WO1999007094A2 - Shared high speed network access - Google Patents

Shared high speed network access Download PDF

Info

Publication number
WO1999007094A2
WO1999007094A2 PCT/US1998/016104 US9816104W WO9907094A2 WO 1999007094 A2 WO1999007094 A2 WO 1999007094A2 US 9816104 W US9816104 W US 9816104W WO 9907094 A2 WO9907094 A2 WO 9907094A2
Authority
WO
WIPO (PCT)
Prior art keywords
computers
area network
wide area
virtual lan
lan switch
Prior art date
Application number
PCT/US1998/016104
Other languages
French (fr)
Other versions
WO1999007094A3 (en
Inventor
Quinn D. Munton
Roberto M. Leon
Lian K. Sun
Original Assignee
Larkom, L.L.C.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Larkom, L.L.C. filed Critical Larkom, L.L.C.
Priority to AU87652/98A priority Critical patent/AU8765298A/en
Publication of WO1999007094A2 publication Critical patent/WO1999007094A2/en
Publication of WO1999007094A3 publication Critical patent/WO1999007094A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]

Definitions

  • the present invention relates generally to data communications and more particularly to a system for providing a plurality of computers with shared high speed access to a wide area network, such as the Internet.
  • wide area networks for facilitating the interconnection of computers over large distances are well known.
  • the term wide area network is defined tc include any network of widely spaced computers.
  • a wide area network may extend between buildings, among cities, or even globally.
  • a wide area network facilitates the transfer of files, e-mail, etc., between the computers of which it is comprised.
  • Such computers also freguently define local area networks wherein the computers are typically much closer to one another.
  • local area networks facilitate the easy transfer of files, e-mail, etc. between the computers, defining the local area network. It is frequently desirable to facilitate access of such computers (whether they are part of a local area network or not) to a wide area network, typically so as to provide access to remote servers and/or to other computers. For example, it is frequently desirable to facilitate the communication of files, e-mail, etc. between the computers which define a local area network for one division of a company located in one state to the computers which define another network for a different division of a company located in another state.
  • the interconnection of the two remotely located local area networks thus defines a wide area network. interconnection of the two remotely located local area , networks thus defines a wide area network.
  • communications among the computers of local area networks typically occur at comparatively high data rates, e.g., 10M bits/sec. or 100M bits/sec, communications between computers via a wide area network are typically at much slower data rates.
  • Providing high speed access to wide area networks, such as the Internet, for computers facilitates the performance of substantially more rapid file transfers and the use of interactive graphics applications, such as those commonly encountered on the World Wide Web.
  • the use of frames and Java applications on the Internet has increased the desirability of high speed connections to the Internet.
  • a high speed connection such as a Tl line is commonly utilized.
  • a Tl line provides data rates of up to 1.5 Mbps (bits per second, in millions).
  • Tl lines typically comprise a twisted pair of copper wires which is interfaced to the computer or local area network via a router and/or a hub.
  • a Tl line may alternatively comprise a co-axial cable and/or a fiber optic cable.
  • the interconnection of a plurality of computers to a hub so as to provide high speed access to a wide area network via a router inherently facilitates intercommunication between the computers of the local area network. Although this may, in many instances, be desirable, in many instances such intercommunication may be highly undesirable.
  • the plurality of computers are the home computers of a plurality of different residents of an apartment building, it may be very desirable to prevent access to each computer by any other computer.
  • each computer owner will want to prevent access to his own computer by others, i.e., his neighbors, so as to safeguard sensitive information stored thereon.
  • the residents of one apartment would not typically want the residents of other apartments to have access to their financial records, personal correspondence, etc.
  • Such high speed access to the wide area network will preferably comprise hardware for segregating or isolating selected computers from one another, so as to prevent the unauthorized access of information stored thereon.
  • the provision of such comparatively secure high speed access of computers to wide area networks such as the Internet would facilitate the connection of computers in condominium complexes, apartments, neighborhoods, schools, etc., wherein it is desirable to prevent unauthorized access of the computers by another user who is likewise connected to the local area network.
  • the present invention specifically addresses and alleviates the above mentioned deficiencies associated with the prior art. More particularly, the present invention comprises a system for providing a plurality of computers with shared high speed access to a wide area network such as the Internet.
  • the system comprises a router, a bridge, or a switch having at least one WAN (Wide Area Network) port in communication with the wide area network for routing messages communicated over the - wide area network, and also comprises a virtual LAN switch in communication with the router.
  • the virtual LAN switch facilitates communication with a plurality of computers such that each computer is provided with high speed access to the wide area network via the virtual LAN switch.
  • the virtual LAN defines at least one local area network comprising a plurality of computers.
  • the virtual LAN switch isolates all of the computers from one another such that the isolated computers do not define a local area network among themselves.
  • the virtual LAN switch isolates those computers from one another for which intercommunications therebetween is not desired and does not isolate those computers from one another for which it is desired to define a local area network therebetween.
  • various combinations of isolated computers and intercommunicating computers are possible.
  • the use of a virtual LAN switch thus facilitates the easy definition of networks and secure stand-alone computers connected thereto.
  • at least two of the isolated computers in communication with the virtual LAN switch are secure with respect to one another such that they do not define a local area network among themselves.
  • different local area networks are secure with respect to one another.
  • computers define a local area network or a wide area network, then those computers are not isolated from one another. Thus, a user on one network, cannot easily gain unauthorized access to a computer on another network.
  • the virtual LAN switch provides enhanced security by utilizing hardware to isolate the computers and/or local -- area networks attached thereto from one another.
  • the use of hardware to isolate the computers and/or networks attached to the virtual LAN switch from another makes unauthorized access to the computers connected to the virtual LAN switch substantially more difficult to achieve .
  • the virtual LAN switch and the computers preferably communicate with one another and with the relative via TCP/IP.
  • TCP/IP is the communications protocol utilized by the Internet and is the communications protocol generally preferred for use with local area networks which are in communication with the Internet.
  • at least one hub is in communication with the virtual LAN switch.
  • Each hub in communication with the virtual LAN switch is also in communication with a plurality of computers and thus defines a local area network with respect to those computers with which it is in communication.
  • the router or bridge is preferably configured for TCP/IP communications protocol, and thus readily facilitates communications between the computers and the Internet.
  • the router is configured to facilitate communications with the wide area network via at least one Tl line.
  • the router is preferably configured to facilitate communication with the wide area network via a plurality of Tl lines such that communications bandwidth to the router may be increased, as desired, by adding additional Tl lines thereto.
  • the router may alternatively be configured to facilitate communications with the wide area network via other high speed means, e.g., T3, fiber optics, microwave etc.
  • high speed -- shared access is provided for both local area networks and wide area networks.
  • Figure 1 is a block diagram showing shared high speed access to a wide area network for a plurality of computers utilizing a hub according to contemporary methodology
  • Figure 2 is a block diagram showing shared high speed access to the wide area network for a plurality of computers utilizing a virtual LAN switch according to the present invention.
  • FIG. 1 shows a contemporary system for providing a plurality of ' computers with shared high speed access to a wide area network wherein the security of each computer is comparatively easy to compromise.
  • shared high speed access is provided for a plurality of computers 14a-14e so as to facilitate communication with servers and/or other computers via a wide area network, such as the Internet.
  • a Tl 10 or other high speed data line is provided to a router 11 so as to place the router in communication with the wide area network.
  • the router 11 routes signals to and from the wide area network according to well known principles. Examples of routers are Model Number 2514 manufactured by Cisco
  • An example of a router/bridge is the Cabletronic CSK 400.
  • a hub 12 for defining a local area network 13 is in communication with the router.
  • hubs include the EN 100 Ethernet Hub manufactured by Net Gear of Westfield, New Jersey and the DEH 1438 manufactured by Addtron of San Jose, California.
  • the plurality of individual computers 14a-14e are in communication with the hub 12 so as to define the local area network 13, according to well known principles.
  • software control is relied upon in such networks so as to provide security.
  • security is typically provided by designating those computers of the local area network 13 as being within a common user group, such that communications therebetween is facilitated. Communications between computers of different user groups is not permitted. Thus, the user of a computer in one user group can not access files stored upon a computer of another user group.
  • two of the computers, 14a and 14b may -- be designated as a single user group, such that file transfer, e-mail, etc., is facilitated therebetween while computers 14c-14e may be designated as a second user group such that file transfer, e-mail, etc., is likewise facilitated therebetween.
  • the network may be set up such that file transfer, e-mail, or other functions are not permitted between user groups, e.g., such that computers 14a and 14b can not communicate with computers 14c, 14b, and 14e.
  • such software security is comparatively easy to compromise.
  • router 111 receives at least one high speed data line, preferably a Tl line 110 from the wide area network.
  • One or more additional lines 110a may be connected to the router 111, so as to enhance the communications bandwidth thereof, as desired.
  • Examples of a virtual LAN switch include the Pizza Switch manufactured by Xylan and the Smartswitch 2200 manufactured by Cabletronic.
  • At least one Tl 110 provides high speed, e.g., 1.5Mbps, access to a wide area network.
  • the Tl lines 110, 110a provide such communication to a router 111 which is in communication with virtual LAN switch 115.
  • Either computers 114a-114c or hubs 112a, 112b may be electrically connected to the virtual LAN switch 115.
  • the virtual LAN switch 115a may be configured such that the computers 114a-114c operate strictly as stand alone devices and do not define a local area network. Thus, no communications between any two of the stand-alone computers 114a-114c is facilitated.
  • such - configuration of the virtual LAN switch 115 provides enhanced security since the isolation of each individual computer 114a-114c is controlled by the virtual LAN switch 115a, rather than by networking software which may more easily be compromised.
  • High speed access is preferred so as to facilitate the use of applications such as databases over the Internet, wherein the speed of the network communication substantially affects for the performance of the application.
  • the virtual LAN switch 115 may be configured such that any desired ones of the computers 114a-114c define a local area network.
  • the virtual LAN switch 115 may be configured such that the computers 114a and 114b define a local area network and the computer 114c remains a stand-alone computer separate and apart from the network defined by the computers 114a and 114b, for example. In this instance, computers 114a and 114b may communicate with one another but not with the computers 114c.
  • the wide area network 119 may either be isolated from the computers to which the virtual Ian switch 115 is connected, or may define a network with selected ones thereof.
  • each hub 112a and 112b and the computers 116a-116c and 118a, 118b connected to their respective hubs 112a, 112b define local area networks 113a and 113b.
  • computers 116a-116c may communicate v/ith one another, but not with computers 118a, 118b; while computers 118a, 118b may communicate with one another, but not with computers 116a-116c.
  • the virtual LAN switch 115 defines which of the devices, i.e., computers or hubs, attached thereto may communicate with one another.
  • the virtual LAN switch 115 may be configured such that a given computer, such as computer -- 114a, for example, may define a local area network along with hub 112a, for example, and the computers 116a-116c in communication therewith.
  • a given computer such as computer -- 114a, for example
  • hub 112a for example
  • any combination of devices attached to the virtual LAN switch 115a may be configured so as to define a LAN, as desired.
  • each hub 112a, 112b may be in communication with the number of computers for which that hub is designed.
  • additional hubs may be connected to each hub so as to facilitate the interconnection of a larger number of computers so as to define a local area network.
  • the virtual LAN switch 115 may be directly connected to computers, only hubs, or to any desired connection of the two so as to define the desired network configuration. It is understood that the exemplary system for providing a plurality of computers with shared high speed access to a wide area network, described herein and shown in the drawings represents only a presently preferred embodiment of the invention. Indeed, various modifications and additions may be made to such embodiment without departing from the spirit and scope of invention. For example, various other devices, such as repeaters, concentrators printer sharing devices, gateways, domain name servers, etc. may be utilized, as desired, without departing from the spirit and scope of the invention. Thus, these and other modifications and additions may be obvious to those skilled in the art and may be implemented to adapt the present invention for use in a variety of different applications.

Abstract

A system for providing a plurality of computers (114-114c) with shared high speed access to a wide area network has a router (111) in communication with the wide area network for routing messages communicated over the wide area network, and a virtual LAN switch (115) in communication with the router (111). The virtual LAN switch (115) facilitates communication with a plurality of computers (114a-114c) such that each computer is provided high speed access to the wide area network via the virtual LAN switch (115).

Description

SHARED HIGH SPEED NETWORK ACCESS
Field of the Invention
The present invention relates generally to data communications and more particularly to a system for providing a plurality of computers with shared high speed access to a wide area network, such as the Internet.
Background of the Invention Wide area networks for facilitating the interconnection of computers over large distances are well known. As used herein, the term wide area network is defined tc include any network of widely spaced computers. A wide area network may extend between buildings, among cities, or even globally.
A wide area network facilitates the transfer of files, e-mail, etc., between the computers of which it is comprised.
Such computers also freguently define local area networks wherein the computers are typically much closer to one another. Like wide area networks, local area networks facilitate the easy transfer of files, e-mail, etc. between the computers, defining the local area network. It is frequently desirable to facilitate access of such computers (whether they are part of a local area network or not) to a wide area network, typically so as to provide access to remote servers and/or to other computers. For example, it is frequently desirable to facilitate the communication of files, e-mail, etc. between the computers which define a local area network for one division of a company located in one state to the computers which define another network for a different division of a company located in another state. The interconnection of the two remotely located local area networks thus defines a wide area network. interconnection of the two remotely located local area , networks thus defines a wide area network.
Another common example of a wide area network is the
Internet, wherein stand-alone computers and the computers of local area networks almost anywhere in the world can communicate with one another so as to facilitate the transfer of files, e-mail, etc.
Although such communications among the computers of local area networks typically occur at comparatively high data rates, e.g., 10M bits/sec. or 100M bits/sec, communications between computers via a wide area network are typically at much slower data rates.
Indeed, one common problem with such wide area networks, particularly the Internet, is achieving access thereto at an acceptable data rate or speed. As those skilled in the art will appreciate, stand-alone computers commonly access such wide area networks at speeds of 28.8 Kbps (bits per second), 33.6 Kbps, or 56 Kbps using conventional modems. It is also possible to access such wide area networks at approximately 56 Kbps or approximately 128 Kbps utilizing integrated services data network (ISDN) modems. However, such data rates are frequently considered insufficient for many applications, such as the transfer of large files and/or graphical information. As such, it is desirable to provide enhanced data rates for connecting stand-alone computers and/or local area networks to wide area networks, such as the Internet.
Providing high speed access to wide area networks, such as the Internet, for computers facilitates the performance of substantially more rapid file transfers and the use of interactive graphics applications, such as those commonly encountered on the World Wide Web. As those skilled in the art will appreciate, the use of frames and Java applications on the Internet has increased the desirability of high speed connections to the Internet. In an attempt to provide enhanced data rates when , connecting computers, particularly those of a local area network, to a wide area network such as the Internet, a high speed connection such as a Tl line is commonly utilized. As those skilled in the art will appreciate, a Tl line provides data rates of up to 1.5 Mbps (bits per second, in millions). Such Tl lines typically comprise a twisted pair of copper wires which is interfaced to the computer or local area network via a router and/or a hub. A Tl line may alternatively comprise a co-axial cable and/or a fiber optic cable. Although such a configuration does provided high speed access to the wide area network for the computers of the local area network or for stand-alone computers, such a configuration suffers from inherent deficiencies.
For example, the interconnection of a plurality of computers to a hub so as to provide high speed access to a wide area network via a router inherently facilitates intercommunication between the computers of the local area network. Although this may, in many instances, be desirable, in many instances such intercommunication may be highly undesirable.
For example, when the plurality of computers are the home computers of a plurality of different residents of an apartment building, it may be very desirable to prevent access to each computer by any other computer. Generally, each computer owner will want to prevent access to his own computer by others, i.e., his neighbors, so as to safeguard sensitive information stored thereon. For example, the residents of one apartment would not typically want the residents of other apartments to have access to their financial records, personal correspondence, etc.
Although it is possible to provide such desirable isolation of computers from one another on a local area network which utilizes a hub, such isolation is achieved via the network software, i.e., such as by defining user groups, such that only those computers within a common ' user group may communicate with one another. However, as those skilled in the art will appreciate, such software isolation is comparatively insecure. It is well known that hackers frequently breach the security of local area networks, thereby gaining unauthorized access to files stored upon the various different computers comprising the network. As such, the use of a shared Tl connection via a hub and router suffers from inherent deficiencies which detract from its desirability and effectiveness.
In light of the foregoing, it would be beneficial to provide means for facilitating shared high speed access to a wide area network such as the Internet wherein the individual computers sharing such access are comparatively secure with respect to one another. Such high speed access to the wide area network will preferably comprise hardware for segregating or isolating selected computers from one another, so as to prevent the unauthorized access of information stored thereon. The provision of such comparatively secure high speed access of computers to wide area networks such as the Internet would facilitate the connection of computers in condominium complexes, apartments, neighborhoods, schools, etc., wherein it is desirable to prevent unauthorized access of the computers by another user who is likewise connected to the local area network.
Summary of the Invention
The present invention specifically addresses and alleviates the above mentioned deficiencies associated with the prior art. More particularly, the present invention comprises a system for providing a plurality of computers with shared high speed access to a wide area network such as the Internet. According to the preferred embodiment of the present invention, the system comprises a router, a bridge, or a switch having at least one WAN (Wide Area Network) port in communication with the wide area network for routing messages communicated over the - wide area network, and also comprises a virtual LAN switch in communication with the router. The virtual LAN switch facilitates communication with a plurality of computers such that each computer is provided with high speed access to the wide area network via the virtual LAN switch.
Optionally, the virtual LAN defines at least one local area network comprising a plurality of computers. Alternatively, the virtual LAN switch isolates all of the computers from one another such that the isolated computers do not define a local area network among themselves.
According to the preferred embodiment of the present invention, the virtual LAN switch isolates those computers from one another for which intercommunications therebetween is not desired and does not isolate those computers from one another for which it is desired to define a local area network therebetween. Thus, various combinations of isolated computers and intercommunicating computers are possible. As those skilled in the art will appreciate, the use of a virtual LAN switch thus facilitates the easy definition of networks and secure stand-alone computers connected thereto. Frequently, at least two of the isolated computers in communication with the virtual LAN switch are secure with respect to one another such that they do not define a local area network among themselves. Additionally, different local area networks are secure with respect to one another. Of course, when it is desired that computers define a local area network or a wide area network, then those computers are not isolated from one another. Thus, a user on one network, cannot easily gain unauthorized access to a computer on another network.
As those skilled in the art will appreciate, the virtual LAN switch provides enhanced security by utilizing hardware to isolate the computers and/or local -- area networks attached thereto from one another. The use of hardware to isolate the computers and/or networks attached to the virtual LAN switch from another makes unauthorized access to the computers connected to the virtual LAN switch substantially more difficult to achieve .
The virtual LAN switch and the computers preferably communicate with one another and with the relative via TCP/IP. As those skilled in the art will appreciate, TCP/IP is the communications protocol utilized by the Internet and is the communications protocol generally preferred for use with local area networks which are in communication with the Internet. Optionally, at least one hub is in communication with the virtual LAN switch. Each hub in communication with the virtual LAN switch is also in communication with a plurality of computers and thus defines a local area network with respect to those computers with which it is in communication.
The router or bridge is preferably configured for TCP/IP communications protocol, and thus readily facilitates communications between the computers and the Internet. According to the preferred embodiment of the present invention, the router is configured to facilitate communications with the wide area network via at least one Tl line. The router is preferably configured to facilitate communication with the wide area network via a plurality of Tl lines such that communications bandwidth to the router may be increased, as desired, by adding additional Tl lines thereto. As those skilled in the art will appreciate, the router may alternatively be configured to facilitate communications with the wide area network via other high speed means, e.g., T3, fiber optics, microwave etc. According to the present invention, high speed -- shared access is provided for both local area networks and wide area networks.
These, as well as other advantages of the present invention will become more apparent from the following description and drawings. It is understood that changes in the specific structure shown and described may be made within the scope of the claims without departing from the spirit of the invention.
Brief Description of the Drawings Figure 1 is a block diagram showing shared high speed access to a wide area network for a plurality of computers utilizing a hub according to contemporary methodology; and
Figure 2 is a block diagram showing shared high speed access to the wide area network for a plurality of computers utilizing a virtual LAN switch according to the present invention.
Detailed Description of the Preferred Embodiments
The detailed description set forth below in connection with the appended drawings is intended as a description of the presently preferred embodiment of the invention, and is not intended to represent the only form in which the present invention may be constructed or utilized. The description sets forth the functions and the sequence of steps for constructing and operating the invention in connection with the illustrated embodiment. It is to be understood, however, that the same or equivalent functions may be accomplished by different embodiments that are also intended to be encompassed within the spirit and scope of the invention.
The system for providing a plurality of computers with secure shared high speed access to a wide area network according to the present invention is illustrated in Figure 2 of the drawings. Figure 1 shows a contemporary system for providing a plurality of ' computers with shared high speed access to a wide area network wherein the security of each computer is comparatively easy to compromise. Referring now to Figure 1, according to contemporary methodology shared high speed access is provided for a plurality of computers 14a-14e so as to facilitate communication with servers and/or other computers via a wide area network, such as the Internet. According to contemporary methodology, a Tl 10 or other high speed data line is provided to a router 11 so as to place the router in communication with the wide area network. The router 11 routes signals to and from the wide area network according to well known principles. Examples of routers are Model Number 2514 manufactured by Cisco
Systems, San Jose, California and, Access Node, manufactured by Bay Networks, of Santa Clara, California.
An example of a router/bridge is the Cabletronic CSK 400.
A hub 12 for defining a local area network 13 is in communication with the router. Examples of hubs include the EN 100 Ethernet Hub manufactured by Net Gear of Westfield, New Jersey and the DEH 1438 manufactured by Addtron of San Jose, California.
The plurality of individual computers 14a-14e are in communication with the hub 12 so as to define the local area network 13, according to well known principles. As those skilled in the art will appreciate, software control is relied upon in such networks so as to provide security. Such security is typically provided by designating those computers of the local area network 13 as being within a common user group, such that communications therebetween is facilitated. Communications between computers of different user groups is not permitted. Thus, the user of a computer in one user group can not access files stored upon a computer of another user group. For example, two of the computers, 14a and 14b, may -- be designated as a single user group, such that file transfer, e-mail, etc., is facilitated therebetween while computers 14c-14e may be designated as a second user group such that file transfer, e-mail, etc., is likewise facilitated therebetween. However, the network may be set up such that file transfer, e-mail, or other functions are not permitted between user groups, e.g., such that computers 14a and 14b can not communicate with computers 14c, 14b, and 14e. However, as those skilled in the art will appreciate, such software security is comparatively easy to compromise.
Referring now to Figure 2, enhanced security is provided according to the present invention by using a virtual LAN switch 115 rather than hub (as in the prior art) to facilitate communication between the computers 114a-114c, 116a-116c, and 118a, 118b as well as those of any wide area network 119. Thus, router 111 receives at least one high speed data line, preferably a Tl line 110 from the wide area network. One or more additional lines 110a may be connected to the router 111, so as to enhance the communications bandwidth thereof, as desired.
Examples of a virtual LAN switch include the Pizza Switch manufactured by Xylan and the Smartswitch 2200 manufactured by Cabletronic.
Thus, according to the present invention, at least one Tl 110, optionally a plurality of Tl lines 110, 110a, etc., provide high speed, e.g., 1.5Mbps, access to a wide area network. The Tl lines 110, 110a provide such communication to a router 111 which is in communication with virtual LAN switch 115. Either computers 114a-114c or hubs 112a, 112b may be electrically connected to the virtual LAN switch 115. The virtual LAN switch 115a may be configured such that the computers 114a-114c operate strictly as stand alone devices and do not define a local area network. Thus, no communications between any two of the stand-alone computers 114a-114c is facilitated. As those skilled in the art will appreciate, such - configuration of the virtual LAN switch 115 provides enhanced security since the isolation of each individual computer 114a-114c is controlled by the virtual LAN switch 115a, rather than by networking software which may more easily be compromised.
High speed access is preferred so as to facilitate the use of applications such as databases over the Internet, wherein the speed of the network communication substantially affects for the performance of the application.
Alternatively, the virtual LAN switch 115 may be configured such that any desired ones of the computers 114a-114c define a local area network. Thus, the virtual LAN switch 115 may be configured such that the computers 114a and 114b define a local area network and the computer 114c remains a stand-alone computer separate and apart from the network defined by the computers 114a and 114b, for example. In this instance, computers 114a and 114b may communicate with one another but not with the computers 114c.
The wide area network 119 may either be isolated from the computers to which the virtual Ian switch 115 is connected, or may define a network with selected ones thereof.
When hubs 112a and 112b are connected to the virtual LAN switch -115, then each hub 112a and 112b and the computers 116a-116c and 118a, 118b connected to their respective hubs 112a, 112b, define local area networks 113a and 113b. Thus, for example, computers 116a-116c may communicate v/ith one another, but not with computers 118a, 118b; while computers 118a, 118b may communicate with one another, but not with computers 116a-116c.
Again, the virtual LAN switch 115 defines which of the devices, i.e., computers or hubs, attached thereto may communicate with one another. As such, it is also possible that the virtual LAN switch 115 may be configured such that a given computer, such as computer -- 114a, for example, may define a local area network along with hub 112a, for example, and the computers 116a-116c in communication therewith. Thus, any combination of devices attached to the virtual LAN switch 115a may be configured so as to define a LAN, as desired. Of course, each hub 112a, 112b, may be in communication with the number of computers for which that hub is designed. Further, additional hubs may be connected to each hub so as to facilitate the interconnection of a larger number of computers so as to define a local area network. the virtual LAN switch 115 may be directly connected to computers, only hubs, or to any desired connection of the two so as to define the desired network configuration. It is understood that the exemplary system for providing a plurality of computers with shared high speed access to a wide area network, described herein and shown in the drawings represents only a presently preferred embodiment of the invention. Indeed, various modifications and additions may be made to such embodiment without departing from the spirit and scope of invention. For example, various other devices, such as repeaters, concentrators printer sharing devices, gateways, domain name servers, etc. may be utilized, as desired, without departing from the spirit and scope of the invention. Thus, these and other modifications and additions may be obvious to those skilled in the art and may be implemented to adapt the present invention for use in a variety of different applications.

Claims

WHAT IS CLAIMED IS:
1. A system for providing a plurality of computers with shared high speed access to a wide area network, the system comprising: a) at least one of a router, a bridge, and a switch in communication with the wide area network for routing messages communicated over the wide area network; b) a virtual LAN switch in communication with the router; and c) wherein the virtual LAN switch facilitates communication with a plurality of computers such that each computer is provided high speed access to the wide area network via the virtual LAN switch.
2. The system as recited in Claim 1, wherein the virtual LAN switch defines at least one local area network comprising a plurality of the computers.
3. The system as recited in Claim 1, wherein the virtual LAN switch isolates at least two of the computers from one another such that the two isolated computers do not define a local area network among themselves.
4. The system as recited in Claim 1, further comprising at least one hub in communication with the virtual LAN switch, each hub in communication with a plurality of the computers and defining a local area network therewith.
5. The system as recited in Claim 1, wherein the system comprises a router which is configured to facilitate communications between the computers and the Internet.
6. The system as recited in Claim 1, wherein the router is configured to facilitate communications with the wide area network via at least one Tl line.
7. The system as recited in Claim 1, wherein the system comprises a router which is configured to facilitate communications with the communications network via a plurality of Tl lines. 1/1
Figure imgf000015_0001
(PRIOR ART)
Figure imgf000015_0002
Figure imgf000015_0003
PCT/US1998/016104 1997-07-31 1998-07-31 Shared high speed network access WO1999007094A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
AU87652/98A AU8765298A (en) 1997-07-31 1998-07-31 Shared high speed network access

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US90407897A 1997-07-31 1997-07-31
US08/904,078 1997-07-31

Publications (2)

Publication Number Publication Date
WO1999007094A2 true WO1999007094A2 (en) 1999-02-11
WO1999007094A3 WO1999007094A3 (en) 1999-04-08

Family

ID=25418504

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US1998/016104 WO1999007094A2 (en) 1997-07-31 1998-07-31 Shared high speed network access

Country Status (2)

Country Link
AU (1) AU8765298A (en)
WO (1) WO1999007094A2 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7560439B2 (en) 2000-02-17 2009-07-14 Sigma-Tau Industrie Farmaceutiche Riunite S.P.A. Method for increasing the gene expression of transfected genes

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4823338A (en) * 1987-08-03 1989-04-18 American Telephone And Telegraph Company Virtual local area network
US5394402A (en) * 1993-06-17 1995-02-28 Ascom Timeplex Trading Ag Hub for segmented virtual local area network with shared media access
US5572528A (en) * 1995-03-20 1996-11-05 Novell, Inc. Mobile networking method and apparatus
US5684800A (en) * 1995-11-15 1997-11-04 Cabletron Systems, Inc. Method for establishing restricted broadcast groups in a switched network
US5734865A (en) * 1995-06-07 1998-03-31 Bull Hn Information Systems Inc. Virtual local area network well-known port routing mechanism for mult--emulators in an open system environment

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4823338A (en) * 1987-08-03 1989-04-18 American Telephone And Telegraph Company Virtual local area network
US4823338B1 (en) * 1987-08-03 1998-11-10 At & T Information Systems Inc Virtual local area network
US5394402A (en) * 1993-06-17 1995-02-28 Ascom Timeplex Trading Ag Hub for segmented virtual local area network with shared media access
US5572528A (en) * 1995-03-20 1996-11-05 Novell, Inc. Mobile networking method and apparatus
US5734865A (en) * 1995-06-07 1998-03-31 Bull Hn Information Systems Inc. Virtual local area network well-known port routing mechanism for mult--emulators in an open system environment
US5684800A (en) * 1995-11-15 1997-11-04 Cabletron Systems, Inc. Method for establishing restricted broadcast groups in a switched network
US5825772A (en) * 1995-11-15 1998-10-20 Cabletron Systems, Inc. Distributed connection-oriented services for switched communications networks

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7560439B2 (en) 2000-02-17 2009-07-14 Sigma-Tau Industrie Farmaceutiche Riunite S.P.A. Method for increasing the gene expression of transfected genes

Also Published As

Publication number Publication date
WO1999007094A3 (en) 1999-04-08
AU8765298A (en) 1999-02-22

Similar Documents

Publication Publication Date Title
US6934754B2 (en) Methods and apparatus for processing network data transmissions
US7450595B1 (en) Method and system for managing multiple networks over a set of ports
US20020107961A1 (en) Secure internet communication system
CA2339637A1 (en) Multi-level security network system
JP2002538663A (en) Method and apparatus for providing high-speed connectivity to a hotel environment
Chirillo Hack attacks revealed: A complete reference with custom security hacking toolkit
CN108900549A (en) A kind of safe block chain networking technology
JP2001274844A (en) Soho system
WO1999007094A2 (en) Shared high speed network access
CN105847257A (en) Clustered computer network system and method for resource distribution and configuration
US7703124B2 (en) System and method for implementing a private virtual backbone on a common network infrastructure
Cisco LAN Switching
Cisco LAN Switching
Cisco LAT Configuration and Management
Cisco LAT Configuration Commands
Cisco LAT Configuration Commands
Shuizhen Planning, designing and building large-scale network at campus
KR100482300B1 (en) Internet service providing system for many small subscribers through LAN and method for providing internet service, using the system
CN220605929U (en) Novel network system
US7969966B2 (en) System and method for port mapping in a communications network switch
KR20020073855A (en) Dual ip switch hub and network system using the same
JP4021508B2 (en) Computer network structure
McCarty Automatic test equipment (ATE) on a network (securing access to equipment and data)
Kelley GLOBAL NETWORK SYSTEM
JPH11284660A (en) Sectioned building equipped with connection terminal for information equipment

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

AK Designated states

Kind code of ref document: A3

Designated state(s): AL AM AT AU AZ BA BB BG BR BY CA CH CN CU CZ DE DK EE ES FI GB GE GH GM HU ID IL IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MD MG MK MN MW MX NO NZ PL PT RO RU SD SE SG SI SK SL TJ TM TR TT UA UG UZ VN YU ZW

AL Designated countries for regional patents

Kind code of ref document: A3

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE BF BJ CF CG CI CM GA GN GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

NENP Non-entry into the national phase in:

Ref country code: JP

Ref document number: 1999511338

Format of ref document f/p: F

NENP Non-entry into the national phase in:

Ref country code: CA

122 Ep: pct application non-entry in european phase