Embodiments of the present disclosure relate to optimal distribution of higher distribution of higher bandwidth wireless traffic into aggregated lower bandwidth wired network links. In particular, embodiments of the present disclosure describe a method and network device for access points augmented by client association based load balancing in a non-blocking uplink architecture.
A typical Wireless Local Area Network (WLAN) deployment consists of a collection of Access Points (APs) spread over a geographical area. Each AP can have a number of radios. Each radio may be dedicated to either a 2.4 GHz wireless communication band, or a 5 GHz wireless communication band. The AP may support multiple industry wireless standards, such as IEEE 802.11n, IEEE 802.11ac, etc. Each standard may specify one or more specific wireless communication band to be utilized by a specific protocol. For example, APs in compliance with IEEE 802.11n standard communicate with client devices on both 2.4 GHz and 5 GHz wireless communication bands. However, APs in compliance with the IEEE 802.11ac standard will be communicating with client devices on 5 GHz wireless communication band, but not on 2.4 GHz wireless communication band. Radios in compliance with IEEE 802.11ac standard can support up to 1.3 Gbps throughput, whereas radios in compliance with IEEE 802.11n standard can support up to 450 Mbps throughput.
In addition, each AP can also have one or two wired connections, each of which is connected to a port of an uplink switching device. For example, in an AP with two radios and two uplink 1 GE ports, typically, traffic corresponding to client devices connected to a first radio is transmitted on a first dedicated uplink. Likewise, traffic corresponding to client devices connected to a second radio is transmitted on a second dedicated uplink. Each uplink may support, for example, a maximum of 1 Gbps throughput. Accordingly, a high performance radio, such as a 5 GHz radio supporting 1.3 Gbps throughput, may not be able to reach its full capacity due to the capacity limitation imposed by its dedicated uplink. Meanwhile, a low performance radio, such as a 2.4 GHz radio supporting 450 Mbps throughput, may not fully utilize the capacity provided by its dedicated uplink.
In the following description, several specific details are presented to provide a thorough understanding. While the context of the disclosure is directed to client management in local area networks, one skilled in the relevant art will recognize, however, that the concepts and techniques disclosed herein can be practiced without one or more of the specific details, or in combination with other components, etc. In other instances, well-known implementations or operations are not shown or described in details to avoid obscuring aspects of various examples disclosed herein. It should be understood that this disclosure covers all modifications, equivalents, and alternatives falling within the spirit and scope of the present disclosure.
The present disclosure may be best understood by referring to the following description and accompanying drawings that are used to illustrate embodiments of the present disclosure.
Embodiments of the present disclosure relate to client management in local area networks. In particular, embodiments of the present disclosure describe a method and network device for client load balancing when wireless throughput from a radio is more than throughput of one of the aggregated uplinks.
With the solution provided herein, an access point (AP) can receive a first data set using a particular radio of a plurality of radios, and then transmit the first data set to a network device by: (a) transmitting, to the network device, a first subset of the first data set using a first wired connection between the access point and the network device, and (b) transmitting, to the network device, a second subset of the first data set using a second wired connection between the access point and the network device. Moreover, the AP can select a particular wired connection for transmitting a subset data received from a radio of the AP to the network device, where multiple wired connections exist between the access point and the network device.
Network controller 110 generally refers to a controlling device that manages other network devices such as wireless access points. Network controller 110 may handle automatic adjustments to radio frequency power, wireless channels, wireless authentication, and/or security. Furthermore, network controller 110 can be combined to form a wireless mobility group to allow inter-controller roaming. Network controller 110 can be part of a mobility domain to allow clients access throughout large or regional enterprise facility locations. This saves the clients time and administrators overhead because it can automatically re-associate or re-authenticate.
Switch 120 generally refers to a computer networking device that is used to connect devices together on a computer network by performing a form of packet switching. A switch can send a message only to the port connected to the device that needs or requests the message. A switch is a multi-port network bridge that processes and forwards data at the data link layer (layer-2) of the OSI (Open Systems Interconnection) model. A switch may also have additional features, including the ability to route packets, e.g., as layer-3 or multilayer switches.
Access point 130 generally refers to a wireless network device that allows wireless client devices to connect to a wired network using IEEE 802.11 or related standards. The APs usually connect to a router via a wired network, but can also be an integral component of the router itself.
Each access point serves one or more client devices. Also, each client device and/or access point may connect to another uplink network device (e.g., a network switch and/or controller device) and/or client device via a secure communication channel. For example, in
During operations, a mobile client device, such as ClientB 145, may transmit a maximum amount of data at 1.3 Gbps data rate through RadioB 155 of AP 130. Another mobile client device, such as ClientA 140 may transmit a maximum amount of data at 450 Mbps data rate through Radion 150 of AP 130.
Note that, switch 120 and controller 110 both support Link Aggregation Control Protocol (LACP). The LACP as specified in IEEE 802.3ad standard can bundle individual Gigabit Ethernet links into a single logical link that provides the aggregate bandwidth of multiple physical links. Specifically, a first uplink port of switch 120 may be connected to Eth0 at network controller 110, and a second uplink port of switch 120 may be connected to Eth1 at network controller 110. Controller 110 has two IP addresses, including its own IP address (e.g., IP_ADDRX) and an odd addition of its IP address (e.g., IP_ADDRX+1). During operation, communication tunnels are forwarded by AP 130 based on the source IP address (e.g., IP_ADDRY) and/or destination IP address (e.g., IP_ADDRX or IP_ADDRX+1) of each received packet using hashing. The same process can be followed by networking equipment switch 120 in its uplink.
In a conventional implementation, a first dedicated uplink with a maximum throughput of 1 Gbps is used for transmission of data received by RadioB 155, and a second dedicated uplink with a maximum throughput of 1 Gbps is used for transmission of data received by RadioA 150. The reasons for this design are: (a) to allow for load balance between client devices operating on 5 GHz and 2.4 GHz wireless communication bands; and (b) to avoid out of order of packet for the same client device. This design works well when there are a good number of client devices operating on both 2.4 GHz and 5 GHz wireless communication bands, because the design will allow for load balancing among such client devices to a certain extent. However, when a network does not have any client devices on the 2.4 GHz wireless communication band, the dedicated uplink associated with the 2.4 GHz radio is not used for transmitting data traffic at all. At the same time, traffic to and from all client devices on the 5 GHz wireless communication band is transmitted on a single dedicated uplink associated with the 5 GHz radio.
Moreover, with the advancement of technologies, the capacity of wireless radio, such as RadioB 155, continues to increase. For example, with multiple spatial streams, a radio may now support up to 1.7 Gbps throughput. As such, the bottleneck caused by uplink capacity limitation in a conventional uplink architectural design can expect to lead to more serious problems in the near future.
Access point 200 includes at least two radios, namely, RadioA 230 and RadioB 235. Each radio operates at a designated wireless communication band, such as a 2.4 GHz wireless communication band or a 5 GHz wireless communication band. Here, assuming that RadioA 230 operates on the 5 GHz wireless communication band, and RadioB 235 operates on the 2.4 GHz wireless communication band.
Moreover, each radio may be configured to support a virtual access point (VAP). Typically, APs advertise wireless local area networks (WLANs) to wireless client devices by sending out beacons and probe responses that contain the WLAN's service set identifier (SSID) and supported authentication and data rates. When a wireless client device associates to an AP, the client device sends traffic to the AP's BSSID, e.g., as identified by the AP's Media Access Control (MAC) address. It is possible for a single AP to use a unique BSSID for each WLAN. Thus, a physical AP can support multiple WLANs and acts as multiple VAPs. The WLAN configuration as applied to each unique BSSID on a physical AP is generally referred to as a VAP. VAP allows a network administrator to provide different network access or services to users on the same physical network. For example, a first WLAN can be configured to provide access to guest users and a second WLAN to provide access to employee users through the same APs. As another example, a first WLAN can be configured to offer open authentication and Captive Portal access with data rates of 1 and 2 Mbps and a second WLAN that requires WPA authentication can be configured to offer data rates of up to 11 Mbps.
In the example illustrated in
Network controller 210 also supports multiple Ethernet ports. Specifically, two or more Ethernet ports, such as PortC 280 and PortD 285, can be aggregated to form a single Ethernet group, for example, with Link Aggregation Control Protocol (LACP). IP_ADDRX is assigned to the VLAN. Moreover, one more IP address from the same subnet, e.g., IP_ADDRX+1, can be assigned for a second communication tunnel terminated at network controller 210. The traffic destined to IP_ADDRX and IP_ADDRX+1, can be used to forward traffic through different ports, such as PortC 280 and PortD 285.
A first communication tunnel TunnelA 260 is established between PortA 240 on AP 200 with IP_ADDRY and the first Ethernet port on network controller 210 with IP_ADDRX for transmitting data traffic corresponding to 5 GHz wireless communication band. A second communication tunnel TunnelB 265 is established between PortA 240 on AP 200 with IP_ADDRY and the second Ethernet port on network controller 210 with IP_ADDRX+1 for transmission of secure data traffic corresponding to 2.4 GHz wireless communication band.
Access point 300 includes at least two radios, namely, RadioA 330 and RadioB 335, and at least two Ethernet ports, namely PortA 340 and PortB 345. Each radio operates at a designated wireless communication band, such as a 2.4 GHz wireless communication band or a 5 GHz wireless communication band. Here, assuming that RadioA 330 operates on the 5 GHz wireless communication band, and RadioB 335 operates on the 2.4 GHz wireless communication band.
Moreover, each radio may be configured to support a VAP. For example, in
Network controller 310 also supports multiple Ethernet ports. Specifically, two or more Ethernet ports, such as PortC 380 and PortD 385, can be aggregated to form a single Ethernet group, for example, with Link Aggregation Control Protocol (LACP). IP_ADDRX is assigned to the VLAN. Moreover, one more IP address from the same subnet, e.g., IP_ADDRX+1, can be assigned for a second communication tunnel terminated at network controller 310. The traffic destined to IP_ADDRX and IP_ADDRX+1 can be used to forward traffic through different ports, such as PortC 380 and PortD 385.
As described above in the conventional uplink architecture, a first communication tunnel TunnelA 360 is established between PortA 340 on AP 300 with IP_ADDRY and the first Ethernet port on network controller 310 with IP_ADDRX for transmitting secure data traffic corresponding to 5 GHz wireless communication band. A second communication tunnel TunnelB 365 is established between PortA 340 on AP 300 with IP_ADDRY and the second Ethernet port on network controller 310 with IP_ADDRX+1 for transmission of secure data traffic corresponding to 2.4 GHz wireless communication band.
However, note that, RadioA 330 may support a maximum of 1.3 Gbps throughput, whereas PortA 340 may have a limit of 1 Gbps throughput. To alleviate the bottleneck problem imposed by the dedicated uplink corresponding to RadioA 330, a third communication tunnel TunnelC 368 is established between VAPA 350 on AP 300 with IP_ADDRY and the second Ethernet port on network controller 310 with IP_ADDRY+1. Therefore, secure data traffic corresponding to a high performance radio, e.g., RadioA 330 operating on 5 GHz wireless communication band, now can be distributed over at least two communication tunnels, namely, TunnelA 360 and TunnelC 368. Each tunnel supports a maximum throughput of 1 Gbps. On the other hand, secure data traffic corresponding to a low performance radio, e.g., RadioB 335 operating on 2.4 GHz wireless communication band, continues to be transmitted through TunnelB 365.
Note that, both TunnelB 365 and TunnelC 368 have a source address of IP_ADDRY and a destination address of IP_ADDRX+1. However, in this example, TunnelB 365 is dedicated to transmit data traffic corresponding to 2.4 GHz wireless communication band, whereas TunnelC 368 is dedicated to transmit data traffic corresponding to 5 GHz wireless communication band. Because each tunnel is uniquely identified by a tunnel identifier and each tunnel identifier is uniquely mapped to a radio, AP 300 can determine whether to send data traffic to RadioA 330 or RadioB 335 based on the tunnel identifier included in the data packets. Here, the tunnel identifier is clubbed with VAP, which can be based on the MAC address of the radio. Tunnel identifiers are unique numbers when a communication tunnel is established between two endpoints and can be considered as separate logical interfaces. Note that, each radio usually has a unique MAC address, but two radios of the same AP share the same IP address.
AP 430 may support two or more virtual access pointsw (VAPs). For example, a first VAP may be configured for 2.4 GHz data traffic corresponding to RadioA 450, and a second VAP may be configured for 5 GHz data traffic corresponding to RadioB 455. Furthermore, multiple client devices can be associated with each VAP. As illustrated in
In addition, two communication tunnels, namely, TunnelA 460 and TunnelC 468, are established between AP 430 and network controller 410 to transmit data traffic corresponding to 5 GHz wireless communication band. Specifically, TunnelA 460 and TunnelC 468 share the same source IP address (IP_ADDRY) but correspond to two different Ethernet ports (IP_ADDRY and IP_ADDRY+y) on network controller 410. A third communication tunnel, namely TunnelB 465, is established between AP 430 and network controller 410 to transmit data traffic corresponding to 2.4 GHz wireless communication band. TunnelB 465 correspond to a source IP address of IP_ADDRY and share the same destination address with TunnelC 468 (IP_ADDRX+1). Each of TunnelA 460, TunnelB 465, and TunnelC 468 is associated with a unique tunnel identifier. Based on the tunnel identifier, AP 430 can determine to which radio between RadioA 450 and RadioB 455 an inbound packet received from a particular tunnel should be forwarded.
Moreover, AP 430 is directly connected to switch 420 via two or more wired connections. Furthermore, switch 420 can have two uplinks, for example, UplinkA 470 and UplinkB 475. Each uplink can terminate at a unique Ethernet port on network controller 410 directly or indirectly via an Internet. Wired ports on switch 420 and network controller 410 both support LACP. In the example, illustrated in
Because both TunnelA 460 and TunnelC 468 are dedicated to transmit 5 GHz data traffic, data traffic to/from client devices (e.g., ClientB 445, ClientC 446, ClientD 447, and ClientE 448) associated with AP 430 via connections to RadioB 455 can be distributed across the two communication tunnels. In some embodiments, data traffic can be load balanced based on association identifiers. Upon association, each client device is assigned a unique association identification (AID). According to one embodiment, data traffic corresponding to an odd AID are transmitted over TunnelA 460; and, data traffic corresponding to an even AID are transmitted over TunnelC 468. For example, in
Note that, although only an exemplary hashing algorithm of AIDs is described here, any load balancing algorithm can be utilized in the same manner. In addition, AP 430 may simply use a round robin algorithm to distribute data traffic associated various client devices connected to the same high performance radio on the same wireless communication band to multiple communication tunnels. For example, data traffic associated with the first two AIDs may be transmitted over TunnelA 460, and data traffic associated with the next two even AIDs may be transmitted over TunnelC 468.
Also, data traffic on the same wireless communication band is not necessarily distributed evenly across the multiple communication tunnels. In some embodiments, AP 430 can distribute data traffic associated with RadioB 465 with a 2:1 ratio over TunnelA 460 and TunnelC 468. This can ensure that enough portion of the maximum throughput of UplinkB 475 is reserved for data traffic associated with RadioA 450. Therefore, client devices, such as ClientA 440, connecting to RadioA 450 on the 2.4 GHz wireless communication band will not be adversely impacted by the load balancing scheme described herein. Specifically, as an example, AP 430 can distribute data traffic associated with first two AIDs to be transmitted over TunnelA 460 and data traffic associated with the next AID to be transmitted over TunnelC 468, and repeat the same process for distributing the rest AIDs.
In some embodiments, AP 430 can utilize a load balancing scheme on a per-packet basis rather than distributing data traffic based on AIDs. Packet-based load balancing scheme can be suitable for traffic from network controller 410 to client devices, it may be difficult to distinguish which specific client device is the destination device due to the secure encapsulation. Therefore, a packet-based load balancing scheme can be used to distribute such data traffic received from network controller 410 and destined to client devices without the need to identify the destination client device address and/or association identifier.
Process for Client Load Balancing with Link Aggregation Control Protocol
In some embodiments, the access point further receives a second data set using a second radio of the plurality of radios, and transmits, to the network device, the second data set using only one of the first wired connection between the access point and the network device or the second wired connection between the access point and the network device. In some embodiments, the first subset of the first data set is transmitted using a first wired connection via a first encapsulation tunnel; the second subset of the first data set is transmitted using the second wired connection via a second encapsulation tunnel; and, the second data set is transmitting using the second wired connection via a third encapsulation tunnel.
In some embodiments, the first subset of the first data set corresponds to data received from a first set of client devices. Also, the second subset of the first data set corresponds to data received from a second set of client devices.
In some embodiments, the access point further selects one of the first wired connection and the second wired connection for transmitting each subset of the first data set based on a client device from which that subset of the first data set was received. Specifically, the access point can select one of the first wired connection and the second wired connection for transmitting each subset of the first data set based on an Association Identification (AID) of a client device from which that subset of the first data set was received.
Furthermore, in some embodiments, the access point transmits the first subset of the first data set from a first physical port on the access point over the first wired connection to the network device, and transmits the second subset of the first data set from a second physical port on the access point over the second wired connection to the network device. In some embodiments, the first wired connection and the second wired connection are aggregated using a Link Aggregation Control Protocol (LACP).
In some embodiments, the access point selects one of the first wired connection and the second wired connection for transmitting each subset of the first data set using a load balancing algorithm that balances a plurality of data sets transmitted from the access point to the network device across a plurality of wired connections between the access point and the network device.
In some embodiments, the first subset of the first data set identifies a first Internet Protocol (IP) address corresponding to the access point as a source address and a second IP address as a destination address. Further, the second subset of the first data set identifies the first Internet Protocol (IP) address corresponding to the access point as the source address and a third IP address as a destination address. Here, the second IP address and the third IP address correspond to a same device, e.g., a network controller other than the access point.
System for Client Load Balancing with Link Aggregation Control Protocol
Radio antenna 610 may be any combination of known or conventional electrical components for receipt of signaling, including but not limited to, transistors, capacitors, resistors, multiplexers, wiring, registers, diodes or any other electrical components known or later become known.
Network interface 620 can be any communication interface, which includes but is not limited to, a modem, token ring interface, Ethernet interface, wireless IEEE 802.11 interface, cellular wireless interface, satellite transmission interface, or any other interface for coupling network devices.
Processor 630 can include one or more microprocessors and/or network processors. Memory 640 can include storage components, such as, Dynamic Random Access Memory (DRAM), Static Random Access Memory (SRAM), etc.
Receiving mechanism 650 generally receives one or more network messages via network interface 620 or radio antenna 610 from a wireless client. The received network messages may include, but are not limited to, requests and/or responses, beacon frames, management frames, control path frames, and so on. Specifically, receiving mechanism 650 may receive a first data set using a first radio of a plurality of radios, and may receive a second data set using a second radio of the plurality of radios.
Transmitting mechanism 660 generally transmits messages, which include, but are not limited to, requests and/or responses, beacon frames, management frames, control path frames, and so on. Specifically, transmitting mechanism 660 may transmit the first data set to a network device by transmitting a first subset of the first data set using a first wired connection between the access point and the network device, and a second subset of the first data set using a second wired connection between the access point and the network device. Note that, the first subset of the first data set corresponds to data received from a first set of client devices. Further, the second subset of the first data set corresponds to data received from a second set of client devices.
In some embodiments, the first subset of the first data set identifies a first Internet Protocol (IP) address corresponding to the access point as a source address and a second IP address as a destination address. Moreover, the second subset of the first data set identifies the first Internet Protocol (IP) address corresponding to the access point as the source address and a third IP address as a destination address. In some embodiments, the second IP address and the third IP address correspond to a same device, such as a network controller other than the disclosed network device (e.g., an access point).
In some embodiments, transmitting mechanism 660 transmits the second data set using only one of the first wired connection between the access point and the network device or the second wired connection between the access point and the network device.
In some embodiments, the first subset of the first data set is transmitted using a first wired connection via a first encapsulation tunnel. Moreover, the second subset of the first data set is transmitted using the second wired connection via a second encapsulation tunnel, and wherein the second data set is transmitting using the second wired connection via a third encapsulation tunnel.
In some embodiments, transmitting mechanism 660 transmits the first subset of the first data set from a first physical port on the access point over the first wired connection to the network device. Also, transmitting mechanism 660 transmits the second subset of the first data set comprises transmitting from a second physical port on the access point over the second wired connection to the network device. Note that, the first wired connection and the second wired connection may be aggregated using a Link Aggregation Control Protocol (LACP).
Selecting mechanism 670 generally selects a wired uplink connection for transmitting a particular data set. Specifically, selecting mechanism 670 can select one of the first wired connection and the second wired connection for transmitting each subset of the first data set based on a client device from which that subset of the first data set was received. In particular, selecting mechanism 670 can select one of the first wired connection and the second wired connection for transmitting each subset of the first data set based on an Association Identification (AID) of a client device from which that subset of the first data set was received. In some embodiments, selecting mechanism 670 can select one of the first wired connection and the second wired connection for transmitting each subset of the first data set using packet-based load balancing algorithm that balances a plurality of data sets transmitted from the access point to the network device across a plurality of wired connections between the access point and the network device.
The present disclosure may be realized in hardware, software, or a combination of hardware and software. The present disclosure may be realized in a centralized fashion in one computer system or in a distributed fashion where different elements are spread across several interconnected computer systems coupled to a network. A typical combination of hardware and software may be an access point with a computer program that, when being loaded and executed, controls the device such that it carries out the methods described herein.
The present disclosure also may be embedded in non-transitory fashion in a computer-readable storage medium (e.g., a programmable circuit; a semiconductor memory such as a volatile memory such as random access memory “RAM,” or non-volatile memory such as read-only memory, power-backed RAM, flash memory, phase-change memory or the like; a hard disk drive; an optical disc drive; or any connector for receiving a portable memory device such as a Universal Serial Bus “USB” flash drive), which comprises all the features enabling the implementation of the methods described herein, and which when loaded in a computer system is able to carry out these methods. Computer program in the present context means any expression, in any language, code or notation, of a set of instructions intended to cause a system having an information processing capability to perform a particular function either directly or after either or both of the following: a) conversion to another language, code or notation; b) reproduction in a different material form.
As used herein, “network device” generally includes a device that is adapted to transmit and/or receive signaling and to process information within such signaling such as a station (e.g., any data processing equipment such as a computer, cellular phone, personal digital assistant, tablet devices, etc.), an access point, data transfer devices (such as network switches, routers, controllers, etc.) or the like.
As used herein, “access point” (AP) generally refers to receiving points for any known or convenient wireless access technology which may later become known. Specifically, the term AP is not intended to be limited to IEEE 802.11-based APs. APs generally function as an electronic device that is adapted to allow wireless devices to connect to a wired network via various communications standards.
As used herein, the term “interconnect” or used descriptively as “interconnected” is generally defined as a communication pathway established over an information-carrying medium. The “interconnect” may be a wired interconnect, wherein the medium is a physical medium (e.g., electrical wire, optical fiber, cable, bus traces, etc.), a wireless interconnect (e.g., air in combination with wireless signaling technology) or a combination of these technologies.
As used herein, “information” is generally defined as data, address, control, management (e.g., statistics) or any combination thereof. For transmission, information may be transmitted as a message, namely a collection of bits in a predetermined format. One type of message, namely a wireless message, includes a header and payload data having a predetermined number of bits of information. The wireless message may be placed in a format as one or more packets, frames or cells.
As used herein, “wireless local area network” (WLAN) generally refers to a communications network links two or more devices using some wireless distribution method (for example, spread-spectrum or orthogonal frequency-division multiplexing radio), and usually providing a connection through an access point to the Internet; and thus, providing users with the mobility to move around within a local coverage area and still stay connected to the network.
As used herein, the term “mechanism” generally refers to a component of a system or device to serve one or more functions, including but not limited to, software components, electronic components, electrical components, mechanical components, electro-mechanical components, etc.
As used herein, the term “embodiment” generally refers an embodiment that serves to illustrate by way of example but not limitation.
It will be appreciated to those skilled in the art that the preceding examples and embodiments are exemplary and not limiting to the scope of the present disclosure. It is intended that all permutations, enhancements, equivalents, and improvements thereto that are apparent to those skilled in the art upon a reading of the specification and a study of the drawings are included within the true spirit and scope of the present disclosure. It is therefore intended that the following appended claims include all such modifications, permutations and equivalents as fall within the true spirit and scope of the present disclosure.
While the present disclosure has been described in terms of various embodiments, the present disclosure should not be limited to only those embodiments described, but can be practiced with modification and alteration within the spirit and scope of the appended claims. Likewise, where a reference to a standard is made in the present disclosure, the reference is generally made to the current version of the standard as applicable to the disclosed technology area. However, the described embodiments may be practiced under subsequent development of the standard within the spirit and scope of the description and appended claims. The description is thus to be regarded as illustrative rather than limiting.