An Internet of Things (IoT) protection service at the network level is described. A secure session is established between an edge server and an IoT client that is requesting to send data to an IoT device. The edge server receives the request from the IoT client over the secure session instead of the IoT device directly because a Domain Name System (DNS) request for a unique fully qualified domain name assigned to the IoT device returns an IP address of the edge server instead of an IP address of the IoT device. The edge server analyzes the request to determine whether to transmit the request to the IoT device, including applying web application firewall rule(s) against the request. If the request does not trigger any rule, then the edge server transmits the request to the IoT device. If the request triggers any rule, then the edge server blocks the request.

The present disclosure relates to generating performance profiles of member nodes. A plurality of electronic activities can be accessed. A subset of electronic activities from the plurality of electronic activities can be identified. The subset of electronic activities can be parsed to identify participants of the electronic activities. A second node profile can be accessed for each participant. Participant types can be identified from each second node profiles. A distribution of the subset of electronic activities can be determined. A performance profile can be generated.

A method for establishing Segment Routing (SR) tunnel based on Internet Protocol version 6 (IPv6) data-plane using a path computation element communication protocol (PCEP) includes generating, by a path computation element (PCE), a first PCEP message, wherein the first PCEP message comprises indicating information and segment identifier (SID), and wherein the indicating information indicates that the SID is an IPv6 prefix of a node in a tunnel. A first path computation client (PCC) receives a first PCEP message from a PCE and the first PCC establishes an SR for IPv6 forwarding plane (SRv6) tunnel from the first PCC to a second PCC.

Embodiments of a device and method are disclosed. In an embodiment, a method of network device name management involves at a cloud server, determining a device name of a network device to be deployed at a customer site based on site survey result information of the customer site, at the cloud server, receiving network device information of the network device after the network device is deployed at the customer site, and at the cloud server, associating the device name of the network device with the network device information of the network device.

In one embodiment, a remote access manager receives an access request from a client to remotely access a device on a local network. The remote access manager generates a universally unique identifier for the access request. The remote access manager sends a response to the client having a one-time use domain name system name that is based on the universally unique identifier. The remote access manager communicates with a web proxy to authorize the client to remotely access the device.

Novel tools and techniques are provided for implementing dynamic border gateway protocol (“BGP”) host route generation based on domain name system (“DNS”) resolution. In various embodiments, a computing system may receive, from a user device via a first network, a request to establish a communications link with an external device via a second network that is separate from the first network, based on a first uniform resource identifier (“URI”) indicative of a network location of the external device. The computing system may query a DNS resolver for an Internet Protocol (“IP”) address corresponding to a valid current IP address, based on the first URI, and may advertise the IP address and/or a route based on the IP address. A communications link may be established between the user device and the external device based on the IP address and/or the route.

A method and system are provided for continuously monitoring bandwidth utilization in real time on a backbone of a network. Prefixes using the highest traffic can be identified and additional bandwidth can be provisioned in the form of optical transponder wavelengths. The additional bandwidth can be an express path that passes directly through optical nodes (thereby bypassing transit network devices) to the destination optical node. A centralized controller can perform the monitoring of the network devices, decide that an express path needs to be generated, and control both the network device and the optical network nodes to generate the express path from the network device, through the optical network, to the destination network device. The controller can apply and remove IP static routes and IP addresses associated with an express path. Additionally, the controller can request the setup or tear-down of an optical wavelength within the optical network.

A method of communication between an electronic device and a cellular network employing a communication protocol is disclosed. The device initiates a connection with the network and during the initiation the device issues to the network at least one information criterion. Once the connection is established, the network forwards to the device only communications required by said communication protocol and any communications which meet the information criterion issued by the device.

There is provided a method, computer program, and an apparatus for a network function that causes the network function to: receive, from a service consumer, event subscription information comprising an intra-domain address and an inter-domain address for signalling event subscription notification information from a service producer to the service consumer; determine whether a first service producer is located in the same domain as the service consumer; select at least one of the inter-domain address and the intra-domain address to signal to the first service producer in dependence on said determining; and signal the selected at least one address to the first service producer.

The system described herein can automatically match, link, or otherwise associate electronic activities with one or more record objects. For an electronic activity that is eligible or qualifies to be matched with one or more record objects, the system can identify one or more set of rules or rule sets. Using the rule sets, the system can identify candidate record objects. The system can then rank the identified candidate record objects to select one or more record objects with which to associate the electronic activity. The system can then store an association between the electronic activity and the selected one or more record objects.