GB2358334A - Method of providing an enhanced path between networks - Google Patents

Method of providing an enhanced path between networks Download PDF

Info

Publication number
GB2358334A
GB2358334A GB0024459A GB0024459A GB2358334A GB 2358334 A GB2358334 A GB 2358334A GB 0024459 A GB0024459 A GB 0024459A GB 0024459 A GB0024459 A GB 0024459A GB 2358334 A GB2358334 A GB 2358334A
Authority
GB
United Kingdom
Prior art keywords
nested
enhancer
tunnel
enhancers
connection
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
GB0024459A
Other versions
GB2358334B (en
GB0024459D0 (en
Inventor
Stephen Mccann
Robert Hancock
Mark Alan West
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Roke Manor Research Ltd
Original Assignee
Roke Manor Research Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Roke Manor Research Ltd filed Critical Roke Manor Research Ltd
Publication of GB0024459D0 publication Critical patent/GB0024459D0/en
Priority to US10/149,974 priority Critical patent/US20030097465A1/en
Priority to EP00985552A priority patent/EP1237409A2/en
Priority to CA002392957A priority patent/CA2392957A1/en
Priority to PCT/GB2000/004782 priority patent/WO2001045356A2/en
Publication of GB2358334A publication Critical patent/GB2358334A/en
Application granted granted Critical
Publication of GB2358334B publication Critical patent/GB2358334B/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • H04L69/163In-band adaptation of TCP data exchange; In-band control procedures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • H04L69/168Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP] specially adapted for link layer protocols, e.g. asynchronous transfer mode [ATM], synchronous optical network [SONET] or point-to-point protocol [PPP]

Abstract

A nested enhancer 22 located in a first network such as an internet 40 connects with a second nested enhancer 32 located in a second network such as a stub network or further internet. The nested enhancers form a pair with each knowing the IP address of the other. Each nested enhancer terminates any TCP connection that it receives from a stub network or internet host 20, and responds to the originating host as if it were the ultimate end system. The nested enhancer terminating the connection then 'tunnels' data in the TCP connection to its partner, which regenerates the connection to the end system. The tunnelling is preferably achieved with a dedicated IP tunnel. By applying a connection splitting technique rather than simple encapsulation of data allows performance enhancement in connection set-up time and flow control. The IP tunnel may pass through any number of enhancer pairs nested inside the outer pair and through a geostationary satellite link.

Description

2358334 IMPROVEMENTS IN OR RELATING TO INTERNET ACCESS The present
invention relates to improvements in or relating to intemet or intranet access particularly through the use of internet protocol (IP) tunnels.
There may be circumstances where two internets need to exchange data and where it is desirable that the data packets pass through an II (internet protocol) tunnel. The datagrams from a number of hosts are aggregated and transferred inside valid IP datagrams to the remote tunnel endpoint, at which point the data is passed to various end-systems. Such tunnelling systems may be implemented in such a way as to allow for potential performance enhancements to be realised, especially in the case of long latency links.
One way in which performance can be enhanced is by utilising connection splitting techniques. However, whilst such techniques provide performance enhancement, they have distinct problems from a processing load and security viewpoint.
From the processing load perspective, applying techniques such as data compression require significant computer resources. This is even truer when performing data encryption and secure user authentication.
Additionally, an end-user will generally prefer to terminate or originate a secure link only in a network over which he has administrative control.
It is therefore an object of the present invention to provide a solution which overcomes the disadvantages mentioned above.
In accordance with one aspect of the present invention, there is provided a method of providing an enhanced path between first and second internets. the method comprising the steps of:- locating a first nested enhancer within the first internet; locating a second nested enhancer within the second internet; and establishing an association between the first and second nested enhancers.
Advantageously, the step of associating the first and second nested enhancers comprises providing each of the nested enhancers with the IP address of the other.
Preferably, the method further comprises the step of connecting together the first and second enhancers via an IP tunnel.
In one embodiment of the present invention, the IP tunnel includes a section that runs over a geostationary satellite link.
Additionally, pairs of enhancers may be nested such that the IP tunnel between a given pair of enhancers passes through any number of other. inner nested pairs. The IP tunnel between the outer pair may be passed transparently, tunnelled or enhanced by the inner pair(s).
The term 'internet' as used herein is intended to encompass both the worldwide web as well as local networks which may also be considered as internets.
For a better understanding of the present invention, reference will now be made, by way of example only, to the accompanying drawings in which Figure 1 illustrates the use of nested enhancer arrangement in accordance with the present invention; and Figure 2 illustrates the use of multiple nested enhancers in accordance with the present invention.
In Figure 1, a nested enhancer arrangement 10 is shown which comprises a first host 20 which is to be connected to a second host 30 via an internet or intranet 40. The first host 20 is connected to a first enhancer 22 within the internet or intranet 40 via a logical link 24. The term 'logical link' as used herein means that a physical path needs to exist, but the path does not necessarily need to be a point-to-point path. Similarly, the second host 30 is connected to a second enhancer 32 via a link 34. The second enhancer 32 and the second host 30 form a stub network or further internet or intranet 36.
The first and second enhancers 22, 32 are connected together by an IP (internet protocol) tunnel 50 as shown.
It will be appreciated that the first and second enhancers 22, 32 operate as a pair and make use of an IP route between the internet or intranet and the stub network 36. As shown in Figure 1, one nested enhancer 32 is located within the stub network 36 and its partner 22 is located somewhere in the intemet or intranet 40 as a whole. It is not important where it is - only that each enhancer 22,32 knows the IP address of the other. This provides the IP tunnel 50 as described above.
In operation, each nested enhancer terminates any transmission control protocol (TCP) connection that it receives, either from a stub network 36 or from an internet host 20. and responds to the originating host as if it were the ultimate end-system. This operates in a similar way to connection splitting as is well known in the arL The nested enhancer terminating the transmission then 'tunnels' data in the TCP connection to its partner, which regenerates the connection to the end-system. In this situation, it is preferable to link the pair of nested enhancers by a dedicated IP tunnel which conveniently operates over the existing IP network.
Advantageously, by applying a connection splitting technique, rather than simply encapsulating the original datagrams in the tunnel, scope is provided for performance enhancements, for example, connection set-up time to the end-system can be reduced. Using connection splitting also allows for per connection flow control to be easily managed by the tunnel endpoints.
In the situation of long latency links, the use of the connection splitting can increase the throughput of individual sessions and improve link usage. The characteristics of intervening networks might result in benefits from this connection splitting approach.
The protocol must be capable of tunnelling all IP traffic from a nested enhancer back into an IP network to another nested enhancer, thus creating a IP tunnel between the two nested enhancers.
It is preferred to use TCP as the tunnelling protocol as it guarantees delivery of all tunnelled data from a local nested enhancer, for example, enhancer 22 to the distant nested enhancer 32 or vice versa. However, it will be appreciated that other suitable protocols can also be used.A multienhancer arrangement or network 60 is shown in Figure 2 in which each pair of enhancers works independently of each other pair of enhancers, that is, each enhancer in each pair co-operates with the other enhancer of the pair but is independent of the other enhancers in the other pairs. Components which have previously been described bear the same reference numerals.
Figure 2 shows a first host 20 connected to a second host 30 via an internet or intrantet 40 as before. The first host 20 is connected to a first enhancer 22 via a logical link 24, the first enhancer 22 being located somewhere in the internet or intranet 40. Similarly, the second host 30 is connected to a second enhancer 32 via a logical link 34 and together form a stub network 36. The first and second enhancers 22,32 form a nested pair as described above as indicated by dotted line 62.
It will readily be understood that the stub network 36 may comprise another internet or intranet network as discussed above.
- 5 However,, in this embodiment of the invention. the first and second enhancers 22. 32 can be thought of as being connected together by a single IP tunnel, but one which also passes through third and fourth enhancers 70, 80, the first enhancer 22 being connected to the third enhancer 70 in the internet or intranet 40 via IP tunnel portion 72 and the second enhancer 32 being connected to the fourth enhancer 80 via IP tunnel portion 82. Third and fourth enhancers 70. 80 form a nested pair as indicated by dotted line 64.
The third enhancer 70 is connected to a geostationary satellite 90 via IP tunnel portion 92 and the fourth enhancer 80 is connected to the satellite 90 via IP tunnel portion 94.
It will readily be appreciated that the IP tunnel portions 92, 94 via satellite 90 form a single logical link. Moreover, IP tunnel poitions 92, 94 may comprise the same IP tunnel portion with the satellite 90 acting as an RF relay.
It will be appreciated that IP tunnel portions 72, 92, 94 and 82 together form a single IP tunnel which is equivalent to the IP tunnel 50 shown in Figure 1.
As the IP tunnel passes through the third and fourth enhancers 70, 80, this provides them with options, that is, they can transparently pass the IP tunnel through (i.e. do nothing), or they can carry the IP tunnel through what can be considered to be an inner tunnel optionally enhancing the data flow (where possible).
It will be apparent that the third and fourth enhancers 70, 80 form a nested pair which sit within the nested pair formed by the first and second enhancers 22. 32.
In order to avoid excessive load on the network 60Y the IP tunnel portions 72, 82 between the third and fourth enhancers 70, 80 through which the data is tunnelled should ideally be 'responsive', that is, the connection must respond in the same way as a TCP connection does to perceived congestion and slow down in the network 60. For this reason, the obvious choice of protocol for the tunnel portions 72, 82 is a TCP/IP connection5 although any suitable protocol, for example, Layer 2 Tunnelling Protocol L2TP, could be used.
There are two important aspects to this tunnelling technique:- First, multiple pairs of nested enhancers can operate independently, for example, pair 22, 32 and pair 70, 80 in Figure 2. This means that they can all apply data compression, for example. It is to be noted that, in order to maintain this independence, an enhancer should be able to identify traffic from another enhancer so that it knows not to perform duplicate processing on the connection. This could be done via reserved TCP port numbers, for example.
Secondly, security associations can be maintained between the nested enhancer pairs, and this provides a transparent means of securing communications between two end points.
A specific example of this is where the enhancers are each placed in stub networks or intranets, for example, in geographically diverse corporate offices. By deploying nested enhancers in each of the stub networks, all communications between the networks can be transparently encrypted and authenticated, and still be passed between the networks by normal IP routing methods. While this could be performed by any secure tunnel end point, normally the use of such equipment would preclude the use of other performance optimisations. By adding the security to the connection splitting unit, performance can be increased as well as maintaining a secure link.
The TCP connections on either side of the nested enhancers are isolated, so that, for example, a sequence of 500 byte packets entering the enhancer 22 from the first host 20, may appear as a sequence of 11byte packets to the second host 30 although the total data transferred is the same.
As data ordering does not change across the nested enhancer pairs, the second host 30 still perceives a single TCP/IP connection to the first host 20.
An important point for the use of nested enhancers is that once a data packet has reached the interface to the IP tunnel, the data is transferred to the distant host via an open IP link. The link is not opened and closed for each separate TCP session. Hence, apart from the initialisation stages of the tunnelling, a TCP session can utilise the full tunnel bandwidth and is not dependant upon slow start as would be the case in of end-to-end TCP session. The tunnel can be regarded as a free flowing dedicated virtual path between nested enhancers while retaining the ability to apply standard congestion avoidance and control techniques, for example, from the TCP family, to the IP tunnel.

Claims (7)

CLAIMS:
1. A method of providing an enhanced path between first and second intemets, the method comprising the steps ofllocating a first nested enhancer within the first internet; locating a second nested enhancer within the second intemet; and establishing an association between the first and second nested enhancers.
2. A method according to claim 1, wherein the step of associating the first and second nested enhancers comprises providing each of the nested enhancers With the IP address of the other.
3. A method according to claim 1 or 2, further comprising the step of connecting together the first and second enhancers Via an IP tunnel.
4. A method according to claim 3, wherein the 1P tunnel includes a section that runs over a geostationary satellite.
5. A method according to claim 4, wherein pairs of enhancers may be nested such that the 1P tunnel between a given pair of enhancers passes through any number of other inner, nested pairs.
6. A method according to claim 5, wherein the IP tunnel between the outer pair may be passed transparently, tunnelled or enhanced by the inner pair(s).
7.. A method of providing an enhanced path between first and second internets substantially as hereinbefore described with reference to the accompanying drawings.
GB0024459A 1999-12-18 2000-10-06 Improvements in or relating to internet access Expired - Fee Related GB2358334B (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
US10/149,974 US20030097465A1 (en) 1999-12-18 2000-12-14 Internet access
EP00985552A EP1237409A2 (en) 1999-12-18 2000-12-14 Improvements in or relating to internet access
CA002392957A CA2392957A1 (en) 1999-12-18 2000-12-14 Internet access
PCT/GB2000/004782 WO2001045356A2 (en) 1999-12-18 2000-12-14 Particulate composition comprising an insect attractant and apparatus for its controllable release

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
GBGB9929880.4A GB9929880D0 (en) 1999-12-18 1999-12-18 Nested TCP/IP protocol enhancement

Publications (3)

Publication Number Publication Date
GB0024459D0 GB0024459D0 (en) 2000-11-22
GB2358334A true GB2358334A (en) 2001-07-18
GB2358334B GB2358334B (en) 2004-01-21

Family

ID=10866532

Family Applications (2)

Application Number Title Priority Date Filing Date
GBGB9929880.4A Ceased GB9929880D0 (en) 1999-12-18 1999-12-18 Nested TCP/IP protocol enhancement
GB0024459A Expired - Fee Related GB2358334B (en) 1999-12-18 2000-10-06 Improvements in or relating to internet access

Family Applications Before (1)

Application Number Title Priority Date Filing Date
GBGB9929880.4A Ceased GB9929880D0 (en) 1999-12-18 1999-12-18 Nested TCP/IP protocol enhancement

Country Status (1)

Country Link
GB (2) GB9929880D0 (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0702477A2 (en) * 1994-09-15 1996-03-20 Sun Microsystems, Inc. System for signatureless transmission and reception of data packets between computer networks
GB2317308A (en) * 1996-08-29 1998-03-18 Kokusai Denshin Denwa Co Ltd Method for constructing a VPN having an assured bandwidth
EP0955746A2 (en) * 1998-05-08 1999-11-10 Lucent Technologies Inc. A multi-hop Point-to-point protocol

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0702477A2 (en) * 1994-09-15 1996-03-20 Sun Microsystems, Inc. System for signatureless transmission and reception of data packets between computer networks
GB2317308A (en) * 1996-08-29 1998-03-18 Kokusai Denshin Denwa Co Ltd Method for constructing a VPN having an assured bandwidth
EP0955746A2 (en) * 1998-05-08 1999-11-10 Lucent Technologies Inc. A multi-hop Point-to-point protocol

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Stadler JS,IEEE Military Communications Conference,1998,IEEEpp270-276,vol.1. *

Also Published As

Publication number Publication date
GB9929880D0 (en) 2000-02-09
GB2358334B (en) 2004-01-21
GB0024459D0 (en) 2000-11-22

Similar Documents

Publication Publication Date Title
EP3198464B1 (en) Application-aware multihoming for data traffic acceleration in data communications networks
US6708218B1 (en) IpSec performance enhancement using a hardware-based parallel process
US6732314B1 (en) Method and apparatus for L2TP forward error correction
US8976798B2 (en) Method and system for communicating over a segmented virtual private network (VPN)
US20020010866A1 (en) Method and apparatus for improving peer-to-peer bandwidth between remote networks by combining multiple connections which use arbitrary data paths
US20020002621A1 (en) Multiple network connections from a single ppp link with partial network address translation
EP1443713A2 (en) Method and system for utilizing virtual private network (VPN) connections in a performance enhanced network
JP2007521741A (en) Apparatus and method for improving remote LAN connectivity using tunneling
Rodriguez et al. TCP/IP Tutorial and Technical overview
US7761508B2 (en) Access device-based fragmentation and interleaving support for tunneled communication sessions
US20060280175A1 (en) Method and system for tunneling data using a management protocol
US7616625B1 (en) System and method for selective enhanced data connections in an asymmetrically routed network
US20030097465A1 (en) Internet access
GB2358334A (en) Method of providing an enhanced path between networks
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25
Cisco Configuring LAPB and X.25

Legal Events

Date Code Title Description
PCNP Patent ceased through non-payment of renewal fee

Effective date: 20081006