公开(公告)号：US09491094B2

公开(公告)日：2016-11-08

申请号：US14037143

申请日：2013-09-25

Applicant: Cisco Technology, Inc.

Inventor： Sourabh Suresh Patwardhan ,  Maithili Narasimha ,  Suraj Nellikar

IPC: H04L12/721 ,  H04L12/727 ,  H04L12/725

CPC classification number: H04L45/44 ,  H04L45/121 ,  H04L45/308

Abstract: An example method for path optimization in distributed service chains in a network environment is provided and includes receiving information about inter-node latency of a distributed service chain in a network environment comprising a distributed virtual switch (DVS), where the inter-node latency is derived at least from packet headers of respective packets traversing a plurality of service nodes comprising the distributed service chain, and modifying locations of the service nodes in the DVS to reduce the inter-node latency. In specific embodiments, the method further includes storing and time-stamping a path history of each packet in a network service header portion of the respective packet header. A virtual Ethernet Module (VEM) of the DVS stores and time-stamps the path history and a last VEM in the distributed service chain calculates runtime traffic latencies from the path history and sends the calculated runtime traffic latencies to a virtual supervisor module.

Abstract translation: 提供了一种在网络环境中的分布式服务链中的路径优化的示例方法，包括在包括分布式虚拟交换机（DVS）的网络环境中接收关于分布式服务链的节点间延迟的信息，其中节点间等待时间 至少从穿过包括分布式服务链的多个服务节点的各个分组的分组报头导出，以及修改DVS中的服务节点的位置以减少节点间等待时间。 在具体实施例中，该方法还包括在相应分组报头的网络服务报头部分中存储和时间戳每个分组的路径历史。 DVS的虚拟以太网模块（VEM）存储并对路径历史进行时间戳，并且分布式服务链中的最后一个VEM从路径历史中计算运行时流量延迟，并将计算的运行时流量延迟发送到虚拟主管模块。

公开(公告)号：US20180013675A1

公开(公告)日：2018-01-11

申请号：US15695713

申请日：2017-09-05

Applicant: Cisco Technology, Inc.

Inventor： Suraj Nellikar ,  Maithili Narasimha

IPC: H04L12/741 ,  H04L12/24 ,  G06F9/455 ,  H04L12/931 ,  H04L12/721 ,  H04L12/26 ,  H04L29/12

CPC classification number: H04L45/745 ,  G06F9/45558 ,  G06F2009/4557 ,  G06F2009/45595 ,  H04L41/12 ,  H04L43/08 ,  H04L43/12 ,  H04L45/66 ,  H04L49/70 ,  H04L61/2007 ,  H04L61/2038 ,  H04L61/2076 ,  H04L61/6022

Abstract: Systems, methods, and computer-readable media provide for collection of statistics relating to network traffic between virtual machines (VMs) in a network. In an example embodiment, a virtual switch hosted on a physical server provides network address information of VMs deployed on the physical server to a virtual switch controller. The controller collects this network address information from each virtual switch under its control, and distributes the aggregate address information to each switch. In this manner, the controller and each switch within the controller's domain can learn the network address information of each VM deployed on physical servers hosting switches under the controller's control. Each virtual switch can determine a classification of a frame passing through the switch (e.g., intra-server, inter-server and intra-domain, or inter-domain traffic), and statistics relating to the traffic. In an example embodiment, the virtual switch controller can collect the statistics from each switch within its domain.

公开(公告)号：US20150012998A1

公开(公告)日：2015-01-08

申请号：US13935314

申请日：2013-07-03

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Suraj Nellikar ,  Maithili Narasimha

IPC: H04L29/06

CPC classification number: H04L63/0245 ,  H04L49/356 ,  H04L49/70 ,  H04L63/101 ,  H04L63/102 ,  H04L63/108 ,  H04L63/1408 ,  H04L63/162 ,  H04L63/20

Abstract: An example method is provided and, in an example embodiment, includes receiving a data packet at an ingress switch function, the data packet associated with a data packet flow; obtaining access control information associated with a destination of the data packet flow from a centralized service engine; and performing access filtering on the data packet flow at the ingress switch function using the access control information.

Abstract translation: 提供了一种示例性方法，并且在示例实施例中，包括以入口切换功能接收与数据分组流相关联的数据分组的数据分组; 从集中式服务引擎获取与数据分组流的目的地相关联的访问控制信息; 并使用访问控制信息对入口切换功能的数据分组流执行访问过滤。

公开(公告)号：US09380025B2

公开(公告)日：2016-06-28

申请号：US13935314

申请日：2013-07-03

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Suraj Nellikar ,  Maithili Narasimha

IPC: G06F9/00 ,  G06F15/16 ,  G06F17/00 ,  H04L29/06 ,  H04L12/931

CPC classification number: H04L63/0245 ,  H04L49/356 ,  H04L49/70 ,  H04L63/101 ,  H04L63/102 ,  H04L63/108 ,  H04L63/1408 ,  H04L63/162 ,  H04L63/20

Abstract: An example method is provided and, in an example embodiment, includes receiving a data packet at an ingress switch function, the data packet associated with a data packet flow; obtaining access control information associated with a destination of the data packet flow from a centralized service engine; and performing access filtering on the data packet flow at the ingress switch function using the access control information.

Abstract translation: 提供了一种示例性方法，并且在示例实施例中，包括以入口切换功能接收与数据分组流相关联的数据分组的数据分组; 从集中式服务引擎获取与数据分组流的目的地相关联的访问控制信息; 并使用访问控制信息对入口切换功能的数据分组流执行访问过滤。

公开(公告)号：US20150089082A1

公开(公告)日：2015-03-26

申请号：US14037143

申请日：2013-09-25

Applicant: Cisco Technology, Inc.

Inventor： Sourabh Suresh Patwardhan ,  Maithili Narasimha ,  Suraj Nellikar

IPC: H04L12/721 ,  H04L29/12

CPC classification number: H04L45/44 ,  H04L45/121 ,  H04L45/308

Abstract: An example method for path optimization in distributed service chains in a network environment is provided and includes receiving information about inter-node latency of a distributed service chain in a network environment comprising a distributed virtual switch (DVS), where the inter-node latency is derived at least from packet headers of respective packets traversing a plurality of service nodes comprising the distributed service chain, and modifying locations of the service nodes in the DVS to reduce the inter-node latency. In specific embodiments, the method further includes storing and time-stamping a path history of each packet in a network service header portion of the respective packet header. A virtual Ethernet Module (VEM) of the DVS stores and time-stamps the path history and a last VEM in the distributed service chain calculates runtime traffic latencies from the path history and sends the calculated runtime traffic latencies to a virtual supervisor module.

Abstract translation: 提供了一种在网络环境中的分布式服务链中的路径优化的示例方法，包括在包括分布式虚拟交换机（DVS）的网络环境中接收关于分布式服务链的节点间延迟的信息，其中节点间等待时间 至少从穿过包括分布式服务链的多个服务节点的各个分组的分组报头导出，以及修改DVS中的服务节点的位置以减少节点间等待时间。 在具体实施例中，该方法还包括在相应分组报头的网络服务报头部分中存储和时间戳每个分组的路径历史。 DVS的虚拟以太网模块（VEM）存储并对路径历史进行时间戳，并且分布式服务链中的最后一个VEM从路径历史中计算运行时流量延迟，并将计算的运行时流量延迟发送到虚拟主管模块。

公开(公告)号：US11438236B2

公开(公告)日：2022-09-06

申请号：US17015395

申请日：2020-09-09

Applicant: Cisco Technology, Inc.

Inventor： Joji Thomas Mekkattuparamban ,  Suraj Nellikar

IPC: H04L12/24 ,  H04L41/0896 ,  H04L43/0876 ,  H04W76/34 ,  H04L43/16 ,  H04L43/106

Abstract: Systems, methods, and computer-readable storage media are provided for managing connected data transfer sessions in a computing network. A controller included in the computing network can monitor connected data transfer sessions to determine whether a predetermined threshold has been met or exceeded and, if so, terminate at least one connected data transfer session in the computing network. The threshold can include a threshold number of connected data communication sessions and/or a threshold amount of resources utilized by the connected data communication sessions. The controller can terminate connected data transfer sessions until the total number of connected data communication sessions and/or threshold amount of resources falls below the threshold.

公开(公告)号：US10791031B2

公开(公告)日：2020-09-29

申请号：US14794523

申请日：2015-07-08

Applicant: Cisco Technology, Inc.

Inventor： Joji Thomas Mekkattuparamban ,  Suraj Nellikar

IPC: H04L12/26 ,  H04L12/24 ,  H04W76/34

Abstract: Systems, methods, and computer-readable storage media are provided for managing connected data transfer sessions in a computing network. A controller included in the computing network can monitor connected data transfer sessions to determine whether a predetermined threshold has been met or exceeded and, if so, terminate at least one connected data transfer session in the computing network. The threshold can include a threshold number of connected data communication sessions and/or a threshold amount of resources utilized by the connected data communication sessions. The controller can terminate connected data transfer sessions until the total number of connected data communication sessions and/or threshold amount of resources falls below the threshold.

公开(公告)号：US10659358B2

公开(公告)日：2020-05-19

申请号：US15695713

申请日：2017-09-05

Applicant: Cisco Technology, Inc.

Inventor： Suraj Nellikar ,  Maithili Narasimha

IPC: H04L12/741 ,  H04L12/931 ,  H04L12/721 ,  H04L12/26 ,  H04L12/24 ,  G06F9/455 ,  H04L29/12

Abstract: Systems, methods, and computer-readable media provide for collection of statistics relating to network traffic between virtual machines (VMs) in a network. In an example embodiment, a virtual switch hosted on a physical server provides network address information of VMs deployed on the physical server to a virtual switch controller. The controller collects this network address information from each virtual switch under its control, and distributes the aggregate address information to each switch. In this manner, the controller and each switch within the controller's domain can learn the network address information of each VM deployed on physical servers hosting switches under the controller's control. Each virtual switch can determine a classification of a frame passing through the switch (e.g., intra-server, inter-server and intra-domain, or inter-domain traffic), and statistics relating to the traffic. In an example embodiment, the virtual switch controller can collect the statistics from each switch within its domain.

公开(公告)号：US09781037B2

公开(公告)日：2017-10-03

申请号：US14855263

申请日：2015-09-15

Applicant: Cisco Technology, Inc.

Inventor： Suraj Nellikar ,  Maithili Narasimha

IPC: H04L12/28 ,  H04L12/741 ,  H04L12/931 ,  H04L12/721 ,  H04L12/26 ,  H04L12/24 ,  G06F9/455 ,  H04L29/12

CPC classification number: H04L45/745 ,  G06F9/45558 ,  G06F2009/4557 ,  G06F2009/45595 ,  H04L41/12 ,  H04L43/08 ,  H04L43/12 ,  H04L45/66 ,  H04L49/70 ,  H04L61/2007 ,  H04L61/2038 ,  H04L61/2076 ,  H04L61/6022

Abstract: Systems, methods, and computer-readable media provide for collection of statistics relating to network traffic between virtual machines (VMs) in a network. In an example embodiment, a virtual switch hosted on a physical server provides network address information of VMs deployed on the physical server to a virtual switch controller. The controller collects this network address information from each virtual switch under its control, and distributes the aggregate address information to each switch. In this manner, the controller and each switch within the controller's domain can learn the network address information of each VM deployed on physical servers hosting switches under the controller's control. Each virtual switch can determine a classification of a frame passing through the switch (e.g., intra-server, inter-server and intra-domain, or inter-domain traffic), and statistics relating to the traffic. In an example embodiment, the virtual switch controller can collect the statistics from each switch within its domain.

公开(公告)号：US20170078198A1

公开(公告)日：2017-03-16

申请号：US14855263

申请日：2015-09-15

Applicant: Cisco Technology, Inc.

Inventor： Suraj Nellikar ,  Maithili Narasimha

IPC: H04L12/741 ,  H04L12/721 ,  G06F9/455 ,  H04L29/12 ,  H04L12/24 ,  H04L12/931 ,  H04L12/26

CPC classification number: H04L45/745 ,  G06F9/45558 ,  G06F2009/4557 ,  G06F2009/45595 ,  H04L41/12 ,  H04L43/08 ,  H04L43/12 ,  H04L45/66 ,  H04L49/70 ,  H04L61/2007 ,  H04L61/2038 ,  H04L61/2076 ,  H04L61/6022

Abstract: Systems, methods, and computer-readable media provide for collection of statistics relating to network traffic between virtual machines (VMs) in a network. In an example embodiment, a virtual switch hosted on a physical server provides network address information of VMs deployed on the physical server to a virtual switch controller. The controller collects this network address information from each virtual switch under its control, and distributes the aggregate address information to each switch. In this manner, the controller and each switch within the controller's domain can learn the network address information of each VM deployed on physical servers hosting switches under the controller's control. Each virtual switch can determine a classification of a frame passing through the switch (e.g., intra-server, inter-server and intra-domain, or inter-domain traffic), and statistics relating to the traffic. In an example embodiment, the virtual switch controller can collect the statistics from each switch within its domain.

Abstract translation: 系统，方法和计算机可读介质提供了与网络中的虚拟机（VM）之间的网络流量相关的统计信息的收集。 在示例实施例中，托管在物理服务器上的虚拟交换机将部署在物理服务器上的VM的网络地址信息提供给虚拟交换机控制器。 控制器从其控制下的每个虚拟交换机收集该网络地址信息，并将聚合地址信息分配给每个交换机。 以这种方式，控制器域内的控制器和每个交换机可以在控制器控制下学习托管交换机的物理服务器上部署的每个VM的网络地址信息。 每个虚拟交换机可以确定通过交换机的帧的分类（例如，服务器内部，服务器间和域内或域间流量）以及与业务有关的统计。 在示例实施例中，虚拟交换机控制器可以从其域内的每个交换机收集统计信息。