Patent application number | Description | Published |
20090122990 | NETWORK MOBILITY OVER A MULTI-PATH VIRTUAL PRIVATE NETWORK - Methods and apparatus for applying a single virtual private network (VPN) address to tunnels or connections associated with different access interfaces are disclosed. In one embodiment, a method includes establishing a first tunnel between a node and a VPN server. The first tunnel has a first address. The method also includes assigning a VPN address to the first tunnel, as well as establishing a second tunnel between the node and the VPN server. The second tunnel has a second address. The VPN address is assigned to the second tunnel, and VPN address is accessed by both the first address and the second address. | 05-14-2009 |
20100166179 | METHODS AND APPARATUS FOR BOOTSTRAPPING MOBILE-FOREIGN AND FOREIGN-HOME AUTHENTICATION KEYS IN MOBILE IP - Methods and apparatus for dynamically generating authentication keys are disclosed. Specifically, a Mobile-Foreign authentication key is separately generated by both the Mobile Node and Foreign Agent. Similarly, a Foreign-Home authentication key is separately generated by the Foreign Agent and the Home Agent. In accordance with one embodiment, generation of the Mobile-Foreign authentication key and Foreign-Home authentication key are accomplished via the Diffie-Hellman key generation scheme. | 07-01-2010 |
20110090815 | SYSTEM AND METHOD FOR PROVIDING A TRANSLATION MECHANISM IN A NETWORK ENVIRONMENT - An example method is provided and includes receiving a packet associated with a flow, determining a tunnel identifier for the flow, and determining a flow identifier for the flow. The method includes associating the flow identifier and the tunnel identifier to an Internet protocol (IP) address to generate a binding to be used for a network address and port translation (NAPT). In other embodiments, a routing decision is executed based on the binding between the identifiers and the IP address. The flow identifier can be a context identifier (CID), and the tunnel identifier can be a softwire tunnel ID. In yet other embodiments, the packet can be tagged as part of an encapsulation operation, which includes providing information about a network location at which the network address and port translation is to be executed. | 04-21-2011 |
20110103284 | Managing Router Advertisement Messages to Support Roaming of Wireless Mobile Client Devices - Techniques are provided to manage how router advertisement messages are forwarded for ultimate wireless transmission in a wireless network. In one embodiment, a multicast router advertisement message intended for a virtual local area network is converted into individual unicast router advertisement messages directed to specific wireless mobile client devices that are part of that virtual local area network. In another embodiment, router advertisement messages are routed between controllers according to the current location of a wireless mobile client device. In still other embodiments, techniques are provided to minimize the volume of the router advertisement messages sent over a wireless network, and to proactively send a unicast router advertisement message to a mobile client device that has performed a handoff, without waiting for a router solicitation message. | 05-05-2011 |
20110103344 | Neighbor Discovery Message Handling to Support Roaming of Wireless Mobile Client Devices - Techniques are provided herein to support roaming of wireless mobile client devices from one wireless local area network access point device to another wireless local area network access point device. Neighbor discovery messages are received from wireless mobile client devices. A neighbor discovery message specifies a target address for a neighbor discovery function. A response to a neighbor discovery message is sent to a wireless mobile client device such that the response message appears to have been sent by a wireless mobile client device that has an address that corresponds to the target address of the neighbor discovery message. | 05-05-2011 |
20110258431 | SYSTEM AND METHOD FOR PROVIDING PREFIXES INDICATIVE OF MOBILITY PROPERTIES IN A NETWORK ENVIRONMENT - An example method includes receiving an Internet protocol (IP) address request in a network and selecting an IP address associated with a prefix that represents an IP subnet. The prefix includes a color attribute to be provided as part of a communication session that includes a plurality of packets. The prefix defines one or more properties associated with an application for the session. The prefix is communicated to a network element in a signaling plane, the prefix is configured to be used to make a routing decision for at least some of the plurality of packets. In more specific embodiments, the method can include applying one or more network policies based on the prefix associated with the IP address. The method could also include decrypting an encryption protocol in order to identify the prefix of a subsequent communication flow, and executing a routing decision based on the prefix. | 10-20-2011 |
20120047263 | ATTRIBUTE DRIVEN MOBILE SERVICE CONTROL LOGIC - The disclosed embodiments enable service policies to be provisioned for a Mobile Node dynamically. A network device receives a message including at least one of one or more attributes of a Mobile IP session and one or more user preferences associated with the Mobile Node. One or more rules to be applied to the Mobile Node may then be identified. One or more of the identified rules are executed according to at least one of one or more of the attributes of the Mobile IP session and one or more of the user preferences associated with the Mobile Node. | 02-23-2012 |
20130139221 | Web Authentication Support for Proxy Mobile IP - Techniques are provided for performing web authentication of mobile wireless devices that roam from a wireless wide area network to a wireless local area network. A redirect rule is invoked when a request is received from the mobile wireless device for world wide web access in order to obtain authentication for the mobile wireless device before permitting world wide web access. When a world wide web access request is received from the mobile wireless device, it is redirected to an authentication portal to allow a user of the mobile wireless device to enter user credentials to allow for world wide web access using the IP address. | 05-30-2013 |
20130142182 | MOBILITY IN MULTI-DEVICE MULTI-HOMED DEPLOYMENTS - Systems and methods for providing identity management and mobility management are disclosed. The management scheme provides mobility in multi-device and multi-homed deployments. A collection of three identities, a device identity, a link layer identity, and a user identity, can be used to provide mobility for a number of devices under different use scenarios. In one embodiment, a method is disclosed for receiving messages from a mobile device at a mobility gateway, the messages including identifiers such as a user identifier, a link layer identifier, and a device identifier where identifiers are stored or retained at the mobility gateway. When a subsequent network attach request is received including one or more identifiers, a reconnection can occur, based on a result of comparing the stored identifiers with the received one or more identifiers. | 06-06-2013 |
20130195037 | SYSTEM AND METHOD FOR PROVIDING PREFIXES INDICATIVE OF MOBILITY PROPERTIES IN A NETWORK ENVIRONMENT - An example method includes receiving an Internet protocol (IP) address request in a network and selecting an IP address associated with a prefix that represents an IP subnet. The prefix includes a color attribute to be provided as part of a communication session that includes a plurality of packets. The prefix defines one or more properties associated with an application for the session. The prefix is communicated to a network element in a signaling plane, the prefix is configured to be used to make a routing decision for at least some of the plurality of packets. In more specific embodiments, the method can include applying one or more network policies based on the prefix associated with the IP address. The method could also include decrypting an encryption protocol in order to identify the prefix of a subsequent communication flow, and executing a routing decision based on the prefix. | 08-01-2013 |
20130223421 | SYSTEMS AND METHODS FOR SUPPORTING MULTIPLE ACCESS POINT NAMES FOR TRUSTED WIRELESS LOCAL AREA NETWORK - Systems and methods are provided for supporting multiple access point names for trusted wireless local area network (LAN.) In one method, the method includes receiving a packet at a mobile access gateway from a UE operating in a trusted wireless LAN, determining at the mobile access gateway an access point name (APN) associated with the received packet, and analyzing a binding update list (BUL) table to identify an IP address of the UE used by the determined APN. The method further includes modifying a source IP address of the received packet to the IP address of the UE used by the determined APN, and transmitting the packet to a home network associated with the APN. | 08-29-2013 |
20140026206 | SYSTEM AND METHOD FOR SUPPORTING WEB AUTHENTICATION - A method is provided in one example embodiment and includes receiving a discover message over a network; determining that the discover message is associated with an unauthenticated client (e.g., identifying a media access control (MAC) address); communicating a proxy binding update (PBU) having a binding type value set to a temporary status; and establishing a bidirectional tunnel for transporting traffic for the client. | 01-23-2014 |
20140056130 | PROVIDING INTEGRATED END-TO-END ARCHITECTURE THAT INCLUDES QUALITY OF SERVICE TRANSPORT FOR TUNNELED TRAFFIC - A method is provided in one example embodiment and includes receiving a request associated with a flow over a wireless link, where the request specifies resource requirements for the flow. The method also includes mapping an Internet protocol (IP) flow description to a plurality of tunnel IP addresses, and mapping a framed IP address to an access point (AP) tunnel endpoint address in order to establish a quality of service (QoS) for tunneled traffic. | 02-27-2014 |
20140153473 | Managing Router Advertisement Messages To Support Roaming Of Wireless Mobile Client Devices - Techniques are provided to manage how router advertisement messages are forwarded for ultimate wireless transmission in a wireless network. In one embodiment, a multicast router advertisement message intended for a virtual local area network is converted into individual unicast router advertisement messages directed to specific wireless mobile client devices that are part of that virtual local area network. In another embodiment, router advertisement messages are routed between controllers according to the current location of a wireless mobile client device. In still other embodiments, techniques are provided to minimize the volume of the router advertisement messages sent over a wireless network, and to proactively send a unicast router advertisement message to a mobile client device that has performed a handoff, without waiting for a router solicitation message. | 06-05-2014 |
20140169374 | SYSTEM AND METHOD FOR PROVIDING A TRANSLATION MECHANISM IN A NETWORK ENVIRONMENT - An example method is provided and includes receiving a packet associated with a flow, determining a tunnel identifier for the flow, and determining a flow identifier for the flow. The method includes associating the flow identifier and the tunnel identifier to an Internet protocol (IP) address to generate a binding to be used for a network address and port translation (NAPT). In other embodiments, a routing decision is executed based on the binding between the identifiers and the IP address. The flow identifier can be a context identifier (CID), and the tunnel identifier can be a softwire tunnel ID. In yet other embodiments, the packet can be tagged as part of an encapsulation operation, which includes providing information about a network location at which the network address and port translation is to be executed. | 06-19-2014 |
20150029947 | SYSTEM FOR SUPPORTING LOGICAL MOBILE NODES ON A MOBILE ACCESS GATEWAY - In one embodiment, a mobile access gateway (MAG) includes a processor, a communications interface, and logic. The communications interface is configured to communicate with at least one mobile network and at least one local mobility anchor. The logic includes a mobile node logical instance module and an selection module. The mobile node logical instance module is configured to cooperate with the processor to create a first logical instance of a first mobile node on the MAG, and the address selection module is configured to cooperate with the processor to configure an egress roaming interface for the MAG. | 01-29-2015 |