公开(公告)号：US20220182826A1

公开(公告)日：2022-06-09

申请号：US17112264

申请日：2020-12-04

Applicant: Cisco Technology, Inc.

Inventor： Srinath Gundavelli ,  Vimal Srivastava ,  Warren Scott Wainner ,  Aeneas Sean Dodd-Noble

IPC: H04W12/06 ,  H04W28/02 ,  H04W76/15 ,  H04W76/11

Abstract: In one example, an Access Point (AP) configures a first mapping of a first cellular network connection to a first local access network group, and further configures a second mapping of a second cellular network connection to a second local access network group. The AP determines whether a user device is authorized to use the first cellular network connection or the second cellular network connection. If the user device is authorized to use the first cellular network connection, the AP associates, for the user device, a first user device identifier with the first local access network group. If the user device is authorized to use the second cellular network connection, the AP associates, for the user device, a second user device identifier with the second local access network group.

公开(公告)号：US09628379B2

公开(公告)日：2017-04-18

申请号：US14726875

申请日：2015-06-01

Applicant: Cisco Technology, Inc.

Inventor： Plamen N. Nedeltchev ,  Warren Scott Wainner ,  John T. Manville

IPC: H04L12/723 ,  H04L12/721 ,  H04L12/46 ,  H04L29/06

CPC classification number: H04L45/502 ,  H04L12/4633 ,  H04L12/4641 ,  H04L12/4645 ,  H04L45/306 ,  H04L45/50 ,  H04L45/66 ,  H04L45/72 ,  H04L67/10 ,  H04L67/28 ,  H04L69/16 ,  H04L69/22 ,  H04L2012/4629 ,  H04L2212/00

Abstract: A first customer edge network device receives an encapsulated packet that includes inner headers comprising source address information for a first service running on a first computing apparatus in a first home cloud and destination address information for a second service running on a second computing apparatus in a second home cloud. The customer edge network device inserts a predetermined portion of bits of a virtual domain identifier of the encapsulated packet into a label to form a virtual domain label for label-based routing. The virtual domain label is appended to the encapsulated packet. The encapsulated packet is sent to a first provider edge network device of a provider network. The first provider edge network device appends an virtual private network label to the encapsulated packet, and sends the encapsulated packet to a provider network device for label-based routing in the provider network.

公开(公告)号：US20160352632A1

公开(公告)日：2016-12-01

申请号：US14726875

申请日：2015-06-01

Applicant: Cisco Technology, Inc.

Inventor： Plamen N. Nedeltchev ,  Warren Scott Wainner ,  John T. Manville

IPC: H04L12/723 ,  H04L12/46 ,  H04L29/06 ,  H04L12/721

CPC classification number: H04L45/502 ,  H04L12/4633 ,  H04L12/4641 ,  H04L12/4645 ,  H04L45/306 ,  H04L45/50 ,  H04L45/66 ,  H04L45/72 ,  H04L67/10 ,  H04L67/28 ,  H04L69/16 ,  H04L69/22 ,  H04L2012/4629 ,  H04L2212/00

Abstract: A first customer edge network device receives an encapsulated packet that includes inner headers comprising source address information for a first service running on a first computing apparatus in a first home cloud and destination address information for a second service running on a second computing apparatus in a second home cloud. The customer edge network device inserts a predetermined portion of bits of a virtual domain identifier of the encapsulated packet into a label to form a virtual domain label for label-based routing. The virtual domain label is appended to the encapsulated packet. The encapsulated packet is sent to a first provider edge network device of a provider network. The first provider edge network device appends an virtual private network label to the encapsulated packet, and sends the encapsulated packet to a provider network device for label-based routing in the provider network.

Abstract translation: 第一客户边缘网络设备接收包含内部报头的封装分组，所述内部报头包括在第一家庭云中的第一计算设备上运行的第一服务的源地址信息和在第二家庭云中的第二计算设备上运行的第二服务的目的地地址信息 家庭云。 客户边缘网络设备将封装分组的虚拟域标识符的预定部分位置插入到标签中以形成用于基于标签的路由的虚拟域标签。 虚拟域标签附加到封装的数据包。 封装的分组被发送到提供商网络的第一提供商边缘网络设备。 第一个提供商边缘网络设备向封装的分组附加虚拟专用网络标签，并将封装的分组发送到提供商网络设备，以在提供商网络中进行基于标签的路由。

公开(公告)号：US20150146722A1

公开(公告)日：2015-05-28

申请号：US14087061

申请日：2013-11-22

Applicant: Cisco Technology, Inc.

Inventor： Warren Scott Wainner

IPC: H04L12/747

CPC classification number: H04L45/742 ,  H04L45/04 ,  H04L45/122

Abstract: System, method, and computer program product to perform an operation, the operation comprising capturing, at one or more peering routers, parameters for a plurality of data packets sent by a client device and specifying a destination network address, identifying which peering router captured the parameters for each of the plurality of data packets, determining, based on the identified peering routers, a first peering router nearest to the client, relative to the other peering routers, identifying a first content cache, of a plurality of content caches in a content distribution network, nearest to the first peering router, and fulfilling a content request from the client device using content stored on the first content cache.

Abstract translation: 用于执行操作的系统，方法和计算机程序产品，所述操作包括在一个或多个对等路由器处捕获由客户端设备发送的多个数据分组的参数并指定目的地网络地址，识别哪个对等路由器捕获 对于所述多个数据分组中的每一个的参数，基于所识别的对等路由器，相对于其他对等路由器最近的第一对等路由器识别内容中的多个内容高速缓存的第一内容高速缓存 分发网络，最接近第一对等路由器，以及使用存储在第一内容高速缓存上的内容从客户端设备完成内容请求。

公开(公告)号：US10904217B2

公开(公告)日：2021-01-26

申请号：US15994590

申请日：2018-05-31

Applicant: Cisco Technology, Inc.

Inventor： Michael L. Sullenberger ,  Brian Weis ,  Warren Scott Wainner ,  Shuxian Lou

IPC: H04L29/00 ,  H04L29/06 ,  H04L9/08

Abstract: A source virtual private network (VPN) gateway supports a local source subnet and communicates over a wide area network (WAN) with a destination VPN gateway that supports a local destination subnet. The source VPN gateway receives from the local source subnet an Internet Protocol (IP) packet destined for the local destination subnet, determines a security association (SA) based on a source IP address and a destination IP address of the IP packet, and encapsulates the IP packet with tunnel encapsulation including a tunnel protocol header and a tunnel outer IP header, to produce a clear-text tunnel packet. The source VPN gateway encrypts the IP packet and the tunnel protocol header but not the tunnel outer IP header using an encryption key and a security parameter index for the SA, to produce an encrypted tunnel packet, and tunnels it to the destination VPN gateway over the WAN.

公开(公告)号：US09571459B2

公开(公告)日：2017-02-14

申请号：US15133272

申请日：2016-04-20

Applicant: Cisco Technology, Inc.

Inventor： Lewis Chen ,  Warren Scott Wainner ,  Guan Deng

IPC: H04L29/06 ,  H04L9/08 ,  G06F21/60 ,  H04L12/751 ,  H04L12/773

CPC classification number: H04L63/0272 ,  G06F21/602 ,  H04L9/083 ,  H04L9/0833 ,  H04L45/02 ,  H04L45/60 ,  H04L63/0428 ,  H04L63/062

Abstract: Techniques are presented herein for optimizing secure communications in a network. A router in a virtual private network determines whether or not it has successfully registered with a key server that provides cryptographic keys for routers in the virtual private network. The router stores state information that is indicative of whether or not the router has successfully registered with the key server.

Abstract translation: 本文介绍了在网络中优化安全通信的技术。 虚拟专用网络中的路由器确定其是否已成功注册到为虚拟专用网络中的路由器提供加密密钥的密钥服务器。 路由器存储指示路由器是否已成功向密钥服务器注册的状态信息。

公开(公告)号：US09531773B2

公开(公告)日：2016-12-27

申请号：US14503020

申请日：2014-09-30

Applicant: Cisco Technology, Inc.

Inventor： Warren Scott Wainner ,  Mahesh Vittal ,  Stinson Mathai

IPC: H04N9/80 ,  H04L29/06 ,  H04N5/765 ,  H04N21/2343 ,  H04N21/2385 ,  H04N21/24 ,  H04N21/262 ,  H04N21/2662 ,  H04N21/61 ,  H04N21/6332 ,  H04N21/658 ,  H04N21/81 ,  H04N21/845 ,  H04N21/854 ,  H04N21/266 ,  H04N9/82

CPC classification number: H04L65/4069 ,  H04L65/601 ,  H04N5/765 ,  H04N9/8205 ,  H04N21/23439 ,  H04N21/2385 ,  H04N21/2402 ,  H04N21/26258 ,  H04N21/266 ,  H04N21/2662 ,  H04N21/6131 ,  H04N21/6332 ,  H04N21/6581 ,  H04N21/812 ,  H04N21/8456 ,  H04N21/85406

Abstract: Consistent with embodiments of the present invention, a system may be provided to provide per-subscriber stream management comprising: a client capable of receiving a playlist containing a subset of segments associated with a video asset; a video application server to request subscriber state information and to build state representations in a subscriber database on a per-subscriber basis; a media segmenter capable of providing the video asset in multiple bit rates; a subscriber state manager capable of managing the current state of one or more subscribers in a subscriber database; and a stream manager capable of requesting the assignment of bandwidth from a wireless infrastructure on a per-subscriber basis.

Abstract translation: 与本发明的实施例一致，可以提供系统以提供每用户流管理，包括：能够接收包含与视频资产相关联的段的子集的播放列表的客户端; 视频应用服务器，用于以订户为单位请求用户状态信息并在用户数据库中构建状态表示; 能够以多个比特率提供视频资产的媒体分割器; 用户状态管理器，能够管理订户数据库中的一个或多个订户的当前状态; 以及能够以每个用户的身份请求从无线基础设施分配带宽的流管理器。

公开(公告)号：US09503370B2

公开(公告)日：2016-11-22

申请号：US14087061

申请日：2013-11-22

Applicant: Cisco Technology, Inc.

Inventor： Warren Scott Wainner

IPC: H04L12/747 ,  H04L12/733 ,  H04L12/715

CPC classification number: H04L45/742 ,  H04L45/04 ,  H04L45/122

Abstract: System, method, and computer program product to perform an operation, the operation comprising capturing, at one or more peering routers, parameters for a plurality of data packets sent by a client device and specifying a destination network address, identifying which peering router captured the parameters for each of the plurality of data packets, determining, based on the identified peering routers, a first peering router nearest to the client, relative to the other peering routers, identifying a first content cache, of a plurality of content caches in a content distribution network, nearest to the first peering router, and fulfilling a content request from the client device using content stored on the first content cache.

Abstract translation: 用于执行操作的系统，方法和计算机程序产品，所述操作包括在一个或多个对等路由器处捕获由客户端设备发送的多个数据分组的参数并指定目的地网络地址，识别哪个对等路由器捕获 对于所述多个数据分组中的每一个的参数，基于所识别的对等路由器，相对于其他对等路由器最近的第一对等路由器识别内容中的多个内容高速缓存的第一内容高速缓存 分发网络，最接近第一对等路由器，以及使用存储在第一内容高速缓存上的内容从客户端设备完成内容请求。

公开(公告)号：US09444796B2

公开(公告)日：2016-09-13

申请号：US14248399

申请日：2014-04-09

Applicant: Cisco Technology, Inc.

Inventor： Lewis Chen ,  Scott Fluhrer ,  Warren Scott Wainner ,  Brian Weis

IPC: H04L29/06

CPC classification number: H04L63/061 ,  H04L63/0272 ,  H04L63/0428 ,  H04L63/06 ,  H04L63/104

Abstract: Techniques are presented for optimizing secure communications in a network. A first router receives from a second router an encrypted packet with an unknown security association. The first router examines the packet to determine whether the counter value is in a range of predicted counter values. Additionally, a key server is configured to provision routers that are part of a virtual private network. The key server selects a counter value that is part of a security association and calculates a key value. The key server sends the key value together with the security association to enable routers to exchange encrypted packets with each other in the virtual private network using the key value and the security association. The key server increments the counter value to a value within a range of counter values capable of being predicted by the routers.

Abstract translation: 呈现技术来优化网络中的安全通信。 第一路由器从第二路由器接收具有未知安全关联的加密分组。 第一个路由器检查数据包，以确定计数器值是否在预测计数器值的范围内。 另外，密钥服务器被配置为配置作为虚拟专用网络一部分的路由器。 密钥服务器选择作为安全关联的一部分的计数器值，并计算密钥值。 密钥服务器将密钥值与安全关联一起发送，以使路由器能够使用密钥值和安全关联在虚拟专用网络中彼此交换加密的数据包。 密钥服务器将计数器值递增到可由路由器预测的计数器值范围内的值。

公开(公告)号：US09350709B2

公开(公告)日：2016-05-24

申请号：US14246359

申请日：2014-04-07

Applicant: Cisco Technology, Inc.

Inventor： Lewis Chen ,  Warren Scott Wainner ,  Guan Deng

IPC: H04L29/06 ,  H04L9/08

CPC classification number: H04L63/0272 ,  G06F21/602 ,  H04L9/083 ,  H04L9/0833 ,  H04L45/02 ,  H04L45/60 ,  H04L63/0428 ,  H04L63/062

Abstract: Techniques are presented herein for optimizing secure communications in a network. A router in a virtual private network determines whether or not it has successfully registered with a key server that provides cryptographic keys for routers in the virtual private network. The router stores state information that is indicative of whether or not the router has successfully registered with the key server.

Abstract translation: 本文介绍了在网络中优化安全通信的技术。 虚拟专用网络中的路由器确定其是否已成功注册到为虚拟专用网络中的路由器提供加密密钥的密钥服务器。 路由器存储指示路由器是否已成功向密钥服务器注册的状态信息。