-
公开(公告)号:US20180077677A1
公开(公告)日:2018-03-15
申请号:US15265931
申请日:2016-09-15
Applicant: Cisco Technology, Inc.
Inventor: Matthew H. Birkner , Dmitri Goloubev , Carlos M. Pignataro , Gonzalo Salgueiro , Joseph M. Clarke
Abstract: Presented herein are techniques for obtaining pertinent information from a network upon detection of an anomaly by receiving, at a first network node, configuration information sufficient to establish a data collection policy for the network node, capturing data, on the first network node, in accordance with the data collection policy to obtain captured data, detecting an anomaly occurring with respect to a second network node, and in response to detecting the anomaly, in transferring from the first network node, to an analysis server, collected data derived from the captured data based on both the data collection policy and a proximity metric indicating a logical distance between the first network node and the second network node.
-
公开(公告)号:US20180062991A1
公开(公告)日:2018-03-01
申请号:US15252147
申请日:2016-08-30
Applicant: Cisco Technology, Inc.
Inventor: Nagendra Kumar Nainar , Carlos M. Pignataro , Deepak Kumar , Yi Yang
IPC: H04L12/721 , H04L12/26 , H04L12/935
Abstract: The subject technology relates to methods for identifying network routes. In some aspects, the method can include steps for transmitting a first query to a network controller, the first query identifying a destination node for a traffic flow routed by the first network node, wherein the first query is configured to cause the network controller perform operations including: identify at least one egress node between the first network node and the destination node, transmit a second query to the at least one egress node to determine entropy information relative to the egress node, and transmit the entropy information to the first network node in response to the first query. Systems and machine-readable media are also provided.
-
313.发明申请公开(公告)号:US20180034727A1
公开(公告)日:2018-02-01
申请号:US15222643
申请日:2016-07-28
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Nagendra Kumar Nainar , Carlos M. Pignataro , Stefano B. Previdi
IPC: H04L12/703 , H04L12/781 , H04L12/741 , H04L12/721 , H04L12/707
Abstract: Embodiments include generating an error message based on an error associated with a packet, adding to the error message an address of a node in a segment routing domain of a network to serve as a destination address of the error message, and adding a new segment routing header to the error message. Embodiments also include rewriting the packet where the rewriting includes replacing a destination address in the packet with a final destination address associated with the packet. Embodiments further include adding the rewritten packet to the error message, and forwarding the error message to the destination address of the error message. In specific embodiments, the rewriting the packet includes removing a segment routing header of the packet. More specific embodiments include deriving the new segment routing header from information in the packet.
-
公开(公告)号:US20180026887A1
公开(公告)日:2018-01-25
申请号:US15216294
申请日:2016-07-21
Applicant: Cisco Technology, Inc.
Inventor: Nagendra Kumar Nainar , Rajiv Asati , Carlos M. Pignataro
IPC: H04L12/741 , H04L12/46 , H04L12/733
CPC classification number: H04L45/74 , H04L12/4641 , H04L41/0659 , H04L45/20
Abstract: Systems, methods, and computer-readable media for improving the reliability of service function (SF) application in a service function chain (SFC) are provided. In some aspects, the subject technology facilitates automatic service function type validation by a service function forwarder (SFF), for example, by using a probe configured query a function type of a SF module associated with the validating SFF.
-
公开(公告)号:US09871830B2
公开(公告)日:2018-01-16
申请号:US14508020
申请日:2014-10-07
Applicant: Cisco Technology, Inc.
Inventor: Rajesh Vargheese , William Nathan Dry , Nitesh Trikha , Carlos M. Pignataro , Rajah Balu
IPC: H04L29/06
CPC classification number: H04L65/1069 , H04L65/1006 , H04L65/102 , H04L65/1046
Abstract: A determination is made at a server that a network connected device is to control monitoring performed by a first network connected sensor. A first connection is established between the network connected device and the first network connected sensor, the first connection providing control of the first network connected sensor by the network connected device. A context change for the network connected device is determined. A second connection between the network connected device and a second network connected sensor is established, the second connection providing control of the second network connected sensor by the network connected device.
-
Patent Agency Ranking
公开(公告)号:US20170331737A1
公开(公告)日:2017-11-16
申请号:US15152213
申请日:2016-05-11
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Yixing Ruan , James N. Guichard , Javed Asghar , Carlos M. Pignataro , Kenneth Eugene Gray
IPC: H04L12/741 , H04L12/813 , H04L29/12 , H04L29/06
CPC classification number: H04L69/22 , H04L12/4633 , H04L45/306 , H04L45/566 , H04L45/586 , H04L45/64
Abstract: Aspects of the embodiments are directed to augmenting a control packet with an interface identifier, the interface identifier identifying an interface at a physical network forwarding element; and transmitting the control packet with the interface identifier to the physical network forwarding element. The interface identifier can be included in metadata of a network service header (NSH). The NSH is encapsulated with the control packet, which is transmitted with the control packet. The NSH can be extracted and the interface identifier used to identify a user interface (or a presenting interface) based on a metadata lookup.
-
公开(公告)号:US20170331669A1
公开(公告)日:2017-11-16
申请号:US15152024
申请日:2016-05-11
Applicant: CISCO TECHNOLOGY, INC.
Abstract: Approaches are disclosed for virtualizing a network management protocol (NMP). A network element offloads processes for communicating in the NMP to a virtualization engine (e.g., a backend virtualization proxy for the network element). The network element transmits a message containing a NMP request to the virtualization engine using service function chaining (SFC) by inserting service plane protocol data (e.g., a network service header (NSH)) into the message (e.g., an impregnated request). The virtualization engine expropriates, from the network element, processes for communicating in the NMP and can, thereby, reduce the computational resources used by the network element for communicating in the NMP. The virtualization engine generates a NMP response to the NMP request. The virtualization engine transmits a different message containing the NMP response to the network element using SFC by inserting service plane protocol data into the message (e.g., an impregnated response).
-
公开(公告)号:US20170324654A1
公开(公告)日:2017-11-09
申请号:US15656474
申请日:2017-07-21
Applicant: Cisco Technology, Inc.
IPC: H04L12/723 , H04L12/851 , H04L12/741 , H04L12/725 , H04L29/06 , H04L12/46
CPC classification number: H04L45/507 , H04L12/4633 , H04L45/306 , H04L45/50 , H04L45/74 , H04L47/2441 , H04L69/22
Abstract: In one embodiment, a device in a network receives a packet that includes a forwarding label for a service in a service chain. The packet encapsulates a service chain header for the service chain. The device swaps the forwarding label for the service in the packet for a reserved label that identifies the packet as encapsulating the service chain header. The device forwards the packet with the reserved label to the service.
-
公开(公告)号:US20170279712A1
公开(公告)日:2017-09-28
申请号:US15080493
申请日:2016-03-24
Applicant: CISCO TECHNOLOGY, INC.
Inventor: Nagendra Kumar Nainar , Carlos M. Pignataro , James N. Guichard , Paul Quinn
IPC: H04L12/715 , H04L29/06 , H04L29/08 , H04L12/46
CPC classification number: H04L45/64 , H04L12/4633 , H04L12/4641 , H04L67/32 , H04L69/22
Abstract: There is disclosed an apparatus having logic elements to: receive an incoming packet associated with a first service function chain; identify a next hop service function for the incoming packet as a non-reactive service function; create a duplicate packet; forward the duplicate packet to the non-reactive service function; and forward the incoming packet to a next reactive service function. There is also disclosed an apparatus having logic to: receive an incoming packet associated with a first service function chain (SFC), having a first service path identifier (SPI); determine that the incoming packet has a first service index (SI), and that a next-hop SI identifies a non-reactive service function (NRSF); receive a duplicate packet of the incoming packet; rewrite a service header of the duplicate packet to identify a second SFC having a second SPI, wherein the second SPI is different from the first SPI; and alter the first SI of the incoming packet to identify a next reactive service function in the first SFC.
-
公开(公告)号:US09722919B2
公开(公告)日:2017-08-01
申请号:US14160804
申请日:2014-01-22
Applicant: Cisco Technology, Inc.
Inventor: Roque Gagliano , Alvaro E. Retana , Keyur P. Patel , Burjiz F. Pithawala , Ed Kern , Carlos M. Pignataro
IPC: H04L29/08 , H04L12/721 , H04L12/741 , H04L12/805 , H04L12/715 , H04L29/06 , H04L12/24
CPC classification number: H04L45/44 , H04L41/0893 , H04L45/04 , H04L45/745 , H04L47/36 , H04L67/2819 , H04L69/22
Abstract: In one embodiment, a router located at an exit edge of an autonomous system (AS) receives a data packet in a data plane, and determines a destination of the data packet and an associated AS-path information to the destination. The router may then insert the AS-path information into the data packet, and forwards the data packet with the AS-path information toward the destination, such that a receiving device in a destination AS can validate whether the data packet was routed through a path that was secure from a control plane perspective based on a collection of one or more insertions of AS-path information.
-
-
-
-
-
-
-
-
-
Search Results
583
records
(took 0.029 seconds)
