公开(公告)号：US20220174037A1

公开(公告)日：2022-06-02

申请号：US17667952

申请日：2022-02-09

Applicant: Cisco Technology, Inc.

Inventor： Victor Manuel Moreno ,  Sanjay Kumar Hooda

IPC: H04L61/2557 ,  H04L61/2575 ,  H04L61/5038 ,  H04L12/46 ,  H04L61/2592 ,  H04L51/04

Abstract: This disclosure describes techniques for implementing network address translation as a distributed service over the nodes of a logical network fabric, such as a software-defined network fabric. A method includes registering, by an edge node of a network, an IP address of a client device. The method further includes forwarding, by the edge node, the registered IP address to a control plane of the network. The method further includes checking, by the control plane, a network address translation policy. The method further includes recording, by the control plane, translations between the registered IP address and an allocated IP address in a translation table, each of the translations being related to the edge node. The method further includes returning, by the control plane, the translations between the registered IP address and the allocated IP address to the edge node.

公开(公告)号：US20210234898A1

公开(公告)日：2021-07-29

申请号：US16750841

申请日：2020-01-23

Applicant: Cisco Technology, Inc.

Inventor： Ronak K. Desai ,  Rajagopalan Janakiraman ,  Mohammed Javed Asghar ,  Azeem Suleman ,  Patel Amitkumar Valjibhai ,  Sanjay Kumar Hooda ,  Victor Manuel Moreno

IPC: H04L29/06 ,  H04L12/813 ,  H04L12/947 ,  H04L29/12

Abstract: The present technology pertains to a system, method, and non-transitory computer-readable medium for orchestrating policies across multiple networking domains. The technology can receive, at a provider domain from a consumer domain, a data request; receive, at the provider domain from the consumer domain, at least one access policy for the consumer domain; translate, at the provider domain, the at least one access policy for the consumer domain into at least one translated access policy understood by the provider domain; apply, at the provider domain, the at least one translated access policy understood by the provider domain to the data request; and send, at the provider domain to the consumer domain, a response to the data request.

公开(公告)号：US20210176135A1

公开(公告)日：2021-06-10

申请号：US17110553

申请日：2020-12-03

Applicant: Cisco Technology, Inc.

Inventor： Girija Raghavendra Rao ,  Victor Manuel Moreno ,  Marc Binderberger ,  Lev Shvarts ,  Vrushali Ashtaputre

IPC: H04L12/24 ,  H04L12/751

Abstract: A method for assisting communication of a source host upon movement from a first Data center (DC) to a second DC is disclosed. The method includes identifying that the source host has moved from the first DC to the second DC, ensuring that packets identifying a source as the source host in the second DC are copied to a control plane network element, and, for a first destination host identified in a first packet copied to the control plane network element and identified as a host that is not in the second DC, updating an Address Resolution Protocol (ARP)/Neighbor Discovery Protocol (NDP) cache of the source host by sending, to the source host, a first ARP message/unsolicited neighbor advertisement specifying a Media Access Control (MAC) address of an edge router associated with the source host in the second DC as a destination MAC address for the first destination host.

公开(公告)号：US20210152516A1

公开(公告)日：2021-05-20

申请号：US16685969

申请日：2019-11-15

Applicant: Cisco Technology, Inc.

Inventor： Victor Manuel Moreno ,  Sanjay Kumar Hooda

IPC: H04L29/12 ,  H04L12/46

Abstract: This disclosure describes techniques for implementing network address translation as a distributed service over the nodes of a logical network fabric, such as a software-defined network fabric. A method includes registering, by an edge node of a network, an IP address of a client device. The method further includes forwarding, by the edge node, the registered IP address to a control plane of the network. The method further includes checking, by the control plane, a network address translation policy. The method further includes recording, by the control plane, translations between the registered IP address and an allocated IP address in a translation table, each of the translations being related to the edge node. The method further includes returning, by the control plane, the translations between the registered IP address and the allocated IP address to the edge node.

公开(公告)号：US10819580B2

公开(公告)日：2020-10-27

申请号：US15902916

申请日：2018-02-22

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Girija Raghavendra Rao ,  Victor Manuel Moreno ,  Marc Binderberger ,  Lev Shvarts ,  Vrushali Ashtaputre

IPC: H04L12/24 ,  H04L12/751

Abstract: A method for assisting communication of a source host upon movement from a first Data center (DC) to a second DC is disclosed. The method includes identifying that the source host has moved from the first DC to the second DC, ensuring that packets identifying a source as the source host in the second DC are copied to a control plane network element, and, for a first destination host identified in a first packet copied to the control plane network element and identified as a host that is not in the second DC, updating an Address Resolution Protocol (ARP)/Neighbor Discovery Protocol (NDP) cache of the source host by sending, to the source host, a first ARP message/unsolicited neighbor advertisement specifying a Media Access Control (MAC) address of an edge router associated with the source host in the second DC as a destination MAC address for the first destination host.

公开(公告)号：US20200021555A1

公开(公告)日：2020-01-16

申请号：US16577330

申请日：2019-09-20

Applicant: Cisco Technology, Inc.

Inventor： Rex Emmauel Fernando ,  Victor Manuel Moreno ,  Shyam Kapadia ,  Liqin Dong ,  Murali Venkateshaiah

IPC: H04L29/12

Abstract: A system and a method are disclosed for enabling interoperability between data plane learning endpoints and control plane learning endpoints in an overlay network environment. An exemplary method for managing network traffic in the overlay network environment includes receiving network packets in an overlay network from data plane learning endpoints and control plane learning endpoints, wherein the overlay network extends Layer 2 network traffic over a Layer 3 network; operating in a data plane learning mode when a network packet is received from a data plane learning endpoint; and operating in a control plane learning mode when the network packet is received from a control plane learning endpoint. Where the overlay network includes more than one overlay segment, the method further includes operating as an anchor node for routing inter-overlay segment traffic to and from hosts that operate behind the data plane learning endpoints.

公开(公告)号：US10454877B2

公开(公告)日：2019-10-22

申请号：US15143202

申请日：2016-04-29

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Rex Emmanuel Fernando ,  Victor Manuel Moreno ,  Shyam Kapadia ,  Liqin Dong ,  Murali Venkateshaiah

IPC: H04L29/12 ,  H04L12/46 ,  H04L12/24

Abstract: A system and a method are disclosed for enabling interoperability between data plane learning endpoints and control plane learning endpoints in an overlay network environment. An exemplary method for managing network traffic in the overlay network environment includes receiving network packets in an overlay network from data plane learning endpoints and control plane learning endpoints, wherein the overlay network extends Layer 2 network traffic over a Layer 3 network; operating in a data plane learning mode when a network packet is received from a data plane learning endpoint; and operating in a control plane learning mode when the network packet is received from a control plane learning endpoint. Where the overlay network includes more than one overlay segment, the method further includes operating as an anchor node for routing inter-overlay segment traffic to and from hosts that operate behind the data plane learning endpoints.

公开(公告)号：US20190020489A1

公开(公告)日：2019-01-17

申请号：US15649479

申请日：2017-07-13

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Victor Manuel Moreno ,  Shyam Kapadia ,  Sanjay Kumar Hooda

IPC: H04L12/18 ,  H04L29/06 ,  H04L12/24 ,  H04L12/46

CPC classification number: H04L12/18 ,  H04L12/4633 ,  H04L41/0893 ,  H04L45/16 ,  H04L45/20 ,  H04L69/03

Abstract: A Location/Identifier Separation Protocol (LISP) mapping server, including: a network interface for communicating with a LISP-enabled network; a mapping database; an extranet policy table; and a shared subnetwork mapping engine (SSME), including at least a hardware platform, configured to: receive a map request from a first endpoint serviced by a first xTR, the first endpoint on a first subnetwork, the map request for a second endpoint; determine that the second endpoint is not a member of the first subnetwork; query the extranet policy table to identify a second subnetwork that the first subnetwork subscribes to, and to determine that the second endpoint is a member of the second subnetwork; and provide to the first subnetwork a routing locator (RLOC) of an xTR servicing the second endpoint.

公开(公告)号：US09923780B2

公开(公告)日：2018-03-20

申请号：US14944685

申请日：2015-11-18

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Girija Raghavendra Rao ,  Victor Manuel Moreno ,  Marc Binderberger ,  Lev Shvarts ,  Vrushali Ashtaputre

IPC: H04L12/24 ,  H04L12/751

CPC classification number: H04L41/12 ,  H04L45/02

Abstract: A method for assisting communication of a source host upon movement from a first Data center (DC) to a second DC is disclosed. The method includes identifying that the source host has moved from the first DC to the second DC, ensuring that packets identifying a source as the source host in the second DC are copied to a control plane network element, and, for a first destination host identified in a first packet copied to the control plane network element and identified as a host that is not in the second DC, updating an Address Resolution Protocol (ARP)/Neighbor Discovery Protocol (NDP) cache of the source host by sending, to the source host, a first ARP message/unsolicited neighbor advertisement specifying a Media Access Control (MAC) address of an edge router associated with the source host in the second DC as a destination MAC address for the first destination host.

公开(公告)号：US20170026246A1

公开(公告)日：2017-01-26

申请号：US14944685

申请日：2015-11-18

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Girija Raghavendra Rao ,  Victor Manuel Moreno ,  Marc Binderberger ,  Lev Shvarts ,  Vrushali Ashtaputre

IPC: H04L12/24 ,  H04L12/751

CPC classification number: H04L41/12 ,  H04L45/02

Abstract: A method for assisting communication of a source host upon movement from a first Data center (DC) to a second DC is disclosed. The method includes identifying that the source host has moved from the first DC to the second DC, ensuring that packets identifying a source as the source host in the second DC are copied to a control plane network element, and, for a first destination host identified in a first packet copied to the control plane network element and identified as a host that is not in the second DC, updating an Address Resolution Protocol (ARP)/Neighbor Discovery Protocol (NDP) cache of the source host by sending, to the source host, a first ARP message/unsolicited neighbor advertisement specifying a Media Access Control (MAC) address of an edge router associated with the source host in the second DC as a destination MAC address for the first destination host.