公开(公告)号：US11463425B2

公开(公告)日：2022-10-04

申请号：US15784028

申请日：2017-10-13

申请人： Fortinet, Inc.

发明人： Mohan Ram ,  Sung-Wook Han

IPC分类号： H04W12/08 ,  H04L9/40 ,  H04W12/041 ,  H04W12/0431 ,  H04W12/0433 ,  H04L45/586 ,  H04L49/354 ,  H04W36/08 ,  H04L12/18 ,  H04W88/08

摘要： Traffic broadcast to a VLAN is restricted. To do so, a plurality of stations are associated with a BSSID (basic service set identifier). A first VLAN is configured by sending a first group key to each station from the plurality of stations that is a member of the first VLAN, wherein each VLAN is associated with a unique group key. One or more frames addressed to the first VLAN are received. The one or more frames are encrypted with the first group key to prevent stations without the first group key from being able to decrypt the one or more frames. The one or more encrypted VLAN frames are broadcast to the plurality of stations associated with the BSSID.

公开(公告)号：US11456968B2

公开(公告)日：2022-09-27

申请号：US16682195

申请日：2019-11-13

申请人： Hyundai Motor Company ,  Kia Motors Corporation

发明人： Hojin Jung

IPC分类号： H04L49/351 ,  H04L12/46 ,  H04L12/40 ,  H04L49/354

摘要： An Ethernet switch for a vehicle, a method of controlling the Ethernet switch are provided. The method includes detecting a first connection between a connector of the diagnostic device and a first port of the Ethernet switch and establishing a second connection with the diagnostic device by referring to a virtual local area network identifier (VLAN ID) table. A third connection is established between the controller and an electronic control unit (ECU) of the vehicle by referring to the VLAN ID table. A certificate-based secure access procedure is performed between the diagnostic device and the controller. A mode of the Ethernet switch is switched from a lock mode to an unlock mode and a fourth connection is established between the diagnostic device and the ECU by referring to the VLAN ID table.

公开(公告)号：US20220255882A1

公开(公告)日：2022-08-11

申请号：US17732469

申请日：2022-04-28

申请人： Nicira, Inc.

发明人： Ronghua Zhang ,  Yong Wang ,  Teemu Koponen ,  Xinhua Hong

IPC分类号： H04L49/25 ,  H04L12/66 ,  H04L45/64 ,  H04L69/321 ,  H04L12/46 ,  H04L41/5041 ,  H04L45/74 ,  H04L67/63 ,  H04L67/568 ,  H04L67/1001 ,  H04L45/00 ,  H04L49/00 ,  H04L49/90 ,  H04L45/586 ,  H04L45/02 ,  H04L45/42 ,  H04L45/44 ,  H04L41/0654 ,  H04L45/122 ,  H04L45/745 ,  H04L61/2585 ,  H04L41/14 ,  H04L69/326 ,  H04L69/329 ,  H04L47/19 ,  H04L45/302 ,  H04L43/08 ,  H04L43/106 ,  H04L49/354 ,  H04L67/1038

摘要： A novel design of a gateway that handles traffic in and out of a network by using a datapath pipeline is provided. The datapath pipeline includes multiple stages for performing various data-plane packet-processing operations at the edge of the network. The processing stages include centralized routing stages and distributed routing stages. The processing stages can include service-providing stages such as NAT and firewall. The gateway caches the result previous packet operations and reapplies the result to subsequent packets that meet certain criteria. For packets that do not have applicable or valid result from previous packet processing operations, the gateway datapath daemon executes the pipelined packet processing stages and records a set of data from each stage of the pipeline and synthesizes those data into a cache entry for subsequent packets.

公开(公告)号：US11388084B2

公开(公告)日：2022-07-12

申请号：US16514942

申请日：2019-07-17

申请人： Cisco Technology, Inc.

发明人： Ali Sajassi ,  Mankamana P. Mishra ,  Samir Thoria ,  Patrice Brissette ,  Mei Zhang ,  Tapraj Singh

IPC分类号： H04L45/00 ,  H04L12/46 ,  H04L45/16 ,  H04L45/7453 ,  H04L45/745 ,  H04L45/50 ,  H04L49/354 ,  H04L45/02 ,  H04L101/677

摘要： Techniques for routing traffic across different virtual local area networks (VLANs) within a single bridge domain are described. One technique includes receiving at a first network device a packet from a second network device on a first interface of multiple interfaces within a bridge domain at the first network device. Attachment circuit information associated with the packet is determined. An information element that includes an indication of the attachment circuit information is generated. The information element is transmitted to the third network device.

公开(公告)号：US12058057B2

公开(公告)日：2024-08-06

申请号：US16648386

申请日：2018-09-13

申请人： SIEMENS AKTIENGESELLSCHAFT

发明人： Marcel Kiessling

IPC分类号： H04L49/20 ,  H04L47/2416 ,  H04L49/354

CPC分类号： H04L49/206 ,  H04L47/2416 ,  H04L49/354

摘要： A method of scheduling traffic in a network node is provided. A cyclic traffic schedule for a first traffic class, such as a first real time traffic class, includes a reception phase and a transmission phase. The method includes setting the transmission phase (T00) of the network node to coincide with the reception phase of at least two neighboring network nodes.

公开(公告)号：US11997011B2

公开(公告)日：2024-05-28

申请号：US16588749

申请日：2019-09-30

申请人： Juniper Networks, Inc.

发明人： Jacopo Pianigiani ,  Tong Jiang ,  Sukhdev S. Kapur ,  Atul S Moghe

IPC分类号： H04L45/00 ,  H04L12/46 ,  H04L45/42 ,  H04L45/586 ,  H04L45/64 ,  H04L49/00 ,  H04L49/354

CPC分类号： H04L45/46 ,  H04L12/4641 ,  H04L45/42 ,  H04L45/586 ,  H04L45/64 ,  H04L49/354 ,  H04L49/70

摘要： A virtual port group abstraction can facilitate automated configuration of devices in a data center. For example, a data center administrator can define a virtual port group to include a set of logical and physical interfaces for devices allocated to a particular department or other group within a company. An administrator for the department can then utilize a user interface to perform actions with respect to the virtual port group. The actions can include configuration actions, modeling actions and/or deployment actions. An action received by a network management controller such as a Software-Defined Networking (SDN) controller can be converted into the appropriate actions for the relevant logical and physical interfaces that are configured to be part of the virtual port group.

公开(公告)号：US20240155023A1

公开(公告)日：2024-05-09

申请号：US18281689

申请日：2022-01-27

申请人： INSPUR SUZHOU INTELLIGENT TECHNOLOGY CO., LTD.

发明人： Yuanfeng LIU ,  Yashuai LEI

IPC分类号： H04L67/06 ,  H04L12/46 ,  H04L49/354

CPC分类号： H04L67/06 ,  H04L12/4633 ,  H04L12/4641 ,  H04L49/354

摘要： The present disclosure provides a method for implementing a bare metal inspection process, a system, a device and a medium. The method includes: installing an Openstack at a control node, installing a network interface card at a bare metal node, and installing an operating system in the network interface card, so that the network interface card generates a first bare metal port at the bare metal node, and in the operating system, generates a second bare metal port corresponding to the first bare metal port; establishing a communication channel between the Openstack and the operating system, and deploying a proxy component on the operating system; creating a first inspection port on the Openstack, creating a second inspection port based on the proxy component, and binding the second inspection port to the second bare metal port.

公开(公告)号：US11870555B2

公开(公告)日：2024-01-09

申请号：US17960709

申请日：2022-10-05

申请人： Arista Networks, Inc.

发明人： Harold Fong ,  Petr Budnik ,  Jeff Jing Yuen Chan

IPC分类号： H04J3/06 ,  H04L49/354 ,  H04L12/46 ,  H04L7/00

CPC分类号： H04J3/0673 ,  H04L7/0008 ,  H04L12/4633 ,  H04L12/4641 ,  H04L12/4645 ,  H04L49/354

摘要： Synchronization of clocks among computing devices in a network includes determining master/slave relations among the computing devices. Some computing devices (e.g., switches) include trunk ports configured to carry traffic for several logical networks; e.g., virtual local area networks, VLANs. A trunk port can be associated with a master/slave setting for each logical network that it is configured for. Synchronization of clocks among the computing devices further includes running a synchronization sequence between a trunk port and each computing device on each of the logical networks configured on the trunk port.

公开(公告)号：US20240007419A1

公开(公告)日：2024-01-04

申请号：US18369605

申请日：2023-09-18

申请人： Nicira, Inc.

发明人： Ronghua Zhang ,  Ganesan Chandrashekhar ,  Sreeram Kumar Ravinoothala ,  Kai-Wei Fan

IPC分类号： H04L49/25 ,  H04L12/66 ,  H04L45/64 ,  H04L69/321 ,  H04L12/46 ,  H04L41/5041 ,  H04L45/74 ,  H04L67/63 ,  H04L67/568 ,  H04L67/1001 ,  H04L45/00 ,  H04L49/00 ,  H04L49/90 ,  H04L45/586 ,  H04L45/02 ,  H04L45/42 ,  H04L45/44 ,  H04L41/0654 ,  H04L45/122 ,  H04L45/745 ,  H04L61/2585 ,  H04L41/14 ,  H04L69/326 ,  H04L69/329 ,  H04L47/19 ,  H04L45/302 ,  H04L43/08 ,  H04L43/106 ,  H04L49/354 ,  H04L67/1038

CPC分类号： H04L49/25 ,  H04L61/103 ,  H04L45/64 ,  H04L69/321 ,  H04L12/4654 ,  H04L12/4633 ,  H04L41/5041 ,  H04L45/742 ,  H04L67/63 ,  H04L67/568 ,  H04L67/1001 ,  H04L45/72 ,  H04L49/3009 ,  H04L49/3063 ,  H04L49/9068 ,  H04L45/74 ,  H04L45/586 ,  H04L45/02 ,  H04L45/42 ,  H04L45/44 ,  H04L41/0654 ,  H04L45/122 ,  H04L45/745 ,  H04L61/2585 ,  H04L41/145 ,  H04L69/326 ,  H04L69/329 ,  H04L47/19 ,  H04L45/306 ,  H04L43/08 ,  H04L43/106 ,  H04L49/354 ,  H04L67/1038 ,  H04L12/66

摘要： Some embodiments provide a method for handling failure at one of several peer centralized components of a logical router. At a first one of the peer centralized components of the logical router, the method detects that a second one of the peer centralized components has failed. In response to the detection, the method automatically identifies a network layer address of the failed second peer. The method assumes responsibility for data traffic to the failed peer by broadcasting a message on a logical switch that connects all of the peer centralized components and a distributed component of the logical router. The message instructs recipients to associate the identified network layer address with a data link layer address of the first peer centralized component.

公开(公告)号：US20230412525A1

公开(公告)日：2023-12-21

申请号：US18235879

申请日：2023-08-20

申请人： VMware, Inc.

发明人： Israel Cidon ,  Prashanth Venugopal ,  Aran Bergman ,  Chen Dar ,  Alex Markuze ,  Eyal Zohar

IPC分类号： H04L49/354 ,  H04L49/25 ,  H04L45/00 ,  H04L45/42 ,  H04L67/1097 ,  H04L43/06 ,  H04L43/08 ,  H04L12/46 ,  H04L12/66 ,  H04L41/046 ,  H04L41/0806 ,  H04L43/045 ,  H04L43/0811 ,  H04L45/50 ,  H04L67/10 ,  H04L41/0813 ,  H04L41/142 ,  H04L45/24 ,  H04L49/20 ,  H04L43/026 ,  H04L67/101 ,  H04L41/0803 ,  H04L47/70 ,  H04L61/4511

CPC分类号： H04L49/354 ,  H04L49/252 ,  H04L45/38 ,  H04L45/42 ,  H04L67/1097 ,  H04L43/06 ,  H04L43/08 ,  H04L12/4641 ,  H04L12/66 ,  H04L41/046 ,  H04L41/0806 ,  H04L43/045 ,  H04L43/0811 ,  H04L45/50 ,  H04L67/10 ,  H04L41/0813 ,  H04L41/142 ,  H04L45/24 ,  H04L49/20 ,  H04L12/4633 ,  H04L43/026 ,  H04L67/101 ,  H04L41/0803 ,  H04L47/827 ,  H04L61/4511 ,  H04L2012/5612 ,  H04L2012/562 ,  H04L2012/5623

摘要： Some embodiments provide a novel method for deploying different virtual networks over several public cloud datacenters for different entities. For each entity, the method (1) identifies a set of public cloud datacenters of one or more public cloud providers to connect a set of machines of the entity, (2) deploys managed forwarding nodes (MFNs) for the entity in the identified set of public cloud datacenters, and then (3) configures the MFNs to implement a virtual network that connects the entity's set of machines across its identified set of public cloud datacenters. In some embodiments, the method identifies the set of public cloud datacenters for an entity by receiving input from the entity's network administrator. In some embodiments, this input specifies the public cloud providers to use and/or the public cloud regions in which the virtual network should be defined. Conjunctively, or alternatively, this input in some embodiments specifies actual public cloud datacenters to use.