公开(公告)号：US20170026233A1

公开(公告)日：2017-01-26

申请号：US14805273

申请日：2015-07-21

Applicant: Cisco Technology, Inc.

Inventor： Sami Boutros ,  Rex Fernando ,  Ali Sajassi ,  Dhananjaya Rao

IPC: H04L12/24

CPC classification number: H04L41/0806 ,  H04L12/4633 ,  H04L41/0816 ,  H04L41/0886 ,  H04L41/12 ,  H04L41/5048 ,  H04L41/5054

Abstract: In one embodiment, a network controller identifies a first sign of life for an edge device in a communication network (e.g., when the network controller receives an encapsulated workflow request for the edge device over a control plane of the communication network). The network controller further imports the encapsulated workflow request from the edge device over the control plane, determines configuration parameters for a tenant and a tenant network from the encapsulated workflow request, and transmits the configuration parameters to the edge device to provision the edge device for the tenant according to the configuration parameters.

Abstract translation: 在一个实施例中，网络控制器为通信网络中的边缘设备识别生命的第一符号（例如，当网络控制器通过通信网络的控制平面接收边缘设备的封装的工作流请求时）。 网络控制器还通过控制平面从边缘设备导入封装的工作流请求，从封装的工作流请求中确定租户和租户网络的配置参数，并将配置参数发送给边缘设备，为边缘设备提供边缘设备 租户根据配置参数。

公开(公告)号：US12184539B2

公开(公告)日：2024-12-31

申请号：US18303493

申请日：2023-04-19

Applicant: Cisco Technology, Inc.

Inventor： Anubhav Gupta ,  Rex Fernando ,  Sanjay Kumar Hooda ,  Syam Sundar Appala ,  Samir Thoria

IPC: H04L45/302 ,  H04L12/28 ,  H04L45/74 ,  H04L47/20

Abstract: In one embodiment, a method by an edge router configured to operate at a first site of a software-defined wide-area network includes receiving a data packet from a first host located in the first site, where the data packet is destined to a second host located in a second site, determining that an identifier of a second group to which the second host belongs is not available at the edge router, sending a request for an identifier of the second group to a network apparatus, where the request may comprise an address of the second host, receiving a response comprising the identifier of the second group from the network apparatus, determining that the second group is a destination group, applying one or more policies associated with the destination group to the data packet, and causing the data packet to be routed to the second host.

公开(公告)号：US11683262B2

公开(公告)日：2023-06-20

申请号：US16697016

申请日：2019-11-26

Applicant: Cisco Technology, Inc.

Inventor： Anubhav Gupta ,  Rex Fernando ,  Sanjay Kumar Hooda ,  Syam Sundar Appala ,  Samir Thoria

IPC: H04L45/302 ,  H04L12/28 ,  H04L45/74 ,  H04L47/20

CPC classification number: H04L45/302 ,  H04L12/2854 ,  H04L45/74 ,  H04L47/20

Abstract: In one embodiment, a method includes receiving a data packet from a first host located in the first site, where the data packet may be destined to a second host located in a second site that may be different from the first site, determining that an identifier of a second group to which the second host belongs is not available at the first network apparatus, sending a request for an identifier of the second group to a second network apparatus, where the request may comprise an address of the second host, receiving a response comprising the identifier of the second group from the second network apparatus, determining that the second group is a destination group, applying one or more policies associated with the destination group to the data packet, and causing the data packet to be routed to the second host.

公开(公告)号：US20180013821A1

公开(公告)日：2018-01-11

申请号：US15711235

申请日：2017-09-21

Applicant: Cisco Technology, Inc.

Inventor： Hendrikus G.P. Bosch ,  James Guichard ,  Dave Barach ,  Alessandro Duminuco ,  Luyuan Fang ,  Paul Quinn ,  Rex Fernando ,  David Ward

IPC: H04L29/08 ,  H04L12/715 ,  H04L12/751

CPC classification number: H04L67/10 ,  H04L45/02 ,  H04L45/04

Abstract: Presented herein are techniques for use in a network environment that includes one or more service zones, each service zone including at least one instance of an in-line application service to be applied to network traffic and one or more routers to direct network traffic to the at least one service, and a route target being assigned to a unique service zone to serve as a community value for route import and export between routers of other service zones, destination networks or source networks via a control protocol. An edge router in each service zone or destination network advertises routes by its destination network prefix tagged with its route target. A service chain is created by importing and exporting of destination network prefixes by way of route targets at edge routers of the service zones or source networks.

公开(公告)号：US09826025B2

公开(公告)日：2017-11-21

申请号：US13898932

申请日：2013-05-21

Applicant: Cisco Technology, Inc.

Inventor： Hendrikus G. P. Bosch ,  James Guichard ,  Dave Barach ,  Alessandro Duminuco ,  Luyuan Fang ,  Paul Quinn ,  Rex Fernando ,  David Ward

IPC: H04L29/08 ,  H04L12/715 ,  H04L12/751

CPC classification number: H04L67/10 ,  H04L45/02 ,  H04L45/04

Abstract: Presented herein are techniques for use in a network environment that includes one or more service zones, each service zone including at least one instance of an in-line application service to be applied to network traffic and one or more routers to direct network traffic to the at least one service, and a route target being assigned to a unique service zone to serve as a community value for route import and export between routers of other service zones, destination networks or source networks via a control protocol. An edge router in each service zone or destination network advertises routes by its destination network prefix tagged with its route target. A service chain is created by importing and exporting of destination network prefixes by way of route targets at edge routers of the service zones or source networks.

公开(公告)号：US09344350B2

公开(公告)日：2016-05-17

申请号：US13865926

申请日：2013-04-18

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Rex Fernando ,  Dhananjaya Rao ,  Jim Guichard ,  Paul Quinn

IPC: H04L12/28 ,  H04L12/751 ,  H04L12/931

CPC classification number: H04L45/02 ,  H04L49/70

Abstract: In one embodiment, a method includes storing a service topology route at a network device interconnecting at least two zones comprising a plurality of hosts, and propagating the service topology route to create a service chain comprising a service node in communication with the network device. The service topology route creates a forwarding state at network devices in the service chain for use in inter-zone routing in a virtual private network. An apparatus and logic are also disclosed herein.

Abstract translation: 在一个实施例中，一种方法包括在互连包括多个主机的至少两个区域的网络设备处存储服务拓扑路由，并且传播服务拓扑路由以创建包括与网络设备通信的服务节点的服务链。 服务拓扑路由在服务链中的网络设备上创建转发状态，以用于虚拟专用网络中的区域间路由。 本文还公开了一种装置和逻辑。

公开(公告)号：US20250030628A1

公开(公告)日：2025-01-23

申请号：US18905935

申请日：2024-10-03

Applicant: Cisco Technology, Inc.

Inventor： Anubhav Gupta ,  Rex Fernando ,  Sanjay Kumar Hooda ,  Syam Sundar Appala ,  Samir Thoria

IPC: H04L45/302 ,  H04L12/28 ,  H04L45/74 ,  H04L47/20

Abstract: In one embodiment, a method by a first edge router includes receiving a request control message from a second edge router requesting a first identifier of a first group associated with a first host having a first Internet Protocol (IP) address, determining the first identifier of the first group based on the first IP address, sending a response control message to the second edge router including the first identifier of the first group, receiving a data packet destined to the first host from the second edge router, determining that a second group is a source group and the first group is a destination group of the data packet, applying one or more policies associated with a combination of the source group and the destination group to the data packet, and causing the data packet to be routed to the first host within the first site.

公开(公告)号：US09258243B2

公开(公告)日：2016-02-09

申请号：US13891247

申请日：2013-05-10

Applicant: Cisco Technology, Inc.

Inventor： James Guichard ,  Paul Quinn ,  Rex Fernando ,  Govind P. Sharma ,  David Ward ,  Hendrikus G. P. Bosch ,  Luyuan Fang

IPC: H04L12/721 ,  H04L12/859 ,  H04L12/851

CPC classification number: H04L47/2475 ,  H04L47/2441

Abstract: A plurality of network nodes are deployed in a network, each network node configured to apply a service function to traffic that passes through the respective network nodes. A controller generates information for a service chain that involves application to traffic of one or more service functions at corresponding ones of the plurality of network nodes along a forward path through the one or more network nodes. The controller identifies one or more of the service functions within the service chain that is stateful. When one or more of the service functions of the service chain is stateful, the controller generates information for a reverse path through the one or more service nodes for the one or more stateful service functions. The controller binds a forward chain identifier for the forward path with a reverse chain identifier for the reverse path for the service chain.

Abstract translation: 多个网络节点部署在网络中，每个网络节点被配置为向通过各个网络节点的业务应用服务功能。 控制器生成用于服务链的信息，其涉及通过所述一个或多个网络节点沿着前向路径应用于所述多个网络节点中的对应的一个或多个服务功能的业务。 控制器识别服务链中的一个或多个服务功能是有状态的。 当服务链的一个或多个服务功能是有状态时，控制器通过用于一个或多个有状态服务功能的一个或多个服务节点生成用于反向路径的信息。 控制器将正向路径的前向链标识符与用于服务链的反向路径的反向链标识符绑定。

公开(公告)号：US20140334295A1

公开(公告)日：2014-11-13

申请号：US13891247

申请日：2013-05-10

Applicant: CISCO TECHNOLOGY, INC.

Inventor： James Guichard ,  Paul Quinn ,  Rex Fernando ,  Govind P. Sharma ,  David Ward ,  Hendrikus G.P. Bosch ,  Luyuan Fang

IPC: H04L12/859 ,  H04L12/851

CPC classification number: H04L47/2475 ,  H04L47/2441

Abstract: A plurality of network nodes are deployed in a network, each network node configured to apply a service function to traffic that passes through the respective network nodes. A controller generates information for a service chain that involves application to traffic of one or more service functions at corresponding ones of the plurality of network nodes along a forward path through the one or more network nodes. The controller identifies one or more of the service functions within the service chain that is stateful. When one or more of the service functions of the service chain is stateful, the controller generates information for a reverse path through the one or more service nodes for the one or more stateful service functions. The controller binds a forward chain identifier for the forward path with a reverse chain identifier for the reverse path for the service chain.

Abstract translation: 多个网络节点部署在网络中，每个网络节点被配置为向通过各个网络节点的业务应用服务功能。 控制器生成用于服务链的信息，其涉及通过所述一个或多个网络节点沿着前向路径应用于所述多个网络节点中的对应的一个或多个服务功能的业务。 控制器识别服务链中的一个或多个服务功能是有状态的。 当服务链的一个或多个服务功能是有状态时，控制器通过用于一个或多个有状态服务功能的一个或多个服务节点生成用于反向路径的信息。 控制器将正向路径的前向链标识符与用于服务链的反向路径的反向链标识符绑定。

公开(公告)号：US20230261981A1

公开(公告)日：2023-08-17

申请号：US18303493

申请日：2023-04-19

Applicant: Cisco Technology, Inc.

Inventor： Anubhav Gupta ,  Rex Fernando ,  Sanjay Kumar Hooda ,  Syam Sundar Appala ,  Samir Thoria

IPC: H04L45/302 ,  H04L12/28 ,  H04L45/74 ,  H04L47/20

CPC classification number: H04L45/302 ,  H04L12/2854 ,  H04L45/74 ,  H04L47/20

Abstract: In one embodiment, a method by an edge router configured to operate at a first site of a software-defined wide-area network includes receiving a data packet from a first host located in the first site, where the data packet is destined to a second host located in a second site, determining that an identifier of a second group to which the second host belongs is not available at the edge router, sending a request for an identifier of the second group to a network apparatus, where the request may comprise an address of the second host, receiving a response comprising the identifier of the second group from the network apparatus, determining that the second group is a destination group, applying one or more policies associated with the destination group to the data packet, and causing the data packet to be routed to the second host.