公开(公告)号：US11228651B2

公开(公告)日：2022-01-18

申请号：US16559526

申请日：2019-09-03

Applicant: Cisco Technology, Inc.

Inventor： Edward A. Warnicke ,  Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Rajiv Asati

IPC: H04L29/08 ,  H04L12/26

Abstract: Techniques for network validation are provided. A first request is received at a first manager component, from a first client. The first client and the first manager component are on a first node of a plurality of nodes, and the first request specifies a desired network service. A first network service endpoint that is capable of providing the desired network service is identified, where the first network service endpoint is on a second node of the plurality of nodes. A connection is established between a first validation agent on the first node and a second validation agent on the second node. Finally, upon determining that the connection between the first and second validation agents satisfies predefined criteria, a connection is established between the first client and the first network service endpoint.

公开(公告)号：US20210385231A1

公开(公告)日：2021-12-09

申请号：US17410286

申请日：2021-08-24

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Luca Muscariello ,  Alberto Compagno ,  Giovanna Carofiglio

IPC: H04L29/06 ,  H04L9/30 ,  H04L9/32 ,  H04L29/12

Abstract: An electronic device of a content producer generates a chunk of data, associates a location-independent name with the chunk of data, generates a signature for the chunk of data, attaches the signature to the chunk of data, and transmits the chunk of data, with the signature attached, to one or more user devices in response to respective requests. The signature is generated based on the data in the chunk, using a private key of the electronic device. The electronic device also stores information, including a specification of a public key associated with the private key, in a first ledger entry of a blockchain, to provide the one or more user devices with access to the public key. A user device may obtain the public key and use it to verify the chunk of data.

公开(公告)号：US20210385148A1

公开(公告)日：2021-12-09

申请号：US16892210

申请日：2020-06-03

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Pascal Thubert

IPC: H04L12/26

Abstract: This disclosure describes techniques for monitoring expected behavior of devices in a computing network. Behavior of network devices may include performing various functions associated with transferring data packets through the computing network. Monitoring expected behavior may include sending a probe packet into the computing network, and determining whether network devices behave as expected with respect to the probe packet. In some examples, behaviors such as replicating, forwarding, eliminating, ordering, and/or other functions regarding data packets may be validated using the present techniques. As computing networks and/or operations become more complex, assuring the expected behavior of network devices may become more important for the continued efficient, smooth, successful, and/or timely flow of data traffic.

公开(公告)号：US11128546B2

公开(公告)日：2021-09-21

申请号：US15834291

申请日：2017-12-07

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  Rajiv Asati

IPC: G06F15/173 ,  H04L12/24 ,  G06N20/00

Abstract: A method is provided to generate a network risk heatmap. The method includes obtaining first data related to technical support and operations issues of a network that includes a plurality of network elements and second data related to updates and configurations of the network. The method involves analyzing the first data and the second to generate a device risk heatmap rule that determines a level of predictive failure risk as a function of network telemetry data indicative of real-time operations of the network. The method further includes applying the device risk heatmap rule to network telemetry data collected from the network to create a network heatmap representing a level of predictive failure risk for the plurality of network elements in the network. The method then includes instantiating a path or tunnel in the network based on the network heatmap.

公开(公告)号：US11102135B2

公开(公告)日：2021-08-24

申请号：US16449991

申请日：2019-06-24

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Rajiv Asati

IPC: H04L12/841 ,  H04L29/06 ,  H04L29/08 ,  H04L12/721 ,  H04L12/725 ,  H04L12/717 ,  H04L12/851

Abstract: In some aspects, a method of the technology can include steps for sending a packet along a service function chain (SFC) to an egress node, the SFC comprising a plurality of service function forwarders (SFFs), wherein each SFF is associated with at least one service function (SF), and receiving the packet at a first SFF in the SFC, wherein the first SFF is associated with a first SF. In some aspects, the first SFF can also be configured to perform operations including: reading an option flag of the packet, and determining whether to forward the packet to the first based on the option flag. Systems and machine-readable media are also provided.

公开(公告)号：US11082540B2

公开(公告)日：2021-08-03

申请号：US16231301

申请日：2018-12-21

Applicant: Cisco Technology, Inc.

Inventor： Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Frank Brockners ,  Shwetha Subray Bhandari

IPC: G06F15/16 ,  H04L29/06 ,  H04L12/713 ,  H04L12/46

Abstract: In one embodiment, network operations are improved by performing updating operations data in an operations data field associated with the header of a particular protocol during the processing of a different protocol. A particular multiple-protocol (MP) packet is received by a particular network node in a network. The particular MP packet includes multiple protocol headers, including a first protocol header associated with a first protocol and a second protocol header associated with a second protocol. Further, the second protocol header associated with a second operations data field. During protocol processing of the first protocol on the particular MP packet, the second operations data field updated with particular operations data. The particular MP packet is sent from the particular network node, with said sent particular MP packet including said updated second operations data field with particular operations data.

公开(公告)号：US11082342B2

公开(公告)日：2021-08-03

申请号：US16511730

申请日：2019-07-15

Applicant: Cisco Technology, Inc.

Inventor： Rajiv Asati ,  Nagendra Kumar Nainar ,  Carlos M. Pignataro

IPC: H04L12/741 ,  H04L29/08 ,  H04L29/06 ,  H04L12/715

Abstract: A method is provided in one example embodiment and may include receiving a packet by a forwarder in an Information-Centric Networking (ICN) network; determining Bit Index Explicit Replication (BIER) information associated with the packet; and forwarding the packet based, at least in part, on the BIER information associated with the packet. The packet can be an interest packet or a data packet received by the forwarder in the ICN network.

公开(公告)号：US20210111971A1

公开(公告)日：2021-04-15

申请号：US16601969

申请日：2019-10-15

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Benoit Claise ,  Nagendra Kumar Nainar

IPC: H04L12/26 ,  H04L12/707 ,  H04L12/721

Abstract: In one embodiment, a method is provided service aware conditional path monitoring. The method includes determining, for a network that includes a plurality of nodes, which particular nodes of the plurality of nodes forward traffic associated with a service. The method involves identifying relevant forwarding instructions within the particular nodes that are used to forward traffic for the service. The method further includes configuring the particular nodes to perform monitoring of traffic with a higher priority given to the relevant forwarding instructions than other forwarding instructions on the particular nodes. Monitoring results are obtained from the monitoring of traffic on the particular nodes on the relevant forwarding instructions. The monitoring results are analyzed to determine assurance of the service in the network.

公开(公告)号：US20210075718A1

公开(公告)日：2021-03-11

申请号：US17101579

申请日：2020-11-23

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Nagendra Kumar Nainar ,  Carlos M. Pignataro

IPC: H04L12/753 ,  H04L12/721 ,  H04L12/751 ,  H04W40/24 ,  H04L12/44

Abstract: In one embodiment, a method is performed. A spine node in communication with a network may determine a subtree of a shadow cone of the spine node. The subtree may comprise a plurality of nodes and a plurality of links connecting pairs of the nodes. The spine node may determine a disaggregated route to a first leaf node to which a disaggregated prefix may be attached. The disaggregated route may be propagated to the plurality of the nodes of the subtree.

公开(公告)号：US10887230B2

公开(公告)日：2021-01-05

申请号：US15907020

申请日：2018-02-27

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Nagendra Kumar Nainar ,  Rajiv Asati

IPC: H04L12/749 ,  H04W72/04 ,  H04L12/721 ,  H04L12/725

Abstract: In an embodiment, a computer implemented method comprises at an internetworking device that is logically located in an edge position with respect to an internet protocol network and a plurality of industrial devices, receiving packet and frame data from a first computing device that is associated with an industrial system and communicates using a device-level Ethernet data communication protocol that does not define a management layer; at the internetworking device, generating an Operations, Administration, Management (OAM) header using, at least in part, the packet and frame data, wherein the OAM header comprises a device identifier, a data type, and a variable; encapsulating the packet and frame data with the OAM header to generate encapsulated packet and frame data; storing the encapsulated packet and frame data in a database; sending the encapsulated packet and frame data to a second internetworking device that is associated with the industrial system and communicates using the device-level Ethernet data communication protocol that does not define a management layer.