公开(公告)号：US11658847B2

公开(公告)日：2023-05-23

申请号：US17937961

申请日：2022-10-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Pablo Camarillo Garvia ,  Hendrikus G. P. Bosch ,  Clarence Filsfils

IPC: H04L12/46 ,  H04L45/74 ,  H04L45/50 ,  H04W84/04

CPC classification number: H04L12/4633 ,  H04L45/74 ,  H04L45/50 ,  H04L2212/00 ,  H04W84/042

Abstract: In one embodiment, a segment routing and tunnel exchange provides packet forwarding efficiencies in a network, including providing an exchange between a segment routing domain and a packet tunnel domain. One application includes the segment routing and tunnel exchange interfacing segment routing packet forwarding (e.g., in a Evolved Packet Core (EPC) and/or 5-G user plane) and packet tunnel forwarding in access networks (e.g., replacing a portion of a tunnel between an access node and a user plane function for accessing a corresponding data network). In one embodiment, a network provides mobility services using a segment routing data plane that spans segment routing and tunnel exchange(s) and segment routing-enabled user plane functions. One embodiment uses the segment routing data plane without any modification to a (radio) access network (R)AN (e.g., Evolved NodeB, Next Generation NodeB) nor to user equipment (e.g., any end user device).

公开(公告)号：US20220173992A1

公开(公告)日：2022-06-02

申请号：US17344443

申请日：2021-06-10

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Ahmed Mohamed Ahmed Abdelsalam ,  Rakesh Gandhi ,  Pablo Camarillo Garvia ,  Francois Clad

IPC: H04L12/26 ,  H04L12/24

Abstract: Techniques for optimizing technologies related to network path tracing and network delay measurements are described herein. Some of the techniques may include using an IPv6 header option and/or segment identifier field of a segment list or a TLV of a segment routing header as a telemetry data carrier. The techniques may also include using an SRv6 micro-segment (uSID) instruction to indicate to a node of a network that the node is to perform one or more path tracing actions and encapsulating the packet and forward. Additionally, the techniques may include using short interface identifiers corresponding to node interfaces to trace a packet path through a network. Further, the techniques may include using short timestamps to determine delay measurements associated with sending a packet through a network. In various examples, the techniques described above and herein may be used with each other to optimize network path tracing and delay measurement techniques.

公开(公告)号：US11240150B2

公开(公告)日：2022-02-01

申请号：US16781838

申请日：2020-02-04

Applicant: Cisco Technology Inc.

Inventor： Francois Clad ,  Pablo Camarillo Garvia ,  Clarence Filsfils

IPC: H04L12/18 ,  H04L12/723 ,  H04L29/06 ,  H04L12/741 ,  G06F21/60

Abstract: In one embodiment, a method by an apparatus of a segment routing (SR) network includes receiving a data packet and accessing an attestation token for the apparatus. The method further includes determining a location within a header of the received data packet for the attestation token and creating an updated header by encoding the attestation token in the determined location of the header. The method further includes sending the updated header with the encoded attestation token to another apparatus of the SR network.

公开(公告)号：US20210243116A1

公开(公告)日：2021-08-05

申请号：US16860896

申请日：2020-04-28

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Ahmed Mohamed Ahmed Abdelsalam ,  Francois Clad ,  Pablo Camarillo Garvia ,  Kiran Sasidharan Pillai

IPC: H04L12/723 ,  H04L12/46 ,  H04L29/06 ,  H04L12/703 ,  H04L12/741

Abstract: The present technology pertains to a group-based network policy using Segment Routing over an IPv6 dataplane (SRv6). After a source application sends a packet, an ingress node can receive the packet, and if the source node is capable, it can identify an application policy and apply it. The ingress node indicates that the policy has been applied by including policy bits in the packet encapsulation. When the packet is received by the egress node, it can determine whether the policy was already applied, and if so, the packet is forward to the destination application. If the egress node determines that the policy has not be applied the destination application can apply the policy. Both the ingress node and egress nodes can learn of source application groups, destination application groups, and applicable policies through communication with aspects of the segment routing fabric.

公开(公告)号：US20210126831A1

公开(公告)日：2021-04-29

申请号：US16663186

申请日：2019-10-24

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Francois Clad ,  Pablo Camarillo Garvia ,  Ahmed Mohamed Ahmed Abdelsalam

IPC: H04L12/24 ,  H04L12/851 ,  H04W28/10 ,  H04W76/12

Abstract: In one embodiment, a method, by a network apparatus of a first domain network, includes receiving one or more packets from an access network, determining a classification for the packets based on the accounting information, selecting, based on the determined classification, a policy configuration from a plurality of policy configurations for processing the packets, encapsulating the packets with one or more segment identifiers in accordance with the selected policy configuration, and sending the encapsulated packets to a network slice or a second network slice in a second domain network based on the one or more segment identifiers.

公开(公告)号：US10924399B2

公开(公告)日：2021-02-16

申请号：US15922860

申请日：2018-03-15

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Francois Clad ,  Pablo Camarillo Garvia

IPC: H04L12/741 ,  H04L12/781 ,  H04L29/06

Abstract: In one embodiment, segment routing network processing of packets is performed on segment routing packets to use engineered segment routing reverse reply paths which provide efficiencies in communicating packets in a network. In one embodiment, a source node selects a segment identifier of a destination node, with the segment identifier specifying a function value of a dynamic return path segment routing function in order to invoke this function on the destination node. The source node then sends a segment routing packet to the destination address of this segment identifier. Reacting to receipt of this packet and the function value of the dynamic return path segment routing function in the destination address or current segment identifier of the packet, a receiving node generates a responding segment routing packet including the segment identifiers from the received packet in reverse traversal order.

公开(公告)号：US20200322266A1

公开(公告)日：2020-10-08

申请号：US16781838

申请日：2020-02-04

Applicant: Cisco Technology Inc.

Inventor： Francois Clad ,  Pablo Camarillo Garvia ,  Clarence Filsfils

IPC: H04L12/723 ,  G06F21/60 ,  H04L12/741 ,  H04L29/06

Abstract: In one embodiment, a method by an apparatus of a segment routing (SR) network includes receiving a data packet and accessing an attestation token for the apparatus. The method further includes determining a location within a header of the received data packet for the attestation token and creating an updated header by encoding the attestation token in the determined location of the header. The method further includes sending the updated header with the encoded attestation token to another apparatus of the SR network.

公开(公告)号：US20200028758A1

公开(公告)日：2020-01-23

申请号：US16037765

申请日：2018-07-17

Applicant: Cisco Technology, Inc.

Inventor： Jerome Tollet ,  Alain Fiocco ,  Andre Jean-Marie Surcouf ,  Pablo Camarillo Garvia ,  Clarence Filsfils

IPC: H04L12/24 ,  H04L12/721 ,  H04L12/713 ,  H04L12/751 ,  H04L29/08

Abstract: Systems, methods, and computer-readable media for providing multi-cloud connectivity. A method can involve adding a new virtual private cloud (VPC) to a multi-cloud environment including a private network and VPCs connected to the private network via a segment routing (SR) domain and respective virtual routers on the VPCs and the private network. The method can involve deploying a new virtual router on the new VPC, registering the new virtual router at a BGP controller in the multi-cloud environment, and receiving, at the BGP controller, topology information from the new virtual router. The method can further involve identifying routes in the multi-cloud environment based on paths computed based on the topology information, sending, to the new virtual router, routing information including the routes, SR identifiers and SR policies, and based on the routing information, providing interconnectivity between the private network, the VPCs, and the new VPC.

公开(公告)号：US20190288940A1

公开(公告)日：2019-09-19

申请号：US15922860

申请日：2018-03-15

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Francois Clad ,  Pablo Camarillo Garvia

IPC: H04L12/741 ,  H04L29/06 ,  H04L12/781

Abstract: In one embodiment, segment routing network processing of packets is performed on segment routing packets to use engineered segment routing reverse reply paths which provide efficiencies in communicating packets in a network. In one embodiment, a source node selects a segment identifier of a destination node, with the segment identifier specifying a function value of a dynamic return path segment routing function in order to invoke this function on the destination node. The source node then sends a segment routing packet to the destination address of this segment identifier. Reacting to receipt of this packet and the function value of the dynamic return path segment routing function in the destination address or current segment identifier of the packet, a receiving node generates a responding segment routing packet including the segment identifiers from the received packet in reverse traversal order.

公开(公告)号：US10285155B1

公开(公告)日：2019-05-07

申请号：US16140255

申请日：2018-09-24

Applicant: Cisco Technology, Inc.

Inventor： Aeneas Sean Dodd-Noble ,  Pablo Camarillo Garvia ,  Om Prakash Suthar

IPC: H04W64/00 ,  H04W4/029 ,  H04W24/10 ,  H04L12/26 ,  H04W8/24

Abstract: Aspects of the disclosed technology provide ways to report User Equipment (UE) device locations in a 5G network for the purpose of redirecting application traffic from proximately located Data Networks (DNs). In one aspect, the disclosed technology encompasses a process for conveying User Equipment (UE) information to an Application Function (AF), the process includes steps for receiving, at an intermediate-User Plane Function (I-UPF) entity, User Equipment (UE) uplink data from a Radio Access Network (RAN), determining if sharing of location information or application information associated with the UE is restricted, and encapsulating first location metadata or application metadata in an SRv6 packet if the sharing of location information or application information is not restricted. Systems and machine-readable media are also provided.