公开(公告)号：US12206572B2

公开(公告)日：2025-01-21

申请号：US18372587

申请日：2023-09-25

Applicant: Cisco Technology, Inc.

Inventor： Rakesh Gandhi ,  Clarence Filsfils

IPC: H04L45/12 ,  H04L43/0852 ,  H04L45/50 ,  H04L12/46

Abstract: Techniques for utilizing entropy labels of a Multiprotocol Label Switching (MPLS) label stack for performing monitoring operations (e.g., telemetry, performance measurement, OAM, etc.) without altering the MPLS label stack and/or packet path (e.g., ECMP path). The techniques may include determining, by a node of a network, to perform a monitoring operation associated with traffic that is to be sent along a path through the network. In some examples, the node may receive a packet that is to be sent along the path and encapsulate the packet with an MPLS header. The MPLS header may include an entropy label, entropy label indicator, or other label that is capable of carrying a flag indicating the monitoring operation to be performed. The flag may be carried in a TTL field or traffic class field of the label such that the MPLS label stack is not altered to trigger the monitoring operation.

公开(公告)号：US12137093B2

公开(公告)日：2024-11-05

申请号：US17814410

申请日：2022-07-22

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Marc Portoles Comeras ,  David Delano Ward ,  Alberto Rodriguez Natal

IPC: H04L9/40

Abstract: In one embodiment, an apparatus of a LISP environment includes one or more processors and computer-readable non-transitory storage media coupled to the one or more processors. The computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including receiving an attestation token from a first component of the LISP environment. The operations also include encoding the attestation token using a LISP message format. The operations further include distributing the encoded attestation token with a LISP signaling message to a third component of the LISP environment.

公开(公告)号：US12095651B2

公开(公告)日：2024-09-17

申请号：US17399937

申请日：2021-08-11

Applicant: Cisco Technology, Inc.

Inventor： Peter Psenak ,  Paul William Wells ,  Ketan Jivan Talaulikar ,  Clarence Filsfils

IPC: H04L45/12 ,  H04L9/40

CPC classification number: H04L45/127 ,  H04L63/205

Abstract: In one embodiment, an apparatus includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the apparatus to perform operations including receiving a first type-length-value (TLV) associated with a winning flexible algorithm definition (FAD) from a first element of a network. The operations also include determining a security level for the winning FAD based on the TLV. The operations further include determining a data transmission route through a plurality of elements of the network based on the security level for the winning FAD.

公开(公告)号：US11863522B2

公开(公告)日：2024-01-02

申请号：US16825068

申请日：2020-03-20

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Swadesh Agrawal ,  Apoorva Karan

IPC: H04L9/40 ,  G06F21/60

CPC classification number: H04L63/0209 ,  G06F21/602

Abstract: In one embodiment, a method by an apparatus of a Border Gateway Protocol (BGP) network includes accessing an attestation token for the apparatus. The method further includes encoding the attestation token in a BGP signaling message. The method further includes sending the BGP signaling message with the encoded attestation token to a second apparatus of the BGP network.

公开(公告)号：US11848757B2

公开(公告)日：2023-12-19

申请号：US17987029

申请日：2022-11-15

Applicant: Cisco Technology, Inc.

Inventor： Rakesh Gandhi ,  Clarence Filsfils ,  Sagar Soni ,  Patrick Khordoc

IPC: H04J3/14 ,  H04L45/00 ,  H04L45/50 ,  H04L69/22 ,  H04L43/0823 ,  H04L47/20 ,  H04L45/74

CPC classification number: H04L45/70 ,  H04L43/0847 ,  H04L45/50 ,  H04L45/66 ,  H04L45/74 ,  H04L47/20 ,  H04L69/22

Abstract: Techniques for in-situ passive performance measurement are described. In one embodiment, a method includes receiving a data packet at a first network element, determining whether measurement information is to be collected for the data packet, providing one or more measurement fields for the data packet based on a determination that measurement information is to be collected for the data packet in which at least one measurement field identifies a measurement type, and forwarding the data packet to a second network element. The method further includes determining, by the second network element, the measurement type for the data packet, and performing one or more actions based on the measurement type.

公开(公告)号：US20230396486A1

公开(公告)日：2023-12-07

申请号：US18345246

申请日：2023-06-30

Applicant: Cisco Technology, Inc.

Inventor： Peter Psenak ,  Lester C. Ginsberg ,  Ketan Jivan Talaulikar ,  Clarence Filsfils ,  Francois Clad ,  Stephane Litkowski

IPC: H04L41/0654 ,  H04L41/0631 ,  H04L41/0686

CPC classification number: H04L41/0654 ,  H04L41/0631 ,  H04L41/0686

Abstract: The present technology is directed to signaling unreachability of a network device, more specifically, a prefix of the network device in network that utilizes route summarization. A pulse trigger agent can detect an unreachability of at least one Provider Edge (PE) device in a network domain of a network and determine that a route summarization is being used within the network where the unreachability of the at least one PE device is hidden by the route summarization. A pulse distribution agent can transmit a failure message informing other PE devices of the unreachability of the at least one PE device.

公开(公告)号：US20230135261A1

公开(公告)日：2023-05-04

申请号：US18147158

申请日：2022-12-28

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Zafar Ali ,  Syed Kamran Raza ,  Ahmed Bashandy ,  Nagendra Kumar Nainar ,  Carlos M. Pignataro ,  Jaganbabu Rajamanickam ,  Rakesh Gandhi ,  Bhupendra Yadav ,  Faisal Iqbal

IPC: H04L45/00 ,  H04L43/106 ,  H04L45/02 ,  H04L41/0246

Abstract: In one embodiment, a service chain data packet is instrumented as it is communicated among network nodes in a network providing service-level and/or networking operations visibility. The service chain data packet includes a particular header identifying a service group defining one or more service functions, and is a data packet and not a probe packet. A network node adds networking and/or service-layer operations data to the particular service chain data packet, such as, but not limited to, in the particular header. Such networking operations data includes a performance metric or attribute related to the transport of the particular service chain packet in the network. Such service-layer operations data includes a performance metric or attribute related to the service-level processing of the particular service chain data packet in the network.

公开(公告)号：US11627016B2

公开(公告)日：2023-04-11

申请号：US16821965

申请日：2020-03-17

Applicant: Cisco Technology, Inc.

Inventor： Pablo Camarillo Garvia ,  Hendrikus G. P. Bosch ,  Clarence Filsfils

IPC: H04L12/46 ,  H04L45/74 ,  H04L45/50 ,  H04W84/04

Abstract: In one embodiment, a segment routing and tunnel exchange provides packet forwarding efficiencies in a network, including providing an exchange between a segment routing domain and a packet tunnel domain. One application includes the segment routing and tunnel exchange interfacing segment routing packet forwarding (e.g., in a Evolved Packet Core (EPC) and/or 5-G user plane) and packet tunnel forwarding in access networks (e.g., replacing a portion of a tunnel between an access node and a user plane function for accessing a corresponding data network). In one embodiment, a network provides mobility services using a segment routing data plane that spans segment routing and tunnel exchange(s) and segment routing-enabled user plane functions. One embodiment uses the segment routing data plane without any modification to a (radio) access network (R)AN (e.g., Evolved NodeB, Next Generation NodeB) nor to user equipment (e.g., any end user device).

公开(公告)号：US20230043743A1

公开(公告)日：2023-02-09

申请号：US17969890

申请日：2022-10-20

Applicant: Cisco Technology, Inc.

Inventor： Peter Psenak ,  Robert Hanzl ,  Clarence Filsfils ,  Ketan Jivan Talaulikar

IPC: H04L45/12 ,  H04L45/02

Abstract: Various systems and methods for using strict path forwarding. For example, one method involves receiving an advertisement at a node. The advertisement includes a segment identifier (SID). In response to receiving the advertisement, the node determines whether the SID is a strict SID or not. If the SID is a strict SID, the node generates information, such as forwarding information that indicates how to forward packets along a strict shortest path corresponding to the strict SID.

公开(公告)号：US20230026874A1

公开(公告)日：2023-01-26

申请号：US17937961

申请日：2022-10-04

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Pablo Camarillo Garvia ,  Hendrikus G.P. Bosch ,  Clarence Filsfils

IPC: H04L12/46 ,  H04L45/74

Abstract: In one embodiment, a segment routing and tunnel exchange provides packet forwarding efficiencies in a network, including providing an exchange between a segment routing domain and a packet tunnel domain. One application includes the segment routing and tunnel exchange interfacing segment routing packet forwarding (e.g., in a Evolved Packet Core (EPC) and/or 5-G user plane) and packet tunnel forwarding in access networks (e.g., replacing a portion of a tunnel between an access node and a user plane function for accessing a corresponding data network). In one embodiment, a network provides mobility services using a segment routing data plane that spans segment routing and tunnel exchange(s) and segment routing-enabled user plane functions. One embodiment uses the segment routing data plane without any modification to a (radio) access network (R)AN (e.g., Evolved NodeB, Next Generation NodeB) nor to user equipment (e.g., any end user device).