公开(公告)号：US11411948B2

公开(公告)日：2022-08-09

申请号：US16574771

申请日：2019-09-18

Applicant: Cisco Technology Inc.

Inventor： Clarence Filsfils ,  Marc Portoles Comeras ,  David Delano Ward ,  Alberto Rodriguez Natal

IPC: H04L9/40

Abstract: In one embodiment, an apparatus of a LISP environment includes one or more processors and computer-readable non-transitory storage media coupled to the one or more processors. The computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including receiving an attestation token from a first component of the LISP environment. The operations also include encoding the attestation token using a LISP message format. The operations further include distributing the encoded attestation token with a LISP signaling message to a third component of the LISP environment.

公开(公告)号：US20220232112A1

公开(公告)日：2022-07-21

申请号：US17713944

申请日：2022-04-05

Applicant: Cisco Technology, Inc.

Inventor： Ahmed Refaat Bashandy ,  Jisu Bhattacharya ,  Syed Kamran Raza ,  Clarence Filsfils

IPC: H04L69/22 ,  H04L69/324 ,  H04L45/00 ,  H04L67/10 ,  H04L45/50 ,  H04L12/46 ,  H04L45/74 ,  H04L61/5007 ,  H04L49/35 ,  H04L67/63 ,  H04L45/741

Abstract: In one embodiment, a Segment Routing network node provides efficiencies in processing and communicating Internet Protocol packets in a network. This Segment Routing node typically advertises (e.g., using Border Gateway Protocol) its Segment Routing processing capabilities, such as Penultimate Segment Pop (PSP) and/or Ultimate Segment Pop (USP) of a Segment Routing Header (including in the context of a packet that has multiple Segment Routing Headers). Subsequently, an Internet Protocol Segment Routing packet having multiple Segment Routing Headers is received. The packet is processed according to a Segment Routing function, with is processing including removing a first one of the Segment Routing Headers and forwarding the resultant Segment Routing packet. The value of the Segments Left field in the first Segment Routing Header identifies to perform PSP when the value is one, to perform USP when the value is zero, or to perform other processing.

公开(公告)号：US20220191134A1

公开(公告)日：2022-06-16

申请号：US17685986

申请日：2022-03-03

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Peter Psenak ,  Francois Clad ,  Jose Antonio Liste

IPC: H04L45/30 ,  H04L45/50 ,  H04L41/0813 ,  H04L45/12 ,  H04L45/44 ,  H04L45/42

Abstract: Various implementations disclosed herein enable malleable routing for data packets. For example, in various implementations, a method of routing a type of data packets is performed by a device. In some implementations, the device includes a non-transitory memory and one or more processors coupled with the non-transitory memory. In some implementations, the method includes determining a routing criterion to transmit a set of data packets across a network. In some implementations, the method includes identifying network nodes and communication links in the network that satisfy the routing criterion. In some implementations, the method includes determining a route for the set of data packets through the network nodes and the communication links that satisfy the routing criterion. In some implementations, the method includes configuring the network nodes that are on the route with configuration information that allows the set of data packets to propagate along the route.

公开(公告)号：US20220191133A1

公开(公告)日：2022-06-16

申请号：US17685857

申请日：2022-03-03

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Peter Psenak ,  Francois Clad ,  Jose Antonio Liste

IPC: H04L45/30 ,  H04L45/50 ,  H04L41/0813 ,  H04L45/12 ,  H04L45/44 ,  H04L45/42

Abstract: Various implementations disclosed herein enable malleable routing for data packets. For example, in various implementations, a method of routing a type of data packets is performed by a device. In some implementations, the device includes a non-transitory memory and one or more processors coupled with the non-transitory memory. In some implementations, the method includes determining a routing criterion to transmit a set of data packets across a network. In some implementations, the method includes identifying network nodes and communication links in the network that satisfy the routing criterion. In some implementations, the method includes determining a route for the set of data packets through the network nodes and the communication links that satisfy the routing criterion. In some implementations, the method includes configuring the network nodes that are on the route with configuration information that allows the set of data packets to propagate along the route.

公开(公告)号：US11323416B2

公开(公告)日：2022-05-03

申请号：US16674419

申请日：2019-11-05

Applicant: Cisco Technology, Inc.

Inventor： Peter Psenak ,  Paul Wells ,  Ketan Jivan Talaulikar ,  Clarence Filsfils

IPC: H04L29/06 ,  H04L45/02 ,  H04L47/20 ,  G06F21/72 ,  H04L45/74 ,  H04L45/12

Abstract: In one embodiment, a method includes receiving an OSPF hello message including an attestation token from a second network apparatus, determining that the attestation token is valid for the second network apparatus at a current time, establishing an adjacency to the second network apparatus in response to the determination, computing, based at least on the attestation token, a trust level for a first link from the first network apparatus to the second network apparatus and a trust level for first prefixes associated with the first link, and sending an LSA comprising the trust level for the first link and the trust level for the first prefixes to neighboring network apparatuses, where the trust level for the first link and the trust level for the prefixes are used by the network apparatuses in the network to compute a routing table of the network.

公开(公告)号：US11277264B2

公开(公告)日：2022-03-15

申请号：US16600856

申请日：2019-10-14

Applicant: Cisco Technology, Inc.

Inventor： Peter Psenak ,  Paul Wells ,  Ketan Jivan Talaulikar ,  Clarence Filsfils

IPC: H04L9/32 ,  H04L12/751 ,  H04L45/02

Abstract: In one embodiment, a method includes receiving an ISIS hello message including an attestation token from a second network apparatus, determining that the attestation token is valid for the second network apparatus at a current time, establishing an adjacency to the second network apparatus in response to the determination, computing, based at least on the attestation token, a trust level for a first link from the first network apparatus to the second network apparatus and a trust level for first prefixes associated with the first link, and sending an LSP comprising the trust level for the first link and the trust level for the first prefixes to neighboring network apparatuses, where the trust level for the first link and the trust level for the prefixes are used by the network apparatuses in the network to compute a routing table of the network.

公开(公告)号：US20210377162A1

公开(公告)日：2021-12-02

申请号：US17360283

申请日：2021-06-28

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Peter Psenak ,  Francois Clad ,  Jose Antonio Liste

IPC: H04L12/725 ,  H04L12/723 ,  H04L12/24 ,  H04L12/721 ,  H04L12/717

Abstract: Various implementations disclosed herein enable malleable routing for data packets. For example, in various implementations, a method of routing a type of data packets is performed by a device. In some implementations, the device includes a non-transitory memory and one or more processors coupled with the non-transitory memory. In some implementations, the method includes determining a routing criterion to transmit a set of data packets across a network. In some implementations, the method includes identifying network nodes and communication links in the network that satisfy the routing criterion. In some implementations, the method includes determining a route for the set of data packets through the network nodes and the communication links that satisfy the routing criterion. In some implementations, the method includes configuring the network nodes that are on the route with configuration information that allows the set of data packets to propagate along the route.

公开(公告)号：US11184235B2

公开(公告)日：2021-11-23

申请号：US16191676

申请日：2018-11-15

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Rakesh Gandhi ,  Zafar Ali

IPC: H04L12/24 ,  H04L12/26 ,  H04L12/851 ,  H04L12/715 ,  H04L12/707 ,  H04L29/06

Abstract: Mechanisms are provided for “direct mode” (in-band) performance loss measurement in computer networks where packet loss is measured directly in the data plane using techniques based on ECMP paths. Counters on each of an ingress node and an egress node are configured by a network controller to count traffic for indicators associated with different equal-cost multi-path (ECMP) paths through a network between ingress and egress nodes. Each indicator is toggled on or off during a measurement interval during which traffic is measured by the traffic counters on the ingress and egress nodes for each ECMP path. The traffic counters (measured in bytes/packets) from the ingress and egress nodes are sent via event driven telemetry to the network controller for performance loss measurement determination.

公开(公告)号：US20210320884A1

公开(公告)日：2021-10-14

申请号：US16847173

申请日：2020-04-13

Applicant: Cisco Technology Inc.

Inventor： Clarence Filsfils ,  Pablo Camarillo Garvia ,  Syed Kamran Raza ,  Francois Clad

IPC: H04L12/935 ,  H04L12/721 ,  H04L29/06

Abstract: The present disclosure relates to methods and systems for inserting micro segments into a data packet. The methods may include the steps of receiving a packet with a destination address corresponding to a Micro Segment Identifier (uSID) carrier having one or more existing micro segments followed by one or more empty micro segment positions, receiving information relating to one or more new micro segments to be inserted into the uSID carrier, the one or more new micro segments associated with a new bit length, calculating a remaining bit length of the uSID carrier, the remaining bit length associated with the one or more empty micro segment positions in the uSID carrier, wherein, if the remaining bit length is greater than or equal to the new bit length, updating the uSID carrier by inserting the new micro segments, and forwarding the packet to destinations associated with the updated uSID carrier.

公开(公告)号：US11140074B2

公开(公告)日：2021-10-05

申请号：US16580944

申请日：2019-09-24

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Francois Clad ,  Zafar Ali ,  Peter Psenak

IPC: H04L12/721 ,  H04L29/06 ,  H04L12/715

Abstract: Techniques and mechanisms for compressing the size of SIDs to be smaller than a complete IPv6 address (or “micro SIDs”), and scaling micro SIDs across a multi-domain environment using micro SID-domain-blocks. Segment routing over IPv6 (SRv6) uses 128-bit IPv6 addresses as SIDs for segment routing. According to this disclosure, multiple SRv6 SIDs may be expressed in a compact format such that a 128-bit IPv6 address, such as the destination address field of the IPv6 header, may store multiple micro SIDs. Further, SID-domain-blocks may be assigned to each domain in a multi-domain network such that micro SIDs may be expressed in the context of a given domain, rather than being shared in the global multi-domain network. In this way, lists of domain-specific SIDs may be fully expressed in the IPv6 destination address of the packet to scale micro SID into large, multi-domain networks.