公开(公告)号：US20230008913A1

公开(公告)日：2023-01-12

申请号：US17932492

申请日：2022-09-15

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L45/24 ,  H04L45/00 ,  H04L67/146 ,  H04L12/46 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103

摘要： Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an non-session-based L2 frame destined for the second client device. The first router forms an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers and a protocol selected based on an L3 service for the L2 frame, a payload comprising the L2 frame, and metadata comprising a session identifier distinctly identifying the L2 frame, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the payload and forwards the L2 frame to the second client device.

公开(公告)号：US11658901B2

公开(公告)日：2023-05-23

申请号：US17357743

申请日：2021-06-24

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L45/24 ,  H04L45/00 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103 ,  H04L101/622 ,  H04L67/146 ,  H04L12/46

CPC分类号： H04L45/24 ,  H04L12/4641 ,  H04L45/16 ,  H04L45/42 ,  H04L45/66 ,  H04L45/745 ,  H04L61/103 ,  H04L67/146 ,  H04L2101/622

摘要： Techniques are disclosed for session-based routing of multipoint Open Systems Interconnection (OSI) Model Layer-2 (L2) frames of an L2 network extended over Layer-3 (L3) networks. In one example, L2 networks connect a source device to an ingress router and receiver devices to egress routers. An L3 network connects the ingress and egress routers. The ingress router receives, from the source device, a multipoint L2 frame destined for the receiver devices. The ingress router forms, for each egress router that is connected to at least one multipoint receiver device, a unicast L3 packet for the L2 frame and forwards the unicast L3 packet to the egress router. Each egress router generates, in response to receiving the unicast L3 packet, the multipoint L2 frame and forwards, to the receiver devices, the multipoint L2 frame.

公开(公告)号：US20230131877A1

公开(公告)日：2023-04-27

申请号：US17651599

申请日：2022-02-18

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Avinash Prakash Bhat ,  Anna Yungelson

IPC分类号： H04L9/08 ,  H04L45/42 ,  H04L45/74

摘要： Techniques are disclosed for inline security key exchanges between network devices. An example network device includes one or more processors and memory coupled to the one or more processors. The memory stores instructions that, upon execution, cause one or more processors to obtain a first payload key and obtain a path key. The instructions cause the one or more processors to encrypt a first payload of a first packet using the first payload key and insert the first payload key into first metadata of the first packet. The instructions cause the one or more processors to encrypt the first metadata using the path key and send the first packet to another network device.

公开(公告)号：US20210409308A1

公开(公告)日：2021-12-30

申请号：US17357763

申请日：2021-06-24

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L12/707 ,  H04L12/721 ,  H04L29/08

摘要： Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an non-session-based L2 frame destined for the second client device. The first router forms an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers and a protocol selected based on an L3 service for the L2 frame, a payload comprising the L2 frame, and metadata comprising a session identifier distinctly identifying the L2 frame, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the payload and forwards the L2 frame to the second client device.

公开(公告)号：US20240340163A1

公开(公告)日：2024-10-10

申请号：US18745443

申请日：2024-06-17

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Avinash Prakash Bhat ,  Anna Yungelson

IPC分类号： H04L9/08 ,  H04L45/42 ,  H04L45/74

CPC分类号： H04L9/0825 ,  H04L9/0827 ,  H04L9/0891 ,  H04L45/42 ,  H04L45/74

摘要： Techniques are disclosed for inline security key exchanges between network devices. An example network device includes one or more processors and memory coupled to the one or more processors. The memory stores instructions that, upon execution, cause one or more processors to obtain a first payload key and obtain a path key. The instructions cause the one or more processors to encrypt a first payload of a first packet using the first payload key and insert the first payload key into first metadata of the first packet. The instructions cause the one or more processors to encrypt the first metadata using the path key and send the first packet to another network device.

公开(公告)号：US12041162B2

公开(公告)日：2024-07-16

申请号：US17651599

申请日：2022-02-18

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Avinash Prakash Bhat ,  Anna Yungelson

IPC分类号： H04L9/08 ,  H04L45/42 ,  H04L45/74

CPC分类号： H04L9/0825 ,  H04L9/0827 ,  H04L9/0891 ,  H04L45/42 ,  H04L45/74

摘要： Techniques are disclosed for inline security key exchanges between network devices. An example network device includes one or more processors and memory coupled to the one or more processors. The memory stores instructions that, upon execution, cause one or more processors to obtain a first payload key and obtain a path key. The instructions cause the one or more processors to encrypt a first payload of a first packet using the first payload key and insert the first payload key into first metadata of the first packet. The instructions cause the one or more processors to encrypt the first metadata using the path key and send the first packet to another network device.

公开(公告)号：US20230009482A1

公开(公告)日：2023-01-12

申请号：US17932960

申请日：2022-09-16

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L45/24 ,  H04L45/00 ,  H04L67/146 ,  H04L12/46 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103

摘要： Techniques are disclosed for session-based routing of multipoint Open Systems Interconnection (OSI) Model Layer-2 (L2) frames of an L2 network extended over Layer-3 (L3) networks. In one example, L2 networks connect a source device to an ingress router and receiver devices to egress routers. An L3 network connects the ingress and egress routers. The ingress router receives, from the source device, a multipoint L2 frame destined for the receiver devices. The ingress router forms, for each egress router that is connected to at least one multipoint receiver device, a unicast L3 packet for the L2 frame and forwards the unicast L3 packet to the egress router. Each egress router generates, in response to receiving the unicast L3 packet, the multipoint L2 frame and forwards, to the receiver devices, the multipoint L2 frame.

公开(公告)号：US20210409323A1

公开(公告)日：2021-12-30

申请号：US17357790

申请日：2021-06-24

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L12/721 ,  H04L12/741 ,  H04L12/717 ,  H04L29/12 ,  H04L12/46

摘要： Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an L2 frame destined for the second client device. The first router generates an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers, a first portion of metadata comprising L2 addresses for the first and second client devices, and a second portion of metadata comprising L3 addresses for the first and second client devices, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the metadata and forwards the L2 frame to the second client device.

公开(公告)号：US12052163B2

公开(公告)日：2024-07-30

申请号：US17357743

申请日：2021-06-24

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L45/24 ,  H04L12/46 ,  H04L45/00 ,  H04L45/16 ,  H04L45/42 ,  H04L45/745 ,  H04L61/103 ,  H04L67/146 ,  H04L101/622

CPC分类号： H04L45/24 ,  H04L12/4641 ,  H04L45/16 ,  H04L45/42 ,  H04L45/66 ,  H04L45/745 ,  H04L61/103 ,  H04L67/146 ,  H04L2101/622

摘要： Techniques are disclosed for session-based routing of multipoint Open Systems Interconnection (OSI) Model Layer-2 (L2) frames of an L2 network extended over Layer-3 (L3) networks. In one example, L2 networks connect a source device to an ingress router and receiver devices to egress routers. An L3 network connects the ingress and egress routers. The ingress router receives, from the source device, a multipoint L2 frame destined for the receiver devices. The ingress router forms, for each egress router that is connected to at least one multipoint receiver device, a unicast L3 packet for the L2 frame and forwards the unicast L3 packet to the egress router. Each egress router generates, in response to receiving the unicast L3 packet, the multipoint L2 frame and forwards, to the receiver devices, the multipoint L2 frame.

公开(公告)号：US20230097324A1

公开(公告)日：2023-03-30

申请号：US18061581

申请日：2022-12-05

申请人： Juniper Networks, Inc.

发明人： Abilash Menon ,  Anna Yungelson ,  Scott A. McCulley ,  Jacob Dionne

IPC分类号： H04L45/24 ,  H04L45/00 ,  H04L67/146 ,  H04L12/46 ,  H04L45/42 ,  H04L45/745 ,  H04L45/16 ,  H04L61/103

摘要： Techniques are disclosed for session-based routing within Open Systems Interconnection (OSI) Model Layer-2 (L2) networks extended over Layer-3 (L3) networks. In one example, L2 networks connect a first client device to a first router and a second client device to a second router. An L3 network connects the first and second routers. The first router receives, from the first client device, an L2 frame destined for the second client device. The first router generates an L3 packet comprising an L3 header specifying L3 addresses of the first and second routers, a first portion of metadata comprising L2 addresses for the first and second client devices, and a second portion of metadata comprising L3 addresses for the first and second client devices, and forwards the L3 packet to the second router. The second router recovers the L2 frame from the metadata and forwards the L2 frame to the second client device.