公开(公告)号：US12010011B2

公开(公告)日：2024-06-11

申请号：US18060521

申请日：2022-11-30

Applicant: Juniper Networks, Inc.

Inventor： Wen Lin ,  Yi Zheng ,  Mukesh Kumar ,  Xichun Hong ,  Selvakumar Sivaraj ,  Vamshi Krishna Voruganti ,  John E. Drake

IPC: H04L45/28 ,  H04L12/46 ,  H04L41/0668

CPC classification number: H04L45/28 ,  H04L12/4633 ,  H04L12/4675 ,  H04L41/0668

Abstract: Techniques are described for providing fast reroute for traffic in EVPN-VXLAN. For example, a backup PE device of an Ethernet segment is configured with an additional tunnel endpoint address (“reroute tunnel endpoint address”) for a backup path associated with a second split-horizon group that is different than a tunnel endpoint address and first split-horizon group for another path used for normal traffic forwarding. The backup PE device sends the reroute tunnel endpoint address to a primary PE device of the Ethernet segment, which uses the reroute tunnel endpoint address to configure a backup path to the backup PE device over the core network. For example, the primary PE device may install the reroute tunnel endpoint address within its forwarding plane and one or more operations to cause the primary PE device to encapsulate a VXLAN header including the reroute tunnel endpoint address when rerouting the packet along the backup path.

公开(公告)号：US11799772B2

公开(公告)日：2023-10-24

申请号：US17391798

申请日：2021-08-02

Applicant: Juniper Networks, Inc.

Inventor： John E. Drake

IPC: H04L12/715 ,  H04L12/46 ,  H04L45/64 ,  H04L12/66 ,  H04L45/02 ,  H04L45/745

CPC classification number: H04L45/64 ,  H04L12/4641 ,  H04L12/66 ,  H04L45/02 ,  H04L45/745

Abstract: Techniques are described for supporting multiple virtual networks over an underlay network. The techniques may provide support for network slicing and enhanced virtual private networks (VPNs) over an underlay network. In general, the techniques include allocating a subset of resources (e.g., nodes and/or links) of the underlay network to a particular virtual network, and advertising the subset of resources to provider edge (PE) routers that are participating in the virtual network. A network controller device may advertise the subset of resources for the virtual network to the respective PE routers using BGP-LS (Border Gateway Protocol-Link State). Based on the advertisements, each of the PE routers generates a restricted view of the full underlay network topology for the virtual network and, thus, only uses the subset of resources in the restricted view to generate routing and forwarding tables for the virtual network.

公开(公告)号：US11310145B1

公开(公告)日：2022-04-19

申请号：US17005985

申请日：2020-08-28

Applicant: Juniper Networks, Inc.

Inventor： Wen Lin ,  John E. Drake

IPC: H04L12/751 ,  H04L12/741 ,  H04L12/721 ,  H04L45/02 ,  H04L45/00 ,  H04L45/12

Abstract: A disclosed method may include (1) identifying, by a PE router, a conditional advertisement policy that requires installation of at least one address of an active service appliance within a routing table to trigger advertising a route for the active service appliance to one or more additional PE routers, (2) inspecting the routing table for the installation of the address of the active service appliance, (3) determining, based at least in part on the inspection, that the address of the active service appliance is installed in the routing table, (4) determining that the PE router has satisfied the conditional advertisement policy due at least in part to the address of the active service appliance being installed in the routing table, and then in response, (5) directing the PE router to advertise the route to the additional PE routers. Various other apparatuses, systems, and methods are also disclosed.

公开(公告)号：US20200267078A1

公开(公告)日：2020-08-20

申请号：US16395656

申请日：2019-04-26

Applicant: Juniper Networks, Inc.

Inventor： John E. Drake

IPC: H04L12/715 ,  H04L12/46 ,  H04L12/741 ,  H04L12/751 ,  H04L12/66

Abstract: Techniques are described for supporting multiple virtual networks over an underlay network. The techniques may provide support for network slicing and enhanced virtual private networks (VPNs) over the underlay network. In general, the techniques include allocating a subset of resources (e.g., nodes and/or links) of the underlay network to a particular virtual network, and advertising the subset of resources to provider edge (PE) routers that are participating in the virtual network. A network controller device may advertise the subset of resources for the virtual network to the respective PE routers using BGP-LS (Border Gateway Protocol-Link State). Based on the advertisements, each of the PE routers generates a restricted view of the full underlay network topology for the virtual network and, thus, only uses the subset of resources in the restricted view to generate routing and forwarding tables for the virtual network.

公开(公告)号：US10187304B2

公开(公告)日：2019-01-22

申请号：US15058416

申请日：2016-03-02

Applicant: Juniper Networks, Inc.

Inventor： Manoj Sharma ,  Wen Lin ,  Nitin Singh ,  John E. Drake

IPC: H04L12/753 ,  H04L12/46 ,  H04L12/715 ,  H04L12/18 ,  H04L12/741 ,  H04L12/721

Abstract: A device may receive, from a first device associated with a first LAN, network traffic destined for a second LAN. The device may provide the first LAN with access to a core network. The device may not provide the second LAN with access to the core network. The device may identify, based on the network traffic, a Layer 3 address associated with a second device. The second device may be associated with the second LAN. The device may determine that the first device is categorized as a leaf device within an Ethernet Tree provided by the device. The device may determine, based on the Layer 3 address, that the second device is categorized as a leaf device within the Ethernet Tree. The device may drop the network traffic based on determining that the first device and the second device are categorized as leaf devices within the Ethernet Tree.

公开(公告)号：US10142239B2

公开(公告)日：2018-11-27

申请号：US15444005

申请日：2017-02-27

Applicant: Juniper Networks, Inc.

Inventor： Vikram Nagarajan ,  Levinh Hoang ,  John E. Drake ,  Kapil Arora ,  Princy T. Elizabeth

IPC: H04L12/28 ,  H04L12/801 ,  H04L12/761 ,  H04L12/24 ,  H04L12/725

Abstract: Techniques are disclosed for handling withdrawals of Border Gateway Protocol (BGP) join synch routes used to synchronize multicast group join requests. In one example, a first provider edge (PE) router of a plurality of PE routers on an Ethernet segment of an Ethernet Virtual Private Network (EVPN) receives, from a second PE router, a withdrawal of a BGP join synch route. In response, the first PE router determines whether a disruption event or a multicast state timeout event at the second PE router caused the withdrawal. If the disruption event caused the withdrawal, the first PE router retains a multicast state for the multicast group and forwards multicast traffic for the multicast group to a customer edge (CE) router multi-homed to the plurality of the PE routers. If the multicast state timeout event caused the withdrawal, the first PE router deletes the multicast state and stops forwarding the multicast traffic.

公开(公告)号：US20180248803A1

公开(公告)日：2018-08-30

申请号：US15444005

申请日：2017-02-27

Applicant: Juniper Networks, Inc.

Inventor： Vikram Nagarajan ,  Levinh Hoang ,  John E. Drake ,  Kapil Arora ,  Princy T. Elizabeth

IPC: H04L12/801 ,  H04L12/761

CPC classification number: H04L47/18 ,  H04L41/085 ,  H04L45/16 ,  H04L45/28 ,  H04L45/30 ,  H04L45/66

Abstract: Techniques are disclosed for handling withdrawals of Border Gateway Protocol (BGP) join synch routes used to synchronize multicast group join requests. In one example, a first provider edge (PE) router of a plurality of PE routers on an Ethernet segment of an Ethernet Virtual Private Network (EVPN) receives, from a second PE router, a withdrawal of a BGP join synch route. In response, the first PE router determines whether a disruption event or a multicast state timeout event at the second PE router caused the withdrawal. If the disruption event caused the withdrawal, the first PE router retains a multicast state for the multicast group and forwards multicast traffic for the multicast group to a customer edge (CE) router multi-homed to the plurality of the PE routers. If the multicast state timeout event caused the withdrawal, the first PE router deletes the multicast state and stops forwarding the multicast traffic.

公开(公告)号：US09985838B2

公开(公告)日：2018-05-29

申请号：US15083732

申请日：2016-03-29

Applicant: Juniper Networks, Inc.

Inventor： Wen Lin ,  John E. Drake ,  Sunil Kumar Malali ,  Kapil Arora ,  Vikram Nagarajan

IPC: H04L12/24 ,  H04L29/12 ,  H04L12/46 ,  H04L12/715 ,  H04L12/721 ,  H04L12/751 ,  H04L12/741

CPC classification number: H04L41/12 ,  H04L12/46 ,  H04L12/4625 ,  H04L45/02 ,  H04L45/54 ,  H04L45/64 ,  H04L45/66 ,  H04L61/2084 ,  H04L61/6004 ,  H04L61/6022

Abstract: The techniques described are directed to providing mass withdrawal of media access control (MAC) routes for network devices in an Ethernet virtual private network data center interconnect (EVPN DCI). MAC routes to reach the learned MAC addresses are stored in routing tables with corresponding top-of-rack Ethernet segment identifier (TOR-ESI) values that represent the Ethernet segments from where the MAC addresses were learned. A provider edge (PE) network device may configure and advertise a virtual Ethernet segment identifier (vESI) that includes a plurality of TOR-ESI values. As Ethernet segments of the data center become unavailable, the corresponding TOR-ESI values may be withdrawn from the vESI to form an updated vESI. In this way, MAC routes having a TOR-ESI value that was withdrawn from the vESI may be removed from the routing tables in each of the network devices.

公开(公告)号：US09948472B2

公开(公告)日：2018-04-17

申请号：US14580185

申请日：2014-12-22

Applicant: Juniper Networks, Inc.

Inventor： John E. Drake ,  Zhaohui Zhang ,  Wen Lin ,  Tapraj Singh

IPC: G06F15/173 ,  H04L12/18 ,  H04L12/46 ,  H04L12/761

CPC classification number: H04L12/18 ,  H04L12/1886 ,  H04L12/4641 ,  H04L12/4654 ,  H04L45/16

Abstract: Techniques are described for utilizing Protocol Independent Multicast Sparse Mode (PIM-SM) to transport BUM (broadcast, unknown unicast, and multicast) traffic in a Virtual Extensible LAN (VXLAN) underlay of a data center, where the BUM traffic is received on active-active, multi-homed Ethernet virtual private network (EVPN) interconnects between multiple physical data centers. For example, the techniques may readily be applied to support usage of PIM-SM where provider edge (PE) routers of the EVPN operate as gateways between the EVPN and the VXLAN spanning the data center interconnect.

公开(公告)号：US09397931B1

公开(公告)日：2016-07-19

申请号：US13969226

申请日：2013-08-16

Applicant: Juniper Networks, Inc.

Inventor： Satya Ranjan Mohanty ,  John E. Drake ,  Manish Gupta ,  Nadeem Mohammad ,  Wen Lin

IPC: H04L12/703 ,  H04L12/753 ,  H04L12/721 ,  H04L12/707 ,  H04L12/46

CPC classification number: H04L45/28 ,  H04L12/4625 ,  H04L45/02 ,  H04L45/22 ,  H04L45/44 ,  H04L45/48 ,  H04L45/66

Abstract: In general, techniques are described for performing a mass withdrawal of media access control (MAC) addresses using a reduced number of route withdrawal messages within a singly-homed segment of an Ethernet Virtual Private Network (EVPN). The techniques may include determining a segment identifier of the segment and sending a route advertisement to advertise a route for the segment identifier to a provider edge network device. The techniques may include sending a route advertisement to advertise one or more media access control (MAC) routes for the layer two segment. The techniques may also include, responsive to determining a link failure between a first provider edge network device and a customer edge network device, sending a withdrawal message to the second provider edge network device for the route associated with the segment identifier to withdraw all of the plurality of MAC routes at the second provider edge network device.

Abstract translation: 一般来说，描述了使用在以太网虚拟专用网（EVPN）的单个归属段内使用减少数量的路由提取消息来执行媒体访问控制（MAC）地址的大规模提取的技术。 这些技术可以包括确定段的段标识符并且发送路由通告以将段标识符的路由通告给提供者边缘网络设备。 这些技术可以包括发送路由通告以通告用于第二层的一个或多个媒体访问控制（MAC）路由。 所述技术还可以包括响应于确定第一提供商边缘网络设备和客户边缘网络设备之间的链路故障，向与第二提供商边缘网络设备发送与段标识符相关联的路由的提取消息以撤回所有 在第二提供商边缘网络设备处的多个MAC路由。