Method and apparatus for registering auto-configured network addresses based on connection authentication
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
G06F-007/04
G06F-015/16
G06F-017/30
H04L-029/06
출원번호
UP-0603692
(2006-11-21)
등록번호
US-7752653
(2010-07-26)
발명자
/ 주소
Droms, Ralph
Schnizlein, John M.
출원인 / 주소
Cisco Technology, Inc.
대리인 / 주소
Hickman Palermo Truong & Becker LLP
인용정보
피인용 횟수 :
2인용 특허 :
76
초록▼
A method and apparatus for registering auto-configured network addresses includes receiving first data at a networking device connected to a host at a physical connection. The first data is received from a first server and indicates authentication information associated with the host. A first messag
A method and apparatus for registering auto-configured network addresses includes receiving first data at a networking device connected to a host at a physical connection. The first data is received from a first server and indicates authentication information associated with the host. A first message is received at the networking device from the host. The first message requests configuration information and includes a logical network address for the host determined at least in part by the host. A second message is generated based on the first message and the first data. The second message is sent to a second server that registers the host by associating the logical network address with the first data.
대표청구항▼
What is claimed is: 1. An apparatus for registering auto-configured network addresses, comprising: a network interface that is configured to be coupled to a data network for receiving therefrom, and sending thereto, one or more packet flows; a physical connection that is configured to be coupled to
What is claimed is: 1. An apparatus for registering auto-configured network addresses, comprising: a network interface that is configured to be coupled to a data network for receiving therefrom, and sending thereto, one or more packet flows; a physical connection that is configured to be coupled to a host; one or more processors; one or more stored sequences of instructions which, when executed by the one or more processors, cause the one or more processors to carry out the steps of: receiving, from a first server, first data indicating at least some authentication information associated with the host; receiving, from the host, a first message requesting configuration information, the first message including a logical network address for the host determined at least in part by the host; generating a second message based on the first message and the first data; and sending the second message to a second, dynamic host control protocol (DHCP) server that registers the host by associating the logical network address with the first data; wherein the first server provides authentication and authorization in response to a request for authentication for the physical connection. 2. The apparatus of claim 1, wherein: an authenticator process sends the request for authentication and performs receiving the first data; a DHCP relay agent process for the second server performs receiving the first message and sending the second message; and generating the second message further comprises sending a third message from the authenticator process to the relay agent process based on the first data. 3. The apparatus of claim 2, wherein the instructions for generating the second message further comprise instructions for storing second data based on the first data by the authenticator process and instructions for retrieving the second data by the relay agent process in response to the step of receiving the first message. 4. The apparatus of claim 1, wherein the instructions for generating the second message operate according to dynamic host configuration protocol (DHCP). 5. The apparatus of claim 1, wherein the first data includes user class data indicating a particular group of one or more authorized users of the host; and the instructions for generating the second message perform generating the second message based on the user class data. 6. The apparatus of claim 1, wherein the first data includes credential data indicating authentication is performed by the first server; and the instructions for generating the second message perform generating the second message based on the credential data. 7. The apparatus of claim 1, wherein the first data includes a user identification that indicates a particular user; and the instructions for generating the second message perform generating the second message based on the user identification. 8. The apparatus of claim 1, further comprising instructions which, when executed by the one or more processors, cause the one or more processors to perform: enabling the physical connection to forward subsequent messages between the host and a network connected to the intermediate device based on the first data; storing the first data at least until a third request is received from the host for configuration information for the host, the third request including a logical network address for the host determined at least in part by the host, for associating the first data with the logical network address. 9. The apparatus of claim 1, wherein the first server is an authentication, authorization and accounting server. 10. The apparatus of claim 1, wherein the first server is a RADIUS (Remote Access Dial-In User Service) protocol server. 11. The apparatus of claim 1, wherein the physical connection comprises an Ethernet interface card on the networking device. 12. The apparatus of claim 1, wherein the physical connection comprises a wireless Ethernet encryption key and time slot. 13. The apparatus of claim 1, wherein receiving the first data is performed according to an Institute of Electrical and Electronics Engineers (IEEE) 802.1x standard. 14. An apparatus for registering auto-configured network addresses, comprising a networking device configured to be coupled to a host, further comprising: one or more processors; means, operatively coupled to the one or more processors, for receiving, from a first server, first data indicating at least some authentication information associated with the host; means, operatively coupled to the one or more processors, for receiving, from the host, a first message requesting configuration information, the first message including a logical network address for the host determined at least in part by the host; means, operatively coupled to the one or more processors, for generating a second message based on the first message and the first data; and means, operatively coupled to the one or more processors, for sending the second message to a second, dynamic host control protocol (DHCP) server that registers the host by associating the logical network address with the first data; wherein the first server provides authentication and authorization in response to a request for authentication for the physical connection. 15. The apparatus of claim 14, wherein: an authenticator process sends the request for authentication and performs receiving the first data; a DHCP relay agent process for the second server performs receiving the first message and sending the second message; and generating the second message further comprises sending a third message from the authenticator process to the relay agent process based on the first data. 16. An apparatus for registering auto-configured network addresses, comprising: a network interface that is configured to be coupled to a data network for receiving therefrom, and sending thereto, one or more packet flows; a physical connection that is configured to be coupled to a host; one or more processors; one or more stored sequences of instructions which, when executed by the one or more processors, cause the one or more processors to carry out the steps of: receiving from a host, a first request for configuration information for the host, the first request including a logical network address for the host determined at least in part by the host; retrieving first data indicating at least one of authentication and authorization information received from a first server in response to a request for authentication of the physical connection; generating a second request based on the first request and the first data; and sending the second request to a second server that registers the host by associating the logical network address with the first data; wherein an authenticator process sends the request for authentication and performs receiving the first data; a DHCP relay agent process for the second server performs receiving the first request and sending the second request; generating the second request further comprises sending a third request from the authenticator process to the relay agent process based on the first data. 17. An apparatus for registering auto-configured network addresses, comprising: a network interface that is configured to be coupled to a data network for receiving therefrom, and sending thereto, one or more packet flows; a physical connection that is configured to be coupled to a host; one or more processors; one or more stored sequences of instructions which, when executed by the one or more processors, cause the one or more processors to carry out the steps of: receiving a request for configuration information for a host, the request including a logical network address for the host determined at least in part by the host, and first data that indicates at least one of authentication and authorization information from a first server in response to a request for authentication for the physical connection; and registering the logical network address by associating the logical network address with the first data; generating a second request based on the first request and the first data; and sending the second request to a second, dynamic host control protocol (DHCP) server that registers the host by associating the logical network address with the first data; wherein the first server provides authentication and authorization in response to a request for authentication for the physical connection. 18. The apparatus of claim 17, further comprising instructions which, when executed by the one or more processors, cause the one or more processors to perform: determining particular configuration information based at least in part on the first data; and sending to the host a message including the particular configuration information. 19. The apparatus of claim 17, wherein the first data includes user class data indicating a particular group of users authorized for a particular set of one or more network services. 20. The apparatus of claim 18, wherein the instructions for determining the particular configuration information further comprise instructions for determining a domain name server for the host based at least in part on the first data. 21. The apparatus of claim 17, further comprising instructions which, when executed by the one or more processors, cause the one or more processors to perform sending data associating the logical network address with the first data to a second server that provides a service to the host based at least in part on the first data. 22. The apparatus of claim 21, wherein the second server provides a service to the host based at least in part on the first data. 23. The apparatus of claim 21, wherein the second server is the same as the first server. 24. An apparatus for registering auto-configured network addresses, comprising: a network interface that is configured to be coupled to a data network for receiving therefrom, and sending thereto, one or more packet flows; a physical connection that is configured to be coupled to a host; one or more processors; one or more stored sequences of instructions which, when executed by the one or more processors, cause the one or more processors to carry out the steps of: receiving a request for configuration information for a host, the request including a logical network address for the host determined at least in part by the host, receiving first data from a first server in response to a request for authentication for the physical connection, the first data indicating at least one of authentication and authorization information; and registering the logical network address by associating the logical network address with the first data; generating a second request based on the first request and the first data; and sending the second request to a second, dynamic host control protocol (DHCP) server that registers the host by associating the logical network address with the first data; wherein the first server provides authentication and authorization in response to a request for authentication for the physical connection. 25. The apparatus of claim 24, further comprising instructions which, when executed by the one or more processors, cause the one or more processors to perform correlating the request and the first data. 26. The apparatus of claim 25, wherein: the request includes a unique identification for the host; the first data includes the unique identification for the host; and wherein the instructions for correlating the first message and the first data is based on the unique identification for the host. 27. The apparatus of claim 26, wherein the unique identification for the host is a media access control address. 28. A method of registering auto-configured network addresses, the method comprising the computer-implemented steps of: receiving, at a networking device connected to a host at a physical connection, from a first server, first data indicating at least some authentication information associated with the host; receiving at the networking device from the host, a first message requesting configuration information, the first message including a logical network address for the host determined at least in part by the host; generating a second message based on the first message and the first data; and sending the second message to a second, dynamic host control protocol (DHCP) server that registers the host by associating the logical network address with the first data; wherein the first server provides authentication and authorization in response to a request for authentication for the physical connection. 29. A method as recited in claim 28, wherein: an authenticator process sends the request for authentication and performs the step of receiving the first data; a relay agent process for the second server performs the steps of receiving the first message and sending the second message; the relay agent process is separate from the authenticator process; and the step of generating the second message further comprises the step of sending a third message, from the authenticator process to the relay agent process, based on the first data.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (76)
Tummala, Rambabu; Mitton, David J.; Akhtar, Haseeb, AAA broker specification and protocol.
Richard W. Cheston ; Daryl Carvis Cromer ; Dhruv Manmohandas Desai ; Brandon Jon Ellison ; Howard Jeffery Locker ; Eric Richard Kern ; David Rhoades ; James Peter Ward, Apparatus and method for automatic configuration of a personal computer system when reconnected to a network.
Saifullah, Yousuf; Patil, Basavaraj; Kularatna, Shavantha; Purnadi, Rene; Faccin, Stefano, Apparatus, and an associated method, by which to provide temporary identifiers to a mobile node involved in a communication handover.
Takeda,Yukiko; Inouchi,Hidenori; Takeuchi,Keisuke; Suzuki,Shinsuke, Communication system, gateway equipment, communication method and authentication method.
Lalwaney Poornima ; Fellows Jonathan A., Dynamic network configuration of a one-way adapter using a proxy agent that communicates with a resource server through a configured return path adapter.
Reid William J., Enterprise network management using directory containing network addresses of users obtained through DHCP to control routers and servers.
Wong Thomas K. ; Lim Swee B. ; Radia Sanjay R. ; Tsirigotis Panagiotis ; Goedman Robert J. ; Patrick Michael W., Method and apparatus for assignment of IP addresses.
Carolan,Sean E.; Garrett,John W.; Kalmanek, Jr.,Charles Robert; Nguyen,Han Q.; Ramakrishnan,Kadangode K., Method and apparatus for coordinating a change in service provider between a client and a server.
Carolan, Sean E.; Garrett, John W.; Kalmanek, Jr., Charles Robert; Nguyen, Han Q.; Ramakrishnan, Kadangode K., Method and apparatus for dynamically displaying brand information in a user interface.
Jain Vipin Kumar ; Nessett Danny M. ; Sherer William Paul, Method and apparatus for providing security in a star network connection using public key cryptography.
Ford Peter S. ; Bahl Pradeep ; Khaki Jawad Mohamed J. ; Burns Greg ; Beeson Frank J., Method and computer program product for automatically generating an internet protocol (IP) address.
Cox Norman Eugene ; Christensen Kenneth J. ; Ervin Jim P. ; Matlack ; Jr. Richard Colbert, Method and system for distributing network routing functions to local area network stations.
Fijolek, John G.; Robinson, Phillip T.; Gilbert, Irene M.; Budinger, Daniel M.; Jain, Narij, Methods and systems for service level agreement enforcement on a data-over cable system.
John G. Fijolek ; Levent Gun ; Ronald B. Lee ; Philip T. Robinson, Methods for restricting access of network devices to subscription services in a data-over-cable system.
Takeda, Yukiko; Inouchi, Hidenori; Oishi, Takumi; Shibata, Haruo, Mobile communication network, terminal equipment, packet communication control method, and gateway.
Shirakihara Toshio,JPX ; Esaki Hiroshi,JPX, Network system supporting network communication among temporarily connected mobile computers and flexible file sharing.
Rodwin Andrew S. ; Wenocur Jonathan H. ; Feinstein Michael G., Remote access apparatus and method which allow dynamic internet protocol (IP) address management.
Hong Kevin ; Damodar Bhat V,INX ; Narasimhan Sundararajan,INX ; Martenson Dale W. ; Sharma Raghu ; Davis Jeffrey P. ; Johnson Gregory R., Remote communications server system.
Kevin Hong ; Bhat V Damodar IN; Sundararajan Narasimhan IN; Dale W. Martenson ; Raghu Sharma ; Jeffrey P. Davis ; Gregory R. Johnson, Remote communications server system.
Bell Jon Anthony ; Britton Edward Glen, Session traffic splitting using virtual internet protocol addresses associated with distinct categories of application p.
Koskiahde,Timo; Lepisto,Mika, Transmission of a binding update message indicating a care of address for delivering data packets to a mobile node via a unidirectional interface.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.