公开(公告)号：US09560168B2

公开(公告)日：2017-01-31

申请号：US14704584

申请日：2015-05-05

Applicant: Cisco Technology, Inc.

Inventor： Chao Feng ,  Nitesh G. Soni ,  Pramod Cherukumilli ,  Diheng Qu ,  Suresh Kumar Nalluru ,  Samar Sharma

IPC: H04L29/06 ,  H04L29/08 ,  H04L7/00 ,  H04L12/721

CPC classification number: H04L67/42 ,  H04L7/0008 ,  H04L12/4641 ,  H04L45/38 ,  H04L67/10 ,  H04L67/1027

Abstract: Methods and apparatus for providing one-arm node clustering using a port channel are provided herein. An example application node may be communicatively connected to at least one application node, and the application node may be connected to a network through a port channel. The application node may include: a link included in the port channel for accommodating the network data being communicated between the remote client and server; and a processor configured to send/receive a cluster control packet to/from the at least one application node through the link included in the port channel.

Abstract translation: 本文提供了使用端口通道提供单臂节点聚类的方法和装置。 示例性应用节点可以通信地连接到至少一个应用节点，并且应用节点可以通过端口信道连接到网络。 应用节点可以包括：包括在端口信道中的链路，用于容纳在远程客户端和服务器之间传送的网络数据; 以及处理器，被配置为通过包括在端口信道中的链路向/从至少一个应用节点发送/接收集群控制分组。

公开(公告)号：US20160315814A1

公开(公告)日：2016-10-27

申请号：US15095037

申请日：2016-04-09

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Rajendra Kumar Thirumurthi ,  Sachin Vijay Vishwarupe ,  Samar Sharma ,  Mouli Vytla

IPC: H04L12/24 ,  H04L29/08 ,  H04L12/803

CPC classification number: H04L67/1031 ,  H04L41/12 ,  H04L47/125 ,  H04L49/00 ,  H04L49/35 ,  H04L67/1008

Abstract: In an example, there is provided a network apparatus for providing native load balancing within a switch, including a first network interface operable to communicatively couple to a first network; a plurality of second network interfaces operable to communicatively couple to a second network, the second network comprising a service pool of service nodes; one or more logic elements providing a switching engine operable for providing network switching; and one or more logic elements comprising a load balancing engine operable for: load balancing incoming network traffic to the service pool via native hardware according to a load balancing configuration; detecting a new service node added to the service pool; and adjusting the load balancing configuration to account for the new service node; wherein the switching engine and load balancing engine are configured to be provided on the same hardware as each other and as the first network interface and plurality of second network interfaces.

Abstract translation: 在一个示例中，提供了一种用于在交换机内提供本地负载平衡的网络设备，包括可操作地通信地耦合到第一网络的第一网络接口; 多个第二网络接口，可操作以通信地耦合到第二网络，所述第二网络包括服务节点的服务池; 提供可操作以提供网络切换的交换引擎的一个或多个逻辑元件; 以及一个或多个逻辑元件，其包括负载平衡引擎，所述负载平衡引擎可操作用于：根据负载平衡配置，通 检测添加到服务池的新服务节点; 并调整负载均衡配置以解决新的业务节点; 其中所述交换引擎和负载平衡引擎被配置为被提供在彼此相同的硬件上，以及作为所述第一网络接口和多个第二网络接口。

公开(公告)号：US09178912B2

公开(公告)日：2015-11-03

申请号：US13677392

申请日：2012-11-15

Applicant: CISCO TECHNOLOGY, Inc.

Inventor： Samar Sharma ,  Nitesh G. Soni ,  Ronak Desai ,  Chao Feng ,  Jon Wei

IPC: G06F9/455 ,  H04L29/06 ,  H04L12/931 ,  H04L12/24

CPC classification number: H04L65/1013 ,  G06F9/45533 ,  G06F2009/45595 ,  H04L41/0803 ,  H04L49/356 ,  H04L49/70

Abstract: Methods and apparatus are provided for virtual device context (VDC) integration for network services. VDC integration for network services generally includes mapping a virtual switch, physical ports on the network switch assigned to the virtual switch, a service node and a physical port on a service node to share a common VDC associated with a configuration of the virtual switch. In this manner, the VDC concept is extended to the service node and the network may be easily managed, with a network switch and associated service nodes configured through a single processing system on the network switch or service node.

Abstract translation: 为网络服务的虚拟设备上下文（VDC）集成提供了方法和设备。 用于网络服务的VDC集成通常包括映射虚拟交换机，分配给虚拟交换机的网络交换机上的物理端口，服务节点上的服务节点和物理端口，以共享与虚拟交换机的配置相关联的公共VDC。 以这种方式，通过在网络交换机或服务节点上通过单个处理系统配置的网络交换机和相关联的服务节点，将VDC概念扩展到服务节点并且可以容易地管理网络。

公开(公告)号：US11082312B2

公开(公告)日：2021-08-03

申请号：US16112858

申请日：2018-08-27

Applicant: Cisco Technology, Inc.

Inventor： Samar Sharma

IPC: H04L12/26 ,  H04L12/24 ,  H04L29/06 ,  H04L12/803 ,  H04L12/721 ,  H04L12/725

Abstract: Presented herein are service chaining techniques for selective traffic redirection based on Access Control List (ACL) configurations on switches. Network traffic forwarded along one or more service chains may be monitored on the basis of individual segments of the service chains. In one example, the network traffic forwarded along individual segments may be counted on a per-segment basis.

公开(公告)号：US10965596B2

公开(公告)日：2021-03-30

申请号：US16135226

申请日：2018-09-19

Applicant: Cisco Technology, Inc.

Inventor： Samar Sharma ,  Pavani Baddepudi ,  Goran Saradzic ,  Manjunath Masanagi ,  Mahadeva S. Chandra

IPC: H04L12/741 ,  H04L12/725 ,  H04L12/859 ,  H04L29/06 ,  H04L12/24 ,  H04L12/931 ,  H04L29/12

Abstract: In an embodiment, a method is provided. The method includes: storing, in at least one hardware module of a network device having a plurality of ports, attributes for at least one access control list and associated actions that cause network packets received at one of the plurality of ports that match the attributes for the at least one access control list, to be directed into a service chain that includes at least a first network processing application specified according to a port and a second network processing application specified according to an internet protocol (IP) address; and directing a received network packet that matches the attributes for the at least one access control list into the service chain.

公开(公告)号：US10797941B2

公开(公告)日：2020-10-06

申请号：US15647459

申请日：2017-07-12

Applicant: Cisco Technology, Inc.

Inventor： Samar Sharma ,  Rakesh B. Goudar ,  Chandrashekarappa Surekha Puttasubbappa ,  John Andrew Fingerhut

IPC: G06F15/16 ,  H04L12/24 ,  H04L12/26 ,  H04L12/851

Abstract: A network element includes one or more hardware memory resources of fixed storage capacity for storing data used to configure a plurality of networking features of the network element. A utilization management process runs on the network element to perform operations including obtaining utilization data representing utilization of the one or more hardware memory resources, and analyzing the utilization data of the one or more hardware memory resources to produce summarized utilization data.

公开(公告)号：US20200274848A1

公开(公告)日：2020-08-27

申请号：US16870130

申请日：2020-05-08

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Samar Sharma

IPC: H04L29/12 ,  H04L12/707 ,  H04L12/725 ,  H04L12/721 ,  H04L12/741 ,  H04L29/06

Abstract: Systems, methods, and computer-readable media for creating service chains for inter-cloud traffic. In some examples, a system receives domain name system (DNS) queries associated with cloud domains and collects DNS information associated the cloud domains. The system spoofs DNS entries defining a subset of IPs for each cloud domain. Based on the spoofed DNS entries, the system creates IP-to-domain mappings associating each cloud domain with a respective IP from the subset of IPs. Based on the IP-to-domain mappings, the system programs different service chains for traffic between a private network and respective cloud domains. The system routes, through the respective service chain, traffic having a source associated with the private network and a destination matching the IP in the respective IP-to-domain mapping.

公开(公告)号：US10554547B2

公开(公告)日：2020-02-04

申请号：US14876556

申请日：2015-10-06

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Rajendra Kumar Thirumurthi ,  Samar Sharma ,  Puneet Kumar ,  Mouli Vytla

IPC: H04L12/741 ,  H04L12/721 ,  H04L29/12 ,  H04L29/06

Abstract: Embodiments include receiving configuration information including a match criterion for packets received at a network device in a network and a pool of layer 3 addresses associated with a set of servers in the network, resolving layer 2 destination addresses based on the layer 3 addresses of the servers, and programming a hardware layer of the network device based, at least in part, on the match criterion, the pool of layer 3 addresses, and the layer 2 destination addresses. Specific embodiments include configuring a policy to indicate that packets from an external source are to be forwarded to a server of the set of servers. Further embodiments include receiving a packet at the network device, and matching the packet to the pool of layer 3 addresses and the resolved layer 2 addresses based, at least in part, on the match criterion programmed in the hardware layer.

公开(公告)号：US10554489B2

公开(公告)日：2020-02-04

申请号：US16011462

申请日：2018-06-18

Applicant: Cisco Technology, Inc.

Inventor： Samar Sharma ,  Mitali Parthasarathy ,  Avni Baveja

IPC: G06F15/177 ,  H04L12/24 ,  H04L29/08

Abstract: An example method is provided and includes configuring a service on a network element; associating a directly connected port with the service to create a port channel between the network element and a directly connected service appliance, the port channel comprising a plurality of member ports; performing an auto-discovery process for each of the member ports; and, upon successful completion of the performing, indicating on the network element that the service appliance is operational. In certain embodiments, the network element includes an intelligent service card manager module (“ISCM”) that forms part of a Remote Integrated Service Engine (“RISE”) element with a corresponding intelligent service card client module (“ISCC”) installed on the service appliance. The method may further include, upon unsuccessful completion of the auto-discovery process, repeating the auto-discovery process.

公开(公告)号：US20190379635A1

公开(公告)日：2019-12-12

申请号：US16001039

申请日：2018-06-06

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Samar Sharma

IPC: H04L29/12 ,  H04L12/725 ,  H04L12/741 ,  H04L12/721 ,  H04L12/707 ,  H04L29/06

Abstract: Systems, methods, and computer-readable media for creating service chains for inter-cloud traffic. In some examples, a system receives domain name system (DNS) queries associated with cloud domains and collects DNS information associated the cloud domains. The system spoofs DNS entries defining a subset of IPs for each cloud domain. Based on the spoofed DNS entries, the system creates IP-to-domain mappings associating each cloud domain with a respective IP from the subset of IPs. Based on the IP-to-domain mappings, the system programs different service chains for traffic between a private network and respective cloud domains. The system routes, through the respective service chain, traffic having a source associated with the private network and a destination matching the IP in the respective IP-to-domain mapping.