公开(公告)号：US20180191615A1

公开(公告)日：2018-07-05

申请号：US15910804

申请日：2018-03-02

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Suran Saminda de Silva ,  Chiajen Tsai ,  Liqin Dong ,  Yibin Yang

IPC: H04L12/741 ,  H04L12/713 ,  H04L12/46

CPC classification number: H04L45/74 ,  H04L12/4641 ,  H04L45/54 ,  H04L45/586

Abstract: Packet transmission techniques are disclosed herein. An exemplary method includes receiving a packet that identifies an internet protocol (IP) address assigned to more than one destination node; selecting a virtual routing and forwarding table based, at least in part, on a segmentation identification in the packet; identifying a designated destination node in the packet based, at least in part, on the selected virtual routing and forwarding table; and transmitting the packet to the designated destination node.

公开(公告)号：US20180159781A1

公开(公告)日：2018-06-07

申请号：US15367317

申请日：2016-12-02

Applicant: Cisco Technology, Inc.

Inventor： Munish Mehta ,  Saurabh Jain ,  Praveen Jain ,  Ronak K. Desai ,  Yibin Yang

IPC: H04L12/815 ,  H04L12/24 ,  H04L12/761 ,  H04L12/931

Abstract: Presented herein are traffic pruning techniques that define the pruning at the group level. A software defined network (SDN) controller determines first and second endpoint groups (EPGs) of an SDN associated with the SDN controller. The SDN runs on a plurality of networking devices that interconnect a plurality of endpoints that are each attached to one or more host devices. The SDN controller determines a host-EPG mapping for the SDN, as well as a networking device-host mapping for the SDN. The SDN controller then uses the host-EPG mapping, the networking device-host mapping, and one or more group-based policies associated with traffic sent from the first EPG to the second EPG to compute hardware pruning policies defining how to prune multi-destination traffic sent from the first EPG to the second EPG. The hardware pruning policies are then installed in one or more of the networking devices or the host devices.

公开(公告)号：US20180139150A1

公开(公告)日：2018-05-17

申请号：US15353093

申请日：2016-11-16

Applicant: Cisco Technology, Inc.

Inventor： Saurabh Jain ,  Vijay K. Chander ,  Vijayan Ramakrishnan ,  Ronak K. Desai ,  Praveen Jain ,  Munish Mehta ,  Yibin Yang

IPC: H04L12/919 ,  H04L12/24 ,  H04L12/26

CPC classification number: H04L47/765 ,  H04L41/0823 ,  H04L41/0896 ,  H04L41/12

Abstract: The techniques presented herein use dynamic endpoint group (EPG) binding changes to facilitate cross-tenant resource sharing. A first node of a multi-tenant software defined network determines that an application on a first endpoint has initiated operation and needs temporary access to resources located at a second endpoint. The first and second endpoints are associated with first and second tenants, respectively, that are logically segregated from one another by the software defined network. The first node dynamically changes an initial EPG binding associated with the first endpoint to a second EPG binding that enables the first endpoint to temporarily directly access the resources at the second endpoint. The first node subsequently determines that the application on the first endpoint no longer needs access to the resources located at a second endpoint and, as such, changes the second EPG binding associated with the first endpoint back to the initial EPG binding.

公开(公告)号：US20180013670A1

公开(公告)日：2018-01-11

申请号：US15711812

申请日：2017-09-21

Applicant: Cisco Technology, Inc.

Inventor： Shyam Kapadia ,  Liqin Dong ,  Yibin Yang

IPC: H04L12/715 ,  H04L12/24 ,  H04L12/46 ,  H04L12/741 ,  H04L12/721

CPC classification number: H04L45/64 ,  H04L12/46 ,  H04L12/4625 ,  H04L12/4633 ,  H04L41/04 ,  H04L45/38 ,  H04L45/66 ,  H04L45/74

Abstract: Systems, methods, and computer-readable media for OAM in overlay networks. In response to receiving a packet associated with an OAM operation from a device in an overlay network, the system generates an OAM packet. The system can be coupled with the overlay network and can include a tunnel endpoint interface associated with an underlay address and a virtual interface associated with an overlay address. The overlay address can be an anycast address assigned to the system and another device in the overlay network. Next, the system determines that a destination address associated with the packet is not reachable through the virtual interface, the destination address corresponding to a destination node in the overlay network. The system also determines that the destination address is reachable through the tunnel endpoint interface. The system then provides the underlay address associated with the tunnel endpoint interface as a source address in the OAM packet.

公开(公告)号：US20170346736A1

公开(公告)日：2017-11-30

申请号：US15208018

申请日：2016-07-12

Applicant: Cisco Technology, Inc.

Inventor： Vijay Chander ,  Yibin Yang ,  Praveen Jain ,  Munish Mehta

IPC: H04L12/741 ,  H04L12/46

CPC classification number: H04L45/745 ,  H04L12/4633 ,  H04L12/4641 ,  H04L45/74

Abstract: According to one or more embodiments of this disclosure, a network controller in a data center network establishes a translation table for in-band traffic in a data center network, the translation table resolves ambiguous network addresses based on one or more of a virtual network identifier (VNID), a routable tenant address, or a unique loopback address. The network controller device receives packets originating from applications and/or an endpoints operating in a network segment associated with a VNID. The network controller device translates, using the translation table, unique loopback addresses and/or routable tenant addresses associated with the packets into routable tenant addresses and/or unique loopback addresses, respectively.

公开(公告)号：US09800497B2

公开(公告)日：2017-10-24

申请号：US14723291

申请日：2015-05-27

Applicant: Cisco Technology, Inc.

Inventor： Shyam Kapadia ,  Liqin Dong ,  Yibin Yang

IPC: H04L12/715 ,  H04L12/721 ,  H04L12/24 ,  H04L12/46 ,  H04L12/741

CPC classification number: H04L45/64 ,  H04L12/46 ,  H04L12/4625 ,  H04L12/4633 ,  H04L41/04 ,  H04L45/38 ,  H04L45/66 ,  H04L45/74

Abstract: Systems, methods, and computer-readable media for OAM in overlay networks. In response to receiving a packet associated with an OAM operation from a device in an overlay network, the system generates an OAM packet. The system can be coupled with the overlay network and can include a tunnel endpoint interface associated with an underlay address and a virtual interface associated with an overlay address. The overlay address can be an anycast address assigned to the system and another device in the overlay network. Next, the system determines that a destination address associated with the packet is not reachable through the virtual interface, the destination address corresponding to a destination node in the overlay network. The system also determines that the destination address is reachable through the tunnel endpoint interface. The system then provides the underlay address associated with the tunnel endpoint interface as a source address in the OAM packet.

公开(公告)号：US09660941B2

公开(公告)日：2017-05-23

申请号：US15095430

申请日：2016-04-11

Applicant: Cisco Technology, Inc.

Inventor： Yibin Yang ,  Liqin Dong ,  Chia Tsai

IPC: H04L12/931 ,  H04L12/751 ,  H04L12/24

CPC classification number: H04L49/70 ,  H04L41/0813 ,  H04L45/02

Abstract: Techniques are provided for managing movements of virtual machines in a network. At a first switch, a virtual machine (VM) is detected. The VM is hosted by a physical server coupled to the first switch. A message is sent to other switches and it indicates that the VM is hosted by the physical server. When the first switch is paired with a second switch as a virtual port channel (vPC) pair, the message includes a switch identifier that identifies the second switch. A receiving switch receives the message from a source switch in the network comprising a route update associated with the VM. A routing table of the receiving switch is evaluated to determine whether the host route is associated with a server facing the physical port. The message is examined to determine it contains the switch identifier.

公开(公告)号：US09565105B2

公开(公告)日：2017-02-07

申请号：US14018134

申请日：2013-09-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Shyam Kapadia ,  Puto H. Subagio ,  Yibin Yang ,  Nilesh Shah ,  Vipin Jain ,  Ashutosh Agrawal

IPC: H04L12/741 ,  H04L12/56

CPC classification number: H04L45/745 ,  H04L45/741

Abstract: An example method for implementation of virtual extensible local area network (VXLAN) in top-of-rack (ToR) switches in a network environment is provided and includes receiving a packet encapsulated with a VXLAN header having an unknown virtual tunnel endpoint (VTEP) Internet Protocol (IP) address in a network environment, and installing an entry at an index location of a forwarding table. The index location includes an encoding of the VTEP-IP address as a VTEP index (VTEP-IDX), and the entry maps a VXLAN interface to an IP address associated with a VXLAN network identifier (VNI). In specific embodiments, the VTEP-IDX is log N bits, where N is a size of the forwarding table. The forwarding table indicates a destination VTEP IP address when encapsulating the packet, and the source VTEP IP address when decapsulating the packet.

Abstract translation: 提供了一种用于在网络环境中在机架（ToR）交换机中实现虚拟可扩展局域网（VXLAN）的示例性方法，包括接收使用具有未知虚拟隧道端点（VTEP）Internet的VXLAN头封装的分组 网络环境中的协议（IP）地址，以及在转发表的索引位置安装条目。 索引位置包括作为VTEP索引（VTEP-IDX）的VTEP-IP地址的编码，并且该条目将VXLAN接口映射到与VXLAN网络标识符（VNI）相关联的IP地址。 在具体实施例中，VTEP-IDX是日志N比特，其中N是转发表的大小。 转发表在封装数据包时指示目标VTEP IP地址，解封装数据包时的源VTEP IP地址。

公开(公告)号：US20160323123A1

公开(公告)日：2016-11-03

申请号：US15209354

申请日：2016-07-13

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Shyam Kapadia ,  Rick Chang ,  Yibin Yang ,  Rajesh Babu Nataraja

IPC: H04L12/46 ,  H04L12/753 ,  H04L12/24

CPC classification number: H04L12/4641 ,  H04L12/4625 ,  H04L12/4633 ,  H04L41/0803 ,  H04L41/0816 ,  H04L41/12 ,  H04L41/26 ,  H04L45/48 ,  H04L49/354

Abstract: In accordance with one example embodiment, there is provided a system configured for virtual local area network (VLAN) blocking on a virtual port channel (vPC) member link to handle discrepant virtual network instance (VNI) to VLAN mappings. In other embodiments, the system can be configured for providing Virtual Switch Interface Discovery Protocol (VDP) and virtual switch enhancements to accommodate discrepant VNI to VLAN mappings. In another example embodiment, an apparatus is provided that includes a processor, and a memory coupled to the processor, where the apparatus is configured such that if a server is connected through a virtual port channel, a VDP is used to notify the server of different VNI to VLAN mappings. In another embodiment, the apparatus can extend a VDP Filter Info Field to carry a set of VLANs mapped to a VNI, keyed by leaf MAC addresses that serve as bridge identifiers.

公开(公告)号：US20160285761A1

公开(公告)日：2016-09-29

申请号：US14674900

申请日：2015-03-31

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Liqin Dong ,  Yibin Yang

IPC: H04L12/741 ,  H04L12/46

CPC classification number: H04L45/745 ,  H04L12/4641 ,  H04L12/4666 ,  H04L45/586 ,  H04L49/354

Abstract: A method for programming a MAC address table by a first leaf node in a network comprising a plurality of leaf nodes is provided. Each leaf node comprises one or more Virtual Tunnel End Points (“VTEPs”) and instantiates a plurality of Virtual Routing and Forwarding elements (“VRFs”), with a corresponding Bridge Domain (“BD”) assigned to each VRF. The method includes obtaining information indicating one or more VTEP Affinity Groups (VAGs), each VAG comprising an identification of one VTEP per leaf node, obtaining information indicating assignment of each VRF to one of the VAGs, assigning each VAG to a unique Filtering Identifier (“FID”), thereby generating one or more FIDs, and programming the MAC address table, using FIDs instead of BDs, by populating the MAC address table with a plurality of entries, each entry comprising a unique combination of a FID and a MAC address of a leaf node.