公开(公告)号：US20180367417A1

公开(公告)日：2018-12-20

申请号：US15693280

申请日：2017-08-31

Applicant: Cisco Technology, Inc.

Inventor： Advait Dixit ,  Ramana Rao Kompella ,  Kartik Mohanram ,  Sundar Iyer ,  Shadab Nazar ,  Chandra Nagarajan

IPC: H04L12/24

Abstract: Systems, methods, and computer-readable media for receiving one or more models of network intents, comprising a plurality of contracts between providers and consumers, each contract containing entries with priority values. Each contract is flattened into a listing of rules and a new priority value is calculated. The listing of rules encodes the implementation of the contract between the providers and the consumers. Each entry is iterated over and added to a listing of entries if it is not already present. For each rule, the one or more entries associated with the contract from which the rule was flattened are identified, and for each given entry a flat rule comprising the combination of the rule and the entry is generated, wherein a flattened priority is calculated based at least in part on the priority value of the given one of given entry and the priority value of the rule.

公开(公告)号：US20180367411A1

公开(公告)日：2018-12-20

申请号：US15792680

申请日：2017-10-24

Applicant: Cisco Technology, Inc.

Inventor： Chetan Narsude ,  Gaurav Gupta ,  Shadab Nazar ,  Pavan Mamillapalli ,  Sundar Iyer

IPC: H04L12/24 ,  H04L12/26 ,  G06F9/50

Abstract: Aspects of the technology provide solutions for determining a time period (“epoch”) required to monitor or analyze a tenant network. Some implementations of the technology include a process for making automatic epoch determinations, which includes steps for identifying one or more network parameters for a tenant network, analyzing the tenant network using the network parameters to discover one or more configuration settings of the tenant network, and determining a first epoch for the tenant network, the first epoch corresponding with a period of time to complete analysis of the tenant network using the network parameters. In some aspects, the process can further include steps for generating a tenant profile for the tenant network, the tenant profile based on the network parameters, the first epoch, and the one or more configuration settings of the tenant network. Systems and machine-readable media are also provided.

公开(公告)号：US11563645B2

公开(公告)日：2023-01-24

申请号：US17153831

申请日：2021-01-20

Applicant: Cisco Technology, Inc.

Inventor： Advait Dixit ,  Ramana Rao Kompella ,  Kartik Mohanram ,  Sundar Iyer ,  Shadab Nazar ,  Chandra Nagarajan

IPC: G06F15/173 ,  H04L41/16 ,  H04L41/14 ,  H04L41/5022 ,  H04L41/5054 ,  H04L41/0631 ,  H04L41/0866 ,  H04L41/142 ,  H04L41/147 ,  H04L41/12 ,  H04L41/0893

Abstract: Systems, methods, and computer-readable media for receiving one or more models of network intents, comprising a plurality of contracts between providers and consumers, each contract containing entries with priority values. Each contract is flattened into a listing of rules and a new priority value is calculated. The listing of rules encodes the implementation of the contract between the providers and the consumers. Each entry is iterated over and added to a listing of entries if it is not already present. For each rule, the one or more entries associated with the contract from which the rule was flattened are identified, and for each given entry a flat rule comprising the combination of the rule and the entry is generated, wherein a flattened priority is calculated based at least in part on the priority value of the given one of given entry and the priority value of the rule.

公开(公告)号：US20210377123A1

公开(公告)日：2021-12-02

申请号：US17394285

申请日：2021-08-04

Applicant: Cisco Technology, Inc.

Inventor： Chetan Narsude ,  Gaurav Gupta ,  Shadab Nazar ,  Pavan Mamillapalli ,  Sundar Iyer

IPC: H04L12/24 ,  H04L12/26 ,  G06F11/34

Abstract: Aspects of the technology provide solutions for determining a time period (“epoch”) required to monitor or analyze a tenant network. Some implementations of the technology include a process for making automatic epoch determinations, which includes steps for identifying one or more network parameters for a tenant network, analyzing the tenant network using the network parameters to discover one or more configuration settings of the tenant network, and determining a first epoch for the tenant network, the first epoch corresponding with a period of time to complete analysis of the tenant network using the network parameters. In some aspects, the process can further include steps for generating a tenant profile for the tenant network, the tenant profile based on the network parameters, the first epoch, and the one or more configuration settings of the tenant network. Systems and machine-readable media are also provided.

公开(公告)号：US11178009B2

公开(公告)日：2021-11-16

申请号：US16786349

申请日：2020-02-10

Applicant: Cisco Technology, Inc.

Inventor： Kartik Mohanram ,  Chandra Nagarajan ,  Sundar Iyer ,  Shadab Nazar ,  Ramana Rao Kompella

IPC: H04L12/24 ,  H04L12/26

Abstract: Systems, methods, and computer-readable media for static network policy analysis for a network. In one example, a system obtains a logical model based on configuration data stored in a controller on a software-defined network, the logical model including a declarative representation of respective configurations of objects in the software-defined network, the objects including one or more endpoint groups, bridge domains, contexts, or tenants. The system defines rules representing respective conditions of the objects according to a specification corresponding to the software-defined network, and determines whether the respective configuration of each of the objects in the logical model violates one or more of the rules associated with that object. When the respective configuration of an object in the logical model violates one or more of the rules, the system detects an error in the respective configuration associated with that object.

公开(公告)号：US11121927B2

公开(公告)日：2021-09-14

申请号：US16704874

申请日：2019-12-05

Applicant: Cisco Technology, Inc.

Inventor： Chetan Narsude ,  Gaurav Gupta ,  Shadab Nazar ,  Pavan Mamillapalli ,  Sundar Iyer

IPC: H04L12/24 ,  H04L12/26 ,  G06F11/34

Abstract: Aspects of the technology provide solutions for determining a time period (“epoch”) required to monitor or analyze a tenant network. Some implementations of the technology include a process for making automatic epoch determinations, which includes steps for identifying one or more network parameters for a tenant network, analyzing the tenant network using the network parameters to discover one or more configuration settings of the tenant network, and determining a first epoch for the tenant network, the first epoch corresponding with a period of time to complete analysis of the tenant network using the network parameters. In some aspects, the process can further include steps for generating a tenant profile for the tenant network, the tenant profile based on the network parameters, the first epoch, and the one or more configuration settings of the tenant network. Systems and machine-readable media are also provided.

公开(公告)号：US11115300B2

公开(公告)日：2021-09-07

申请号：US16813358

申请日：2020-03-09

Applicant: Cisco Technology, Inc.

Inventor： Shadab Nazar ,  Pavan Mamillapalli ,  Azeem Suleman ,  Jagdev singh Tur ,  Ayas Pani

IPC: G06F15/173 ,  H04L12/26 ,  H04L12/24

Abstract: Systems, methods, and computer-readable media for detecting and reporting anomalies in a network environment for providing network assurance. In some embodiments, a system can determine confidence scores for at least one value of parameters of a network environment defining network events occurring in the network environment. The confidences scores can indicate a frequency that the defined network events have a specific event state. The confidence scores can be monitored to detect an anomaly in the network environment. In response to detecting the anomaly in the network environment, the system can determine a relevant network state of the network environment. The relevant network state of the network environment and the anomaly in the network environment can be presented to a user.

公开(公告)号：US20200186426A1

公开(公告)日：2020-06-11

申请号：US16786349

申请日：2020-02-10

Applicant: Cisco Technology, Inc.

Inventor： Kartik Mohanram ,  Chandra Nagarajan ,  Sundar Iyer ,  Shadab Nazar ,  Ramana Rao Kompella

IPC: H04L12/24 ,  H04L12/26

Abstract: Systems, methods, and computer-readable media for static network policy analysis for a network. In one example, a system obtains a logical model based on configuration data stored in a controller on a software-defined network, the logical model including a declarative representation of respective configurations of objects in the software-defined network, the objects including one or more endpoint groups, bridge domains, contexts, or tenants. The system defines rules representing respective conditions of the objects according to a specification corresponding to the software-defined network, and determines whether the respective configuration of each of the objects in the logical model violates one or more of the rules associated with that object. When the respective configuration of an object in the logical model violates one or more of the rules, the system detects an error in the respective configuration associated with that object.

公开(公告)号：US10587484B2

公开(公告)日：2020-03-10

申请号：US15702374

申请日：2017-09-12

Applicant: Cisco Technology, Inc.

Inventor： Shadab Nazar ,  Pavan Mamillapalli ,  Azeem Suleman ,  Jagdev singh Tur ,  Ayas Pani

IPC: G06F15/173 ,  H04L12/26 ,  H04L12/24

Abstract: Systems, methods, and computer-readable media for detecting and reporting anomalies in a network environment for providing network assurance. In some embodiments, a system can determine confidence scores for at least one value of parameters of a network environment defining network events occurring in the network environment. The confidences scores can indicate a frequency that the defined network events have a specific event state. The confidence scores can be monitored to detect an anomaly in the network environment. In response to detecting the anomaly in the network environment, the system can determine a relevant network state of the network environment. The relevant network state of the network environment and the anomaly in the network environment can be presented to a user.

公开(公告)号：US10554477B2

公开(公告)日：2020-02-04

申请号：US15703029

申请日：2017-09-13

Applicant: Cisco Technology, Inc.

Inventor： Shadab Nazar ,  Navneet Yadav ,  Azeem Suleman ,  Pavan Mamillapalli ,  John Thomas Monk ,  Chetan Narsude ,  Navjyoti Sharma ,  Gaurav Gupta

IPC: G06F15/173 ,  H04L12/24 ,  H04L12/26 ,  H04L29/06

Abstract: Systems, methods, and computer-readable media for aggregating and presenting network events in a network environment. In some embodiments, a system can maintain event correlation rules for aggregating \network events occurring in a network based on characteristics of previously occurring network events. Network events occurring in the specific network environment can be identified. The network events can be aggregated to form an aggregated network event using the event correlation rules maintained based on the characteristics of previously occurring network events. The aggregated network event can subsequently be presented to a user.