公开(公告)号：US10951717B2

公开(公告)日：2021-03-16

申请号：US16156987

申请日：2018-10-10

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Jerome Henry ,  Robert Edgar Barton

IPC: G06F15/173 ,  H04L29/08 ,  H04L12/725

Abstract: Systems, methods, and computer-readable media for differentiating service within a service mesh. A translator service receives network traffic directed to a service mesh from a communications network. The translator service can determine a service characteristic for the network traffic and update rulesets within the service mesh based on the determined service characteristic. The updated rulesets enable the service mesh to differentiate services for the network traffic similarly to forwarding rules within the communications network.

公开(公告)号：US10951578B1

公开(公告)日：2021-03-16

申请号：US16743073

申请日：2020-01-15

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Rajiv Asati

IPC: H04L12/741 ,  H04L29/12 ,  H04L29/06 ,  H04L12/70

Abstract: Presented herein are techniques that provide for a way to associate a policy, or signal the policy for a user equipment (UE), directly from the UE traffic, inband or, in other words, within the data plane. The policies are effectively embedded in the address of the UE traffic. When the Neutral Host Network (NHN) receives the UE traffic, the policy can be determined directly from the address associated with the UE traffic. This provides for a unique way of integrating a service chain identifier in the Internet Protocol address of the UE to identify the services/policies to be applied to UE traffic in a stateless manner.

公开(公告)号：US20210075722A1

公开(公告)日：2021-03-11

申请号：US16566680

申请日：2019-09-10

Applicant: Cisco Technology, Inc.

Inventor： Reshad Rahman ,  Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  Eric Vyncke

IPC: H04L12/721 ,  H04L12/749 ,  H04L12/703 ,  H04L12/733 ,  H04L12/707 ,  H04L12/46

Abstract: Techniques and mechanisms to enable a Bidirectional Forwarding Detection (BFD) Echo function to be used for IP multi-hop paths using IP encapsulation. A source device may encapsulate one or more BFD Echo packets as payloads in IP packets. The resulting IP packets may then be sent from a source device to a destination device over a multi-hop path such that one or more intermediary devices forward the IP packets onto the destination device. Upon receiving the IP packets, the destination device may echo back the one or more BFD Echo packets in the forwarding plane to indicate connectivity of the forwarding path between the devices. However, if the BFD Echo packets are not echoed back to the source device, the source device may determine that the multi-hop path has experienced a fault, and that traffic is to be rerouted through other paths.

公开(公告)号：US10938661B1

公开(公告)日：2021-03-02

申请号：US16704147

申请日：2019-12-05

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  Benoit Claise ,  Joseph M. Clarke

IPC: H04L12/24 ,  H04L12/26

Abstract: A method includes configuring a service on a network, and generating infrastructure definitions that define one or more network topologies configured on the network to implement the service. The method also includes decomposing a service definition of the service into a subservice dependency graph to indicate a collection of subservices and dependencies between the subservices that collectively implement the service. The method further includes, based on the subservice dependency graph and the one or more network topologies defined by the infrastructure definitions, determining infrastructure elements configured in the network to implement the service. The method also includes generating a heatmap that maps the service against the infrastructure elements and that indicates, for the infrastructure elements, respective measures of criticality in a range from a high criticality to a low criticality.

公开(公告)号：US10785137B2

公开(公告)日：2020-09-22

申请号：US16531201

申请日：2019-08-05

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro

IPC: H04L12/26 ,  H04L12/741 ,  H04L12/721 ,  H04L12/723

Abstract: Dataplane-based Seamless Bidirectional Forwarding Detection (S-BFD) monitoring for network entities is provided. In one embodiment, a method of S-BFD monitoring includes assigning, by a network element, a unique segment identifier (ID) to each entity of a plurality of entities that are monitored by the network element. The method includes receiving an S-BFD control packet at the network element, including a first segment ID associated with a particular entity. The method also includes performing a lookup operation for the first segment ID in stored data of the network element. Based on the lookup operation, when a first action is designated in the stored data for the first segment ID, the method includes returning the S-BFD control packet to its source, and, when a second action is designated in the stored data for the first segment ID, the method includes forwarding the S-BFD control packet to an S-BFD reflector session.

公开(公告)号：US10778551B2

公开(公告)日：2020-09-15

申请号：US16247048

申请日：2019-01-14

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  James Guichard

IPC: H04L12/26 ,  H04L29/08

Abstract: Embodiments are directed to a service function configured to receive, from a service function forwarder, a data packet comprising a bit field to indicate that a packet drop is to be monitored; apply a policy for the data packet; determine that the data packet is to be dropped based on the policy; set a drop-propagate bit in a header of the data packet; and transmit the data packet to the service function forwarder. Embodiments are directed to a service function forwarder configured to receive a data packet from a service function, the data packet comprising a bit set to indicate that a packet drop is to be monitored; generate an Internet Control Message Protocol (ICMP) message, the ICMP message comprising a destination address for the ICMP message identified from the data packet; transmit the ICMP message to the destination address; and drop the data packet from the service function chain.

公开(公告)号：US20200278892A1

公开(公告)日：2020-09-03

申请号：US16289412

申请日：2019-02-28

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro

IPC: G06F9/54 ,  G06F9/50 ,  G06F9/455

Abstract: Systems and methods provide for accelerating and offloading network processing to a remote smart network interface card (NIC). A first network element, including a first smart NIC, can transmit capability information of the first smart NIC for receipt by a neighboring second network element. The second network element can determine that a network processing task of a virtualized network function (e.g., virtual network function (VNF), cloud-native network function (CNF), etc.) instantiated on the second network element can be offloaded to the first smart NIC. The second network element can receive processing information from the virtualized network function for performing the network processing task. Based on the processing information, the second network element can transmit control information that causes the first smart NIC to perform the network processing task on at least a portion of network data received by the first network element for transmission to the second network element.

公开(公告)号：US10749794B2

公开(公告)日：2020-08-18

申请号：US16169491

申请日：2018-10-24

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Stefano B. Previdi

IPC: H04L12/703 ,  H04L12/721 ,  H04L12/707 ,  H04L12/741 ,  H04L12/781

Abstract: Embodiments include generating an error message based on an error associated with a packet, adding to the error message an address of a node in a segment routing domain of a network to serve as a destination address of the error message, and adding a new segment routing header to the error message. Embodiments also include rewriting the packet where the rewriting includes replacing a destination address in the packet with a final destination address associated with the packet. Embodiments further include adding the rewritten packet to the error message, and forwarding the error message to the destination address of the error message. In specific embodiments, the rewriting the packet includes removing a segment routing header of the packet. More specific embodiments include deriving the new segment routing header from information in the packet.

公开(公告)号：US10574479B2

公开(公告)日：2020-02-25

申请号：US16130631

申请日：2018-09-13

Applicant: Cisco Technology, Inc.

Inventor： Ijsbrand Wijnands ,  Neale D. R. Ranns ,  Gregory J. Shepherd ,  Nagendra Kumar Nainar

IPC: H04L12/26 ,  H04L12/46 ,  H04L12/723 ,  H04L12/741

Abstract: Methods and network devices are disclosed for traversal, within a network configured for bit indexed forwarding, of a subnetwork having nodes not configured for bit indexed forwarding. In one embodiment, a method includes receiving, from a first network node not configured for bit indexed forwarding, a data message comprising a local label and a message bit array. Bit values in the message bit array identify intended destination nodes for the message. The embodiment further includes modifying the message bit array to exclude as intended destination nodes for the message any nodes not represented by one or more relative bit positions associated with the local label and stored in an ingress filter data structure. In addition, the embodiment includes forwarding a copy of the data message to a second network node, which is configured for bit indexed forwarding, identified in an accessed entry of a bit indexed forwarding table.

公开(公告)号：US10560354B2

公开(公告)日：2020-02-11

申请号：US15468949

申请日：2017-03-24

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Joseph M. Clarke ,  Nagendra Kumar Nainar ,  Lakshmi Ganesh Kondaveeti ,  Bharath Kumar Gubbala

IPC: H04L29/06 ,  H04L12/26

Abstract: End-to-end, in situ packet enrichment for network analytics includes receiving, at a network device is a part of an end-to-end path in a network, a template that specifies unique information elements to be added to a header of a packet traversing the network device when different combinations of network features are applied to the packet at the network device. When the network device applies one or more of the network features to the packet, the network device inserts one a particular information element of the unique information elements into the header of the packet based on the template and the one or more network features applied to the packet. The particular information element inserted into the header is resolvable to a list of the one or more network features applied to the packet at the network device.