公开(公告)号：US11784917B2

公开(公告)日：2023-10-10

申请号：US17932492

申请日：2022-09-15

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC: G06F15/16 ,  H04L45/24 ,  H04L45/00 ,  H04L67/146 ,  H04L12/46 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103 ,  H04L101/622

CPC classification number: H04L45/24 ,  H04L12/4641 ,  H04L45/16 ,  H04L45/42 ,  H04L45/66 ,  H04L45/745 ,  H04L61/103 ,  H04L67/146 ,  H04L2101/622

Abstract: Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an non-session-based L2 frame destined for the second client device. The first router forms an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers and a protocol selected based on an L3 service for the L2 frame, a payload comprising the L2 frame, and metadata comprising a session identifier distinctly identifying the L2 frame, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the payload and forwards the L2 frame to the second client device.

公开(公告)号：US20230198848A1

公开(公告)日：2023-06-22

申请号：US17657037

申请日：2022-03-29

Applicant: Juniper Networks, Inc.

Inventor： Tong Jiang ,  Chaohui Zhang ,  Abilash Menon ,  John M. Peterson ,  Markus Jork ,  Pranav Kethe-Sai

IPC: H04L41/12 ,  H04L41/22 ,  H04L41/02 ,  H04L12/28

CPC classification number: H04L41/12 ,  H04L41/22 ,  H04L41/024 ,  H04L12/2874

Abstract: Techniques are disclosed for promulgating service information and topology information in a network in a high availability manner. An example device is configured to create a first service and topology exchange protocol (STEP) document. The first STEP document includes service information and topology information. The example device is configured to send the first STEP document to a first STEP repository for forwarding to at least one subscribing network device. The example device is also configured to send the first STEP document to a second STEP repository for forwarding to the at least one subscribing network device.

公开(公告)号：US20230116163A1

公开(公告)日：2023-04-13

申请号：US17449311

申请日：2021-09-29

Applicant: Juniper Networks, Inc.

Inventor： Hendrik Scholz ,  Abilash Menon

IPC: H04L12/741 ,  H04L12/721 ,  H04L29/12 ,  H04L12/24

Abstract: Techniques are described for forming on-demand mesh connections between spoke routers of a Software-Defined Wide Area Network (SD-WAN) arranged in a hub-and-spoke topology. A first spoke router modifies the first packet to include metadata specifying first reachability information and first Internet Protocol (IP) address information for the first spoke router. The first spoke router forwards the first packet to a hub router for forwarding to a second spoke router. The first spoke router receives a second packet from the hub router that includes metadata specifying second reachability information and second IP address information for the second spoke router. In response to determining that the first reachability information is compatible with the second reachability information, the first spoke router initiates a peering connection with the second spoke router along a path which bypasses the hub router for forwarding subsequent packets of the forward packet flow.

公开(公告)号：US11546249B2

公开(公告)日：2023-01-03

申请号：US17357790

申请日：2021-06-24

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC: G06F15/173 ,  H04L45/24 ,  H04L45/00 ,  H04L67/146 ,  H04L12/46 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103 ,  H04L101/622

Abstract: Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an L2 frame destined for the second client device. The first router generates an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers, a first portion of metadata comprising L2 addresses for the first and second client devices, and a second portion of metadata comprising L3 addresses for the first and second client devices, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the metadata and forwards the L2 frame to the second client device.

公开(公告)号：US11463347B2

公开(公告)日：2022-10-04

申请号：US17357743

申请日：2021-06-24

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC: H04L45/24 ,  H04L45/00 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103 ,  H04L101/622 ,  H04L67/146 ,  H04L12/46

Abstract: Techniques are disclosed for session-based routing of multipoint Open Systems Interconnection (OSI) Model Layer-2 (L2) frames of an L2 network extended over Layer-3 (L3) networks. In one example, L2 networks connect a source device to an ingress router and receiver devices to egress routers. An L3 network connects the ingress and egress routers. The ingress router receives, from the source device, a multipoint L2 frame destined for the receiver devices. The ingress router forms, for each egress router that is connected to at least one multipoint receiver device, a unicast L3 packet for the L2 frame and forwards the unicast L3 packet to the egress router. Each egress router generates, in response to receiving the unicast L3 packet, the multipoint L2 frame and forwards, to the receiver devices, the multipoint L2 frame.

公开(公告)号：US20220200887A1

公开(公告)日：2022-06-23

申请号：US17645846

申请日：2021-12-23

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Markus Jork ,  John M. Peterson

IPC: H04L45/02 ,  H04L45/00

Abstract: Techniques are described for a router providing metric-based multi-hop path selection. For example, a first router of a plurality of routers receives a plurality of network performance metrics for a plurality of links interconnecting the plurality of routers. The plurality of links form a plurality of multi-hop paths through the plurality of routers to a service instance. The router determines, based on the plurality of network performance metrics for the plurality of links, an end-to-end performance of each of the plurality of multi-hop paths. The router selects a multi-hop path over which to forward traffic associated with the session based on the end-to-end performance of each of the plurality of multi-hop paths and one or more performance requirements for a service associated between a session between a client device and the service instance. The router forwards the traffic to the service instance along the selected multi-hop path.

公开(公告)号：US20240340163A1

公开(公告)日：2024-10-10

申请号：US18745443

申请日：2024-06-17

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Avinash Prakash Bhat ,  Anna Yungelson

IPC: H04L9/08 ,  H04L45/42 ,  H04L45/74

CPC classification number: H04L9/0825 ,  H04L9/0827 ,  H04L9/0891 ,  H04L45/42 ,  H04L45/74

Abstract: Techniques are disclosed for inline security key exchanges between network devices. An example network device includes one or more processors and memory coupled to the one or more processors. The memory stores instructions that, upon execution, cause one or more processors to obtain a first payload key and obtain a path key. The instructions cause the one or more processors to encrypt a first payload of a first packet using the first payload key and insert the first payload key into first metadata of the first packet. The instructions cause the one or more processors to encrypt the first metadata using the path key and send the first packet to another network device.

公开(公告)号：US12041162B2

公开(公告)日：2024-07-16

申请号：US17651599

申请日：2022-02-18

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Avinash Prakash Bhat ,  Anna Yungelson

IPC: H04L9/08 ,  H04L45/42 ,  H04L45/74

CPC classification number: H04L9/0825 ,  H04L9/0827 ,  H04L9/0891 ,  H04L45/42 ,  H04L45/74

Abstract: Techniques are disclosed for inline security key exchanges between network devices. An example network device includes one or more processors and memory coupled to the one or more processors. The memory stores instructions that, upon execution, cause one or more processors to obtain a first payload key and obtain a path key. The instructions cause the one or more processors to encrypt a first payload of a first packet using the first payload key and insert the first payload key into first metadata of the first packet. The instructions cause the one or more processors to encrypt the first metadata using the path key and send the first packet to another network device.

公开(公告)号：US20230009482A1

公开(公告)日：2023-01-12

申请号：US17932960

申请日：2022-09-16

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC: H04L45/24 ,  H04L45/00 ,  H04L67/146 ,  H04L12/46 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103

Abstract: Techniques are disclosed for session-based routing of multipoint Open Systems Interconnection (OSI) Model Layer-2 (L2) frames of an L2 network extended over Layer-3 (L3) networks. In one example, L2 networks connect a source device to an ingress router and receiver devices to egress routers. An L3 network connects the ingress and egress routers. The ingress router receives, from the source device, a multipoint L2 frame destined for the receiver devices. The ingress router forms, for each egress router that is connected to at least one multipoint receiver device, a unicast L3 packet for the L2 frame and forwards the unicast L3 packet to the egress router. Each egress router generates, in response to receiving the unicast L3 packet, the multipoint L2 frame and forwards, to the receiver devices, the multipoint L2 frame.

公开(公告)号：US20210409323A1

公开(公告)日：2021-12-30

申请号：US17357790

申请日：2021-06-24

Applicant: Juniper Networks, Inc.

Inventor： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC: H04L12/721 ,  H04L12/741 ,  H04L12/717 ,  H04L29/12 ,  H04L12/46

Abstract: Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an L2 frame destined for the second client device. The first router generates an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers, a first portion of metadata comprising L2 addresses for the first and second client devices, and a second portion of metadata comprising L3 addresses for the first and second client devices, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the metadata and forwards the L2 frame to the second client device.