relationship between creation and deployment of a service
    • H04L41/5054Automatic deployment of services triggered by the service manager, e.g. service implementation by automatic configuration of network components
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5061Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the interaction between service providers and their network customers, e.g. customer relationship management
    • H04L41/5067Customer-centric QoS measurements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/13Flow control; Congestion control in a LAN segment, e.g. ring or bus
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/24Traffic characterised by specific attributes, e.g. priority or QoS
    • H04L47/2408Traffic characterised by specific attributes, e.g. priority or QoS for supporting different services, e.g. a differentiated services [DiffServ] type of service
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/24Traffic characterised by specific attributes, e.g. priority or QoS
    • H04L47/2416Real-time traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1101Session protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/80Responding to QoS

Definitions

  • This invention pertains generally to policy-based networks and particularly to policy-based networks having user interfaces for efficient provisioning of quality of service for network devices.
  • Network priority is a means of network bandwidth management for data, video and voice traffic and is implemented with administrator-defined policies. This kind of management is termed Quality of Service (QoS) and is controlled using policy-based network processes.
  • QoS Quality of Service
  • IP Internet Protocol
  • policy-based networking for an Internet Protocol (IP)-based network, a policy refers to a formal set of statements that define the manner of resource allocation among its clients.
  • the administrator uses policy statements in order to define a particular level of priority for each of the kinds of services according to parameters including time schedules and according to devices defined by parts or subnets of the network.
  • a policy-based IP network including a plurality of network devices, each having a directory, the plurality of network devices being operatively connected to a plurality of switches via a local area network with each of the plurality of switches supporting QoS and policy files for its respective supported network devices; a network device discovery server for retrieving directory information of each of the plurality of network devices from a supportive respective switch, the network device discovery server communicating with the switches via a network backbone; a server, such as a lightweight directory access protocol (LDAP) server, having a repository for policy data and for receiving policy updates; a trap server for receiving at least one device policy table update notice from at least one of the plurality of network devices; and a network policy server having processing for provisioning QoS via a user interface, wherein the user interface provides a graphic user interface for a user to rapidly set up the network devices.
  • LDAP lightweight directory access protocol
  • a method of quality of service provisioning in a policy-based IP network including the steps of: specifying a priority to provision QoS for voice-over IP network devices via a graphic user interface to policy processing; specifying a priority to provision quality of service for video and data processing network devices via the graphic user interface to policy processing; and defining and implementing network policies for provisioning quality of service via the graphic user interface to policy processing.
  • FIG. 1 is an example network architecture for embodiments of the present invention
  • FIG. 2 is an initial set up process flowchart for embodiments of the present invention
  • FIG. 3 is a block diagram of example modes of the management interface embodiments of the present invention.
  • FIG. 4 is a voice over IP set up process flowchart for embodiments of the present invention.
  • FIG. 5A is an example graphic user interface for voice over IP set up of the present invention.
  • FIG. 5B is an example graphic user interface for voice over IP set up of the present invention.
  • FIG. 6 is a network data device set up process flowchart for embodiments of the present invention.
  • FIG. 7A is an example graphic user interface for network data device set up of the present invention.
  • FIG. 7B is an example graphic user interface for network data device set up of the present invention.
  • FIG. 7C is an example graphic user interface for network data device set up of the present invention.
  • FIG. 7D is an example graphic user interface for network video device set up of the present invention.
  • FIG. 7E is an example graphic user interface for network video device set up of the present invention.
  • FIG. 7F is an example graphic user interface for network video device set up of the present invention.
  • FIG. 8 is a process flowchart for policy rule creation and modification for embodiments of the present invention.
  • FIG. 9 is example graphic user interface for policy rule review of the present invention.
  • FIG. 10 is an example graphic user interface for setting policy conditions, particularly media access control (MAC) addresses, of the present invention.
  • MAC media access control
  • FIG. 11 is an example graphic user interface for setting policy conditions, particularly IP addresses, of the present invention.
  • FIG. 12 is an example graphic user interface for setting policy conditions, particularly protocol settings, of the present invention.
  • FIG. 13 is an example graphic user interface for setting policy conditions, particularly virtual local area network identification, of the present invention.
  • FIG. 14 is an example graphic user interface for setting policy conditions, particularly differentiated Services code point selection and IP type of service (TOS) selection, of the present invention
  • FIG. 15 is an example graphic user interface for setting policy conditions, particularly relating to IEEE standard 802.1 priority, of the present invention.
  • FIG. 16 is an example graphic user interface for setting policy conditions, particularly relating to the validity period, of the present invention.
  • FIG. 17 is an example graphic user interface for setting policy conditions, particularly relating to the validity period by months, of the present invention.
  • FIG. 18 is an example graphic user interface for setting policy conditions, particularly relating to the validity period by days of the week, of the present invention.
  • FIG. 19 is an example graphic user interface for setting policy conditions, particularly relating to the validity period by time of day, of the present invention.
  • FIG. 20 is an example graphic user interface for setting policy actions, particularly provisioning quality of service priority, of the present invention.
  • FIG. 21 is an example graphic user interface for applying policies to devices, of the present invention.
  • FIG. 22 is a process flowchart for applying policy rules to network devices for embodiments of the present invention.
  • the several embodiments of the present invention provide a method and a network for provisioning policies so that all voice and data QoS in a policy-based IP network may be prioritized at the highest quality of service over a user-specified range of devices with minimal user interaction.
  • device selection is presented to the user or network administrator with the presentation separated according to devices, i.e., voice devices versus other networking devices and servers whose applications may require a high QoS priority.
  • a policy rule is a logical device entity comprising at least one policy condition and a policy action, used for purposes of controlling bandwidth usage by switch processing features such as quality of service. If the policy condition evaluates “TRUE,” then the device performs the policy action. Generally, in order for a policy rule to be evaluated by the device, the policy must belong to a policy group. For some device operation systems, there may be an additional level, policy service, to which a policy group belongs.
  • FIG. 1 illustrates a policy-based IP network 100 including a user interface 110 , a policy server 130 , a Lightweight Directory Access Protocol (LDAP) server having a repository 120 , a device discovery server 140 , a trap server 150 , with the servers in communication via a network backbone 160 with a plurality of switches 171 - 173 and a plurality of devices 181 - 186 .
  • LDAP Lightweight Directory Access Protocol
  • the process flowchart of FIG. 2 illustrates that during installation of the policy processing, the administrator inputs the LDAP server port number 210 . Preferably, this is the only LDAP server parameter over which user direct control is allowed. Thereafter, the policy processing of the policy server 130 sets the LDAP IP address, User ID, Password, and Search Base for each switch to which it writes 220 . In addition to those LDAP objects and attributes used by the switch for policy management and other features, the LDAP repository is also used by the policy processing to store the mapping between policy rules and their targets.
  • a discovery service 140 for ping sweep discovery of networked devices, whereupon the devices are then queried 230 by the discovery service 140 through Simple Network Management Protocol (SNMP) for their flash file directory contents.
  • SNMP Simple Network Management Protocol
  • Enhanced discovery service embodiments investigate switches for policy-supporting files, for example, policy.img and qos.img files on flash memory in supported switches to determine if devices are capable of supporting policies.
  • the discovery service flags policy-enabled devices, and provides a list of such devices 235 to the policy processing.
  • the policy processing subscribes to the discover service events to receive updates to the policy-enabled device lists.
  • the discovery service uses SNMP to discover virtual local area networks (VLAN) groups, which may be used for the defining of policy conditions. Where devices are capable, the devices may identify VLAN groups as being voice-capable, allowing easier identification of voice devices for ready QoS provisioning by the policy processing.
  • VLAN virtual local area networks
  • the policy processing writes 240 policy information to the LDAP repository 120 and notifies the devices 240 against which the policies must be applied, as identified by the network administrator through the policy processing interface, that the LDAP server has been updated. This action works to ensure that each applicable network device is notified and thereby prompted to read the repository 120 discern applicable policy changes.
  • policy-enabled devices receive the notice 245 that the LDAP repository of policy data has been updated, the policy-enabled devices each generate a trap notification 250 signifying that they have each read the repository changes and that their internal policy tables have been updated.
  • the policy processing uses a trap server service to subscribes to device trap events. In several embodiments of the present invention, the trap server uses SNMP to achieve trap notification.
  • the policy processing will enhance trap notification by reading each device's policy rules table 260 (from the appropriate policy processing management information bases, or MIBs, where an MIB is a formal description of a set of network objects that can be managed using SNMP) and confirming that there is a policy rule name that matches the rules in the LDAP repository.
  • MIBs policy processing management information bases
  • the policy processing uses SNMP directly to provide device notification through the serverPolicyDecision MIB object for example.
  • the object can be set to (0) to flush policies (“flushPolicies”) or to (1) to re-cache policies (“recachePolicies”).
  • flushPolicies a network management system
  • recachePolicies re-cache policies
  • the MIB description for this object is expressible as: “This object allows an NMS application to influence the policy manager's treatment of existing policy decisions that were established by the policy manager. By setting recachePolicies, an NMS can cause the policy manager to reload all its policies from the current primary LDAP server. By setting flushPolicies, all the policies are deleted by the policy manager.”
  • Policies for individual devices may be set through SNMP MIB browsers and through other interfaces for particular devices.
  • the Lightweight Directory Access Protocol (LDAP) server information is set and stored by the policy processing during its installation process.
  • LDAP Lightweight Directory Access Protocol
  • an SNMP MIB Browser a graphic user interface or the device user interface is used to set the LDAP Server address.
  • Policy Rules are defined that include of Policy Conditions that must be met to allow defined Policy Actions to dictate network traffic throughput.
  • the policy processing provides the user with a mode-based management interface 300 with graphic user interfacing through which the user manages a policy-based network 310 including:
  • a policy-based network management interface for specifying a priority level for provisioned QoS policy definition for video devices, including multimedia devices, and data devices serving high-priority applications (i.e., a process for readily setting the data mode or the video mode) 330 ; and
  • an embodiment of the present invention has a process that begins in a mode for providing highest-priority provisioned QoS to voice devices.
  • FIG. 4 illustrates the steps of this mode 400 where the user enters the IP subnet for each voice subnet that requires a high priority 410 .
  • All policy rules and LDAP server updates necessary for administering this highest level QoS for the selected voice devices are created by the process 420 effecting: a Policy Rule Name 422 ; a Policy Condition Name 424 ; a Policy Condition Set 426 which is optionally a media access control (MAC) destination or an IP subnet destination per user input; a Policy Action Name 428 ; and a Policy Action 430 .
  • MAC media access control
  • voice devices are allowed the highest priority, preferably being set to this priority by adding a voice-supported subnet to an “IP Phone Subnets” table 510 and then selecting the “Apply” button 520 .
  • the user selects the creating and editing mode by selecting the “Expert Mode” button 530 .
  • Subnets are added by selection of the “Add Subnet” button 540 and removed by selection of the “Delete Subnet” button 550 .
  • the “Remove” button 560 removes provisioned QoS from all listed subnets.
  • IP Phone Subnets table 510 When the “IP Phone Subnets” table 510 appears on the first running of the policy processing, the table 510 will be empty and the user will have to enter all the voice subnets for IP Phones manually in the event a discovery service or manager 140 does not recognize these devices. Thereafter, a preferred embodiment has the user being allowed to restore this data upon a successive interfacing session with the policy processing.
  • One or more status icons are used in the graphic user interfaces of the several embodiments of the present invention.
  • an icon 580 is displayed next to the list of devices pertaining to that service for the various modes or QoS provisioning (e.g., set up of VoIP devices, set up of data devices, and policy rule creating and editing).
  • the color of the icons indicates the current status of the selected operation as follows: gray indicates there is currently no QoS policy in effect for the device; green indicates there is currently a QoS policy in effect for the device; yellow indicates there is currently a QoS policy add or delete operation pending write to the LDAP server; and red indicates that a policy add or delete was written to the LDAP server that the device is has not yet been reached.
  • data devices, video devices, including multimedia devices, serving high-demand application servers may be set to use any of the several QoS priority queues supported for the network devices using the data mode set up process.
  • four QoS priority queues are supported by devices.
  • FIG. 6 illustrates that after displaying discovered devices in an “Add” dialog box 610 ; all policy rules and LDAP server updates necessary for administering the selected level of QoS for the listed data devices are created by the setup process 620 , for date mode setup or video mode setup, as follows: effecting policy rule name 622 ; effecting policy condition name 624 ; effecting policy conditions set 626 (Source IP, Destination IP); effecting policy action name 628 ; and effecting policy action 630 (User-selected QoS Priority).
  • the user interface of the data setting mode is illustrated in FIG. 7A where only one QoS priority is allowed to be selected for all the selected devices (e.g., highest) 710 and the setting maps into firmware QoS priorities of the network devices.
  • Alternative embodiments allow for the selection of a plurality of QoS priorities for particular devices within the network data device setting mode 330 .
  • the “Expert Mode” button 720 is selected.
  • the QoS priority will be set for the source IP address only, which allows for high priority traffic from the user-defined servers; allotting high priority to the servers is not required in this embodiment.
  • the data mode displays the discovered devices (FIG. 7B) in the “Add” dialog box 750 .
  • Data server IP addresses are added by selection of the “Add” button 730 and removed by selection of the “Delete” button 740 .
  • the “Server Addresses” table 720 appears on the first execution of the policy processing, the table 720 will be empty and the user will have to enter all the data server IP addresses using the discovered devices in the “Add” dialog box 750 . Thereafter, the policy processing will allow the user to restore this data upon the next invocation of the policy processing and by using the policy processing graphic user interface.
  • FIG. 7C illustrates that this advancing to the Expert Mode can also be effected by tab selection 730 .
  • FIGS. 7D, 7E and 7 F illustrate that the video, including multimedia, set up display 790 (FIG. 7D) and process are substantially similar to the data set up display 700 .
  • FIG. 7E illustrates that the user may add a video server 750 .
  • FIG. 7F illustrates the video servers with a status icon 580 .
  • FIG. 8 illustrates that Selecting Expert Mode starts a guiding process 800 that guides the user through policy rule creation for provisioned QoS service with policy conditions and actions set by the user 820 .
  • the guiding process 800 begins with the policy rule creation or selection for editing process 820 .
  • the graphic user interface provides an interactive means for reviewing, editing or deleting existing policy rules having current LDPA repository values and for creating new policy rules with default device values displayed 830 .
  • policy condition names are displayed 840 .
  • the guiding process then requires selection of the condition set 850 for display.
  • the guiding processing then displays valid policy action names associable with the displayed conditions 860 .
  • the guiding processing prompts the user to make a selection of the action set for provisioned QoS and finishes by prompting the user to select the discovered devices against which the Policy Rule should be applied 870 .
  • the graphic user interface of the guiding processing begins by bringing up a list of existing policies as shown in FIG. 9 and allows the user to view and/or edit 910 existing policies 920 , to create a new policy, or delete an existing one 830 . If the user chooses to create a policy 930 , interface screens will be displayed to the user with their input components reflecting the device default values; if the policy is being edited, the components will be displayed with their current LDAP repository values. In the event the LDAP repository server is not on-line at the time of creation and or editing, then the policy processing initiates a restart of the LDAP repository service.
  • the QoS order of precedence is determined by the device according to the level of QoS priority (e.g., 1-4, or 0-6). However, when a policy is created, all other determining factors being equal, the QoS order of precedence (e.g., 0-65535) determines the order of evaluation by the device.
  • the QoS precedence numbering of rules created by policy process is set by the policy processing via a QoS MIB variable and is transparent to the user. The user will be allowed to move an entry in the Existing Policies table 920 up or down within the list. When this happens, the policy processing will reset the precedence of the affected policies and they will be rewritten to the LDAP server.
  • the graphic user interface of the guiding processing displays a screen, illustrated in FIG. 10 , where the policy condition set must be defined 1000 and in particular for this display screen, information pertaining to the MAC addresses 1005 . If the policy is being created, the user is required to enter a name for the new policy 1010 . Otherwise, the policy is being edited and the name will not be concurrently editable. If the policy must be renamed, the policy must be deleted and recreated, since the name field is the key for the data repository.
  • the tab selections 1020 represent the features for setting policy conditions that are valid for provisioned QoS. Only those conditions that are valid for the selected feature and any conditions that are currently in effect are presented. When the user selects the targets for the Policy, if a target is selected that cannot support the policy, then an error message will be displayed to the user and processing will continue.
  • FIGS. 11 through 19 depict the condition displays that will be presented when the various condition tabs 1020 are selected. These displays are capable of being enhanced to include the addition of checkboxes that must be selected in order for the corresponding GUI component to be used in policy rule, condition and action definition.
  • FIG. 11 illustrates the policy condition for IP addresses 1110 .
  • FIG. 12 illustrates the policy condition for protocol 1210 .
  • FIG. 13 illustrates policy condition for VLAN Group ID 1310 .
  • the “Create VLAN ID . . . ” button 1320 is removable from this screen in particular embodiments.
  • FIG. 14 illustrates the policy condition for DSCP/IP TOS 1410 .
  • FIG. 15 illustrates the policy condition 802.1 priority 1510 .
  • FIG. 16 illustrates the policy condition for the validity period date and/or time 1610 .
  • FIG. 17 illustrates the policy condition for the validity period months 1710 .
  • FIG. 18 illustrates the policy for the validity period days 1810 .
  • FIG. 19 illustrates the policy for the validity period time of day 1910 .
  • Each policy rule condition display of the guiding processing graphic user interface contains a “Next >” button 1020 that will cause the valid actions that can be associated with the condition(s) to be displayed. Together, the conditions and actions define policy rules.
  • FIG. 20 An example of the provisioned QoS action screen is depicted in FIG. 20. With respect to egress values, the output flow setting 2030 and the output mapping 2040 are displayed. Each action screen associated with a feature condition set contains a “Next >” button 2010 , which the user selects to take guiding processing to the screen which allows the user to apply the policy to a set of devices. In the several embodiments of the present invention, it is not necessary that the administrator with screen select the devices to which the policy will be applied because the policy is written to the LDAP server without administrator designation. However, FIG.
  • FIG. 21 depicts the screed where, should the user seek to apply the policy immediately to one or more devices, the guiding processing presents a table 2150 , of discovered devices within the graphic user interface from which the user chooses against which the policy will apply and be displayed in a second table 2160 .
  • the user uses one or more selector buttons 2170 after highlighting, if needed, one or more particular devices.
  • the following processing takes place: (a) the policy condition is created/edited 2220 ; (b) the policy action is created/edited 2230 ; (c) the policy rule is created/edited 2240 ; (d) in the case of create, a policy group is created 2250 ; (e) in the case of create, a policy service is created 2260 ; (f) the policy is written to the LDAP server 2270 and the icons on the list turns yellow; (g) if devices are selected, the selected devices are notified to re-cache their resident data from the LDAP servers 2280 and the icons on the list turns red; and (h) if devices are selected, each selected device sends trap notification to the policy processing to indicate they have re-cached their device-resident data from the LDAP data repository 2290 where the icons on the list turns gray if they do not support
  • An appropriate error message will be displayed once the “Apply” or “Finish” button 2110 is selected, if the LDAP server cannot be updated, or if there is an error in notifying the selected devices that they should re-cache their LDAP repository data or if there is an error in the devices notifying the policy processing of their updates status.

Abstract

Described herein is a policy-based Internet Protocol (IP) network wherein the Quality of Service (QoS) provisioning across various network devices is managed by policy processing via a user interface including a graphic user interface. The user interface incorporates information made available by a server, such as lightweight directory access protocol (LDAP) server, having a repository, and thereby allows for a consistent set up voice-over IP devices, video devices and network data devices with minimal entries by the user. Further, the user interfaces allows for efficient policy creation and editing.

Description

    CROSS REFERENCE TO RELATED APPLICATIONS
  • This application claims priority from the following U.S. Provisional Patent Application, the disclosure of which, including all appendices and all attached documents, is hereby incorporated herein by reference in its entirety for all purposes: U.S. Provisional Patent Application Ser. No. 60/336,906, of Philippe Levillain, Raymond Hanson and Lawrence F. Helmerich entitled, “POLICY RULE MANAGEMENT FOR QOS PROVISIONING,” filed Nov. 7, 2001.[0001]
  • RESERVATION OF COPYRIGHT
  • The disclosure of this patent document contains material that is subject to copyright protection. The copyright owner has no objection to the facsimile reproduction by anyone of the patent document or the patent disclosure, as it appears in the U.S. Patent and Trademark Office patent files or records, but otherwise reserves all copyright rights whatsoever. [0002]
  • FIELD OF THE INVENTION
  • This invention pertains generally to policy-based networks and particularly to policy-based networks having user interfaces for efficient provisioning of quality of service for network devices. [0003]
  • BACKGROUND
  • Network priority is a means of network bandwidth management for data, video and voice traffic and is implemented with administrator-defined policies. This kind of management is termed Quality of Service (QoS) and is controlled using policy-based network processes. In policy-based networking for an Internet Protocol (IP)-based network, a policy refers to a formal set of statements that define the manner of resource allocation among its clients. In policy-based networking, the administrator uses policy statements in order to define a particular level of priority for each of the kinds of services according to parameters including time schedules and according to devices defined by parts or subnets of the network. [0004]
  • Typically, an administrator establishes the provisioning of the QoS of network policies on an ad hoc basis. This approach requires a great deal of administrative effort, particularly where provisioning for voice-over-IP (VoIP) devices, video devices, or critical servers is required. Further, this approach can yield undesired performance in the resulting network due to inconsistencies in the user set up. [0005]
  • SUMMARY
  • Described herein is a policy-based IP network including a plurality of network devices, each having a directory, the plurality of network devices being operatively connected to a plurality of switches via a local area network with each of the plurality of switches supporting QoS and policy files for its respective supported network devices; a network device discovery server for retrieving directory information of each of the plurality of network devices from a supportive respective switch, the network device discovery server communicating with the switches via a network backbone; a server, such as a lightweight directory access protocol (LDAP) server, having a repository for policy data and for receiving policy updates; a trap server for receiving at least one device policy table update notice from at least one of the plurality of network devices; and a network policy server having processing for provisioning QoS via a user interface, wherein the user interface provides a graphic user interface for a user to rapidly set up the network devices. Further disclosed is a method of quality of service provisioning in a policy-based IP network including the steps of: specifying a priority to provision QoS for voice-over IP network devices via a graphic user interface to policy processing; specifying a priority to provision quality of service for video and data processing network devices via the graphic user interface to policy processing; and defining and implementing network policies for provisioning quality of service via the graphic user interface to policy processing.[0006]
  • BRIEF DESCRIPTION OF THE DRAWINGS
  • The present invention is illustrated by way of example and not limitation in the figures of the accompanying drawings, and in which: [0007]
  • FIG. 1 is an example network architecture for embodiments of the present invention; [0008]
  • FIG. 2 is an initial set up process flowchart for embodiments of the present invention; [0009]
  • FIG. 3 is a block diagram of example modes of the management interface embodiments of the present invention; [0010]
  • FIG. 4 is a voice over IP set up process flowchart for embodiments of the present invention; [0011]
  • FIG. 5A is an example graphic user interface for voice over IP set up of the present invention; [0012]
  • FIG. 5B is an example graphic user interface for voice over IP set up of the present invention; [0013]
  • FIG. 6 is a network data device set up process flowchart for embodiments of the present invention; [0014]
  • FIG. 7A is an example graphic user interface for network data device set up of the present invention; [0015]
  • FIG. 7B is an example graphic user interface for network data device set up of the present invention; [0016]
  • FIG. 7C is an example graphic user interface for network data device set up of the present invention; [0017]
  • FIG. 7D is an example graphic user interface for network video device set up of the present invention; [0018]
  • FIG. 7E is an example graphic user interface for network video device set up of the present invention; [0019]
  • FIG. 7F is an example graphic user interface for network video device set up of the present invention; [0020]
  • FIG. 8 is a process flowchart for policy rule creation and modification for embodiments of the present invention; [0021]
  • FIG. 9 is example graphic user interface for policy rule review of the present invention; [0022]
  • FIG. 10 is an example graphic user interface for setting policy conditions, particularly media access control (MAC) addresses, of the present invention; [0023]
  • FIG. 11 is an example graphic user interface for setting policy conditions, particularly IP addresses, of the present invention; [0024]
  • FIG. 12 is an example graphic user interface for setting policy conditions, particularly protocol settings, of the present invention; [0025]
  • FIG. 13 is an example graphic user interface for setting policy conditions, particularly virtual local area network identification, of the present invention; [0026]
  • FIG. 14 is an example graphic user interface for setting policy conditions, particularly differentiated Services code point selection and IP type of service (TOS) selection, of the present invention; [0027]
  • FIG. 15 is an example graphic user interface for setting policy conditions, particularly relating to IEEE standard 802.1 priority, of the present invention; [0028]
  • FIG. 16 is an example graphic user interface for setting policy conditions, particularly relating to the validity period, of the present invention; [0029]
  • FIG. 17 is an example graphic user interface for setting policy conditions, particularly relating to the validity period by months, of the present invention; [0030]
  • FIG. 18 is an example graphic user interface for setting policy conditions, particularly relating to the validity period by days of the week, of the present invention; [0031]
  • FIG. 19 is an example graphic user interface for setting policy conditions, particularly relating to the validity period by time of day, of the present invention; [0032]
  • FIG. 20 is an example graphic user interface for setting policy actions, particularly provisioning quality of service priority, of the present invention; [0033]
  • FIG. 21 is an example graphic user interface for applying policies to devices, of the present invention; and [0034]
  • FIG. 22 is a process flowchart for applying policy rules to network devices for embodiments of the present invention.[0035]
  • DETAILED DESCRIPTION OF THE INVENTION
  • The several embodiments of the present invention provide a method and a network for provisioning policies so that all voice and data QoS in a policy-based IP network may be prioritized at the highest quality of service over a user-specified range of devices with minimal user interaction. Through a graphic user interface, device selection is presented to the user or network administrator with the presentation separated according to devices, i.e., voice devices versus other networking devices and servers whose applications may require a high QoS priority. [0036]
  • In the several embodiments of the present invention, a policy rule, or policy, is a logical device entity comprising at least one policy condition and a policy action, used for purposes of controlling bandwidth usage by switch processing features such as quality of service. If the policy condition evaluates “TRUE,” then the device performs the policy action. Generally, in order for a policy rule to be evaluated by the device, the policy must belong to a policy group. For some device operation systems, there may be an additional level, policy service, to which a policy group belongs. [0037]
  • FIG. 1 illustrates a policy-based [0038] IP network 100 including a user interface 110, a policy server 130, a Lightweight Directory Access Protocol (LDAP) server having a repository 120, a device discovery server 140, a trap server 150, with the servers in communication via a network backbone 160 with a plurality of switches 171-173 and a plurality of devices 181-186.
  • The process flowchart of FIG. 2 illustrates that during installation of the policy processing, the administrator inputs the LDAP [0039] server port number 210. Preferably, this is the only LDAP server parameter over which user direct control is allowed. Thereafter, the policy processing of the policy server 130 sets the LDAP IP address, User ID, Password, and Search Base for each switch to which it writes 220. In addition to those LDAP objects and attributes used by the switch for policy management and other features, the LDAP repository is also used by the policy processing to store the mapping between policy rules and their targets.
  • Several embodiments of the present invention use a [0040] discovery service 140 for ping sweep discovery of networked devices, whereupon the devices are then queried 230 by the discovery service 140 through Simple Network Management Protocol (SNMP) for their flash file directory contents. Enhanced discovery service embodiments investigate switches for policy-supporting files, for example, policy.img and qos.img files on flash memory in supported switches to determine if devices are capable of supporting policies. The discovery service flags policy-enabled devices, and provides a list of such devices 235 to the policy processing. The policy processing subscribes to the discover service events to receive updates to the policy-enabled device lists. In addition, the discovery service uses SNMP to discover virtual local area networks (VLAN) groups, which may be used for the defining of policy conditions. Where devices are capable, the devices may identify VLAN groups as being voice-capable, allowing easier identification of voice devices for ready QoS provisioning by the policy processing.
  • The policy processing writes [0041] 240 policy information to the LDAP repository 120 and notifies the devices 240 against which the policies must be applied, as identified by the network administrator through the policy processing interface, that the LDAP server has been updated. This action works to ensure that each applicable network device is notified and thereby prompted to read the repository 120 discern applicable policy changes. When policy-enabled devices receive the notice 245 that the LDAP repository of policy data has been updated, the policy-enabled devices each generate a trap notification 250 signifying that they have each read the repository changes and that their internal policy tables have been updated. The policy processing uses a trap server service to subscribes to device trap events. In several embodiments of the present invention, the trap server uses SNMP to achieve trap notification. The policy processing will enhance trap notification by reading each device's policy rules table 260 (from the appropriate policy processing management information bases, or MIBs, where an MIB is a formal description of a set of network objects that can be managed using SNMP) and confirming that there is a policy rule name that matches the rules in the LDAP repository.
  • The policy processing uses SNMP directly to provide device notification through the serverPolicyDecision MIB object for example. In this example for a network management system (NMS), the object can be set to (0) to flush policies (“flushPolicies”) or to (1) to re-cache policies (“recachePolicies”). The MIB description for this object is expressible as: “This object allows an NMS application to influence the policy manager's treatment of existing policy decisions that were established by the policy manager. By setting recachePolicies, an NMS can cause the policy manager to reload all its policies from the current primary LDAP server. By setting flushPolicies, all the policies are deleted by the policy manager.” Policies for individual devices may be set through SNMP MIB browsers and through other interfaces for particular devices. [0042]
  • The Lightweight Directory Access Protocol (LDAP) server information is set and stored by the policy processing during its installation process. Depending on the switch, an SNMP MIB Browser, a graphic user interface or the device user interface is used to set the LDAP Server address. [0043]
  • For a given device-networking feature, Policy Rules are defined that include of Policy Conditions that must be met to allow defined Policy Actions to dictate network traffic throughput. The policy processing provides the user with a mode-based [0044] management interface 300 with graphic user interfacing through which the user manages a policy-based network 310 including:
  • 1. A policy-based network management interface for specifying a priority level (e.g., highest priority) provisioned QoS policy definition for applicable voice devices (i.e., a process for readily setting the voice mode) [0045] 320;
  • 2. A policy-based network management interface for specifying a priority level for provisioned QoS policy definition for video devices, including multimedia devices, and data devices serving high-priority applications (i.e., a process for readily setting the data mode or the video mode) [0046] 330; and
  • 3. For defining and implementing networking policies for defining provisioned QoS in general (i.e., a processing assisted process for rapid set up via an expert or wizard mode) [0047] 340.
  • For example, an embodiment of the present invention has a process that begins in a mode for providing highest-priority provisioned QoS to voice devices. FIG. 4 illustrates the steps of this [0048] mode 400 where the user enters the IP subnet for each voice subnet that requires a high priority 410. All policy rules and LDAP server updates necessary for administering this highest level QoS for the selected voice devices are created by the process 420 effecting: a Policy Rule Name 422; a Policy Condition Name 424; a Policy Condition Set 426 which is optionally a media access control (MAC) destination or an IP subnet destination per user input; a Policy Action Name 428; and a Policy Action 430. Where there are two or more ranges of MAC addresses that apply to the devices, two or more rules are created. An example of a user interface screen for this mode is illustrated in FIG. 5.
  • In the graphic user interface example of FIG. 5, where there are four QoS priority queues supported for the devices, voice devices are allowed the highest priority, preferably being set to this priority by adding a voice-supported subnet to an “IP Phone Subnets” table [0049] 510 and then selecting the “Apply” button 520. In order to set voice devices to any other priority, the user selects the creating and editing mode by selecting the “Expert Mode” button 530. Subnets are added by selection of the “Add Subnet” button 540 and removed by selection of the “Delete Subnet” button 550. The “Remove” button 560 removes provisioned QoS from all listed subnets. When the “IP Phone Subnets” table 510 appears on the first running of the policy processing, the table 510 will be empty and the user will have to enter all the voice subnets for IP Phones manually in the event a discovery service or manager 140 does not recognize these devices. Thereafter, a preferred embodiment has the user being allowed to restore this data upon a successive interfacing session with the policy processing.
  • One or more status icons are used in the graphic user interfaces of the several embodiments of the present invention. In an example embodiment illustrated in FIG. 5B, an [0050] icon 580 is displayed next to the list of devices pertaining to that service for the various modes or QoS provisioning (e.g., set up of VoIP devices, set up of data devices, and policy rule creating and editing). By way of example, the color of the icons indicates the current status of the selected operation as follows: gray indicates there is currently no QoS policy in effect for the device; green indicates there is currently a QoS policy in effect for the device; yellow indicates there is currently a QoS policy add or delete operation pending write to the LDAP server; and red indicates that a policy add or delete was written to the LDAP server that the device is has not yet been reached.
  • In the several embodiments of the present invention, data devices, video devices, including multimedia devices, serving high-demand application servers may be set to use any of the several QoS priority queues supported for the network devices using the data mode set up process. In the present example, four QoS priority queues are supported by devices. FIG. 6 illustrates that after displaying discovered devices in an “Add” [0051] dialog box 610; all policy rules and LDAP server updates necessary for administering the selected level of QoS for the listed data devices are created by the setup process 620, for date mode setup or video mode setup, as follows: effecting policy rule name 622; effecting policy condition name 624; effecting policy conditions set 626 (Source IP, Destination IP); effecting policy action name 628; and effecting policy action 630 (User-selected QoS Priority).
  • In an example embodiment of the present invention, the user interface of the data setting mode is illustrated in FIG. 7A where only one QoS priority is allowed to be selected for all the selected devices (e.g., highest) [0052] 710 and the setting maps into firmware QoS priorities of the network devices. Alternative embodiments allow for the selection of a plurality of QoS priorities for particular devices within the network data device setting mode 330. Returning to the present example data setting mode interface 700, if a different QoS is needed for other data server sets, the “Expert Mode” button 720 is selected. In an example embodiment, the QoS priority will be set for the source IP address only, which allows for high priority traffic from the user-defined servers; allotting high priority to the servers is not required in this embodiment. For ease of administration, the data mode displays the discovered devices (FIG. 7B) in the “Add” dialog box 750.
  • Data server IP addresses are added by selection of the “Add” [0053] button 730 and removed by selection of the “Delete” button 740. When the “Server Addresses” table 720 appears on the first execution of the policy processing, the table 720 will be empty and the user will have to enter all the data server IP addresses using the discovered devices in the “Add” dialog box 750. Thereafter, the policy processing will allow the user to restore this data upon the next invocation of the policy processing and by using the policy processing graphic user interface.
  • Discovered devices that are not configured using the above voice and data set up modes will remain at the default (i.e., best effort) QoS, unless they are alternatively prioritized using some other means. In several embodiments of the present invention, the policy processing using the above voice and data set up processes provides for a majority of the cases for which policy creation is typically necessary. [0054]
  • At the bottom of the voice set up display [0055] 500 and the data set up display 700 there is an “Expert Mode” button 530 that, when selected, allows the user to access the guiding processing for creating and editing policies. FIG. 7C illustrates that this advancing to the Expert Mode can also be effected by tab selection 730.
  • FIGS. 7D, 7E and [0056] 7F illustrate that the video, including multimedia, set up display 790 (FIG. 7D) and process are substantially similar to the data set up display 700. Within the display of video server addresses 722, FIG. 7E, illustrates that the user may add a video server 750. FIG. 7F illustrates the video servers with a status icon 580.
  • FIG. 8 illustrates that Selecting Expert Mode starts a [0057] guiding process 800 that guides the user through policy rule creation for provisioned QoS service with policy conditions and actions set by the user 820.
  • The [0058] guiding process 800 begins with the policy rule creation or selection for editing process 820. The graphic user interface provides an interactive means for reviewing, editing or deleting existing policy rules having current LDPA repository values and for creating new policy rules with default device values displayed 830. Thereafter, policy condition names are displayed 840. The guiding process then requires selection of the condition set 850 for display. The guiding processing then displays valid policy action names associable with the displayed conditions 860. The guiding processing prompts the user to make a selection of the action set for provisioned QoS and finishes by prompting the user to select the discovered devices against which the Policy Rule should be applied 870.
  • Where both Source IP and Destination IP definition is desired, two rules are required as the condition set. For example, if the logical operator AND is applied to both Source IP and Destination IP, then QoS is applied only if the traffic is both from the Source and to the Destination [0059]
  • The graphic user interface of the guiding processing begins by bringing up a list of existing policies as shown in FIG. 9 and allows the user to view and/or edit [0060] 910 existing policies 920, to create a new policy, or delete an existing one 830. If the user chooses to create a policy 930, interface screens will be displayed to the user with their input components reflecting the device default values; if the policy is being edited, the components will be displayed with their current LDAP repository values. In the event the LDAP repository server is not on-line at the time of creation and or editing, then the policy processing initiates a restart of the LDAP repository service.
  • Generally, the QoS order of precedence is determined by the device according to the level of QoS priority (e.g., 1-4, or 0-6). However, when a policy is created, all other determining factors being equal, the QoS order of precedence (e.g., 0-65535) determines the order of evaluation by the device. The QoS precedence numbering of rules created by policy process is set by the policy processing via a QoS MIB variable and is transparent to the user. The user will be allowed to move an entry in the Existing Policies table [0061] 920 up or down within the list. When this happens, the policy processing will reset the precedence of the affected policies and they will be rewritten to the LDAP server.
  • After the user has chosen whether the policy is to be created or edited, the graphic user interface of the guiding processing displays a screen, illustrated in FIG. [0062] 10, where the policy condition set must be defined 1000 and in particular for this display screen, information pertaining to the MAC addresses 1005. If the policy is being created, the user is required to enter a name for the new policy 1010. Otherwise, the policy is being edited and the name will not be concurrently editable. If the policy must be renamed, the policy must be deleted and recreated, since the name field is the key for the data repository. The tab selections 1020 represent the features for setting policy conditions that are valid for provisioned QoS. Only those conditions that are valid for the selected feature and any conditions that are currently in effect are presented. When the user selects the targets for the Policy, if a target is selected that cannot support the policy, then an error message will be displayed to the user and processing will continue.
  • FIGS. 11 through 19 depict the condition displays that will be presented when the [0063] various condition tabs 1020 are selected. These displays are capable of being enhanced to include the addition of checkboxes that must be selected in order for the corresponding GUI component to be used in policy rule, condition and action definition. FIG. 11 illustrates the policy condition for IP addresses 1110. FIG. 12 illustrates the policy condition for protocol 1210. FIG. 13 illustrates policy condition for VLAN Group ID 1310. The “Create VLAN ID . . . ” button 1320 is removable from this screen in particular embodiments. FIG. 14 illustrates the policy condition for DSCP/IP TOS 1410. FIG. 15 illustrates the policy condition 802.1 priority 1510. FIG. 16 illustrates the policy condition for the validity period date and/or time 1610. FIG. 17 illustrates the policy condition for the validity period months 1710. FIG. 18 illustrates the policy for the validity period days 1810. FIG. 19 illustrates the policy for the validity period time of day 1910. Each policy rule condition display of the guiding processing graphic user interface contains a “Next >” button 1020 that will cause the valid actions that can be associated with the condition(s) to be displayed. Together, the conditions and actions define policy rules.
  • An example of the provisioned QoS action screen is depicted in FIG. 20. With respect to egress values, the output flow setting [0064] 2030 and the output mapping 2040 are displayed. Each action screen associated with a feature condition set contains a “Next >” button 2010, which the user selects to take guiding processing to the screen which allows the user to apply the policy to a set of devices. In the several embodiments of the present invention, it is not necessary that the administrator with screen select the devices to which the policy will be applied because the policy is written to the LDAP server without administrator designation. However, FIG. 21, depicts the screed where, should the user seek to apply the policy immediately to one or more devices, the guiding processing presents a table 2150, of discovered devices within the graphic user interface from which the user chooses against which the policy will apply and be displayed in a second table 2160. The user uses one or more selector buttons 2170 after highlighting, if needed, one or more particular devices.
  • When the user selects the “Finish” [0065] button 2110 from the “Apply Policy To Devices” screen 2120, the following processing, as illustrated in FIG. 22, takes place: (a) the policy condition is created/edited 2220; (b) the policy action is created/edited 2230; (c) the policy rule is created/edited 2240; (d) in the case of create, a policy group is created 2250; (e) in the case of create, a policy service is created 2260; (f) the policy is written to the LDAP server 2270 and the icons on the list turns yellow; (g) if devices are selected, the selected devices are notified to re-cache their resident data from the LDAP servers 2280 and the icons on the list turns red; and (h) if devices are selected, each selected device sends trap notification to the policy processing to indicate they have re-cached their device-resident data from the LDAP data repository 2290 where the icons on the list turns gray if they do not support the policy and green if they do. For example, for those policy entries required by the LDAP schema, but transparent to the user, the following entries are made:
  • Policy Rule Name: [0066]
  • <User-selected policy rule name>Rule; [0067]
  • Policy Condition Name: [0068]
  • <User-selected policy rule name>Condition; [0069]
  • Policy Condition Set: [0070]
  • <User-selected condition set>; [0071]
  • Policy Action Name: [0072]
  • <User-selected policy rule name>Action; [0073]
  • and Policy Action: [0074]  
  • <User-selected action set>. [0075]
  • If the user wishes to establish an order of precedence for this policy, other than the default precedence, the initial guiding processing graphic user interface screen depicted in FIG. 9 is used. [0076]
  • An appropriate error message will be displayed once the “Apply” or “Finish” [0077] button 2110 is selected, if the LDAP server cannot be updated, or if there is an error in notifying the selected devices that they should re-cache their LDAP repository data or if there is an error in the devices notifying the policy processing of their updates status.
  • Many alterations and modifications may be made by those having ordinary skill in the art without departing from the spirit and scope of the invention and its several embodiments disclosed herein. Therefore, it must be understood that the illustrated embodiments have been set forth only for the purposes of example and that it should not be taken as limiting the invention as defined by the following claims. For example, the services disclosed may be performed by processing hosted on one or several network devices such as servers. [0078]
  • The words used in this specification to describe the invention and its various embodiments are to be understood not only in the sense of their commonly defined meanings, but to include by special definition in this specification structure, material or acts beyond the scope of the commonly defined meanings. Thus if an element can be understood in the context of this specification as including more than one meaning, then its use in a claim must be understood as being generic to all possible meanings supported by the specification and by the word itself. [0079]
  • The definitions of the words or elements of the following claims are, therefore, defined in this specification to include not only the combination of elements which are literally set forth, but all equivalent structure, material or acts for performing substantially the same function in substantially the same way to obtain substantially the same result. [0080]
  • In addition to the equivalents of the claimed elements, obvious substitutions now or later known to one with ordinary skill in the art are defined to be within the scope of the defined elements. For example, the identifying colors for the icons may different that those disclosed and still achieve the function of status-by-color. [0081]
  • The claims are thus to be understood to include what is specifically illustrated and described above, what is conceptually equivalent, what can be obviously substituted and also what essentially incorporates the essential idea of the invention. [0082]

Claims (22)

We claim:
1. A policy-based Internet Protocol (IP) network comprising:
a plurality of switches;
a plurality of network devices, each having a directory supported by at least one of the plurality of switches, the plurality of network devices being operatively connected to the plurality of switches via a local area network with each of the plurality of switches supporting quality of service (QoS) and policy files for each supported network device;
a server having a repository for policy data and for receiving policy updates; and
a network policy server having policy processing for provisioning quality of service via a user interface, wherein the user interface provides a graphic user interface for a user to set up QoS provisioning across the network devices.
2. The policy-based IP network of claim 1 wherein the network devices further comprise voice-over IP (VoIP) devices wherein the graphic user interface further comprises a VoIP device set up processing.
3. The policy-based IP network of claim 1 wherein the network devices further comprise data processing devices and wherein the graphic user interface further comprises a a data device set up processing.
4. The policy-based IP network of claim 1 wherein the network devices further comprise video devices wherein the graphic user interface further comprises a video device set up processing.
5. The policy-based IP network of claim 1 wherein the network devices further comprise voice-over IP (VoIP) devices, data processing devices and video processing devices and wherein the graphic user interface further comprises a VoIP device set up processing, a data device set up processing, a video device set up processing and a network policy defining and implementing processing.
6. The policy-based IP network of claim 1 wherein the network devices further comprise a network device discovery server for retrieving directory information of each of the plurality of network devices from the respective supporting switch, the network device discovery server being operatively connected to the plurality of switches and the policy server via a network backbone.
7. The policy-based IP network of claim 1 wherein the network further comprise a trap server for receiving at least one device policy table update notice from at least one of the plurality of network devices, the trap server being operatively connected to the plurality of switches and the policy server via a network backbone.
8. A method of quality of service provisioning in a policy-based Internet Protocol (IP) network having policy processing, the method comprising the steps of:
specifying to policy processing a priority for provisioning quality of service for processing network devices via a graphic user interface (GUI), if a network device setup mode is selected; and
defining and implementing network policies for provisioning quality of service via the graphic user interface to policy processing, if a guided setup mode is selected.
9. A method of quality of service provisioning in a policy-based Internet Protocol (IP) network having policy processing, the method comprising the steps of:
specifying to policy processing a priority for provisioning quality of service for data processing network devices via a graphic user interface (GUI), if a data device setup mode is selected; and
defining and implementing network policies for provisioning quality of service via the graphic user interface to policy processing, if a guided setup mode is selected.
10. The method of claim 9 further comprising the step of specifying to policy processing a priority for provisioning quality of service for video processing network devices via the GUI, if video setup mode is selected;
11. The method of claim 9 further comprising the step of specifying to policy processing a priority for provisioning quality of service (QoS) for voice-over IP (VoIP) network devices via a graphic user interface (GUI), if a VoIP setup mode is selected.
12. The method of claim 11 further comprising, preceding the step of specifying a priority to provision quality of service for VoIP network devices via the GUI to policy processing, the steps of discovering network devices and recording the discovered data in a server having a repository.
13. The method of claim 12 further comprising the steps of:
updating network device tables according to policy specifications, definitions, and implementations;
transmitting update notifications to a trap server; and
retrieving, by the policy processing, data from the trap server.
14. The method of claim 13 further comprising the steps of retrieving, by the policy processing, data from the repository.
15. The method of claim 11 wherein the step of specifying the priority to provision quality of service for VoIP network devices via the GUI to the policy processing further comprise the steps of:
inputting IP subnet for each voice subnet requiring a desired priority;
effecting a policy rule name;
effecting a policy condition name;
effecting a policy condition set;
effecting a policy action name; and
effecting a policy action.
16. The method of claim 9 wherein the step of specifying the priority to provision quality of service for data processing network devices via the graphic user interface to the policy processing further comprises steps of:
retrieving discovered network devices from the server repository;
displaying discovered devices;
effecting a policy rule name;
effecting a policy condition name;
effecting a policy condition set;
effecting a policy action name; and
effecting a policy action.
17. The method of claim 9 wherein the steps defining and implementing network policies for provisioning quality of service via the graphic user interface to policy processing further comprise the steps of:
displaying current server repository values of policy rules;
modifying each displayed current policy rule as needed;
creating, if needed, at least one new policy rule;
displaying at least one policy condition name;
selecting at least one policy condition set;
displaying at least one valid policy action name associable with the at least one displayed condition name; and
effecting at least one policy action.
18. The method of claim 9 wherein the step of effecting policy action further comprises the steps of:
effecting the policy condition;
effecting the policy action;
effecting the policy rule;
creating a policy group, if needed;
creating a policy service, if needed;
writing to the server repository;
notifying a plurality of devices to re-cache their resident data from the server repository; and
sending, by the notified plurality of devices, trap notification indicating re-caching accomplished to trap server.
19. A method of quality of service provisioning in a policy-based Internet Protocol (IP) network having policy processing, the method comprising the steps of:
selecting at least one mode from the group consisting of voice-over IP setup mode, data device setup mode, video device setup mode and a guided set up mode;
specifying to policy processing a priority for provisioning quality of service (QoS) for voice-over IP (VoIP) network devices via a graphic user interface (GUI), if VoIP setup mode is selected and if VoIP network devices are displayed within the GUI;
specifying to policy processing a priority for provisioning quality of service for video processing network devices via the GUI, if video setup mode is selected and if video processing network devices, including video multimedia network devices, are displayed within the GUI;
specifying to policy processing a priority for provisioning quality of service for data processing network devices via the GUI, if data device setup mode is selected and if data processing network devices are displayed with the GUI; and
defining and implementing network policies for provisioning quality of service via the graphic user interface to policy processing, if guided set up mode is selected.
20. A computer program product for use with a server in a policy-based Internet Protocol network having devices, said computer program product comprising:
a computer usable medium having computer readable program code means embodied in said medium that, when used with the server, causes the server to effect policy processing for provisioning quality of service via a user interface, wherein the user interface provides a graphic user interface for the user to set up quality of service (QoS) provisioning across the network devices;
a computer readable program code means for allowing the user to specify a priority to provision quality of service for data processing network devices via the graphic user interface to policy processing; and
and a computer readable program code means for allowing a user to define and implement network policies for provisioning quality of service via the graphic user interface to the policy processing.
21. The computer program product of claim 20 further comprising a computer readable program code means for allowing the user to specify a priority to provision quality of service for voice-over IP network devices via a graphic user interface to policy processing.
22. The computer program product of claim 20 further comprising a computer readable program code means for allowing the user to specify a priority to provision quality of service for video network devices via a graphic user interface to policy processing.
US10/289,698 2001-11-07 2002-11-06 Policy rule management for QoS provisioning Abandoned US20030107590A1 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
US10/289,698 US20030107590A1 (en) 2001-11-07 2002-11-06 Policy rule management for QoS provisioning
US11/304,375 US7930376B2 (en) 2001-11-07 2005-12-15 Policy rule management for QoS provisioning
US13/044,249 US8316144B2 (en) 2001-11-07 2011-03-09 Policy rule management for QoS provisioning
US13/646,912 US9118694B2 (en) 2001-11-07 2012-10-08 Policy rule management for QoS provisioning

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US33690601P 2001-11-07 2001-11-07
US10/289,698 US20030107590A1 (en) 2001-11-07 2002-11-06 Policy rule management for QoS provisioning

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US11/304,375 Division US7930376B2 (en) 2001-11-07 2005-12-15 Policy rule management for QoS provisioning

Publications (1)

Publication Number Publication Date
US20030107590A1 true US20030107590A1 (en) 2003-06-12

Family

ID=23318207

Family Applications (4)

Application Number Title Priority Date Filing Date
US10/289,698 Abandoned US20030107590A1 (en) 2001-11-07 2002-11-06 Policy rule management for QoS provisioning
US11/304,375 Expired - Fee Related US7930376B2 (en) 2001-11-07 2005-12-15 Policy rule management for QoS provisioning
US13/044,249 Expired - Fee Related US8316144B2 (en) 2001-11-07 2011-03-09 Policy rule management for QoS provisioning
US13/646,912 Expired - Fee Related US9118694B2 (en) 2001-11-07 2012-10-08 Policy rule management for QoS provisioning

Family Applications After (3)

Application Number Title Priority Date Filing Date
US11/304,375 Expired - Fee Related US7930376B2 (en) 2001-11-07 2005-12-15 Policy rule management for QoS provisioning
US13/044,249 Expired - Fee Related US8316144B2 (en) 2001-11-07 2011-03-09 Policy rule management for QoS provisioning
US13/646,912 Expired - Fee Related US9118694B2 (en) 2001-11-07 2012-10-08 Policy rule management for QoS provisioning

Country Status (2)

Country Link
US (4) US20030107590A1 (en)
EP (1) EP1311083A3 (en)

Cited By (57)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030037040A1 (en) * 2001-08-14 2003-02-20 Smartpipes, Incorporated Selection and storage of policies in network management
US20040117407A1 (en) * 2002-12-16 2004-06-17 Manoj Kumar Resource and data administration technologies for IT non-experts
US20050021349A1 (en) * 2003-07-23 2005-01-27 International Business Machines Corporation Method and system for providing a computing resource service
WO2005094013A1 (en) * 2004-03-25 2005-10-06 Siemens Aktiengesellschaft Method for balancing status information for a network device between a policy decision point and a policy enforcement point
US20050289219A1 (en) * 2004-06-28 2005-12-29 Nazzal Robert N Rule based alerting in anomaly detection
US20060036730A1 (en) * 2004-08-06 2006-02-16 Richard Graham System and method for address block enhanced dynamic network policy management
US20060248331A1 (en) * 2005-03-15 2006-11-02 Dan Harkins System and method for distributing keys in a wireless network
US20070086378A1 (en) * 2005-10-13 2007-04-19 Matta Sudheer P C System and method for wireless network monitoring
US20070086398A1 (en) * 2005-10-13 2007-04-19 Manish Tiwari Identity-based networking
US20070086397A1 (en) * 2005-10-13 2007-04-19 Ron Taylor System and method for remote monitoring in a wireless network
US20070106778A1 (en) * 2005-10-27 2007-05-10 Zeldin Paul E Information and status and statistics messaging method and system for inter-process communication
US20070106722A1 (en) * 2005-10-27 2007-05-10 Zeldin Paul E Non-persistent and persistent information setting method and system for inter-process communication
US20070124433A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Network supporting centralized management of QoS policies
US20070124485A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Computer system implementing quality of service policy
US20070160079A1 (en) * 2006-01-06 2007-07-12 Microsoft Corporation Selectively enabled quality of service policy
US20070177610A1 (en) * 2006-01-31 2007-08-02 Microsoft Corporation Preventing Quality Of Service Policy Abuse In A Network
US20070258448A1 (en) * 2006-05-03 2007-11-08 Hu Tyng J A System and method for restricting network access using forwarding databases
US20070260720A1 (en) * 2006-05-03 2007-11-08 Morain Gary E Mobility domain
US20070268514A1 (en) * 2006-05-19 2007-11-22 Paul Zeldin Method and business model for automated configuration and deployment of a wireless network in a facility without network administrator intervention
US20070268515A1 (en) * 2006-05-19 2007-11-22 Yun Freund System and method for automatic configuration of remote network switch and connected access point devices
US20070268516A1 (en) * 2006-05-19 2007-11-22 Jamsheed Bugwadia Automated policy-based network device configuration and network deployment
US20070268506A1 (en) * 2006-05-19 2007-11-22 Paul Zeldin Autonomous auto-configuring wireless network device
US20070281711A1 (en) * 2006-06-01 2007-12-06 Sudheer Poorna Chandra Matta Wireless load balancing across bands
US20070287500A1 (en) * 2006-06-12 2007-12-13 Philip Riley Tuned directional antennas
US20080107077A1 (en) * 2006-11-03 2008-05-08 James Murphy Subnet mobility supporting wireless handoff
US20080151844A1 (en) * 2006-12-20 2008-06-26 Manish Tiwari Wireless access point authentication system and method
US20080159319A1 (en) * 2006-12-28 2008-07-03 Matthew Stuart Gast System and method for aggregation and queuing in a wireless network
WO2008033321A3 (en) * 2006-09-15 2008-07-03 Trapeze Networks Inc Quality of service provisioning for wireless networks
US20090293106A1 (en) * 2005-03-31 2009-11-26 Trapeze Networks, Inc. Method and apparatus for controlling wireless network access privileges based on wireless client location
US7724704B2 (en) 2006-07-17 2010-05-25 Beiden Inc. Wireless VLAN system and method
US20100157981A1 (en) * 2008-12-23 2010-06-24 Jeffrey William Dawson Differentiated priority level communication
US7865713B2 (en) 2006-12-28 2011-01-04 Trapeze Networks, Inc. Application-aware wireless network system and method
US7912982B2 (en) 2006-06-09 2011-03-22 Trapeze Networks, Inc. Wireless routing selection system and method
US20110191460A1 (en) * 2006-11-14 2011-08-04 Francoise Sailhan System and a Method Relating to Network Management
US8072952B2 (en) 2006-10-16 2011-12-06 Juniper Networks, Inc. Load balancing
US8150357B2 (en) 2008-03-28 2012-04-03 Trapeze Networks, Inc. Smoothing filter for irregular update intervals
US8218449B2 (en) 2005-10-13 2012-07-10 Trapeze Networks, Inc. System and method for remote monitoring in a wireless network
US8238298B2 (en) 2008-08-29 2012-08-07 Trapeze Networks, Inc. Picking an optimal channel for an access point in a wireless network
US8238942B2 (en) 2007-11-21 2012-08-07 Trapeze Networks, Inc. Wireless station location detection
US8474023B2 (en) 2008-05-30 2013-06-25 Juniper Networks, Inc. Proactive credential caching
US8509128B2 (en) 2007-09-18 2013-08-13 Trapeze Networks, Inc. High level instruction convergence function
US8638762B2 (en) 2005-10-13 2014-01-28 Trapeze Networks, Inc. System and method for network integrity
US20140052858A1 (en) * 2011-04-22 2014-02-20 Nec Corporation Policy description assistance system and policy description assistance method
US8818322B2 (en) 2006-06-09 2014-08-26 Trapeze Networks, Inc. Untethered access point mesh system and method
US20140244820A1 (en) * 2013-02-27 2014-08-28 Huawei Technologies Co., Ltd. Rule Set Orchestration Processing Method and Apparatus, and Cluster Data System
US8902904B2 (en) 2007-09-07 2014-12-02 Trapeze Networks, Inc. Network assignment based on priority
US8966018B2 (en) 2006-05-19 2015-02-24 Trapeze Networks, Inc. Automated network device configuration and network deployment
US20150058896A1 (en) * 2012-04-13 2015-02-26 Sony Computer Entertaiment Inc. Information processing system and media server
US8978105B2 (en) 2008-07-25 2015-03-10 Trapeze Networks, Inc. Affirming network relationships and resource access via related networks
US9015790B2 (en) * 2011-07-20 2015-04-21 Red Hat, Inc. Integrating sudo rules with entities represented in an LDAP directory
US20150295787A1 (en) * 2014-04-14 2015-10-15 Verizon Patent And Licensing Inc. Quality of service optimization management tool
US20150304228A1 (en) * 2012-08-01 2015-10-22 Telefonaktiebolaget L M Ericsson (Publ) Method and system for prioritising traffic flows
US9191799B2 (en) 2006-06-09 2015-11-17 Juniper Networks, Inc. Sharing data between wireless switches system and method
US9258702B2 (en) 2006-06-09 2016-02-09 Trapeze Networks, Inc. AP-local dynamic switching
US20160041956A1 (en) * 2013-04-18 2016-02-11 Huawei Technologies Co., Ltd. Quality of service control method, application server, and terminal
US9286489B1 (en) * 2004-05-28 2016-03-15 Amdocs Software Systems Limited Policy configuration user interface
US10931636B2 (en) * 2017-03-23 2021-02-23 Pismo Labs Technology Limited Method and system for restricting transmission of data traffic for devices with networking capabilities

Families Citing this family (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8041797B2 (en) * 2004-03-31 2011-10-18 International Business Machines Corporation Apparatus and method for allocating resources based on service level agreement predictions and associated costs
US20060092851A1 (en) * 2004-10-29 2006-05-04 Jeffrey Forrest Edlund Method and apparatus for communicating predicted future network requirements of a data center to a number of adaptive network interfaces
US8751649B2 (en) * 2005-06-07 2014-06-10 Extreme Networks Port management system
US8775571B2 (en) * 2005-06-07 2014-07-08 Extreme Networks, Inc. Methods, systems, and computer program products for dynamic network access device port and user device configuration for implementing device-based and user-based policies
JP2007257023A (en) * 2006-03-20 2007-10-04 Nec Corp Server multiplying system and server multiplying method
JP2010504018A (en) * 2006-09-15 2010-02-04 コーニンクレッカ フィリップス エレクトロニクス エヌ ヴィ Automatic packet tagging
US20080089237A1 (en) * 2006-10-11 2008-04-17 Ibahn Corporation System and method for dynamic network traffic prioritization
US8095625B2 (en) 2007-02-28 2012-01-10 Red Hat, Inc. Directory server plug-in call ordering
US8127336B2 (en) * 2007-03-01 2012-02-28 Bridgewater Systems Corp. Systems and methods for policy-based service management
US8279874B1 (en) * 2007-03-30 2012-10-02 Extreme Networks, Inc. Self-configuring network
US8331334B2 (en) * 2007-07-20 2012-12-11 Broadcom Corporation Method and system for a handheld wireless communication device for configuring connection to and use of local and remote resources
US9053487B2 (en) 2011-08-22 2015-06-09 At&T Intellectual Property I, L.P. Methods, systems, and products for notifying of enhancements to quality of service and experience
US8935388B2 (en) * 2011-12-20 2015-01-13 Cox Communications, Inc. Systems and methods of automated event processing
CN105071948B (en) * 2015-07-06 2018-04-17 北京云启志新科技股份有限公司 The automatic deployment method and device of a kind of access switch
US10674409B2 (en) 2017-06-09 2020-06-02 At&T Intellectual Property I, L.P. System and method for fine grained service management using SDN-NFV networks
US11038776B2 (en) 2019-05-07 2021-06-15 Electronics And Telecommunications Research Institute Method and system for providing service experience analysis based on network data analysis
US11381494B2 (en) 2019-05-07 2022-07-05 Electronics And Telecommunications Research Institute Method and system for providing communication analysis of user equipment based on network data analysis

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5485455A (en) * 1994-01-28 1996-01-16 Cabletron Systems, Inc. Network having secure fast packet switching and guaranteed quality of service
US5774667A (en) * 1996-03-27 1998-06-30 Bay Networks, Inc. Method and apparatus for managing parameter settings for multiple network devices
US5819042A (en) * 1996-02-20 1998-10-06 Compaq Computer Corporation Method and apparatus for guided configuration of unconfigured network and internetwork devices
US6167445A (en) * 1998-10-26 2000-12-26 Cisco Technology, Inc. Method and apparatus for defining and implementing high-level quality of service policies in computer networks
US6502131B1 (en) * 1997-05-27 2002-12-31 Novell, Inc. Directory enabled policy management tool for intelligent traffic management

Family Cites Families (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP3764016B2 (en) * 1999-05-10 2006-04-05 財団法人流通システム開発センタ− Integrated IP transfer network
EP1143681A3 (en) * 1999-06-10 2003-12-10 Alcatel Internetworking, Inc. Satistics aggregation for policy based network
JP2003512799A (en) * 1999-10-20 2003-04-02 アルカテル・インターネツトワーキング・インコーポレイテツド On-switch policy rule caching for data communication switches
US6904017B1 (en) * 2000-05-08 2005-06-07 Lucent Technologies Inc. Method and apparatus to provide centralized call admission control and load balancing for a voice-over-IP network
US7240364B1 (en) * 2000-05-20 2007-07-03 Ciena Corporation Network device identity authentication
US20020116485A1 (en) * 2001-02-21 2002-08-22 Equipe Communications Corporation Out-of-band network management channels
US7225244B2 (en) * 2000-05-20 2007-05-29 Ciena Corporation Common command interface
US6760339B1 (en) * 2000-05-20 2004-07-06 Equipe Communications Corporation Multi-layer network device in one telecommunications rack
US7467192B1 (en) * 2000-06-07 2008-12-16 Cisco Technology, Inc. Online standardized contract configuration for service level agreement monitoring
US6771673B1 (en) * 2000-08-31 2004-08-03 Verizon Communications Inc. Methods and apparatus and data structures for providing access to an edge router of a network
US7046680B1 (en) * 2000-11-28 2006-05-16 Mci, Inc. Network access system including a programmable access device having distributed service control
US7218722B1 (en) * 2000-12-18 2007-05-15 Westell Technologies, Inc. System and method for providing call management services in a virtual private network using voice or video over internet protocol
US7263597B2 (en) * 2001-04-19 2007-08-28 Ciena Corporation Network device including dedicated resources control plane
US20030074429A1 (en) * 2001-10-05 2003-04-17 Gieseke Eric James Object oriented provisioning server

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5485455A (en) * 1994-01-28 1996-01-16 Cabletron Systems, Inc. Network having secure fast packet switching and guaranteed quality of service
US5819042A (en) * 1996-02-20 1998-10-06 Compaq Computer Corporation Method and apparatus for guided configuration of unconfigured network and internetwork devices
US5774667A (en) * 1996-03-27 1998-06-30 Bay Networks, Inc. Method and apparatus for managing parameter settings for multiple network devices
US6502131B1 (en) * 1997-05-27 2002-12-31 Novell, Inc. Directory enabled policy management tool for intelligent traffic management
US6167445A (en) * 1998-10-26 2000-12-26 Cisco Technology, Inc. Method and apparatus for defining and implementing high-level quality of service policies in computer networks

Cited By (106)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070016597A1 (en) * 2001-08-14 2007-01-18 Endforce, Inc. Selection and storage of policies in network management
US7130854B2 (en) * 2001-08-14 2006-10-31 Endforce, Inc. Selection and storage of policies in network management
US7840599B2 (en) 2001-08-14 2010-11-23 Sophos Plc Selection and storage of policies in network management
US20030037040A1 (en) * 2001-08-14 2003-02-20 Smartpipes, Incorporated Selection and storage of policies in network management
US20070022124A1 (en) * 2001-08-14 2007-01-25 Endforce, Inc. (A Delaware Corporation) Selection and storage of policies in network management
US7882152B2 (en) 2001-08-14 2011-02-01 Sophos Plc Selection and storage of policies in network management
US20070016591A1 (en) * 2001-08-14 2007-01-18 Endforce, Inc. Selection and storage of policies in network management
US7149738B2 (en) * 2002-12-16 2006-12-12 International Business Machines Corporation Resource and data administration technologies for IT non-experts
US20040117407A1 (en) * 2002-12-16 2004-06-17 Manoj Kumar Resource and data administration technologies for IT non-experts
US20050021349A1 (en) * 2003-07-23 2005-01-27 International Business Machines Corporation Method and system for providing a computing resource service
WO2005094013A1 (en) * 2004-03-25 2005-10-06 Siemens Aktiengesellschaft Method for balancing status information for a network device between a policy decision point and a policy enforcement point
US9286489B1 (en) * 2004-05-28 2016-03-15 Amdocs Software Systems Limited Policy configuration user interface
US10284571B2 (en) * 2004-06-28 2019-05-07 Riverbed Technology, Inc. Rule based alerting in anomaly detection
US20050289219A1 (en) * 2004-06-28 2005-12-29 Nazzal Robert N Rule based alerting in anomaly detection
US20060036730A1 (en) * 2004-08-06 2006-02-16 Richard Graham System and method for address block enhanced dynamic network policy management
US7945945B2 (en) * 2004-08-06 2011-05-17 Enterasys Networks, Inc. System and method for address block enhanced dynamic network policy management
US8161278B2 (en) 2005-03-15 2012-04-17 Trapeze Networks, Inc. System and method for distributing keys in a wireless network
US8635444B2 (en) 2005-03-15 2014-01-21 Trapeze Networks, Inc. System and method for distributing keys in a wireless network
US20060248331A1 (en) * 2005-03-15 2006-11-02 Dan Harkins System and method for distributing keys in a wireless network
US20090293106A1 (en) * 2005-03-31 2009-11-26 Trapeze Networks, Inc. Method and apparatus for controlling wireless network access privileges based on wireless client location
US8270408B2 (en) 2005-10-13 2012-09-18 Trapeze Networks, Inc. Identity-based networking
US8514827B2 (en) 2005-10-13 2013-08-20 Trapeze Networks, Inc. System and network for wireless network monitoring
US20070086378A1 (en) * 2005-10-13 2007-04-19 Matta Sudheer P C System and method for wireless network monitoring
US8116275B2 (en) 2005-10-13 2012-02-14 Trapeze Networks, Inc. System and network for wireless network monitoring
US20070086398A1 (en) * 2005-10-13 2007-04-19 Manish Tiwari Identity-based networking
US20070086397A1 (en) * 2005-10-13 2007-04-19 Ron Taylor System and method for remote monitoring in a wireless network
US7724703B2 (en) 2005-10-13 2010-05-25 Belden, Inc. System and method for wireless network monitoring
US8218449B2 (en) 2005-10-13 2012-07-10 Trapeze Networks, Inc. System and method for remote monitoring in a wireless network
US8457031B2 (en) 2005-10-13 2013-06-04 Trapeze Networks, Inc. System and method for reliable multicast
US8638762B2 (en) 2005-10-13 2014-01-28 Trapeze Networks, Inc. System and method for network integrity
US20070106722A1 (en) * 2005-10-27 2007-05-10 Zeldin Paul E Non-persistent and persistent information setting method and system for inter-process communication
US20070106778A1 (en) * 2005-10-27 2007-05-10 Zeldin Paul E Information and status and statistics messaging method and system for inter-process communication
US8250587B2 (en) 2005-10-27 2012-08-21 Trapeze Networks, Inc. Non-persistent and persistent information setting method and system for inter-process communication
US20070124433A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Network supporting centralized management of QoS policies
US7979549B2 (en) 2005-11-30 2011-07-12 Microsoft Corporation Network supporting centralized management of QoS policies
US20070124485A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Computer system implementing quality of service policy
US8170021B2 (en) 2006-01-06 2012-05-01 Microsoft Corporation Selectively enabled quality of service policy
US9112765B2 (en) 2006-01-06 2015-08-18 Microsoft Technology Licensing, Llc Selectively enabled quality of service policy
US20070160079A1 (en) * 2006-01-06 2007-07-12 Microsoft Corporation Selectively enabled quality of service policy
US9559957B2 (en) 2006-01-31 2017-01-31 Microsoft Technology Licensing, Llc Preventing quality of service policy abuse in a network
US8116317B2 (en) * 2006-01-31 2012-02-14 Microsoft Corporation Preventing quality of service policy abuse in a network
US20070177610A1 (en) * 2006-01-31 2007-08-02 Microsoft Corporation Preventing Quality Of Service Policy Abuse In A Network
US20070258448A1 (en) * 2006-05-03 2007-11-08 Hu Tyng J A System and method for restricting network access using forwarding databases
US8964747B2 (en) 2006-05-03 2015-02-24 Trapeze Networks, Inc. System and method for restricting network access using forwarding databases
US20070260720A1 (en) * 2006-05-03 2007-11-08 Morain Gary E Mobility domain
US20070268506A1 (en) * 2006-05-19 2007-11-22 Paul Zeldin Autonomous auto-configuring wireless network device
US20070268514A1 (en) * 2006-05-19 2007-11-22 Paul Zeldin Method and business model for automated configuration and deployment of a wireless network in a facility without network administrator intervention
US8966018B2 (en) 2006-05-19 2015-02-24 Trapeze Networks, Inc. Automated network device configuration and network deployment
US20070268516A1 (en) * 2006-05-19 2007-11-22 Jamsheed Bugwadia Automated policy-based network device configuration and network deployment
US20070268515A1 (en) * 2006-05-19 2007-11-22 Yun Freund System and method for automatic configuration of remote network switch and connected access point devices
US20070281711A1 (en) * 2006-06-01 2007-12-06 Sudheer Poorna Chandra Matta Wireless load balancing across bands
US9258702B2 (en) 2006-06-09 2016-02-09 Trapeze Networks, Inc. AP-local dynamic switching
US8818322B2 (en) 2006-06-09 2014-08-26 Trapeze Networks, Inc. Untethered access point mesh system and method
US10798650B2 (en) 2006-06-09 2020-10-06 Trapeze Networks, Inc. AP-local dynamic switching
US10638304B2 (en) 2006-06-09 2020-04-28 Trapeze Networks, Inc. Sharing data between wireless switches system and method
US11758398B2 (en) 2006-06-09 2023-09-12 Juniper Networks, Inc. Untethered access point mesh system and method
US9191799B2 (en) 2006-06-09 2015-11-17 Juniper Networks, Inc. Sharing data between wireless switches system and method
US10327202B2 (en) 2006-06-09 2019-06-18 Trapeze Networks, Inc. AP-local dynamic switching
US10834585B2 (en) 2006-06-09 2020-11-10 Trapeze Networks, Inc. Untethered access point mesh system and method
US11627461B2 (en) 2006-06-09 2023-04-11 Juniper Networks, Inc. AP-local dynamic switching
US9838942B2 (en) 2006-06-09 2017-12-05 Trapeze Networks, Inc. AP-local dynamic switching
US7912982B2 (en) 2006-06-09 2011-03-22 Trapeze Networks, Inc. Wireless routing selection system and method
US11432147B2 (en) 2006-06-09 2022-08-30 Trapeze Networks, Inc. Untethered access point mesh system and method
US20100103059A1 (en) * 2006-06-12 2010-04-29 Trapeze Networks, Inc. Tuned directional antennas
US7844298B2 (en) 2006-06-12 2010-11-30 Belden Inc. Tuned directional antennas
US20100113098A1 (en) * 2006-06-12 2010-05-06 Trapeze Networks, Inc. Tuned directional antennas
US7865213B2 (en) 2006-06-12 2011-01-04 Trapeze Networks, Inc. Tuned directional antennas
US8581790B2 (en) 2006-06-12 2013-11-12 Trapeze Networks, Inc. Tuned directional antennas
US20070287500A1 (en) * 2006-06-12 2007-12-13 Philip Riley Tuned directional antennas
US7724704B2 (en) 2006-07-17 2010-05-25 Beiden Inc. Wireless VLAN system and method
US8340110B2 (en) * 2006-09-15 2012-12-25 Trapeze Networks, Inc. Quality of service provisioning for wireless networks
EP2070344A4 (en) * 2006-09-15 2013-11-13 Trapeze Networks Inc Quality of service provisioning for wireless networks
WO2008033321A3 (en) * 2006-09-15 2008-07-03 Trapeze Networks Inc Quality of service provisioning for wireless networks
EP2070344A2 (en) * 2006-09-15 2009-06-17 Trapeze Networks, Inc. Quality of service provisioning for wireless networks
EP3565306A1 (en) * 2006-09-15 2019-11-06 Trapeze Networks, Inc. Quality of service provisioning for wireless networks
US8072952B2 (en) 2006-10-16 2011-12-06 Juniper Networks, Inc. Load balancing
US8446890B2 (en) 2006-10-16 2013-05-21 Juniper Networks, Inc. Load balancing
US20080107077A1 (en) * 2006-11-03 2008-05-08 James Murphy Subnet mobility supporting wireless handoff
US20110191460A1 (en) * 2006-11-14 2011-08-04 Francoise Sailhan System and a Method Relating to Network Management
US20080151844A1 (en) * 2006-12-20 2008-06-26 Manish Tiwari Wireless access point authentication system and method
US7865713B2 (en) 2006-12-28 2011-01-04 Trapeze Networks, Inc. Application-aware wireless network system and method
US20080159319A1 (en) * 2006-12-28 2008-07-03 Matthew Stuart Gast System and method for aggregation and queuing in a wireless network
US8670383B2 (en) 2006-12-28 2014-03-11 Trapeze Networks, Inc. System and method for aggregation and queuing in a wireless network
US7873061B2 (en) 2006-12-28 2011-01-18 Trapeze Networks, Inc. System and method for aggregation and queuing in a wireless network
US8902904B2 (en) 2007-09-07 2014-12-02 Trapeze Networks, Inc. Network assignment based on priority
US8509128B2 (en) 2007-09-18 2013-08-13 Trapeze Networks, Inc. High level instruction convergence function
US8238942B2 (en) 2007-11-21 2012-08-07 Trapeze Networks, Inc. Wireless station location detection
US8150357B2 (en) 2008-03-28 2012-04-03 Trapeze Networks, Inc. Smoothing filter for irregular update intervals
US8474023B2 (en) 2008-05-30 2013-06-25 Juniper Networks, Inc. Proactive credential caching
US8978105B2 (en) 2008-07-25 2015-03-10 Trapeze Networks, Inc. Affirming network relationships and resource access via related networks
US8238298B2 (en) 2008-08-29 2012-08-07 Trapeze Networks, Inc. Picking an optimal channel for an access point in a wireless network
US20100157981A1 (en) * 2008-12-23 2010-06-24 Jeffrey William Dawson Differentiated priority level communication
US10135942B2 (en) * 2008-12-23 2018-11-20 Bce Inc. Differentiated priority level communication
US20140052858A1 (en) * 2011-04-22 2014-02-20 Nec Corporation Policy description assistance system and policy description assistance method
US9819555B2 (en) * 2011-04-22 2017-11-14 Nec Corporation Policy description assistance system and policy description assistance method
US9015790B2 (en) * 2011-07-20 2015-04-21 Red Hat, Inc. Integrating sudo rules with entities represented in an LDAP directory
US20150058896A1 (en) * 2012-04-13 2015-02-26 Sony Computer Entertaiment Inc. Information processing system and media server
US9800512B2 (en) * 2012-08-01 2017-10-24 Telefonaktiebolaget Lm Ericsson (Publ) Method and system for prioritising traffic flows
US20150304228A1 (en) * 2012-08-01 2015-10-22 Telefonaktiebolaget L M Ericsson (Publ) Method and system for prioritising traffic flows
US20140244820A1 (en) * 2013-02-27 2014-08-28 Huawei Technologies Co., Ltd. Rule Set Orchestration Processing Method and Apparatus, and Cluster Data System
US9515886B2 (en) * 2013-02-27 2016-12-06 Huawei Technologies Co., Ltd. Rule set orchestration processing method and apparatus, and cluster data system
US20160041956A1 (en) * 2013-04-18 2016-02-11 Huawei Technologies Co., Ltd. Quality of service control method, application server, and terminal
US20150295787A1 (en) * 2014-04-14 2015-10-15 Verizon Patent And Licensing Inc. Quality of service optimization management tool
US9219658B2 (en) * 2014-04-14 2015-12-22 Verizon Patent And Licensing Inc. Quality of service optimization management tool
US10931636B2 (en) * 2017-03-23 2021-02-23 Pismo Labs Technology Limited Method and system for restricting transmission of data traffic for devices with networking capabilities
US11722458B2 (en) 2017-03-23 2023-08-08 Pismo Labs Technology Limited Method and system for restricting transmission of data traffic for devices with networking capabilities

Also Published As

Publication number Publication date
US20110158092A1 (en) 2011-06-30
EP1311083A3 (en) 2004-01-28
US20060168203A1 (en) 2006-07-27
EP1311083A2 (en) 2003-05-14
US20130034093A1 (en) 2013-02-07
US7930376B2 (en) 2011-04-19
US8316144B2 (en) 2012-11-20
US9118694B2 (en) 2015-08-25

Similar Documents

Publication Publication Date Title
US7930376B2 (en) Policy rule management for QoS provisioning
US7191229B2 (en) System and method for providing a customer controlled network
US8279874B1 (en) Self-configuring network
US9608883B2 (en) Network classification
US7941506B2 (en) User interface for network discovery operations
US11388098B2 (en) Method of providing network slice packet flow descriptors to a session management function in a telecommunication network
US7477600B1 (en) Method and apparatus for configuring network elements to support real time applications based on meta-templates
US8817664B2 (en) Network edge switch configuration based on connection profile
Stevens et al. Policy‐based management for IP networks
US7333432B1 (en) Method and apparatus for configuring network elements to support real time applications
US9147172B2 (en) Source configuration based on connection profile
US20100257262A1 (en) Apparatus and method for supporting plurality of device management authorities
US20050125516A1 (en) Method and apparatus for managing configuration of a network
Cisco Working with Policy Statements
Cisco Setting Up the MPLS VPN Environment
Cisco Getting Started with QPM
Cisco Getting Started with QPM-PRO
US11540139B2 (en) Adaptive network slicing via overlaying decomposition and inheritance
Cisco Getting Started with the MPLS VPN Solutions Center
WO2020009014A1 (en) Management device and network management method
US7212533B2 (en) Method of managing a telecommunication network and a network management unit for implementing the method
EP4236237A1 (en) 5g slice subnet templates for network slice provisioning
EP4207703A1 (en) Communication services ordering and provisioning
KR101001755B1 (en) Method of framing policy for a differentiated services
Ok et al. The design of service management system based on policy-based network management

Legal Events

Date Code Title Description
AS Assignment

Owner name: ALCATEL INTERNETWORKING, INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:HANSON, RAYMOND;REEL/FRAME:013668/0933

Effective date: 20030110

Owner name: ALCATEL INTERNETWORKING, INC., CALIFORNIA

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:LEVILLAIN, PHILLIPPE;HELMERICH, LAWRENCE;REEL/FRAME:013668/0937

Effective date: 20030110

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION

AS Assignment

Owner name: ALCATEL-LUCENT USA INC., NEW JERSEY

Free format text: MERGER;ASSIGNOR:ALCATEL USA MARKETING, INC.;REEL/FRAME:029174/0814

Effective date: 20081101

Owner name: ALCATEL USA MARKETING, INC., TEXAS

Free format text: MERGER;ASSIGNOR:ALCATEL INTERNETWORKING, INC.;REEL/FRAME:029174/0706

Effective date: 20070101