公开(公告)号：US11784874B2

公开(公告)日：2023-10-10

申请号：US16669869

申请日：2019-10-31

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  Chandrasekhar A ,  Rahamath Sharif ,  Raviraj Satish Deshmukh

IPC: G06F15/16 ,  H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/28

CPC classification number: H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/28

Abstract: A network management system may discover a plurality of network devices behind a network address translation device, such as a firewall. The network management system may receive a model of N network devices, generate a bulk activation configuration for the N network devices and commit the bulk activation configuration on a seed network device. The network management system may receive a request for a first connection from a first neighboring network device and may connect to the first neighboring network device. The first neighboring network device may have received the bulk activation configuration from the seed device. The network management system may determine whether the first neighboring network device is one of the N network devices and commit a second activation configuration on the first neighboring network device if it is one of the N network devices. A plurality of neighboring network device may be configured in this fashion.

公开(公告)号：US20230006881A1

公开(公告)日：2023-01-05

申请号：US17449601

申请日：2021-09-30

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  Fnu Nadeem ,  Raviraj Satish Deshmukh

IPC: H04L12/24

Abstract: A controller device manages a plurality of network devices. The controller device includes a memory comprising a configuration database including a set of stored network device configurations, wherein each stored network device configuration of the set of stored network device configurations corresponds to a network device of the set of network devices. Additionally, the controller device includes processing circuitry configured to receive an intent file corresponding to an intended configuration for the set of network devices; receive a message from a network device of the set of network devices indicating an out-of-band configuration change at the network device; and determine, based on a stored network device configuration corresponding to the network device and an actual configuration of the network device, whether the intent file is compatible with the out-of-band configuration change.

公开(公告)号：US11689418B2

公开(公告)日：2023-06-27

申请号：US17933018

申请日：2022-09-16

Applicant: Juniper Networks, Inc.

Inventor： Raviraj Satish Deshmukh ,  Pradeep H. Krishnamurthy ,  Varun S K

IPC: H04L41/0816 ,  H04L41/08 ,  H04L41/084 ,  H04L41/0859 ,  H04L41/0226 ,  H04L41/0873 ,  H04L45/24 ,  H04L45/02

CPC classification number: H04L41/0816 ,  H04L41/0226 ,  H04L41/0843 ,  H04L41/0859 ,  H04L41/0873 ,  H04L41/0883 ,  H04L45/02 ,  H04L45/24

Abstract: In an example, a method includes receiving, by a network management system (NMS), a configuration request comprising first configuration data for a network device, the first configuration data defining a data structure comprising a first property/value pair; generating, by the NMS from the first configuration data, a corresponding first path/value pair for the first property/value pair, wherein a path of the first path/value pair uniquely identifies the first path/value pair in an associative data structure; modifying, by the NMS, the associative data structure based on the first path/value pair; generating, by the NMS, from the associative data structure, a configuration resource comprising second configuration data for the network device, the second configuration data comprising a second property/value pair that corresponds to the first path/value pair; and sending, by the NMS, the second configuration data to the network device to modify a configuration of the network device.

公开(公告)号：US11159370B2

公开(公告)日：2021-10-26

申请号：US16669830

申请日：2019-10-31

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  Chandrasekhar A ,  Rahamath Sharif ,  Raviraj Satish Deshmukh

IPC: H04L12/28 ,  H04L12/24 ,  H04L12/46 ,  H04L29/12 ,  H04W8/00

Abstract: In one example, a network management system discovers a plurality of network devices behind a network address translation device, such as a firewall. The network management system may receive a model of a seed network device, generate a first activation configuration and commit the first activation configuration on the seed network device. The network management system may connect to the seed network device and discover neighboring devices from information in the seed network device. The network management system may connect to the neighboring devices, automatically create a model of the neighboring network devices, generate s activation configurations for the neighboring network devices and commit the activation configurations on the neighboring network devices. The network management system may iterative perform these steps until it discovers all the discoverable network devices behind the network address translation device.

公开(公告)号：US20210135935A1

公开(公告)日：2021-05-06

申请号：US16669869

申请日：2019-10-31

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  Chandrasekhar A ,  Rahamath Sharif ,  Raviraj Satish Deshmukh

IPC: H04L12/24

Abstract: A network management system may discover a plurality of network devices behind a network address translation device, such as a firewall. The network management system may receive a model of N network devices, generate a bulk activation configuration for the N network devices and commit the bulk activation configuration on a seed network device. The network management system may receive a request for a first connection from a first neighboring network device and may connect to the first neighboring network device. The first neighboring network device may have received the bulk activation configuration from the seed device. The network management system may determine whether the first neighboring network device is one of the N network devices and commit a second activation configuration on the first neighboring network device if it is one of the N network devices. A plurality of neighboring network device may be configured in this fashion.

公开(公告)号：US20230034548A1

公开(公告)日：2023-02-02

申请号：US17934509

申请日：2022-09-22

Applicant: Juniper Networks, Inc.

Inventor： Raviraj Satish Deshmukh ,  Pradeep H. Krishnamurthy ,  Varun S K

IPC: H04L41/0813 ,  H04L41/084

Abstract: A controller device includes a memory configured to store a tree structure comprising a plurality of nodes, wherein the tree structure comprises a set of sub-structures, and wherein the tree structure defines a configuration of a network device of a set of network devices such that each node of the plurality of nodes corresponds to a respective resource of the network device. Additionally, the controller device includes processing circuitry configured to receive an instruction to update the configuration of the network device, wherein the instruction to update the configuration of the network device indicates a node of the set of nodes corresponding to the update; and verify, based on a sub-structure of the set of sub-structures corresponding to the node indicated by the instruction, the instruction to update the configuration of the network device.

公开(公告)号：US11489724B1

公开(公告)日：2022-11-01

申请号：US17449617

申请日：2021-09-30

Applicant: Juniper Networks, Inc.

Inventor： Raviraj Satish Deshmukh ,  Pradeep H. Krishnamurthy ,  Varun S K

IPC: G06F15/177 ,  H04L41/0813 ,  H04L41/084

Abstract: A controller device includes a memory configured to store a tree structure comprising a plurality of nodes, wherein the tree structure comprises a set of sub-structures, and wherein the tree structure defines a configuration of a network device of a set of network devices such that each node of the plurality of nodes corresponds to a respective resource of the network device. Additionally, the controller device includes processing circuitry configured to receive an instruction to update the configuration of the network device, wherein the instruction to update the configuration of the network device indicates a node of the set of nodes corresponding to the update; and verify, based on a sub-structure of the set of sub-structures corresponding to the node indicated by the instruction, the instruction to update the configuration of the network device.

公开(公告)号：US20220021576A1

公开(公告)日：2022-01-20

申请号：US17449626

申请日：2021-09-30

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  Chandrasekhar A ,  Rahamath Sharif ,  Raviraj Satish Deshmukh

IPC: H04L12/24 ,  H04L12/46 ,  H04L29/12

Abstract: In one example, a network management system discovers a plurality of network devices behind a network address translation device, such as a firewall. The network management system may receive a model of a seed network device, generate a first activation configuration and commit the first activation configuration on the seed network device. The network management system may connect to the seed network device and discover neighboring devices from information in the seed network device. The network management system may connect to the neighboring devices, automatically create a model of the neighboring network devices, generate s activation configurations for the neighboring network devices and commit the activation configurations on the neighboring network devices. The network management system may iterative perform these steps until it discovers all the discoverable network devices behind the network address translation device.

公开(公告)号：US20230396494A1

公开(公告)日：2023-12-07

申请号：US18451864

申请日：2023-08-18

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  FNU Nadeem ,  Raviraj Satish Deshmukh

IPC: H04L41/0816 ,  H04L41/22

CPC classification number: H04L41/0816 ,  H04L41/22

Abstract: A controller device manages a plurality of network devices. The controller device includes a memory comprising a configuration database including a set of stored network device configurations, wherein each stored network device configuration of the set of stored network device configurations corresponds to a network device of the set of network devices. Additionally, the controller device includes processing circuitry configured to receive an intent file corresponding to an intended configuration for the set of network devices; receive a message from a network device of the set of network devices indicating an out-of-band configuration change at the network device; and determine, based on a stored network device configuration corresponding to the network device and an actual configuration of the network device, whether the intent file is compatible with the out-of-band configuration change.

公开(公告)号：US11805011B2

公开(公告)日：2023-10-31

申请号：US17449626

申请日：2021-09-30

Applicant: Juniper Networks, Inc.

Inventor： Pradeep H. Krishnamurthy ,  Chandrasekhar A ,  Rahamath Sharif ,  Raviraj Satish Deshmukh

IPC: H04L41/0806 ,  H04L12/46 ,  H04L41/12 ,  H04L61/2567 ,  H04W8/00 ,  H04L101/622

CPC classification number: H04L41/0806 ,  H04L12/4633 ,  H04L41/12 ,  H04L61/2567 ,  H04L2101/622 ,  H04W8/005

Abstract: In one example, a network management system discovers a plurality of network devices behind a network address translation device, such as a firewall. The network management system may receive a model of a seed network device, generate a first activation configuration and commit the first activation configuration on the seed network device. The network management system may connect to the seed network device and discover neighboring devices from information in the seed network device. The network management system may connect to the neighboring devices, automatically create a model of the neighboring network devices, generate s activation configurations for the neighboring network devices and commit the activation configurations on the neighboring network devices. The network management system may iterative perform these steps until it discovers all the discoverable network devices behind the network address translation device.