公开(公告)号：US20170244645A1

公开(公告)日：2017-08-24

申请号：US15051454

申请日：2016-02-23

Applicant: Cisco Technology, Inc.

Inventor： Thomas J. Edsall ,  Smita Rai ,  Satyam Sinha ,  Kit Chiu Chu ,  Sarang Dharmapurikar ,  Ashutosh Agrawal ,  Ravikanth Nasika

IPC: H04L12/911

CPC classification number: H04L63/10 ,  H04L45/30 ,  H04L47/70 ,  H04L63/08 ,  H04L63/101 ,  H04L63/105 ,  H04L63/20

Abstract: Disclosed are systems, methods, and computer-readable storage media for minimizing the number of entries in network access control lists (ACLs). In some embodiments of the present technology a networking device can receive, from a first computing device, a first data transmission intended for a second computing device, the first data transmission including first transmission data. The networking device can normalize at least a subset of the first transmission data based on a predetermined normalization algorithm, yielding a first normalized data set for the first data transmission. Subsequently, the networking device can identify a first access control list entry from a set of access control list entries based on the first normalized data set, the first access control list entry identifying a first action, and implement the first action in relation to the first data transmission.

公开(公告)号：US20160028683A1

公开(公告)日：2016-01-28

申请号：US14873572

申请日：2015-10-02

Applicant: Cisco Technology, Inc.

Inventor： Vipin Jain ,  Ashutosh Agrawal ,  Parag Bhide ,  Mahidas Prabhanjan

IPC: H04L29/12 ,  H04L12/713

CPC classification number: H04L61/103 ,  H04L45/586 ,  H04L45/60

Abstract: Techniques are presented herein for distributing address information of host devices in a network. At a first router device, a packet is received from a first host device that is destined for a second host device. The first host device is dually-connected to the first router and a second router device. The second router device is part of a virtual port channel pair with the first router device. A message is sent to the second router device, the message indicating that the first host device is connected to the second router device. The packet is encapsulated with an overlay header and is sent to a third router device that is connected to the second host device. The encapsulated packet contains a Layer 2 address associated with the first host device and a Layer 3 address associated with the first host device.

Abstract translation: 这里介绍了在网络中分配主机设备的地址信息的技术。 在第一路由器设备处，从第一主机设备接收目的地为第二主机设备的分组。 第一主机设备被双连接到第一路由器和第二路由器设备。 第二路由器设备是与第一路由器设备的虚拟端口信道对的一部分。 向第二路由器设备发送消息，指示第一主机设备连接到第二路由器设备的消息。 该分组被封装为覆盖头，并被发送到连接到第二主机设备的第三路由器设备。 封装的分组包含与第一主机设备相关联的第二层地址和与第一主机设备相关联的第三层地址。

公开(公告)号：US10805216B2

公开(公告)日：2020-10-13

申请号：US16367868

申请日：2019-03-28

Applicant: Cisco Technology, Inc.

Inventor： Satyam Sinha ,  Smita Rai ,  Kit Chiu Chu ,  Ashutosh Agrawal ,  Wanli Wu ,  Ravikanth Nasika ,  Thomas J. Edsall ,  Geetha Anandakrishnan

IPC: H04L12/741 ,  H04L12/715 ,  H04L12/713 ,  H04L29/08 ,  H04L12/46 ,  H04L12/751

Abstract: Aspects of the embodiments include receiving a packet at a network element of a packet-switched network; identifying a presence of a shared service destination address in a header of the packet; identifying a shared service destination address for the packet based, at least in part, on a destination internet protocol (IP) address stored in a forward information base; and forwarding the packet to the shared service destination address.

公开(公告)号：US09832165B2

公开(公告)日：2017-11-28

申请号：US14873572

申请日：2015-10-02

Applicant: Cisco Technology, Inc.

Inventor： Vipin Jain ,  Ashutosh Agrawal ,  Parag Bhide ,  Mahidas Prabhanjan

IPC: H04L29/12 ,  H04L12/713 ,  H04L12/773

CPC classification number: H04L61/103 ,  H04L45/586 ,  H04L45/60

Abstract: Techniques are presented herein for distributing address information of host devices in a network. At a first router device, a packet is received from a first host device that is destined for a second host device. The first host device is dually-connected to the first router and a second router device. The second router device is part of a virtual port channel pair with the first router device. A message is sent to the second router device, the message indicating that the first host device is connected to the second router device. The packet is encapsulated with an overlay header and is sent to a third router device that is connected to the second host device. The encapsulated packet contains a Layer 2 address associated with the first host device and a Layer 3 address associated with the first host device.

公开(公告)号：US20170324660A1

公开(公告)日：2017-11-09

申请号：US15145647

申请日：2016-05-03

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Satyam Sinha ,  Smita Rai ,  Kit Chiu Chu ,  Ashutosh Agrawal ,  Wanli Wu ,  Ravikanth Nasika ,  Thomas J. Edsall ,  Geetha Anandakrishnan

IPC: H04L12/741 ,  H04L29/08 ,  H04L12/713

CPC classification number: H04L45/745 ,  H04L12/4641 ,  H04L45/02 ,  H04L45/04 ,  H04L45/54 ,  H04L45/586 ,  H04L45/74 ,  H04L67/10 ,  H04L67/20

Abstract: Aspects of the embodiments include receiving a packet at a network element of a packet-switched network; identifying a presence of a shared service destination address in a header of the packet; identifying a shared service destination address for the packet based, at least in part, on a destination internet protocol (IP) address stored in a forward information base; and forwarding the packet to the shared service destination address.