公开(公告)号：US11784924B2

公开(公告)日：2023-10-10

申请号：US17110457

申请日：2020-12-03

Applicant: Cisco Technology, Inc.

Inventor： Samir Thoria ,  Ram Dular Singh ,  Praveen Raju Kariyanahalli ,  Laxmikantha Reddy Ponnuru ,  Ramanathan Lakshmikanthan

IPC: H04L45/50 ,  H04L45/00 ,  H04L45/02 ,  H04L12/46

CPC classification number: H04L45/50 ,  H04L12/4641 ,  H04L45/04 ,  H04L45/22

Abstract: Systems and methods are provided for receiving bandwidth metrics from a plurality of routers on respective link routes in a network, compiling a link database including the bandwidth metrics of each respective link route in the network, selecting a first designated link path from the link database between a first router and a second router based on an application routing policy, the application routing policy being based on a routing metric, providing a first multiprotocol label switching label based on the first designated link path to the first router of the plurality of routers in the network, and restricting network traffic of the first router to the first designated link path provided in the first multiprotocol label switching label.

公开(公告)号：US20250133022A1

公开(公告)日：2025-04-24

申请号：US19007694

申请日：2025-01-02

Applicant: Cisco Technology, Inc.

Inventor： Samir Thoria ,  Ram Dular Singh ,  Laxmikantha Reddy Ponnuru

IPC: H04L45/76 ,  H04L9/40 ,  H04L45/50 ,  H04L45/64

Abstract: According to some embodiments, a method is performed by a software defined wide area network (SD-WAN) edge router in a hierarchical SD-WAN network comprising a plurality of edge routers and a plurality of border routers. The method comprises: originating a SD-WAN system route for advertising reachability to the edge router, the system route comprising an encryption key associated with the edge router; and transmitting the system route to one or more SD-WAN border routers. The method may further comprise: receiving a packet destined for the edge router from one of the one or more SD-WAN border routers, wherein the packet is at least partially encrypted with the encryption key associated with the edge router; and decrypting the received packet.

公开(公告)号：US20240205094A1

公开(公告)日：2024-06-20

申请号：US18591960

申请日：2024-02-29

Applicant: Cisco Technology, Inc.

Inventor： Alberto Rodriguez-Natal ,  Saswat Praharaj ,  Lorand Jakab ,  Fabio R. Maino ,  Pradeep Kumar Kathail ,  Vivek Agarwal ,  Ram Dular Singh

IPC: H04L41/12

CPC classification number: H04L41/12

Abstract: An application monitoring system for collecting, utilizing, and/or exchanging state information (e.g., application state and network state), configuration information, and/or other information to make network optimizations for applications orchestrated by an application orchestration system. The application monitoring system may include an application orchestrator discovery component that is configured to determine a presence of an application orchestration system for orchestrating applications. The application monitoring system may also include one or more application watch components for monitoring, among other things, application state, application configuration, and/or application replicas. The application monitoring system may further include a network state propagation component configured to provide network state information to the orchestration system.

公开(公告)号：US20240031288A1

公开(公告)日：2024-01-25

申请号：US17813410

申请日：2022-07-19

Applicant: Cisco Technology, Inc.

Inventor： Laxmikantha Reddy Ponnuru ,  Samir Thoria ,  Arul Murugan Manickam ,  Ram Dular Singh

IPC: H04L45/7453

CPC classification number: H04L45/7453

Abstract: A system of one embodiment that provides stateless symmetric forwarding of packets in a computer network. The system includes a memory and a processor. The system is operable to determine a cluster state of a plurality of border routers in a cluster. The system is operable to communicate the cluster state to at least one branch node in the computer network. The system is operable to generate a network level consistent hash based on the cluster state. The system is operable to route a first packet through a first border router of the plurality of border routers in the cluster using the network level consistent hash. After the first packet is sent through a first border router, the system is further operable to route a second packet through the first border router of the plurality of border routers in the cluster using the network level consistent hash.

公开(公告)号：US11582068B2

公开(公告)日：2023-02-14

申请号：US17091240

申请日：2020-11-06

Applicant: Cisco Technology, Inc.

Inventor： Laxmikantha Reddy Ponnuru ,  Samir Thoria ,  Managa Sunitha Arun Kumar ,  Satyajit Das ,  Ram Dular Singh

IPC: H04L12/46 ,  H04L45/00

Abstract: The present disclosure is directed to a mechanism for optimized application performance in SD-WAN, and includes the steps of receiving initial traffic packets at a first site for transmission to a second site; determining whether a direct tunnel is established between the first site and the second site based on a state of the second site, the state comprising an active state indicating that a direct tunnel is established between the first and second sites or an inactive state indicating that the direct tunnel is not established between the first and second sites; and in response to determining that the direct tunnel is not established, determining that the initial packets satisfy a configured trigger; forwarding the initial packets to the second site via a backup path; establishing the direct tunnel between the first and second sites; and forwarding subsequent traffic packets to the second site via the established direct tunnel.

公开(公告)号：US20250150339A1

公开(公告)日：2025-05-08

申请号：US18940829

申请日：2024-11-07

Applicant: Cisco Technology, Inc.

Inventor： Alberto Rodriguez-Natal ,  Saswat Praharaj ,  Pradeep Kumar Kathail ,  Fabio R. Maino ,  Lorand Jakab ,  Ram Dular Singh ,  Vivek Agarwal

IPC: H04L41/0816 ,  H04L41/085

Abstract: Techniques for an application watcher system that includes a plurality of watchers that obtain various types of application configurations and/or state data which is used to make networking decisions and drive networking operations. The watchers of the application watcher system may each be configured to communicate with an application orchestration system that manages the application and obtain different types of application configurations and/or state data. In some instances, the application watcher system may run on a network orchestrator of the network, or be in communication with the network orchestrator, and provide application configurations and/or state data to the network orchestrator to make networking decisions.

公开(公告)号：US12199868B2

公开(公告)日：2025-01-14

申请号：US17804333

申请日：2022-05-27

Applicant: Cisco Technology, Inc.

Inventor： Samir Thoria ,  Ram Dular Singh ,  Laxmikantha Reddy Ponnuru

IPC: H04L45/76 ,  H04L9/40 ,  H04L45/50 ,  H04L45/64

Abstract: According to some embodiments, a method is performed by a software defined wide area network (SD-WAN) edge router in a hierarchical SD-WAN network comprising a plurality of edge routers and a plurality of border routers. The method comprises: originating a SD-WAN system route for advertising reachability to the edge router, the system route comprising an encryption key associated with the edge router; and transmitting the system route to one or more SD-WAN border routers. The method may further comprise: receiving a packet destined for the edge router from one of the one or more SD-WAN border routers, wherein the packet is at least partially encrypted with the encryption key associated with the edge router; and decrypting the received packet.

公开(公告)号：US20240069995A1

公开(公告)日：2024-02-29

申请号：US17900020

申请日：2022-08-31

Applicant: Cisco Technology, Inc.

Inventor： Saswat Praharaj ,  Fabio R. Maino ,  Alberto Rodriguez Natal ,  Ram Dular Singh ,  Vivek Agarwal

IPC: G06F9/54

CPC classification number: G06F9/547 ,  G06F9/541

Abstract: Techniques for providing a standardized interface that is configured to provide application developers with ways for interacting with different wide area network controllers. A standardized interface may include an application programming interface (API) server that can receive a connectivity request associated with an application that is to be hosted on an application orchestration system. The API server may determine, based at least in part on the connectivity request, a vendor network to be used by the application to send traffic to a remote service. Based at least in part on determining the vendor network, the API server may translate the connectivity request into a first format that is understandable by a controller of the vendor network. The API server may also provide the connectivity request in the first format to the controller of the vendor network such that a path through the vendor network can be determined.

公开(公告)号：US20230388233A1

公开(公告)日：2023-11-30

申请号：US17804333

申请日：2022-05-27

Applicant: Cisco Technology, Inc.

Inventor： Samir Thoria ,  Ram Dular Singh ,  Laxmikantha Reddy Ponnuru

IPC: H04L45/76 ,  H04L45/64 ,  H04L45/50 ,  H04L9/40

CPC classification number: H04L45/76 ,  H04L45/64 ,  H04L45/50 ,  H04L63/0485

Abstract: According to some embodiments, a method is performed by a software defined wide area network (SD-WAN) edge router in a hierarchical SD-WAN network comprising a plurality of edge routers and a plurality of border routers. The method comprises: originating a SD-WAN system route for advertising reachability to the edge router, the system route comprising an encryption key associated with the edge router; and transmitting the system route to one or more SD-WAN border routers. The method may further comprise: receiving a packet destined for the edge router from one of the one or more SD-WAN border routers, wherein the packet is at least partially encrypted with the encryption key associated with the edge router; and decrypting the received packet.

公开(公告)号：US11381478B2

公开(公告)日：2022-07-05

申请号：US17140273

申请日：2021-01-04

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Vamsidhar Valluri ,  Chandramouli Balasubramanian ,  Anand Oswal ,  Ram Dular Singh

IPC: H04L12/24 ,  H04L41/5051 ,  H04L43/55 ,  H04L43/091

Abstract: In one embodiment, a method includes providing a first profile to a plurality of edge routers of the SD-WAN, the plurality of edge routers operable to interface a plurality of devices to the SD-WAN. The first profile enables the plurality of edge routers to discover which devices of the plurality of devices support a first application. The method includes receiving, from one or more of the edge routers, information indicating which devices of the plurality of devices support the first application and building a first application fabric based on the information indicating which devices of the plurality of devices support the first application.