Invention Grant
US07643488B2 Method and apparatus for supporting multiple customer provisioned IPSec VPNs
有权
支持多个客户提供的IPSec VPN的方法和设备
- Patent Title: Method and apparatus for supporting multiple customer provisioned IPSec VPNs
- Patent Title (中): 支持多个客户提供的IPSec VPN的方法和设备
-
Application No.: US11540198Application Date: 2006-09-29
-
Publication No.: US07643488B2Publication Date: 2010-01-05
- Inventor: Bakul Khanna , Ramasamy Jesuraj
- Applicant: Bakul Khanna , Ramasamy Jesuraj
- Applicant Address: CA St. Laurent, Quebec
- Assignee: Nortel Networks Limited
- Current Assignee: Nortel Networks Limited
- Current Assignee Address: CA St. Laurent, Quebec
- Agency: Anderson Gorecki & Manaras LLP
- Main IPC: H04L12/28
- IPC: H04L12/28
Abstract:
Customer Traffic may be segregated using customer provisioned IPSec VPNs implemented using group security association for IPSec tunnels, by causing the CE network element to implement multiple VRFs for the several VPNs, each of which may be used for a different segment of the customer's traffic. The CE network element may implement a single MPBGP peering session with the GCKS/RR for all VPNs, and may establish secure data channels for each of the VPNs based on the group security associations for each of the VPNs. Although a common MPBGP peering session may be used, routing information for the several VRFs may be separated by applying per-VRF import policies at the CE, so that each VPN only has access to routes intended to be advertised to that VPN.
Public/Granted literature
- US20080092229A1 Method and apparatus for supporting multiple customer provisioned IPSec VPNs Public/Granted day:2008-04-17
Information query
