公开(公告)号：US20180026834A1

公开(公告)日：2018-01-25

申请号：US15217573

申请日：2016-07-22

Applicant: Cisco Technology, Inc.

Inventor： Wojciech Dec ,  Sanjay Agrawal ,  Yi Yang ,  Ruchir Gupta ,  Syed Basheeruddin Ahmed

IPC: H04L12/24

CPC classification number: H04L41/082 ,  H04L41/0893 ,  H04L41/145 ,  H04L41/5054 ,  H04L41/5096

Abstract: Disclosed are systems, methods, and computer-readable storage media for automatically, dynamically generating feature model augmentation statements for data nodes for a new network feature described in a data modeling language. A software-defined controller, or other network components, can detect the availability of a new network feature defined by a feature model in a data modeling language and process the feature model to create an authorization policy data defining access rules control rules for the new network feature. Based on the authorization policy, the controller or the authorization model generator can generate a set of augmentation statements for one or more data nodes in the feature model of the new network feature and augment the new feature model with the augmentation statements for controlling access to the new network feature.

公开(公告)号：US09722910B2

公开(公告)日：2017-08-01

申请号：US14666786

申请日：2015-03-24

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Yi Yang ,  Alvaro E. Retana ,  Keyur Patel ,  Fabien Degouet

IPC: H04L12/56 ,  H04L12/715 ,  H04L12/66 ,  H04L29/06

CPC classification number: H04L45/04 ,  H04L12/66 ,  H04L63/101 ,  H04L65/1036 ,  H04L65/607

Abstract: A method for controlling transit of routing messages in a network comprising multiple autonomous systems (AS) is disclosed. The method includes receiving, at a first AS, a routing message of an inter-AS routing protocol and identifying that the routing message comprises transit domain control (TDC) information specifying one or more autonomous systems to which the routing message may be propagated and/or one or more autonomous systems to which the routing message may not be propagated. The method further includes propagating the routing message from the first AS to a second AS in accordance with the TDC information.

公开(公告)号：US20160261485A1

公开(公告)日：2016-09-08

申请号：US15156215

申请日：2016-05-16

Applicant: Cisco Technology, Inc.

Inventor： Yi Yang ,  Alvaro E. Retana ,  James L. Ng ,  Abhay Roy ,  Alfred C. Lindem ,  Sina Mirtorabi ,  Timothy M. Gage ,  Syed Khalid Raza

IPC: H04L12/755 ,  H04L12/801 ,  H04L12/751 ,  H04L12/773

CPC classification number: H04L45/021 ,  H04L45/02 ,  H04L45/025 ,  H04L45/54 ,  H04L45/60 ,  H04L47/10 ,  H04L63/0407

Abstract: In one embodiment, a first router determines whether an interface coupling the first router to one or more second routers is transit-only. When the interface is transit-only, the first router generates an Open Shortest Path First (OSPF) Link State Advertisement (LSA) that includes an address for the interface and a designated network mask. The designated network mask operates as a transit-only identification that indicates the address should not be installed in a Routing Information Base (RIB) upon receipt of the OSPF LSA at the one or more second routers. When the network is not transit-only, the first router generates an OSPF LSA that includes the address for the interface but does not include the designated network mask, to permit installation of the address in a RIB upon receipt of the OSPF LSA at the one or more second routers.

Abstract translation: 在一个实施例中，第一路由器确定将第一路由器耦合到一个或多个第二路由器的接口是否只是转接。 当接口只有传输时，第一个路由器生成包含接口地址和指定网络掩码的开放最短路径优先（OSPF）链路状态通告（LSA）。 指定的网络掩码作为仅传输标识操作，其指示在一个或多个第二路由器上接收到OSPF LSA时，该地址不应安装在路由信息库（RIB）中。 当网络不传输时，第一个路由器生成包含接口地址但不包括指定网络掩码的OSPF LSA，以便在接收到OSPF LSA时在一个RIB中安装该地址 或更多的第二路由器。

公开(公告)号：US11558478B2

公开(公告)日：2023-01-17

申请号：US17817568

申请日：2022-08-04

Applicant: Cisco Technology, Inc.

Inventor： Yi Yang ,  Wojciech Dec ,  Syed Basheeruddin Ahmed ,  Sanjay Agrawal ,  Ruchir Gupta

IPC: H04L67/51 ,  G06F9/455

Abstract: Systems and methods provide for scaling service discovery in a micro-service environment. A controller can inject a service discovery agent onto a host. At least one of the controller or the agent can identify a first set of micro-service containers that are dependencies of the first micro-service container and a second set of micro-service containers that are dependencies of the second micro-service container. At least one of the controller or the agent can update routing data for the first set of micro-service containers and the second set of micro-service containers. At least one of the controller or the agent can determine the second micro-service container has terminated on the host computing device. At least one of the controller or the agent can update the agent to remove the routing data for the second set of micro-service containers.

公开(公告)号：US20190158365A1

公开(公告)日：2019-05-23

申请号：US16252309

申请日：2019-01-18

Applicant: Cisco Technology, Inc.

Inventor： Sanjay Agrawal ,  Ruchir Gupta ,  Syed Basheeruddin Ahmed ,  Yi Yang ,  Meenakshi Kaushik

IPC: H04L12/24 ,  H04L12/26 ,  G06T11/20

Abstract: Systems, methods, and non-transitory computer-readable storage media for visualizing current and historical access policy of a group based policy. A first group based policy and a second group based policy are received at a computing device, where each group based policy includes policy rules defining a range of destination internet protocol addresses, a range of source internet protocol addresses and a range of access ports. The computing device renders a three dimensional representation of the first group based policy, based on the policy rules of the first group based policy. The computing device renders a three dimensional representation of the second group based policy, based on the policy rules of the second group based policy. The computing device displays the representations of the first group based policy and second group based policy on a graphical interface.

公开(公告)号：US10298491B2

公开(公告)日：2019-05-21

申请号：US15247077

申请日：2016-08-25

Applicant: Cisco Technology, Inc.

Inventor： Deepak Kumar ,  Yi Yang ,  Carlos M. Pignataro ,  Nagendra Kumar Nainar

IPC: H04L12/28 ,  H04L12/721 ,  H04L12/751 ,  H04L12/709

Abstract: In response to a path monitoring task for a particular source/destination pair, a network controller determines whether stored information includes paths for the particular source/destination pair. When the stored information includes paths for the particular source/destination pair, a subset of source ports is selected that covers all the paths for the particular source/destination pair. A probe message is sent to cause an ingress switch to send probe packets using the subset of source ports. Paths for the particular source/destination pair are computed based on received probe packets. A determination is made whether a topology for the data center network has changed by comparing the paths computed based on the receive probe packets for the particular source/destination pair with the paths included in the stored information for the particular source/destination pair.

公开(公告)号：US20180062990A1

公开(公告)日：2018-03-01

申请号：US15247077

申请日：2016-08-25

Applicant: Cisco Technology, Inc.

Inventor： Deepak Kumar ,  Yi Yang ,  Carlos M. Pignataro ,  Nagendra Kumar Nainar

IPC: H04L12/721 ,  H04L12/751 ,  H04L12/46 ,  H04L12/709

CPC classification number: H04L45/70 ,  H04L45/02 ,  H04L45/245 ,  H04L45/26

Abstract: In response to a path monitoring task for a particular source/destination pair, a network controller determines whether stored information includes paths for the particular source/destination pair. When the stored information includes paths for the particular source/destination pair, a subset of source ports is selected that covers all the paths for the particular source/destination pair. A probe message is sent to cause an ingress switch to send probe packets using the subset of source ports. Paths for the particular source/destination pair are computed based on received probe packets. A determination is made whether a topology for the data center network has changed by comparing the paths computed based on the receive probe packets for the particular source/destination pair with the paths included in the stored information for the particular source/destination pair.

公开(公告)号：US20170026288A1

公开(公告)日：2017-01-26

申请号：US14812239

申请日：2015-07-29

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Yi Yang ,  Alvaro E. Retana ,  Steven Edward Moore ,  James L. Ng ,  Timothy M. Gage

IPC: H04L12/741 ,  H04L29/12

CPC classification number: H04L45/745 ,  H04L45/02 ,  H04L45/04

Abstract: Present disclosure relates to methods for preparing BGP update messages for transmission and processing received update messages. The methods are based on grouping path attributes common to a plurality of IP address prefixes into respective sets identified with respective set identifiers and, instead of duplicating path attributes in each BGP update message, including a respective identifier referring to a certain set of path attributes provided in an earlier BGP update message when sending subsequent update messages. Grouping of path attributes into individual sets associated with respective identifiers provides significant advantages by enabling re-use of the results of previous processing on both the sending and receiving sides associated with transmission of BGP update messages. In addition, such an approach limits the amount of information transmitted in the control plane because duplicate sets of path attributes may only be transmitted once and merely be referred to in subsequent update messages.

Abstract translation: 本公开涉及用于准备用于传输和处理接收到的更新消息的BGP更新消息的方法。 这些方法基于将多个IP地址前缀公用的路径属性分组到用各个集合标识符标识的相应集合中，而不是在每个BGP更新消息中复制路径属性，包括参考提供的一组路径属性的相应标识符 在更新的BGP更新消息中发送后续更新消息。 将路径属性分组到与相应标识符相关联的各个集合中通过能够重新使用与BGP更新消息的发送相关联的发送和接收侧的先前处理的结果来提供显着的优点。 此外，这种方法限制了在控制平面中发送的信息量，因为路由属性的重复集合只能被发送一次，并且仅在随后的更新消息中被引用。

公开(公告)号：US11018952B2

公开(公告)日：2021-05-25

申请号：US16252309

申请日：2019-01-18

Applicant: Cisco Technology, Inc.

Inventor： Sanjay Agrawal ,  Ruchir Gupta ,  Syed Basheeruddin Ahmed ,  Yi Yang ,  Meenakshi Kaushik

IPC: H04L12/24 ,  G06T11/20 ,  H04L12/26

Abstract: Systems, methods, and non-transitory computer-readable storage media for visualizing current and historical access policy of a group based policy. A first group based policy and a second group based policy are received at a computing device, where each group based policy includes policy rules defining a range of destination internet protocol addresses, a range of source internet protocol addresses and a range of access ports. The computing device renders a three dimensional representation of the first group based policy, based on the policy rules of the first group based policy. The computing device renders a three dimensional representation of the second group based policy, based on the policy rules of the second group based policy. The computing device displays the representations of the first group based policy and second group based policy on a graphical interface.

公开(公告)号：US10609621B2

公开(公告)日：2020-03-31

申请号：US15190798

申请日：2016-06-23

Applicant: Cisco Technology, Inc.

Inventor： Yi Yang ,  Alvaro Enrique Retana

IPC: H04W40/18 ,  H04W40/24 ,  H04L12/721 ,  H04W40/30 ,  H04L12/753 ,  H04L12/717

Abstract: In one embodiment, a method comprises receiving, by a network device within a tree-based topology rooted by a root network device, a request message from a child network device for generating an optimized tree-based topology for a future use by the child network device at a future time instance; the network device executing an objective function for generating the optimized tree-based topology for the future use by the child network device; and the network device providing network communications, for the child network device, at the future time instance using the optimized tree-based topology.