公开(公告)号：US20190068490A1

公开(公告)日：2019-02-28

申请号：US16170175

申请日：2018-10-25

Applicant: Cisco Technology, Inc.

Inventor： Reinaldo Penno ,  Carlos M. Pignataro ,  Paul Quinn ,  Hung The Chau ,  Chui-Tin Yen ,  Vivek Kansal ,  Jianxin Wang ,  Kent K. Leung

IPC: H04L12/721 ,  H04L12/801 ,  H04L12/703 ,  H04L12/911 ,  H04L12/715 ,  H04L12/851

Abstract: Embodiments are directed to receiving an original packet at a service function; determining, for a reverse packet, a reverse service path identifier for a previous hop on a service function chain; determining, for the reverse packet, a service index for the reverse service path identifier; and transmitting the reverse packet to the previous hop on the service function chain.

公开(公告)号：US20190037391A1

公开(公告)日：2019-01-31

申请号：US15662555

申请日：2017-07-28

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  Rajiv Asati

IPC: H04W8/26 ,  H04L12/46 ,  H04L29/06

Abstract: A process executing on a network connected device provides distinct Internet Protocol addresses to a plurality of workload applications. The process determines that a first of the plurality of workload applications will not be providing in-situ Operations, Administration and Management (iOAM) data in packets processed by the first of the plurality of workload applications. The process receives a packet processed by the first of the plurality of workload applications. The process inserts iOAM data for the first of the plurality of workload applications into the packet.

公开(公告)号：US10158556B2

公开(公告)日：2018-12-18

申请号：US15468890

申请日：2017-03-24

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Faisal Iqbal ,  Sagar Soni ,  Nagendra Kumar Nainar ,  Carlos M. Pignataro

IPC: H04L12/751 ,  H04L12/803 ,  H04L12/723

Abstract: One embodiment is a method including creating at an ingress node of a communications network a request message including an Application Specific Mapping (“ASM”) TLV identifying a hashing parameter for a network application, wherein the ASM TLV includes range of values for the identified hashing parameter to enable load balancing for packets associated with the network application; forwarding the created request message to a node associated with a next hop along a first path through the network between the ingress node and an egress node; and receiving a response message from the node associated with the next hop, wherein the response message includes load balancing information for the node associated with the next hop corresponding to the range of values for the identified hashing parameter.

公开(公告)号：US10153949B2

公开(公告)日：2018-12-11

申请号：US15279469

申请日：2016-09-29

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Rajesh Kumar ,  Marc Holloman

IPC: H04L12/24 ,  H04L12/751

Abstract: Network topology information may be determined for a plurality of network devices on a network. System identifier information may then be determined for each of the plurality of network devices on the network. The system identifier information may be a list of network solutions that each network device actually or potentially belongs to. The system may then flag the system identifier information to indicate whether each solution is an actual or a potential solution.

公开(公告)号：US10148577B2

公开(公告)日：2018-12-04

申请号：US15449940

申请日：2017-03-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： James N. Guichard ,  Paul Quinn ,  David D. Ward ,  Carlos M. Pignataro

IPC: H04L12/741 ,  H04L29/06 ,  H04L12/803 ,  H04L29/08 ,  H04W72/04 ,  H04L12/725 ,  H04L12/721 ,  H04L12/851

Abstract: A method for load balancing based on metadata in a network service header. The method includes receiving a packet or frame of a traffic flow, wherein the packet or frame has a payload and the network service header including metadata and service path information for the traffic flow identifying the service path, and the metadata comprises classification information of the packet or frame, extracting, by a service header processor of the load balancer, the classification information of the metadata from the packet or frame, and applying, by a load balancing function of the load balancer, a load balancing policy on the packet or frame based on the classification information of the metadata.

公开(公告)号：US10148560B2

公开(公告)日：2018-12-04

申请号：US15222643

申请日：2016-07-28

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Stefano B. Previdi

IPC: H04L12/703 ,  H04L12/781 ,  H04L12/741 ,  H04L12/721 ,  H04L12/707

Abstract: Embodiments include generating an error message based on an error associated with a b packet, adding to the error message an address of a node in a segment routing domain of a network to serve as a destination address of the error message, and adding a new segment routing header to the error message. Embodiments also include rewriting the packet where the rewriting includes replacing a destination address in the packet with a final destination address associated with the packet. Embodiments further include adding the rewritten packet to the error message, and forwarding the error message to the destination address of the error message. In specific embodiments, the rewriting the packet includes removing a segment routing header of the packet. More specific embodiments include deriving the new segment routing header from information in the packet.

公开(公告)号：US20180316724A1

公开(公告)日：2018-11-01

申请号：US15582026

申请日：2017-04-28

Applicant: Cisco Technology, Inc.

Inventor： K Tirumaleswar Reddy ,  Prashanth Patil ,  Carlos M. Pignataro

IPC: H04L29/06 ,  H04L9/08

CPC classification number: H04L63/166 ,  H04L9/0822 ,  H04L9/0827 ,  H04L63/0435 ,  H04L2463/062

Abstract: A method for resuming a Transport Layer Security (TLS) session in a Service Function Chain comprising a plurality of Service Function nodes coupled to a Service Function Forwarder. A request is received at a first Service Function node to establish a TLS session, and a Pre-Shared Key (PSK) and a PSK identifier that uniquely correspond to the first Service Function node and the TLS session are generated. The PSK identifier is forwarded to one or more of the Service Function Forwarder and the plurality of Service Function nodes. A request to resume the TLS session is received from a client device that previously disconnected. It is determined that the connection request contains the PSK identifier, a second Service Function node is selected, and the TLS session is re-established between the client device and the second Service Function node using the same PSK as the prior TLS session.

公开(公告)号：US20180307714A1

公开(公告)日：2018-10-25

申请号：US15496150

申请日：2017-04-25

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Joseph M. Clarke ,  Gonzalo Salgueiro

IPC: G06F17/30 ,  G06F11/14

CPC classification number: G06F17/30312 ,  G06F11/142 ,  G06F2201/80 ,  G06F2201/805 ,  G06F2201/82

Abstract: A community exchange gathers machine consumable modules in a centralized database. The community exchange receives information associated with the status of a computing device. One or more device tags are generated based on the first information. Each of the device tags is related to at least a portion of the status of the computing device. The community exchange stores a database of machine consumable modules in association with one or more existing tags. By cross-referencing the device tags with the existing tags, the community exchange determines whether one of the machine consumable modules is associated with the device tags. Responsive to a determination that no machine consumable module in the database is associated with the device tags, the information received from the computing device is stored as a machine consumable module associated with the device tags.

公开(公告)号：US20180278548A1

公开(公告)日：2018-09-27

申请号：US15468949

申请日：2017-03-24

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Joseph M. Clarke ,  Nagendra Kumar Nainar ,  Lakshmi Ganesh Kondaveeti ,  Bharath Kumar Gubbala

IPC: H04L12/935 ,  H04L29/06 ,  H04L12/26

CPC classification number: H04L43/08 ,  H04L43/18 ,  H04L69/22

Abstract: End-to-end, in situ packet enrichment for network analytics includes receiving, at a network device is a part of an end-to-end path in a network, a template that specifies unique information elements to be added to a header of a packet traversing the network device when different combinations of network features are applied to the packet at the network device. When the network device applies one or more of the network features to the packet, the network device inserts one a particular information element of the unique information elements into the header of the packet based on the template and the one or more network features applied to the packet. The particular information element inserted into the header is resolvable to a list of the one or more network features applied to the packet at the network device.

公开(公告)号：US20180254997A1

公开(公告)日：2018-09-06

申请号：US15446085

申请日：2017-03-01

Applicant: Cisco Technology, Inc.

Inventor： Joseph M. Clarke ,  Gonzalo Salgueiro ,  Carlos M. Pignataro

IPC: H04L12/911 ,  H04L29/08 ,  H04L12/24

CPC classification number: H04L41/12 ,  H04L41/5019 ,  H04L45/306 ,  H04L67/12 ,  H04L67/32 ,  H04L69/22

Abstract: A fog controller is operable to communicate with fog nodes associated with a plurality of special purpose network connected devices. The fog controller receives, from each of a plurality of the fog nodes, an indication of one or more processing capabilities of the respective fog node. Based on the processing capabilities, the fog controller creates a fog-based service function chain that includes a set of the plurality of fog nodes. The fog controller instantiates the fog-based service function chain at the set of the plurality of fog nodes.