公开(公告)号：US10541905B2

公开(公告)日：2020-01-21

申请号：US15969941

申请日：2018-05-03

Applicant: Cisco Technology, Inc.

Inventor： Keyur Patel ,  Serpil Bayraktar ,  Manish Bhardwaj ,  David Delano Ward ,  Burjiz Pithawala

IPC: H04L12/751 ,  H04L12/721 ,  H04L12/741 ,  H04L12/717 ,  H04L12/753

Abstract: Embodiments are provided for providing optimal route reflector (ORR) root address assignment to route reflector clients and fast failover capabilities in an autonomous system, including identifying a first node in an autonomous system as a candidate root node of a first routing group, identifying a client node based on a neighbor address used in a first routing protocol, mapping the neighbor address to routing information received from the client node via a second routing protocol, and associating the neighbor address with the first routing group if the routing information includes an identifier of the first routing group. In more specific embodiments, identifying the first node as a candidate root node includes determining the first node and the first routing group are advertised in a first protocol packet, and determining the first node and the second routing group are advertised in a second protocol packet.

公开(公告)号：US10511590B1

公开(公告)日：2019-12-17

申请号：US16413411

申请日：2019-05-15

Applicant: Cisco Technology, Inc.

Inventor： Hendrikus G. P. Bosch ,  Alessandro Duminuco ,  Jeffrey Napper ,  David Delano Ward ,  Syed Khalid Raza ,  Sape Jurrien Mullender

IPC: H04L29/06 ,  H04L12/725 ,  H04L12/721

Abstract: Disclosed are concepts for provided for managing application traffic. A method includes receiving a request to access a service from an application, confirming an entity of a user of the application and, based on the confirmation, generating, via an authentication service, a routing policy for data flows between the application and the service. The routing policy defines a mandated path between the application and the service. The method also can include storing proof-of-transit data in the traffic flow for tracking an actual path from the application to the service and determining whether the data path complies with the mandated path defined in the policy. When the determination indicates that the actual path followed the mandated path defined in the routing policy, the method includes granting access to the user for the service. When the actual path differs from the mandated path, the method includes denying access to the user.

公开(公告)号：US20190306011A1

公开(公告)日：2019-10-03

申请号：US16429177

申请日：2019-06-03

Applicant: Cisco Technology, Inc.

Inventor： Enzo Fenoglio ,  Hugo Latapie ,  David Delano Ward ,  Sawsen Rezig ,  Raphaël Wouters ,  Didier Colens ,  Donald Mark Allen ,  Dmitri Goloubev

IPC: H04L12/24 ,  G06N20/00 ,  G06N5/04 ,  H04L12/26

Abstract: In one embodiment, a service that monitors a network detects a plurality of anomalies in the network. The service uses data regarding the detected anomalies as input to one or more machine learning models. The service maps, using a conceptual space, outputs of the one or more machine learning models to symbols. The service applies a symbolic reasoning engine to the symbols, to rank the anomalies. The service sends an alert for a particular one of the detected anomalies to a user interface, based on its corresponding rank.

公开(公告)号：US10367749B2

公开(公告)日：2019-07-30

申请号：US15641661

申请日：2017-07-05

Applicant: Cisco Technology, Inc.

Inventor： John J. Williams, Jr. ,  Mohammed Ismael Tatar ,  David Delano Ward

IPC: H04L1/00 ,  H04L12/823 ,  H04L12/851 ,  H04L12/891 ,  H04L12/863 ,  H04L12/813 ,  H04L12/801 ,  H04L12/833

Abstract: In one embodiment, a network node automatically cycles among packet traffic flows and subjects the currently selected packet flows to varying drop probabilities in a packet network, such as, but not limited to in response to congestion in a device or network. Packets of the currently selected packet traffic flows are subjected to a drop or forward decision, while packets of other packet traffic flows are not. By cycling through all of these packet traffic flows, all of these packet flows are subjected to the drop or forward decision in the long term approximately uniformly providing fairness to all packet traffic flows. In the short term, only packets of a currently selected flow are targeted for possible dropping providing unfairness to the currently selected flows, while possibly providing communication efficiencies by affecting the currently selected, but not all flows.

公开(公告)号：US20190149469A1

公开(公告)日：2019-05-16

申请号：US16094967

申请日：2017-04-17

Applicant: Cisco Technology, Inc.

Inventor： Andre Jean-Marie Surcouf ,  David Delano Ward ,  William Mark Townsley

IPC: H04L12/749 ,  H04L12/741 ,  H04L12/721

Abstract: A method of routing a packet in a network is described. The network includes a plurality of nodes implementing Information Centric Networking (ICN) routing or content centric networking and routing. The method includes receiving the packet at a node implementing ICN routing, the packet comprising an Internet Protocol (IP) header and a packet payload, wherein the packet comprises a request packet for requesting content from the network. The method further includes extracting from the packet payload a content identifier for the requested content and forwarding the packet to a next hop node in the network based on the content identifier extracted from the packet payload.

公开(公告)号：US10212069B2

公开(公告)日：2019-02-19

申请号：US15377871

申请日：2016-12-13

Applicant: Cisco Technology, Inc.

Inventor： Naader Hasani ,  Mohammed Ismael Tatar ,  David Delano Ward

IPC: H04L12/761 ,  H04L12/18 ,  H04L12/741

Abstract: In one embodiment, multicast packets including, but not limited to, Bit Index Explicit Replication (BIER) multicast packets, are forwarded in a network. An independent lookup operation is performed on each destination node identified in the received packet to determine a nexthop to which to forward a copy of the packet. Typically, some or possibly all of these lookup operations are performed in parallel, in contrast to the sequential lookup and bit masking operations of previous BIER packet forwarding specifications and implementations. In one embodiment, the selection of a nexthop for a destination node is made from a set of two or more nexthop nodes on different Equal-Cost Multi-Paths (ECMPs). In one embodiment, compact data structures are used in determining how to forward the received multicast packet, with these compact data structures providing requisite forwarding information without allocating space to unassigned destination nodes.

公开(公告)号：US20190036832A1

公开(公告)日：2019-01-31

申请号：US15663084

申请日：2017-07-28

Applicant: Cisco Technology, Inc.

Inventor： John J. Williams, JR. ,  Naader Hasani ,  Mohammed Ismael Tatar ,  David Delano Ward

IPC: H04L12/801 ,  H04L12/861 ,  H04L12/875

CPC classification number: H04L47/34 ,  H04L47/56 ,  H04L49/25 ,  H04L49/9057

Abstract: In one embodiment, for each distribution period of time, each packet flow is assigned to a path through a packet switching device (e.g., switch fabric) with all packets of the packet flow being sent in order over the assigned path. For a next distribution period, different paths are assigned for these packet flows, with all packets being sent in order over the new corresponding selected path. In one embodiment, these paths are switched often enough to prevent congestion, yet infrequent enough so as to minimize resources for reordering. In one embodiment, the reordering is done at the egress and only for predefined high bandwidth flows (e.g., elephant flows). A distribution period indication is typically associated with each packet to identify its corresponding distribution period. In one embodiment, each routing and egress switching stage in a switching fabric performs reordering.

公开(公告)号：US20180375766A1

公开(公告)日：2018-12-27

申请号：US16019286

申请日：2018-06-26

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Francois Clad ,  Pablo Camarillo Garvia ,  David Delano Ward

IPC: H04L12/741

Abstract: In one embodiment, new Segment Routing capabilities are used in the steering of packets through Segment Routing nodes in a network. A Segment List includes a set of one or more Segment List (SL) Groups, each of which identifies one or more Segments contiguously or non-contiguously stored in the Segment List (or stored across multiple Segment Lists) of a Segment Routing packet. Each SL Group typically includes one Segment that is encoded as a Segment Identifier, and may include Segments that are Extended Values. The steering order of SL Groups is not required to be the same order as they are listed in the Segment List, as the value of Segments Left may be increased, remain the same, or decreased (possibly to skip a next SL Group) and possibly based on the result of an evaluation of a conditional expression.

公开(公告)号：US10158558B1

公开(公告)日：2018-12-18

申请号：US15410730

申请日：2017-01-19

Applicant: Cisco Technology, Inc.

Inventor： David Delano Ward ,  Clarence Filsfils ,  Muthurajah Sivabalan ,  Stefano Benedetto Previdi

IPC: H04L12/28 ,  H04L12/761 ,  H04L12/753

Abstract: In one embodiment, packets are forwarded in a network according to a Segment Routing-based (SR-based) multicast distribution tree identified by a Tree Segment Identifier (Tree-SID). This packet forwarding includes packet replication to cause multiple copies of a same packet to be forwarded to different nodes of the SR-based multicast distribution tree. The Tree-SID is typically a same global value used within the network to identify the SR-based multicast distribution tree. As each packet is being routed through the network according to the SR-based multicast distribution tree, the packet includes the Tree-SID in a Segment List of the packet, with the Segment List being an ordered list of SID's identifying information for forwarding the packet in the network. The Tree-SID provides a lookup key for efficient forwarding of packets by packet switching devices making forwarding decisions, which may including forwarding multiple copies of the packet.

公开(公告)号：US10097449B2

公开(公告)日：2018-10-09

申请号：US14805300

申请日：2015-07-21

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Keyur Patel ,  Serpil Bayraktar ,  Manish Bhardwaj ,  David Delano Ward ,  Burjiz Pithawala

IPC: H04L12/707 ,  H04L12/721 ,  H04L29/08 ,  H04L12/717

Abstract: Embodiments are provided for optimized best path selection for optimal route reflection and include configuring, by a cloud-based node, a first cluster of nodes in an autonomous system, and determining whether any paths for a network address prefix are available in the first cluster of nodes. Embodiments also include selecting a best path from one or more paths if the one or more paths are determined to be available in the first cluster for the network address prefix. Embodiments further include advertising the best path to one or more nodes in the first cluster. More specific embodiments include determining, if no paths for the network address prefix are available in the first cluster, another path for the network address prefix is available in a second cluster of nodes of the autonomous system, and selecting the other path as the best path.