公开(公告)号：US20190158541A1

公开(公告)日：2019-05-23

申请号：US15819522

申请日：2017-11-21

Applicant: Juniper Networks, Inc.

Inventor： Prasad Miriyala ,  Anish Mehta

IPC: H04L29/06

CPC classification number: H04L63/205 ,  H04L63/0263 ,  H04L67/10

Abstract: Techniques are disclosed for implementing scalable policies across a plurality of categories that support application workloads. In one example, a policy controller assigns to the plurality of categories tags specifying one or more of a plurality of dimensions. The policy controller distributes a plurality of policies to policy agents for the plurality of categories. Each policy includes one or more policy rules, and each policy rule includes one or more tags specifying one or more of the plurality of dimensions. For each policy rule, the policy agents allow or deny a traffic flow between objects that belong to categories of the plurality of categories described by the one or more dimensions of a respective tag of the policy rule.

公开(公告)号：US10187274B1

公开(公告)日：2019-01-22

申请号：US15392355

申请日：2016-12-28

Applicant: Juniper Networks, Inc.

Inventor： Ashok Singh R. ,  Anish Mehta

IPC: H04L12/26

Abstract: The techniques described herein may dynamically adjust the sampling threshold based on a comparison of a flow export rate to a configured flow export rate. Based on the comparison of the flow export rate and the configured flow export rate, the network device may dynamically adjust the sampling threshold, such as increasing, reducing, or not changing the sampling threshold. Moreover, traffic flows are exported based on the adjusted sampling threshold. For example, if a number of bytes of a packet flow is more than or equal to the adjusted sampling threshold, network devices may export the sampled packet flow with the byte count and packet count of the sampled packet flow reported as-is. When a number of bytes of a packet flow is less than the adjusted sampling threshold, the packet flow will be exported with the byte count and packet count adjusted according to a probability.

公开(公告)号：US11159389B1

公开(公告)日：2021-10-26

申请号：US16022464

申请日：2018-06-28

Applicant: Juniper Networks, Inc.

Inventor： Prasad Miriyala ,  Anish Mehta

IPC: H04L12/24 ,  G06F9/451 ,  G06F3/0484

Abstract: Graphical user interfaces are generated that, when displayed, provide a visual and interactive representation of one or more aspects associated with the execution of one or more applications on a computer network. The graphical user interfaces may in include graphical depictions representation policy objects, each policy object assigned one or more tags, each tag assigned to a category or a sub-category. The tags, when taken in combination, may identify an application, and one or more other characteristics associated with each of the policy objects. The graphical elements representing the policy objects may be displayed in the graphical user interfaces so that the policy objects assigned to tags in a category are positioned in an outer ring, and policy objects assigned to sub-category tags are positioned in a inner ring surrounded by the outer ring, with interconnection elements representing communications between policy objects extending within an interior area.

公开(公告)号：US10379890B1

公开(公告)日：2019-08-13

申请号：US15084713

申请日：2016-03-30

Applicant: Juniper Networks, Inc.

Inventor： Anish Mehta ,  Sundaresan Rajangam ,  Rajashekar Reddy ,  Megh Bhatt ,  Tirthankar Ghose

IPC: G06F9/455 ,  G06F11/36 ,  G06F16/21 ,  H04L12/24 ,  H04L12/26 ,  H04L29/08

Abstract: A controller coordinates execution of a set of related processes executed by respective devices in the virtual network, wherein coordinating comprises causing the respective devices to execute the set of related processes; receiving a data set for the set of related processes from the respective devices, comprising receiving operational states of the related processes from the respective devices; reading a previous data set comprising previous operational states of the related processes from the respective devices; processing an update to the previous operational states from the received operational states of the received data set; and aggregating the received operational states of the data set with the previous operational states of the related processes to form aggregated data of updated operational states.

公开(公告)号：USD931316S1

公开(公告)日：2021-09-21

申请号：US29727718

申请日：2020-03-12

Applicant: Juniper Networks, Inc.

Designer： Prasad Miriyala ,  Anish Mehta

公开(公告)号：USD931315S1

公开(公告)日：2021-09-21

申请号：US29727717

申请日：2020-03-12

Applicant: Juniper Networks, Inc.

Designer： Prasad Miriyala ,  Anish Mehta

公开(公告)号：US20150339212A1

公开(公告)日：2015-11-26

申请号：US14817054

申请日：2015-08-03

Applicant: Juniper Networks, Inc.

Inventor： Anish Mehta ,  Megh Bhatt ,  Rajashekar Reddy

IPC: G06F11/36 ,  G06F9/455 ,  H04L29/08 ,  G06F17/30

CPC classification number: G06F11/3636 ,  G06F9/45558 ,  G06F11/366 ,  G06F17/30289 ,  G06F2009/45595 ,  H04L41/065 ,  H04L43/06 ,  H04L43/0817 ,  H04L67/10

Abstract: In one example, a controller device includes one or more network interfaces communicatively coupled to one or more devices of a virtual network, and a processor configured to determine, for the virtual network, a set of two or more related processes executed by respective devices in the virtual network, receive via the network interfaces data for the set of two or more related processes, and aggregate the data for the set of two or more related processes to form aggregated data for the set of two or more related processes.

Abstract translation: 在一个示例中，控制器设备包括通信地耦合到虚拟网络的一个或多个设备的一个或多个网络接口，以及被配置为为虚拟网络确定由相应设备执行的两个或多个相关进程的集合 虚拟网络通过网络接口接收用于两个或多个相关进程的集合的数据，并且为两个或多个相关进程的集合聚合数据以形成用于两个或多个相关进程的集合的聚合数据。

公开(公告)号：US10742690B2

公开(公告)日：2020-08-11

申请号：US15819522

申请日：2017-11-21

Applicant: Juniper Networks, Inc.

Inventor： Prasad Miriyala ,  Anish Mehta

IPC: H04L29/06 ,  H04L29/08

Abstract: Techniques are disclosed for implementing scalable policies across a plurality of categories that support application workloads. In one example, a policy controller assigns to the plurality of categories tags specifying one or more of a plurality of dimensions. The policy controller distributes a plurality of policies to policy agents for the plurality of categories. Each policy includes one or more policy rules, and each policy rule includes one or more tags specifying one or more of the plurality of dimensions. For each policy rule, the policy agents allow or deny a traffic flow between objects that belong to categories of the plurality of categories described by the one or more dimensions of a respective tag of the policy rule.

公开(公告)号：US10291497B2

公开(公告)日：2019-05-14

申请号：US15476136

申请日：2017-03-31

Applicant: Juniper Networks, Inc.

Inventor： Anish Mehta ,  Arvind Batalagundu Viswanathan ,  Megh P. Bhatt ,  Ashok Singh R.

IPC: H04L12/26 ,  H04L12/24 ,  H04L12/851 ,  H04L12/46 ,  H04L12/771 ,  H04L12/741 ,  H04L29/12

Abstract: Techniques are disclosed for session-based traffic statistics. In an example method, a virtual router of a cloud data center processes traffic flows for virtual machines executing on a server within the cloud data center to generate traffic flow statistics. The traffic flows include ingress traffic flows originating from the virtual machines and destined for a network of the cloud data center, and egress traffic flows originating from the network of the cloud data center and destined for the virtual machines. A virtual routing agent processes the traffic flow statistics to identify pairs of ingress and egress traffic flows corresponding to a common communication session. The virtual routing agent generates, for each identified pair of ingress and egress traffic flows, session records comprising traffic session statistics for each of the ingress and egress traffic flows of the pair and uploads the session records to a traffic collector for the network.

公开(公告)号：US20180287905A1

公开(公告)日：2018-10-04

申请号：US15476136

申请日：2017-03-31

Applicant: Juniper Networks, Inc.

Inventor： Anish Mehta ,  Arvind Batalagundu Viswanathan ,  Megh P. Bhatt ,  Ashok Singh R.

IPC: H04L12/26 ,  H04L12/46 ,  H04L12/771 ,  H04L12/741

CPC classification number: H04L43/062 ,  H04L12/4641 ,  H04L41/046 ,  H04L41/142 ,  H04L43/04 ,  H04L43/0876 ,  H04L43/50 ,  H04L45/56 ,  H04L45/745 ,  H04L47/2441 ,  H04L47/2483 ,  H04L61/6068

Abstract: Techniques are disclosed for session-based traffic statistics. In an example method, a virtual router of a cloud data center processes traffic flows for virtual machines executing on a server within the cloud data center to generate traffic flow statistics. The traffic flows include ingress traffic flows originating from the virtual machines and destined for a network of the cloud data center, and egress traffic flows originating from the network of the cloud data center and destined for the virtual machines. A virtual routing agent processes the traffic flow statistics to identify pairs of ingress and egress traffic flows corresponding to a common communication session. The virtual routing agent generates, for each identified pair of ingress and egress traffic flows, session records comprising traffic session statistics for each of the ingress and egress traffic flows of the pair and uploads the session records to a traffic collector for the network.