Invention Grant
- Patent Title: Micro and macro segmentation in enterprise networks without a per segment layer-3 domain
-
Application No.: US16746903Application Date: 2020-01-19
-
Publication No.: US11277282B2Publication Date: 2022-03-15
- Inventor: Anand Oswal , Muninder S. Sambi , Sanjay K. Hooda , Gangadharan Byju Pularikkal , Kedar Karmarkar
- Applicant: Cisco Technology, Inc.
- Applicant Address: US CA San Jose
- Assignee: Cisco Technology, Inc.
- Current Assignee: Cisco Technology, Inc.
- Current Assignee Address: US CA San Jose
- Agency: Patterson + Sheridan, LLP
- Main IPC: H04L12/46
- IPC: H04L12/46 ; H04L12/18 ; H04L61/5014 ; H04L61/58 ; H04L101/668
Abstract:
Secure network segmentation using logical subnet segments is described. A single network segment or subnet provided by a third party is mapped into multiple layer-3 virtual or logical segments without requiring separate subnets. This mapping is accomplished by using virtual routing functions (VRFs) per logical subnet segment while retaining a single subnet across the segments. The logical subnet segments interact with the single network segment provided by the third party (ISP). The layer-3 VRF instances are created without the need for separate IP subnet pools per layer-3 segment. Each VRF instance for the various logical subnet segments is mapped to a Virtual Network Identifier (VNI) and Scalable Group Tag (SGT).
Public/Granted literature
- US20210226817A1 MICRO AND MACRO SEGMENTATION IN ENTERPRISE NETWORKS WITHOUT A PER SEGMENT LAYER-3 DOMAIN Public/Granted day:2021-07-22
Information query
