公开(公告)号：US11165681B2

公开(公告)日：2021-11-02

申请号：US16585294

申请日：2019-09-27

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Ronald Bonica

IPC: H04L12/721 ,  H04L12/741 ,  H04L12/733 ,  H04L12/26 ,  H04L12/749

Abstract: A network device may receive a message. The network device may determine that the message includes return information indicating a path to an initial device that generated the message. The network device may modify the message by adding an upstream device identifier, wherein the upstream device identifier identifies a device from which the message is received. The network device may modify the message by adding an indication of whether the initial device is reachable by the network device using a segment identifier. The network device may provide the modified message to a downstream device.

公开(公告)号：US10454823B1

公开(公告)日：2019-10-22

申请号：US15892297

申请日：2018-02-08

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Vivek Ramesh ,  Pranavadatta Devaki Narasimha Bhatta

IPC: H04L12/741 ,  H04L12/801 ,  H04L12/713

Abstract: The problem of processing an egress packet by a data forwarding device having (1) a first routing stack associated with a first namespace and a first interface, (2) a second routing stack associated with a second namespace and a second interface, wherein at least some forwarding information included in the second namespace is incompatible with the first routing stack, (3) a virtual routing and forwarding instance (VRF), and (4) a shared session layer socket associated with both the first and second routing stack, and bound to the VRF, where the VRF is associated with the second interface via the second routing stack, is solved by: adding the first interface to the VRF whereby the VRF is associated with both the first and second interfaces; and responsive to the adding of the first interface to the VRF, (1) adding routes from the second namespace to the first namespace such that network address prefixes of the second namespace are associated with a “special” next hop, and (2) flagging the shared session layer socket bound to the VRF. When an egress packet on the flagged shared session layer socket is received, the data forwarding device (1) sends the egress packet to the first routing stack for processing, (2) looks up next hop information using the first namespace of the first routing stack, and (3) determines whether or not the next hop information is a “special” next hop. Responsive to a determination that the next hop information is a “special” next hop, the data forwarding device injects the egress packet into the second routing stack for processing.

公开(公告)号：US10432545B2

公开(公告)日：2019-10-01

申请号：US15041736

申请日：2016-02-11

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Vivek Ramesh ,  Samson P. Ninan

IPC: H04L12/805 ,  H04L12/26

Abstract: The disclosed apparatus may include (1) at least one communication port that facilitates communication between a source computing device and a destination computing device via a path within a network and (2) a processing unit communicatively coupled to the communication port, wherein the processing unit (A) monitors the network for any changes to the path that potentially affect a maximum transmission unit of the path, (B) detects, while monitoring the network, a change to at least one hop included in the path, and then in response to detecting the change to the hop, (C) identifies a packet size that corresponds to the maximum transmission unit of the path, and (D) tests the path for an increase in the maximum transmission unit by transmitting a packet whose size is larger than the packet size that corresponds to the maximum transmission unit. Various other apparatuses, systems, and methods are also disclosed.

公开(公告)号：US10382329B1

公开(公告)日：2019-08-13

申请号：US15281976

申请日：2016-09-30

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Sandip Kumar Ghosh ,  Jimmy Jose

IPC: H04L12/713 ,  H04L12/745 ,  H04L29/12

Abstract: In general, techniques provide a mapping of host devices to different virtual router identifiers used to identify the source MAC address used for forwarding packets to the participating host devices. For example, a method may include receiving an Address Resolution Protocol (ARP) request for a first Internet protocol (IP) address from a host device, the first IP address comprising a virtual IP address of the virtual router. The method may also include determining a virtual router redundancy protocol (VRRP) virtual router identifier (VRID) associated with the first IP address. The method may further include generating a mapping between the host device and the determined VRID. The method may also include determining a virtual source MAC address of the virtual router based on the mapping and forwarding a second packet to the host device that specifies a virtual source MAC address for the second packet.

公开(公告)号：US10027576B2

公开(公告)日：2018-07-17

申请号：US15162157

申请日：2016-05-23

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Samson P. Ninan ,  Jimmy Jose

IPC: H04L12/721 ,  H04H20/20 ,  H04L12/741 ,  H04L29/12 ,  H04L29/08

Abstract: The disclosed computer-implemented method may include (1) creating, at a proxy node within an IP network, a proxy group that includes a plurality of network nodes within a subnet of the IP network that are represented by a pseudo MAC address, (2) receiving a neighbor solicitation from a network node included in the proxy group, (3) identifying, within the neighbor solicitation, a link-layer address of the network node that sent the neighbor solicitation, (4) modifying the neighbor solicitation by replacing the link-layer address of the network node with the pseudo MAC address of the proxy group, and then (5) forwarding the modified neighbor solicitation to another network node included in the proxy group to facilitate completion of an NDP process in which the other network node responds to the modified neighbor solicitation with a neighbor advertisement proxied by the proxy node. Various other methods, systems, and apparatuses are also disclosed.

公开(公告)号：US09817747B2

公开(公告)日：2017-11-14

申请号：US15040858

申请日：2016-02-10

Applicant: Juniper Networks, Inc.

Inventor： Jonathan T. Looney ,  Pranavadatta Devaki Narasimha Bhatta ,  Reji Thomas ,  Satish Dattatri

IPC: G06F11/36

CPC classification number: G06F11/3664 ,  G06F11/3684 ,  G06F11/3688

Abstract: The disclosed computer-implemented method may include (1) providing a framework that includes (A) a user-space component that runs at a client site and (B) a kernel-space component that runs at a remote site, (2) identifying attributes of objects that reside at the remote site and whose addresses are unknown at the client site, (3) generating a script to test a function of a kernel running on the remote site based at least in part on the attributes, and (4) performing a remote unit testing of the function of the kernel by executing the script such that the user-space component (A) generates a message that identifies the attributes and (B) sends the message to the kernel-space component to facilitate (I) obtaining references to the objects by way of the attributes and (II) invoking the function by way of the references. Various other methods, systems, and computer-readable media are also disclosed.

公开(公告)号：US11722395B2

公开(公告)日：2023-08-08

申请号：US17452853

申请日：2021-10-29

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Ronald Bonica

IPC: H04L45/741 ,  H04L43/10 ,  H04L43/0811 ,  H04L45/745

CPC classification number: H04L43/10 ,  H04L43/0811 ,  H04L45/741 ,  H04L45/745

Abstract: A network device may receive a message. The network device may determine that the message includes return information indicating a path to an initial device that generated the message. The network device may modify the message by adding an upstream device identifier, wherein the upstream device identifier identifies a device from which the message is received. The network device may modify the message by adding an indication of whether the initial device is reachable by the network device using a segment identifier. The network device may provide the modified message to a downstream device.

公开(公告)号：US11329909B2

公开(公告)日：2022-05-10

申请号：US16921636

申请日：2020-07-06

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Ronald Bonica ,  Ramakrishna Manjunath

IPC: H04L45/00 ,  H04L45/02 ,  H04L45/122 ,  H04L45/745

Abstract: The disclosed computer-implemented method may include (1) receiving, at a source node, a request to discover a plurality of network paths that each lead from the source node to a destination node and (2) discovering the plurality of network paths by (A) identifying each next hop between the source node and the destination node, (B) sending, from the source node to each next hop, a path-request probe that prompts the next hop to (i) determine each next-closest hop and (ii) return, to the source node, a path-response probe that identifies the next-closest hops, (C) receiving the path-response probes from the next hops, (D) determining, at the source node based on the path-response probes, that one or more of the plurality of network paths include the next hops and the next-closest hops, and then (E) iteratively discovering any subsequent hops by sending a subsequent path-request probe to each next-closest hop.

公开(公告)号：US20210119828A1

公开(公告)日：2021-04-22

申请号：US16860828

申请日：2020-04-28

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  SelvaKumar Sivaraj

IPC: H04L12/46 ,  H04L12/66 ,  H04L12/24 ,  H04L12/715 ,  H04L29/12

Abstract: Techniques are described for providing security extensions to neighbor discovery in Ethernet Virtual Private Network (EVPN). For example, a network device that implements Ethernet Virtual Private Network (EVPN) receives a neighbor discovery response message including a nonce originated by a second network device and not originated by the first network device. The network device processes the neighbor discovery response message including the nonce originated by the second network device and not originated by the first network device.

公开(公告)号：US20200336412A1

公开(公告)日：2020-10-22

申请号：US16921636

申请日：2020-07-06

Applicant: Juniper Networks, Inc.

Inventor： Reji Thomas ,  Ronald Bonica ,  Ramakrishna Manjunath

IPC: H04L12/721 ,  H04L12/751 ,  H04L12/733 ,  H04L12/741

Abstract: The disclosed computer-implemented method may include (1) receiving, at a source node, a request to discover a plurality of network paths that each lead from the source node to a destination node and (2) discovering the plurality of network paths by (A) identifying each next hop between the source node and the destination node, (B) sending, from the source node to each next hop, a path-request probe that prompts the next hop to (i) determine each next-closest hop and (ii) return, to the source node, a path-response probe that identifies the next-closest hops, (C) receiving the path-response probes from the next hops, (D) determining, at the source node based on the path-response probes, that one or more of the plurality of network paths include the next hops and the next-closest hops, and then (E) iteratively discovering any subsequent hops by sending a subsequent path-request probe to each next-closest hop.