公开(公告)号：US20150085859A1

公开(公告)日：2015-03-26

申请号：US14557670

申请日：2014-12-02

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Shyam Kapadia ,  Nilesh Shah ,  Chia Tsai ,  Vinay Parameswarannair

IPC: H04L12/947 ,  H04L12/741

CPC classification number: H04L49/25 ,  H04L45/66 ,  H04L45/74 ,  H04L45/745 ,  H04L45/7453 ,  H04L49/10

Abstract: In some embodiments, a data packet may be received at a leaf switch. A port-channel associated with a destination port for the data packet may be identified, and the data packet may be transmitted to the destination port via the identified port-channel.

Abstract translation: 在一些实施例中，可以在叶片切换器处接收数据分组。 可以识别与数据分组的目的地端口相关联的端口信道，并且可以经由所识别的端口信道将数据分组发送到目的地端口。

公开(公告)号：US20150016301A1

公开(公告)日：2015-01-15

申请号：US13942426

申请日：2013-07-15

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Yibin Yang ,  Pags Krishnamoorthy ,  Padmanabhan Krishnan

IPC: H04L12/24 ,  H04L12/26

CPC classification number: H04L43/18 ,  H04L41/12 ,  H04L43/00 ,  H04L43/08 ,  H04L43/12

Abstract: A monitoring session associated with a virtual nickname may be established in a TRILL network. A monitoring station may be connected to an edge switch of the TRILL network specifying the virtual nickname for the monitoring session. The monitoring station is set as a destination for the monitoring session and the virtual nickname is flooded throughout the TRILL network. A source may then be configured to the monitoring session by specifying the virtual nickname of the monitoring session without knowing the destination tied to the monitoring session. Network traffic through the source may then be forwarded to the destination tied to the monitoring session.

Abstract translation: 可以在TRILL网络中建立与虚拟昵称相关联的监视会话。 监控站可以连接到TRILL网络的边缘交换机，指定监视会话的虚拟昵称。 监控站被设置为监视会话的目的地，虚拟昵称在整个TRILL网络中泛滥。 然后，可以通过在不知道与监视会话相关联的目的地的情况下指定监视会话的虚拟昵称来将源配置为监视会话。 然后可以将通过源的网络流量转发到与监视会话相关联的目的地。

公开(公告)号：US12216556B2

公开(公告)日：2025-02-04

申请号：US18480821

申请日：2023-10-04

Applicant: Cisco Technology, Inc.

Inventor： Javed Asghar ,  Rajagopalan Janakiraman ,  Raghu Rajendra Arur

IPC: G06F11/00 ,  G06F11/20 ,  G06F11/30 ,  H04L67/00

Abstract: This disclosure describes techniques for adaptive disaster recovery of applications running on network devices. The techniques include generating an application template and an application template clone that include application attributes usable to deploy an application stack at an application site. The techniques also include sending the application template clone to a disaster recovery site group to await deployment instructions. In some examples, an observer may determine that a health metric of the application site indicates that a disaster recovery process be triggered. A disaster recovery site of the disaster recovery site group may be selected based at least in part on a performance metric. The application stack may be deployed at the disaster recovery site utilizing the application template clone.

公开(公告)号：US11929917B2

公开(公告)日：2024-03-12

申请号：US17390511

申请日：2021-07-30

Applicant: Cisco Technology, Inc.

Inventor： Vijay Kumar Devendran ,  Kiran Kumar Meda ,  Rajagopalan Janakiraman ,  Shyam N. Kapadia ,  Javed Asghar

IPC: H04L45/00 ,  H04L43/0829 ,  H04L43/0852 ,  H04L43/087 ,  H04L43/10 ,  H04L41/0677 ,  H04L43/091 ,  H04L43/12

CPC classification number: H04L45/22 ,  H04L43/0829 ,  H04L43/0858 ,  H04L43/087 ,  H04L43/10

Abstract: In one embodiment, a method includes identifying a problematic event between a first interest point and a second interest point of a network and activating, in response to identifying the problematic event between the first interest point and the second interest point, a first endpoint associated with the first interest point and a second endpoint associated with the second interest point. The method also includes receiving, from the first endpoint and the second endpoint, telemetry data associated with a problematic path between the first interest point and the second interest point. The method further includes determining the problematic path between the first interest point and the second interest point using the telemetry data received from the first endpoint and the second endpoint.

公开(公告)号：US20240048485A1

公开(公告)日：2024-02-08

申请号：US17882163

申请日：2022-08-05

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Suresh Pasupula ,  Manju Ramesh ,  Christophe Paggen ,  Huyen Trung Duong ,  Lukas Krattiger

IPC: H04L45/745 ,  H04L45/42 ,  H04L45/24 ,  H04L61/5007

CPC classification number: H04L45/745 ,  H04L45/42 ,  H04L45/24 ,  H04L61/5007

Abstract: Techniques for using more-specific routing to perform scalable Layer-2 (L2) stretching of subnets across hybrid-cloud environments. Routing tables in a public cloud may allow for routes that are more specific than the default local route, and the more-specific routes may be used to send all traffic to a dedicated, cloud router. The more-specific routes are set up for a VPC where a subnet resides such that the more specific-routes cover at least a portion of subnet range. The next hop for the more-specific routes point to the cloud router which is capable of doing host routing and segmentation extension. Thus, traffic originating from endpoints in a VPC is routed to the cloud router, and the cloud router determines whether the traffic is to be re-routed back to a destination endpoint in the VPC (or another cloud location), or sent to a destination endpoint residing in the on-premises site.

公开(公告)号：US11838325B2

公开(公告)日：2023-12-05

申请号：US17506553

申请日：2021-10-20

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Sivakumar Ganapathy ,  Prashanth Matety ,  Patel Amitkumar Valjibhai

IPC: H04L9/40 ,  H04L12/46 ,  H04L12/66 ,  H04L41/0893 ,  H04L67/10

CPC classification number: H04L63/20 ,  H04L12/46 ,  H04L12/4641 ,  H04L12/66 ,  H04L41/0893 ,  H04L63/0263 ,  H04L63/101 ,  H04L67/10 ,  H04L63/0272

Abstract: Systems, methods, and computer-readable media for elastic policy scaling in multi-cloud fabrics. A method can involve deploying a cluster of policy agents on a hub virtual private cloud (VPC) that interconnects spoke VPCs in a cloud associated with a multi-cloud fabric, and mapping endpoints in the spoke VPCs to the policy agents. The method can involve distributing groups of policies for the endpoints across the policy agents based on the mapping of endpoints to policy agents, and advertising, by each policy agent to a respective first set of virtual gateways in the spoke VPCs, routes associated with endpoints mapped to the policy agent and preventing the policy agent from advertising routes associated with a second set of virtual gateways in the spoke VPCs. The method can involve applying, via the policy agent, a group of policies on the policy agent to traffic received by the policy agent.

公开(公告)号：US20220385498A1

公开(公告)日：2022-12-01

申请号：US17335887

申请日：2021-06-01

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Arun Saha ,  Sivakumar Ganapathy ,  Jose Carlos Recuero Arias ,  Sapan Shah ,  Shashank Chaturvedi

IPC: H04L12/46 ,  H04L12/24 ,  H04L29/08

Abstract: Techniques are described for dynamically establishing and scaling IPSec tunnels to connect hundreds of sites of a network by making use of the user intent of connecting certain applications for applying security policies and translating it dynamically based on the location and needs of the workloads to set up the network on demand. The techniques involve a tight loop between the network controller of a site (e.g., a cloud Application Policy Infrastructure Controller) and the inter-site or multi-cloud inter-connect controller, stitched through services that enable security and network automation at scale. In particular, to control the number of IPSec tunnels, IPSec tunnels are established only when required. Additionally, IPSec tunnels may be eliminated when no longer required. Thus, resources of a network may be used in a measured way that is necessary and sufficient to meet network traffic demand.

公开(公告)号：US11159412B2

公开(公告)日：2021-10-26

申请号：US16808830

申请日：2020-03-04

Applicant: Cisco Technology, Inc.

Inventor： Sivakumar Ganapathy ,  Rajagopalan Janakiraman ,  Kalyan Ghosh ,  Sapan Shah

IPC: H04L12/26 ,  H04L29/12 ,  H04L12/46 ,  H04L12/743

Abstract: Disclosed is a method that includes calculating, at a collector receiving a data flow and via a hashing algorithm, all possible hashes associated with at least one virtual attribute associated with the data flow to yield resultant hash values. Based on the resultant hash values, the method includes computing a multicast address group and multicasting the data flow to n leafs based on the multicast address group. At respective other collectors, the method includes filtering received sub-flows of the data flow based on the resultant hashes, wherein if a respective hash is owned by a collector, the respective collector accepts and saves the sub-flow in a local switch collector database. A scalable, distributed netflow is possible with the ability to respond to queries for fabric-level netflow statistics even on virtual constructs.

公开(公告)号：US20210258216A1

公开(公告)日：2021-08-19

申请号：US17244941

申请日：2021-04-29

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Sivakumar Ganapathy ,  Gianluca Mardente ,  Giovanni Meo ,  Patel Amitkumar Valjibhai

IPC: H04L12/24 ,  H04L12/46 ,  H04L12/751 ,  H04L12/715 ,  H04L12/721

Abstract: Technologies for multi-cloud routing and policy interconnectivity are provided. An example method can include assigning different sets of data plane routers to data plane traffic associated with different address spaces in a cloud site of a multi-cloud fabric to yield a distributed mapping of data plane traffic and data plane routers. The method can further include providing, to an on-premises site in the multi-cloud fabric, routing entries from a control plane router on the cloud site, the routing entries reflecting the distributed mapping and identifying, for each address space, which data plane router handles data plane traffic for that address space; and when a data plane router is deployed at the cloud site, providing, to the on-premises site, updated routing information from the control plane router, the updated routing information identifying the data plane router as a next hop for data plane traffic associated with a respective address space.

公开(公告)号：US20200382471A1

公开(公告)日：2020-12-03

申请号：US16426336

申请日：2019-05-30

Applicant: Cisco Technology, Inc.

Inventor： Rajagopalan Janakiraman ,  Sivakumar Ganapathy ,  Azeem Suleman ,  Mohammed Javed Asghar ,  Patel Amitkumar Valjibhai ,  Ronak K. Desai

IPC: H04L29/06 ,  H04L12/721 ,  H04L29/12 ,  H04L29/08 ,  H04L12/46

Abstract: Technologies for extending a subnet across on-premises and cloud-based deployments are provided. An example method may include creating a VPC in a cloud for hosting an endpoint being moved from an on-premises site. For the endpoint to retain its IP address, a subnet range assigned to the VPC, based on the smallest subnet mask allowed by the cloud, is selected to include the IP address of the endpoint. The IP addresses from the assigned subnet range corresponding to on-premises endpoints are configured as secondary IP addresses on a Layer 2 (L2) proxy router instantiated in the VPC. The L2 proxy router establishes a tunnel to a cloud overlay router and directs traffic destined to on-premises endpoints, with IP addresses in the VPC subnet range thereto for outbound transmission. The cloud overly router updates the secondary IP addresses on the L2 proxy router based on reachability information for the on-premises site.