公开(公告)号：US10270645B2

公开(公告)日：2019-04-23

申请号：US14337161

申请日：2014-07-21

Applicant: Big Switch Networks, Inc.

Inventor： Srinivasan Ramasubramanian ,  Vishnu Emmadi ,  Sudeep Dilip Modi ,  Kanzhe Jiang ,  Kuang-Ching Wang ,  Gregor Mathias Maier ,  Mei Yang ,  Robert W. Sherwood ,  Mandeep Singh Dhami

IPC: H04L12/24 ,  H04L12/713

Abstract: A network of switches having ports coupled to other switches or end hosts may be controlled by a controller. The controller may identify whether any switch ports have failed. In response to identifying that a port has failed at a first switch, the controller may modify link aggregation group mappings of the other switches to handle failover. The controller may modify the link aggregation group mapping of each other switch to include a first mapping that includes ports coupled to the first switch and a second mapping that does not include any ports coupled to the first switch. The controller may configure forwarding tables at the switches to forward network packets using the first or second mappings based on network topology information maintained by the controller.

公开(公告)号：US20180034769A1

公开(公告)日：2018-02-01

申请号：US15225368

申请日：2016-08-01

Applicant: Big Switch Networks, Inc.

Inventor： Sudeep Modi ,  Richard Lane ,  Ning Song ,  Mei Yang ,  Gregor Maier ,  Srinivasan Ramasubramanian

IPC: H04L29/12 ,  H04L12/931 ,  H04L12/733

CPC classification number: H04L61/256 ,  H04L29/08234 ,  H04L45/122 ,  H04L47/125 ,  H04L49/70 ,  H04L61/2514 ,  H04L61/2532 ,  H04L67/1021 ,  H04L67/1023 ,  H04L67/1029 ,  H04L67/1034 ,  H04L67/1036 ,  H04L2012/568

Abstract: Methods, systems, and computer programs are presented for distributing network address translation (NAT) operations to a plurality of network devices on a network. One method includes an operation for identifying, by a controller that controls a network fabric, a plurality of switches in the network fabric, each switch having a module for NAT and being configured to forward packets received at the switch. The controller identifies hosts having at least one internal Internet Protocol (IP) address, and for each of the hosts, the controller selects one of the switches from the plurality of switches for performing the NAT for the host. Further, the controller configures the network fabric to cause the selected switch to perform the NAT for the host to enable the host to communicate with an external network. In case of switch failure, the system reallocates NAT loads to other switches for high availability.

公开(公告)号：US09813323B2

公开(公告)日：2017-11-07

申请号：US14618635

申请日：2015-02-10

Applicant: Big Switch Networks, Inc.

Inventor： Vishnu Emmadi ,  Srinivasan Ramasubramanian ,  Shrinivasa Kini ,  Mei Yang ,  Sudeep Dilip Modi ,  Gregor Mathias Maier ,  Rajneesh Bajpai

IPC: H04L12/26 ,  H04L12/24 ,  H04L12/709 ,  H04L12/721

CPC classification number: H04L43/12 ,  H04L41/0806 ,  H04L41/0893 ,  H04L43/062 ,  H04L45/245 ,  H04L45/38

Abstract: A packet forwarding network may include switches that forward network traffic between end hosts that are coupled to the forwarding network. An analysis network may be connected to the forwarding network. A controller may control the switches in the forwarding network to implement desired forwarding paths. The controller may configure the switches to form switch port groups. The controller may identify a port group that is connected to the analysis network. The controller may select a subset of the forwarded packets and may control selected switches to copy the subset to the identified port group. The controller may establish network tunnels between the switches and the port group. In this way, the controller may control the switches to perform efficient traffic monitoring regardless of the location on the forwarding network at which the traffic monitoring network is connected and without interfering with normal packet forwarding operations through the forwarding network.

公开(公告)号：US09813312B2

公开(公告)日：2017-11-07

申请号：US14626450

申请日：2015-02-19

Applicant: Big Switch Networks, Inc.

Inventor： Xin Wu ,  Rajneesh Bajpai ,  Robert W. Sherwood ,  Srinivasan Ramasubramanian ,  Gregor Mathias Maier ,  Richard Leegan Lane, II ,  Kenneth Hsinchao Chiang ,  Mei Yang

IPC: H04L12/26 ,  H04L12/721 ,  H04L12/741 ,  H04L12/803 ,  H04L12/24

CPC classification number: H04L43/06 ,  H04L41/0645 ,  H04L43/026 ,  H04L43/028 ,  H04L43/04 ,  H04L43/0829 ,  H04L43/0847 ,  H04L45/14 ,  H04L45/745 ,  H04L47/125

Abstract: A controller implemented on computing equipment may control switches in a network. The controller may provide flow tables that implement network policies to the switches to control packet forwarding through the network. The controller may provide debug table entries to the switches for use in a debug table that is separate from the flow table. The debug table entries may match incoming network packets and increment corresponding counters on the switches. The controller may retrieve count information from the counters for performing debugging operations on the network. For example, the controller may identify conflicts between fields of a selected flow table entry, determine whether elephant packet flows are present between switches, determine whether desired load balancing is being performed, determine whether a network path has changed, determine whether packet loss has occurred, and/or determine whether network packets are taking undesired paths based on the retrieved count information.

公开(公告)号：US20160020939A1

公开(公告)日：2016-01-21

申请号：US14337161

申请日：2014-07-21

Applicant: Big Switch Networks, Inc.

Inventor： Srinivasan Ramasubramanian ,  Vishnu Emmadi ,  Sudeep Dilip Modi ,  Kanzhe Jiang ,  Kuang-Ching Wang ,  Gregor Mathias Maier ,  Mei Yang ,  Robert W. Sherwood ,  Mandeep Singh Dhami

IPC: H04L12/24

CPC classification number: H04L41/0654 ,  H04L41/0659 ,  H04L41/0681 ,  H04L41/12 ,  H04L45/586

Abstract: A network of switches having ports coupled to other switches or end hosts may be controlled by a controller. The controller may identify whether any switch ports have failed. In response to identifying that a port has failed at a first switch, the controller may modify link aggregation group mappings of the other switches to handle failover. The controller may modify the link aggregation group mapping of each other switch to include a first mapping that includes ports coupled to the first switch and a second mapping that does not include any ports coupled to the first switch. The controller may configure forwarding tables at the switches to forward network packets using the first or second mappings based on network topology information maintained by the controller.

Abstract translation: 具有耦合到其他交换机或终端主机的端口的交换机网络可以由控制器来控制。 控制器可以识别是否有任何交换机端口出现故障。 为了响应于在第一交换机上识别端口故障，控制器可以修改其他交换机的链路聚合组映射以处理故障转移。 控制器可以修改每个其他交换机的链路聚合组映射以包括包括耦合到第一交换机的端口的第一映射和不包括耦合到第一交换机的任何端口的第二映射。 控制器可以在交换机上配置转发表，以基于由控制器维护的网络拓扑信息，使用第一或第二映射转发网络分组。

公开(公告)号：US10382392B2

公开(公告)日：2019-08-13

申请号：US15225368

申请日：2016-08-01

Applicant: Big Switch Networks, Inc

Inventor： Sudeep Modi ,  Richard Lane ,  Ning Song ,  Mei Yang ,  Gregor Maier ,  Srinivasan Ramasubramanian

IPC: H04L29/12 ,  H04L12/803 ,  H04L12/931 ,  H04L29/08 ,  H04L12/733 ,  H04L12/70

Abstract: Methods, systems, and computer programs are presented for distributing network address translation (NAT) operations to a plurality of network devices on a network. One method includes an operation for identifying, by a controller that controls a network fabric, a plurality of switches in the network fabric, each switch having a module for NAT and being configured to forward packets received at the switch. The controller identifies hosts having at least one internal Internet Protocol (IP) address, and for each of the hosts, the controller selects one of the switches from the plurality of switches for performing the NAT for the host. Further, the controller configures the network fabric to cause the selected switch to perform the NAT for the host to enable the host to communicate with an external network. In case of switch failure, the system reallocates NAT loads to other switches for high availability.

公开(公告)号：US20160234091A1

公开(公告)日：2016-08-11

申请号：US14618635

申请日：2015-02-10

Applicant: Big Switch Networks, Inc.

Inventor： Vishnu Emmadi ,  Srinivasan Ramasubramanian ,  Shrinivasa Kini ,  Mei Yang ,  Sudeep Dilip Modi ,  Gregor Mathias Maier ,  Rajneesh Bajpai

IPC: H04L12/26 ,  H04L12/709 ,  H04L12/721 ,  H04L12/24

CPC classification number: H04L43/12 ,  H04L41/0806 ,  H04L41/0893 ,  H04L43/062 ,  H04L45/245 ,  H04L45/38

Abstract: A packet forwarding network may include switches that forward network traffic between end hosts that are coupled to the forwarding network. An analysis network may be connected to the forwarding network. A controller may control the switches in the forwarding network to implement desired forwarding paths. The controller may configure the switches to form switch port groups. The controller may identify a port group that is connected to the analysis network. The controller may select a subset of the forwarded packets and may control selected switches to copy the subset to the identified port group. The controller may establish network tunnels between the switches and the port group. In this way, the controller may control the switches to perform efficient traffic monitoring regardless of the location on the forwarding network at which the traffic monitoring network is connected and without interfering with normal packet forwarding operations through the forwarding network.

Abstract translation: 分组转发网络可以包括在耦合到转发网络的终端主机之间转发网络流量的交换机。 分析网络可以连接到转发网络。 控制器可以控制转发网络中的交换机来实现所需的转发路径。 控制器可以配置交换机以形成交换机端口组。 控制器可以识别连接到分析网络的端口组。 控制器可以选择转发的分组的子集，并且可以控制所选择的交换机将该子集复制到所识别的端口组。 控制器可以在交换机和端口组之间建立网络隧道。 这样，控制器可以控制交换机执行有效的流量监控，而不管交换监控网络连接的转发网络上的位置如何，并且不会干扰通过转发网络的正常分组转发操作。

公开(公告)号：US20160021032A1

公开(公告)日：2016-01-21

申请号：US14337178

申请日：2014-07-21

Applicant: Big Switch Networks, Inc.

Inventor： Gregor Mathias Maier ,  Vishnu Emmadi ,  Sudeep Dilip Modi ,  Kanzhe Jiang ,  Kuang-Ching Wang ,  Srinivasan Ramasubramanian ,  Mei Yang ,  Robert W. Sherwood ,  Mandeep Singh Dhami

IPC: H04L12/931 ,  H04L12/947

CPC classification number: H04L49/70 ,  H04L45/42 ,  H04L45/586

Abstract: A controller implemented on computing equipment may be used to control switches in a network. End hosts may be coupled to the switches. The controller may generate a virtual network topology of virtual switches, virtual routers, and virtual system routers that are distributed over underlying switches in the network. The controller may form virtual switches from respective groups of end hosts, virtual routers from groups of virtual switches that include virtual interfaces that are coupled to virtual switches, and a virtual system router from groups of virtual routers that includes virtual system router interfaces that are coupled to the virtual routers. The controller may control the virtual network topology by generating respective flow table entries based on identified network policies for each of the virtual routers, virtual system routers, and virtual switches. The controller may control the virtual system routers to route packets between the virtual routers.

Abstract translation: 在计算设备上实现的控制器可用于控制网络中的交换机。 终端主机可以耦合到交换机。 控制器可以生成分布在网络中的底层交换机上的虚拟交换机，虚拟路由器和虚拟系统路由器的虚拟网络拓扑。 控制器可以从相应的终端主机组，来自虚拟交换机组的虚拟交换机组成虚拟交换机，所述虚拟交换机包括耦合到虚拟交换机的虚拟接口，以及来自虚拟路由器组的虚拟系统路由器，所述虚拟路由器包括耦合的虚拟系统路由器接口 到虚拟路由器。 控制器可以基于为每个虚拟路由器，虚拟系统路由器和虚拟交换机的所识别的网络策略生成相应的流表条目来控制虚拟网络拓扑。 控制器可以控制虚拟系统路由器在虚拟路由器之间路由数据包。

公开(公告)号：US10250529B2

公开(公告)日：2019-04-02

申请号：US14337178

申请日：2014-07-21

Applicant: Big Switch Networks, Inc.

Inventor： Gregor Mathias Maier ,  Vishnu Emmadi ,  Sudeep Dilip Modi ,  Kanzhe Jiang ,  Kuang-Ching Wang ,  Srinivasan Ramasubramanian ,  Mei Yang ,  Robert W. Sherwood ,  Mandeep Singh Dhami

IPC: H04L12/713 ,  H04L12/717 ,  H04L12/931

Abstract: A controller implemented on computing equipment may be used to control switches in a network. End hosts may be coupled to the switches. The controller may generate a virtual network topology of virtual switches, virtual routers, and virtual system routers that are distributed over underlying switches in the network. The controller may form virtual switches from respective groups of end hosts, virtual routers from groups of virtual switches that include virtual interfaces that are coupled to virtual switches, and a virtual system router from groups of virtual routers that includes virtual system router interfaces that are coupled to the virtual routers. The controller may control the virtual network topology by generating respective flow table entries based on identified network policies for each of the virtual routers, virtual system routers, and virtual switches. The controller may control the virtual system routers to route packets between the virtual routers.

公开(公告)号：US20160020993A1

公开(公告)日：2016-01-21

申请号：US14626450

申请日：2015-02-19

Applicant: Big Switch Networks, Inc.

Inventor： Xin Wu ,  Rajneesh Bajpai ,  Robert W. Sherwood ,  Srinivasan Ramasubramanian ,  Gregor Mathias Maier ,  Richard Leegan Lane, II ,  Kenneth Hsinchao Chiang ,  Mei Yang

IPC: H04L12/721 ,  H04L12/741

CPC classification number: H04L43/06 ,  H04L41/0645 ,  H04L43/026 ,  H04L43/028 ,  H04L43/04 ,  H04L43/0829 ,  H04L43/0847 ,  H04L45/14 ,  H04L45/745 ,  H04L47/125

Abstract: A controller implemented on computing equipment may control switches in a network. The controller may provide flow tables that implement network policies to the switches to control packet forwarding through the network. The controller may provide debug table entries to the switches for use in a debug table that is separate from the flow table. The debug table entries may match incoming network packets and increment corresponding counters on the switches. The controller may retrieve count information from the counters for performing debugging operations on the network. For example, the controller may identify conflicts between fields of a selected flow table entry, determine whether elephant packet flows are present between switches, determine whether desired load balancing is being performed, determine whether a network path has changed, determine whether packet loss has occurred, and/or determine whether network packets are taking undesired paths based on the retrieved count information.

Abstract translation: 在计算设备上实现的控制器可以控制网络中的交换机。 控制器可以向交换机提供实现网络策略的流表，以控制通过网络的分组转发。 控制器可以向交换机提供调试表条目以用于与流表分离的调试表中。 调试表项可以匹配进入的网络数据包，并增加交换机上的相应计数器。 控制器可以从计数器检索计数信息，以便在网络上执行调试操作。 例如，控制器可以识别所选流表条目的字段之间的冲突，确定是否存在交换机之间的大象分组流，确定是否正在执行期望的负载平衡，确定网络路径是否已经改变，确定分组丢失是否已经发生 ，和/或基于检索到的计数信息来确定网络分组是否正在采取不需要的路径。