-
21.发明授权Methods and apparatus for a scalable network with efficient link utilization 有权具有高效链路利用率的可扩展网络的方法和装置公开(公告)号:US09118687B2
公开(公告)日:2015-08-25
申请号:US13252857
申请日:2011-10-04
申请人: James Murphy , Nischal Sheth , Abhijit Choudhury , Raghavendra Mallya , Pranay Pogde , Phalguni Nanda , Jayabharat Boddu , Pradeep Sindhu
发明人: James Murphy , Nischal Sheth , Abhijit Choudhury , Raghavendra Mallya , Pranay Pogde , Phalguni Nanda , Jayabharat Boddu , Pradeep Sindhu
IPC分类号: H04L29/12 , H04L12/723 , H04W8/08
CPC分类号: H04L61/103 , H04L45/50 , H04L61/2015 , H04L2212/00 , H04W8/08
摘要: In some embodiments, an apparatus comprises a core network node configured to be operatively coupled to a set of network nodes. The core network node is configured to receive a broadcast signal from a network node from the set of network nodes, which is originated from a host device operatively coupled to the network node. The broadcast signal is sent via a tunnel from the network node to the core network node, such that other network nodes that are not included in the tunnel do not receive the broadcast signal. The core network node is configured to retrieve control information associated with the broadcast signal without sending another broadcast signal, and then send the control information to the network node.
摘要翻译: 在一些实施例中,装置包括被配置为可操作地耦合到一组网络节点的核心网络节点。 核心网络节点被配置为从网络节点集合接收来自网络节点的广播信号,所述网络节点源自可操作地耦合到网络节点的主机设备。 广播信号经由隧道从网络节点发送到核心网络节点,使得未包括在隧道中的其他网络节点不接收广播信号。 核心网络节点被配置为检索与广播信号相关联的控制信息,而不发送另一广播信号,然后将控制信息发送到网络节点。
-
公开(公告)号:US08954601B1
公开(公告)日:2015-02-10
申请号:US11774872
申请日:2007-07-09
申请人: Sunil Patro , Nischal Sheth , Ravi Gadde
发明人: Sunil Patro , Nischal Sheth , Ravi Gadde
IPC分类号: G06F15/173 , H04L12/751
CPC分类号: H04L45/02 , H04L45/38 , H04L63/08 , H04L63/164
摘要: Techniques are described for providing encryption and authentication for different types of routing protocol communications based on a variety of factors. A method comprises configuring, on a network router, a set of logical interfaces for communicating routing protocol messages with one or more peer routing devices, maintaining a set of security associations that define corresponding authentication information and encryption information for the routing protocol messages, and maintaining one or more descriptor sets that each specify a set of criteria, wherein, for at least one of the descriptor sets, the set of criteria specifies one of the logical interfaces of the network router. The method further comprises selecting one of the descriptor sets having criteria that match an individual flow, selecting one of the security associations based on the selected descriptor set, and applying the selected security association to secure the outbound flow of the routing protocol messages.
摘要翻译: 描述了基于各种因素为不同类型的路由协议通信提供加密和认证的技术。 一种方法包括在网络路由器上配置一组用于与一个或多个对等路由设备通信路由协议消息的逻辑接口,维护定义相应认证信息的一组安全关联以及用于路由协议消息的加密信息,以及维护 每个指定一组标准的一个或多个描述符集合,其中,对于所述描述符集合中的至少一个,所述标准集合指定所述网络路由器的逻辑接口之一。 该方法还包括选择具有与单个流匹配的标准的描述符集合之一,基于所选择的描述符集合选择安全关联之一,以及应用所选择的安全关联以保护路由协议消息的出站流。
-
公开(公告)号:US08619550B2
公开(公告)日:2013-12-31
申请号:US13250731
申请日:2011-09-30
申请人: Ping Pan , Der-Hwa Gan , Keith E. Holleman , Manoj Leelanivas , Nischal Sheth , Arun Vaidyanathan
发明人: Ping Pan , Der-Hwa Gan , Keith E. Holleman , Manoj Leelanivas , Nischal Sheth , Arun Vaidyanathan
IPC分类号: G01R31/08
CPC分类号: H04L43/0811 , H04L41/0668
摘要: A connection between network nodes in a communication network is backed up. A failover switched path such as a label-switched path (LSP) is created starting at a first network node of a connection and ending at the second node of the connection, while bypassing the protected connection. In the event of connection failure, data is transmitted through the failover switched path (e.g., LSP). A network operator can selectively protect different types of data by using filters that bind one or more types of traffic received over one or more interfaces to different failover switched paths (LSPs).
摘要翻译: 备份通信网络中的网络节点之间的连接。 创建从连接的第一个网络节点开始并在连接的第二个节点结束的故障转移交换路径(如标签交换路径(LSP)),同时绕过受保护的连接。 在连接失败的情况下,通过故障转移交换路径(例如,LSP)传输数据。 网络运营商可以通过使用将通过一个或多个接口接收的一种或多种类型的业务绑定到不同的故障转移交换路径(LSP)的过滤器来选择性地保护不同类型的数据。
-
24.发明申请METHODS AND APPARATUS FOR A SCALABLE NETWORK WITH EFFICIENT LINK UTILIZATION 有权用于有效链接利用的可扩展网络的方法和装置公开(公告)号:US20130083782A1
公开(公告)日:2013-04-04
申请号:US13252857
申请日:2011-10-04
申请人: James MURPHY , Nischal SHETH , Abhijit CHOUDHURY , Raghavendra MALLYA , Pranay POGDE , Phalguni NANDA , Jayabharat BODDU , Pradeep SINDHU
发明人: James MURPHY , Nischal SHETH , Abhijit CHOUDHURY , Raghavendra MALLYA , Pranay POGDE , Phalguni NANDA , Jayabharat BODDU , Pradeep SINDHU
CPC分类号: H04L61/103 , H04L45/50 , H04L61/2015 , H04L2212/00 , H04W8/08
摘要: In some embodiments, an apparatus comprises a core network node configured to be operatively coupled to a set of network nodes. The core network node is configured to receive a broadcast signal from a network node from the set of network nodes, which is originated from a host device operatively coupled to the network node. The broadcast signal is sent via a tunnel from the network node to the core network node, such that other network nodes that are not included in the tunnel do not receive the broadcast signal. The core network node is configured to retrieve control information associated with the broadcast signal without sending another broadcast signal, and then send the control information to the network node.
摘要翻译: 在一些实施例中,装置包括被配置为可操作地耦合到一组网络节点的核心网络节点。 核心网络节点被配置为从网络节点集合接收来自网络节点的广播信号,网络节点源自可操作地耦合到网络节点的主机设备。 广播信号经由隧道从网络节点发送到核心网络节点,使得未包括在隧道中的其他网络节点不接收广播信号。 核心网络节点被配置为检索与广播信号相关联的控制信息,而不发送另一广播信号,然后将控制信息发送到网络节点。
-
公开(公告)号:US08259564B1
公开(公告)日:2012-09-04
申请号:US12425503
申请日:2009-04-17
IPC分类号: G06F11/00
CPC分类号: G06F11/2005 , H04L45/507
摘要: This disclosure describes techniques for protecting an endpoint of a label switched path. In one embodiment, a system includes an ingress router, a primary egress router, backup router, and a point of local repair (PLR) router. The ingress router, the PLR router, and the first egress router form a first label switched path. The backup router provides protection for the primary egress router such that the backup router provides routing services for the first egress router when the first egress router is not available. The primary egress router and the backup router share an anycast IP address. The backup router advertises a route to reach the primary egress router, but upon receiving a packet intended for the primary egress router, the backup router identifies the destination of the packet and forwards the packet to the destination instead of the primary egress router along a different route.
摘要翻译: 本公开描述了用于保护标签交换路径的端点的技术。 在一个实施例中,系统包括入口路由器,主出口路由器,备用路由器和本地修复(PLR)路由器的点。 入口路由器,PLR路由器和第一出口路由器形成第一标签交换路径。 备用路由器为主出口路由器提供保护,使得当第一出口路由器不可用时,备用路由器为第一出口路由器提供路由服务。 主出口路由器和备份路由器共享一个任播IP地址。 备用路由器通告路由到达主要出口路由器,但是在接收到主出口路由器的数据包后,备份路由器会识别报文的目的地,并将数据包转发到目的地而不是主出口路由器 路线。
-
公开(公告)号:US08055791B2
公开(公告)日:2011-11-08
申请号:US12705713
申请日:2010-02-15
申请人: Ping Pan , Der-Hwa Gan , Keith E. Holleman , Manoj Leelanivas , Nischal Sheth , Arun Vaidyanathan
发明人: Ping Pan , Der-Hwa Gan , Keith E. Holleman , Manoj Leelanivas , Nischal Sheth , Arun Vaidyanathan
IPC分类号: G06F13/00
CPC分类号: H04L43/0811 , H04L41/0668
摘要: A connection between network nodes in a communication network is backed up. A failover label-switched path (LSP) is created starting at a first network node of a connection and ending 5 at the second node of the connection, while bypassing the protected connection. In the event of connection failure, data is transmitted through the failover LSP. A network operator can selectively protect different types of data by using filters that bind one or more types of traffic received over one or more interfaces to different failover LSPs.
摘要翻译: 备份通信网络中的网络节点之间的连接。 从连接的第一个网络节点开始创建故障切换标签交换路径(LSP),并在连接的第二个节点处结束5,同时绕过受保护的连接。 在连接失败的情况下,通过故障转移LSP传输数据。 网络运营商可以通过使用将通过一个或多个接口接收的一种或多种类型的业务绑定到不同的故障切换LSP的过滤器来选择性地保护不同类型的数据。
-
公开(公告)号:US07940646B1
公开(公告)日:2011-05-10
申请号:US12788115
申请日:2010-05-26
申请人: Rahul Aggarwal , Nischal Sheth
发明人: Rahul Aggarwal , Nischal Sheth
IPC分类号: G01R31/08
CPC分类号: H04L45/04 , H04L45/02 , H04L45/026 , H04L45/28
摘要: Techniques are described for performing non-revertive failover with network devices. A network device comprising a control unit and interface cards receives routing information protocol (RIP) updates each having a metric value. The control unit signals bidirectional forwarding detection (BFD) sessions based on the metric values of each of the RIP updates with, for example, a media gateway. The control unit also selectively installs a RIP route based on the metric values. The media gateway monitors the BFD sessions, and upon failure of an active BFD session, indicates the network device to perform non-revertive failover by sending a revised plurality of RIP updates. The network device performs non-revertive failover according to the revised plurality of RIP updates. Because of the flexibility of BFD, the network device need not revert back to a previous RIP route, therefore curtailing excessive failover.
摘要翻译: 描述了使用网络设备执行非可逆故障转移的技术。 包括控制单元和接口卡的网络设备接收每个具有度量值的路由信息协议(RIP)更新。 控制单元基于例如媒体网关的每个RIP更新的度量值来发送双向转发检测(BFD)会话。 控制单元还根据度量值选择性地安装RIP路由。 媒体网关监控BFD会话,并且在活动BFD会话失败时,表示网络设备通过发送修订的多个RIP更新来执行非恢复故障切换。 网络设备根据修订的多个RIP更新执行非恢复故障切换。 由于BFD的灵活性,网络设备无需恢复到以前的RIP路由,从而减少了过度的故障转移。
-
公开(公告)号:US07277386B1
公开(公告)日:2007-10-02
申请号:US10293785
申请日:2002-11-12
申请人: Dennis C Ferguson , Nischal Sheth , Ken Kuwabara
发明人: Dennis C Ferguson , Nischal Sheth , Ken Kuwabara
CPC分类号: H04L45/50 , H04L45/04 , H04L45/745
摘要: Techniques are described for distribution of label switched packets, such as multiprotocol label switched (MPLS) packets, across multiple physical data paths. The techniques may, for example, be used to load balance the label switched packets across an aggregated link having two or more logically associated physical interconnects. A network device, for example, includes an interface card to receive packets associated with a common label switched path (LSP), and a control unit to distribute the packets across multiple paths. The network device may include label data that maps ranges of labels, such as MPLS labels, to types of payloads carried by the label switched packets. In accordance with the label data, the control unit extracts flow information from the label switched packets and distributes the label switched packets across the paths based on the flow information. The control unit may generate hash values from the flow information, the labels, or combinations thereof, to control distribution of the label switched packets.
摘要翻译: 描述了用于在多个物理数据路径上分发标签交换分组(例如多协议标签交换(MPLS)分组)的技术。 例如,这些技术可以用于跨越具有两个或多个逻辑关联的物理互连的聚合链路对标签交换分组进行负载平衡。 例如,网络设备包括用于接收与公共标签交换路径(LSP)相关联的分组的接口卡,以及用于跨多个路径分发分组的控制单元。 网络设备可以包括将诸如MPLS标签的标签的范围映射到由标签交换分组携带的有效载荷的类型的标签数据。 根据标签数据,控制单元从标签交换的分组中提取流信息,并且基于流信息在路径上分发标签交换分组。 控制单元可以从流信息,标签或其组合生成哈希值,以控制标签交换分组的分配。
-
29.发明授权Traffic cut-through within network device having multiple virtual network devices 有权具有多个虚拟网络设备的网络设备内的流量切换公开(公告)号:US08953599B1
公开(公告)日:2015-02-10
申请号:US13539120
申请日:2012-06-29
申请人: Colby Barth , Nischal Sheth , Nitin Kumar , Xuefei Zhang , Panning Huang , Raghavendra Mallya , Bhasker R. Allam , Krishna Narayanaswamy , Dongyi Jiang , Tsai-Zong Lin , Jiaxiang Su
发明人: Colby Barth , Nischal Sheth , Nitin Kumar , Xuefei Zhang , Panning Huang , Raghavendra Mallya , Bhasker R. Allam , Krishna Narayanaswamy , Dongyi Jiang , Tsai-Zong Lin , Jiaxiang Su
IPC分类号: H04L12/28 , H04L12/751
CPC分类号: H04L45/02 , H04L45/40 , H04L45/586 , H04L45/60
摘要: In general, techniques are for providing a direct forwarding path between virtual routers within a single virtualized routing system. In one example, a method includes combining forwarding information from a plurality of virtual routers into collapsed forwarding information that comprises one or more direct forwarding paths between the respective virtual routers. The method also includes determining a direct forwarding path to an egress interface of the second virtual router, in response to receiving a network packet at an ingress interface of a first virtual router. The method also includes forwarding the network packet from the ingress interface of the first virtual router to the egress interface of the second virtual router using the direct forwarding path, wherein the network packet traverses a switch fabric directly from the ingress interface of the first virtual router to the egress interface of the second virtual router.
摘要翻译: 通常,技术用于在单个虚拟化路由系统内的虚拟路由器之间提供直接转发路径。 在一个示例中,一种方法包括将来自多个虚拟路由器的转发信息组合成包括在各个虚拟路由器之间的一个或多个直接转发路径的折叠转发信息。 响应于在第一虚拟路由器的入口接口处接收到网络分组,该方法还包括确定到第二虚拟路由器的出口接口的直接转发路径。 该方法还包括使用直接转发路径将网络分组从第一虚拟路由器的入口接口转发到第二虚拟路由器的出口接口,其中网络分组从第一虚拟路由器的入口接口直接穿越交换结构 到第二虚拟路由器的出口接口。
-
公开(公告)号:US08837479B1
公开(公告)日:2014-09-16
申请号:US13533967
申请日:2012-06-27
CPC分类号: H04L45/28 , H04L12/1877 , H04L45/24
摘要: A packet-forwarding integrated circuit includes a control logic module and a selector block configured to produce a value indicating an incoming interface associated with a multicast data stream that meets stream health requirements, wherein the multicast data stream is one of a plurality of redundant multicast data streams each received on different incoming interfaces, wherein based on the value produced by the selector block the control logic module outputs data packets of the multicast data stream that meets stream health requirements received on the incoming interface, and discards data packets of other multicast data streams received on other incoming interfaces not indicated by the selector block. In response to detecting that a quality of one of the redundant multicast data streams has fallen below a configured threshold, the control logic automatically rewrites the selector block to forward a different one of the redundant multicast data streams.
摘要翻译: 分组转发集成电路包括控制逻辑模块和选择器块,其被配置为产生指示与满足流健康要求的多播数据流相关联的输入接口的值,其中多播数据流是多个冗余多播数据之一 每个在不同输入接口上接收的流,其中,基于由选择器块产生的值,控制逻辑模块输出满足在入接口上接收的流健康要求的多播数据流的数据分组,并丢弃其他多播数据流的数据分组 在未由选择器块指示的其他输入接口上接收。 响应于检测到冗余多播数据流中的一个的质量已经低于配置的阈值,则控制逻辑自动重写该选择器块以转发不同的冗余多播数据流。
-
-
-
-
-
-
-
-
-
搜索结果
48 条记录 (耗时 0.023 秒)
