公开(公告)号：US09485118B1

公开(公告)日：2016-11-01

申请号：US13631652

申请日：2012-09-28

Applicant: Juniper Networks, Inc.

Inventor： Alia Atlas ,  John Galen Scudder ,  Ross W. Callon ,  Stu Grossman ,  Qi-Zhong Cao ,  Jeffrey Haas

IPC: H04L12/54 ,  H04L12/801

CPC classification number: H04L12/5695 ,  H04L47/10

Abstract: In general, techniques are described for dynamically controlling host-bound traffic by dynamically adding and updating, within the forwarding plane of a network device, network packet policers that each constrains, for one or more packet flows, an amount of host-bound traffic of the packet flows permitted to reach the control plane in accordance with available resources. In one example, a control plane of the network device detects internal congestion in the communication path from the forwarding plane to control plane (the “host-bound path”), identifies packet flows utilizing an excessive amount of host-bound path resources, computes limits for the identified packet flows, and adds “penalty-box policers” configured with the computed limits for the identified packet flows to the forwarding plane. The forwarding plane subsequently applies the policers to the identified packet flows to constrain the amount of traffic of the packet flows allowed to reach the control plane to the computed limits.

Abstract translation: 通常，描述了通过在网络设备的转发平面内动态地添加和更新网络分组策略器来动态地控制主机绑定业务的技术，所述网络分组策略对于一个或多个分组流限制了一个或多个分组流量的主机绑定业务量 允许根据可用资源到达控制平面的分组流。 在一个示例中，网络设备的控制平面检测从转发平面到控制平面（“主机绑定路径”）的通信路径中的内部拥塞，利用过多的主机绑定路径资源来识别分组流，计算 对所标识的分组流的限制，并且将配置有所识别的分组流的计算的限制的“惩罚方框策略器”添加到转发平面。 转发平面随后将策略器应用于所识别的分组流，以将允许到达控制平面的分组流的流量约束到计算的极限。

公开(公告)号：US20160294683A1

公开(公告)日：2016-10-06

申请号：US14675338

申请日：2015-03-31

Applicant: Juniper Networks, Inc.

Inventor： Yimin Shen ,  Raveendra Torvi ,  Ross W. Callon

IPC: H04L12/723 ,  H04L12/707

CPC classification number: H04L45/50 ,  H04L45/22 ,  H04L45/24 ,  H04L45/28 ,  H04L47/724

Abstract: Techniques are described for establishing a second label switched path (LSP) instance of an LSP having a first LSP instance. In one example, for each downstream router designated for the second LSP instance of the LSP, the router determines whether the router is part of the first instance of the LSP and, if so, whether the first and second LSP instances for that downstream router share a common link to a nexthop router. If the first and second LSP instances share a common link to a nexthop router, the downstream router transmits a first message to the nexthop router, wherein the first message includes a suggested label. The downstream router receives, from the nexthop router, a second message, wherein the second message includes the suggested label. In another example, a label reuse indicator flag in a message from the ingress router causes routers on the second LSP instance to reuse the label of the first LSP instance when the same link is used to the upstream router for both LSP instances.

Abstract translation: 描述了用于建立具有第一LSP实例的LSP的第二标签交换路径（LSP）实例的技术。 在一个示例中，对于为LSP的第二个LSP实例指定的每个下游路由器，路由器确定路由器是否是LSP的第一个实例的一部分，如果是，则该下游路由器的第一个和第二个LSP实例是否共享 与nexthop路由器的通用链接。 如果第一和第二LSP实例共享到下一跳路由器的公共链路，则下游路由器向下一个路由器发送第一消息，其中第一消息包括建议标签。 下游路由器从下一个路由器接收第二个消息，其中第二个消息包括建议的标签。 在另一个例子中，当入口路由器的消息中的标签重用指示符标志使得第二LSP实例上的路由器在两个LSP实例的上游路由器使用相同的链路时重用第一个LSP实例的标签。

公开(公告)号：US11924044B2

公开(公告)日：2024-03-05

申请号：US17656353

申请日：2022-03-24

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L41/12 ,  G06F9/48 ,  G06F9/50 ,  G06F11/20 ,  H04L45/02 ,  H04L45/48

CPC classification number: H04L41/12 ,  G06F9/4843 ,  G06F9/5061 ,  G06F11/2097 ,  H04L45/02 ,  H04L45/48 ,  G06F11/2023 ,  G06F2201/81

Abstract: In general, techniques are described for organizing execution of distributed operating systems for network devices. A device comprising hardware computing nodes may be configured to perform the techniques. The hardware computing nodes may execute a protocol by which to discover a topology of the plurality of hardware computing nodes, and determine, based on the topology, a subset of the plurality of hardware computing nodes to manage execution of a distributed operating system. The determined subset of the plurality of hardware computing nodes may execute a communication bus by which to synchronize operating system state information between the subset of the plurality of hardware computing nodes. The hardware computing nodes may further execute, based on the operating system state information, the distributed operating system to provide an execution environment in which one or more applications execute.

公开(公告)号：US10887173B2

公开(公告)日：2021-01-05

申请号：US15637775

申请日：2017-06-29

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L12/24 ,  G06F16/901 ,  G06F9/54 ,  G06F16/27 ,  H04L29/08

Abstract: In general, techniques are described for communicating state information in distribute operating system. A network device comprises a first hardware node and a second hardware node. The first hardware node may execute a first instance of a distributed operating system, and maintain a first data structure that stores a plurality of objects defining a portion of state information. The second hardware node may execute a second instance of the distributed operating system, and maintain a second data structure that stores synchronized versions of the plurality of objects. The first hardware node may further receive updated state information, update the first data structure to include the updated state information, and synchronize the updated first data structure with the second data structure. The second hardware node may synchronize the second data structure with the updated first data structure.

公开(公告)号：US10193807B1

公开(公告)日：2019-01-29

申请号：US15339473

申请日：2016-10-31

Applicant: Juniper Networks, Inc.

Inventor： Alia Atlas ,  John Galen Scudder ,  Ross W. Callon ,  Stu Grossman ,  Qi-Zhong Cao ,  Jeffrey Haas

IPC: H04L12/801 ,  H04L12/825

Abstract: In general, techniques are described for dynamically controlling host-bound traffic by dynamically adding and updating, within the forwarding plane of a network device, network packet policers that each constrains, for one or more packet flows, an amount of host-bound traffic of the packet flows permitted to reach the control plane in accordance with available resources. In one example, a control plane of the network device detects internal congestion in the communication path from the forwarding plane to control plane (the “host-bound path”), identifies packet flows utilizing an excessive amount of host-bound path resources, computes limits for the identified packet flows, and adds “penalty-box policers” configured with the computed limits for the identified packet flows to the forwarding plane. The forwarding plane subsequently applies the policers to the identified packet flows to constrain the amount of traffic of the packet flows allowed to reach the control plane to the computed limits.

公开(公告)号：US20180176082A1

公开(公告)日：2018-06-21

申请号：US15637775

申请日：2017-06-29

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L12/24 ,  G06F17/30

CPC classification number: H04L41/0846 ,  G06F9/54 ,  G06F16/273 ,  G06F16/9027 ,  H04L41/0816 ,  H04L41/0886 ,  H04L67/10

Abstract: In general, techniques are described for communicating state information in distribute operating system. A network device comprises a first hardware node and a second hardware node. The first hardware node may execute a first instance of a distributed operating system, and maintain a first data structure that stores a plurality of objects defining a portion of state information. The second hardware node may execute a second instance of the distributed operating system, and maintain a second data structure that stores synchronized versions of the plurality of objects. The first hardware node may further receive updated state information, update the first data structure to include the updated state information, and synchronize the updated first data structure with the second data structure. The second hardware node may synchronize the second data structure with the updated first data structure.

公开(公告)号：US11316744B2

公开(公告)日：2022-04-26

申请号：US15637809

申请日：2017-06-29

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L41/12 ,  H04L45/48 ,  G06F9/48 ,  H04L45/02 ,  G06F9/50 ,  G06F11/20

Abstract: In general, techniques are described for organizing execution of distributed operating systems for network devices. A device comprising hardware computing nodes may be configured to perform the techniques. The hardware computing nodes may execute a protocol by which to discover a topology of the plurality of hardware computing nodes, and determine, based on the topology, a subset of the plurality of hardware computing nodes to manage execution of a distributed operating system. The determined subset of the plurality of hardware computing nodes may execute a communication bus by which to synchronize operating system state information between the subset of the plurality of hardware computing nodes. The hardware computing nodes may further execute, based on the operating system state information, the distributed operating system to provide an execution environment in which one or more applications execute.

公开(公告)号：US20220217053A1

公开(公告)日：2022-07-07

申请号：US17656353

申请日：2022-03-24

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L41/12 ,  H04L45/48 ,  G06F9/48 ,  H04L45/02 ,  G06F9/50 ,  G06F11/20

Abstract: In general, techniques are described for organizing execution of distributed operating systems for network devices. A device comprising hardware computing nodes may be configured to perform the techniques. The hardware computing nodes may execute a protocol by which to discover a topology of the plurality of hardware computing nodes, and determine, based on the topology, a subset of the plurality of hardware computing nodes to manage execution of a distributed operating system. The determined subset of the plurality of hardware computing nodes may execute a communication bus by which to synchronize operating system state information between the subset of the plurality of hardware computing nodes. The hardware computing nodes may further execute, based on the operating system state information, the distributed operating system to provide an execution environment in which one or more applications execute.

公开(公告)号：US11316775B2

公开(公告)日：2022-04-26

申请号：US15637839

申请日：2017-06-29

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L12/24 ,  H04L45/00 ,  H04L45/302 ,  G06F9/48 ,  H04L41/12 ,  H04L45/48 ,  G06F9/50 ,  H04L41/0654 ,  H04L45/021 ,  H04L12/64 ,  H04L41/0873 ,  G06F11/16 ,  H04L43/0811 ,  H04L41/082 ,  G06F11/14 ,  H04L45/58

Abstract: In general, techniques are described for maintaining coherency in distributed operating systems for network devices. A network device comprising hardware computing nodes may be configured to perform the techniques. The hardware computing nodes may execute a distributed operating system. At least one the hardware computing nodes may determine whether one or more of the plurality of hardware computing nodes has failed and is no longer supporting execution of the distributed operating system, and determine whether remaining ones of the plurality of hardware computing nodes exceeds a quorum threshold. The at least one of the hardware computing nodes may further restart, when the remaining ones of the plurality of hardware computing nodes is less than the quorum threshold, the distributed operating system.

公开(公告)号：US11265216B2

公开(公告)日：2022-03-01

申请号：US17135421

申请日：2020-12-28

Applicant: Juniper Networks, Inc.

Inventor： David M. Katz ,  Ross W. Callon ,  Scott Mackie ,  Dennis C. Ferguson

IPC: H04L12/24 ,  G06F16/901 ,  G06F9/54 ,  G06F16/27 ,  H04L29/08 ,  H04L41/084 ,  H04L41/0816 ,  H04L67/10 ,  H04L41/08

Abstract: In general, techniques are described for communicating state information in distribute operating system. A network device comprises a first hardware node and a second hardware node. The first hardware node may execute a first instance of a distributed operating system, and maintain a first data structure that stores a plurality of objects defining a portion of state information. The second hardware node may execute a second instance of the distributed operating system, and maintain a second data structure that stores synchronized versions of the plurality of objects. The first hardware node may further receive updated state information, update the first data structure to include the updated state information, and synchronize the updated first data structure with the second data structure. The second hardware node may synchronize the second data structure with the updated first data structure.