公开(公告)号：US20160359711A1

公开(公告)日：2016-12-08

申请号：US15040829

申请日：2016-02-10

Applicant: Cisco Technology, Inc.

Inventor： Khawar Deen ,  Navindra Yadav ,  Anubhav Gupta ,  Shashidhar Gandham ,  Rohit Chandra Prasad ,  Abhishek Ranjan Singh ,  Shih-Chun Chang

IPC: H04L12/26 ,  H04J3/06 ,  H04J3/14 ,  H04L29/08

Abstract: Systems, methods, and non-transitory computer-readable storage media for synchronizing timestamps of a sensor report to the clock of a device. In one embodiment, the device receives a report from a sensor of a node. The report can include a network activity of the node captured by the sensor and a first timestamp relative to the clock of the node. The device can then determine a second timestamp relative to the clock of the collector indicating receipt of the report by the device and from the sensor at the node. The device can also determine a delta between the first timestamp and the second timestamp, and a communication latency associated with a communication channel between the device and the sensor. Next, the device can adjust the delta based on the communication latency, and generate a third timestamp based on the adjusted delta.

Abstract translation: 用于将传感器报告的时间戳与设备的时钟同步的系统，方法和非暂时的计算机可读存储介质。 在一个实施例中，设备从节点的传感器接收报告。 报告可以包括由传感器捕获的节点的网络活动和相对于节点的时钟的第一时间戳。 然后，设备可以确定相对于收集器的时钟的第二时间戳，指示由设备和节点处的传感器接收报告。 设备还可以确定第一时间戳和第二时间戳之间的增量，以及与设备和传感器之间的通信信道相关联的通信等待时间。 接下来，设备可以基于通信延迟来调整增量，并且基于经调整的增量生成第三时间戳。

公开(公告)号：US20160359698A1

公开(公告)日：2016-12-08

申请号：US15171618

申请日：2016-06-02

Applicant: Cisco Technology, Inc.

Inventor： Khawar Deen ,  Navindra Yadav ,  Anubhav Gupta ,  Shashidhar Gandham ,  Rohit Chandra Prasad ,  Abhishek Ranjan Singh ,  Shih-Chun Chang

IPC: H04L12/26

CPC classification number: H04L43/045 ,  G06F3/0482 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/45558 ,  G06F16/122 ,  G06F16/137 ,  G06F16/162 ,  G06F16/17 ,  G06F16/173 ,  G06F16/174 ,  G06F16/1744 ,  G06F16/1748 ,  G06F16/2322 ,  G06F16/235 ,  G06F16/2365 ,  G06F16/24578 ,  G06F16/248 ,  G06F16/285 ,  G06F16/288 ,  G06F16/29 ,  G06F16/9535 ,  G06F21/53 ,  G06F21/552 ,  G06F21/566 ,  G06F2009/4557 ,  G06F2009/45587 ,  G06F2009/45591 ,  G06F2009/45595 ,  G06F2221/033 ,  G06F2221/2101 ,  G06F2221/2105 ,  G06F2221/2111 ,  G06F2221/2115 ,  G06F2221/2145 ,  G06N20/00 ,  G06N99/00 ,  G06T11/206 ,  H04J3/0661 ,  H04J3/14 ,  H04L1/242 ,  H04L9/0866 ,  H04L9/3239 ,  H04L9/3242 ,  H04L41/046 ,  H04L41/0668 ,  H04L41/0803 ,  H04L41/0806 ,  H04L41/0816 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/16 ,  H04L41/22 ,  H04L43/02 ,  H04L43/04 ,  H04L43/062 ,  H04L43/08 ,  H04L43/0805 ,  H04L43/0811 ,  H04L43/0829 ,  H04L43/0841 ,  H04L43/0858 ,  H04L43/0864 ,  H04L43/0876 ,  H04L43/0882 ,  H04L43/0888 ,  H04L43/10 ,  H04L43/106 ,  H04L43/12 ,  H04L43/16 ,  H04L45/306 ,  H04L45/38 ,  H04L45/46 ,  H04L45/507 ,  H04L45/66 ,  H04L45/74 ,  H04L47/11 ,  H04L47/20 ,  H04L47/2441 ,  H04L47/2483 ,  H04L47/28 ,  H04L47/31 ,  H04L47/32 ,  H04L61/2007 ,  H04L63/0227 ,  H04L63/0263 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/1441 ,  H04L63/145 ,  H04L63/1458 ,  H04L63/1466 ,  H04L63/16 ,  H04L63/20 ,  H04L67/10 ,  H04L67/1002 ,  H04L67/12 ,  H04L67/16 ,  H04L67/22 ,  H04L67/36 ,  H04L67/42 ,  H04L69/16 ,  H04L69/22 ,  H04W72/08 ,  H04W84/18

Abstract: A method includes analyzing, via a first capturing agent, packets processed in a first environment associated with a first host to yield first data. The method includes analyzing, via a second capturing agent, packets processed by a second environment associated with a second host to yield second data, collecting the first data and the second data at a collector to yield aggregated data, transmitting the aggregated data to an analysis engine which analyzes the aggregated data to yield an analysis. Based on the analysis, the method includes identifying first packet loss at the first environment and second packet loss at the second environment.

Abstract translation: 一种方法包括经由第一捕获代理分析在与第一主机相关联的第一环境中处理的分组以产生第一数据。 该方法包括经由第二捕获代理分析由与第二主机相关联的第二环境处理的分组以产生第二数据，在收集器处收集第一数据和第二数据以产生聚合数据，将聚合数据发送到分析 引擎，分析聚合数据以产生分析。 基于分析，该方法包括识别在第一环境下的第一分组丢失和在第二环境下的第二分组丢失。

公开(公告)号：US20160359696A1

公开(公告)日：2016-12-08

申请号：US15133073

申请日：2016-04-19

Applicant: Cisco Technology, Inc.

Inventor： Navindra Yadav ,  Abhishek Ranjan Singh ,  Anubhav Gupta ,  Shashidhar Gandham ,  Jackson Ngoc Ki Pang ,  Shih-Chun Chang ,  Hai Trong Vu

IPC: H04L12/26 ,  G06F9/455 ,  H04L12/24

CPC classification number: H04L43/045 ,  G06F3/0482 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/45558 ,  G06F17/30241 ,  G06F17/3053 ,  G06F17/30554 ,  G06F17/30598 ,  G06F17/30604 ,  G06F17/30867 ,  G06F21/53 ,  G06F21/552 ,  G06F21/566 ,  G06F2009/4557 ,  G06F2009/45587 ,  G06F2009/45591 ,  G06F2009/45595 ,  G06F2221/033 ,  G06F2221/2101 ,  G06F2221/2105 ,  G06F2221/2111 ,  G06F2221/2115 ,  G06F2221/2145 ,  G06N99/005 ,  G06T11/206 ,  H04J3/0661 ,  H04J3/14 ,  H04L1/242 ,  H04L9/0866 ,  H04L9/3239 ,  H04L9/3242 ,  H04L41/046 ,  H04L41/0668 ,  H04L41/0803 ,  H04L41/0806 ,  H04L41/0816 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/16 ,  H04L41/22 ,  H04L43/02 ,  H04L43/04 ,  H04L43/062 ,  H04L43/08 ,  H04L43/0805 ,  H04L43/0811 ,  H04L43/0829 ,  H04L43/0841 ,  H04L43/0858 ,  H04L43/0864 ,  H04L43/0876 ,  H04L43/0882 ,  H04L43/0888 ,  H04L43/10 ,  H04L43/106 ,  H04L43/12 ,  H04L43/16 ,  H04L45/306 ,  H04L45/38 ,  H04L45/46 ,  H04L45/507 ,  H04L45/66 ,  H04L45/74 ,  H04L47/11 ,  H04L47/20 ,  H04L47/2441 ,  H04L47/2483 ,  H04L47/28 ,  H04L47/31 ,  H04L47/32 ,  H04L61/2007 ,  H04L63/0227 ,  H04L63/0263 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/1441 ,  H04L63/145 ,  H04L63/1458 ,  H04L63/1466 ,  H04L63/16 ,  H04L63/20 ,  H04L67/10 ,  H04L67/1002 ,  H04L67/12 ,  H04L67/16 ,  H04L67/22 ,  H04L67/36 ,  H04L67/42 ,  H04L69/16 ,  H04L69/22 ,  H04W72/08 ,  H04W84/18

Abstract: Systems, methods, and computer-readable media for detecting sensor deployment characteristics in a network. In some embodiments, a system can run a capturing agent deployed on a virtualization environment of the system. The capturing agent can query the virtualization environment for one or more environment parameters, and receive a response from the virtualized environment including the one or more environment parameters. Based on the one or more environment parameters, the capturing agent can determine whether the virtualization environment where the capturing agent is deployed is a hypervisor or a virtual machine. The capturing agent can also determine what type of software switch is running in the virtualized environment.

Abstract translation: 用于检测网络中的传感器部署特征的系统，方法和计算机可读介质。 在一些实施例中，系统可以运行部署在系统的虚拟化环境上的捕获代理。 捕获代理可以查询虚拟化环境中的一个或多个环境参数，并且从虚拟环境接收包括一个或多个环境参数的响应。 基于一个或多个环境参数，捕获代理可以确定部署捕获代理的虚拟化环境是虚拟机管理程序还是虚拟机。 捕获代理还可以确定在虚拟化环境中运行的软件交换机的类型。

公开(公告)号：US20160359685A1

公开(公告)日：2016-12-08

申请号：US15091061

申请日：2016-04-05

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Navindra Yadav ,  Ellen Scheib ,  Rachita Agasthy

IPC: H04L12/24 ,  G06N7/00

CPC classification number: H04L41/16 ,  G06N7/005 ,  H04L41/142 ,  H04L43/062

Abstract: In one embodiment, a method includes receiving network data at an analytics device, grouping features of the network data into multivariate bins, generating a density for each of the multivariate bins, computing a rareness metric for each of the multivariate bins based on a probability of obtaining a feature in a bin and the probability for all other of the multivariate bins with equal or smaller density, and identifying anomalies based on computed rareness metrics. An apparatus and logic are also disclosed herein.

Abstract translation: 在一个实施例中，一种方法包括在分析装置处接收网络数据，将网络数据的特征分组成多变量仓，为每个多变量仓产生密度，基于多变量仓的概率计算每个多变量仓的稀有度度量 获得bin中的特征以及具有相同或更小密度的所有其他多变量箱的概率，以及基于计算的稀有度度量来识别异常。 本文还公开了一种装置和逻辑。

公开(公告)号：US20160359679A1

公开(公告)日：2016-12-08

申请号：US15140376

申请日：2016-04-27

Applicant: Cisco Technology, Inc.

Inventor： Ali Parandehgheibi ,  Omid Madani ,  Vimalkumar Jeyakumar ,  Ellen Christine Scheib ,  Navindra Yadav ,  Mohammadreza Alizadeh Attar

IPC: H04L12/24

Abstract: This disclosure generally relate to a method and system for mapping network information. The present technology relates techniques that enable full-scale, dynamic network mapping of a network system. By collecting network and computing data using built-in sensors, the present technology can provide network information for system monitoring and maintenance. According to some embodiments, the present technology enables generating and displaying of network connections and data processing statistics related to numerous nodes in a network. The present technology provides useful insights and actionable knowledge for network monitoring, security, and maintenance, via intelligently summarizing and effectively displaying the complex network communications and processes of a network.

Abstract translation: 本公开一般涉及用于映射网络信息的方法和系统。 本技术涉及能够实现网络系统的全面，动态网络映射的技术。 通过使用内置传感器收集网络和计算数据，本技术可以提供网络信息进行系统监控和维护。 根据一些实施例，本技术能够生成和显示与网络中的许多节点相关的网络连接和数据处理统计。 本技术通过智能总结和有效显示网络的复杂网络通信和过程，为网络监控，安全和维护提供有用的见解和可操作的知识。

公开(公告)号：US20160359677A1

公开(公告)日：2016-12-08

申请号：US15135331

申请日：2016-04-21

Applicant: Cisco Technology, Inc.

Inventor： Ashutosh Kulshreshtha ,  Hai Trong Vu ,  Michael Standish Watts ,  Jackson Ngoc Ki Pang ,  Navindra Yadav ,  Khawar Deen

IPC: H04L12/24 ,  H04L12/26

CPC classification number: H04L43/045 ,  G06F3/0482 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/45558 ,  G06F17/30241 ,  G06F17/3053 ,  G06F17/30554 ,  G06F17/30598 ,  G06F17/30604 ,  G06F17/30867 ,  G06F21/53 ,  G06F21/552 ,  G06F21/566 ,  G06F2009/4557 ,  G06F2009/45587 ,  G06F2009/45591 ,  G06F2009/45595 ,  G06F2221/033 ,  G06F2221/2101 ,  G06F2221/2105 ,  G06F2221/2111 ,  G06F2221/2115 ,  G06F2221/2145 ,  G06N99/005 ,  G06T11/206 ,  H04J3/0661 ,  H04J3/14 ,  H04L1/242 ,  H04L9/0866 ,  H04L9/3239 ,  H04L9/3242 ,  H04L41/046 ,  H04L41/0668 ,  H04L41/0803 ,  H04L41/0806 ,  H04L41/0816 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/16 ,  H04L41/22 ,  H04L43/02 ,  H04L43/04 ,  H04L43/062 ,  H04L43/08 ,  H04L43/0805 ,  H04L43/0811 ,  H04L43/0829 ,  H04L43/0841 ,  H04L43/0858 ,  H04L43/0864 ,  H04L43/0876 ,  H04L43/0882 ,  H04L43/0888 ,  H04L43/10 ,  H04L43/106 ,  H04L43/12 ,  H04L43/16 ,  H04L45/306 ,  H04L45/38 ,  H04L45/46 ,  H04L45/507 ,  H04L45/66 ,  H04L45/74 ,  H04L47/11 ,  H04L47/20 ,  H04L47/2441 ,  H04L47/2483 ,  H04L47/28 ,  H04L47/31 ,  H04L47/32 ,  H04L61/2007 ,  H04L63/0227 ,  H04L63/0263 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/1441 ,  H04L63/145 ,  H04L63/1458 ,  H04L63/1466 ,  H04L63/16 ,  H04L63/20 ,  H04L67/10 ,  H04L67/1002 ,  H04L67/12 ,  H04L67/16 ,  H04L67/22 ,  H04L67/36 ,  H04L67/42 ,  H04L69/16 ,  H04L69/22 ,  H04W72/08 ,  H04W84/18

Abstract: In one embodiment, a monitoring device (or module) monitors messages exchanged between nodes in a communication network. The monitoring device further determines, based on time stamp data associated with each message, one or more latency distributions of paired response times between the nodes, and determines a node topology consistent with each of the one or more latency distributions of paired response times between the nodes. In some embodiments, the monitoring device also generates a graph of the node topology showing one or more communication links between the nodes, and annotates each communication link of the one or more communication links with at least one of a mean response time or a median response time based on at least one of the latency distributions.

Abstract translation: 在一个实施例中，监视设备（或模块）监视在通信网络中的节点之间交换的消息。 监测设备还基于与每个消息相关联的时间戳数据来确定节点之间的配对响应时间的一个或多个等待时间分布，并且确定与所述节点之间的配对响应时间的一个或多个等待时间分布中的每一个相一致的节点拓扑 节点。 在一些实施例中，监视设备还生成节点拓扑图，其中示出了节点之间的一个或多个通信链路，并且利用平均响应时间或中值响应中的至少一个来对一个或多个通信链路的每个通信链路进行注释 基于至少一个延迟分布的时间。

公开(公告)号：US20160357957A1

公开(公告)日：2016-12-08

申请号：US15171707

申请日：2016-06-02

Applicant: Cisco Technology, Inc.

Inventor： Khawar Deen ,  Navindra Yadav ,  Anubhav Gupta ,  Shashidhar Gandham ,  Rohit Chandra Prasad ,  Abhishek Ranjan Singh ,  Shih-Chun Chang

IPC: G06F21/53 ,  G06F9/455 ,  H04L29/06

CPC classification number: H04L43/045 ,  G06F3/0482 ,  G06F3/04842 ,  G06F3/04847 ,  G06F9/45558 ,  G06F16/122 ,  G06F16/137 ,  G06F16/162 ,  G06F16/17 ,  G06F16/173 ,  G06F16/174 ,  G06F16/1744 ,  G06F16/1748 ,  G06F16/2322 ,  G06F16/235 ,  G06F16/2365 ,  G06F16/24578 ,  G06F16/248 ,  G06F16/285 ,  G06F16/288 ,  G06F16/29 ,  G06F16/9535 ,  G06F21/53 ,  G06F21/552 ,  G06F21/566 ,  G06F2009/4557 ,  G06F2009/45587 ,  G06F2009/45591 ,  G06F2009/45595 ,  G06F2221/033 ,  G06F2221/2101 ,  G06F2221/2105 ,  G06F2221/2111 ,  G06F2221/2115 ,  G06F2221/2145 ,  G06N20/00 ,  G06N99/00 ,  G06T11/206 ,  H04J3/0661 ,  H04J3/14 ,  H04L1/242 ,  H04L9/0866 ,  H04L9/3239 ,  H04L9/3242 ,  H04L41/046 ,  H04L41/0668 ,  H04L41/0803 ,  H04L41/0806 ,  H04L41/0816 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/16 ,  H04L41/22 ,  H04L43/02 ,  H04L43/04 ,  H04L43/062 ,  H04L43/08 ,  H04L43/0805 ,  H04L43/0811 ,  H04L43/0829 ,  H04L43/0841 ,  H04L43/0858 ,  H04L43/0864 ,  H04L43/0876 ,  H04L43/0882 ,  H04L43/0888 ,  H04L43/10 ,  H04L43/106 ,  H04L43/12 ,  H04L43/16 ,  H04L45/306 ,  H04L45/38 ,  H04L45/46 ,  H04L45/507 ,  H04L45/66 ,  H04L45/74 ,  H04L47/11 ,  H04L47/20 ,  H04L47/2441 ,  H04L47/2483 ,  H04L47/28 ,  H04L47/31 ,  H04L47/32 ,  H04L61/2007 ,  H04L63/0227 ,  H04L63/0263 ,  H04L63/06 ,  H04L63/0876 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1425 ,  H04L63/1433 ,  H04L63/1441 ,  H04L63/145 ,  H04L63/1458 ,  H04L63/1466 ,  H04L63/16 ,  H04L63/20 ,  H04L67/10 ,  H04L67/1002 ,  H04L67/12 ,  H04L67/16 ,  H04L67/22 ,  H04L67/36 ,  H04L67/42 ,  H04L69/16 ,  H04L69/22 ,  H04W72/08 ,  H04W84/18

Abstract: Systems, methods, and computer-readable media for managing compromised sensors in multi-tiered virtualized environments. A method includes determining a lineage for a process within the network and then evaluating, through knowledge of the lineage, the source of the command that initiated the process. The method includes capturing data from a plurality of capture agents at different layers of a network, each capture agent of the plurality of capture agents configured to observe network activity at a particular location in the network, developing, based on the data, a lineage for a process associated with the network activity and, based on the lineage, identifying an anomaly within the network.

Abstract translation: 用于管理多层虚拟化环境中的受感染传感器的系统，方法和计算机可读介质。 一种方法包括确定网络内的过程的谱系，然后通过对谱系的了解来评估启动过程的命令的来源。 该方法包括从网络的不同层的多个捕获代理捕获数据，多个捕获代理中的每个捕获代理被配置成观察网络中特定位置处的网络活动，基于该数据， 与网络活动相关联的过程，并且基于谱系识别网络内的异常。

公开(公告)号：US20160357546A1

公开(公告)日：2016-12-08

申请号：US15148185

申请日：2016-05-06

Applicant: Cisco Technology, Inc.

Inventor： Shih-Chun Chang ,  Jackson Ngoc Ki Pang ,  Varun Sagar Malhotra ,  Hai Trong Vu ,  Roberto Fernando Spadaro ,  Ashutosh Kulshreshtha ,  Navindra Yadav

IPC: G06F9/445

CPC classification number: G06F8/65 ,  G06F21/57 ,  H04L63/12

Abstract: Systems, methods, and computer-readable media are provided for automatically downloading and launching a new version of software package on components in a network environment. In some examples, an upgrade server of a network environment keeps a copy of all versions of software packages running on nodes or sensors of the network environment, identifications of corresponding nodes or sensors, and public keys associated with the software packages. The upgrade server can authenticate a new version of a software package using a two-step process.

Abstract translation: 提供了系统，方法和计算机可读介质，用于在网络环境中的组件上自动下载和启动软件包的新版本。 在一些示例中，网络环境的升级服务器保留在网络环境的节点或传感器上运行的所有版本的软件包的副本，相应节点或传感器的标识以及与软件包相关联的公钥。 升级服务器可以使用两步过程来验证软件包的新版本。

公开(公告)号：US09502111B2

公开(公告)日：2016-11-22

申请号：US14450106

申请日：2014-08-01

Applicant: Cisco Technology, Inc.

Inventor： Sarang Dharmapurikar ,  Mohammadreza Alizadeh Attar ,  Navindra Yadav ,  Ramanan Vaidyanathan ,  Kit Chiu Chu

IPC: H04L12/28 ,  G11C15/04 ,  H04L12/707 ,  H04L12/803

CPC classification number: H04L45/7453 ,  G06F9/30018 ,  G06K15/107 ,  G11C11/4096 ,  G11C15/00 ,  G11C15/04 ,  G11C2207/002 ,  H04L45/24 ,  H04L47/125

Abstract: In some implementations, network traffic can be routed along equal cost paths based on weights assigned to each path. For example, weighted equal cost multipath routing can be implemented by assigning weights to each equal cost path (e.g., uplink, next hop node) to a destination device. When the network device receives a packet, the network device can generate a key (e.g., a random value, a hash value based on packet data, a value between 0 and n, etc.). The key can be used to select an uplink or path upon which to forward the packet. A key can be generated for a packet flow or flowlet. Each flow can be associated with the same key so that each packet in a flow will be forwarded along the same path. Each flowlet can be forwarded along a different uplink.

Abstract translation: 在一些实现中，基于分配给每个路径的权重，网络流量可以沿着相等的成本路径路由。 例如，可以通过向目标设备分配权重给每个相等成本路径（例如，上行链路，下一跳节点）来实现加权等成本多径路由。 当网络设备接收到分组时，网络设备可以生成密钥（例如，随机值，基于分组数据的哈希值，0和n之间的值等）。 密钥可以用于选择转发数据包的上行链路或路径。 可以为分组流或小流生成密钥。 每个流可以与相同的密钥相关联，使得流中的每个分组将沿着相同的路径被转发。 每条流都可以沿不同的上行链路转发。

公开(公告)号：US09369304B2

公开(公告)日：2016-06-14

申请号：US14204938

申请日：2014-03-11

Applicant: Cisco Technology, Inc.

Inventor： Navindra Yadav ,  James Rivers ,  Gnanaprakasam Pandian ,  Pauline Shuen ,  Scott Emery

IPC: H04L12/56 ,  H04L12/54 ,  H04L12/18 ,  H04L12/761

CPC classification number: H04L12/56 ,  H04L12/1868 ,  H04L12/1886 ,  H04L45/16

Abstract: In one embodiment, a subnet-scoped multicast packet is received on an interface of a forwarding device that is connected to a host device of a subnet of a forwarding domain. The received subnet-scoped multicast packet is transmitted from one or more other interfaces of the forwarding device that are connected to one or more other host devices of the subnet. The received subnet-scoped multicast packet is also encapsulated with an additional header. The encapsulated subnet-scoped multicast packet is forwarded from the forwarding device to an intermediate router which routes the encapsulated subnet-scoped multicast packet to one or more other forwarding devices configured to decapsulate the encapsulated subnet-scoped multicast packet and transmit the decapsulated subnet-scoped multicast packet to one or more connected host devices of an additional portion of the subnet.

Abstract translation: 在一个实施例中，在连接到转发域的子网的主机设备的转发设备的接口上接收子网范围的组播分组。 接收到的子网范围的组播数据包是从连接到子网的一个或多个其他主机设备的转发设备的一个或多个其他接口传送的。 接收到的子网范围的组播数据包也封装了一个额外的头。 封装的子网范围组播数据包从转发设备转发到中间路由器，路由器将封装的子网范围组播数据包路由到一个或多个其他转发设备，该转发设备配置为对封装的子网范围组播数据包进行解封装，并传送解封装的子网范围 组播分组到子网的附加部分的一个或多个连接的主机设备。