知搜-全球专利检索

  1. Login
  2. Sign Up

Search Results

18 records (took 0.018 seconds)

    DYNAMIC ATTRIBUTE BASED APPLICATION POLICY
    11.
    发明申请
    DYNAMIC ATTRIBUTE BASED APPLICATION POLICY 有权
    基于动态属性的应用策略

    公开(公告)号:US20160352576A1

    公开(公告)日:2016-12-01

    申请号:US14809971

    申请日:2015-07-27

    Applicant: Cisco Technology, Inc.

    Inventor: Joji Thomas Mekkattuparamban Vijay Chander Saurabh Jain Van Lieu Badhri Madabusi Vijayaraghavan Praveen Jain Munish Mehta Michael R. Smith Narender Enduri

    IPC: H04L12/24

    CPC classification number: H04L41/0893 H04L41/0886 H04L61/15 H04L61/6022 H04L63/101 H04L63/104

    Abstract: Systems, methods, and computer-readable storage media are provided for dynamically setting an end point group for an end point. An endpoint can be assigned a default end point group when added to a network. For example, the default end point group can be a baseline port/security group which is considered an untrusted group. The end point can then be dynamically assigned an end point group based on a set of group selection rules. For example, the group selection rules can identify an end point group based on the MAC address or other attributes. When the end point is added to the network, the MAC address and/or other attributes of the end point can be determined and used to assign an end point group. As another example, an end point group can be assigned based on the amount of traffic or guest operation system.

    Abstract translation: 提供了系统,方法和计算机可读存储介质,用于动态设置端点的端点组。 当添加到网络时,端点可以被分配一个默认端点组。 例如,默认端点组可以是被认为是不可信组的基准端口/安全组。 然后可以基于一组组选择规则动态地为端点组分配端点组。 例如,组选择规则可以基于MAC地址或其他属性来识别端点组。 当终点被添加到网络中时,可以确定端点的MAC地址和/或其他属性,并用于分配端点组。 作为另一示例,可以基于流量或客户操作系统的数量来分配端点组。

    POLICY ENFORCEMENT FOR UPSTREAM FLOOD TRAFFIC
    12.
    发明申请
    POLICY ENFORCEMENT FOR UPSTREAM FLOOD TRAFFIC 有权
    上游洪水交通政策执行

    公开(公告)号:US20160330125A1

    公开(公告)日:2016-11-10

    申请号:US14793301

    申请日:2015-07-07

    Applicant: Cisco Technology, Inc.

    Inventor: Joji Thomas Mekkattuparamban Vijay Chander

    IPC: H04L12/813 H04L12/18 H04L12/721

    CPC classification number: H04L47/20 H04L12/185 H04L12/4633 H04L41/00 H04L45/32 H04L45/58 H04L49/70

    Abstract: Systems, methods, and computer-readable media are provided for enforcing policy for upstream (e.g., traffic from an endpoint to the physical network layer or hardware fabric of a data center) flood traffic (e.g., broadcast, unknown unicast, or multicast traffic) originating from a virtual endpoint via a network fabric. In one embodiment, upstream flood traffic can be transmitted using a special multicast group to which only elements of the data center fabric (e.g., physical switches, routers) are subscribed. That is, upstream flood traffic is assigned to the special multicast group, resulting in unintended endpoints not receiving the flood traffic. However, the hardware fabric receives the flood traffic and will then enforce applicable policies to route the packets to intended endpoints.

    Abstract translation: 提供了系统,方法和计算机可读介质,用于执行用于上游的策略(例如,从端点到数据中心的物理网络层或硬件结构的流量)洪泛流量(例如,广播,未知单播或多播流量) 通过网络结构从虚拟端点发起。 在一个实施例中,可以使用只有数据中心结构的元素(例如,物理交换机,路由器)被订阅的特殊多播组来发送上游洪泛业务。 也就是说,上游洪泛流量被分配给特殊的多播组,导致无意的端点没有接收洪泛流量。 然而,硬件结构接收到洪泛流量,然后将强制适用的策略将数据包路由到预期的端点。

    Techniques for managing software defined networking controller in-band communications in a data center network
    14.
    发明授权
    Techniques for managing software defined networking controller in-band communications in a data center network 有权

    公开(公告)号:US10931629B2

    公开(公告)日:2021-02-23

    申请号:US16236757

    申请日:2018-12-31

    Applicant: Cisco Technology, Inc.

    Inventor: Vijay Chander Yibin Yang Praveen Jain Munish Mehta

    IPC: H04L29/12 H04L12/46 H04L12/751

    Abstract: According to one or more embodiments of this disclosure, a network controller in a data center network establishes a translation table for in-band traffic in a data center network, the translation table resolves ambiguous network addresses based on one or more of a virtual network identifier (VNID), a routable tenant address, or a unique loopback address. The network controller device receives packets originating from applications and/or an endpoints operating in a network segment associated with a VNID. The network controller device translates, using the translation table, unique loopback addresses and/or routable tenant addresses associated with the packets into routable tenant addresses and/or unique loopback addresses, respectively.

    TECHNIQUES FOR MANAGING SOFTWARE DEFINED NETWORKING CONTROLLER IN-BAND COMMUNICATIONS IN A DATA CENTER NETWORK
    15.
    发明申请
    TECHNIQUES FOR MANAGING SOFTWARE DEFINED NETWORKING CONTROLLER IN-BAND COMMUNICATIONS IN A DATA CENTER NETWORK 审中-公开

    公开(公告)号:US20190141010A1

    公开(公告)日:2019-05-09

    申请号:US16236757

    申请日:2018-12-31

    Applicant: Cisco Technology, Inc.

    Inventor: Vijay Chander Yibin Yang Praveen Jain Munish Mehta

    IPC: H04L29/12 H04L12/751 H04L12/46

    Abstract: According to one or more embodiments of this disclosure, a network controller in a data center network establishes a translation table for in-band traffic in a data center network, the translation table resolves ambiguous network addresses based on one or more of a virtual network identifier (VNID), a routable tenant address, or a unique loopback address. The network controller device receives packets originating from applications and/or an endpoints operating in a network segment associated with a VNID. The network controller device translates, using the translation table, unique loopback addresses and/or routable tenant addresses associated with the packets into routable tenant addresses and/or unique loopback addresses, respectively.

Patent Agency Ranking