METHOD AND APPARATUS FOR ASSIGNING AND ALLOCATING NETWORK RESOURCES TO LAYER 1 VIRTUAL PRIVATE NETWORKS
Network resources are assigned as dedicated, shared, or public network resources. The resources are then allocated to L1-VPN subscribers on demand. Splitting assignment of the resources from allocation of the resources enables resources to be assigned to more than one subscriber on the network. Temporary physical dedication of the resources to one of the subscribers may be accomplished by allocating the assigned resources on demand, so that particular subscribers are provided with dedicated resources on an as-needed basis. Dedication of the network resources allows the network resources to be configured, managed, and controlled by the customers. The network resources may be optical resources and the links may be time slots on particular fibers. Optionally, by enabling prioritization to cause displacement of link allocations, additional flexibility may be obtained in allocating links to L1-VPNs such as by allowing the use of private and shared resources by other subscribers.
Latest Rockstar Consortium US LP Patents:
- OPTICAL SWITCH AND PROTOCOLS FOR USE THEREWITH
- OPTICAL SWITCH AND PROTOCOLS FOR USE THEREWITH
- OPTICAL SWITCH AND PROTOCOLS FOR USE THEREWITH
- Controlling allocation of a portion of a shared channel to use for control information
- Cross-connect using ethernet multiplexors for a simple metro ethernet network
This patent application claims priority to and is a continuation of co-pending U.S. patent application Ser. No. 12/723,010, entitled “METHOD AND APPARATUS FOR ASSIGNING AND ALLOCATING NETWORK RESOURCES TO LAYER 1 VIRTUAL PRIVATE NETWORKS,” filed on Mar. 12, 2010, which claims priority to and is a continuation of U.S. patent application Ser. No. 10/810,244, entitled “METHOD AND APPARATUS FOR ASSIGNING AND ALLOCATING NETWORK RESOURCES TO LAYER 1 VIRTUAL PRIVATE NETWORKS,” filed on Mar. 26, 2004, now U.S. Pat. No. 7,680,934, the disclosures of each of which are hereby incorporated herein by reference in their entireties.
TECHNICAL FIELDThe present invention relates to communication networks and, more particularly, to a method and apparatus for assigning and allocating network resources to layer 1 virtual private networks.
BACKGROUNDData communication networks may include various computers, servers, nodes, routers, switches, bridges, hubs, proxies, and other network devices coupled to and configured to pass data to one another. These devices will be referred to herein as “network elements.” Data is communicated through the data communication network by passing protocol data units, such as Internet Protocol packets, Ethernet Frames, data cells, segments, or other logical associations of bits/bytes of data, between the network elements by utilizing one or more communication links between the devices. A particular protocol data unit may be handled by multiple network elements and cross multiple communication links as it travels between its source and its destination over the network.
Communication network subscribers may at times desire to have dedicated network resources allocated through a public or other entity's network infrastructure. For example, a subscriber may wish to lease network resources, such as optical network resources, from another network operator that has already installed optical fiber and optical networking equipment. This may be advantageous for the subscriber, for example, in that it may allow the subscriber to manage and control the network resources in a manner that would not be possible if the network resources were shared with other subscribers.
There are several scenarios where it may be desirable for a subscriber to purchase or lease a portion of a deployed network. For example, a network operator may wish to enter a particular market and not incur the up front costs associated with deploying its own optical network. Alternatively, a network operator may wish to deploy the physical assets only and allow other network operators to manage the use of those network assets. An example of this scenario may be a company that installs a large optical fiber bundle across an obstacle such as the Atlantic Ocean, and then desires to allow companies to lease portions of the bandwidth for transmission of data across the ocean. The company that owns the cable may not have any interest in operating a network across that cable but rather would prefer to simply collect for allowing others to use the cable to transmit information. In these and other situations, it becomes desirable to allocate a portion of the deployed physical assets to a particular customer.
Virtual Private Networks (VPNs) at Layers 2 and 3 of the network hierarchy are able to create tunnels through an otherwise provisioned network, and allow the network to be shared by many different participants in a secure manner. These VPNs, however, do not actually obtain dedicated rights to the network resources for transmission of data associated with the VPN. Rather, the data is mixed together with other traffic and transmitted in common with other traffic on the network. For example, an MPLS VPN may be used to create a VPN tunnel across an MPLS network. RSVP-TE or another protocol may be used to reserve statistical resources for that tunnel. However, the packets that are sent over the tunnel are not sent over dedicated resources on the network, but rather are multiplexed with numerous other packets from other VPNs as they travel through the network.
Thus, although a subscriber of layer 2 or layer 3 VPN network services may be guaranteed bandwidth on a network in a statistical fashion, it does not have dedicated resources on the network to handle its traffic. Without having dedicated resources on the network, the subscriber cannot control the network resources since doing so would affect other network subscribers. The lack of control limits the subscribers ability to customize the network to accommodate its requirements, and thus requires the subscriber to request network changes from the network owner, which is generally a slow process and, more importantly, may not be possible given the shared nature of the network resources. Thus, layer 2 and 3 VPNs are not suitable for particular subscribers that may wish to exert control over the network resources.
Conventionally, to provide dedicated resources, it was necessary for the subscriber to purchase a portion of the network to create an actual private network. This required the client to obtain sufficient resources to meet its expected peak load, did not allow for resources to be shared (except at layer 2 and above) and did not provide flexibility to enable additional resources to be obtained quickly or on demand.
SUMMARYThe present invention overcomes these and other drawbacks by providing a method and apparatus for assigning and allocating network resources to layer 1 virtual private networks. Layer 1 Virtual Private Networks (L1-VPNs) allow network resources to be physically assigned to a particular customer such that the resources deployed within the network may be controlled by the customer. This allows the subscriber to test the links and devices on the network, reset the links, perform fault detection and notification operations, and perform many other functions as if the subscriber owned the network resources. According to an embodiment of the invention, assignment of network resources to L1-VPNs is separated from allocation of the resources, so that network resources may be assigned to more than one subscriber on the network even though they will only be allocated to one L1-VPN subscriber at a time. The temporary physical dedication of the resources to one of the subscribers may be accomplished by allocating the assigned resources on demand so that a particular subscriber is provided with dedicated resources on an as-needed basis.
According to an embodiment of the invention, resources on a communication network may be assigned for use by a particular L1-VPN customer, a group of L1-VPN customers, or any L1-VPN customer, and then allocated to the L1-VPN customers on an as-needed basis. Assigning resources such as links through the network and interfaces on network elements enables L1-VPN customers to obtain particular network resources that may be configured, managed, and controlled by the customers. Allocating the assigned resources to the customers on an as needed basis allows for sharing of assigned resources between multiple customers to enable over-subscription of network resources in the L1-VPN context. According to an embodiment of the invention, a management plane on the network assigns links, either logical or physical, to particular VPNs when the L1-VPNs are first set up on the network. The link assignment is then passed to a control plane configured to maintain current allocation information about the network. When a request for L1-VPN services is then received, e.g. by the control plane, the assigned resources may be allocated to the L1-VPN. The allocation is then passed to the network elements forming the transport plane to allow the L1-VPN services to be provided to the requesting subscriber.
The network resources may be optical resources and the links may be time slots on particular fibers. The network resources may be links on the network, and may be parallel-aggregated or serial-aggregated links. The network resources may be dedicated, shared, or public network resources that may be allocated to a particular L1-VPN, a set of particular L1-VPNs or any requesting L1-VPN respectively. Optionally, by enabling policy to be implemented in the allocation process, such as by enabling prioritization to cause displacement of link allocations, additional flexibility may be obtained in allocating links to L1-VPNs.
Aspects of the present invention are pointed out with particularity in the appended claims. The present invention is illustrated by way of example in the following drawings in which like references indicate similar elements. The following drawings disclose various embodiments of the present invention for purposes of illustration only and are not intended to limit the scope of the invention. For purposes of clarity, not every component may be labeled in every figure. In the figures:
The following detailed description sets forth numerous specific details to provide a thorough understanding of the invention. However, those skilled in the art will appreciate that the invention may be practiced without these specific details. In other instances, well-known methods, procedures, components, protocols, algorithms, and circuits have not been described in detail so as not to obscure the invention.
According to an embodiment of the invention, resources on a communication network may be assigned for use by a particular L1-VPN customer, a group of L1-VPN customers, or any L1-VPN customer, and then allocated to the L1-VPN customers on an as-needed basis. Assigning resources such as links through the network enables L1-VPN customers to obtain particular network resources that may be configured, managed, and controlled by the customers. Allocating the assigned resources to the customers on an as needed basis allows for sharing of assigned resources between multiple customers to enable oversubscription of network resources in the L1-VPN context.
According to one embodiment of the invention, a management plane on the network assigns links, either logical or physical, to particular VPNs. The link assignment is passed to a control plane and allocated to L1-VPN customers dynamically as required, so that the network elements, links, and other resources forming the transport plane may be temporarily dedicated to be used by a L1-VPN customer as required. The network resources may be optical resources or other types of network resources, and the links may be time slots on particular fibers or other discrete network components. These and other embodiments will be discussed in greater detail below in connection with
The management center may be connected to the network elements using dedicated control channels, or may be connected to the network elements through the data network being controlled by the control plane and forming the transport plane in the network 10. The invention is not limited to a particular manner of interconnecting the management center and the network elements or the particular protocols used to interface these network constructs. Examples of several protocols that may be used to communicate between these devices include Transaction Language 1 (TL1), a telecommunications management protocol used extensively to manage SONET and optical network devices, and TeleManagement Forum 814 (TMF-814), a telecommunications management protocol developed for the management of SONET/SDH/WDM/ATM transport networks.
The management center allocates VPNs over links on the network. According to one embodiment of the invention, the network is an optical network including optical fibers forming links between optical networking equipment at the nodes on the network. Conventionally, data is transmitted over optical fibers by breaking the available light for transmission into lambdas, and then further subdividing the lambdas into time slots. Each time slot on each lambda may be considered a link. Alternatively, groups of time slots on a lambda or time slots on different lambdas may be grouped to form logical links on the network. Thus, link connections between associated connection points in a network that terminate on the same subnetwork can be aggregated in parallel to form a link on the network. A link including several parallel connections will be referred to herein as a parallel-aggregated link.
Additionally, individual fibers are terminated at connection points and signals from the fibers are passed on toward subsequent connection points on the network over other optical fibers. Link connections on separate fibers can be aggregated in series to form a serial-aggregated link connection i.e., a series of contiguous link connections and subnetwork connections. This in turn allows the construction of serial-aggregated links. As used herein, the term “link” is to be interpreted as encompassing parallel-aggregated links, serial-aggregated links, serial-parallel-aggregated links, logical links, simple connections between connection points, and other logical associations of time slots on lambdas on the network. Allocation of links may require the concomitant creation and allocation of interfaces on the network element.
Although the invention will be discussed herein in terms of allocation of optical layer 1 resources to a L1-VPN on an optical network, the invention is not limited to allocation of optical network resources. Rather, the invention may similarly be used to allocate other resources, such as optical resources in a wireless optical network, RF resources on a wireless data network, and other physical network resources in other types of networks. Thus, the invention may be used advantageously in multiple types of communication networks. Numerous types of layer 2 through layer 7 traffic may be carried on the L1-VPN resources, and the invention is not limited to any particular type of traffic on the L1-VPN.
As shown in
According to an embodiment of the invention, control subnetwork points (SNPs) in the control plane are associated with transport connection points in the transport plane. The potential connection point-SNP associations are determined by configuration, while actual associations are determined at the time a connection is made. This allows network outages and other faults on the network to be accommodated.
From a routing perspective, transport link connections are associated to SNP link connections. SNPs may be grouped into subnetwork point pools (SNPPs) for the purpose of routing. Associations between SNPPs are called SNPP links. When a VPN subscriber initially contracts for L1-VPN resources, the management station provides routes through the network by assigning SNPP links to the L1-VPN. The SNPP link assignment is then provided to the control plane and allocated links are translated to the transport plane.
From a link allocation perspective, connection points (CPs) are associated to create link connections. Link connections are aggregated to create links. These links are used for L1-VPN resource management. The L1-VPN link assignments that are affected by the SNPP link assignment will be passed to the transport plane to affect the assignment on the network. According to an embodiment of the invention, a given SNPP link may include dedicated, shared, or public link connections. Enabling SNPP links to include shared links and public links enables a network operator to oversubscribe the network resources by enabling a particular physical link on the network to be assigned to more than one subscriber, even though the link will only be allocated to one subscriber at a time.
Thus, SNPP links are created and assigned to VPNs in the control/management plane. This assignment is translated to link connections through connection points on the network, and the assignment is passed from the management plane to the control plane to enable the control plane to allocate the resources on demand as needed. Allocations are passed to the transport plane to allow traffic to be carried on the configured L1-VPNs.
Link allocation may look at information other than assignment information, such as the service level agreement associated with the subscriber and the subscriber's current usage on the network. For example, the management plane may assign two dedicated links and two shared links to a particular L1-VPN, but the subscriber may only have paid for the concurrent use of three links on the network. If the subscriber then submitted a request for resources that exceeded the usage specified in its service level agreement (SLA), the subscriber's request may be rejected as exceeding its SLA. Alternatively, the subscriber may be provided with access to L1-VPN resources, either from available shared resources or from public resources, and charged additional fees for access to the resources that exceed its SLA.
In the embodiment illustrated in
The interface manager 58 implements VPN software 64 which may be executed on the processor 60 and may be configured to allocate network element resources to L1-VPNs, as discussed herein. Optionally, a protocol stack 66 may be included to enable the network element to engage in protocol exchanges on the network 10. The interface manager also includes L1-VPN tables 68 to enable it to maintain assignment, allocation, state, policy, and other information associated with the L1-VPNs configured on and through the network element. The L1-VPN tables 68 may be included on one or more memories on the interface manager 58, on the network element 50, or may be interfaced to the network element from an external source.
As shown in
Subsequently, when the subscriber to the L1-VPN service requires network resources, it will send a request for use of network resources (106). The request may be fulfilled from the assigned private resources, assigned shared resources, or public resources. The order in which assigned and public resources are allocated to fulfill requests may depend on the policy implanted on the network. For example, the order in which links are selected for resource allocation between the dedicated, shared, and public links, may be specified in the policy. Additionally, the priority scheme for a link may be set by policy to certain enable L1-VPNs to have priority over other L1-VPNs on particular links. The allocation of public links to L1-VPNs may also depend on policy on the network. For example, the policy may control how many public links may be allocated to a particular L1-VPN, the percentage of public links that may be used to provide L1-VPN services to a particular customer, whether public links may be used for restoration and reconfiguration by the L1-VPN, and numerous other aspects on the network.
To fulfill the request, the network element will check the configured assignment tables to see which links or other resources have been assigned to the L1-VPN issuing the request (108). For example, in
Once the network element has determined which links have been assigned to the requesting L1-VPN, the network element checks to see which of the links are currently being used and which of the assigned links are available to be allocated to the requesting VPN (110). This may be done, according to one embodiment of the invention, by looking into the dynamic allocation section of the L1-VPN tables to determine which of the assigned links are currently not being used. The links are then assigned to fulfill the request (112) according to the policy implemented on the network, as described in greater detail above.
In the example illustrated in
Resources, once assigned and allocated, are used exclusively by the L1-VPN and are not shared resources on the network. Thus, for example in an optical network, the link may be a time slot on a wavelength. Once assigned and allocated to a particular L1-VPN, that time slot on that wavelength would be used exclusively for transportation of traffic for the VPN to which it was allocated. Dedication of the resources is communicated to the transport plane to enable the transport plane to handle traffic for the L1-VPN to which the resources have been allocated.
If there are not sufficient unallocated links to fulfill the request, the network element may look for a public link that may be used to fulfill the request, depending on the policy implemented on the network. If insufficient links are unallocated, the network element will notify the subscriber that the request failed. If a public link is unallocated, the public link may be allocated to the requesting L1-VPN to fulfill the request. Once the public link is allocated, it will be used exclusively for that L1-VPN until released into the public link pool.
Since shared and public resources may need to be used by more than one subscriber, the network element may be configured to implement policy relating to which resources should be allocated to particular subscribers as described in greater detail above. For assume that the policy on the network specifies that private resources are to be allocated first, shared resources are to be allocated second, and public resources are to be allocated only when there are not sufficient private and shared resources to fulfill the request, to conserve the availability of the shared and public resources. One way to do this is to list the dedicated and shared links in a predetermined order so that the network element may select the dedicated links preferentially over the shared and public links. For example, in the embodiment illustrated in
As shown in
In the example illustrated in
For example, assume that VPN-A submitted a request for two links and the status of the links was as shown in
Maintaining information in the dynamic allocation table about the relative priority of the VPN using the network resources enables new allocations to be made to accommodate the displaced VPN allocations. For example, when link 2 is allocated to VPN-A, the network element knows that VPN-B needs a new link allocation and can search the configured assignment and the dynamic allocation tables for a link to be assigned to VPN-B. In this example, VPN-B has been assigned links 3, 4, 5, and 6. Accordingly, the network element will determine that links 3, 4, 5, and 6 have been assigned to VPN-B and that link 3 currently is free. Thus, the network element will allocate link 3 to VPN-B. If link 3 had not been available, the network element would have determined that there none of the assigned links were able to be allocated to VPN-B and may search the public links for a potential allocation. If the public links were also allocated, it could then search for another link allocation where B has priority over another VPN. By enabling prioritization to cause displacement of link allocations, additional flexibility may be obtained in allocating links to L1-VPNs.
The functions described above including these described with respect to
It should be understood that various changes and modifications of the embodiments shown in the drawings and described in the specification may be made within the spirit and scope of the present invention. Accordingly, it is intended that all matter contained in the above description and shown in the accompanying drawings be interpreted in an illustrative and not in a limiting sense. The invention is limited only as defined in the following claims and the equivalents thereto.
Claims
1. A communication network, comprising a set of Layer 1 Virtual Private Network (VPN) resources, a first subset of the Layer 1 VPN resources being designated as dedicated Layer 1 VPN resources, and a second subset of the Layer 1 VPN resources being designated as shared Layer 1 VPN resources.
2. The communication network of claim 1, wherein at least a portion of the dedicated Layer 1 VPN resources is assigned only to a first Layer 1 VPN subscriber.
3. The communication network of claim 2, wherein the at least the portion of the dedicated Layer 1 VPN resources assigned only to the first Layer 1 VPN subscriber may only be used by the first Layer 1 VPN subscriber.
4. The communication network of claim 1, wherein at least a portion of the shared Layer 1 VPN resources is assigned to be shared by at least two Layer 1 VPN subscribers.
5. The communication network of claim 4, wherein the at least the portion of the shared Layer 1 VPN resources assigned to be shared by the at least two Layer 1 VPN subscribers may be used by one of the at least two Layer 1 VPN subscribers at a time.
6. The communication network of claim 1, wherein a third subset of the Layer 1 VPN resources is designated as public Layer 1 VPN resources.
7. The communication network of claim 6, further comprising a network management function adapted:
- to collect information about the Layer 1 VPN resources in the communication network;
- to designate the first subset of the Layer 1 VPN resources as the dedicated Layer 1 VPN resources;
- to designate the second subset of the Layer 1 VPN resources as the shared Layer 1 VPN resources; and
- to designate the third subset of the Layer 1 VPN resources as the public Layer 1 VPN resources.
8. The communication network of claim 1, wherein Layer 1 VPN resources not designated as the dedicated Layer 1 VPN resources and not designated as the shared Layer 1 VPN resources are public Layer 1 VPN resources.
9. The communication network of claim 1, further comprising a network management function adapted:
- to collect information about the Layer 1 VPN resources in the communication network;
- to designate the first subset of the Layer 1 VPN resources as the dedicated Layer 1 VPN resources; and
- to designate the second subset of the Layer 1 VPN resources as the shared Layer 1 VPN resources.
10. The communication network of claim 1, further comprising a network management function adapted to communicate information associated with designations of the Layer 1 VPN resources to network elements to enable the Layer 1 VPN resources to be allocated on the communication network.
11. A communication network comprising a plurality of network nodes interconnected by Layer 1 Virtual Private Network (VPN) resources, the plurality of network nodes being adapted:
- to receive assignment information associated with assignment of the Layer 1 VPN resource to Layer 1 VPNs;
- to receive a request associated with a particular Layer 1 VPN subscriber for a Layer 1 VPN resource; and
- to allocate to the particular Layer 1 VPN subscriber at least one assigned Layer 1 VPN resource to fulfill the request based on the assignment information.
12. The communication network of claim 11, further comprising enabling the particular Layer 1 VPN subscriber to control the at least one assigned Layer 1 VPN resource.
13. The communication network of claim 11, further comprising enabling the particular Layer 1 VPN subscriber to configure the at least one assigned Layer 1 VPN resource.
14. The communication network of claim 11, further comprising enabling the particular Layer 1 VPN subscriber to manage the at least one assigned Layer 1 VPN resource.
15. The communication network of claim 11, wherein the assignment information contains an indication of which Layer 1 VPN resources are Layer 1 VPN resources that may only be used by one particular Layer 1 VPN subscriber, and which Layer 1 VPN resources are Layer 1 VPN resources that may only be used by Layer 1 VPN subscribers in a particular group of Layer 1 VPN subscribers.
16. The communication network of claim 11, wherein the network nodes are adapted to allocate the at least one assigned Layer 1 VPN resource by determining which Layer 1 VPN resources have been assigned to the particular Layer 1 VPN subscriber, and preferentially allocating Layer 1 VPN resources to the particular Layer 1 VPN subscriber from those Layer 1 VPN resources that have been assigned to the particular Layer 1 VPN subscriber.
17. The communication network of claim 11, wherein the network nodes are adapted to allocate the at least one assigned Layer 1 VPN resource by determining which Layer 1 VPN resources have been assigned to the particular Layer 1 VPN subscriber, and by determining which of the Layer 1 VPN resources assigned to the particular Layer 1 VPN subscriber are already allocated to a subscriber.
18. The communication network of claim 17, wherein the network nodes are further adapted to allocate the at least one assigned Layer 1 VPN resource by preferentially selecting to fulfill the request by any Layer 1 VPN resource that has been assigned to the particular Layer 1 VPN subscriber and that is not currently allocated to a subscriber, and by selecting at least one public Layer 1 VPN resource to augment the assigned resource to fulfill the request if necessary.
19. The communication network of claim 17, wherein the network nodes are adapted to allocate the at least one assigned Layer 1 VPN resource by prioritizing between Layer 1 VPN subscribers to enable a first Layer 1 VPN subscriber associated with an assigned Layer 1 VPN resource to preempt a second Layer 1 VPN subscriber currently allocated the assigned Layer 1 VPN resource.
20. The communication network of claim 19, wherein the prioritizing results in a transfer of the assigned Layer 1 VPN resource from the second Layer 1 VPN subscriber to the first Layer 1 VPN subscriber.
21. The communication network of claim 20, wherein transfer of the assigned Layer 1 VPN resource from the second Layer 1 VPN subscriber to the first Layer 1 VPN subscriber results in transfer of control of the transferred Layer 1 VPN resource from the second Layer 1 VPN subscriber to the first Layer 1 VPN subscriber.
22. The communication network of claim 11, wherein the network nodes are adapted to allocate at least one assigned Layer 1 VPN resource to fulfill the request by temporarily allocating the at least one assigned Layer 1 VPN resource to be used by only the particular Layer 1 VPN subscriber for an allocation period.
23. The communication network of claim 22, wherein the particular Layer 1 VPN subscriber has control of the allocated Layer 1 VPN resource during the allocation period.
24. The communication network of claim 22, wherein the particular Layer 1 VPN subscriber can configure the allocated Layer 1 VPN resource during the allocation period.
25. The communication network of claim 22, wherein the particular Layer 1 VPN subscriber can manage the allocated Layer 1 VPN resource during the allocation period.
26. The communication network of claim 22, wherein the allocation of Layer 1 VPN resources by the network nodes allows the same Layer 1 VPN resources to be allocated to more than one Layer 1 VPN subscriber at a time.
27. The communication network of claim 22, wherein the allocation of Layer 1 VPN resources by the network nodes allows the same Layer 1 VPN resources to be controlled by more than one Layer 1 VPN subscriber at a time.
28. The communication network of claim 11, wherein the allocation of Layer 1 VPN resources by the network nodes is performed by a control function at the network nodes.
29. The communication network of claim 11, wherein the assignment information comprises information associating subnetwork point pool (SNPP) links with Layer 1 VPNs.
30. The communication network of claim 29, wherein Layer 1 VPN resources are allocated by associating connection points (CPs) to create link connections.
Type: Application
Filed: Oct 14, 2013
Publication Date: Feb 6, 2014
Applicant: Rockstar Consortium US LP (Plano, TX)
Inventors: Raymond Aubin (Gatineau), Malcolm Betts (Kanata), Stephen Shew (Kanata)
Application Number: 14/053,058
International Classification: H04L 12/911 (20060101);