US20040064541A1 - Network system having plural networks for performing quality guarantee among the networks having different policies - Google Patents

Network system having plural networks for performing quality guarantee among the networks having different policies Download PDF

Info

Publication number
US20040064541A1
US20040064541A1 US10/674,534 US67453403A US2004064541A1 US 20040064541 A1 US20040064541 A1 US 20040064541A1 US 67453403 A US67453403 A US 67453403A US 2004064541 A1 US2004064541 A1 US 2004064541A1
Authority
US
United States
Prior art keywords
organization
policy
network
path
resource allocation
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US10/674,534
Inventor
Tomoichi Ebata
Shigeru Miyake
Masatoshi Takihiro
Osamu Takada
Minoru Koizumi
Yoshiyuki Kurosaki
Toshiaki Hirata
Koji Tsukada
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Priority to US10/674,534 priority Critical patent/US20040064541A1/en
Publication of US20040064541A1 publication Critical patent/US20040064541A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/82Miscellaneous aspects
    • H04L47/822Collecting or measuring resource availability data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5003Managing SLA; Interaction between SLA and QoS
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5003Managing SLA; Interaction between SLA and QoS
    • H04L41/5019Ensuring fulfilment of SLA
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/50Network service management, e.g. ensuring proper service fulfilment according to agreements
    • H04L41/5041Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the time relationship between creation and deployment of a service
    • H04L41/5054Automatic deployment of services triggered by the service manager, e.g. service implementation by automatic configuration of network components
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/10Flow control; Congestion control
    • H04L47/15Flow control; Congestion control in relation to multipoint traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/72Admission control; Resource allocation using reservation actions during connection setup
    • H04L47/724Admission control; Resource allocation using reservation actions during connection setup at intermediate nodes, e.g. resource reservation protocol [RSVP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/78Architectures of resource allocation
    • H04L47/781Centralised allocation of resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/78Architectures of resource allocation
    • H04L47/783Distributed allocation of resources, e.g. bandwidth brokers
    • H04L47/785Distributed allocation of resources, e.g. bandwidth brokers among multiple network domains, e.g. multilateral agreements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/80Actions related to the user profile or the type of traffic
    • H04L47/805QOS or priority aware
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/80Actions related to the user profile or the type of traffic
    • H04L47/808User-type aware
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/82Miscellaneous aspects
    • H04L47/826Involving periods of time
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L47/00Traffic control in data switching networks
    • H04L47/70Admission control; Resource allocation
    • H04L47/82Miscellaneous aspects
    • H04L47/828Allocation of resources per group of connections, e.g. per group of users

Definitions

  • the present invention relates to a path quality control technology in a network system comprising a plurality of networks.
  • a quality of service (QoS) control that allocates a bandwidth to each path on the network.
  • QoS control is known to be performed on an end-to-end basis according to the kind of traffic without causing any conflict in the entire network by using a policy server that manages quality control settings of network equipment in an integrated manner at one location.
  • a policy server makes a quality control setting on each network equipment according to a described policy.
  • the policy server is capable of managing at one location in an integrated manner the quality controls of individual paths on the network but within a range of the network managed by that policy server.
  • the policy server-based QoS control cannot be performed on a path that extends over two or more networks.
  • the QoS control may be applied also to the path extending to a plurality of networks in a way that conforms to a predetermined policy.
  • the present invention provides a network system which has a plurality of interconnected networks each having a policy server, the policy server setting a quality guaranteed path in the network according to a policy held in the policy server, the policy server comprising:
  • a policy holding means to hold a policy defining a quality that can be guaranteed in its own network, or local network, for an inter-network communication
  • a policy publicizing means to make public the policy held in the policy holding means to the policy servers of other networks
  • a guaranteed quality calculation means to calculate, from a policy publicized by a policy server of a network on a path between the local network and other network, a quality that can be guaranteed for the path between the local network and the other network;
  • a quality-guaranteed path setting means to provide a quality-guaranteed path, the quality guaranteed path having a guaranteed quality within the quality calculated by the guaranteed quality calculation means for the path between the local network and the other network.
  • This network system can provide a quality-guaranteed path extending to a plurality of networks which has a quality guaranteed by, and not violating, the policies made public by the policy servers of a plurality of networks associated with the quality-guaranteed path to be provided. Therefore, in a network system having a plurality of networks each having a policy server, the QoS control can be performed on a communication extending to a plurality of networks by using the policy servers of the networks.
  • FIG. 1 is a block diagram showing an architecture of a network system
  • FIG. 2 is a block diagram showing an architecture of a network of each organization
  • FIG. 3 is a diagram showing path interfaces of border routers of each network in the network system
  • FIG. 4 is a diagram showing addresses of policy servers and border routers in the network system
  • FIG. 5 is a block diagram showing a configuration of the policy server
  • FIG. 6 is a diagram showing an interorganization resource policy table
  • FIG. 7 is a diagram showing an interorganization link management table
  • FIG. 8 is a diagram showing an intraorganization resource policy table
  • FIG. 9 is a diagram showing example settings of upper limits of bands for links in the organization.
  • FIG. 10 is a diagram showing an interorganization link management table for a policy server of organization B;
  • FIG. 11 is a diagram showing an interorganization link management table for a policy server of organization C;
  • FIG. 12 is a diagram showing an interorganization link management table for a policy server of organization D;
  • FIG. 13 is a diagram showing an interorganization link management table for a policy server of organization A
  • FIG. 14 is a diagram showing paths along which a message is distributed to make the policy public
  • FIG. 15 is a diagram showing how to determine band upper limits for the links leading up to the hosts of other organizations
  • FIG. 16 is a diagram showing an out-of-organization host policy table in a policy server of organization D;
  • FIG. 17 is a diagram showing a message format of Q0S attribute
  • FIG. 18 is a diagram showing how QoS attribute information is added
  • FIG. 19 is a flow chart showing a procedure of resource allocation processing for reservation type allocation
  • FIG. 20 is a flow chart showing a preprocessing procedure
  • FIG. 21 is a flow chart showing processing performed by an interorganization resource allocation unit for reservation type allocation
  • FIG. 22 is a flow chart showing resource allocation processing for reservation type allocation.
  • FIG. 23 is a sequence diagram showing an outline of a policy negotiation protocol.
  • FIG. 1 shows an architecture of a network system according to this embodiment.
  • the network of each organization has one policy server (PS) that manages network equipment (R: router, etc.) in the network according to a policy.
  • PS policy server
  • R network equipment
  • the network of each organization is a range of network managed by a policy server having a certain policy.
  • the network of each organization has one or more border routers (BR) to physically connect circuits to establish communication with other organizations' networks.
  • the networks are interconnected via the border routers and communication circuits between the routers.
  • the policy server of each organization there is a network administrator that operates and manages the policy server.
  • the network administrator manipulates the user interface and others of the policy server to operate and manage the policy server.
  • the policy server performs control and operation to provide a QoS guarantee service between end nodes within the same organization or between end nodes in a plurality of organizations.
  • the network of organization A ( 10000 ) is a network managed by a policy server PSa ( 10100 ).
  • the policy server PSa ( 10100 ) manages and controls network equipment in the organization A.
  • Border routers Bra1 ( 10200 ) and BRa2 ( 10300 ) communicates with border routers of networks of organizations other than A.
  • Routers Ra1 ( 10400 ), Ra2 ( 10500 ), Ra3 ( 10600 ) communicates with other routers and hosts Ha1 ( 10700 ), Ha2 ( 10800 ), Ha3 ( 10900 ) in the network of organization A.
  • the similar processing is performed also by a policy server PSb ( 20100 ) of the network ( 20000 ) of organization B, by a policy server PSc ( 30100 ) of the network ( 30000 ) of organization C, and by a policy server PSd ( 40100 ) of the network ( 40000 ) of organization D.
  • a policy server PSb 20100 of the network ( 20000 ) of organization B
  • a policy server PSc 30100 of the network ( 30000 ) of organization C
  • a policy server PSd 40100 of the network ( 40000 ) of organization D.
  • A's network ( 10000 ), is a network system comprising a network of routers (S 10200 , 10300 , 10400 , 10500 , 10600 ) and a network of end node PCs (personal computers) Ha1 ( 10700 ), Ha2 ( 10800 ), Ha3 ( 10900 ) connected to the routers via concentrators (HUB) ( 103 a - 103 b )—This network is connected to a policy server PSa ( 10100 ) that centrally manages and controls the network resource of each router.
  • the network administrator ( 105 ) generally manages the operating state of the network ( 100 ) of routers and modifies equipment settings in the router network as required.
  • the users ( 106 a - 106 b ) of the end nodes on the network can change the settings of the HUB equipment. That is, in the network as a whole there are a network ( 100 ) operated at the discretion of the network administrator and a network ( 110 ) used at end users' discretion.
  • the network administrator ( 105 ) registers with the policy server in advance a description ( 107 ) representing an operation policy on the network resource allocation. This allows requests to be checked against the policy server, the requests including asynchronously occurring user requests calling for immediate resource allocation and normal user requests to make reservations for resource allocation.
  • the operation policy described by the network administrator comprises information necessary for network administration, which includes, for each group to be managed, group member information, priority, allocation condition of resource to be used, and limitation on path.
  • the resource allocation request from the user has described therein the name of the user making the request, the IP address of the user's PC, conditions of necessary resource ( 108 ).
  • border router Bra1 ( 10200 ) of organization A has a path interface ( 10201 ) to communicate with a boarder router BRc1 ( 30200 ) of organization C and interfaces ( 10202 , 10203 ) for communication with routers within the organization.
  • Another border router BRa2 ( 10300 ) of organization A has a path interface ( 10301 ) for communication with a border router BRc2 ( 30300 ) of organization C, a path interface ( 10302 ) for communication with a border router BRb1 ( 20200 ) of organization B, and interfaces ( 10303 , 10304 ) for communication with routers within the organization.
  • the same also applies to the organization B, organization C and organization D.
  • an organization name denotes the names of organizations.
  • An organization ID (AS-ID) ( 50002 ) is an identification number of each organization.
  • An AS is an abbreviation of an autonomous system which refers to a boarder router protocol BGP4.
  • a P5-IP address ( 50003 ) is an IP address of a policy server managing each organization.
  • a BR ( 50004 ) denotes names of border routers of each organization.
  • a BR-IP (incoming to organization) ( 50005 ) is IP addresses of incoming path interfaces of the border routers in each organization.
  • a BR-IP (outgoing from organization) ( 50006 ) is IP addresses of outgoing path interfaces of the border routers in each organization.
  • FIG. 5 shows the configuration of each policy server.
  • the policy server has an intra-organization resource allocation functional unit ( 300 ) that coordinates resource allocations within the organization according to its definition and an other organization path information providing functional unit ( 320 ) that informs a part of the operation policy of its organization to other organizations and, when it is necessary to secure a path for realizing the QoS guarantee service (herein called a QoS guarantee path) between it and other organizations, generates the QoS guarantee path between it and the other organizations.
  • a QoS guarantee path a path for realizing the QoS guarantee service
  • the intra-organization resource allocation functional unit ( 300 ) includes: a customer management information search/update unit ( 301 ) for handling user information within its organization and a customer database ( 301 a ); an operation policy search/update unit ( 302 ) for reviewing and updating the operation policy described by the network administrator and an operation policy database ( 302 a ); an administrator GUI unit ( 303 ) for the administrator to input, update and maintain various settings; a request accepting unit ( 304 ) for accepting a network resource allocation request of reservation type and immediate type from the user or the network administrator; a resource allocation arbitration control unit ( 305 ) for coordinating the individual resource allocation requests according to the operation policy and determining the content of a resource allocation control; a network path information database ( 305 a ) used by the resource allocation arbitration control unit ( 305 ); a resource allocation status database ( 306 a ); and, when the requested resource allocation is not closed within the local organization, an other organization resource allocation request preprocessing unit ( 306 ) which performs preprocessing
  • the intra-organization resource allocation functional unit ( 300 ) also includes: a resource allocation schedule search/update unit ( 307 ) for setting the content of the coordinated reservation type network resource allocation, and a resource allocation schedule database ( 308 a ); a resource allocation execution unit ( 308 ) for issuing to a router as a router control command the setting of the reservation type network resource allocation having a reservation described therein and the setting of the coordinated immediate type network resource allocation; a charging management unit ( 309 ) for performing necessary processing when fee charging occurs for the allocated resource; and a network configuration information updating unit ( 311 ) for periodically verifying, and updating the contents of the network path information database ( 305 a ) and the resource allocation status database ( 306 a ).
  • the other organization path information providing functional unit ( 320 ) has: an other organization resource allocation request preprocessing unit ( 306 ) for performing preprocessing to allocate resource to other organizations; and an interorganization resource allocation unit ( 310 ) which exchanges, with other organizations, the operation policy of its organization necessary for inter-organization communication, reference the exchanged operation policy and, for communication with other organizations, requests a network resource allocation to other organizations or accepts the requests from other organizations.
  • the operation policy database ( 302 a ) stored in the operation policy database ( 302 a ) are an intra-organization resource policy table ( 321 a ), an out-of-organization host policy table ( 321 b ), an organization-related policy table ( 321 d ), a user-related policy table ( 321 e ), and an inter-organization resource policy table ( 322 a ).
  • the network path information database ( 305 a ) stores an inter-organization link management table ( 321 c ).
  • the network administrator generates the inter-organization resource policy table ( 322 a ) as shown in FIG. 6.
  • the inter-organization resource policy table ( 322 a ) has entries for each outgoing interface of the border router of its organization.
  • (a) denotes organization IDs ( 50101 ) of other organizations to which the outgoing interfaces connect;
  • (b) denotes policy server addresses of other organizations to which the outgoing interfaces connect;
  • (c) denotes inter-organization link IDs ( 50103 ) given to the outgoing interfaces, i.e., given to inter-organization links;
  • (d-1) is IP addresses ( 50104 ) of the incoming interfaces of the same border routers that correspond to the outgoing interfaces;
  • (d-2) is IP addresses ( 50105 ) of the outgoing interfaces;
  • (e) is IP addresses ( 50106 ) of the outgoing interfaces of the border routers of other organizations that connect to the outgoing interfaces;
  • (f) denotes upper limit (M bits/sec) of the band of the outgoing interface available for each host that is set by the network administrator for the reservation type
  • the inter-organization link management table ( 321 c ) shows to which organization the inter-organization link of organization A is connected.
  • the table describes, for each inter-organization link, (a) inter-organization link ID ( 50301 ) and (b) organization ID ( 50302 ) of other organization connected by the inter-organization link of the inter-organization link ID.
  • the network administrator registers the following with the intra-organization resource policy table ( 321 a ):
  • the intra-organization resource policy table ( 321 a ) is generated as shown in FIG. 8.
  • (a) describes IP addresses ( 50201 ) of the hosts or outgoing interface IP addresses of the border routers in the organization that are permitted an inter-organization communication.
  • it shows IP addresses of the hosts Ha1 ( 10700 ), Ha2 ( 10800 ), Ha3 ( 10900 ) and three outgoing interface IP addresses of the border routers Bra1 and BRa2 in the organization A.
  • (b) describes inter-organization links ID from the organization A to other organizations. Entered in (c-1) are upper limits of the band that the hosts or the outgoing interfaces of the border routers can use in the communication via the inter-organization link IDs of (b) in response to the reservation type requests.
  • (c-2) describes upper limits (M bits/sec) of the band that the hosts or the outgoing interfaces of the border routers can use in the communication via the inter-organization link IDs of (b) in response to the immediate type requests.
  • (d) describes with which organizations each host is allowed to make interorganization communication.
  • (e) describes intraorganization paths for which the upper limits of (c-2) have been determined.
  • the network administrator determines the upper limits of bands of (c-1) and (c-2) and the paths of (e), as follows.
  • the band upper limit for the reservation type allocation Suppose, as shown in FIG. 9, a network administrator has set in each communication link within the organization an upper limit of the band that each host can use for the reservation type allocation.
  • the upper limits of the bands that each host can use for the reservation type allocation through the interorganization links are the values set in the interorganization resource policy table ( 322 a ) of FIG. 6.
  • the host Ha1 ( 10700 ) in the organization A and the router Ra1 ( 10400 ) in the same organization are connected by a physical link (LLa1) through their interfaces 10701 and 10402 , with the band upper limit for reservation type allocation available for each host set at 10.0 (M bits/sec).
  • the router Ra1 ( 10400 ) in the organization A and the border router BRa1 ( 10200 ) in the same organization are connected by a physical path (LLa2) through their interfaces 10401 and 10202 , with the band upper limit for reservation type allocation available for each host set at 5.3 (M bits/sec).
  • the border router BRa1 ( 10200 ) in the organization A and the border router BRc1 ( 30200 ) in the organization C are connected by a physical path (La2) through their interfaces 10201 and 30201 , with the band upper limit for reservation type allocation available for each host set at 10.0 (M bits/sec).
  • the host Ha1 ( 10700 ) is to be serviced using the reservation type allocation from other organization through the link La2, because the potentially available band conforms to the least value of the bands described above, the upper limit of the band for the reservation type allocation is 5.3 (M bits/sec).
  • the path has links Lla1, LLa2 and La2.
  • the available links are LLa1, LLa2, LLa3, LLa4 and La3.
  • the router Ra1 ( 10400 ) in the organization A and the border router Bra1 ( 10200 ) in the same organization are linked by a physical link (LLa2) through their interfaces 10401 and 10202 , with the band upper limit for reservation type allocation available for each host in the link LLa2 set at 5.3 (M 10 bits/sec), which is the smallest of the links.
  • the potentially available band for the reservation type allocation has an upper limit of 5.3 (M bits/sec).
  • the path has links LLa1, LLa2, LLa3, LLa4 and La3.
  • Another path reaching the host Ha1 through the link La3 may take a link LLa8, but this path, because it further reduces the upper limit to 0.5 (M bits/sec), is not adopted.
  • the network administrator describes, for each of other organizations that are permitted to use the local organization, upper limits of the bands in this organization that the other organizations are allowed to use; time zones during which the other organizations are permitted to use the bands of this organization; paths within this organization that the other organizations are permitted to use in communications passing through this organization (paths are each identified by a combination of links LLa in FIG. 9); in what way the other organizations are charged for the use of this organization; and in what order of priority the resource allocation requests from other organizations are to be processed.
  • the network administrator describes, for each user in this organization, the upper limits of bands the users are allowed to use, the time zones available for the users, in what priority order the resource allocation requests from the users are to be processed, and so on.
  • the band upper limits and the time zones available for the users and the order of priority in which the resource allocation requests from the users are to be processed may be specified for each group of users.
  • the network administrator now starts the operation of the policy server.
  • the interorganization resource allocation unit ( 310 ) exchanges the interorganization link management table ( 321 c ) with other policy servers to update the inter-organization link management table ( 321 c ). This processing is explained as follows.
  • the policy server of organization A when it is started, has the inter-organization link management table ( 321 c ) of FIG. 7 set by the network administrator. It is also assumed that the policy servers of organizations B, C, D are already in operation. At this point the policy server of organization B has an inter-organization link management table shown in FIG. 10. That is, because the policy server of organization A was not operating, the policy server of organization B has the interorganization link management table indicating only that the inter-organization link Lb1 is connected to the organization C (organization ID number 64514) and the inter-organization link Lb2 to the organization D (organization ID number 64515). At this point the policy server of organization C maintains an inter-organization link management table shown in FIG. 11.
  • the policy server of organization C has the interorganization link management table indicating only that the interorganization link Lc1 is connected to the organization B (organization ID number 64513) and also connected through the organization B to the organization D (organization ID number 64515).
  • the policy server of organization U maintains an interorganization link management table shown in FIG. 12. That is, because the policy server of organization A was not operating, the policy server of organization D has the inter-organization link management table indicating only that the interorganization link Ld1 is connected to the organization B (organization ID number 64513) and also connected through the organization B to the organization C (organization ID number 64514).
  • the policy server of organization A When the policy server of organization A is started, it is supplied with the contents of the inter-organization link management tables from the adjoining organizations (organizations B and C).
  • the policy server of organization A adds the contents of the received interorganization link management tables into the entries where the organization IDs of the organizations that have forwarded the inter-organization link management tables are registered, thereby reflecting them on its inter-organization link management table ( 321 c ) as shown in FIG. 13.
  • the policy server of organization A ( 10100 ) is now able to know, from the inter-organization link management table ( 321 c ), which organization it can reach through which interorganization link. After this, the exchange of the inter-organization link management tables among the policy servers are repeated as required.
  • the content of the inter-organization link management table ( 321 c ) made public by the organization A is successively propagated to other organizations, so that the information indicating through which inter-organization link the organization A can be reached is added to the interorganization link management table of each policy server.
  • the policy server makes public and distributes the policy of its organization described in the intra-organization resource policy table ( 321 a ) so that the information on those hosts in its organization that are permitted to communicate with other organizations can be registered in the out-of-organization host policy table ( 321 b ) by the policy servers of the other organizations with which the hosts are permitted to communicate.
  • the policy server sends a message over the inter-organization links connected to the local organization.
  • Each of the messages sent over the inter-organization links includes the following information:
  • the host messages transmitted over the interorganization links are successively propagated from one organization to another and are finally received by each of the policy servers of the other organizations with which the hosts are permitted to communicate.
  • the policy server of each of the other organizations transfers the messages received from one of the interorganization links connected thereto to all the other inter-organization links, i.e., all the host messages are sent out over each of the links.
  • the policy server discards it.
  • the same transfer or relay operation is carried out by the policy server of each of the other organizations with which the hosts are permitted to communicate. For example, when the other organizations with which the host Ha1 “192. 16. 12.
  • 100/24” ( 10700 ) of organization A is permitted to communicate are the organizations B, C, D, as shown in FIG. 14, the three same host messages that were transmitted by the policy server one over each of the inter-organization links arrive at policy servers of the organizations B, C, D through three different paths.
  • the policy server of each of the other organizations B, C, D, with which the host Ha1 is permitted to communicate relays the message received through one of the inter-organization links connected thereto to all the remaining inter-organization links, the policy server adds to the message the path information on both the inter-organization link that has received the message and the inter-organization link that transmits the message, or path information on only the message sending inter-organization link.
  • the policy server of each of the other organizations B, C, D determines, for the reservation type and immediate type allocations, the upper limit of the band available in the link from its message sending inter-organization link to the message-originating host Ha1 and adds the band upper limit to the message.
  • the upper limit is determined for each of the reservation and immediate types as shown in FIG. 15.
  • the message the policy server PSb ( 2100 ) receives from the policy server PSa ( 10100 ) includes the information that the upper limit of the band available for the host Ha1 ( 10700 ) in the inter-organization link between the BRb1 ( 20200 ) and BRa2 ( 10300 ) is 3.5 (N bits/sec).
  • the policy server PSb ( 20100 ) determines which of two band upper limits is smaller, the band upper limit available in the link between a message sending border router BRb2 ( 20300 ) and a message receiving border router BRb1 ( 20200 ) or the band upper limit added last to the message received from the policy server PSa ( 10100 ) (in this case, 3.5 N bits/sec first set by PSa).
  • the policy server PSb ( 20100 ) uses the smaller one as a band upper limit to be added to the relay message which it will send out from BRb2 ( 20300 ).
  • the band upper limit available in the link between the message sending border router BRb2 ( 20300 ) and the message receiving border router BRb1 ( 20200 ) uses the value registered in the intra-organization resource policy table which corresponds to the path between the outgoing interfaces of the two border routers (i.e., the intra-organization link connecting one outgoing interface and the other outgoing interface).
  • This case refers to the intra-organization band information (available band: 2.7 (M bits/sec)) and thus the band upper limit of 2.7 (M bits/sec) is added to the message which the policy server PSb ( 20100 ) sends out from the message sending border router BRb2 ( 20300 ).
  • the policy server in each organization compares the band upper limit last added to the message it received with the band upper limit in the path between the message receiving outgoing interface and the message sending outgoing interface, and adds whichever is smaller to the message before sending the message out.
  • the message that has reached a certain organization has added thereto the minimum values of the band upper limits for all segments of the interorganization path that the message has traveled and which will be used when a communication from the organization that received the message to the message-originating host takes place, the band upper limits being set by the policy server of each of the organizations covering the segments of the path.
  • the message has last added thereto the band upper limit that can be guaranteed for the inter-organization path that the message has traveled and which will be used by a communication from the organization that received the message to the message-originating host.
  • the policy server that has received the message from the host, which is permitted to enter into an interorganization communication with the policy server's organization, registers in the out-of-organization host policy table ( 321 b ) the band upper limits for the reservation type and immediate type allocations that were last added to the received message and all path information added to the received message, i.e., information on the inter-organization path traveled by the message.
  • FIG. 16 shows entries associated with the host Ha1 of the organization A which are registered in the out-of-organization host policy table ( 321 b ) in the policy server of organization D.
  • column (a) ( 50401 ) describes an IP address of the host Ha1 and (b) ( 50402 ) describes an ID of the organization to which the host Ha1 belongs.
  • Column (c) ( 50403 ) denotes the band upper limit (M bits/sec) for the reservation type allocation last added to the message.
  • Column (d) ( 50404 ) denotes the band upper limit (M bits/sec) for the immediate type allocation last added to the message (not shown in the figure).
  • Column (e) ( 50405 ) denotes an IP address of an incoming path interface of the border router of the local organization that has received the host message.
  • FIG. 15 shows the communication path from the organization D to the host Ha1, as specified by the out-of-organization host policy table ( 321 b ) in the policy server of organization D of FIG. 16, and the band upper limits for the reservation type allocation. As shown in FIG.
  • BRd1 ( 40200 )>BRb2 ( 20300 )>BRc2 ( 30300 )>BRa2 ( 10300 )>Ha1 the band is limited to 4.0M (bits/sec) in the link between BRd1 ( 40200 ) and BRb2 ( 20300 ) and thus the band upper limit in this path for the reservation type allocation is 4.0M (bits/sec).
  • the policy server of organization A When the policy server of organization A starts its operation, the policy is made public and the information on the hosts of organization A that are permitted to communicate with other organizations is registered in the out-of-organization host policy tables ( 321 b ) of the other organizations.
  • the policy servers of organization A and other organizations repetitively make their policies public as required when they detect the starting of a new policy server or when their; policies are changed. As a result, the policy server of each organization has registered therein the information on the hosts of all other organizations that are permitted to perform inter-organization communication with its organization.
  • BGP4 Border Gateway Protocol Version 4
  • the BGP4 is originally intended for the transmission of routing information.
  • the BGP4 is attached with QoS policy information and transferred.
  • the BGP with such an extended function is hereinafter called a policy distribution protocol.
  • FIG. 17 shows a message format of QoS attribute.
  • the QoS attribute information is added to the protocol each time it passes through an organization. With this information, the policy server of each organization can retrieve all bandwidths that are expected to be available between the IDs of organizations that are passed through and the IP address of a destination organization, and can also retrieve path information.
  • a host IP net mask ( 11 ) and a host IP ( 10 ) are written with an IP address of a message-originating host.
  • An AS-ID ( 50501 ) denotes an ID of an organization to which the policy server publicizing its policy belongs.
  • a BR-IP net mask ( 50502 ) and a BR-IP ( 50503 ) are written with an address of a border router that has sent the message.
  • An upper limit band available for reservation type allocation denotes an upper limit of a band available for the reservation type allocation.
  • An upper limit band available for immediate type allocation denotes an upper limit of a band available for the immediate type allocation.
  • a publicizing organization number ( 50510 ) and a publicizing organization ( 50511 - 50513 ) denote the number of organizations and the organization IDs in 50206 of the intra-organization resource policy table. Only when the policy server belonging to the organization corresponding to this organization ID receives the QoS attribute information, does it describes the information in the out-of-organization host policy table of FIG. 16.
  • FIG. 18( a ) shows the QoS attribute information that is to be transmitted from the policy server PS of the organization A to the policy server PS of organization B.
  • the border router that can be used to reach Ha1 10700
  • the border router BRa2 10300
  • the available band (for reservation type allocation) is 3.5 (M bits/sec).
  • FIG. 18( b ) shows the QoS attribute information added which is to be transmitted from the policy server PS of the organization B to the policy server PS of organization D ( 50600 ).
  • the border router that can be used to reach Ha1 is a border router BRb2 ( 20300 ) of organization B and that the available band (for reservation type allocation) is 2.7 (M bits/sec).
  • the policy server performs the resource allocation processing according to the network resource allocation request.
  • the resource allocation processing includes reservation type resource allocation processing and immediate type resource allocation processing. Let us now explain about the reservation type resource allocation processing.
  • FIG. 19 shows the procedure of the reservation type resource allocation processing.
  • the reservation type resource allocation processing is started by accepting a network resource allocation request from the network administrator or user as a resource allocation request that specifies a future time zone.
  • the request accepting unit ( 304 ) for accepting a resource allocation request from the user invokes request content reception processing ( 511 ) to receive the request from the network administrator or user which contains such information as source of resource allocation request, end points requesting resource allocation, content of resource allocation, and period of resource allocation, as exemplified in a reservation type network resource allocation request ( 108 a ).
  • the request accepting unit ( 304 ) then invokes request content analyzing processing ( 512 ) to sort and analyze the content.
  • the administrator GUI unit ( 303 ) When the resource allocation request from the user is directly notified to the network administrator, not via the network, the administrator GUI unit ( 303 ) enables the network administrator to enter the user request. When the network administrator makes special settings to individual resource allocation requests, the administrator GUI unit ( 303 ) is used.
  • the operation policy search/update unit ( 302 ) verifies the resource allocation request from the user by searching through the operation policy database ( 302 a ), with the requesting user as a key, for the content of the policy in the user-related policy table ( 321 e ) associated with the requesting user.
  • the result of search represents a policy set for the requesting user, like the one shown in an example ( 501 ) in which a policy is set for a user group.
  • the request content decision processing ( 513 ) checks a resource allocation request ( 108 a ) from the user against the content of the policy associated with user which is registered in the user-related policy table ( 321 e ) to see whether the request meets the requirement of the policy. If the request falls within the range of the policy, the network path search processing ( 514 ) determines the range of the network path that requires the resource allocation, based on the host IP at the far end of the path.
  • the other organization path use decision processing ( 515 ) checks whether the range of the searched path is closed within the network of the local organization and thereby decides whether it is necessary to transfer the resource allocation request to other organizations.
  • the other organization resource allocation request preprocessing unit ( 306 ) performs the preprocessing for requesting the resource allocation request to other organizations.
  • FIG. 20 shows the processing performed by the preprocessing unit ( 306 ).
  • This processing references the information on the requesting host in the intraorganization resource policy table of FIG. 8 to check whether the destination host's organization is one of the other organizations with which the requesting host is permitted to communicate and whether the requested band meets one of the band upper limit requirements registered for each inter-organization link (step 516 ). When these requirements are satisfied, the question of whether the destination host is allowed to have an inter-organization communication with the organization of the requesting host is checked by looking up the out-of-organization host policy table ( 321 b ) of FIG. 16 to see if the destination host is registered in it.
  • the band upper limits are registered in the out-of-organization host policy table ( 321 b ) for each path associated with the destination host.
  • a check is made to see if there is any path which contains the inter-organization links in the intra-organization resource policy table that have the band upper limits satisfying the requested band ( 517 ). Then if the above requirements are all met, candidate intra-organization links whose band upper limits satisfy the requirements are selected from the information registered for the requesting host on an interorganization link basis in the intra-organization resource policy table, and candidate intra-organization paths satisfying the requirements of the band upper limits and including the candidate inter-organization links are selected from the information registered for the destination host in the out-of-organization host policy table ( 321 b ).
  • One intra-organization path information and corresponding path information are selected from the candidates and transferred to the resource allocation decision processing ( 516 ).
  • the requesting host is A and the destination host is B. Also suppose, for the requesting host A, the organization of the destination host B and the band upper limits for the link 1 , link 2 and link 3 are registered in the intra-organization resource policy table. If the registered band upper limits for the link 1 and link 3 are equal to or more than the requested band, then the link 1 and link 3 are taken as candidates. Next, suppose the destination host B is registered in the out-of-organization host policy table; and also suppose, for the destination host B, paths 10 and 11 including the candidate link 1 and paths 13 and 14 including the candidate link 3 are registered.
  • the selected pair is a pair of link 3 and path 13
  • the following information is transferred to the resource allocation decision processing ( 516 ): the intraorganization path information registered in the intra 10 organization resource policy table in association with the link 3 contained in the selected pair and with the requesting host A and also the path information registered in the out-of-organization host policy table ( 321 b ) in association with the path 13 and with the destination host B.
  • the resource allocation decision processing ( 516 ) determines the content of the resource to be allocated. That is, the resource allocation request preprocessing unit ( 306 ) determines the content of resource allocation on a path according to the received intra-organization path information to ensure that the path will have a requested band in a requested time zone. Then, the unit checks the resource allocation schedule database ( 308 a ) to see if the resource allocation as determined above can be reserved. If the reservation is possible, the resource allocation schedule search/update unit ( 307 ) processes the determined intra-organization resource allocation into a policy object in a form that allows the resource allocation function to be implemented and then registers the policy object.
  • the resource allocation execution unit ( 308 ) interprets the registered policy object according to the intraorganization resource allocation schedule and, by using the protocol such as SNMP and COPS, sends a control command requesting the execution of the determined resource allocation to the routers on the path described in the policy object. Upon receiving the control command, the routers allocate resources to the network paths.
  • FIG. 21 shows the processing performed by the interorganization resource allocation unit ( 310 ). Because at this point the resource within the local organization has already been secured, this processing sends a resource allocation request to other organizations ( 520 ) together with the path information received from the resource allocation request preprocessing unit ( 306 ) to request the policy server of other organization, which is next to the local organization on the path indicated by the path information, to perform the resource allocation in that organization. Then, the other organization that received the resource allocation request sends returns to the requesting organization a report on whether the resource allocation request was successfully executed or failed ( 521 ). The returned report is checked by the inter-organization resource allocation decision processing ( 522 ). When a report indicating a successful execution of the resource allocation request is returned, the reservation of the inter-organization resource allocation is completed.
  • FIG. 22 shows the sequence of steps carried out by the policy server when it receives a resource allocation request from a policy server of other organization.
  • This processing is started when the network resource allocation request from other organization is accepted.
  • the request accepting unit ( 322 ) invokes the request content reception processing ( 511 ) to receive a request, as exemplified in the network resource allocation request ( 108 c ), from other organization and then invokes the request content analyzing processing ( 512 ) to break down, analyze and sort out the content of the received request.
  • the resource allocation request from other organization is issued with the request source taken as a request issuing organization.
  • the operation policy search/update unit ( 302 ) searches through the organization-related policy table for the policy associated with the request source.
  • the retrieved information over to the request acceptance decision processing ( 817 ).
  • the resource allocation decision processing ( 516 ) when the preprocessing is not performed, searches through the intra-organization resource policy table for a registered intraorganization path between the interorganization link, which connect to the local organization as indicated by the path information accompanying the request, and the destination host, and then determines the resource allocation on the path according to the received intraorganization path information so that a path having the requested band in the requested time zone and conforming to the retrieved intra-organization path information can be secured.
  • the resource allocation decision processing ( 516 ) determines the resource allocation on the path according to the received intra-organization path information to secure the path that has the requested band in the requested time zone and conforming to the intraorganization path information transferred from the preprocessing. After this, the resource allocation decision processing ( 516 ) checks the resource allocation schedule database ( 308 a ) to see if the resource allocation as determined above can be reserved. When the reservation is found possible, the resource allocation schedule search/update unit ( 307 ) is started. These processing is similar to those explained by referring to FIG. 19.
  • the inter-organization resource allocation processing described above can use what is called a policy negotiation protocol, which is obtained by extending the signaling protocol COPS (Common Open Policy Service).
  • COPS is a policy signaling protocol that is defined by the IETF (Internet Engineering Task Force) and provides a mechanism allowing equipment such as policy servers and routers to exchange the network policies (for example, QoS policy).
  • the equipment such as policy server that determines and specifies the policy is called a PDP (Policy Decision Point) and the equipment such as router that receives the directions from the PDP and performs control in compliance with the policy is called a PEP (Policy Enforcement Point).
  • PDP Policy Decision Point
  • PEP Policy Enforcement Point
  • the policy negotiation protocol makes the policy server on the resource allocation requesting side behave as the PDP and the policy server on the request responding side behave as the PEP.
  • the “negotiation” denotes jobs of making the resource allocation request and of responding to the request.
  • the word negotiation will be used in the following explanations.
  • FIG. 23 is a sequence diagram showing the outline of the policy negotiation protocol. This protocol assumes that the control extends over different organizations.
  • the policy server ( 10100 ) of organization A is shown to be negotiating with the policy server ( 40100 ) of organization D through the policy server ( 20100 ) of organization B.
  • the fundamental sequence of policy negotiation between two policy servers is as follows. In implementing the policy negotiation protocol, a session for policy negotiation protocol is established.
  • the session is established by the PEP side policy server sending a Client-Open (CO) message ( 60101 ) and by the FDF side policy server receiving the Client-Accept (CA) message ( 60102 ).
  • CO Client-Open
  • CA Client-Accept
  • the policy servers can be both PDP and PEP, they perform both the CO message sending and the CA message sending. In that case, two sessions are established between the organizations but only one session may be used for negotiation.
  • the state of the session between the organizations is periodically checked by using a Keep-Alive (KA) message ( 60103 , 60104 ) between the policy servers.
  • KA Keep-Alive
  • the PDP side policy server (here, policy server ( 10100 ) of organization A) sends a Decision (DEC (Install)) message ( 60105 ) carrying the negotiation content to the PEP side policy server (policy server ( 20100 ) of organization B).
  • the policy server of the responding side organization attempts to make reservation for the resource in the organization, checks whether or not the QoS guaranteed path can be established, and returns a Report State (RFT (Install)) message ( 60108 ) carrying the information on success or failure of the negotiation in response to the DEC message.
  • DEC Decision
  • PEP side policy server policy server ( 20100 ) of organization B
  • RFT Report State
  • the PDP side policy server sends a DEC (Install) message ( 60105 ) carrying the content of negotiation to a PEP side policy server, the policy server of the next organization on the inter-organization path (in this case, organization B) to which the PDP side policy server makes a resource allocation request.
  • DEC Install
  • the PEP policy server Upon receiving the DEC (Install) message, the PEP policy server checks the content of negotiation and attempts to allocate the resource inside its own organization.
  • the PEP policy server When it has found that the resource allocation is possible, the PEP policy server now acts as a PDP and sends a DEC (Install) message ( 60106 ) carrying the similar negotiation content to a PEP side policy server of the next organization on the inter-organization path (in this case, organization D) to which the second PDP policy server makes a resource allocation request. If its own organization is not the last of the organizations on the inter-organization path of which the resource allocation is requested, the PEP side policy server behaves the same way as described above.
  • DEC Install
  • the PEP side policy server When, however, its organization is the last one and if the resource allocation within the organization is possible, the PEP side policy server returns a PRT (Installed/Notinstalled) message ( 60107 ) carrying the information on the success or failure of the negotiation to the policy server on the PDP side with respect to itself, which in turn returns a PRT (Installed/Notinstalled) message ( 60108 ) carrying the information on the success or failure of the negotiation to the policy server on the PDP side with respect to itself.
  • PRT Installed/Notinstalled
  • the QoS control using a policy of the policy servers can be performed on the communications extending to different networks.
  • the QoS control can be carried out not to violate the policy of each policy server of the networks through which the communications travel.
  • a static policy is made public for use in the QoS control
  • the policy on the band upper limits of the intraorganization links and inter-organization links is set for the communication of each host. It is also possible to use a policy that does not consider the number of hosts and which directly sets the band upper limits for the intra-organization links and the inter-organization links.

Abstract

A network system having a plurality of interconnected networks each having a policy server. The policy server sets a quality-guaranteed path in the network according to a policy held in the policy server. The policy server includes a policy holding unit to hold a policy defining a quality that can be guaranteed in its own network, a policy publicizing unit to make public the policy held in the policy holding unit to the policy servers of other networks, a guaranteed quality calculation unit to calculate a quality that can be guaranteed for the path between the local network and the other network, and a quality-guaranteed path setting unit to provide a quality-guaranteed path.

Description

    CROSS-REFERENCE TO RELATED APPLICATION
  • The present application is a continuation of application Ser. No. 09/520,832, filed Mar. 8, 2000, the contents of which are incorporated herein by reference. [0001]
  • This application is related to U.S. application Ser. No. 09/513,930 filed on Feb. 28, 2000, the contents of which are incorporated herein by reference.[0002]
    • BACKGROUND OF THE INVENTION
  • The present invention relates to a path quality control technology in a network system comprising a plurality of networks. [0003]
  • For a network to transmit content requiring a real time capability, such as voice and video, while guaranteeing its real time capability, the network needs to perform a quality of service (QoS) control that allocates a bandwidth to each path on the network. Such a QoS control is known to be performed on an end-to-end basis according to the kind of traffic without causing any conflict in the entire network by using a policy server that manages quality control settings of network equipment in an integrated manner at one location. Such a policy server makes a quality control setting on each network equipment according to a described policy. Therefore, simply describing the policy of network operation, management and others in the policy server allows the network administrator to perform the QoS control, which gives priority to transmitting content requiring a real time capability, such as voice and video, assigning an absolute bandwidth, and processing important business applications, such as enterprise resource planning (ERP) and e-business applications. [0004]
  • At present, to realize this quality control using the policy server that does not rely on the network equipment vendors, the Internet Engineering Task Force (IETF), a standardization organization, is developing standards for the policy framework. [0005]
  • The policy server is capable of managing at one location in an integrated manner the quality controls of individual paths on the network but within a range of the network managed by that policy server. Hence, in a network system consisting of a plurality of networks each with its own policy server, the policy server-based QoS control cannot be performed on a path that extends over two or more networks. Nor is it possible to perform the QoS control in a way that does not violate the policies of the policy servers residing in the networks through which this path passes. If, however, an additional policy server that centrally manages the whole network system made up of a plurality of networks is provided, the Q0S control may be applied also to the path extending to a plurality of networks in a way that conforms to a predetermined policy. Where the network system is large or its architecture is subject to frequent changes, the cost of installing and operating a policy server that performs such a non-distributed management will be enormous. [0006]
    • SUMMARY OF THE INVENTION
  • It is an object of the present invention to provide a network system which has a plurality of networks each having a policy server and which performs by using the policy server of each network the QoS control on a communication extending to two or more different networks. [0007]
  • To achieve the above objective, the present invention provides a network system which has a plurality of interconnected networks each having a policy server, the policy server setting a quality guaranteed path in the network according to a policy held in the policy server, the policy server comprising: [0008]
  • a policy holding means to hold a policy defining a quality that can be guaranteed in its own network, or local network, for an inter-network communication; [0009]
  • a policy publicizing means to make public the policy held in the policy holding means to the policy servers of other networks; [0010]
  • a guaranteed quality calculation means to calculate, from a policy publicized by a policy server of a network on a path between the local network and other network, a quality that can be guaranteed for the path between the local network and the other network; and [0011]
  • a quality-guaranteed path setting means to provide a quality-guaranteed path, the quality guaranteed path having a guaranteed quality within the quality calculated by the guaranteed quality calculation means for the path between the local network and the other network. [0012]
  • This network system can provide a quality-guaranteed path extending to a plurality of networks which has a quality guaranteed by, and not violating, the policies made public by the policy servers of a plurality of networks associated with the quality-guaranteed path to be provided. Therefore, in a network system having a plurality of networks each having a policy server, the QoS control can be performed on a communication extending to a plurality of networks by using the policy servers of the networks. [0013]
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • The present invention will be more apparent from the following detailed description when taken in conjunction with the accompanying drawings, in which: [0014]
  • FIG. 1 is a block diagram showing an architecture of a network system; [0015]
  • FIG. 2 is a block diagram showing an architecture of a network of each organization; [0016]
  • FIG. 3 is a diagram showing path interfaces of border routers of each network in the network system; [0017]
  • FIG. 4 is a diagram showing addresses of policy servers and border routers in the network system; [0018]
  • FIG. 5 is a block diagram showing a configuration of the policy server; [0019]
  • FIG. 6 is a diagram showing an interorganization resource policy table; [0020]
  • FIG. 7 is a diagram showing an interorganization link management table; [0021]
  • FIG. 8 is a diagram showing an intraorganization resource policy table; [0022]
  • FIG. 9 is a diagram showing example settings of upper limits of bands for links in the organization; [0023]
  • FIG. 10 is a diagram showing an interorganization link management table for a policy server of organization B; [0024]
  • FIG. 11 is a diagram showing an interorganization link management table for a policy server of organization C; [0025]
  • FIG. 12 is a diagram showing an interorganization link management table for a policy server of organization D; [0026]
  • FIG. 13 is a diagram showing an interorganization link management table for a policy server of organization A; [0027]
  • FIG. 14 is a diagram showing paths along which a message is distributed to make the policy public; [0028]
  • FIG. 15 is a diagram showing how to determine band upper limits for the links leading up to the hosts of other organizations; [0029]
  • FIG. 16 is a diagram showing an out-of-organization host policy table in a policy server of organization D; [0030]
  • FIG. 17 is a diagram showing a message format of Q0S attribute; [0031]
  • FIG. 18 is a diagram showing how QoS attribute information is added; [0032]
  • FIG. 19 is a flow chart showing a procedure of resource allocation processing for reservation type allocation; [0033]
  • FIG. 20 is a flow chart showing a preprocessing procedure; [0034]
  • FIG. 21 is a flow chart showing processing performed by an interorganization resource allocation unit for reservation type allocation; [0035]
  • FIG. 22 is a flow chart showing resource allocation processing for reservation type allocation; and [0036]
  • FIG. 23 is a sequence diagram showing an outline of a policy negotiation protocol.[0037]
    • DESCRIPTION OF THE EMBODIMENTS
  • FIG. 1 shows an architecture of a network system according to this embodiment. [0038]
  • In the figure, the network of each organization (organization A, B, C, D) has one policy server (PS) that manages network equipment (R: router, etc.) in the network according to a policy. Here, the network of each organization (organization A, B, C, D) is a range of network managed by a policy server having a certain policy. The network of each organization has one or more border routers (BR) to physically connect circuits to establish communication with other organizations' networks. The networks are interconnected via the border routers and communication circuits between the routers. [0039]
  • In the policy server of each organization there is a network administrator that operates and manages the policy server. The network administrator manipulates the user interface and others of the policy server to operate and manage the policy server. The policy server performs control and operation to provide a QoS guarantee service between end nodes within the same organization or between end nodes in a plurality of organizations. [0040]
  • In the example shown, the network of organization A ([0041] 10000) is a network managed by a policy server PSa (10100). The policy server PSa (10100) manages and controls network equipment in the organization A. Border routers Bra1 (10200) and BRa2 (10300) communicates with border routers of networks of organizations other than A. Routers Ra1 (10400), Ra2 (10500), Ra3 (10600) communicates with other routers and hosts Ha1 (10700), Ha2 (10800), Ha3 (10900) in the network of organization A. The similar processing is performed also by a policy server PSb (20100) of the network (20000) of organization B, by a policy server PSc (30100) of the network (30000) of organization C, and by a policy server PSd (40100) of the network (40000) of organization D. The network of each organization, as shown in FIG. 2 representing the organization A's network (10000), is a network system comprising a network of routers (S10200, 10300, 10400, 10500, 10600) and a network of end node PCs (personal computers) Ha1 (10700), Ha2 (10800), Ha3 (10900) connected to the routers via concentrators (HUB) (103 a-103 b)—This network is connected to a policy server PSa (10100) that centrally manages and controls the network resource of each router. The network administrator (105) generally manages the operating state of the network (100) of routers and modifies equipment settings in the router network as required. In the network (100) including the end nodes and the HUB equipment connected with the end nodes, the users (106 a-106 b) of the end nodes on the network can change the settings of the HUB equipment. That is, in the network as a whole there are a network (100) operated at the discretion of the network administrator and a network (110) used at end users' discretion.
  • The network administrator ([0042] 105) registers with the policy server in advance a description (107) representing an operation policy on the network resource allocation. This allows requests to be checked against the policy server, the requests including asynchronously occurring user requests calling for immediate resource allocation and normal user requests to make reservations for resource allocation. The operation policy described by the network administrator comprises information necessary for network administration, which includes, for each group to be managed, group member information, priority, allocation condition of resource to be used, and limitation on path. The resource allocation request from the user has described therein the name of the user making the request, the IP address of the user's PC, conditions of necessary resource (108).
  • Next, the path interfaces of the border routers of each network in the network system of FIG. 1 are shown in FIG. 3. For simplicity of explanation, this embodiment assumes that each of the path interfaces is a receiving and sending interface and that the transfer speeds of transmission and reception are the same. The reception and transmission may be performed through separate interfaces and their transfer speeds may be different. As shown in the figure, border router Bra1 ([0043] 10200) of organization A has a path interface (10201) to communicate with a boarder router BRc1 (30200) of organization C and interfaces (10202, 10203) for communication with routers within the organization. Another border router BRa2 (10300) of organization A has a path interface (10301) for communication with a border router BRc2 (30300) of organization C, a path interface (10302) for communication with a border router BRb1 (20200) of organization B, and interfaces (10303, 10304) for communication with routers within the organization. The same also applies to the organization B, organization C and organization D.
  • Identification numbers of organizations of FIG. 3 and addresses of policy servers and border routers are tabulated in FIG. 4. [0044]
  • In the figure, an organization name ([0045] 50001) denotes the names of organizations. An organization ID (AS-ID) (50002) is an identification number of each organization. An AS is an abbreviation of an autonomous system which refers to a boarder router protocol BGP4. A P5-IP address (50003) is an IP address of a policy server managing each organization. A BR (50004) denotes names of border routers of each organization. A BR-IP (incoming to organization) (50005) is IP addresses of incoming path interfaces of the border routers in each organization. A BR-IP (outgoing from organization) (50006) is IP addresses of outgoing path interfaces of the border routers in each organization.
  • FIG. 5 shows the configuration of each policy server. [0046]
  • As shown in the figure, the policy server has an intra-organization resource allocation functional unit ([0047] 300) that coordinates resource allocations within the organization according to its definition and an other organization path information providing functional unit (320) that informs a part of the operation policy of its organization to other organizations and, when it is necessary to secure a path for realizing the QoS guarantee service (herein called a QoS guarantee path) between it and other organizations, generates the QoS guarantee path between it and the other organizations.
  • The intra-organization resource allocation functional unit ([0048] 300) includes: a customer management information search/update unit (301) for handling user information within its organization and a customer database (301 a); an operation policy search/update unit (302) for reviewing and updating the operation policy described by the network administrator and an operation policy database (302 a); an administrator GUI unit (303) for the administrator to input, update and maintain various settings; a request accepting unit (304) for accepting a network resource allocation request of reservation type and immediate type from the user or the network administrator; a resource allocation arbitration control unit (305) for coordinating the individual resource allocation requests according to the operation policy and determining the content of a resource allocation control; a network path information database (305 a) used by the resource allocation arbitration control unit (305); a resource allocation status database (306 a); and, when the requested resource allocation is not closed within the local organization, an other organization resource allocation request preprocessing unit (306) which performs preprocessing, described later, for making a resource allocation request to other organizations.
  • The intra-organization resource allocation functional unit ([0049] 300) also includes: a resource allocation schedule search/update unit (307) for setting the content of the coordinated reservation type network resource allocation, and a resource allocation schedule database (308 a); a resource allocation execution unit (308) for issuing to a router as a router control command the setting of the reservation type network resource allocation having a reservation described therein and the setting of the coordinated immediate type network resource allocation; a charging management unit (309) for performing necessary processing when fee charging occurs for the allocated resource; and a network configuration information updating unit (311) for periodically verifying, and updating the contents of the network path information database (305 a) and the resource allocation status database (306 a).
  • The other organization path information providing functional unit ([0050] 320) has: an other organization resource allocation request preprocessing unit (306) for performing preprocessing to allocate resource to other organizations; and an interorganization resource allocation unit (310) which exchanges, with other organizations, the operation policy of its organization necessary for inter-organization communication, reference the exchanged operation policy and, for communication with other organizations, requests a network resource allocation to other organizations or accepts the requests from other organizations.
  • In this configuration, stored in the operation policy database ([0051] 302 a) are an intra-organization resource policy table (321 a), an out-of-organization host policy table (321 b), an organization-related policy table (321 d), a user-related policy table (321 e), and an inter-organization resource policy table (322 a). The network path information database (305 a) stores an inter-organization link management table (321 c).
  • The network administrator generates the inter-organization resource policy table ([0052] 322 a) as shown in FIG. 6.
  • As shown in the figure, the inter-organization resource policy table ([0053] 322 a) has entries for each outgoing interface of the border router of its organization. In each entry, (a) denotes organization IDs (50101) of other organizations to which the outgoing interfaces connect; (b) denotes policy server addresses of other organizations to which the outgoing interfaces connect; (c) denotes inter-organization link IDs (50103) given to the outgoing interfaces, i.e., given to inter-organization links; (d-1) is IP addresses (50104) of the incoming interfaces of the same border routers that correspond to the outgoing interfaces; (d-2) is IP addresses (50105) of the outgoing interfaces; (e) is IP addresses (50106) of the outgoing interfaces of the border routers of other organizations that connect to the outgoing interfaces; (f) denotes upper limit (M bits/sec) of the band of the outgoing interface available for each host that is set by the network administrator for the reservation type resource allocation request; and (g) is an upper limit (M bits/sec) of the band of the outgoing interface available for each host that is set by the network administrator for the immediate type resource allocation request. The network administrator generates the inter-organization link management table (321 c) as shown in
  • FIG. 7. As shown, the inter-organization link management table ([0054] 321 c) shows to which organization the inter-organization link of organization A is connected. The table describes, for each inter-organization link, (a) inter-organization link ID (50301) and (b) organization ID (50302) of other organization connected by the inter-organization link of the inter-organization link ID. For each customer host that is permitted the inter-organization communication, the network administrator registers the following with the intra-organization resource policy table (321 a):
  • (1) IF addresses of those hosts in a local organization which are permitted to communicate with other organizations; [0055]
  • (2) Inter-organization link IDs of the inter-organization links that the local organization has; [0056]
  • (3) Upper limits of the bands that the hosts of (1) can use in the communications via the interorganization link IDs of (2) when each of the reservation type and the immediate type resource allocation requests is made; [0057]
  • (4) Organization IDs of the organizations with which the hosts of (1) are allowed to have interorganization communication; and [0058]
  • (5) Paths in the local organization that are assigned the upper limits of (3). [0059]
  • The following items are registered for each outgoing interface of the border router: [0060]
  • (1) IP address of the outgoing interface; [0061]
  • (2) Inter-organization link IDs of the interorganization links that the local organization has; [0062]
  • (3) Upper limits of the bands that can be used by the communications directed toward the inter-organization links of (2) through the outgoing interface of (1) when each of the reservation type and the immediate type resource allocation requests is made; and [0063]
  • (4) Paths in the local organization that are assigned the upper limits of (3). [0064]
  • More specifically, the intra-organization resource policy table ([0065] 321 a) is generated as shown in FIG. 8.
  • In the table, (a) describes IP addresses ([0066] 50201) of the hosts or outgoing interface IP addresses of the border routers in the organization that are permitted an inter-organization communication. In this example, it shows IP addresses of the hosts Ha1 (10700), Ha2 (10800), Ha3 (10900) and three outgoing interface IP addresses of the border routers Bra1 and BRa2 in the organization A. (b) describes inter-organization links ID from the organization A to other organizations. Entered in (c-1) are upper limits of the band that the hosts or the outgoing interfaces of the border routers can use in the communication via the inter-organization link IDs of (b) in response to the reservation type requests. (c-2) describes upper limits (M bits/sec) of the band that the hosts or the outgoing interfaces of the border routers can use in the communication via the inter-organization link IDs of (b) in response to the immediate type requests. (d) describes with which organizations each host is allowed to make interorganization communication. (e) describes intraorganization paths for which the upper limits of (c-2) have been determined. Now, the network administrator determines the upper limits of bands of (c-1) and (c-2) and the paths of (e), as follows. Here, we will explain an example case of the band upper limit for the reservation type allocation. Suppose, as shown in FIG. 9, a network administrator has set in each communication link within the organization an upper limit of the band that each host can use for the reservation type allocation. The upper limits of the bands that each host can use for the reservation type allocation through the interorganization links are the values set in the interorganization resource policy table (322 a) of FIG. 6. The host Ha1 (10700) in the organization A and the router Ra1 (10400) in the same organization are connected by a physical link (LLa1) through their interfaces 10701 and 10402, with the band upper limit for reservation type allocation available for each host set at 10.0 (M bits/sec). The router Ra1 (10400) in the organization A and the border router BRa1 (10200) in the same organization are connected by a physical path (LLa2) through their interfaces 10401 and 10202, with the band upper limit for reservation type allocation available for each host set at 5.3 (M bits/sec). The border router BRa1 (10200) in the organization A and the border router BRc1 (30200) in the organization C are connected by a physical path (La2) through their interfaces 10201 and 30201, with the band upper limit for reservation type allocation available for each host set at 10.0 (M bits/sec). Hence, when the host Ha1 (10700) is to be serviced using the reservation type allocation from other organization through the link La2, because the potentially available band conforms to the least value of the bands described above, the upper limit of the band for the reservation type allocation is 5.3 (M bits/sec). The path has links Lla1, LLa2 and La2.
  • When the host Ha1 ([0067] 10700) is to be serviced using the reservation type allocation from other organization through the link La3, the available links are LLa1, LLa2, LLa3, LLa4 and La3. The router Ra1 (10400) in the organization A and the border router Bra1 (10200) in the same organization are linked by a physical link (LLa2) through their interfaces 10401 and 10202, with the band upper limit for reservation type allocation available for each host in the link LLa2 set at 5.3 (M 10 bits/sec), which is the smallest of the links. Hence, when the host Ha1 (10700) is to be serviced from other organization through the link La3, the potentially available band for the reservation type allocation has an upper limit of 5.3 (M bits/sec). The path has links LLa1, LLa2, LLa3, LLa4 and La3. Another path reaching the host Ha1 through the link La3 may take a link LLa8, but this path, because it further reduces the upper limit to 0.5 (M bits/sec), is not adopted.
  • When the host Ha1 (10700) is to be serviced using the reservation type allocation from other organization through the links La1, La2, the same processing as described above is also performed. When the host Ha3 ([0068] 10900) is to be serviced through the link La1 or La2, a band upper limit and a path are determined in the same way. The network administrator sets the organization-related policy table (321 d) and the user related policy table (321 e). In the organization related policy table (321 d), the network administrator describes, for each of other organizations that are permitted to use the local organization, upper limits of the bands in this organization that the other organizations are allowed to use; time zones during which the other organizations are permitted to use the bands of this organization; paths within this organization that the other organizations are permitted to use in communications passing through this organization (paths are each identified by a combination of links LLa in FIG. 9); in what way the other organizations are charged for the use of this organization; and in what order of priority the resource allocation requests from other organizations are to be processed. In the user-related policy table (321 e), the network administrator describes, for each user in this organization, the upper limits of bands the users are allowed to use, the time zones available for the users, in what priority order the resource allocation requests from the users are to be processed, and so on. In the user-related policy table (321 e), however, the band upper limits and the time zones available for the users and the order of priority in which the resource allocation requests from the users are to be processed may be specified for each group of users. Having set the inter-organization link management table (321 c) in the network path information database (305 a), the inter-organization resource policy table (321 a) in the operation policy database (302 a), the organization-related policy table (321 d), the user related policy table (321 e), and the inter-organization resource policy table (322 a), the network administrator now starts the operation of the policy server. Once the policy server is started, the interorganization resource allocation unit (310) exchanges the interorganization link management table (321 c) with other policy servers to update the inter-organization link management table (321 c). This processing is explained as follows. Suppose the policy server of organization A, when it is started, has the inter-organization link management table (321 c) of FIG. 7 set by the network administrator. It is also assumed that the policy servers of organizations B, C, D are already in operation. At this point the policy server of organization B has an inter-organization link management table shown in FIG. 10. That is, because the policy server of organization A was not operating, the policy server of organization B has the interorganization link management table indicating only that the inter-organization link Lb1 is connected to the organization C (organization ID number 64514) and the inter-organization link Lb2 to the organization D (organization ID number 64515). At this point the policy server of organization C maintains an inter-organization link management table shown in FIG. 11. That is, because the policy server of organization A was not operating, the policy server of organization C has the interorganization link management table indicating only that the interorganization link Lc1 is connected to the organization B (organization ID number 64513) and also connected through the organization B to the organization D (organization ID number 64515). At this point, the policy server of organization U maintains an interorganization link management table shown in FIG. 12. That is, because the policy server of organization A was not operating, the policy server of organization D has the inter-organization link management table indicating only that the interorganization link Ld1 is connected to the organization B (organization ID number 64513) and also connected through the organization B to the organization C (organization ID number 64514). When the policy server of organization A is started, it is supplied with the contents of the inter-organization link management tables from the adjoining organizations (organizations B and C). The policy server of organization A adds the contents of the received interorganization link management tables into the entries where the organization IDs of the organizations that have forwarded the inter-organization link management tables are registered, thereby reflecting them on its inter-organization link management table (321 c) as shown in FIG. 13. As a result, the policy server of organization A (10100) is now able to know, from the inter-organization link management table (321 c), which organization it can reach through which interorganization link. After this, the exchange of the inter-organization link management tables among the policy servers are repeated as required. Conversely, the content of the inter-organization link management table (321 c) made public by the organization A is successively propagated to other organizations, so that the information indicating through which inter-organization link the organization A can be reached is added to the interorganization link management table of each policy server. Once started, the policy server makes public and distributes the policy of its organization described in the intra-organization resource policy table (321 a) so that the information on those hosts in its organization that are permitted to communicate with other organizations can be registered in the out-of-organization host policy table (321 b) by the policy servers of the other organizations with which the hosts are permitted to communicate. In more concrete terms, for each of the hosts whose IP addresses are registered in the intraorganization resource policy table (321 a), the policy server sends a message over the inter-organization links connected to the local organization. Each of the messages sent over the inter-organization links includes the following information:
  • (1) IP address of the host; [0069]
  • (2) Organization IDs of the other organizations with which the host registered in the intra-organization resource policy table ([0070] 321 a) is permitted to communicate;
  • (3) Path information indicating the interorganization links through which the message is sent; and [0071]
  • (4) Band upper limits for the reservation type allocation and the immediate type allocation that are registered in the intra-organization resource policy table ([0072] 321 a) for each of the message carrying inter-organization links.
  • The host messages transmitted over the interorganization links are successively propagated from one organization to another and are finally received by each of the policy servers of the other organizations with which the hosts are permitted to communicate. This is realized as follows. The policy server of each of the other organizations transfers the messages received from one of the interorganization links connected thereto to all the other inter-organization links, i.e., all the host messages are sent out over each of the links. When it receives the message that it received in the past, the policy server discards it. The same transfer or relay operation is carried out by the policy server of each of the other organizations with which the hosts are permitted to communicate. For example, when the other organizations with which the host Ha1 “192. 16. 12. 100/24” ([0073] 10700) of organization A is permitted to communicate are the organizations B, C, D, as shown in FIG. 14, the three same host messages that were transmitted by the policy server one over each of the inter-organization links arrive at policy servers of the organizations B, C, D through three different paths. When the policy server of each of the other organizations B, C, D, with which the host Ha1 is permitted to communicate, relays the message received through one of the inter-organization links connected thereto to all the remaining inter-organization links, the policy server adds to the message the path information on both the inter-organization link that has received the message and the inter-organization link that transmits the message, or path information on only the message sending inter-organization link. Further, the policy server of each of the other organizations B, C, D determines, for the reservation type and immediate type allocations, the upper limit of the band available in the link from its message sending inter-organization link to the message-originating host Ha1 and adds the band upper limit to the message. The upper limit is determined for each of the reservation and immediate types as shown in FIG. 15.
  • Let us take an example path of BRd1 ([0074] 40200)<BRb2 (20300) C BRb1 (20200) C BRa2 (10300) C Ha1, connecting the bottom router to the top router in FIG. 14. In this case, the message the policy server PSb (2100) receives from the policy server PSa (10100) includes the information that the upper limit of the band available for the host Ha1 (10700) in the inter-organization link between the BRb1 (20200) and BRa2 (10300) is 3.5 (N bits/sec). The policy server PSb (20100) determines which of two band upper limits is smaller, the band upper limit available in the link between a message sending border router BRb2 (20300) and a message receiving border router BRb1 (20200) or the band upper limit added last to the message received from the policy server PSa (10100) (in this case, 3.5 N bits/sec first set by PSa). The policy server PSb (20100) uses the smaller one as a band upper limit to be added to the relay message which it will send out from BRb2 (20300). The band upper limit available in the link between the message sending border router BRb2 (20300) and the message receiving border router BRb1 (20200) uses the value registered in the intra-organization resource policy table which corresponds to the path between the outgoing interfaces of the two border routers (i.e., the intra-organization link connecting one outgoing interface and the other outgoing interface). This case refers to the intra-organization band information (available band: 2.7 (M bits/sec)) and thus the band upper limit of 2.7 (M bits/sec) is added to the message which the policy server PSb (20100) sends out from the message sending border router BRb2 (20300). Similarly, the policy server in each organization compares the band upper limit last added to the message it received with the band upper limit in the path between the message receiving outgoing interface and the message sending outgoing interface, and adds whichever is smaller to the message before sending the message out.
  • As a result, the message that has reached a certain organization has added thereto the minimum values of the band upper limits for all segments of the interorganization path that the message has traveled and which will be used when a communication from the organization that received the message to the message-originating host takes place, the band upper limits being set by the policy server of each of the organizations covering the segments of the path. In other words, the message has last added thereto the band upper limit that can be guaranteed for the inter-organization path that the message has traveled and which will be used by a communication from the organization that received the message to the message-originating host. The policy server that has received the message from the host, which is permitted to enter into an interorganization communication with the policy server's organization, registers in the out-of-organization host policy table ([0075] 321 b) the band upper limits for the reservation type and immediate type allocations that were last added to the received message and all path information added to the received message, i.e., information on the inter-organization path traveled by the message. FIG. 16 shows entries associated with the host Ha1 of the organization A which are registered in the out-of-organization host policy table (321 b) in the policy server of organization D. As shown in the table, column (a) (50401) describes an IP address of the host Ha1 and (b) (50402) describes an ID of the organization to which the host Ha1 belongs. For the three received messages about the host Ha1, there are three sets of information each consisting of (c) to (h). Column (c) (50403) denotes the band upper limit (M bits/sec) for the reservation type allocation last added to the message. Column (d) (50404) denotes the band upper limit (M bits/sec) for the immediate type allocation last added to the message (not shown in the figure). Column (e) (50405) denotes an IP address of an incoming path interface of the border router of the local organization that has received the host message. Column (f) (50406) denotes an IP address of an outgoing path interface of the border router of the local organization that has received the host message. Column (g) (50407) denotes IDs of the organizations that need to be passed through to reach the host of (a) in the order of passing. Column (h) denotes inter-organization path information indicating all path information added to the message. FIG. 15 shows the communication path from the organization D to the host Ha1, as specified by the out-of-organization host policy table (321 b) in the policy server of organization D of FIG. 16, and the band upper limits for the reservation type allocation. As shown in FIG. 14, for path 1: BRd1 (40200)>BRb2 (20300)>BRc2 (30300)>BRa2 (10300)>Ha1, the band is limited to 4.0M (bits/sec) in the link between BRd1 (40200) and BRb2 (20300) and thus the band upper limit in this path for the reservation type allocation is 4.0M (bits/sec). For path 2: BRd1 (40200)>BRb2 (20300)>BRc2 (30300)>BRc1 (30200)>BRa1 (10200)>Ha1, because the band is limited to 1.3M (bits/sec) in the network inside the organization C, the band upper limit in this path for the reservation type allocation is 1.3M (bits/sec). For path 3: BRd1 (40200)>BRb2 (20300)>BRb1 (20200)>BRa2 (10300)>Ha1, because the band is limited to 2.7M (bits/sec) in the network inside the organization B, the band upper limit in this path for the reservation type allocation is 2.7M (bits/sec). When the policy server of organization A starts its operation, the policy is made public and the information on the hosts of organization A that are permitted to communicate with other organizations is registered in the out-of-organization host policy tables (321 b) of the other organizations. The policy servers of organization A and other organizations repetitively make their policies public as required when they detect the starting of a new policy server or when their; policies are changed. As a result, the policy server of each organization has registered therein the information on the hosts of all other organizations that are permitted to perform inter-organization communication with its organization.
  • One example of the message used for making such a policy public is shown. [0076]
  • Here we take up an example of UPDATE message of BGP4 (Border Gateway Protocol Version 4). The BGP4 is originally intended for the transmission of routing information. In this embodiment, the BGP4 is attached with QoS policy information and transferred. The BGP with such an extended function is hereinafter called a policy distribution protocol. [0077]
  • FIG. 17 shows a message format of QoS attribute. The QoS attribute information is added to the protocol each time it passes through an organization. With this information, the policy server of each organization can retrieve all bandwidths that are expected to be available between the IDs of organizations that are passed through and the IP address of a destination organization, and can also retrieve path information. A host IP net mask ([0078] 11) and a host IP (10) are written with an IP address of a message-originating host. An AS-ID (50501) denotes an ID of an organization to which the policy server publicizing its policy belongs. A BR-IP net mask (50502) and a BR-IP (50503) are written with an address of a border router that has sent the message. This address can be used as the path information. An upper limit band available for reservation type allocation (50504) denotes an upper limit of a band available for the reservation type allocation. An upper limit band available for immediate type allocation (50505) denotes an upper limit of a band available for the immediate type allocation. A publicizing organization number (50510) and a publicizing organization (50511-50513) denote the number of organizations and the organization IDs in 50206 of the intra-organization resource policy table. Only when the policy server belonging to the organization corresponding to this organization ID receives the QoS attribute information, does it describes the information in the out-of-organization host policy table of FIG. 16.
  • FIG. 18([0079] a) shows the QoS attribute information that is to be transmitted from the policy server PS of the organization A to the policy server PS of organization B. Here, it is shown that the border router that can be used to reach Ha1 (10700) is a border router BRa2 (10300) of organization A and that the available band (for reservation type allocation) is 3.5 (M bits/sec). FIG. 18(b) shows the QoS attribute information added which is to be transmitted from the policy server PS of the organization B to the policy server PS of organization D (50600). Here it is shown that the border router that can be used to reach Ha1 (10700) is a border router BRb2 (20300) of organization B and that the available band (for reservation type allocation) is 2.7 (M bits/sec). When the out-of-organization host policy table (321 b) is prepared in this way, the policy server performs the resource allocation processing according to the network resource allocation request. The resource allocation processing includes reservation type resource allocation processing and immediate type resource allocation processing. Let us now explain about the reservation type resource allocation processing.
  • FIG. 19 shows the procedure of the reservation type resource allocation processing. The reservation type resource allocation processing is started by accepting a network resource allocation request from the network administrator or user as a resource allocation request that specifies a future time zone. First, the request accepting unit ([0080] 304) for accepting a resource allocation request from the user invokes request content reception processing (511) to receive the request from the network administrator or user which contains such information as source of resource allocation request, end points requesting resource allocation, content of resource allocation, and period of resource allocation, as exemplified in a reservation type network resource allocation request (108 a). The request accepting unit (304) then invokes request content analyzing processing (512) to sort and analyze the content. When the resource allocation request from the user is directly notified to the network administrator, not via the network, the administrator GUI unit (303) enables the network administrator to enter the user request. When the network administrator makes special settings to individual resource allocation requests, the administrator GUI unit (303) is used. Next, the operation policy search/update unit (302) verifies the resource allocation request from the user by searching through the operation policy database (302 a), with the requesting user as a key, for the content of the policy in the user-related policy table (321 e) associated with the requesting user. The result of search represents a policy set for the requesting user, like the one shown in an example (501) in which a policy is set for a user group. Next, the resource allocation arbitration control unit (305) performs the following steps. The request content decision processing (513) checks a resource allocation request (108 a) from the user against the content of the policy associated with user which is registered in the user-related policy table (321 e) to see whether the request meets the requirement of the policy. If the request falls within the range of the policy, the network path search processing (514) determines the range of the network path that requires the resource allocation, based on the host IP at the far end of the path. Then, based on the network path information database (305 a) containing the information on the paths connecting to other organizations, the other organization path use decision processing (515) checks whether the range of the searched path is closed within the network of the local organization and thereby decides whether it is necessary to transfer the resource allocation request to other organizations. When the path-to-other-organization use decision processing (515) has found it necessary to use paths to other organizations, the other organization resource allocation request preprocessing unit (306) performs the preprocessing for requesting the resource allocation request to other organizations.
  • FIG. 20 shows the processing performed by the preprocessing unit ([0081] 306). This processing references the information on the requesting host in the intraorganization resource policy table of FIG. 8 to check whether the destination host's organization is one of the other organizations with which the requesting host is permitted to communicate and whether the requested band meets one of the band upper limit requirements registered for each inter-organization link (step 516). When these requirements are satisfied, the question of whether the destination host is allowed to have an inter-organization communication with the organization of the requesting host is checked by looking up the out-of-organization host policy table (321 b) of FIG. 16 to see if the destination host is registered in it. Further, the band upper limits are registered in the out-of-organization host policy table (321 b) for each path associated with the destination host. A check is made to see if there is any path which contains the inter-organization links in the intra-organization resource policy table that have the band upper limits satisfying the requested band (517). Then if the above requirements are all met, candidate intra-organization links whose band upper limits satisfy the requirements are selected from the information registered for the requesting host on an interorganization link basis in the intra-organization resource policy table, and candidate intra-organization paths satisfying the requirements of the band upper limits and including the candidate inter-organization links are selected from the information registered for the destination host in the out-of-organization host policy table (321 b). One intra-organization path information and corresponding path information are selected from the candidates and transferred to the resource allocation decision processing (516).
  • To describe more specifically, suppose the requesting host is A and the destination host is B. Also suppose, for the requesting host A, the organization of the destination host B and the band upper limits for the [0082] link 1, link 2 and link 3 are registered in the intra-organization resource policy table. If the registered band upper limits for the link 1 and link 3 are equal to or more than the requested band, then the link 1 and link 3 are taken as candidates. Next, suppose the destination host B is registered in the out-of-organization host policy table; and also suppose, for the destination host B, paths 10 and 11 including the candidate link 1 and paths 13 and 14 including the candidate link 3 are registered. If the registered band upper limits for the path 10 including the link 1, for the path 13 including the link 3 and for the path 14 including the link 3 are equal to or more than requested band, then a pair of link 1 and path 10, a pair of link 3 and path 13, and a pair of link 3 and path 14 are taken as candidates. Then, one of these pairs is selected. If, for example, the selected pair is a pair of link 3 and path 13, the following information is transferred to the resource allocation decision processing (516): the intraorganization path information registered in the intra 10 organization resource policy table in association with the link 3 contained in the selected pair and with the requesting host A and also the path information registered in the out-of-organization host policy table (321 b) in association with the path 13 and with the destination host B.
  • Now, returning to FIG. 19, the resource allocation decision processing ([0083] 516) determines the content of the resource to be allocated. That is, the resource allocation request preprocessing unit (306) determines the content of resource allocation on a path according to the received intra-organization path information to ensure that the path will have a requested band in a requested time zone. Then, the unit checks the resource allocation schedule database (308 a) to see if the resource allocation as determined above can be reserved. If the reservation is possible, the resource allocation schedule search/update unit (307) processes the determined intra-organization resource allocation into a policy object in a form that allows the resource allocation function to be implemented and then registers the policy object. Then, the resource allocation execution unit (308) interprets the registered policy object according to the intraorganization resource allocation schedule and, by using the protocol such as SNMP and COPS, sends a control command requesting the execution of the determined resource allocation to the routers on the path described in the policy object. Upon receiving the control command, the routers allocate resources to the network paths.
  • When the resource allocation request preprocessing unit ([0084] 306) performs preprocessing for resource allocation to other organizations, the inter-organization resource allocation unit (310) is invoked. FIG. 21 shows the processing performed by the interorganization resource allocation unit (310). Because at this point the resource within the local organization has already been secured, this processing sends a resource allocation request to other organizations (520) together with the path information received from the resource allocation request preprocessing unit (306) to request the policy server of other organization, which is next to the local organization on the path indicated by the path information, to perform the resource allocation in that organization. Then, the other organization that received the resource allocation request sends returns to the requesting organization a report on whether the resource allocation request was successfully executed or failed (521). The returned report is checked by the inter-organization resource allocation decision processing (522). When a report indicating a successful execution of the resource allocation request is returned, the reservation of the inter-organization resource allocation is completed.
  • Next, the processing performed by the policy server when it receives a resource allocation request from a policy server of other organization will be explained. FIG. 22 shows the sequence of steps carried out by the policy server when it receives a resource allocation request from a policy server of other organization. This processing is started when the network resource allocation request from other organization is accepted. The request accepting unit ([0085] 322) invokes the request content reception processing (511) to receive a request, as exemplified in the network resource allocation request (108 c), from other organization and then invokes the request content analyzing processing (512) to break down, analyze and sort out the content of the received request. The resource allocation request from other organization is issued with the request source taken as a request issuing organization. Next, the operation policy search/update unit (302) searches through the organization-related policy table for the policy associated with the request source. The retrieved information over to the request acceptance decision processing (817). The resource allocation decision processing (516), when the preprocessing is not performed, searches through the intra-organization resource policy table for a registered intraorganization path between the interorganization link, which connect to the local organization as indicated by the path information accompanying the request, and the destination host, and then determines the resource allocation on the path according to the received intraorganization path information so that a path having the requested band in the requested time zone and conforming to the retrieved intra-organization path information can be secured. When the preprocessing has been performed, the resource allocation decision processing (516) determines the resource allocation on the path according to the received intra-organization path information to secure the path that has the requested band in the requested time zone and conforming to the intraorganization path information transferred from the preprocessing. After this, the resource allocation decision processing (516) checks the resource allocation schedule database (308 a) to see if the resource allocation as determined above can be reserved. When the reservation is found possible, the resource allocation schedule search/update unit (307) is started. These processing is similar to those explained by referring to FIG. 19.
  • The inter-organization resource allocation unit ([0086] 310), if the processing of the other organization resource allocation request preprocessing unit (306) has been executed, sends a resource allocation request also to the next policy server on the path information accompanying the received resource allocation request. Then, when the inter-organization resource allocation unit (310) receives a reply from the next policy server indicating a successful execution of the resource allocation request sent to the next policy server, it notifies the successful execution of the resource allocation request to the former policy server on the path information (the source that has issued the resource allocation request).
  • The processing of the reservation type resource allocation has been described. [0087]
  • The inter-organization resource allocation processing described above can use what is called a policy negotiation protocol, which is obtained by extending the signaling protocol COPS (Common Open Policy Service). The COPS is a policy signaling protocol that is defined by the IETF (Internet Engineering Task Force) and provides a mechanism allowing equipment such as policy servers and routers to exchange the network policies (for example, QoS policy). When the COFS is used, the equipment such as policy server that determines and specifies the policy is called a PDP (Policy Decision Point) and the equipment such as router that receives the directions from the PDP and performs control in compliance with the policy is called a PEP (Policy Enforcement Point). The policy negotiation protocol makes the policy server on the resource allocation requesting side behave as the PDP and the policy server on the request responding side behave as the PEP. The “negotiation” denotes jobs of making the resource allocation request and of responding to the request. The word negotiation will be used in the following explanations. [0088]
  • FIG. 23 is a sequence diagram showing the outline of the policy negotiation protocol. This protocol assumes that the control extends over different organizations. In response to a user in organization A requesting the reservation type allocation or immediate type allocation between it and a user in organization D, the policy server ([0089] 10100) of organization A is shown to be negotiating with the policy server (40100) of organization D through the policy server (20100) of organization B. The fundamental sequence of policy negotiation between two policy servers is as follows. In implementing the policy negotiation protocol, a session for policy negotiation protocol is established. In the organizations whose network administrators have agreed in advance to negotiate between them and which are interconnected by physical circuits, when the policy servers start their operation, the session is established by the PEP side policy server sending a Client-Open (CO) message (60101) and by the FDF side policy server receiving the Client-Accept (CA) message (60102). When the policy servers can be both PDP and PEP, they perform both the CO message sending and the CA message sending. In that case, two sessions are established between the organizations but only one session may be used for negotiation. The state of the session between the organizations is periodically checked by using a Keep-Alive (KA) message (60103, 60104) between the policy servers. When a negotiating event occurs, the PDP side policy server (here, policy server (10100) of organization A) sends a Decision (DEC (Install)) message (60105) carrying the negotiation content to the PEP side policy server (policy server (20100) of organization B). The policy server of the responding side organization attempts to make reservation for the resource in the organization, checks whether or not the QoS guaranteed path can be established, and returns a Report State (RFT (Install)) message (60108) carrying the information on success or failure of the negotiation in response to the DEC message.
  • Next, the negotiation sequence among three policy servers of organizations A, B, D based on the above fundamental negotiation sequence between two policy servers is explained as follows. [0090]
  • The PDP side policy server sends a DEC (Install) message ([0091] 60105) carrying the content of negotiation to a PEP side policy server, the policy server of the next organization on the inter-organization path (in this case, organization B) to which the PDP side policy server makes a resource allocation request. Upon receiving the DEC (Install) message, the PEP policy server checks the content of negotiation and attempts to allocate the resource inside its own organization. When it has found that the resource allocation is possible, the PEP policy server now acts as a PDP and sends a DEC (Install) message (60106) carrying the similar negotiation content to a PEP side policy server of the next organization on the inter-organization path (in this case, organization D) to which the second PDP policy server makes a resource allocation request. If its own organization is not the last of the organizations on the inter-organization path of which the resource allocation is requested, the PEP side policy server behaves the same way as described above. When, however, its organization is the last one and if the resource allocation within the organization is possible, the PEP side policy server returns a PRT (Installed/Notinstalled) message (60107) carrying the information on the success or failure of the negotiation to the policy server on the PDP side with respect to itself, which in turn returns a PRT (Installed/Notinstalled) message (60108) carrying the information on the success or failure of the negotiation to the policy server on the PDP side with respect to itself. The embodiment of the present invention has been described.
  • According to this embodiment, in a network system having a plurality of networks each provided with a policy server, the QoS control using a policy of the policy servers can be performed on the communications extending to different networks. For the communications covering multiple networks, the QoS control can be carried out not to violate the policy of each policy server of the networks through which the communications travel. [0092]
  • Although in the above embodiment a static policy is made public for use in the QoS control, it is possible to publicize, for use in the QoS control, the policy that dynamically changes according to the state of resource allocation. In the above embodiment, the policy on the band upper limits of the intraorganization links and inter-organization links is set for the communication of each host. It is also possible to use a policy that does not consider the number of hosts and which directly sets the band upper limits for the intra-organization links and the inter-organization links. [0093]
  • While the above embodiment has explained the policy made public for use in the QoS control as the policy on the transmission band, the policy publicized for use in the QoS control may be other policies that concern other resources. [0094]
  • While the present invention has been described in detail and pictorially in the accompanying drawings, it is not limited to such details since many changes and modifications recognizable to those of ordinary skill in the art may be made to the invention without departing from the true sprit and the scope thereof. [0095]

Claims (1)

What is claimed:
1. A network system having a plurality of interconnected networks each having a policy server, the policy server setting a quality-guaranteed path in the network according to a policy held in the policy server, the policy server comprising:
a policy holding unit to hold a policy defining a quality that can be guaranteed in its own network, or local network, for an inter-network communication;
a policy publicizing unit to make public the policy held in the policy holding unit to the policy servers of other networks;
a guaranteed quality calculation unit to calculate, from a policy publicized by a policy server of a network on a path between the local network and other network, a quality that can be guaranteed for the path between the local network and the other network; and
a quality-guaranteed path setting unit to provide a quality-guaranteed path, the quality-guaranteed path having a guaranteed quality within the quality calculated by the guaranteed quality calculation unit for the path between the local network and the other network.
US10/674,534 1999-10-05 2003-10-01 Network system having plural networks for performing quality guarantee among the networks having different policies Abandoned US20040064541A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US10/674,534 US20040064541A1 (en) 1999-10-05 2003-10-01 Network system having plural networks for performing quality guarantee among the networks having different policies

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
JP11-284862 1999-10-05
JP28486299A JP3636948B2 (en) 1999-10-05 1999-10-05 Network system
US09/520,832 US6708209B1 (en) 1999-10-05 2000-03-08 Network system having plural networks for performing quality guarantee among the networks having different policies
US10/674,534 US20040064541A1 (en) 1999-10-05 2003-10-01 Network system having plural networks for performing quality guarantee among the networks having different policies

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US09/520,832 Continuation US6708209B1 (en) 1999-10-05 2000-03-08 Network system having plural networks for performing quality guarantee among the networks having different policies

Publications (1)

Publication Number Publication Date
US20040064541A1 true US20040064541A1 (en) 2004-04-01

Family

ID=17684001

Family Applications (2)

Application Number Title Priority Date Filing Date
US09/520,832 Expired - Fee Related US6708209B1 (en) 1999-10-05 2000-03-08 Network system having plural networks for performing quality guarantee among the networks having different policies
US10/674,534 Abandoned US20040064541A1 (en) 1999-10-05 2003-10-01 Network system having plural networks for performing quality guarantee among the networks having different policies

Family Applications Before (1)

Application Number Title Priority Date Filing Date
US09/520,832 Expired - Fee Related US6708209B1 (en) 1999-10-05 2000-03-08 Network system having plural networks for performing quality guarantee among the networks having different policies

Country Status (3)

Country Link
US (2) US6708209B1 (en)
EP (1) EP1091526A3 (en)
JP (1) JP3636948B2 (en)

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040004941A1 (en) * 2002-07-02 2004-01-08 Malan Gerald R. Apparatus and method for managing a provider network
US20050149754A1 (en) * 2004-01-05 2005-07-07 Nokia Corporation Controlling data sessions in a communication system
US6990518B1 (en) 2001-03-22 2006-01-24 Agilent Technologies, Inc. Object-driven network management system enabling dynamically definable management behavior
US20060095566A1 (en) * 2004-03-30 2006-05-04 Yoichi Kanai Network communication device, method of maintenance of network communication device, program, recording medium, and maintenance system
US7043660B1 (en) * 2001-10-08 2006-05-09 Agilent Technologies, Inc. System and method for providing distributed fault management policies in a network management system
US20060230160A1 (en) * 2005-03-18 2006-10-12 Sap, Ag. Systems and methods for calculating a distribution
US20070124485A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Computer system implementing quality of service policy
US20070124433A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Network supporting centralized management of QoS policies
US20070206614A1 (en) * 2005-06-13 2007-09-06 Huawei Technologies Co., Ltd. Border/Packet Gateway Control System And Control Method
US20070217340A1 (en) * 2006-03-17 2007-09-20 Fujitsu Limited QoS information notification method, communication apparatus and inter-domain signaling apparatus for transmitting QoS information over a multi-domain network
US20080039097A1 (en) * 2006-08-09 2008-02-14 Seshadri Sathyanarayan Intelligent IP Services Edge with Dynamic QOS to individually and collectively enhance subscribers quality of experience (QOE) in Wireless Broadband Networks
US20100212000A1 (en) * 2004-03-30 2010-08-19 International Business Machines Corporation System, method and program for user authentication, and recording medium on which the program is recorded
US20110154364A1 (en) * 2009-12-22 2011-06-23 International Business Machines Corporation Security system to protect system services based on user defined policies
US20110264816A1 (en) * 2009-01-09 2011-10-27 Nec Europe Ltd. method for access control within a network and a network
US20130266017A1 (en) * 2010-12-16 2013-10-10 Ippei Akiyoshi Communication system, control apparatus, communication method, and program
US10868764B2 (en) 2016-05-17 2020-12-15 Nippon Telegraph And Telephone Corporation Route calculation control device and route calculation control method

Families Citing this family (57)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7139838B1 (en) * 1999-10-21 2006-11-21 Nortel Networks Limited Apparatus and method of distributing routing information
US7054938B2 (en) * 2000-02-10 2006-05-30 Telefonaktiebolaget Lm Ericsson (Publ) Method and apparatus for network service reservations over wireless access networks
KR100696003B1 (en) * 2000-04-13 2007-03-15 오페락스 아베 Network optimisation method
DE10021502A1 (en) * 2000-05-03 2001-11-08 Siemens Ag Method for securing the quality of service of connections between sub-areas of a packet-oriented network with a resource manager
DE10021499A1 (en) * 2000-05-03 2001-11-08 Siemens Ag Method for switching connections between at least two sub-areas of a packet-oriented network
US7111163B1 (en) 2000-07-10 2006-09-19 Alterwan, Inc. Wide area network using internet with quality of service
JP2002044292A (en) * 2000-07-21 2002-02-08 Oki Electric Ind Co Ltd Method of accounting charge for use of circuit resource, method and system for assigning circuit resource
US7152240B1 (en) * 2000-07-25 2006-12-19 Green Stuart D Method for communication security and apparatus therefor
US7606146B1 (en) * 2000-08-15 2009-10-20 Nortel Networks Limited Method and apparatus for implementing a policy-based management system on a network device
US6985447B2 (en) * 2000-10-20 2006-01-10 Nortel Networks Limited Label switched traffic routing and signaling in a label switched communication packet network
US6978301B2 (en) 2000-12-06 2005-12-20 Intelliden System and method for configuring a network device
US8219662B2 (en) 2000-12-06 2012-07-10 International Business Machines Corporation Redirecting data generated by network devices
US20050088977A1 (en) * 2000-12-14 2005-04-28 Nortel Networks Limited Dynamic virtual private network (VPN) tunnel quality of service (QoS) treatment
GB2373069B (en) * 2001-03-05 2005-03-23 Ibm Method, apparatus and computer program product for integrating heterogeneous systems
JP4284009B2 (en) * 2001-05-18 2009-06-24 富士通株式会社 A method for securing a transmission band in the Internet
US20030005115A1 (en) * 2001-06-27 2003-01-02 Walker Philip M. System and method for providing access to a resource
US8762568B1 (en) 2001-07-06 2014-06-24 Cisco Technology, Inc. Method and apparatus for inter-zone restoration
US7120156B2 (en) * 2001-07-16 2006-10-10 Telefonaktiebolaget Lm Ericsson (Publ) Policy information transfer in 3GPP networks
JP4828051B2 (en) * 2001-07-23 2011-11-30 京セラ株式会社 Wireless communication system and method, computer program, and wireless communication terminal
US6990593B2 (en) * 2001-07-31 2006-01-24 Hewlett-Packard Development Company, L.P. Method for diverting power reserves and shifting activities according to activity priorities in a server cluster in the event of a power interruption
US8296400B2 (en) 2001-08-29 2012-10-23 International Business Machines Corporation System and method for generating a configuration schema
US7197552B2 (en) * 2002-02-25 2007-03-27 Motorola, Inc. Optimized dynamic system restart sequence for a wide area communication system
WO2003083734A2 (en) 2002-03-27 2003-10-09 British Telecommunications Public Limited Company Policy based system management
EP1349316A1 (en) * 2002-03-27 2003-10-01 BRITISH TELECOMMUNICATIONS public limited company Policy based system management
JP3880451B2 (en) 2002-05-20 2007-02-14 富士通株式会社 Mobile communication system using RSVP
JP4206707B2 (en) * 2002-08-27 2009-01-14 株式会社日立製作所 Communication quality setting apparatus, method and program
EP1556998B1 (en) * 2002-11-01 2006-02-22 Telefonaktiebolaget LM Ericsson (publ) A method and system for policy-based control in a distributed network
CN100426733C (en) 2003-01-16 2008-10-15 华为技术有限公司 System for realizing resource distribution in network communication and its method
US20040186905A1 (en) * 2003-03-20 2004-09-23 Young Donald E. System and method for provisioning resources
EP1632067B1 (en) * 2003-06-12 2017-11-22 Camiant, Inc. Pcmm application manager
FR2857807B1 (en) * 2003-07-18 2005-12-02 Cit Alcatel TRANSACTION METHOD FOR PROVIDING RULES IN A MANAGED NETWORK BASED ON RULES
US20050038887A1 (en) * 2003-08-13 2005-02-17 Fernando Cuervo Mechanism to allow dynamic trusted association between PEP partitions and PDPs
EP1705993B1 (en) * 2004-01-23 2017-08-30 Camiant, Inc. Video policy server
US7177921B2 (en) 2004-03-18 2007-02-13 Hitachi, Ltd. Method and apparatus for storage network management
US7508840B2 (en) 2004-05-28 2009-03-24 Bae Systems Information And Electronic Systems Integration Inc. Mobile temporary incident area network for local communications interoperability
US20060028981A1 (en) * 2004-08-06 2006-02-09 Wright Steven A Methods, systems, and computer program products for managing admission control in a regional/access network
WO2006053111A2 (en) 2004-11-10 2006-05-18 Bae Systems Information And Electronic Systems Integration Inc. Device for recording and communicating crisis incidents
US8665087B2 (en) * 2004-11-10 2014-03-04 Bae Systems Information And Electronic Systems Integration Inc. Wearable or portable device including sensors and an image input for establishing communications interoperability and situational awareness of events at an incident site
US7593405B2 (en) * 2004-12-09 2009-09-22 Telefonaktiebolaget Lm Ericsson (Publ) Inter-domain traffic engineering
JP2006178554A (en) * 2004-12-21 2006-07-06 Hitachi Ltd Distributed policy cooperation method
US20060174035A1 (en) * 2005-01-28 2006-08-03 At&T Corp. System, device, & method for applying COS policies
JP4083753B2 (en) * 2005-02-28 2008-04-30 日本電信電話株式会社 Route transition grasping device, route transition grasping method, and route transition grasping program
US20070101018A1 (en) * 2005-11-01 2007-05-03 Meral Shirazipour Inter-domain QoS reservation establishment and modification
US20070143159A1 (en) * 2005-12-16 2007-06-21 Dillard Robin A R System and method for outcomes-based delivery of services
JP4486600B2 (en) * 2006-02-21 2010-06-23 日本電信電話株式会社 Path setting system and path setting method
US8000260B2 (en) * 2006-06-19 2011-08-16 International Business Machines Corporation Method for dynamic information technology infrastructure provisioning
US7620729B2 (en) * 2006-09-06 2009-11-17 International Business Machines Corporation Compliance initiative navigation
JP2008067056A (en) * 2006-09-07 2008-03-21 Kansai Electric Power Co Inc:The Network system
JP4973246B2 (en) * 2007-03-09 2012-07-11 日本電気株式会社 Access right management system, server, and access right management program
US7974204B2 (en) * 2007-11-07 2011-07-05 The Boeing Company Quality of service management for message flows across multiple middleware environments
WO2009087671A2 (en) * 2007-12-17 2009-07-16 Indian Institute Of Technology, Bombay Architectural framework of communication network and a method of establishing qos connection
US9113334B2 (en) * 2008-02-01 2015-08-18 Tekelec, Inc. Methods, systems, and computer readable media for controlling access to voice resources in mobile networks using mobility management signaling messages
US9327193B2 (en) * 2008-06-27 2016-05-03 Microsoft Technology Licensing, Llc Dynamic selection of voice quality over a wireless system
US9300642B2 (en) * 2010-11-09 2016-03-29 Cisco Technology, Inc. Restarting network reachability protocol sessions based on transport layer authentication
ES2609521T3 (en) * 2010-12-13 2017-04-20 Nec Corporation Communication route control system, route control device, communication route control method, and route control program
JP6275180B2 (en) * 2016-03-23 2018-02-07 ソフトバンク株式会社 SETTING INFORMATION GENERATION DEVICE, NETWORK CONTROL DEVICE, METHOD, AND PROGRAM
US10601678B2 (en) 2017-08-24 2020-03-24 Nternational Business Machines Corporation Localized sensor quality analysis and control

Citations (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5831972A (en) * 1996-10-17 1998-11-03 Mci Communications Corporation Method of and system for mapping sonet performance parameters to ATM quality of service parameters
US5884037A (en) * 1996-10-21 1999-03-16 International Business Machines Corporation System for allocation of network resources using an autoregressive integrated moving average method
US6021263A (en) * 1996-02-16 2000-02-01 Lucent Technologies, Inc. Management of ATM virtual circuits with resources reservation protocol
US6038214A (en) * 1996-02-23 2000-03-14 Sony Corporation Method and apparatus for controlling communication
US6041354A (en) * 1995-09-08 2000-03-21 Lucent Technologies Inc. Dynamic hierarchical network resource scheduling for continuous media
US6058113A (en) * 1997-09-30 2000-05-02 Lucent Technologies, Inc. Method for enhancing resource reservation communication
US6092113A (en) * 1996-08-29 2000-07-18 Kokusai Denshin Denwa, Co., Ltd. Method for constructing a VPN having an assured bandwidth
US6098099A (en) * 1998-04-21 2000-08-01 International Business Machines Corporation Third-party notification by network directory server
US6101549A (en) * 1996-09-27 2000-08-08 Intel Corporation Proxy-based reservation of network resources
US6104700A (en) * 1997-08-29 2000-08-15 Extreme Networks Policy based quality of service
US6278712B1 (en) * 1997-05-08 2001-08-21 Hitachi, Ltd. Network and switching node in which resource can be reserved
US6286052B1 (en) * 1998-12-04 2001-09-04 Cisco Technology, Inc. Method and apparatus for identifying network data traffic flows and for applying quality of service treatments to the flows
US20020016837A1 (en) * 1998-02-10 2002-02-07 Stanley T. Naudus Method and apparatus for sending delay sensitive information assisted by packet switched networks
US6748433B1 (en) * 1999-07-12 2004-06-08 Ectel, Ltd. Method and system for controlling quality of service over a telecommunication network

Patent Citations (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6041354A (en) * 1995-09-08 2000-03-21 Lucent Technologies Inc. Dynamic hierarchical network resource scheduling for continuous media
US6021263A (en) * 1996-02-16 2000-02-01 Lucent Technologies, Inc. Management of ATM virtual circuits with resources reservation protocol
US6038214A (en) * 1996-02-23 2000-03-14 Sony Corporation Method and apparatus for controlling communication
US6092113A (en) * 1996-08-29 2000-07-18 Kokusai Denshin Denwa, Co., Ltd. Method for constructing a VPN having an assured bandwidth
US6101549A (en) * 1996-09-27 2000-08-08 Intel Corporation Proxy-based reservation of network resources
US5831972A (en) * 1996-10-17 1998-11-03 Mci Communications Corporation Method of and system for mapping sonet performance parameters to ATM quality of service parameters
US5884037A (en) * 1996-10-21 1999-03-16 International Business Machines Corporation System for allocation of network resources using an autoregressive integrated moving average method
US6278712B1 (en) * 1997-05-08 2001-08-21 Hitachi, Ltd. Network and switching node in which resource can be reserved
US6104700A (en) * 1997-08-29 2000-08-15 Extreme Networks Policy based quality of service
US6058113A (en) * 1997-09-30 2000-05-02 Lucent Technologies, Inc. Method for enhancing resource reservation communication
US20020016837A1 (en) * 1998-02-10 2002-02-07 Stanley T. Naudus Method and apparatus for sending delay sensitive information assisted by packet switched networks
US6098099A (en) * 1998-04-21 2000-08-01 International Business Machines Corporation Third-party notification by network directory server
US6286052B1 (en) * 1998-12-04 2001-09-04 Cisco Technology, Inc. Method and apparatus for identifying network data traffic flows and for applying quality of service treatments to the flows
US6748433B1 (en) * 1999-07-12 2004-06-08 Ectel, Ltd. Method and system for controlling quality of service over a telecommunication network

Cited By (30)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6990518B1 (en) 2001-03-22 2006-01-24 Agilent Technologies, Inc. Object-driven network management system enabling dynamically definable management behavior
US7043660B1 (en) * 2001-10-08 2006-05-09 Agilent Technologies, Inc. System and method for providing distributed fault management policies in a network management system
US8103755B2 (en) * 2002-07-02 2012-01-24 Arbor Networks, Inc. Apparatus and method for managing a provider network
US20040004941A1 (en) * 2002-07-02 2004-01-08 Malan Gerald R. Apparatus and method for managing a provider network
US9578545B2 (en) * 2004-01-05 2017-02-21 Nokia Technologies Oy Controlling data sessions in a communication system
US20050149754A1 (en) * 2004-01-05 2005-07-07 Nokia Corporation Controlling data sessions in a communication system
US20060095566A1 (en) * 2004-03-30 2006-05-04 Yoichi Kanai Network communication device, method of maintenance of network communication device, program, recording medium, and maintenance system
US9253217B2 (en) 2004-03-30 2016-02-02 International Business Machines Corporation Authentication policy usage for authenticating a user
US8839393B2 (en) * 2004-03-30 2014-09-16 International Business Machines Corporation Authentication policy usage for authenticating a user
US8689302B2 (en) * 2004-03-30 2014-04-01 International Business Machines Corporation System, method and program for user authentication, and recording medium on which the program is recorded
US20130305313A1 (en) * 2004-03-30 2013-11-14 International Business Machines Corporation Authentication policy usage for authenticating a user
US20100212000A1 (en) * 2004-03-30 2010-08-19 International Business Machines Corporation System, method and program for user authentication, and recording medium on which the program is recorded
US9584548B2 (en) 2004-03-30 2017-02-28 International Business Machines Corporation Authentication policy usage for authenticating a user
US8296449B2 (en) 2005-03-18 2012-10-23 Sap Ag Systems and methods for calculating a distribution
US20060230160A1 (en) * 2005-03-18 2006-10-12 Sap, Ag. Systems and methods for calculating a distribution
US20110040715A1 (en) * 2005-03-18 2011-02-17 Sap Ag Systems and methods for calculating a distribution
US8078738B2 (en) * 2005-03-18 2011-12-13 Sap Ag Systems and methods for calculating a distribution
US7849200B2 (en) * 2005-03-18 2010-12-07 Sap Ag Systems and methods for calculating a distribution
US7881317B2 (en) * 2005-06-13 2011-02-01 Huawei Technologies Co., Ltd. Border/packet gateway control system and control method
US20070206614A1 (en) * 2005-06-13 2007-09-06 Huawei Technologies Co., Ltd. Border/Packet Gateway Control System And Control Method
US20070124433A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Network supporting centralized management of QoS policies
US7979549B2 (en) * 2005-11-30 2011-07-12 Microsoft Corporation Network supporting centralized management of QoS policies
US20070124485A1 (en) * 2005-11-30 2007-05-31 Microsoft Corporation Computer system implementing quality of service policy
US8005090B2 (en) 2006-03-17 2011-08-23 Fujitsu Limited QoS information notification method, communication apparatus and inter-domain signaling apparatus for transmitting QoS information over a multi-domain network
US20070217340A1 (en) * 2006-03-17 2007-09-20 Fujitsu Limited QoS information notification method, communication apparatus and inter-domain signaling apparatus for transmitting QoS information over a multi-domain network
US20080039097A1 (en) * 2006-08-09 2008-02-14 Seshadri Sathyanarayan Intelligent IP Services Edge with Dynamic QOS to individually and collectively enhance subscribers quality of experience (QOE) in Wireless Broadband Networks
US20110264816A1 (en) * 2009-01-09 2011-10-27 Nec Europe Ltd. method for access control within a network and a network
US20110154364A1 (en) * 2009-12-22 2011-06-23 International Business Machines Corporation Security system to protect system services based on user defined policies
US20130266017A1 (en) * 2010-12-16 2013-10-10 Ippei Akiyoshi Communication system, control apparatus, communication method, and program
US10868764B2 (en) 2016-05-17 2020-12-15 Nippon Telegraph And Telephone Corporation Route calculation control device and route calculation control method

Also Published As

Publication number Publication date
JP2001111613A (en) 2001-04-20
EP1091526A3 (en) 2002-08-21
EP1091526A2 (en) 2001-04-11
JP3636948B2 (en) 2005-04-06
US6708209B1 (en) 2004-03-16

Similar Documents

Publication Publication Date Title
US6708209B1 (en) Network system having plural networks for performing quality guarantee among the networks having different policies
US8599852B2 (en) Open service discovery and routing mechanism for configuring cross-domain telecommunication services
EP1021015B1 (en) System for policy-based network configuration
US9219718B2 (en) System and method for supporting sub-subnet in an infiniband (IB) network
US20170353394A1 (en) Resource placement templates for virtual networks
JP4213972B2 (en) Method and apparatus for network path configuration
US6961318B2 (en) Data transmission system for reserving a virtual connection over multiple IP networks by means of a reservation
US6988133B1 (en) Method and apparatus for communicating network quality of service policy information to a plurality of policy enforcement points
US7925737B2 (en) System and method for dynamic configuration of network resources
JP5450227B2 (en) Traffic control instruction device, traffic control instruction program, traffic control instruction system, and traffic control instruction method
JP2000316025A (en) Communication quality guarantee-type network system
MXPA03008477A (en) Policy-based synchronization of per-class resources between routers in a data network.
MXPA03008478A (en) Pool-based resource management in a data network.
MXPA03008475A (en) EDGE-BASED PER-FLOW QoS ADMISSION CONTROL IN A DATA NETWORK.
US7359387B2 (en) Systems and methods for implementing virtual router
US7643467B2 (en) Source-implemented constraint based routing with source routed protocol data units
US20070217340A1 (en) QoS information notification method, communication apparatus and inter-domain signaling apparatus for transmitting QoS information over a multi-domain network
JP5107339B2 (en) System and method for active geographic redundancy
JP2000312226A (en) Method for warranting communication quality
EP1751935B1 (en) Open service discovery and routing mechanism for configuring cross-domain telecommunication services
JP3438857B2 (en) Network communication quality control system and traffic management device
US7327677B2 (en) Method for establishment of connections of pre-determined performance for a packet-oriented communication network with a resource manager
US7555546B1 (en) Enterprise network services architecture
JP2001211175A (en) System for managing internet connection
Varadharajan et al. Securing communication in multiple autonomous system domains with software defined networking

Legal Events

Date Code Title Description
STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION