公开(公告)号：US20180278521A1

公开(公告)日：2018-09-27

申请号：US15465764

申请日：2017-03-22

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Pierre Pfister ,  Mark Townsley ,  Yoann Desmouceaux

IPC: H04L12/741 ,  H04L29/06

CPC classification number: H04L45/74 ,  H04L69/22

Abstract: Disclosed is a method that modifies a bit indexed explicit replication (BIER) algorithm. The method includes receiving a packet at a node, wherein the packet includes a BIER header identifying a bitstring, the bitstring including a first bit indicating a first destination and a second bit indicating a second destination and forwarding the packet through one or more networks toward the first destination and the second destination based on the bitstring and a predetermined bit selection order. The predetermined bit selection order causes a sequential delivery of the packet to the first destination and the second destination. After the packet arrives at the first destination, the method includes setting the first bit to zero in the bitstring and forwarding the packet through the one or more networks toward the second destination according to the updated bitstring.

公开(公告)号：US10038766B2

公开(公告)日：2018-07-31

申请号：US15148294

申请日：2016-05-06

Applicant: Cisco Technology, Inc.

Inventor： Pierre Pfister ,  Ole Troan ,  W. Mark Townsley

IPC: H04J3/24 ,  H04L29/08 ,  H04L29/12 ,  H04L12/747

CPC classification number: H04L69/324 ,  H04L45/742 ,  H04L61/2592 ,  H04L67/2842 ,  H04L2212/00

Abstract: In one embodiment, a decapsulating network device receives a plurality of encapsulated packet fragments of an original packet, and decapsulates them into respective decapsulated packet fragments. The decapsulating network device caches an inner header of the original packet from one of the decapsulated packet fragments, and in response to caching the inner header, and for each particular decapsulated packet fragment as it is received and decapsulated: prepends the inner header and fragmentation information to the particular decapsulated packet fragment; and forwards the particular decapsulated packet fragment with the prepended inner header and fragmentation information from the decapsulating network device toward a destination of the original packet.

公开(公告)号：US20180115487A1

公开(公告)日：2018-04-26

申请号：US15332020

申请日：2016-10-24

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Pierre Pfister

IPC: H04L12/803 ,  H04L29/06 ,  H04L29/08 ,  H04L12/28 ,  H04L29/12

Abstract: In one embodiment, a splitting device in a computer network transmits to a combining device first and second portions of a data stream via first and second tunnels, respectively, where packets of the data stream indicate a time of transmission of the packets from the splitting device, a first and second transmission rate of the packets on a respective one of the first and second tunnels, and sequencing information of the packets within the data stream. The splitting device receives from the combining device a first and second receive rate of the packets for each of the first and second tunnels, respectively. In response to the first receive rate being less than the first transmission rate, the splitting device reduces the first transmission rate and increases the second transmission rate.

公开(公告)号：US11822443B2

公开(公告)日：2023-11-21

申请号：US17902677

申请日：2022-09-02

Applicant: Cisco Technology, Inc.

Inventor： Pierre Pfister ,  Ian James Wells ,  Kyle Andrew Donald Mestery ,  William Mark Townsley ,  Yoann Desmouceaux ,  Guillaume Ruty ,  Aloys Augustin

IPC: G06F11/20 ,  G06F9/455 ,  H04L61/2503 ,  H04L61/58 ,  H04L101/00

CPC classification number: G06F11/2033 ,  G06F9/45558 ,  H04L61/2503 ,  G06F2009/45595 ,  G06F2201/85 ,  H04L61/58 ,  H04L2101/00

Abstract: This disclosure describes techniques for providing a distributed scalable architecture for Network Address Translation (NAT) systems with high availability and mitigations for flow breakage during failover events. The NAT servers may include functionality to serve as fast-path servers and/or slow-path servers. A fast-path server may include a NAT worker that includes a cache of NAT mappings to perform stateful network address translation and to forward packets with minimal latency. A slow-path server may include a mapping server that creates new NAT mappings, depreciates old ones, and answers NAT worker state requests. The NAT system may use virtual mapping servers (VMSs) running on primary physical servers with state duplicated VMSs on different physical failover servers. Additionally, the NAT servers may implement failover solutions for dynamically allocated routeable address/port pairs assigned to new sessions by assigning new outbound address/port pairs when a session starts and broadcasting pairing information.

公开(公告)号：US20230155859A1

公开(公告)日：2023-05-18

申请号：US18093530

申请日：2023-01-05

Applicant: Cisco Technology, Inc.

Inventor： Pierre Pfister ,  William Mark Townsley ,  Yoann Desmouceaux ,  David Delano Ward

IPC: H04L12/46 ,  G06F16/95

CPC classification number: H04L12/46 ,  G06F16/95

Abstract: This disclosure describes methods and systems to externally manage network-to-network interconnect configuration data in conjunction with a centralized database subsystem. An example of the methods includes receiving and storing, in the centralized database subsystem, data indicative of user intent to interconnect at least a first network and a second network. The example method further includes, based at least in part on the data indicative of user intent, determining and storing, in the centralized database subsystem, a network intent that corresponds to the user intent. The example method further includes providing data indicative of the network intent from the centralized database subsystem to a first data plane adaptor, associated with the first network, and a second data plane adaptor, associated with the second network.

公开(公告)号：US20220407736A1

公开(公告)日：2022-12-22

申请号：US17894673

申请日：2022-08-24

Applicant: Cisco Technology, Inc.

Inventor： Ijsbrand Wijnands ,  Pierre Pfister ,  Neale D.R Ranns ,  W. Mark Townsley ,  Gregory J. Shepherd

IPC: H04L12/18

Abstract: Methods, network devices and computer readable media are disclosed relating to a communication network. In one embodiment, a method includes receiving a message comprising a message bit array. The message bit array identifies egress nodes for the message within a bit indexed explicit replication (BIER) domain of a communications network. A first bit position in the message bit array represents a first one or more of the egress nodes, and a bit value at the first bit position indicates that the message is to be forwarded to one of the first one or more of the egress nodes. The method further includes accessing a first forwarding table entry corresponding to the first bit position, determining whether the first bit position is an anycast bit position having multiple corresponding forwarding table entries, and forwarding the message to one of the first one or more of the egress nodes.

公开(公告)号：US20220294758A1

公开(公告)日：2022-09-15

申请号：US17485789

申请日：2021-09-27

Applicant: Cisco Technology, Inc.

Inventor： Yoann Desmouceaux ,  Rucha Sanjay Vaidya ,  Murali Muniraman ,  Pierre Pfister

IPC: H04L29/12

Abstract: According to certain embodiments, a system comprises one or more processors and one or more computer-readable non-transitory storage media comprising instructions that, when executed by the one or more processors, cause one or more components of the system to perform operations. The operations comprise receiving a packet comprising a source address; selecting an uplink for the packet, the uplink selected from a plurality of uplinks based on an uplink selection policy; determining whether the source address is valid on the selected uplink; determining whether to keep or re-write the source address based on whether the source address is valid on the selected uplink; keeping the source address when the source address is valid on the selected uplink or re-writing the source address when the source address is not valid on the selected uplink; and sending the packet to the selected uplink.

公开(公告)号：US11233737B2

公开(公告)日：2022-01-25

申请号：US16715308

申请日：2019-12-16

Applicant: Cisco Technology, Inc.

Inventor： Pierre Pfister ,  Yoann Desmouceaux ,  William Mark Townsley

IPC: H04L12/28 ,  H04L12/803 ,  H04L12/801 ,  H04L12/911 ,  H04J1/16

Abstract: Aspects of the subject technology provide state-less load-balancing using sequence numbers to identify traffic flows. In some implementations, a process of the technology can include steps for receiving, by a load-balancer, a first packet from a source device including a request to access the service provided by a server coupled to the load-balancer, determining a load for each of the servers, wherein each server is associated with a unique set of sequence numbers, and forwarding the request to a target server selected based on its corresponding load, and wherein the request is configured to cause the target server to issue a reply to the source device. Systems and machine-readable media are also provided.

公开(公告)号：US11218454B2

公开(公告)日：2022-01-04

申请号：US16268087

申请日：2019-02-05

Applicant: Cisco Technology, Inc.

Inventor： Eric Vyncke ,  Guillaume Ruty ,  Pierre Pfister ,  Andre Jean-Marie Surcouf

IPC: H04L29/06 ,  H04L29/12 ,  H04L12/749 ,  H04L29/08 ,  G06F21/62 ,  H04L12/747

Abstract: A message is received which indicates a request for a client-specific service address for service or content provided by a service provider. In response to the request, a client-specific service address may be generated and sent to the client. The address may be used as a destination address in one or more subsequent client requests for service or content. A first portion of the address comprises an IPv6 service prefix assigned to a service network of the service provider. A second portion of the address comprises semantic information having a first portion of encrypted private information and a second portion of unencrypted service information. The encrypted private information may be generated by encrypting private information based on a cryptographic key, where the cryptographic key is derived based on a secret key associated with the service provider and an IP client prefix assigned to the client.

公开(公告)号：US11216298B2

公开(公告)日：2022-01-04

申请号：US16829948

申请日：2020-03-25

Applicant: Cisco Technology, Inc.

Inventor： Yoann Desmouceaux ,  Pierre Pfister ,  William Mark Townsley

IPC: G06F9/455 ,  H04L12/931

Abstract: Techniques for zero-loss workload mobility with segment routing for virtual machines are presented. The techniques include receiving, by a virtual router, an electronic message destined for a first virtual machine running on a first physical machine and checking a first virtual machine state for the first virtual machine. In response to determining that it is associated with a running state indicating the first physical machine, inserting a segment routing header including an indication of the source virtual machine, the first physical machine, and the first virtual machine. In response to determining that it is associated with a migration state, inserting, by the virtual router, a segment routing header indicating the source virtual machine, an END.S for the first physical machine, the first virtual machine; and an END.SBUF for a second physical machine. The message is then routed based at least in part on the inserted segment routing header.