公开(公告)号：US20160344622A1

公开(公告)日：2016-11-24

申请号：US14714611

申请日：2015-05-18

Applicant: Cisco Technology, Inc.

Inventor： Jun Liu ,  Zhiyong Fang ,  Bin Shi ,  Feng Cai

IPC: H04L12/721 ,  H04L12/46 ,  H04L12/931

CPC classification number: H04L45/38 ,  H04L12/4633 ,  H04L45/64

Abstract: A tunnel endpoint of a virtual network monitors the flows between the tunnel endpoint and at least one other tunnel endpoint. The virtual network spans a physical network. A flow identifier for each flow is determined based on packet headers of packets in each respective flow. A path identifier for each flow is also determined based on the packet headers of the packets in each respective flow. Each path identifier indicates a route that the respective flow takes in the physical network to reach the respective destination tunnel endpoint. The path identifier and the flow identifier of the respective flows are then transmitted to a controller of the virtual network.

Abstract translation: 虚拟网络的隧道端点监视隧道端点与至少一个其他隧道端点之间的流。 虚拟网络跨越物理网络。 每个流的流标识符基于每个相应流中的分组报头来确定。 每个流的路径标识符也是基于每个流中的分组的分组报头来确定的。 每个路径标识符指示相应流在物理网络中到达相应目的地隧道端点的路由。 然后将路径标识符和各个流的流标识符发送到虚拟网络的控制器。

公开(公告)号：US20160261486A1

公开(公告)日：2016-09-08

申请号：US14635972

申请日：2015-03-02

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Zhiyong Fang ,  Yuping Wang ,  Linyu Lu ,  Yin Wang

IPC: H04L12/715

CPC classification number: H04L45/04 ,  H04L45/02 ,  H04L45/50

Abstract: A method enabling symmetric routing between a first host within a first AS and a second host within a second AS is disclosed. The method includes detecting that a first routing message was received at an edge router of the first AS from an edge router of the second AS. The first message identifies the second host as a source and the first host as a destination of a forward route. The method further includes determining that the first message further comprises an indication to implement symmetric routing between the first and second hosts and generating a second routing message for propagating to router(s) within the first AS. The second message identifies the first host as a source and the second host as a destination of a return route, and indicates that data is to be sent via the edge router of the first AS that received the first message.

Abstract translation: 公开了一种能够在第一AS内的第一主机与第二AS内的第二主机之间进行对等路由的方法。 该方法包括检测从第二AS的边缘路由器在第一AS的边缘路由器处接收到第一路由消息。 第一个消息将第二个主机标识为源，将第一个主机标识为转发路由的目的地。 该方法还包括确定第一消息还包括在第一和第二主机之间实现对称路由的指示，并且生成用于传播到第一AS内的路由器的第二路由消息。 第二消息将第一主机标识为源，将第二主机标识为返回路由的目的地，并指示将通过接收到第一消息的第一AS的边缘路由器发送数据。

公开(公告)号：US20230261989A1

公开(公告)日：2023-08-17

申请号：US17674453

申请日：2022-02-17

Applicant: Cisco Technology, Inc.

Inventor： Lianxiang Wang ,  Zhiyong Fang ,  Xiaorong Wang ,  Bin Shi ,  Jianda Liu ,  Yunpeng Zhang

IPC: H04L45/586 ,  H04L45/42 ,  H04L45/50 ,  H04L45/745

CPC classification number: H04L45/586 ,  H04L45/42 ,  H04L45/507 ,  H04L45/745

Abstract: According to an embodiment, a node comprises one or more processors operable to execute instructions to cause the node to perform operations that comprise receiving a packet from a first node associated with an SD-WAN domain. The packet comprises a header indicating a TLOC associated with a second node to send the packet, the second node associated with an SR domain. The operations comprise determining that the TLOC corresponds to a virtual TLOC used in the SD-WAN domain to identify the second node that is in the SR domain and, in response, determining a second node identifier used in the SR domain to identify the second node. The operations further comprise preparing the packet to be communicated via the SR domain. Preparing the packet comprises including the second node identifier in the packet. The operations further comprise sending the packet comprising the second node identifier to the second node.

公开(公告)号：US10171559B2

公开(公告)日：2019-01-01

申请号：US14549915

申请日：2014-11-21

Applicant: Cisco Technology, Inc.

Inventor： Feng Cai ,  Yuxiang Chen ,  Danmu Wu ,  Zhiyong Fang

IPC: H04L29/08 ,  H04L12/46

Abstract: A network device stores a Virtual Extensible Local Area Network (VxLAN) Tunnel Endpoint (VTEP) membership information that associates VxLANs each with a corresponding set of VTEPs authorized to originate VxLAN packets on that VxLAN. The network device receives from a communication network a VxLAN packet that identifies a VxLAN and an originating VTEP. The VTEP compares the originating VTEP to the set of VTEPs associated with the VxLAN in the VTEP membership information that matches the identified VxLAN. If the comparison indicates that the originating VTEP is not included in the set of VTEPs authorized to originate VxLAN packets, the VTEP discards the received VxLAN packet. Otherwise the VTEP further processes the VxLAN packet.

公开(公告)号：US09806985B2

公开(公告)日：2017-10-31

申请号：US14635972

申请日：2015-03-02

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Zhiyong Fang ,  Yuping Wang ,  Linyu Lu ,  Yin Wang

IPC: H04L12/715 ,  H04L12/751 ,  H04L12/723

CPC classification number: H04L45/04 ,  H04L45/02 ,  H04L45/50

Abstract: A method enabling symmetric routing between a first host within a first AS and a second host within a second AS is disclosed. The method includes detecting that a first routing message was received at an edge router of the first AS from an edge router of the second AS. The first message identifies the second host as a source and the first host as a destination of a forward route. The method further includes determining that the first message further comprises an indication to implement symmetric routing between the first and second hosts and generating a second routing message for propagating to router(s) within the first AS. The second message identifies the first host as a source and the second host as a destination of a return route, and indicates that data is to be sent via the edge router of the first AS that received the first message.

公开(公告)号：US12021746B2

公开(公告)日：2024-06-25

申请号：US17674453

申请日：2022-02-17

Applicant: Cisco Technology, Inc.

Inventor： Lianxiang Wang ,  Zhiyong Fang ,  Xiaorong Wang ,  Bin Shi ,  Jianda Liu ,  Yunpeng Zhang

IPC: H04L45/586 ,  H04L45/42 ,  H04L45/50 ,  H04L45/745

CPC classification number: H04L45/586 ,  H04L45/42 ,  H04L45/507 ,  H04L45/745

Abstract: According to an embodiment, a node comprises one or more processors operable to execute instructions to cause the node to perform operations that comprise receiving a packet from a first node associated with an SD-WAN domain. The packet comprises a header indicating a TLOC associated with a second node to send the packet, the second node associated with an SR domain. The operations comprise determining that the TLOC corresponds to a virtual TLOC used in the SD-WAN domain to identify the second node that is in the SR domain and, in response, determining a second node identifier used in the SR domain to identify the second node. The operations further comprise preparing the packet to be communicated via the SR domain. Preparing the packet comprises including the second node identifier in the packet. The operations further comprise sending the packet comprising the second node identifier to the second node.

公开(公告)号：US10063467B2

公开(公告)日：2018-08-28

申请号：US14714611

申请日：2015-05-18

Applicant: Cisco Technology, Inc.

Inventor： Jun Liu ,  Zhiyong Fang ,  Bin Shi ,  Feng Cai

IPC: H04L12/721 ,  H04L12/46 ,  H04L12/715

CPC classification number: H04L45/38 ,  H04L12/4633 ,  H04L45/64

Abstract: A tunnel endpoint of a virtual network monitors the flows between the tunnel endpoint and at least one other tunnel endpoint. The virtual network spans a physical network. A flow identifier for each flow is determined based on packet headers of packets in each respective flow. A path identifier for each flow is also determined based on the packet headers of the packets in each respective flow. Each path identifier indicates a route that the respective flow takes in the physical network to reach the respective destination tunnel endpoint. The path identifier and the flow identifier of the respective flows are then transmitted to a controller of the virtual network.

公开(公告)号：US20160149808A1

公开(公告)日：2016-05-26

申请号：US14549915

申请日：2014-11-21

Applicant: Cisco Technology, Inc.

Inventor： Feng Cai ,  Yuxiang Chen ,  Danmu Wu ,  Zhiyong Fang

IPC: H04L12/741 ,  H04L12/931

CPC classification number: H04L67/10 ,  H04L12/4633

Abstract: A network device stores a Virtual Extensible Local Area Network (VxLAN) Tunnel Endpoint (VTEP) membership information that associates VxLANs each with a corresponding set of VTEPs authorized to originate VxLAN packets on that VxLAN. The network device receives from a communication network a VxLAN packet that identifies a VxLAN and an originating VTEP. The VTEP compares the originating VTEP to the set of VTEPs associated with the VxLAN in the VTEP membership information that matches the identified VxLAN. If the comparison indicates that the originating VTEP is not included in the set of VTEPs authorized to originate VxLAN packets, the VTEP discards the received VxLAN packet. Otherwise the VTEP further processes the VxLAN packet.

Abstract translation: 网络设备存储虚拟可扩展局域网（VxLAN）隧道端点（VTEP）成员身份信息，该信息将VxLANs与授权在该VxLAN上创建VxLAN数据包的对应的一组VTEP相关联。 网络设备从通信网络接收识别VxLAN和始发VTEP的VxLAN分组。 VTEP将起始VTEP与与所识别的VxLAN匹配的VTEP成员资格信息中与VxLAN相关联的VTEP集合进行比较。 如果比较表明发起VTEP不包含在授权发起VxLAN数据包的VTEP集合中，则VTEP将丢弃接收的VxLAN数据包。 否则，VTEP进一步处理VxLAN数据包。