公开(公告)号：US20180367413A1

公开(公告)日：2018-12-20

申请号：US15661912

申请日：2017-07-27

Applicant: Cisco Technology, Inc.

Inventor： Ramana Rao Kompella ,  Chandra Nagarajan ,  John Thomas Monk ,  Purna Mani Kumar Ghantasala

IPC: H04L12/24

Abstract: Systems, methods, and computer-readable media analyzing memory usage in a network node. A network assurance appliance may be configured to query a node in the network fabric for a number of hardware level entries, stored in memory for the node, that are associated with a concrete level network rule. The network assurance appliance may identify a logical level network intent associated with the concrete level network rule, identify a logical level component of the logical level network intent, and attribute the number of hardware level entries to the logical level component.

公开(公告)号：US20180367412A1

公开(公告)日：2018-12-20

申请号：US15790577

申请日：2017-10-23

Applicant: Cisco Technology, Inc.

Inventor： Divjyot Sethi ,  Chandra Nagarajan ,  Ramana Rao Kompella ,  Gaurav Gupta ,  Sundar Iyer

IPC: H04L12/24

Abstract: Systems, methods, and computer-readable media for discovering a network's topology and health. In some examples, a system can obtain, from at least one of a plurality of controllers on a network, a logical model of the network, the logical model including configurations of one or more objects defined for the network. Based on the logical model, the system can identify a respective location of the plurality of controllers in the network and a plurality of nodes in a fabric of the network. Based on the respective location of the plurality of controllers and plurality of nodes, the system can poll the plurality of controllers and plurality of nodes for respective status information, and determine a health and topology of the network based on the logical model, the respective location, and respective status information.

公开(公告)号：US20180309629A1

公开(公告)日：2018-10-25

申请号：US15663598

申请日：2017-07-28

Applicant: Cisco Technology, Inc.

Inventor： Kartik Mohanram ,  Chandra Nagarajan ,  Sundar Iyer ,  Shadab Nazar ,  Ramana Rao Kompella

IPC: H04L12/24 ,  H04L12/26

Abstract: Systems, methods, and computer-readable media for static network policy analysis for a network. In one example, a system obtains a logical model based on configuration data stored in a controller on a software-defined network, the logical model including a declarative representation of respective configurations of objects in the software-defined network, the objects including one or more endpoint groups, bridge domains, contexts, or tenants. The system defines rules representing respective conditions of the objects according to a specification corresponding to the software-defined network, and determines whether the respective configuration of each of the objects in the logical model violates one or more of the rules associated with that object. When the respective configuration of an object in the logical model violates one or more of the rules, the system detects an error in the respective configuration associated with that object.

公开(公告)号：US11558260B2

公开(公告)日：2023-01-17

申请号：US16857843

申请日：2020-04-24

Applicant: Cisco Technology, Inc.

Inventor： Ramana Rao Kompella ,  Chandra Nagarajan ,  John Thomas Monk ,  Purna Mani Kumar Ghantasala

IPC: H04L12/24 ,  H04L12/26 ,  H04L41/14 ,  H04L41/0866 ,  H04L41/00 ,  H04L41/22 ,  H04L41/0893 ,  H04L41/12 ,  H04L43/10 ,  H04L41/0253

Abstract: Systems, methods, and computer-readable media analyzing memory usage in a network node. A network assurance appliance may be configured to query a node in the network fabric for a number of hardware level entries, stored in memory for the node, that are associated with a concrete level network rule. The network assurance appliance may identify a logical level network intent associated with the concrete level network rule, identify a logical level component of the logical level network intent, and attribute the number of hardware level entries to the logical level component.

公开(公告)号：US11411803B2

公开(公告)日：2022-08-09

申请号：US17039688

申请日：2020-09-30

Applicant: Cisco Technology, Inc.

Inventor： Praveen Tammana ,  Chandra Nagarajan ,  Pavan Mamillapalli ,  Ramana Rao Kompella

IPC: H04L41/0631 ,  H04L41/069

Abstract: Systems, methods, and computer-readable media for localizing faults in a network policy are disclosed. In some examples, a system or method can obtain TCAM rules across a network and use the TCAM rules to perform an equivalency check between the logical model and the hardware model of the network policy. One or more risk models are annotated with output from the equivalency check and the risk models are used to identify a set of policy objects of the network policy that are likely responsible for the faults. The identified set of policy objects are correlated with various logs of the network. Based on the correlation, specific policy objects of the set of policy objects that are associated with physical-level causes of the fault.

公开(公告)号：US20220166673A1

公开(公告)日：2022-05-26

申请号：US17670036

申请日：2022-02-11

Applicant: Cisco Technology, Inc.

Inventor： Ramana Rao Kompella ,  Chandra Nagarajan ,  John Thomas Monk ,  Purna Mani Kumar Ghantasala

IPC: H04L41/0853 ,  H04L41/0893 ,  H04L41/14

Abstract: Systems, methods, and computer-readable media analyzing memory usage in a network node. A network assurance appliance may be configured to determine a hit count for a concrete level rule implemented on a node and identify one or more components of a logical model, wherein each of the one or more components are associated with the concrete level rule. The network assurance appliance may attribute the hit count for the concrete level rule to each of the components of the logical model, determine a number of hardware level entries associated with the each of the one or more components, and generate a report comprising the one or more components of the logical model, the hit count attributed to each of the one or more components of the logical model, and the number of hardware level entries associated with the one or more components of the logical model.

公开(公告)号：US20210144069A1

公开(公告)日：2021-05-13

申请号：US17153831

申请日：2021-01-20

Applicant: Cisco Technology, Inc.

Inventor： Advait Dixit ,  Ramana Rao Kompella ,  Kartik Mohanram ,  Sundar Iyer ,  Shadab Nazar ,  Chandra Nagarajan

IPC: H04L12/24

Abstract: Systems, methods, and computer-readable media for receiving one or more models of network intents, comprising a plurality of contracts between providers and consumers, each contract containing entries with priority values. Each contract is flattened into a listing of rules and a new priority value is calculated. The listing of rules encodes the implementation of the contract between the providers and the consumers. Each entry is iterated over and added to a listing of entries if it is not already present. For each rule, the one or more entries associated with the contract from which the rule was flattened are identified, and for each given entry a flat rule comprising the combination of the rule and the entry is generated, wherein a flattened priority is calculated based at least in part on the priority value of the given one of given entry and the priority value of the rule.

公开(公告)号：US20200252297A1

公开(公告)日：2020-08-06

申请号：US16857843

申请日：2020-04-24

Applicant: Cisco Technology, Inc.

Inventor： Ramana Rao Kompella ,  Chandra Nagarajan ,  John Thomas Monk ,  Purna Mani Kumar Ghantasala

IPC: H04L12/24

Abstract: Systems, methods, and computer-readable media analyzing memory usage in a network node. A network assurance appliance may be configured to query a node in the network fabric for a number of hardware level entries, stored in memory for the node, that are associated with a concrete level network rule. The network assurance appliance may identify a logical level network intent associated with the concrete level network rule, identify a logical level component of the logical level network intent, and attribute the number of hardware level entries to the logical level component.

公开(公告)号：US10693738B2

公开(公告)日：2020-06-23

申请号：US15786411

申请日：2017-10-17

Applicant: Cisco Technology, Inc.

Inventor： Chandra Nagarajan ,  Advait Dixit

IPC: G06F15/177 ,  H04L12/24 ,  H04L12/715

Abstract: Systems, methods, and computer-readable media for generating switch-level logical models of a network. In some examples, a system can obtain a logical model of a network, such as software-defined network (SDN). The logical model can represent a configuration of objects and object properties defined based on a schema associated with the network. Based on the logical model, the system can generate a rendered logical model of the network and, based on the rendered logical model, generate, for one or more network devices in the network, a respective device-specific representation of the logical model. The respective device-specific representation can project the logical model to a respective network device, such as a switch in the fabric of the network.

公开(公告)号：US10652102B2

公开(公告)日：2020-05-12

申请号：US15661912

申请日：2017-07-27

Applicant: Cisco Technology, Inc.

Inventor： Ramana Rao Kompella ,  Chandra Nagarajan ,  John Thomas Monk ,  Purna Mani Kumar Ghantasala

IPC: H04L12/24 ,  H04L12/26

Abstract: Systems, methods, and computer-readable media analyzing memory usage in a network node. A network assurance appliance may be configured to query a node in the network fabric for a number of hardware level entries, stored in memory for the node, that are associated with a concrete level network rule. The network assurance appliance may identify a logical level network intent associated with the concrete level network rule, identify a logical level component of the logical level network intent, and attribute the number of hardware level entries to the logical level component.