-
公开(公告)号:US11962429B1
公开(公告)日:2024-04-16
申请号:US17979255
申请日:2022-11-02
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Srilatha Tangirala , Ajeet Pal Singh Gill , Nithin Bangalore Raju , Ravi Kiran Chintallapudi , Pradeepan Kannawadi , Ganesh Devendrachar
Abstract: Techniques for virtualizing tenant transport interfaces configured to implement per-tenant network routing attribute differentiation in each tenant overlay of a multisite wide area network (WAN) and share the virtual transport interfaces between multi-tenant edge (MTE) devices providing transport services to tenant devices based on a defined tenant tier model. A Software-Defined Networking (SDN) controller may receive a physical transport interface and/or a device type associated with a tenant device. The SDN controller may determine a virtual transport interface for the tenant device based on a tier associated with the tenant. MTE device(s) may utilize the physical transport interface to establish sessions with other MTE device(s) in the WAN. The virtual transport interface may be utilized by MTE devices to implement and/or enforce network routing attributes when forwarding network traffic associated with the tenant via the sessions established between the MTE devices through the WAN.
-
公开(公告)号:US20240039956A1
公开(公告)日:2024-02-01
申请号:US17876190
申请日:2022-07-28
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Vishnuprasad Raghavan , Kannan Kumar , Ramana Babu Polamarasetti , Mahalakshmi Rajaram
IPC: H04L9/40
CPC classification number: H04L63/20 , H04L63/102 , H04L63/0236
Abstract: Techniques for user identity-based security policy enforcement. The techniques may include sending, to an edge device associated with a network, a networking policy associated with a user. The techniques may also include receiving, from an identity provider, an IP address associated with the user. Additionally, the techniques may include sending, to the edge device, an indication to associate the IP address with the user such that the edge device applies the networking policy to packets that include the IP address.
-
公开(公告)号:US11838371B2
公开(公告)日:2023-12-05
申请号:US17857212
申请日:2022-07-05
Applicant: Cisco Technology, Inc.
Inventor: Avinash Ashok Kumar Chiganmi , Venkatraman Venkatapathy , Giorgio Valentini , Madhuri Kolli , Shu-Fen Lee , Balaji Sundararajan
IPC: G06F15/16 , H04L67/141 , H04L12/46 , H04L45/02
CPC classification number: H04L67/141 , H04L12/4641 , H04L45/02
Abstract: The present technology is directed to controlling and managing resources both in Software-Defined Cloud Interconnect (SDCI) providers and cloud service providers via a single network controller and further connecting virtual networks in a branch site to virtual networks in the cloud service providers. A network controller can establish a network gateway in an SDCI provider, establish a cross-connectivity between the network gateway in the SDCI provider and one or more clouds, group one or more virtual networks in the one or more clouds and one or more virtual networks in a branch site into a tag, and establish a connection between the one or more virtual networks in the one or more clouds and the one or more virtual networks in the branch site using the tag.
-
公开(公告)号:US11722410B2
公开(公告)日:2023-08-08
申请号:US18059797
申请日:2022-11-29
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Khalil A. Jabr , Anand Oswal , Vivek Agarwal , Chandramouli Balasubramanian
CPC classification number: H04L45/64 , H04L12/4641 , H04L45/04 , H04L45/50 , H04L47/2441 , H04L63/162
Abstract: Systems, methods, and computer-readable media for interconnecting SDWANs through segment routing. A first SDWAN and a second SDWAN of a SDWAN fabric can be identified. A segment routing domain that interconnects the first SDWAN and the second SDWAN can be formed across a WAN underlay of the SDWAN fabric. Data transmission between the first SDWAN and the second SDWAN can be controlled by performing segment routing through the segment routing domain formed between the first SDWAN and the second SDWAN.
-
公开(公告)号:US11606369B2
公开(公告)日:2023-03-14
申请号:US16826082
申请日:2020-03-20
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Gaurang Rajeev Mokashi , Preety Mordani , Vivek Agarwal
Abstract: Systems, methods, and computer-readable media for performing threat remediation through a switch fabric of a virtualized network environment. Data traffic passing into a virtualized network environment including a plurality of virtual machines running on a switch fabric is monitored. A network threat introduced through at a least a portion of the data traffic is identified at the switch fabric. One or more remedial measures are performed in the network environment based on the identification of the network threat in the virtualized network environment.
-
Patent Agency Ranking
公开(公告)号:US11588752B2
公开(公告)日:2023-02-21
申请号:US17389003
申请日:2021-07-29
Applicant: Cisco Technology, Inc.
Inventor: Srilatha Tangirala , Nithin Bangalore Raju , Ananya Raval , Prabahar Radhakrishnan , Vivek Agarwal , Balaji Sundararajan
Abstract: Route exchange in a plurality of network controller appliances on a per-tenant basis is disclosed. In one aspect, a method includes receiving, from a network management system and at a first network controller appliance, a designation of at least two tenants to be hosted on the first network controller appliance, the first network controller appliance being one of a plurality of network controller appliances in a SD-WAN; sending, from the first network controller appliance to other network controller appliances of the plurality of network controller appliances, a tenant list query message to obtain a corresponding tenant list of each of the other network controller appliances; and receiving a corresponding response from each of the other network controller appliances indicating the corresponding tenant list of each of the other network controller appliances, the corresponding response being used to update the tenant list on the first network controller appliance.
-
77.发明授权公开(公告)号:US11558402B2
公开(公告)日:2023-01-17
申请号:US16666143
申请日:2019-10-28
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Alberto Rodriguez Natal , Yegappan Lakshmanan , Fabio R. Maino , Anand Oswal
Abstract: Techniques for providing network traffic security in a virtualized environment are described. A threat aware controller uses a threat feed provided by a threat intelligence service to establish a threat detection engine on virtual switches. The threat aware controller and threat detection engine work together to detect any anomalous or malicious behavior of network traffic on the virtual switch and established virtual network functions to quickly detect, verify, and isolate network threats.
-
公开(公告)号:US11412051B1
公开(公告)日:2022-08-09
申请号:US17377315
申请日:2021-07-15
Applicant: Cisco Technology, Inc.
Inventor: Avinash Ashok Kumar Chiganmi , Venkatraman Venkatapathy , Giorgio Valentini , Madhuri Kolli , Shu-Fen Lee , Balaji Sundararajan
IPC: G06F15/16 , H04L67/141 , H04L45/02 , H04L12/46
Abstract: The present technology is directed to controlling and managing resources both in Software-Defined Cloud Interconnect (SDCI) providers and cloud service providers via a single network controller and further connecting virtual networks in a branch site to virtual networks in the cloud service providers. A network controller can establish a network gateway in an SDCI provider, establish a cross-connectivity between the network gateway in the SDCI provider and one or more clouds, group one or more virtual networks in the one or more clouds and one or more virtual networks in a branch site into a tag, and establish a connection between the one or more virtual networks in the one or more clouds and the one or more virtual networks in the branch site using the tag.
-
79.发明申请公开(公告)号:US20210218594A1
公开(公告)日:2021-07-15
申请号:US16739442
申请日:2020-01-10
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Vivek Agarwal , Anand Oswal , Chethan Channappa , Subhash Kodnad , Jeevan Sharma
Abstract: The present disclosure is directed to managing industrial internet of things end points and includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors and comprising instructions that, when executed by the one or more processors, cause one or more switches to perform operations comprising: identifying a first end point using a protocol associated with the first end point, determining a classification for the identified first end point based on one or more attributes of the first end point, identifying one or more related end points having the classification in common with the first end point, segmenting the first end point with the identified one or more related end points, and applying one or more policies to the segmented first end point and the one or more related end points.
-
公开(公告)号:US20210152442A1
公开(公告)日:2021-05-20
申请号:US17140273
申请日:2021-01-04
Applicant: Cisco Technology, Inc.
Inventor: Balaji Sundararajan , Vamsidhar Valluri , Chandramouli Balasubramanian , Anand Oswal , Ram Dular Singh
IPC: H04L12/24
Abstract: In one embodiment, a method includes providing a first profile to a plurality of edge routers of the SD-WAN, the plurality of edge routers operable to interface a plurality of devices to the SD-WAN. The first profile enables the plurality of edge routers to discover which devices of the plurality of devices support a first application The method includes receiving, from one or more of the edge routers, information indicating which devices of the plurality of devices support the first application and building a first application fabric based on the information indicating which devices of the plurality of devices support the first application.
-
-
-
-
-
-
-
-
-
Search Results
111
records
(took 0.024 seconds)
