公开(公告)号：US10091102B2

公开(公告)日：2018-10-02

申请号：US13737641

申请日：2013-01-09

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Michael Behringer ,  Aswini Kumar Sattaluri

IPC: H04L12/741 ,  H04L12/715 ,  H04L12/721 ,  H04L29/06 ,  H04L12/46

Abstract: In one implementation, sub-interfaces are defined in Layer three (L3) tunnels, such as generic routing encapsulization (GRE) or Internet protocol security (IPsec) tunnels. Sub-interfaces inside a L3 tunnel may be preferred to using several L3 tunnels. The flow label of the tunnel header is used to define sub-interfaces of a tunnel interface. The flow label is populated with a routing instance identifier to index the sub-interfaces.

公开(公告)号：US20180255092A1

公开(公告)日：2018-09-06

申请号：US15446707

申请日：2017-03-01

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Eric Levy-Abegnoli ,  Eliot Lear ,  Brian E. Weis

IPC: H04L29/06 ,  H04L29/12

CPC classification number: H04L63/1458 ,  H04L61/103 ,  H04L61/1511 ,  H04L61/2015 ,  H04L63/10 ,  H04L63/102

Abstract: In one embodiment, a device in a network inserts a profile tag into an address request sent by an endpoint node in the network to a lookup service. The lookup service is configured to identify one or more addresses with which the endpoint node is authorized to communicate based on a profile for the endpoint node associated with the inserted profile tag. The device receives an address response sent from the lookup service to the endpoint node that indicates the set of one or more addresses with which the endpoint node is authorized to communicate. The device determines whether a communication between the endpoint node and a particular network address is authorized using the set of one or more addresses with which the endpoint node is authorized to communicate. The device blocks the communication based on a determination that the particular network address is not in the set of one or more addresses with which the endpoint node is authorized to communicate.

公开(公告)号：US20180124812A1

公开(公告)日：2018-05-03

申请号：US15341099

申请日：2016-11-02

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Simon Dyke ,  Franck Bachet ,  Guillaume Sauvage De Saint Marc

IPC: H04W72/12 ,  H04B1/69 ,  H04W72/04

CPC classification number: H04W72/1263 ,  H04B1/69 ,  H04B1/713 ,  H04B2001/6908 ,  H04W40/00 ,  H04W72/0446

Abstract: In one embodiment, a device in a network receives a time-slotted channel hopping (TSCH) communication schedule. The TSCH communication schedule is divided into a plurality of macrocells, each macrocell comprising a plurality of TSCH cells. The device receives a packet from a routing protocol child node of the device during a particular macrocell of the TSCH communication schedule that is associated with propagation of the packet through the network. In response to receiving the packet, the device claims a token associated with the particular macrocell that authorizes the device to transmit during one or more cells of the macrocell. The device transmits the received packet to a second node in the network during the authorized one or more cells of the particular macrocell.

公开(公告)号：US20180124688A1

公开(公告)日：2018-05-03

申请号：US15491203

申请日：2017-04-19

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Jean-Philippe Vasseur ,  Patrick Wetterwald ,  Eric Levy-Abegnoli

IPC: H04W48/14 ,  H04W8/24 ,  H04L1/18 ,  H04W24/02

CPC classification number: H04W48/14 ,  H04L1/18 ,  H04W24/02 ,  H04W88/08

Abstract: In one embodiment, a supervisory device in a network receives from a plurality of access points (APs) in the network data regarding a network availability request broadcast by a node seeking to access the network and received by the APs in the plurality. The supervisory device uniquely associates the node with a virtual access point (VAP) for the node and forms a VAP mapping between the VAP for the node and a set of the APs in the plurality selected based on the received data regarding the network availability request. One of the APs in the mapping is designated as a primary access point for the node. The supervisory device instructs the primary AP to send a network availability response to the node that includes information for the VAP. The node uses the information for the VAP to access the network via the set of APs in the VAP mapping.

公开(公告)号：US20180109492A1

公开(公告)日：2018-04-19

申请号：US15485673

申请日：2017-04-12

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Jean-Philippe Vasseur ,  Patrick Wetterwald ,  Eric Levy-Abegnoli

IPC: H04L29/06 ,  H04L12/46 ,  G06N99/00

CPC classification number: H04L63/029 ,  G06N20/00 ,  H04L12/4641 ,  H04L63/0236 ,  H04L63/0272 ,  H04L63/1425 ,  H04L63/1458

Abstract: In one embodiment, a server instructs one or more networking devices in a local area network (LAN) to form a virtual network overlay in the LAN that redirects traffic associated with a particular node in the LAN to the server. The server receives the redirected traffic associated with the particular node. The server trains a machine learning-based behavioral model for the particular node based on the redirected traffic. The server controls whether a particular redirected traffic flow associated with the node in the LAN is sent to a destination of the traffic flow using the trained behavioral model.

公开(公告)号：US20180063024A1

公开(公告)日：2018-03-01

申请号：US15252101

申请日：2016-08-30

Applicant: Cisco Technology, Inc.

Inventor： Pierre Pfister ,  Pascal Thubert ,  Victor Nguyen

IPC: H04L12/927 ,  H04L12/18 ,  H04L29/06

CPC classification number: H04L69/161 ,  H04L12/1868 ,  H04L2212/00

Abstract: Systems, methods, and computer-readable storage media for multi-destination TCP communications using bit indexed explicit replication (BIER). In some examples, a system can generate a TCP packet associated with a TCP session involving a set of destination devices, and encode an array of bits into the TCP packet to yield a TCP multicast packet. The array of bits can define the destination devices as destinations for the multicast packet. The system can transmit the TCP multicast packet towards the destination devices through a BIER domain. The system can receive acknowledgements from a first subset of the destination devices. Based on the acknowledgements, the system can determine that the first subset of the destination devices received the multicast packet and a second subset of the destination devices did not receive the multicast packet. The system can then retransmit the multicast packet to the second subset of the destination devices.

公开(公告)号：US09900079B2

公开(公告)日：2018-02-20

申请号：US15075562

申请日：2016-03-21

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Jerome Henry ,  Patrick Wetterwald

IPC: H04B7/14 ,  H04L1/18 ,  H04L5/00

CPC classification number: H04B7/14 ,  H04B7/15507 ,  H04L1/1812 ,  H04L5/0055 ,  H04L5/006 ,  Y02D70/00 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/22

Abstract: In one embodiment, a device in a network sets a timer interval based in part on a distance between the device and a backbone of the network. The device receives a unicast communication destined for a remote destination that was sent via broadcast. The device determines a count of receipt acknowledgements of the communication sent by other devices in the network. At the end of the timer interval, the device sends a receipt acknowledgement of the communication via broadcast, in response to the count of receipt acknowledgements sent by other devices in the network being below a threshold amount.

公开(公告)号：US20170338883A1

公开(公告)日：2017-11-23

申请号：US15160565

申请日：2016-05-20

Applicant: Cisco Technology, Inc.

Inventor： Joseph Michael Clarke ,  Gonzalo Salgueiro ,  Charles Calvin Byers ,  Ryan Steve D'Souza ,  Pascal Thubert ,  Andre Jean-Marie Surcouf ,  Jerome Henry

IPC: H04B7/15 ,  H04W40/04 ,  H04W36/22 ,  H04W84/12 ,  H04W88/08

CPC classification number: H04B7/15 ,  H04B7/15507 ,  H04B7/2606 ,  H04W24/02 ,  H04W36/22 ,  H04W40/04 ,  H04W84/12 ,  H04W88/08

Abstract: Various implementations disclosed herein enable transforming mutable wireless coverage areas using network coverage vehicles (NVCs) that are orchestrated by a network coverage controller. In various implementations, the method includes receiving coverage area performance characterization values from NCVs configured to provide a plurality of mutable wireless coverage areas. In various implementations, an arrangement of the mutable wireless coverage areas mutably defines the service area, which changes in accordance with changes to the arrangement of the mutable wireless coverage areas. In various implementations, the method also includes determining NCV operation adjustments for some of the NCVs based on the received coverage area performance characterization values in accordance with a service performance metric; and, altering an arrangement of one or more of the plurality of mutable wireless coverage areas within the service area by providing the NCV operation adjustments to some of the NCVs.

公开(公告)号：US09794167B2

公开(公告)日：2017-10-17

申请号：US14754850

申请日：2015-06-30

Applicant: Cisco Technology, Inc.

Inventor： Pascal Thubert ,  Patrice Bellagamba ,  Ijsbrand Wijnands

IPC: H04L12/705 ,  H04L12/735 ,  H04L12/707 ,  H04L12/24 ,  H04L12/751

CPC classification number: H04L45/18 ,  H04L41/0803 ,  H04L45/02 ,  H04L45/128 ,  H04L45/24

Abstract: In one embodiment, a method comprises creating, in a computing network, a loop-free routing topology comprising a plurality of routing arcs for reaching a destination network node, each routing arc comprising a first network node as a first end of the routing arc, a second network node as a second end of the routing arc, and at least a third network node configured for routing any network traffic along the routing arc toward the destination node via any one of the first or second ends of the routing arc, the loop-free routing topology providing first and second non-congruent paths; and forwarding bicasting data, comprising a data packet in a first direction from a network node and a bicasted copy of the data packet in a second direction from the network node, concurrently to the destination node respectively via the first and second non-congruent paths.

公开(公告)号：US20170195375A1

公开(公告)日：2017-07-06

申请号：US14987409

申请日：2016-01-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Pascal Thubert ,  Xiaoqing Zhu ,  Giovanna Carofiglio

IPC: H04L29/06

CPC classification number: H04L65/403 ,  H04L65/1069

Abstract: Embodiments include technologies for creating a manifest for a conferencing event in a network, adding a name tag identifying the conferencing event to the manifest, receiving an interest packet including one or more parameters indicating a named flow being produced at a source node, adding content metadata of the named flow to the manifest, and sending the manifest to the source node. Further embodiments include adding, to the manifest, session-level metadata associated with a user of the source node. Embodiments include receiving a second interest packet with one or more second parameters identifying a user of a client node, where the second interest packet indicates a request to authorize the user of the client node to subscribe to the conferencing event. In further embodiments, session-level metadata associated with the user is added to the manifest if the user is authorized to subscribe to the conferencing event.