公开(公告)号：US10397120B2

公开(公告)日：2019-08-27

申请号：US15280682

申请日：2016-09-29

Applicant: Huawei Technologies Co., Ltd.

Inventor： Shibi Huang ,  Yong Tian ,  Linda Dunbar

IPC: G01R31/08 ,  H04L12/851 ,  H04L12/24 ,  H04L29/08 ,  H04L12/725 ,  H04M15/00 ,  H04L12/859 ,  H04L12/721

Abstract: Disclosed are a flow classifier, policy and charging rules function unit and controller. The flow classifier receives a service chain selection control policy sent by a policy and charging rules function unit. The service chain selection control policy includes a corresponding relation between an application type and an identifier of a service chain. The service chain is a path formed by a forwarding device and a value-added service device both of which a service flow with the application type needs to pass through. The flow classifier detects the service flow with the application type based on the service chain selection control policy and adds the identifier of the service chain to a message of the service flow. The flow classifier sends the message of the service flow with the added identifier of the service chain to a forwarding device directly connected to the flow classifier.

公开(公告)号：US12177109B2

公开(公告)日：2024-12-24

申请号：US17981574

申请日：2022-11-07

Applicant: Huawei Technologies Co., Ltd.

Inventor： Michael McBride ,  Yingzhen Qu ,  Linda Dunbar

IPC: H04L45/02 ,  H04L9/08 ,  H04L9/32 ,  H04L45/748

Abstract: A routing device including a memory and a processor. The memory stores instructions. The processor is configured to execute the instructions to receive a signed route origin authorization (ROA), which includes a blockchain hash, and a border gateway protocol (BGP) update message, which includes one or more routes. The processor is further configured to implement a Route Origin Validation (ROV) process using the blockchain hash in the signed ROA to determine whether the one or more routes in the BGP update message are valid; update a routing table to include the one or more routes from the BGP update message when the one or more routes are determined to be valid by the ROV process; and refrain from updating the routing table with the one or more routes from the BGP update message when the one or more routes are determined to be invalid by the ROV process.

公开(公告)号：US20230300051A1

公开(公告)日：2023-09-21

申请号：US18325831

申请日：2023-05-30

Applicant: Huawei Technologies Co., Ltd.

Inventor： Haoyu Song ,  Linda Dunbar ,  Kaippallimalil Mathew John

IPC: H04L43/0864 ,  H04L69/22

CPC classification number: H04L43/0864 ,  H04L69/22

Abstract: A method implemented by a network edge node including adding a first header including a flags field and a data field including a first metadata to a first packet. The network edge node sets a first flag in the flags field of the first header to a first value to indicate that the first packet is a forward flow packet. The network edge node transmits the first packet towards a second network edge node. The network edge node receives a second packet including the first metadata in the data field and a second flag in the flags field set to the first value to indicate that the second packet is a reverse flow packet. The network edge generates a second metadata corresponding to receipt of the second packet and transmits an export message that includes the first metadata and second metadata toward a controller.

公开(公告)号：US11711242B2

公开(公告)日：2023-07-25

申请号：US17234504

申请日：2021-04-19

Applicant: Huawei Technologies Co., Ltd.

Inventor： Linda Dunbar

IPC: H04L12/46 ,  H04L45/02 ,  H04L45/64 ,  H04L9/40 ,  H04L69/326

CPC classification number: H04L12/4675 ,  H04L12/4633 ,  H04L45/02 ,  H04L45/64 ,  H04L63/0428 ,  H04L69/326 ,  H04L63/0209

Abstract: A Software Defined Wide Area Network (SD-WAN) edge node is disclosed. The SD-WAN edge node includes edge node SD-WAN ports coupled to untrusted underlay networks. The SD-WAN edge node transmits a first Border Gateway Protocol (BGP) update message advertising WAN (Wide Area Network) properties of the edge node SD-WAN ports to a local controller via an encrypted channel over the untrusted underlay network. The SD-WAN edge node receives a second BGP update message from the local controller, the second BGP update message advertising WAN properties of peer node SD-WAN ports of a peer node. The SD-WAN edge node establishes a security association with the peer node over the untrusted underlay networks based on the WAN properties of the edge node SD-WAN ports and the WAN properties of the peer node SD-WAN ports.

公开(公告)号：US12120015B2

公开(公告)日：2024-10-15

申请号：US17244775

申请日：2021-04-29

Applicant: Huawei Technologies Co., Ltd.

Inventor： Huaimo Chen ,  Linda Dunbar

IPC: H04L45/02

CPC classification number: H04L45/04 ,  H04L45/02

Abstract: A method performed by a controller configured to implement Border Gateway Protocol (BGP) in a communications system, comprising establishing a controller BGP (cBGP) peer session with a network element (NE), receiving a message for communication through the cBGP session from the NE, determining whether the message is permitted to be communicated through the cBGP session based on whether the message carries routing information; transmitting the message to the NE through the cBGP session when the message is permitted to be communicated through the cBGP session, and receiving a response message of the first type from the NE through the cBGP session.

公开(公告)号：US20230198837A1

公开(公告)日：2023-06-22

申请号：US18170718

申请日：2023-02-17

Applicant: Huawei Technologies Co., Ltd.

Inventor： Linda Dunbar ,  Katherine Zhao

IPC: H04L41/0806 ,  G06F9/455 ,  H04L12/46 ,  H04L12/66 ,  H04L45/24 ,  H04L45/50 ,  H04L45/586 ,  H04L9/40 ,  H04L67/104 ,  H04L67/141 ,  H04L67/53

CPC classification number: H04L41/0806 ,  G06F9/45558 ,  H04L12/4633 ,  H04L12/4641 ,  H04L12/66 ,  H04L45/24 ,  H04L45/50 ,  H04L45/586 ,  H04L63/0272 ,  H04L63/029 ,  H04L67/104 ,  H04L67/141 ,  H04L67/53 ,  G06F2009/45595

Abstract: Techniques are presented to stitch existing virtual private networks (VPNs), such as MPLS based VPNs, with virtual private clouds (VPCs) in public cloud data centers. The stitching architecture can be realized by configuring a virtual routing application (VRA) in the VPCs and configuring virtual routing applications and a virtual routing application controller in the existing VPN. For VPCs in public clouds that do not have a VRA, traffic can be default routed to VPCs with a VRA.

公开(公告)号：US20210250275A1

公开(公告)日：2021-08-12

申请号：US17244775

申请日：2021-04-29

Applicant: Huawei Technologies Co., Ltd.

Inventor： Huaimo Chen ,  Linda Dunbar

IPC: H04L12/715 ,  H04L12/751

Abstract: A method performed by a controller configured to implement Border Gateway Protocol (BGP) in a communications system, comprising establishing a controller BGP (cBGP) peer session with a network element (NE), receiving a message for communication through the cBGP session from the NE, determining whether the message is permitted to be communicated through the cBGP session based on whether the message carries routing information; transmitting the message to the NE through the cBGP session when the message is permitted to be communicated through the cBGP session, and receiving a response message of the first type from the NE through the cBGP session.

公开(公告)号：US10673760B2

公开(公告)日：2020-06-02

申请号：US15336287

申请日：2016-10-27

Applicant: HUAWEI TECHNOLOGIES CO., LTD.

Inventor： Shibi Huang ,  Yong Huang ,  Yong Tian ,  Linda Dunbar

IPC: H04L12/46 ,  H04L12/833 ,  H04L12/24 ,  H04L12/803 ,  H04L29/08 ,  H04L12/721

Abstract: A method, an apparatus, and a system are provided for load balancing of a service chain. The method includes: receiving, by a flow classifier, a service chain selection and control policy sent by a policy and charging rules function PCRF unit; hashing, by the flow classifier according to a hash quantity, a service flow corresponding to a service chain identifier, to obtain multiple subflows, and adding the service chain identifier and hashing factors to packets of the subflows, where different subflows correspond to different hashing factors; and sending, by the flow classifier, the packets of the subflows after the service chain identifier and the hashing factors are added, to a forwarding device.

公开(公告)号：US20230262112A1

公开(公告)日：2023-08-17

申请号：US18303747

申请日：2023-04-20

Applicant: Huawei Technologies Co., Ltd.

Inventor： Linda Dunbar ,  Huaimo Chen

IPC: H04L67/1004 ,  H04L45/12 ,  H04L45/02

CPC classification number: H04L67/1004 ,  H04L45/124 ,  H04L45/04

Abstract: A method used by an egress router is disclosed. The egress router obtains a capacity index of an application server attached to the egress router. The egress router further obtains a load index describing a load measurement between the egress router and the application server during a certain time period. The egress router encodes the capacity index and the load index into a packet. The egress router transmits the packet to one or more routers in an Internet protocol (IP) network.

公开(公告)号：US20230079689A1

公开(公告)日：2023-03-16

申请号：US17987598

申请日：2022-11-15

Applicant: Huawei Technologies Co., Ltd.

Inventor： Linda Dunbar

IPC: H04L9/40 ,  H04L45/42

Abstract: A method implemented by a first edge node in an SD-WAN, the method comprises: establishing a secure management tunnel between an RR in the SD-WAN and the first edge node; advertising properties of the first edge node to the RR via the secure management tunnel for the RR to propagate the properties to a second edge node; establishing a first secure data channel with the second edge node; and exchanging first information with the second edge node. A method implemented by an RR in an SD-WAN, the method comprises: receiving first RTC NLRI from a first edge node in the SD-WAN; receiving second RTC NLRI from a second edge node in the SD-WAN; installing an outbound route filter based on the first RTC NLRI; and processing the second RTC NLRI based on the outbound route filter.