首页> 外国专利> Determining violation of a network invariant

Determining violation of a network invariant

机译：确定违反网络不变的行为

页面导航

摘要
著录项
相似文献

摘要

Example implementations relate to determining whether network invariants are violated by flow rules to be implemented by the data plane of a network. In an example, a verification module implemented on a device receives a flow rule transmitted from an SDN controller to a switch, the flow rule relating to an event. The module determines whether the flow rule matches any of a plurality of network invariants cached in the device. If determined that the flow rule matches one of the plurality of network invariants, the verification module determines whether the flow rule violates the matched network invariant. If determined that the flow rule does not match any of the plurality of network invariants, the verification module (1) reports the event associated with the flow rule to a policy management module, (2) receives a new network invariant related to the event from the policy management module, and (3) determines whether the flow rule violates the new network invariant. The verification module generates an alarm if determined that the flow rule violates any of the network invariants.

机译：示例实现涉及确定是否通过网络的数据平面实现的流规则违反网络不变。在一个示例中，在设备上实现的验证模块接收从SDN控制器发送到交换机的流程规则，与事件有关的流程规则。该模块确定流量规则是否与设备中高速缓存的多个网络不变中的任何一个匹配。如果确定流程规则与多个网络不变之一匹配，则验证模块确定流量规则是否违反匹配的网络不变。如果确定流量规则与多个网络不变的任何中的任何一个不匹配，则验证模块（1）将与流规则相关联的事件报告给策略管理模块（2）接收与该事件相关的新网络不变性策略管理模块和（3）确定流规则是否违反了新的网络不变。如果确定流量规则违反任何网络不变性，则验证模块会生成警报。

著录项

公开/公告号US11095518B2

专利类型
公开/公告日2021-08-17

原文格式PDF
申请/专利权人 HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP;
展开▼

申请/专利号US201916721274
发明设计人 YING ZHANG;JEONGKEUN LEE;PUNEET SHARMA;JOON-MYUNG KANG;
展开▼

申请日2019-12-19
分类号H04L12/26;H04L12/46;H04L12/801;H04L12/24;H04L12/813;H04L12/851;H04L12/715;H04L12/721;
国家 US
入库时间 2022-08-24 20:37:08

相似文献

专利
外文文献
中文文献