US Patent No. 10,194,345

SELF-PROVISIONING OF A WIRELESS COMMUNICATION NETWORK USING COORDINATION OF DATA PLANE BEHAVIOR TO STEER STATIONS TO PREFERRED ACCESS POINTS


Patent No. 10,194,345
Issue Date January 29, 2019
Title Self-provisioning Of A Wireless Communication Network Using Coordination Of Data Plane Behavior To Steer Stations To Preferred Access Points
Inventorship Anil Kaushik, Bangalore (IN)
Siva Rama Krishna Rao Yogendra Jupudi, Bangalore (IN)
Subrahmanyam Bhamidipati, Bangalore (IN)
Assignee Fortinet, Inc., Sunnyvale, CA (US)

Claim of US Patent No. 10,194,345

1. A computer-implemented method in a SDN (Software-Defined Networking) controller that automatically provisions a plurality of access points in a wireless communication network by coordinating data plane behavior of the plurality of access points to steer clients to preferred access points, the method comprising the steps of:receiving a policy concerning traffic flow for the wireless communication network;
gathering network-wide information about traffic flows in the data plane for a plurality of access points distributed around the wireless communication network, the data plane referring to layer-2 communications;
predicting a data plane traffic flow at each of the plurality of access points based on the gathered information;
centrally monitoring data plane traffic flow at each of the plurality of access points distributed around the wireless communication network, the central data plane monitoring comprising:
prior to receiving a partial packet stream from the first access point, sending one or more OpenFlow rules to the first access point that defines traffic flows that should be forwarded to the SDN controller,
receiving at least a partial stream of packets of the at least one station, the packets forwarded by the first access point to the SDN controller,
performing deep packet inspection of the partial packet stream of the at least one station, and
selecting one or more stations for steering based on the policy with respect to characteristics of the partial packet stream revealed by the deep packet inspection;
determining that the data plane traffic flow at a first access point from the plurality of access point needs to be reduced based on the actual data plane traffic flow relative to the predicted data plane traffic flow;
responsive to the determination about remote data plane traffic flow needs to be reduced, steering at least one station to a second access point of the plurality of access point in order to adjust the data plane traffic flow by generating one more OpenFlow rules directed at how packets concerning the at least one station are handled by the first access point in the data planes in order to compel the at least one station to disconnect from the first access point; and
transmitting the one or more OpenFlow rules for implementation at a data pane of the first access point.