公开(公告)号：US20190372896A1

公开(公告)日：2019-12-05

申请号：US16541931

申请日：2019-08-15

Applicant: Cisco Technology, Inc.

Inventor： Naader Hasani ,  Shishir Gupta ,  David Delano Ward ,  Mohammed Ismael Tatar ,  Shahin Habibi ,  Sreedhar Ravipalli ,  David Richard Barach

IPC: H04L12/743 ,  H04L12/745

Abstract: One embodiment performs longest prefix matching operations in one or more different manners that provides packet processing and/or memory efficiencies in the processing of packets. In one embodiment, a packet switching device determines a set of one or more mask lengths of a particular conforming entry of a multibit trie or other data structure that matches a particular address of a packet via a lookup operation in a mask length data structure. A conforming entry refers to an entry which has less than or equal to a maximum number of different prefix lengths, with this maximum number corresponding to the maximum number of prefix lengths which can be searched in parallel in the address space for a longest matching prefix by the implementing hardware. The packet switching device then performs corresponding hash table lookup operation(s) in parallel in determining an overall longest matching prefix for the particular address.

公开(公告)号：US10397115B1

公开(公告)日：2019-08-27

申请号：US15949060

申请日：2018-04-09

Applicant: Cisco Technology, Inc.

Inventor： Naader Hasani ,  Shishir Gupta ,  David Delano Ward ,  Mohammed Ismael Tatar ,  Shahin Habibi ,  Sreedhar Ravipalli ,  David Richard Barach

IPC: H04L12/743 ,  H04L12/745

Abstract: One embodiment performs longest prefix matching operations in one or more different manners that provides packet processing and/or memory efficiencies in the processing of packets. In one embodiment, a packet switching device determines a set of one or more mask lengths of a particular conforming entry of a multibit trie or other data structure that matches a particular address of a packet via a lookup operation in a mask length data structure. A conforming entry refers to an entry which has less than or equal to a maximum number of different prefix lengths, with this maximum number corresponding to the maximum number of prefix lengths which can be searched in parallel in the address space for a longest matching prefix by the implementing hardware. The packet switching device then performs corresponding hash table lookup operation(s) in parallel in determining an overall longest matching prefix for the particular address.

公开(公告)号：US10348648B2

公开(公告)日：2019-07-09

申请号：US15156689

申请日：2016-05-17

Applicant: Cisco Technology, Inc.

Inventor： Carlos M. Pignataro ,  Frank Brockners ,  David Delano Ward

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/715 ,  H04L12/935 ,  G06F15/173

Abstract: In one embodiment, a particular service chain data packet is received by a particular service node, with the service chain data packet including a header identifying service chain information. The particular service node applies a service to the particular service chain data packet. The particular service node adds service-layer operations data to the particular service chain data packet, with the service-layer operations data related to the current service function or the particular service node. Subsequently, the particular service node sends the particular service chain data packet with the service-layer operations data from the particular service node. In one embodiment, networking operations data is also added to the particular service chain data packet. In one embodiment, an egress service node removes the service-layer (and possibly networking) operations data and forwards to another system, possibly after processing this operations data.

公开(公告)号：US20180241688A1

公开(公告)日：2018-08-23

申请号：US15439144

申请日：2017-02-22

Applicant: Cisco Technology, Inc.

Inventor： John J. Williams, JR. ,  Dipankar Bhatt Acharya ,  Mohammed Ismael Tatar ,  David Delano Ward

IPC: H04L12/869 ,  H04L1/18 ,  H04L12/851

CPC classification number: H04L47/58 ,  H04L1/1835 ,  H04L45/24 ,  H04L47/30 ,  H04L49/10

Abstract: One embodiment includes multiple distribution nodes sending packets of different ordered sets of packets among multiple packet switching devices arranged in a single stage topology to reach a reordering node. The reordering node receives these packets sent over the different paths and stores them in reordering storage, such as, but not limited to, in queues for each distribution node and packet switching device combination. The reordering node sends packets stored in the reordering storage from the reordering node in original orderings. In response to determining that an aggregation quantum of packets received from the multiple distribution nodes via a particular packet switching device and stored in the reordering storage is outside a range or value, packets being communicated via the particular packet switching device to the reordering node are rate limited.

公开(公告)号：US20180159779A1

公开(公告)日：2018-06-07

申请号：US15372330

申请日：2016-12-07

Applicant: Cisco Technology, Inc.

Inventor： John J. Williams, Jr. ,  Mohammed Ismael Tatar ,  David Delano Ward

IPC: H04L12/813 ,  H04L29/06 ,  H04L12/823 ,  H04L12/947 ,  H04L12/803 ,  H04L12/863

CPC classification number: H04L47/20 ,  H04L45/22 ,  H04L47/122 ,  H04L47/125 ,  H04L47/32 ,  H04L47/50 ,  H04L49/25 ,  H04L69/16

Abstract: One embodiment includes a packet switching device load balancing eligible packets in response to a policing drop decision. The packet switching device sends packets of a particular packet flow out of the packet switching device over a first path in the network towards a destination node; and in response to a policer discipline determining to drop a particular packet of the particular packet flow, switching from said sending packets over the first path to sending packets of the particular packet flow out of the packet switching device over a second path in the network towards the destination node (possibly by switching output queues associated with the two different paths), with the second path being different than the first path, and with the particular packet not being dropped but being sent out of the packet switching device towards the destination node.

公开(公告)号：US20180013696A1

公开(公告)日：2018-01-11

申请号：US15203767

申请日：2016-07-06

Applicant: Cisco Technology, Inc.

Inventor： Plamen Nedeltchev ,  David Delano Ward ,  Mohit Agrawal ,  Alon Shlomo Bernstein

IPC: H04L12/911 ,  H04L12/26

CPC classification number: H04L47/822 ,  G06F9/5072 ,  H04L43/022 ,  H04L43/062

Abstract: Resource provider specifications, characterizing computing resources of computing resource providers, are received. The reachability of each IP address included in the received specification is determined. An agent is deployed that is operable to determine the value of each of a set of metrics in the environment of the host at which the agent is deployed. The agent determines the value of each metric of the set of metrics in the environment of the relevant host, and communicates the determined values to one or more computing devices that validate whether the resources characterized by the communicated values are sufficient to provide the performance characterized by the received specification and that each ISP router complies with a predetermined policy. For each computing resource provider validated and determined to comprise an ISP router compliant with policy, the specified computing resources are added to a pool of resources for cloud computing.

公开(公告)号：US12137093B2

公开(公告)日：2024-11-05

申请号：US17814410

申请日：2022-07-22

Applicant: Cisco Technology, Inc.

Inventor： Clarence Filsfils ,  Marc Portoles Comeras ,  David Delano Ward ,  Alberto Rodriguez Natal

IPC: H04L9/40

Abstract: In one embodiment, an apparatus of a LISP environment includes one or more processors and computer-readable non-transitory storage media coupled to the one or more processors. The computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the one or more processors to perform operations including receiving an attestation token from a first component of the LISP environment. The operations also include encoding the attestation token using a LISP message format. The operations further include distributing the encoded attestation token with a LISP signaling message to a third component of the LISP environment.

公开(公告)号：US11928514B2

公开(公告)日：2024-03-12

申请号：US16518242

申请日：2019-07-22

Applicant: Cisco Technology, Inc.

Inventor： Kyle Andrew Donald Mestery ,  Ian Wells ,  David Delano Ward

IPC: H04L67/53 ,  G06F9/50 ,  H04L43/16 ,  H04L67/1008 ,  H04L67/1031

CPC classification number: G06F9/505 ,  H04L67/53 ,  H04L43/16 ,  H04L67/1008 ,  H04L67/1031

Abstract: A method includes receiving a DNS request, notifying a serverless orchestrator system of data associated with the DNS request, provisioning a function on a serverless function node based on the DNS request, notifying a load balancer regarding the serverless function node, providing a response to the DNS request and routing an API request associated with the DNS request to the serverless function node.

公开(公告)号：US20240031350A1

公开(公告)日：2024-01-25

申请号：US18481765

申请日：2023-10-05

Applicant: Cisco Technology, Inc.

Inventor： David Delano Ward ,  Robert Stephen Rodgers ,  Andrew Phillips Thurber ,  Eric Voit ,  Thomas John Giuli

IPC: H04L9/40

CPC classification number: H04L63/08 ,  H04L63/126

Abstract: An enclave manager of a network enclave obtains a request to retrieve configuration information and state information corresponding to compute devices and network devices comprising a network enclave. The request specifies a set of parameters of the configuration information and the state information usable to generate a response to the request. The enclave manager evaluates the compute devices, the network devices, and network connections among these devices within the network enclave to obtain the configuration information and the state information. Based on the configuration information and the state information, the enclave manager determines whether the network enclave is trustworthy. Based on the parameters of the request, the enclave manager generates a response indicating a summary that is used to identify the trustworthiness of the network enclave.

公开(公告)号：US20230026420A1

公开(公告)日：2023-01-26

申请号：US17937935

申请日：2022-10-04

Applicant: Cisco Technology, Inc.

Inventor： David Delano Ward ,  Robert Stephen Rodgers ,  Andrew Phillips Thurber ,  Eric Voit ,  Thomas John Giuli

IPC: H04L9/40

Abstract: An enclave manager of a network enclave obtains a request to retrieve configuration information and state information corresponding to compute devices and network devices comprising a network enclave. The request specifies a set of parameters of the configuration information and the state information usable to generate a response to the request. The enclave manager evaluates the compute devices, the network devices, and network connections among these devices within the network enclave to obtain the configuration information and the state information. Based on the configuration information and the state information, the enclave manager determines whether the network enclave is trustworthy. Based on the parameters of the request, the enclave manager generates a response indicating a summary that is used to identify the trustworthiness of the network enclave.