公开(公告)号：US11870768B1

公开(公告)日：2024-01-09

申请号：US16845531

申请日：2020-04-10

Applicant: Cisco Technology, Inc.

Inventor： Devendra Kumar Vishwakarma ,  Om Prakash Suthar ,  Vivek Agarwal

IPC: H04L29/06 ,  H04L9/40 ,  H04W84/14 ,  H04W12/08 ,  H04W8/26 ,  H04W12/069 ,  H04W12/71 ,  H04L61/5014 ,  H04L101/622 ,  H04L101/659

CPC classification number: H04L63/0823 ,  H04L61/5014 ,  H04L63/0876 ,  H04W8/26 ,  H04W12/069 ,  H04W12/08 ,  H04W12/71 ,  H04W84/14 ,  H04L2101/622 ,  H04L2101/659

Abstract: Presented herein are certificate-based techniques through which a Radio Interface Unit may be securely onboarded to a service provider network. In one example, a method is provided that includes obtaining, by a Dynamic Host Configuration Protocol (DHCP) server, an address assignment request for the, wherein the address assignment request comprises a vendor device certificate, a signed nonce, a non-encrypted serial number for the RIU, a signed serial number for the RIU, and a vendor identifier; validating the vendor device certificate, the signed nonce, and the signed serial number for the RIU based on a vendor root certification authority certificate; validating the non-encrypted serial number for the RIU; and generating an address assignment response based on validating the non-encrypted serial number for the RIU, the vendor device certificate, the signed nonce, and the signed serial number for the RIU.

公开(公告)号：US11792236B2

公开(公告)日：2023-10-17

申请号：US17153416

申请日：2021-01-20

Applicant: Cisco Technology, Inc.

Inventor： Vivek Agarwal ,  Rajaneesh Sudhakar Shetty ,  Raghavendra Suryanarayanarao Vidyashankar ,  Arun Gunasekaran ,  Filipe Alexandre Da Silva Rodrigues

IPC: H04L65/1016 ,  H04L65/1069 ,  H04L65/1073 ,  H04L65/1104

CPC classification number: H04L65/1016 ,  H04L65/1069 ,  H04L65/1073 ,  H04L65/1104

Abstract: Techniques and mechanisms for Fifth Generation (5G) system (5GS) failure detection monitoring of an application or control function in a network for efficient restoration of service are described. The network may be an Internet Protocol (IP) Multimedia Subsystem (IMS) network, and the voice or data service may be an IMS service that utilizes Session Initiation Protocol (SIP) signaling. The application or control function may be a Proxy-Call Session Control Function (P-CSCF) of the IMS network. In some implementations, the procedure may involve a session management function (SMF) programming of a user plane function (UPF) for UPF monitoring of the P-CSCF, using a ping procedure or health check procedure (e.g. for 3GPP Pre-Release 16). In other implementations, the procedure may involve the SMF monitoring of a P-CSCF via a Network Function (NF) Repository Function (NRF) (e.g. for 3GPP Release 16).

公开(公告)号：US11778038B2

公开(公告)日：2023-10-03

申请号：US17709877

申请日：2022-03-31

Applicant: Cisco Technology, Inc.

Inventor： Srilatha Tangirala ,  Rahul Hardikar ,  Sheikh Qumruzzaman ,  Ravi Kiran Chintallapudi ,  Samir Thoria ,  Ajeet Pal Singh Gill ,  Vivek Agarwal

IPC: H04L67/141 ,  H04L9/40 ,  H04L45/76 ,  H04L41/122

CPC classification number: H04L67/141 ,  H04L41/122 ,  H04L45/76 ,  H04L63/0428

Abstract: In one embodiment, a method includes onboarding, by an edge router, a first tenant from a network management system and determining, by the edge router, a mapping of a tenant identifier associated with the first tenant to a controller identifier associated with a controller. The method also includes reserving, by the edge router, a port number in a kernel for the first tenant and inserting, by the edge router, the tenant identifier into a first control packet. The method further includes communicating, by the edge router, the first control packet to the controller via an encrypted control connection during a first peering session. The first peering session shares the encrypted control connection with a second peering session.

公开(公告)号：US20230262525A1

公开(公告)日：2023-08-17

申请号：US17882859

申请日：2022-08-08

Applicant: Cisco Technology, Inc.

Inventor： Gangadharan Byju Pularikkal ,  Einar Nilsen-Nygaard ,  Vivek Agarwal ,  Ajeet Pal Singh Gill ,  Ravi Sankar Mantha ,  Saravanan Radhakrishnan

IPC: H04W28/12 ,  H04L41/40 ,  H04W40/24

CPC classification number: H04W28/12 ,  H04L41/40 ,  H04W40/24

Abstract: In one embodiment, a method includes receiving one or more 5G software-defined wide area network (SD-WAN) policies, identifying one or more identity-based policies from the one or more 5G SD-WAN policies, communicating the identified one or more identity-based policies to one or more WAN routers, communicating one or more 5G bindings to the one or more WAN routers, and applying the identified one or more identity-based policies to one or more flows between the one or more WAN routers.

公开(公告)号：US11722410B2

公开(公告)日：2023-08-08

申请号：US18059797

申请日：2022-11-29

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Khalil A. Jabr ,  Anand Oswal ,  Vivek Agarwal ,  Chandramouli Balasubramanian

IPC: H04L45/64 ,  H04L12/46 ,  H04L45/02 ,  H04L45/50 ,  H04L47/2441 ,  H04L9/40

CPC classification number: H04L45/64 ,  H04L12/4641 ,  H04L45/04 ,  H04L45/50 ,  H04L47/2441 ,  H04L63/162

Abstract: Systems, methods, and computer-readable media for interconnecting SDWANs through segment routing. A first SDWAN and a second SDWAN of a SDWAN fabric can be identified. A segment routing domain that interconnects the first SDWAN and the second SDWAN can be formed across a WAN underlay of the SDWAN fabric. Data transmission between the first SDWAN and the second SDWAN can be controlled by performing segment routing through the segment routing domain formed between the first SDWAN and the second SDWAN.

公开(公告)号：US11606369B2

公开(公告)日：2023-03-14

申请号：US16826082

申请日：2020-03-20

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Gaurang Rajeev Mokashi ,  Preety Mordani ,  Vivek Agarwal

IPC: H04L9/40 ,  G06F9/455 ,  H04L47/20 ,  H04L43/08 ,  H04L49/25

Abstract: Systems, methods, and computer-readable media for performing threat remediation through a switch fabric of a virtualized network environment. Data traffic passing into a virtualized network environment including a plurality of virtual machines running on a switch fabric is monitored. A network threat introduced through at a least a portion of the data traffic is identified at the switch fabric. One or more remedial measures are performed in the network environment based on the identification of the network threat in the virtualized network environment.

公开(公告)号：US11588752B2

公开(公告)日：2023-02-21

申请号：US17389003

申请日：2021-07-29

Applicant: Cisco Technology, Inc.

Inventor： Srilatha Tangirala ,  Nithin Bangalore Raju ,  Ananya Raval ,  Prabahar Radhakrishnan ,  Vivek Agarwal ,  Balaji Sundararajan

IPC: H04L47/80 ,  H04L47/70 ,  H04L45/64 ,  H04L45/02 ,  H04L47/762 ,  H04L47/78

Abstract: Route exchange in a plurality of network controller appliances on a per-tenant basis is disclosed. In one aspect, a method includes receiving, from a network management system and at a first network controller appliance, a designation of at least two tenants to be hosted on the first network controller appliance, the first network controller appliance being one of a plurality of network controller appliances in a SD-WAN; sending, from the first network controller appliance to other network controller appliances of the plurality of network controller appliances, a tenant list query message to obtain a corresponding tenant list of each of the other network controller appliances; and receiving a corresponding response from each of the other network controller appliances indicating the corresponding tenant list of each of the other network controller appliances, the corresponding response being used to update the tenant list on the first network controller appliance.

公开(公告)号：US20220232046A1

公开(公告)日：2022-07-21

申请号：US17153416

申请日：2021-01-20

Applicant: Cisco Technology, Inc.

Inventor： Vivek Agarwal ,  Rajaneesh Sudhakar Shetty ,  Raghavendra Suryanarayanarao Vidyashankar ,  Arun Gunasekaran ,  Filipe Alexandre Da Silva Rodrigues

IPC: H04L29/06

Abstract: Techniques and mechanisms for Fifth Generation (5G) system (5GS) failure detection monitoring of an application or control function in a network for efficient restoration of service are described. The network may be an Internet Protocol (IP) Multimedia Subsystem (IMS) network, and the voice or data service may be an IMS service that utilizes Session Initiation Protocol (SIP) signaling. The application or control function may be a Proxy-Call Session Control Function (P-CSCF) of the IMS network. In some implementations, the procedure may involve a session management function (SMF) programming of a user plane function (UPF) for UPF monitoring of the P-CSCF, using a ping procedure or health check procedure (e.g. for 3GPP Pre-Release 16). In other implementations, the procedure may involve the SMF monitoring of a P-CSCF via a Network Function (NF) Repository Function (NRF) (e.g. for 3GPP Release 16).

公开(公告)号：US20220109584A1

公开(公告)日：2022-04-07

申请号：US17062833

申请日：2020-10-05

Applicant: Cisco Technology, Inc.

Inventor： Arun Gunasekaran ,  Raghavendra Suryanarayanarao Vidyashankar ,  Om Prakash Suthar ,  Rajaneesh Sudhakar Shetty ,  Vivek Agarwal

IPC: H04L12/14 ,  H04W28/02 ,  H04W76/16 ,  H04L12/813

Abstract: Techniques are provided to communicate the serving Radio Access Network (RAN) element information to the packet core network to enable operators to provide differential treatment for fifth generation (5G) subscribers. The techniques presented herein fill these gaps and help drive faster adoption of Dual Connectivity New Radio (DCNR) subscribers by service operator to offer customized policy and quota management to address different business requirements in the 5G Non-Stand Alone (NSA) architecture.

公开(公告)号：US11206593B2

公开(公告)日：2021-12-21

申请号：US16790078

申请日：2020-02-13

Applicant: Cisco Technology, Inc.

Inventor： Om Prakash Suthar ,  Ryo Watanabe ,  Aeneas Sean Dodd-Noble ,  Raghavendra Suryanarayanarao Vidyashankar ,  Vivek Agarwal

IPC: H04W36/00 ,  H04W36/12 ,  H04W8/24

Abstract: In one example, an indication that a user equipment participating in a Packet Data Network (PDN) session hosted by a Serving Gateway (SGW) and a PDN Gateway (PGW) is transitioning from a first Mobility Management Entity (MME) to a second MME is obtained. An indication that the SGW is co-located with the PGW and an identification of the SGW are obtained. Based on the indication that the SGW is co-located with the PGW and the identification of the SGW, it is determined that the SGW is reachable from the second MME. In response to determining that the SGW is reachable from the second MME, the SGW is selected to host the PDN session after the user equipment transitions from the first MME to the second MME.