公开(公告)号：US12040944B2

公开(公告)日：2024-07-16

申请号：US18447158

申请日：2023-08-09

Applicant: Cisco Technology, Inc.

Inventor： Uffaz Nathaniel ,  Aakruthi Ramkumar Gopisetty ,  Jason David Notari ,  Shyam Kapadia ,  Lukas Krattiger

IPC: H04L41/08 ,  H04L12/46 ,  H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L45/74

CPC classification number: H04L41/0883 ,  H04L12/4641 ,  H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L45/74

Abstract: The present technology provides a framework for user-guided end-to-end automation of network deployment and management, that enables a user to guide the automation process for any kind of network deployment from the ground up, as well as offering network management, visibility, and compliance verification. The disclosed technology accomplishes this by creating a stateful and interactive virtual representation of a fabric using a customizable underlay fabric template instantiated with user-provided parameter values and network topology data computed from one or more connected network devices. A set of expected configurations corresponding to the user-specified underlay and overly fabric policies is then generated for deployment onto the connected network devices. Network deviations from the intended fabric policies are addressed by the provision of one or more configuration lines to be deployed onto or removed from the connected network devices to bring the network state in agreement with the set of expected configuration.

公开(公告)号：US20230388185A1

公开(公告)日：2023-11-30

申请号：US18447158

申请日：2023-08-09

Applicant: Cisco Technology, Inc.

Inventor： Uffaz Nathaniel ,  Aakruthi Ramkumar Gopisetty ,  Jason David Notari ,  Shyam Kapadia ,  Lukas Krattiger

IPC: H04L41/08 ,  H04L12/46 ,  H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L45/74

CPC classification number: H04L41/0883 ,  H04L12/4641 ,  H04L41/0806 ,  H04L41/0893 ,  H04L41/12 ,  H04L45/74

Abstract: The present technology provides a framework for user-guided end-to-end automation of network deployment and management, that enables a user to guide the automation process for any kind of network deployment from the ground up, as well as offering network management, visibility, and compliance verification. The disclosed technology accomplishes this by creating a stateful and interactive virtual representation of a fabric using a customizable underlay fabric template instantiated with user-provided parameter values and network topology data computed from one or more connected network devices. A set of expected configurations corresponding to the user-specified underlay and overly fabric policies is then generated for deployment onto the connected network devices. Network deviations from the intended fabric policies are addressed by the provision of one or more configuration lines to be deployed onto or removed from the connected network devices to bring the network state in agreement with the set of expected configuration.

公开(公告)号：US11336518B2

公开(公告)日：2022-05-17

申请号：US17355651

申请日：2021-06-23

Applicant: Cisco Technology, Inc.

Inventor： Shyam Kapadia ,  Lukas Krattiger ,  Jason David Notari

IPC: G06F15/173 ,  H04L41/0813 ,  H04L29/06

Abstract: Techniques for a configuration change service to transition a network controller into a frozen state, causing network users submitting configuration changes associated with the network to refrain from deploying the configuration changes for a period of time are disclosed. A first user configured as a stager role may submit data representing a proposed change to the configuration change service, where the proposed change may be stored in association with a list of proposed changes. A second user configured as an approver role may submit data representing an approval or disapproval of the proposed changes to the configuration change service, where a modified list of proposed changes may be generated. A third user configured as an administrator role may submit data configured to transition the controller to an unfrozen state and/or deploy the changes included in the list of proposed changes to the network controller, subsequent to the period of time.

公开(公告)号：US11128541B2

公开(公告)日：2021-09-21

申请号：US16517742

申请日：2019-07-22

Applicant: Cisco Technology, inc.

Inventor： Srinivas Siva Kanth Sattiraju ,  Suvil Singh Deora ,  Shyam Kapadia ,  Naoshad Mehta

IPC: H04L12/24 ,  H04L12/26 ,  H04L12/803 ,  H04L12/801

Abstract: In one embodiment, a device obtains temperature and utilization measurements for a set of network interface transceivers in a network. The device computes, for each of the transceivers, a correlation coefficient between its temperature and utilization measurements. The device applies a k-nearest neighbor classifier to the correlation coefficients, to predict a correlation coefficient. The device uses the predicted correlation coefficient to determine an impact of temperature on utilization of a particular network interface transceiver. The device initiates a mitigation action, when the determined impact of temperature on the utilization of the particular network interface transceiver exceeds a predefined threshold.

公开(公告)号：US20200021555A1

公开(公告)日：2020-01-16

申请号：US16577330

申请日：2019-09-20

Applicant: Cisco Technology, Inc.

Inventor： Rex Emmauel Fernando ,  Victor Manuel Moreno ,  Shyam Kapadia ,  Liqin Dong ,  Murali Venkateshaiah

IPC: H04L29/12

Abstract: A system and a method are disclosed for enabling interoperability between data plane learning endpoints and control plane learning endpoints in an overlay network environment. An exemplary method for managing network traffic in the overlay network environment includes receiving network packets in an overlay network from data plane learning endpoints and control plane learning endpoints, wherein the overlay network extends Layer 2 network traffic over a Layer 3 network; operating in a data plane learning mode when a network packet is received from a data plane learning endpoint; and operating in a control plane learning mode when the network packet is received from a control plane learning endpoint. Where the overlay network includes more than one overlay segment, the method further includes operating as an anchor node for routing inter-overlay segment traffic to and from hosts that operate behind the data plane learning endpoints.

公开(公告)号：US10454877B2

公开(公告)日：2019-10-22

申请号：US15143202

申请日：2016-04-29

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Rex Emmanuel Fernando ,  Victor Manuel Moreno ,  Shyam Kapadia ,  Liqin Dong ,  Murali Venkateshaiah

IPC: H04L29/12 ,  H04L12/46 ,  H04L12/24

Abstract: A system and a method are disclosed for enabling interoperability between data plane learning endpoints and control plane learning endpoints in an overlay network environment. An exemplary method for managing network traffic in the overlay network environment includes receiving network packets in an overlay network from data plane learning endpoints and control plane learning endpoints, wherein the overlay network extends Layer 2 network traffic over a Layer 3 network; operating in a data plane learning mode when a network packet is received from a data plane learning endpoint; and operating in a control plane learning mode when the network packet is received from a control plane learning endpoint. Where the overlay network includes more than one overlay segment, the method further includes operating as an anchor node for routing inter-overlay segment traffic to and from hosts that operate behind the data plane learning endpoints.

公开(公告)号：US20190037033A1

公开(公告)日：2019-01-31

申请号：US15661445

申请日：2017-07-27

Applicant: Cisco Technology, Inc.

Inventor： Elyor Khakimov ,  Shyam Kapadia ,  Richard Lam

IPC: H04L29/08 ,  H04L12/813 ,  H04L12/44 ,  H04L12/803

Abstract: A network controller for a network implementing a virtual network overlay determines a network gateway via which a service appliance accesses the network. The network controller determines a network gateway via which an application server accesses the network. The network controller distributes first policy data to the network gateway via which the service appliance accesses the network. This first policy data indicates a network policy such that when the policy is executed, the network gateway via which the service appliance accesses the network is configured to forward return packets addressed to a client device sent from an application server to the service appliance. The network controller distributes second policy data to the network gateway via which the application server accesses the network. This second policy data indicates a network policy such that when the policy is executed, the network gateway via which the application server accesses the network is configured to forward return packets addressed to the client device sent from the application server to the network gateway via which the service appliance accesses the network.

公开(公告)号：US20190020489A1

公开(公告)日：2019-01-17

申请号：US15649479

申请日：2017-07-13

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Victor Manuel Moreno ,  Shyam Kapadia ,  Sanjay Kumar Hooda

IPC: H04L12/18 ,  H04L29/06 ,  H04L12/24 ,  H04L12/46

CPC classification number: H04L12/18 ,  H04L12/4633 ,  H04L41/0893 ,  H04L45/16 ,  H04L45/20 ,  H04L69/03

Abstract: A Location/Identifier Separation Protocol (LISP) mapping server, including: a network interface for communicating with a LISP-enabled network; a mapping database; an extranet policy table; and a shared subnetwork mapping engine (SSME), including at least a hardware platform, configured to: receive a map request from a first endpoint serviced by a first xTR, the first endpoint on a first subnetwork, the map request for a second endpoint; determine that the second endpoint is not a member of the first subnetwork; query the extranet policy table to identify a second subnetwork that the first subnetwork subscribes to, and to determine that the second endpoint is a member of the second subnetwork; and provide to the first subnetwork a routing locator (RLOC) of an xTR servicing the second endpoint.

公开(公告)号：US20180176181A1

公开(公告)日：2018-06-21

申请号：US15472178

申请日：2017-03-28

Applicant: CISCO TECHNOLOGY, INC.

Inventor： Lei Fu ,  Edward Tung Thanh Pham ,  Huilong Huang ,  Srividya S. Vemulakonda ,  Mehak Mahajan ,  Shyam Kapadia

IPC: H04L29/06 ,  H04L12/46 ,  H04L12/801 ,  G06F17/30 ,  G06F9/455

CPC classification number: H04L63/0236 ,  G06F16/951 ,  H04L12/4641 ,  H04L61/103 ,  H04L61/6022 ,  H04L63/10 ,  H04L63/101 ,  H04L63/1433

Abstract: In an example, there is disclosed a network switch, including: an ingress interface; an egress interface; an endpoint repository network interface; and one or more logic elements including an endpoint admission control engine to: receive a packet on the ingress interface, the packet having an associated source Internet protocol (IP) address and virtual network identifier (VNI); query an endpoint repository via the endpoint repository network interface for the source IP address and VNI; determine that the source IP address and VNI are found in an endpoint repository database of the endpoint repository; and forward the packet to a destination IP address via the egress interface.

公开(公告)号：US09838315B2

公开(公告)日：2017-12-05

申请号：US14811861

申请日：2015-07-29

Applicant: Cisco Technology, Inc.

Inventor： Shyam Kapadia ,  Lukas Krattiger ,  Vrishab Sikand

IPC: H04L12/741 ,  H04L12/721 ,  H04L12/715 ,  H04L12/931 ,  H04L12/66

CPC classification number: H04L45/745 ,  H04L12/66 ,  H04L45/04 ,  H04L45/54 ,  H04L45/72 ,  H04L49/70

Abstract: In one embodiment, a method for improving routing for a stretched subnet includes receiving a first communication on a border leaf of the stretched subnet, where the border leaf is a top of rack (ToR) switch configured to facilitate connectivity between an internal data center fabric and at least one external site associated with the stretched subnet, based on routing information received with the received communication, identifying a source address for the received communication as either from within the internal data center fabric or from the at least one external site, and if the source address is from the external site, storing an abbreviated route based on the source address in at least one hardware table, where the abbreviated route is a route to the at least one external site, and upon subsequent receipt of a second communication to be forwarded to the source address, forwarding the second communication in accordance with the abbreviated route.