公开(公告)号：US12273239B2

公开(公告)日：2025-04-08

申请号：US18381426

申请日：2023-10-18

Applicant: Cisco Technology, Inc.

Inventor： Carlos Pignataro ,  Eric A. Voit ,  Nagendra Kumar Nainar ,  Marcelo Yannuzzi

IPC: H04L41/0833 ,  H04L41/12 ,  H04L45/48

Abstract: Energy-aware configurations can be utilized to operate a network based on sustainability-related metrics. In many embodiments, a suitable device includes a processor, a memory commutatively coupled to the processor, a plurality of elements, a communication port, and an energy-aware topology logic configured to collect topology data from one or more network devices, wherein each of the one or more network devices include a plurality of elements. The energy-aware topology logic can receive power source data and power usage data related to plurality of elements and generate an element energy coefficient (EEC) for a plurality of elements. Subsequently, the energy-aware topology logic can also generate an energy-aware configuration for at least one of the one or more network devices, and then pass the generated energy-aware configuration to the at least one network device, wherein the energy-aware configuration is configured to steer traffic based on at least one sustainability-related metric.

公开(公告)号：US20250071088A1

公开(公告)日：2025-02-27

申请号：US18237574

申请日：2023-08-24

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Eric A. Voit ,  Eric Levy-Abegnoli

IPC: H04L61/5007 ,  H04L61/2503

Abstract: Techniques for using Home Addresses, Mobile Internet Protocol (MIP), and/or other techniques in conjunction with Domain Name System (DNS) to obfuscate server-side addresses in data communications. Rather than having DNS provide a client device with an IP address of an endpoint device, such as a server, the DNS instead returns a Home Address that is mapped to the client device and at least one server IP address of the endpoint device. In this way, IP addresses of servers are obfuscated by a network mapping of the Home Addresses and the server IP addresses. The client device may then communicate data packets to the server using the Home Addresses as the destination address, and a virtual network service that works in conjunction with DNS can encapsulate the data packet with the server IP addresses and forward the data packet onto the server.

公开(公告)号：US20250023777A1

公开(公告)日：2025-01-16

申请号：US18350873

申请日：2023-07-12

Applicant: Cisco Technology, Inc.

Inventor： Eric A. Voit ,  Carlos Pignataro ,  Kasi R. Nalamalapu ,  Salvatore Valenza ,  Samer M. Salam

IPC: H04L41/0833 ,  H04L41/083 ,  H04L41/12 ,  H04L41/147

Abstract: Devices, systems, methods, and processes for managing network devices through generated predictions and associated confidence levels are described herein. Networks within a floorplan can be operated at full capacity all day in an inefficient way when not adjusted due to traffic patterns and seasonality changes. Data related to the topology of the network, along with historical data can be utilized to generate predictions of various network needs. For example, the overall network throughput capacity needs may be predicted for a series of points in the future. An associated confidence level can be generated as well including one or more confidence intervals. These can be utilized to select a future need for the network and generate a corresponding sustainable network configuration for the network devices and/or their transceivers that can provide sufficient network needs while minimizing the overall power used. This can be automated over time once trust has been established.

公开(公告)号：US20240333591A1

公开(公告)日：2024-10-03

申请号：US18381426

申请日：2023-10-18

Applicant: Cisco Technology, Inc.

Inventor： Carlos Pignataro ,  Eric A. Voit ,  Nagendra Kumar Nainar ,  Marcelo Yannuzzi

IPC: H04L41/0833 ,  H04L41/12 ,  H04L45/48

CPC classification number: H04L41/0833 ,  H04L41/12 ,  H04L45/48

Abstract: Energy-aware configurations can be utilized to operate a network based on sustainability-related metrics. In many embodiments, a suitable device includes a processor, a memory commutatively coupled to the processor, a plurality of elements, a communication port, and an energy-aware topology logic configured to collect topology data from one or more network devices, wherein each of the one or more network devices include a plurality of elements. The energy-aware topology logic can receive power source data and power usage data related to plurality of elements and generate an element energy coefficient (EEC) for a plurality of elements. Subsequently, the energy-aware topology logic can also generate an energy-aware configuration for at least one of the one or more network devices, and then pass the generated energy-aware configuration to the at least one network device, wherein the energy-aware configuration is configured to steer traffic based on at least one sustainability-related metric.

公开(公告)号：US20230319044A1

公开(公告)日：2023-10-05

申请号：US17860582

申请日：2022-07-08

Applicant: Cisco Technology, Inc.

Inventor： Edward A. Warnicke ,  Jeffrey G. Schutt ,  Eric A. Voit

IPC: H04L9/40 ,  G06F9/54

CPC classification number: H04L63/101 ,  G06F9/547

Abstract: A method, computer system, and computer program product are provided for performing logging, securing communications, and performing digital forensics tasks based on universal references for hardware and/or software configurations. A universal reference, obtained by a first entity, is included in a request of a second entity, wherein the universal reference identifies one or more components of the second entity using additional universal references assigned to each of the one or more components. It is determined whether the first entity is authorized to receive data from the second entity based on the universal reference. Based on the determining, data is received from the second entity.

公开(公告)号：US10652137B2

公开(公告)日：2020-05-12

申请号：US15689141

申请日：2017-08-29

Applicant: Cisco Technology, Inc.

Inventor： Eric A. Voit ,  Samer Salam ,  Ludwig Alexander Clemm ,  Yegnanarayanan Gargya Chandramouli

IPC: H04L12/707 ,  H04L12/703 ,  H04L12/24 ,  H04L12/803

Abstract: An example method for facilitating conflict avoidant traffic routing in a network environment is provided and includes detecting, at a network element, an intent conflict at a peer network element in a network, and changing a forwarding decision at the network element to steer traffic around the conflicted peer network element. The intent conflict refers to an incompatibility between an asserted intent associated with the traffic and an implemented intent associated with the traffic. In specific embodiments, the detecting includes mounting rules from the peer network element into the network element, and analyzing the mounted rules to determine intent conflict. In some embodiments, a central controller in the network deploys one or more intentlets on a plurality of network elements in the network according to corresponding intent deployment parameters.

公开(公告)号：US10313396B2

公开(公告)日：2019-06-04

申请号：US15475235

申请日：2017-03-31

Applicant: Cisco Technology, Inc.

Inventor： Eric A. Voit ,  Jyoti Verma

IPC: H04L29/06

Abstract: Techniques are provided by which devices in a network may subscribe to a rapidly changing rules in central threat repository. The policies associated with threats are filtered so that just current attack vectors from within subnets learned via routing and/or forwarding information (at the network level of the network) are installed in the local access control list/policy database of the network devices. As routing changes occur, the list of applied policies are continually refined/revisited and pulled from a central security application. Publish/subscribe mechanisms ensure “zombie” policies are not left over in the device after reboot or routing changes occur.

公开(公告)号：US20190028399A1

公开(公告)日：2019-01-24

申请号：US15654927

申请日：2017-07-20

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Eric A. Voit ,  Einar Nilsen-Nygaard

IPC: H04L12/863 ,  H04L12/861 ,  H04L12/865

CPC classification number: H04L47/6295 ,  G06F13/382 ,  H04L47/6275 ,  H04L47/805 ,  H04L49/90

Abstract: A method is provided in one example and includes allocating a first queue, allocating at least two default queues, where the at least two default queues depend from the first queue, allocating a plurality of local queues that each depend from one of the at least two defaults queues, receiving data in a data stream, determining a quality of service (QoS) associated with the data, and assigning the data to one of the plurality of local queues based on the determined QoS. In an example, the QoS is a differentiated services code point.

公开(公告)号：US09276827B2

公开(公告)日：2016-03-01

申请号：US13843435

申请日：2013-03-15

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Eric A. Voit ,  Richard M. Pruss ,  John E. McDowall ,  Jan Medved

IPC: H04L12/26 ,  H04W4/02 ,  H04L29/12 ,  H04L29/08 ,  H04W64/00 ,  H04L12/721 ,  H04L12/717 ,  H04L12/927 ,  H04L12/923 ,  H04L12/911 ,  H04L12/935 ,  H04W40/20 ,  H04L12/715

CPC classification number: H04L43/026 ,  H04L43/028 ,  H04L45/38 ,  H04L45/42 ,  H04L45/64 ,  H04L45/70 ,  H04L47/70 ,  H04L47/762 ,  H04L47/781 ,  H04L47/808 ,  H04L49/30 ,  H04L61/00 ,  H04L61/103 ,  H04L61/1523 ,  H04L61/2015 ,  H04L67/1097 ,  H04L67/18 ,  H04L67/2842 ,  H04L67/2847 ,  H04W4/02 ,  H04W4/029 ,  H04W40/20 ,  H04W64/00

Abstract: Embodiments described herein use APIs on network devices in a SDN enabled network to monitor the network traffic flowing through the network devices and determine an identity of the client initiating the network traffic. Specifically, the APIs provide a user application with user credentials, IP addresses, MAC addresses, and other identifying information mined from the network flows. Once the identity is found, the application may identify the client's current geographic location. The network devices may continue to monitor the network devices to identify any movement events associated with the client. In response to a movement event, the application may reallocate resources proximate to the new geographic location of the client.

Abstract translation: 本文描述的实施例使用在启用SDN的网络中的网络设备上的API来监视流经网络设备的网络流量并确定启动网络流量的客户端的身份。 具体来说，API为用户应用提供从网络流中挖掘的用户凭证，IP地址，MAC地址以及其他识别信息。 一旦找到该身份，应用程序可能会识别客户当前的地理位置。 网络设备可以继续监视网络设备以识别与客户端相关联的任何移动事件。 响应于移动事件，应用可以重新分配靠近客户端的新地理位置的资源。

公开(公告)号：US20250071083A1

公开(公告)日：2025-02-27

申请号：US18237578

申请日：2023-08-24

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Eric A. Voit ,  Eric Levy-Abegnoli

IPC: H04L61/2503 ,  H04L9/40 ,  H04L61/4511

Abstract: Techniques for using Prefix Address Translation (PAT), Mobile Internet Protocol (MIP), and/or other techniques to anonymize server-side addresses in data communications. Rather than allowing a server and/or endpoint have visibility of a client IP address of a client device accessing the server and/or endpoint, a virtual network service instead returns a PAT IP address that is mapped to the client device and/or the endpoint device. In this way, IP addresses of clients devices are obfuscated by the virtual network. The client device may then communicate data packets to the server and/or endpoint using the PAT IP address as the source address, and the virtual network service that works in conjunction with the server and/or endpoints can convert the PAT IP address to the actual IP address of the client for return packets using PAT and forward the return packet onto the client device.