Network identifiers are extracted from route advertisements. A table associates virtual network identifiers with provider edge devices. When a virtual network identifier extracted from a route advertisement matches a virtual network identifier in the table, the route advertisement is propagated to the provider edge devices associated with that virtual network identifier in the table. The route advertisement is not propagated to provider edge devices not associated with that virtual network identifier in the table.

Network identifiers are extracted from route advertisements. A table associates virtual network identifiers with provider edge devices. When a virtual network identifier extracted from a route advertisement matches a virtual network identifier in the table, the route advertisement is propagated to the provider edge devices associated with that virtual network identifier in the table. The route advertisement is not propagated to provider edge devices not associated with that virtual network identifier in the table.

Methods and apparatuses for acquisition of an Address Resolution Protocol (ARP)/IPv6 neighbour cache at a user plane function (UPF) entity without performing deep packet inspection for every packet that traverses a network. The ARP broadcast/Internet Control Message Protocol version 6 (ICMPv6) neighbour solicitation multicast from any Ethernet client (a user equipment (UE) or clients behind the UE or clients in a data network (DN)) is responded to by the UPF entity itself, by looking up the ARP/IPv6 Neighbour cache built in the UPF entity, irrespective of whether the UPF entity acts as the core Ethernet switch or whether the core Ethernet switch is in the DN. The solution is simplified to always intercept ARP at the UPF entity and respond to it based on a local ARP/IPv6 Neighbour cache.

Some embodiments provide a method for proxying ARP requests. At an MFE that executes on a host computer operating at a first site to implement a distributed router along with at least one additional MFE at the first site, the method receives, from a router at a remote second site, an ARP request for an IP address associated with a logical switch that spans the first site and the remote second site, and to which both the distributed router and the router at the remote second site connect. The method determines whether a table that includes IP addresses for a set of DCNs that use the distributed router as a default gateway includes the IP address. When the IP address is in the table, the method proxies the request at the host computer. When the particular IP address is not in the table, the MFE does not proxy the request.

The present invention is directed to systems and methods for providing secure dynamic address resolution and communication. Accordingly, a node may include processor and memory having instructions thereon, that when executed, cause the node to pair with another node. The pairing may include creating a DNS record on the node including a current address associated with the second node, this current address may be dynamically updated. The instructions may further allow the node to transmit a message to the second node, based on a resolved address from the DNS record on the first node. Authentication, dynamic message encryption and the provision of a DNS cache may further be implemented on the node.

A communication apparatus which terminates an L2 tunnel and an L3 tunnel includes a table storage unit which stores an ARP table where a broadcast MAC address is set as a destination MAC address linked to a destination IP address, and a transmission unit which acquires the broadcast MAC address as a destination MAC address corresponding to a destination IP address of an IP packet received via the L3 tunnel by referring to the ARP table and transmits a frame to which the broadcast MAC address is added as a destination MAC address, via the L2 tunnel.

Provided are methods and apparatuses for updating a route. In the present disclosure, when an access device receives a first host route and a first sequence number sent by a BGP peer of the access device, regardless of the value of the first sequence number, the first host route is used as a route used by the access device to forward data to a target host, and a recorded first ARP entry corresponding to the target host is deleted, so as to trigger the BGP peer of the access device, for example, a convergence device, to withdraw host routes associated with the first ARP entry based on the existing route withdrawal mechanism.

A name resolution result control system which controls a name resolution result at a terminal which utilizes an application on one or more edge platforms which are physically deployed in a dispersed manner includes a name resolution unit configured to receive a request for name resolution for the application from the terminal and transmit information of the application on an edge platform which is optimal for the terminal to the terminal as a name resolution result, and a name resolution result control unit configured to execute control for deleting the name resolution result at the terminal by being triggered by a predetermined event.

The present disclosure relates to a device and method for providing a terminal with information of a server in a communication system and, more specifically, to a device and method for providing a terminal with information of an application server in a mobile communication system. According to an embodiment of the present disclosure, a terminal may receive, from a 5G system according to a location of the terminal, an address of a DNS server to access, and receive, from a 5GS, regional information or zone information (hereinafter, referred to as an edge computing service zone ID (ESZI)) which can be used when a query is transmitted to the DNS server. When transmitting a DNS query to the corresponding DNS server, the terminal may include the ESZI in the DNS query and transmit same, and the DNS server having received the DNS query may search for an edge application server operating in an edge computing environment suitable for (or close to) a current location of the terminal, determine an address of the edge application server, and respond to the terminal. Accordingly, the terminal may access an edge application server that is closest to or most suitable for the current location of the terminal, and use an edge computing service.

Techniques for increasing the security and reliability of frame transmission are described. In an example, a network access device transmits a first frame indicating that a protected frame is to be used for a power mode change. The network access device receives a second frame that includes an identifier of a device and a change to a power mode of the device. The network access device determines whether the second frame is protected. In addition, the network access device determines whether data received for the device is to be stored prior to transmission to the device based at least in part on whether the second frame is protected.