公开(公告)号：US10193807B1

公开(公告)日：2019-01-29

申请号：US15339473

申请日：2016-10-31

Applicant: Juniper Networks, Inc.

Inventor： Alia Atlas ,  John Galen Scudder ,  Ross W. Callon ,  Stu Grossman ,  Qi-Zhong Cao ,  Jeffrey Haas

IPC: H04L12/801 ,  H04L12/825

Abstract: In general, techniques are described for dynamically controlling host-bound traffic by dynamically adding and updating, within the forwarding plane of a network device, network packet policers that each constrains, for one or more packet flows, an amount of host-bound traffic of the packet flows permitted to reach the control plane in accordance with available resources. In one example, a control plane of the network device detects internal congestion in the communication path from the forwarding plane to control plane (the “host-bound path”), identifies packet flows utilizing an excessive amount of host-bound path resources, computes limits for the identified packet flows, and adds “penalty-box policers” configured with the computed limits for the identified packet flows to the forwarding plane. The forwarding plane subsequently applies the policers to the identified packet flows to constrain the amount of traffic of the packet flows allowed to reach the control plane to the computed limits.

公开(公告)号：US09282043B1

公开(公告)日：2016-03-08

申请号：US14035599

申请日：2013-09-24

Applicant: Juniper Networks, Inc.

Inventor： Qi-Zhong Cao

IPC: H04L12/801

CPC classification number: H04L47/12

Abstract: A device may determine a first aggregation level for aggregating incoming packets. The device may aggregate the incoming packets using the first aggregation level. The device may determine that a controlled packet pass rate for the incoming packets satisfies an arrival rate threshold based on aggregating the incoming packets using the first aggregation level. The device may determine a bandwidth violation trend associated with the incoming packets and the first aggregation level based on determining that the controlled packet pass rate satisfies the threshold. The device may determine that flow suppression is not effective at the first aggregation level based on the bandwidth violation trend, and may determine a second aggregation level based on determining that the flow suppression is not effective. The device may set the first aggregation level to the second aggregation level. The device may use the first aggregation level for aggregating additional incoming packets.

Abstract translation: 设备可以确定用于聚合输入分组的第一聚合级别。 设备可以使用第一个聚合级别聚合传入的数据包。 该设备可以基于使用第一聚合级别聚合传入分组来确定输入分组的受控分组合格率满足到达速率阈值。 该装置可以基于确定受控分组合格率满足阈值来确定与输入分组和第一聚合级别相关联的带宽违规趋势。 设备可以基于带宽违规趋势来确定流量抑制在第一聚合级别上是无效的，并且可以基于确定流量抑制无效来确定第二聚合级别。 设备可以将第一聚合级别设置为第二聚合级别。 设备可以使用第一聚合级别来聚合附加的传入分组。

公开(公告)号：US10547560B1

公开(公告)日：2020-01-28

申请号：US15856789

申请日：2017-12-28

Applicant: Juniper Networks, Inc.

Inventor： Nayan S. Patel ,  Qi-Zhong Cao ,  Nitin Kumar

IPC: H04L12/863 ,  H04L12/26

Abstract: A network device may include a controller and a hardware forwarding component. The hardware forwarding component may receive a network packets and assign the network packets to multiple network queues. The network device may also obtain, using a microcode engine of the hardware forwarding component, and for each of the network queues, a measurement of queue depth, each measurement of queue depth being obtained from memory of the hardware forwarding component. Based on the measurements of queue depth, the network device may generate and transmit a telemetry packet.

公开(公告)号：US09485118B1

公开(公告)日：2016-11-01

申请号：US13631652

申请日：2012-09-28

Applicant: Juniper Networks, Inc.

Inventor： Alia Atlas ,  John Galen Scudder ,  Ross W. Callon ,  Stu Grossman ,  Qi-Zhong Cao ,  Jeffrey Haas

IPC: H04L12/54 ,  H04L12/801

CPC classification number: H04L12/5695 ,  H04L47/10

Abstract: In general, techniques are described for dynamically controlling host-bound traffic by dynamically adding and updating, within the forwarding plane of a network device, network packet policers that each constrains, for one or more packet flows, an amount of host-bound traffic of the packet flows permitted to reach the control plane in accordance with available resources. In one example, a control plane of the network device detects internal congestion in the communication path from the forwarding plane to control plane (the “host-bound path”), identifies packet flows utilizing an excessive amount of host-bound path resources, computes limits for the identified packet flows, and adds “penalty-box policers” configured with the computed limits for the identified packet flows to the forwarding plane. The forwarding plane subsequently applies the policers to the identified packet flows to constrain the amount of traffic of the packet flows allowed to reach the control plane to the computed limits.

Abstract translation: 通常，描述了通过在网络设备的转发平面内动态地添加和更新网络分组策略器来动态地控制主机绑定业务的技术，所述网络分组策略对于一个或多个分组流限制了一个或多个分组流量的主机绑定业务量 允许根据可用资源到达控制平面的分组流。 在一个示例中，网络设备的控制平面检测从转发平面到控制平面（“主机绑定路径”）的通信路径中的内部拥塞，利用过多的主机绑定路径资源来识别分组流，计算 对所标识的分组流的限制，并且将配置有所识别的分组流的计算的限制的“惩罚方框策略器”添加到转发平面。 转发平面随后将策略器应用于所识别的分组流，以将允许到达控制平面的分组流的流量约束到计算的极限。