公开(公告)号：US09036476B2

公开(公告)日：2015-05-19

申请号：US13630458

申请日：2012-09-28

Applicant: Juniper Networks, Inc.

Inventor： Jagadish Grandhi ,  Gopi Krishna ,  Ananda Sathyanarayana ,  Arun Balasubramanian ,  Bobby Vandalore

IPC: H04L12/803 ,  H04L12/707 ,  H04L12/723 ,  H04L12/873 ,  H04L12/913 ,  H04L12/801 ,  H04L12/911

CPC classification number: H04L45/22 ,  H04L45/24 ,  H04L45/50 ,  H04L47/125 ,  H04L47/14 ,  H04L47/52 ,  H04L47/724 ,  H04L47/824

Abstract: In general, techniques are described for maintaining load balancing after service application. A network device comprising ingress and egress forwarding components and a service card may implement the techniques. An ingress forwarding component receives a packet and, in response to a determination that the service is to be applied to the packet, updates the packet to include an ingress identifier that identifies the ingress forwarding component, thereafter transmitting the updated packet to the service card. The service card applies the service to the updated packet to generate a serviced packet and transmits the serviced packet to the ingress forwarding component identified by the ingress identifier so as to maintain load balancing of packet flows across the plurality of forwarding components. The ingress forwarding component determines a next hop to which to forward the serviced packet and the egress forwarding component forwards the serviced packet to the determined next hop.

Abstract translation: 通常，描述了在维护应用后维护负载平衡的技术。 包括入口和出口转发组件和服务卡的网络设备可以实现这些技术。 入口转发组件接收分组，并且响应于确定将应用于分组的服务，更新分组以包括标识入口转发组件的入口标识符，然后将更新的分组发送到服务卡。 服务卡将服务应用于更新的分组，以生成服务分组，并将服务分组发送到由入口标识符标识的入口转发组件，以便保持跨多个转发组件的分组流的负载均衡。 入口转发组件确定转发服务分组的下一跳，并且出口转发组件将服务分组转发到确定的下一跳。

公开(公告)号：US20150071225A1

公开(公告)日：2015-03-12

申请号：US14540958

申请日：2014-11-13

Applicant: Juniper Networks, Inc.

Inventor： Gopi Krishna ,  Apurva Mehta

IPC: H04W76/02 ,  H04L12/741 ,  H04L12/721

CPC classification number: H04W76/021 ,  H04L45/566 ,  H04L45/60 ,  H04L45/745 ,  H04L61/2514 ,  H04L61/2517 ,  H04L61/2528 ,  H04W76/11 ,  H04W76/12

Abstract: Techniques are described for performing inline NAT functions in a forwarding element of a mobile gateway router or other device in which subscriber sessions of a mobile access network are distributed across a plurality of session management cards. The session management cards pre-allocate a public network address and port range for subscribers at the time a network connection is established in response to connection request prior to receiving any data traffic associated with the subscriber. NAT profiles are programmed into hardware forwarding elements of the mobile gateway router for inline NAT when routing subscriber traffic for the mobile access network.

Abstract translation: 描述了用于在移动网关路由器或其他设备的转发元件中执行内联NAT功能的技术，其中移动接入网络的用户会话分布在多个会话管理卡上。 会话管理卡在接收到与用户相关联的任何数据流量之前，在响应于连接请求建立网络连接时为用户预分配公共网络地址和端口范围。 当为移动接入网络路由用户流量时，NAT配置文件被编程为用于内联NAT的移动网关路由器的硬件转发元件。

公开(公告)号：US10931526B1

公开(公告)日：2021-02-23

申请号：US16672778

申请日：2019-11-04

Applicant: Juniper Networks, Inc.

Inventor： Tong Jiang ,  Roshan Joyce ,  Gopi Krishna ,  Sankar Ramamoorthi

IPC: H04L12/24 ,  G06F9/455 ,  H04L12/46

Abstract: Techniques are described for dynamically adapting virtualized network functions (VNFs) to different target environments. A controller stores device profiles that include configuration data and workflows for resolving configuration parameters for instantiating and deploying a VNF package to form a network service. To support the resolution of VNF configuration parameters, a VNF descriptor for the VNF is extended to include a device family parameter that indicates a shared architecture and configuration parameters. The controller, when instantiating the VNF, may identify a device profile usable for resolving the configuration parameters for the VNF and obtain configuration data from the device profile for creating and configuring a VNF instance for the VNF descriptor. Extending the VNF descriptor to specify a device family allows the VNF to be flexibly adapted for different target environments and may avoid the use of numerous pre-defined VNF descriptors.

公开(公告)号：US09985875B1

公开(公告)日：2018-05-29

申请号：US14871492

申请日：2015-09-30

Applicant: Juniper Networks, Inc.

Inventor： Harsha Srinath ,  Sanjay Agrawal ,  Sankar Ramamoorthi ,  Gopi Krishna ,  Juan-Antonio Bernal Van der Ven ,  Shauli Gal ,  Ina Minei

IPC: H04L12/703 ,  H04L12/707 ,  H04L12/713

CPC classification number: H04L45/28 ,  H04L45/22 ,  H04L45/586

Abstract: A system and method for handling critical events in service delivery gateways. Events are defined that cause a transition from a master redundancy state to a standby redundancy state in service delivery gateways and a plurality of signal-routes are stored. Each signal-route is associated with one or more of the defined events. A first defined event is detected in the first service delivery gateway and causes a transition from the first master redundancy state to the first standby redundancy state in the first service delivery gateway and a change in a first signal-route from the plurality of signal-routes in the first service delivery gateway. The change in the first signal-route is advertised and a second service delivery gateway transitions from the first standby redundancy state to the first master redundancy state.

公开(公告)号：US09838904B1

公开(公告)日：2017-12-05

申请号：US14733460

申请日：2015-06-08

Applicant: Juniper Networks, Inc.

Inventor： Roopa Bayar ,  Prasad Chigurupati ,  Gazal Sahai ,  Jagadish Grandhi ,  Dinesh Bakiaraj ,  Gopi Krishna

IPC: H04J3/14 ,  H04W28/02 ,  H04L12/24 ,  H04M15/00

CPC classification number: H04W76/10 ,  H04L41/50 ,  H04M15/41 ,  H04M15/43 ,  H04M15/62 ,  H04M15/66 ,  H04M15/765 ,  H04M15/8228 ,  H04W28/0263 ,  H04W28/0268 ,  H04W76/12

Abstract: In general, techniques are described for programming a set of one or more pre-defined rules within the forwarding plane of a packet gateway of a mobile service provider network and caching, within control plane, a group identifier that identifies the set of programmed, pre-defined rules. The control plane may match quality of service (QoS) information of incoming subscriber service requests with the group identifier and respective subsets of the set of programmed, pre-defined rules to rapidly associate service requests with already-programmed PCC rules and thereafter install, to the forwarding plane, subscriber service-specific actions for the PCC rules.

公开(公告)号：US09813345B1

公开(公告)日：2017-11-07

申请号：US15012575

申请日：2016-02-01

Applicant: Juniper Networks, Inc.

Inventor： Gopi Krishna ,  Jagadish Grandhi ,  Dinesh Bakiaraj ,  Sandesh Kumar Sodhi ,  Ananda Sathyanarayana

IPC: H04L12/801 ,  H04W28/08 ,  H04L12/835 ,  H04L12/851 ,  H04W88/16

CPC classification number: H04L47/14 ,  G06Q30/06 ,  H04L47/24 ,  H04L47/30 ,  H04W28/08 ,  H04W88/16

Abstract: In general, techniques are described for offloading data transfer statistics from a mobile access gateway. The mobile access gateway comprises a forwarding unit. The forwarding unit comprises a packet forwarding engine (PFE). When the PFE receives a packet, the PFE updates a data transfer statistic based on a quantity of data in the packet. The data transfer statistic is initially stored in a memory of the PFE. The PFE is configured to push the data transfer statistic from the memory of the PFE to a memory of the forwarding unit.

公开(公告)号：US09674870B1

公开(公告)日：2017-06-06

申请号：US14159244

申请日：2014-01-20

Applicant: Juniper Networks, Inc.

Inventor： Srinivasa Chaganti ,  Apurva Mehta ,  Gopi Krishna ,  Bin W. Hong ,  Santosh Gupta ,  Bobby Vandalore

IPC: G06F15/173 ,  H04W74/00

CPC classification number: H04W74/002 ,  H04L45/60 ,  H04L45/745 ,  H04L67/146

Abstract: In general, techniques are described for aggregating, within a network device, internal forwarding routes for multiple control protocols and allocating next hops for the routes among individual service units of a decentralized control plane for the network device. The techniques may also include aggregating internal forwarding routes for data protocols and allocating next hops for the routes among individual forwarding units of a decentralized data plane for the network device. In one example, a mobile gateway includes a plurality of subscriber management service units that present a uniform interface to nodes within a mobile service provider network. An allocation manager apportions a control protocol session identifier namespace into a plurality of contiguous, non-overlapping protocol session identifier ranges and allocates the ranges among the service units. The service units execute the control protocol by utilizing respective allocated ranges, which the aggregate internal forwarding routes use to identify the associated service units.

公开(公告)号：US09100236B1

公开(公告)日：2015-08-04

申请号：US13632064

申请日：2012-09-30

Applicant: Juniper Networks, Inc.

Inventor： Nikhil G. Shetty ,  Chitrak K. Ojha ,  Rohini Kasturi ,  Vijay S. Rajaram ,  Gopi Krishna ,  Venkatesh Badakere Ramachandra

IPC: G06F15/16 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L67/42 ,  H04L29/06 ,  H04L29/0872 ,  H04L67/1095 ,  H04L67/141 ,  H04L67/28 ,  H04L67/2809 ,  H04L69/16 ,  H04L69/163

Abstract: In one example, an intermediate network device sends packets that advertise a transmission control protocol (TCP) window size of zero bytes to a client device and a server device. The device, after sending the packets, receives a first zero-window probe packet from the client device including data representing a first current sequence number for a client-to-server packet flow of an established network session, and a second zero-window probe packet from the server device including data representing a second current sequence number for a server-to-client packet flow of the network session. The device also initializes a TCP state based on the first and second current sequence numbers, and acts as a TCP proxy for packets following the first zero-window probe packet of the client-to-server packet flow based on the TCP state and packets following the second zero-window probe packet of the server-to-client packet flow based on the TCP state.

Abstract translation: 在一个示例中，中间网络设备向客户端设备和服务器设备发送通告零字节的传输控制协议（TCP）窗口大小的分组。 所述设备在发送所述分组后，从所述客户端设备接收包括表示所建立的网络会话的客户端到服务器分组流的第一当前序列号的数据的第一零窗口探测分组，以及第二零窗口探测 来自服务器设备的分组包括表示网络会话的服务器到客户端分组流的第二当前序列号的数据。 该设备还基于第一和第二当前序列号初始化TCP状态，并且作为基于TCP状态的客户端到服务器分组流的第一个零窗口探测分组之后的分组的TCP代理和跟随的数据包 基于TCP状态的服务器到客户端数据包流的第二个零窗口探测包。

公开(公告)号：US20150146731A1

公开(公告)日：2015-05-28

申请号：US14611890

申请日：2015-02-02

Applicant: Juniper Networks, Inc.

Inventor： Andrzej Szyszko ,  Apurva Mehta ,  Kumar B. Mehta ,  Gopi Krishna ,  Jagadish Grandhi ,  Murtuza S. Attarwala

IPC: H04L12/24 ,  H04L12/741 ,  H04L12/771

CPC classification number: H04L41/5048 ,  H04L45/56 ,  H04L45/745 ,  H04L47/2441

Abstract: In general, this disclosure describes techniques for applying, with a network device, subscriber-specific packet processing using an internal processing path that includes service objects that are commonly applied to multiple packet flows associated with multiple subscribers. In one example, a network device control plane creates subscriber records that include, for respective subscribers, one or more variable values that specify service objects as well as an identifier for a packet processing template. A forwarding plane of the network device receives and maps subscriber packets to an associated subscriber record and then processes the packet by executing the packet processing template specified by the subscriber record. When the forwarding plane reaches a variable while executing the specified packet processing template, the forwarding plane reads the associated variable value from the subscriber record to identify and then apply the subscriber-specific service object specified by the variable.

Abstract translation: 通常，本公开描述了使用包括通常应用于与多个订户相关联的多个分组流的服务对象的内部处理路径与网络设备一起应用订户特定分组处理的技术。 在一个示例中，网络设备控制平面创建订户记录，其为相应的订户包括指定服务对象的一个​​或多个变量值以及分组处理模板的标识符。 网络设备的转发平面将用户分组接收并映射到相关联的用户记录，然后通过执行由用户记录指定的分组处理模板来处理该分组。 当转发平面在执行指定的分组处理模板时到达变量时，转发平面从用户记录读取相关联的变量值，以识别并应用由变量指定的用户特定服务对象。