公开(公告)号：US09036643B2

公开(公告)日：2015-05-19

申请号：US13943291

申请日：2013-07-16

Applicant: Broadcom Corporation

Inventor： Shiri Kadambi ,  Shekhar Ambe ,  Mohan Kalkunte ,  Sandeep Relan ,  Allan Christie ,  Uri Elzur ,  Martin Lund ,  Daniel Talayco

IPC: H04L12/28 ,  H04L12/851 ,  H04L12/721 ,  H04L12/46 ,  H04L12/54 ,  H04L29/06 ,  H04L12/801 ,  H04L12/825 ,  H04L12/835 ,  H04L12/863 ,  H04L12/861 ,  H04L12/931 ,  H04L12/935

CPC classification number: H04L47/2433 ,  H04L12/4641 ,  H04L29/06 ,  H04L45/66 ,  H04L47/10 ,  H04L47/11 ,  H04L47/16 ,  H04L47/18 ,  H04L47/24 ,  H04L47/2441 ,  H04L47/266 ,  H04L47/29 ,  H04L47/30 ,  H04L47/33 ,  H04L47/50 ,  H04L47/6205 ,  H04L47/6215 ,  H04L47/6225 ,  H04L49/205 ,  H04L49/3018 ,  H04L49/351 ,  H04L49/50 ,  H04L49/508 ,  H04L49/90 ,  Y02D50/10

Abstract: A method for establishing a virtual channel between network devices is disclosed. In the case of a local network device establishing a virtual channel with a remote network device, a virtual channel request message is sent from the local network device to the remote network device. A virtual channel acknowledgement message and a remote capability list are received and a virtual channel resume message and a local capability list are sent. The virtual channel is then enabled. In the case of a remote network device establishing a virtual channel with a local network device, a virtual channel request message is received from a local network device by a remote network device. A virtual channel acknowledgement message and a remote capability list are sent and a virtual channel resume message and a local capability list are received. The virtual channel is then enabled.

Abstract translation: 公开了一种在网络设备之间建立虚拟通道的方法。 在本地网络设备与远程网络设备建立虚拟信道的情况下，虚拟信道请求消息从本地网络设备发送到远程网络设备。 接收到虚拟信道确认消息和远程能力列表，并且发送虚拟信道恢复消息和本地能力列表。 然后启用虚拟通道。 在远程网络设备与本地网络设备建立虚拟信道的情况下，由远程网络设备从本地网络设备接收虚拟信道请求消息。 发送虚拟信道确认消息和远程能力列表，并且接收虚拟信道恢复消息和本地能力列表。 然后启用虚拟通道。

公开(公告)号：US20130301410A1

公开(公告)日：2013-11-14

申请号：US13943291

申请日：2013-07-16

Applicant: Broadcom Corporation

Inventor： Shiri Kadambi ,  Shekhar Ambe ,  Mohan Kalkunte ,  Sandeep Relan ,  Allan Christie ,  Uri Elzur ,  Martin Lund ,  Daniel Talayco

IPC: H04L12/851

CPC classification number: H04L47/2433 ,  H04L12/4641 ,  H04L29/06 ,  H04L45/66 ,  H04L47/10 ,  H04L47/11 ,  H04L47/16 ,  H04L47/18 ,  H04L47/24 ,  H04L47/2441 ,  H04L47/266 ,  H04L47/29 ,  H04L47/30 ,  H04L47/33 ,  H04L47/50 ,  H04L47/6205 ,  H04L47/6215 ,  H04L47/6225 ,  H04L49/205 ,  H04L49/3018 ,  H04L49/351 ,  H04L49/50 ,  H04L49/508 ,  H04L49/90 ,  Y02D50/10

Abstract: A method for establishing a virtual channel between network devices is disclosed. In the case of a local network device establishing a virtual channel with a remote network device, a virtual channel request message is sent from the local network device to the remote network device. A virtual channel acknowledgement message and a remote capability list are received and a virtual channel resume message and a local capability list are sent. The virtual channel is then enabled. In the case of a remote network device establishing a virtual channel with a local network device, a virtual channel request message is received from a local network device by a remote network device. A virtual channel acknowledgement message and a remote capability list are sent and a virtual channel resume message and a local capability list are received. The virtual channel is then enabled.

Abstract translation: 公开了一种在网络设备之间建立虚拟通道的方法。 在本地网络设备与远程网络设备建立虚拟信道的情况下，虚拟信道请求消息从本地网络设备发送到远程网络设备。 接收到虚拟信道确认消息和远程能力列表，并且发送虚拟信道恢复消息和本地能力列表。 然后启用虚拟通道。 在远程网络设备与本地网络设备建立虚拟信道的情况下，由远程网络设备从本地网络设备接收虚拟信道请求消息。 发送虚拟信道确认消息和远程能力列表，并且接收虚拟信道恢复消息和本地能力列表。 然后启用虚拟通道。

公开(公告)号：US09185097B2

公开(公告)日：2015-11-10

申请号：US13858266

申请日：2013-04-08

Applicant: Broadcom Corporation

Inventor： Uri Elzur

IPC: H04L29/06 ,  H04L9/08 ,  H04L9/32

CPC classification number: H04L63/0485 ,  H04L9/083 ,  H04L9/321 ,  H04L9/3215 ,  H04L9/3263 ,  H04L63/062 ,  H04L63/08 ,  H04L63/0823 ,  H04L63/164 ,  H04L2209/76 ,  H04L2209/80

Abstract: Aspects of a method and system for traffic engineering in an IPSec secured network are provided. In this regard, a node in a network may be authenticated as a trusted third party and that trusted third party may be enabled to acquire security information shared between or among a plurality of network entities. In this manner, the trusted third party may parse, access and operate on IPSec encrypted traffic communicated between or among the plurality of network entities. Shared security information may comprise one or more session keys utilized for encrypting and/or decrypting the IPSec secured traffic. The node may parse IPSec traffic and identify a flow associated with the IPsec traffic. In this manner, the node may generate and/or communicate statistics pertaining to said IPSec secured traffic based on the flow with which the traffic is associated.

Abstract translation: 提供了IPSec安全网络中流量工程方法和系统的方面。 在这方面，网络中的节点可以被认证为可信赖的第三方，并且可信第三方可以使得能够获取在多个网络实体之间或之间共享的安全信息。 以这种方式，可信任的第三方可以解析，访问和操作在多个网络实体之间或之间通信的IPSec加密流量。 共享安全信息可以包括用于加密和/或解密IPSec安全业务的一个或多个会话密钥。 节点可以解析IPSec流量并识别与IPsec流量相关联的流。 以这种方式，节点可以基于与流量相关联的流量来生成和/或传送与所述IPSec安全业务有关的统计信息。

公开(公告)号：US09088451B2

公开(公告)日：2015-07-21

申请号：US14153206

申请日：2014-01-13

Applicant: Broadcom Corporation

Inventor： Uri Elzur ,  Frankie Fan ,  Steven B. Lindsay ,  Scott McDaniel

IPC: G06F15/16 ,  H04L29/06 ,  G06F13/10 ,  G06F13/40

CPC classification number: H04L29/06095 ,  G06F13/102 ,  G06F13/4027 ,  G06F2213/0024 ,  H04L69/161 ,  H04L69/163 ,  H04L69/18 ,  H04L69/22

Abstract: Systems and methods that network interface in a multiple network environment are provided. In one embodiment, the system includes, for example, a network connector, a processor, a peripheral component interface (PCI) bridge and a unified driver. The processor may be coupled to the network connector and to the PCI bridge. The processor may be adapted, for example, to process a plurality of different types of network traffic. The unified driver may be coupled to the PCI bridge and may be adapted to provide drivers associated with the plurality of different types of network traffic.

Abstract translation: 提供了多网络环境中的网络接口的系统和方法。 在一个实施例中，系统包括例如网络连接器，处理器，外围组件接口（PCI）桥和统一驱动器。 处理器可以耦合到网络连接器和PCI桥。 处理器可以适应于例如处理多种不同类型的网络业务。 统一驱动器可以耦合到PCI桥，并且可以适于提供与多个不同类型的网络业务相关联的驱动器。

公开(公告)号：US08958440B2

公开(公告)日：2015-02-17

申请号：US13903454

申请日：2013-05-28

Applicant: Broadcom Corporation

Inventor： Uri Elzur

IPC: H04J3/16 ,  H04L29/06

CPC classification number: H04L29/06217 ,  H04L69/16 ,  H04L69/161 ,  H04L69/166 ,  H04L69/22

Abstract: Systems and methods that identify the Upper Layer Protocol (ULP) message boundaries are provided. In one example, a method that identifies ULP message boundaries is provided. The method may include one or more of the following steps: attaching a framing header of a frame to a data payload to form a packet, the framing header being placed immediately after the byte stream transport protocol header, the framing header comprising a length field comprising a length of a framing protocol data unit (PDU); and inserting a marker in the packet, the marker pointing backwards to the framing header and being inserted at a preset interval.

公开(公告)号：US08914506B2

公开(公告)日：2014-12-16

申请号：US13939793

申请日：2013-07-11

Applicant: Broadcom Corporation

Inventor： Hemal Shah ,  Uri Elzur ,  Patricia Ann Thaler

IPC: G06F15/173 ,  H04L12/46 ,  H04L12/26 ,  H04L12/12

CPC classification number: H04L43/10 ,  H04L12/12 ,  H04L12/4625 ,  Y02D50/40 ,  Y02D50/42

Abstract: Certain aspects of a method and system for managing network power policy and configuration of data center bridging may include a network domain that comprises a single logical point of management (LPM) that coordinates operation of one or more devices, such as network interface controllers (NICs), switches, and/or servers in the network domain: The single LPM may be operable to manage one or both of a network power policy and/or a data center bridging (DCB) configuration policy for the network domain.

Abstract translation: 用于管理网络功率策略和数据中心桥接配置的方法和系统的某些方面可以包括网络域，其包括一个逻辑管理点（LPM），其协调一个或多个设备的操作，诸如网络接口控制器 ），交换机和/或服务器：单个LPM可以用于管理网络域的网络功率策略和/或数据中心桥接（DCB）配置策略中的一个或两个。

公开(公告)号：US20130297787A1

公开(公告)日：2013-11-07

申请号：US13939793

申请日：2013-07-11

Applicant: Broadcom Corporation

Inventor： Hemal Shah ,  Uri Elzur ,  Patricia Ann Thaler

IPC: H04L12/26

CPC classification number: H04L43/10 ,  H04L12/12 ,  H04L12/4625 ,  Y02D50/40 ,  Y02D50/42

Abstract: Certain aspects of a method and system for managing network power policy and configuration of data center bridging may include a network domain that comprises a single logical point of management (LPM) that coordinates operation of one or more devices, such as network interface controllers (NICs), switches, and/or servers in the network domain: The single LPM may be operable to manage one or both of a network power policy and/or a data center bridging (DCB) configuration policy for the network domain.

Abstract translation: 用于管理网络功率策略和数据中心桥接配置的方法和系统的某些方面可以包括网络域，其包括一个逻辑管理点（LPM），其协调一个或多个设备的操作，诸如网络接口控制器 ），交换机和/或服务器：单个LPM可以用于管理网络域的网络功率策略和/或数据中心桥接（DCB）配置策略中的一个或两个。

公开(公告)号：US20130262607A1

公开(公告)日：2013-10-03

申请号：US13903454

申请日：2013-05-28

Applicant: Broadcom Corporation

Inventor： Uri Elzur

IPC: H04L29/06

CPC classification number: H04L29/06217 ,  H04L69/16 ,  H04L69/161 ,  H04L69/166 ,  H04L69/22

Abstract: Systems and methods that identify the Upper Layer Protocol (ULP) message boundaries are provided. In one example, a method that identifies ULP message boundaries is provided. The method may include one or more of the following steps: attaching a framing header of a frame to a data payload to form a packet, the framing header being placed immediately after the byte stream transport protocol header, the framing header comprising a length field comprising a length of a framing protocol data unit (PDU); and inserting a marker in the packet, the marker pointing backwards to the framing header and being inserted at a preset interval.

Abstract translation: 提供了识别上层协议（ULP）消息边界的系统和方法。 在一个示例中，提供了识别ULP消息边界的方法。 该方法可以包括以下步骤中的一个或多个：将帧的成帧报头附加到数据有效载荷以形成分组，所述成帧报头位于所述字节流传输协议报头之后，所述成帧报头包括长度字段，所述长度字段包括 成帧协议数据单元（PDU）的长度; 并且在标签中插入一个标记，该标记指向成帧标题并以预设的间隔插入。

公开(公告)号：US20130227669A1

公开(公告)日：2013-08-29

申请号：US13858266

申请日：2013-04-08

Applicant: Broadcom Corporation

Inventor： Uri Elzur

IPC: H04L29/06

CPC classification number: H04L63/0485 ,  H04L9/083 ,  H04L9/321 ,  H04L9/3215 ,  H04L9/3263 ,  H04L63/062 ,  H04L63/08 ,  H04L63/0823 ,  H04L63/164 ,  H04L2209/76 ,  H04L2209/80

Abstract: Aspects of a method and system for traffic engineering in an IPSec secured network are provided. In this regard, a node in a network may be authenticated as a trusted third party and that trusted third party may be enabled to acquire security information shared between or among a plurality of network entities. In this manner, the trusted third party may parse, access and operate on IPSec encrypted traffic communicated between or among the plurality of network entities. Shared security information may comprise one or more session keys utilized for encrypting and/or decrypting the IPSec secured traffic. The node may parse IPSec traffic and identify a flow associated with the IPsec traffic. In this manner, the node may generate and/or communicate statistics pertaining to said IPSec secured traffic based on the flow with which the traffic is associated.

Abstract translation: 提供了IPSec安全网络中流量工程方法和系统的方面。 在这方面，网络中的节点可以被认证为可信赖的第三方，并且可信第三方可以使得能够获取在多个网络实体之间或之间共享的安全信息。 以这种方式，可信任的第三方可以解析，访问和操作在多个网络实体之间或之间通信的IPSec加密流量。 共享安全信息可以包括用于加密和/或解密IPSec安全业务的一个或多个会话密钥。 节点可以解析IPSec流量并识别与IPsec流量相关联的流。 以这种方式，节点可以基于与流量相关联的流量来生成和/或传送与所述IPSec安全业务有关的统计信息。

公开(公告)号：US20130174157A1

公开(公告)日：2013-07-04

申请号：US13775914

申请日：2013-02-25

Applicant: Broadcom Corporation

Inventor： Uri Elzur

IPC: G06F9/455

CPC classification number: G06F9/455 ,  H04L41/0213 ,  H04L41/0803 ,  H04L45/586 ,  H04L49/15 ,  H04L49/70 ,  Y02D30/30

Abstract: Aspects of a method and system for networking are provided. In this regard, one or more circuits and/or processors in a network adapter of a first network device may determine whether to communicate traffic between virtual machines running on the first network device via a path that resides solely within the first network device, or via a path that comprises a second network device that is external to the first network device. The determination may be based, at least in part, on characteristics of the traffic. The determination may be based, at least in part, on capabilities and/or available resources of the network adapter. The determination may be based, at least in part, on management information exchanged between the one or more circuits and/or processors and one or more of: software running on the first network device, the second network device, and a third network device.

Abstract translation: 提供了网络方法和系统的方面。 在这方面，第一网络设备的网络适配器中的一个或多个电路和/或处理器可以确定是否经由仅在第一网络设备内的路径，或者经由 包括在第一网络设备外部的第二网络设备的路径。 该决定可以至少部分地基于业务的特征。 该确定可以至少部分地基于网络适配器的能力和/或可用资源。 该确定可以至少部分地基于在一个或多个电路和/或处理器之间交换的管理信息以及在第一网络设备，第二网络设备和第三网络设备上运行的软件中的一个或多个。