Abstract: A system for providing a dynamic portal page in a content distributed network responds to a client request by generating the dynamic portal page at a content engine. The content engine has a portal template with at least one dynamic portion. The content engine writes into the at least one dynamic portion of the portal template links to content cached at the content engine. The content engine also writes into the at least one dynamic portion of the portal template information about availability of content not yet cached at the content engine.

Abstract: Methods and apparatus are described for routing data traffic in a network having a plurality of layers including physical, data link, and network layers. The data traffic is received and one of a plurality of routing options for the data traffic is selected with reference to information outside of the physical, data link, and network layers. The data traffic is then routed according to the selected routing option.

Abstract: Disclosed are, inter alia, methods, apparatus, data structures, computer-readable media, and mechanisms, for policy-based processing of packets, including mechanisms for managing the policies. A user is authenticated and its user group identifier is identified. A packet is received and is associated with the user group identifier, and one or more fields (typically other than the source address field) of the packet are used to identify a second group identifier. A lookup operation is then performed on a policy based on the first and second group identifiers to identify a packet processing action to be performed on the packet. These identifiers are typically not network addresses, which disassociates the policy from physical network addresses (which often are dynamically assigned and may also vary based on the access point into the network of a user), and allows a switching device to process packets based on a policy stated using group identifiers.

Abstract: Method and system for providing load balancing in Infiniband-to-Ethernet networks including detecting a data traffic request, determining a network interface port information associated with the detected data traffic request, and selecting a network gateway based on the network interface port information is disclosed.

Abstract: A method, apparatus and computer program product for providing secure multipoint Internet Protocol Virtual Private Networks (IPVPNs) is presented. A packet lookup is performed in order to determine a next hop. A VPN label is pushed on the packet, as is an IP tunnel header. Group encryption through the use of DGVPN is further utilized. In such a manner secure connectivity and network partitioning are provided in a single solution.

Abstract: Systems and methods are disclosed herein to provide IP bonding. For example, in accordance with an embodiment of the present invention, an IP bonding scheme is disclosed that modifies Generic Routing Encapsulation techniques such that information may be divided and carried through multiple paths (e.g., to improve capacity).

Abstract: In one embodiment, a method includes synchronizing to a common reference timeframe between a sender node and a plurality of receiver nodes connected over a packet-based network. The sender node sends Real-Time Protocol (RTP) frames to the receiver nodes, and also sends a RTP Control Protocol (RTCP) sender report to each receiver node that contains a rendering offset value, each receiver node rendering the RTP frames at a render time equal to a sampling time in units of the common reference timeframe plus the rendering offset value. It is emphasized that this abstract is provided to comply with the rules requiring an abstract that will allow a searcher or other reader to quickly ascertain the subject matter of the technical disclosure.

Abstract: A method and system for transferring licenses between electronic devices supporting licensable features. Specifically, in a method a request is generated for transferring a license between first and second electronic devices. The request includes first information unique to the first electronic device, second information unique to the second electronic device. The request is sent to a license distributor to generate a master key. The master key includes a removal key including the first information and an add key including the second information. The removal key is used to remove the license from the first electronic device when the first information matches official versions of the first information. The add key is revealed from the master key when the license is successfully removed. The add key is used to add the license to the second electronic device when the second information matches official versions of the second information.

Abstract: A method is disclosed for protecting a network against a denial-of-service attack by inspecting application layer messages at a network element. According to one aspect, when a network element intercepts data packets that contain an application layer message, the network element constructs the message from the payload portions of the packets. The network element determines whether the message satisfies specified criteria. The criteria may indicate characteristics of messages that are suspected to be involved in a denial-of-service attack, for example. If the message satisfies the specified criteria, then the network element prevents the data packets that contain the message from being received by the application for which the message was intended. The network element may accomplish this by dropping the packets, for example. As a result, the application's host does not waste processing resources on messages whose only purpose might be to deluge and overwhelm the application.

Abstract: A method and device for efficient transmission of flood data frames in a backbone network comprising a plurality of virtual local area networks (VLANs). A flood data frame is received at an intermediate network device communicatively coupled to a backbone network, wherein the destination of the flood data frame is unknown. A customer associated with the flood data frame is identified. A customer multicast group associated with the customer is identified, the customer multicast group identifying at least one destination intermediate network device coupled to the backbone network. The flood data frame is forwarded to at least one destination intermediate network device of the customer multicast group.

Abstract: Wired data telecommunications networks can make advantageous use of a communications capability between and among more than two network devices. Such capabilities may be utilized in providing redundancy of data and/or inline power capabilities from a pair of network devices to a third network device receiving the redundant capability. Impedance modulated communications are provided in a wired data telecommunications network among at least a first, second and third network device coupled together via a Y device. The Y device couples the three network devices (higher order Y devices could couple more than three devices) allowing monitoring of communications and inline power provision so that one of the network devices may act in response to monitored conditions by communicating via impedance modulated communications with one or both of the other network devices.

Abstract: A method and system for efficient utilization of transmission resources in a wireless network includes requesting retransmission of an unsuccessfully received radio frame up to an allowed number of times. In response to at least unsuccessfully receiving the frame from the allowed number of retransmissions, a signal is generated for transmission to a device transmitting the frame. The signal is operable to prevent the device from transmitting a set of remaining frames for a packet to which the frame belongs.

Abstract: The methods and apparatuses detect a plurality of pixels within a frame; separate a portion of the plurality of pixels into a lossless category based on inclusion of the portion of the plurality of pixels within a color list; and identify a particular pixel as an isolated pixel through a single point identification module wherein the particular pixel is within the portion of the plurality of pixels.

Abstract: A method for inline intrusion detection includes receiving a packet at a network gateway, storing the packet, and assigning an identifier to the packet. The method also includes transmitting a copy of the packet and the identifier from the network gateway to an intrusion detection system and analyzing the copy of the packet by the intrusion detection system to determine whether the packet includes an attack signature and communicating a reply message from the intrusion detection system to the network gateway. The reply message includes the identifier and is indicative of the results of the analysis. The size of the reply message is less than the size of the packet.

Abstract: Internet content is coordinated with audio communications, such that two or more parties can view the same media content on the Internet while simultaneously communicating over a traditional telephony network or via voice over network. A user computer displays shared content that corresponds to a second computer's display, such that both parties view the same content on their browsers. Either of the parties is allowed to update the visual content of their browsers. Updates in the visual content are transmitted to the other parties so that all parties view the same, shared content. The shared content can include web pages, forms, applications, images, conferences, and files among other information.

Abstract: In one embodiment a thermal dissipation heat slug sandwich includes a circuit board, a circuit package having an integrated heat slug mounted to an obverse side of the circuit board, and a lower heat sink plate on a reverse side of the circuit board thermally coupled to the heat slug and a housing enclosing the circuit board An upper heat sink plate may be mounted to the obverse side of the circuit board to cover the circuit package. The upper heat sink plate thermally coupled to the lower heat sink plate through the circuit board. An insulating cover may also be provided to redirect radiant heat from the circuit package to the housing.

Abstract: An application server-centric approach for managing quality of service in network communications involves an application server causing the modification of an existing communications session with a device, via a layer-2 change to a communications link used by the session, so that the session supports a different quality of service level for the device. The process starts when a request to initiate a communications session is received from a device. A session is initiated with the device, wherein the session supports a first quality of service level. In response to detecting the occurrence of an event, an application server determines that a second quality of service level is to be supported based upon the detected event and service criteria data. The application server then causes the existing session to be modified, via a layer-2 change to the communications link, so that the existing session supports the second quality of service level for the device.

Abstract: In one embodiment, a more capable device (MCD) in a computer network may determine one or more a critical destinations (CDs), and may transmit an unsolicited reactive routing route request (RREQ) message to each CD. The MCD may then receive a route reply (RREP) message from the CDs having a route from the MCD to the CD, and may store the route at the MCD. Subsequently, the MCD may transmit a RREP message of its own to one or more less capable devices (LCDs) to provide the route from each respective LCD to the CD via the MCD.

Abstract: In one embodiment, an apparatus includes a network arrangement and an email arrangement. The network arrangement is configured to enable the apparatus to communicate across a network. The email arrangement cooperates with the network arrangement to send and to receive emails. The email arrangement includes presence logic that monitors user interaction based presence with respect to a first email.