-
公开(公告)号:US09781035B2
公开(公告)日:2017-10-03
申请号:US14842085
申请日:2015-09-01
IPC分类号: H04L12/28 , H04L12/749 , H04L12/46 , H04L12/66 , H04L29/12 , H04L12/715 , H04L12/751
CPC分类号: H04L45/741 , H04L12/4633 , H04L12/66 , H04L45/02 , H04L45/04 , H04L61/251 , H04L61/2592
摘要: A method is provided in one particular example and may include obtaining routing information for a plurality of Internet Protocol (IP) addresses in a first network that natively supports a first Internet protocol, the routing information for the plurality of IP addresses in the first network further comprising an additional IP address in the first network and an indication that the additional IP address in the first network is to be used as a tunnel endpoint within the first network for receiving data destined to any of the plurality of IP addresses in the first network; and sending data destined to any one of the plurality of IP addresses in the first network to the additional IP address in the first network.
-
公开(公告)号:US20170064039A1
公开(公告)日:2017-03-02
申请号:US14838963
申请日:2015-08-28
IPC分类号: H04L29/08 , H04L12/721 , H04L12/24
CPC分类号: H04L67/327 , H04L41/0806 , H04L41/5054 , H04L41/5058 , H04L45/306 , H04L45/44
摘要: A system comprising a plurality of service nodes, a controller and a network device in communication with the controller. Each of the plurality of service nodes is configured to support one or more service functions to establish a service function chain that includes a plurality of service functions to be performed by routing traffic among the plurality of service nodes. The controller is configured to generate provisioning information for the service function chain. The provisioning information includes at least one condition upon which a service function reclassification or branching operation is to be performed by at least one service node. The network device is in communication with the controller, and is configured to distribute the provisioning information for the service function chain to the plurality of service nodes using a distributed routing protocol.
摘要翻译: 包括多个服务节点的系统,控制器和与控制器通信的网络设备。 多个服务节点中的每一个被配置为支持一个或多个服务功能来建立服务功能链,该服务功能链包括通过在多个服务节点之间路由业务来执行的多个服务功能。 控制器被配置为生成用于服务功能链的供应信息。 所述供应信息包括由至少一个服务节点执行服务功能重新分类或分支操作的至少一个条件。 网络设备与控制器通信,并且被配置为使用分布式路由协议将服务功能链的供应信息分发到多个服务节点。
-
公开(公告)号:US09912577B2
公开(公告)日:2018-03-06
申请号:US14637510
申请日:2015-03-04
发明人: Clarence Filsfils , Keyur P. Patel , David D. Ward , Pierre Jean Rene François , Stefano B. Previdi
IPC分类号: G06F15/173 , H04L12/715
摘要: In one embodiment, a controller device in a computer network domain learns border gateway protocol (BGP) egress peering segments from one or more border routers of the domain, and determines a selected flow to segment route via a particular egress peering segment, the selected flow from a given routing device within the domain to a given destination of a remote domain. As such, the controller device may then instruct the given routing device to segment route the selected flow via the particular egress peering segment. In another embodiment, an egress border router shares its BGP egress peering segments, and receives a flow to segment route. The egress border router may determine, from a segment route contained within the flow, to which particular egress peering segment of the border router to segment route the flow, and forwards the flow out of the domain via the particular egress peering segment.
-
公开(公告)号:US09860340B2
公开(公告)日:2018-01-02
申请号:US15606267
申请日:2017-05-26
IPC分类号: H04L12/28 , H04L29/08 , H04L12/24 , H04L12/721
CPC分类号: H04L67/327 , H04L41/0806 , H04L41/5054 , H04L41/5058 , H04L45/306 , H04L45/44
摘要: A system comprising a plurality of service nodes, a controller and a network device in communication with the controller. Each of the plurality of service nodes is configured to support one or more service functions to establish a service function chain that includes a plurality of service functions to be performed by routing traffic among the plurality of service nodes. The controller is configured to generate provisioning information for the service function chain. The provisioning information includes at least one condition upon which a service function reclassification or branching operation is to be performed by at least one service node. The network device is in communication with the controller, and is configured to distribute the provisioning information for the service function chain to the plurality of service nodes using a distributed routing protocol.
-
公开(公告)号:US20150207729A1
公开(公告)日:2015-07-23
申请号:US14160804
申请日:2014-01-22
发明人: Roque Gagliano , Alvaro E. Retana , Keyur P. Patel , Burjiz F. Pithawala , Ed Kern , Carlos M. Pignataro
IPC分类号: H04L12/721 , H04L29/08 , H04L12/24 , H04L12/741 , H04L12/805
CPC分类号: H04L45/44 , H04L41/0893 , H04L45/04 , H04L45/745 , H04L47/36 , H04L67/2819 , H04L69/22
摘要: In one embodiment, a router located at an exit edge of an autonomous system (AS) receives a data packet in a data plane, and determines a destination of the data packet and an associated AS-path information to the destination. The router may then insert the AS-path information into the data packet, and forwards the data packet with the AS-path information toward the destination, such that a receiving device in a destination AS can validate whether the data packet was routed through a path that was secure from a control plane perspective based on a collection of one or more insertions of AS-path information.
摘要翻译: 在一个实施例中,位于自治系统(AS)的出口边缘处的路由器接收数据平面中的数据分组,并且确定数据分组的目的地和相关联的AS路径信息到目的地。 路由器然后可以将AS路径信息插入到数据包中,并将数据包与AS路径信息转发到目的地,使得目的地AS中的接收设备可以验证数据包是否通过路径路由 基于AS路径信息的一个或多个插入的集合,从控制平面的角度来看是安全的。
-
公开(公告)号:US20170264713A1
公开(公告)日:2017-09-14
申请号:US15606267
申请日:2017-05-26
IPC分类号: H04L29/08 , H04L12/721 , H04L12/24
CPC分类号: H04L67/327 , H04L41/0806 , H04L41/5054 , H04L41/5058 , H04L45/306 , H04L45/44
摘要: A system comprising a plurality of service nodes, a controller and a network device in communication with the controller. Each of the plurality of service nodes is configured to support one or more service functions to establish a service function chain that includes a plurality of service functions to be performed by routing traffic among the plurality of service nodes. The controller is configured to generate provisioning information for the service function chain. The provisioning information includes at least one condition upon which a service function reclassification or branching operation is to be performed by at least one service node. The network device is in communication with the controller, and is configured to distribute the provisioning information for the service function chain to the plurality of service nodes using a distributed routing protocol.
-
公开(公告)号:US09641430B2
公开(公告)日:2017-05-02
申请号:US14160736
申请日:2014-01-22
IPC分类号: H04L12/721 , H04L12/24 , H04L12/26 , H04L12/715 , H04L9/32
CPC分类号: H04L45/44 , H04L9/3265 , H04L41/12 , H04L43/10 , H04L45/04
摘要: In one embodiment, a plurality of packets is sent from an origin device along a communication path toward a destination device. Each packet includes a lifespan indicator which is incrementally increased for each subsequently sent packet. A plurality of response messages are received at the origin device from a plurality of intermediate devices, respectively. A plurality of secure path objects included in the plurality of response messages, respectively, is determined. Additionally, the plurality of secure path objects are validated based on validation information accessible by the origin device. Validation results of the plurality of secure path objects are checked to determine whether a packet that is sent from the origin device and received by the destination device travels along a particular communication path as dictated by control plane information.
-
公开(公告)号:US09270536B2
公开(公告)日:2016-02-23
申请号:US14231370
申请日:2014-03-31
IPC分类号: H04L12/24 , H04L12/751 , H04L12/715 , H04L12/26 , H04L12/757
CPC分类号: H04L41/12 , H04L41/0893 , H04L43/00 , H04L43/0852 , H04L45/02 , H04L45/023 , H04L45/04
摘要: In one embodiment, a router selects a particular peer from an original update group used with an Exterior Gateway Protocol (EGP) such as Border Gateway Protocol (BGP). The original update group includes a plurality of peers of the router that share a same outbound policy and that receive common update messages, from the router, of routing table information. The router determines that the particular peer is a potential slow peer based on a first type of indicia, wherein a slow peer is a peer that cannot keep up with a rate at which the router generates update messages over a prolonged period of time. The router confirms that one or more second types of indicia are consistent with the particular peer being a slow peer. In response to the confirmation, the router determines that the particular peer is a slow peer.
摘要翻译: 在一个实施例中,路由器从与诸如边界网关协议(BGP)的外部网关协议(EGP)一起使用的原始更新组中选择特定对等体。 原始更新组包括共享相同出站策略并且从路由器接收路由表信息的公共更新消息的路由器的多个对等体。 路由器基于第一类型的标记确定特定对等体是潜在的慢对等体,其中慢对等体是不能跟上路由器在较长时间段内生成更新消息的速率的对等体。 路由器确认一个或多个第二类型的标记与特定的对等体是慢对等体一致。 响应于确认,路由器确定特定对等体是慢对等体。
-
公开(公告)号:US09722919B2
公开(公告)日:2017-08-01
申请号:US14160804
申请日:2014-01-22
发明人: Roque Gagliano , Alvaro E. Retana , Keyur P. Patel , Burjiz F. Pithawala , Ed Kern , Carlos M. Pignataro
IPC分类号: H04L29/08 , H04L12/721 , H04L12/741 , H04L12/805 , H04L12/715 , H04L29/06 , H04L12/24
CPC分类号: H04L45/44 , H04L41/0893 , H04L45/04 , H04L45/745 , H04L47/36 , H04L67/2819 , H04L69/22
摘要: In one embodiment, a router located at an exit edge of an autonomous system (AS) receives a data packet in a data plane, and determines a destination of the data packet and an associated AS-path information to the destination. The router may then insert the AS-path information into the data packet, and forwards the data packet with the AS-path information toward the destination, such that a receiving device in a destination AS can validate whether the data packet was routed through a path that was secure from a control plane perspective based on a collection of one or more insertions of AS-path information.
-
公开(公告)号:US09654482B2
公开(公告)日:2017-05-16
申请号:US14160968
申请日:2014-01-22
发明人: Roque Gagliano , Alvaro E. Retana , Keyur P. Patel
IPC分类号: H04L29/06
CPC分类号: H04L63/108 , H04L63/029
摘要: In one embodiment, a validation server in a computer network determines that an edge router of the computer network has blocked access to a desired server address based on the edge router not having authentication information for the desired server address. In response, the server creates a white-listing policy to temporarily allow access to the desired server address at the edge router, and sends the white-listing policy to the edge router. The validation server may then proceed with performing server fetching operations to the desired server address from the validation server while the white-listing policy is in effect, and instructs the edge device to remove the white-listing policy once the server fetching operations are completed.
-
-
-
-
-
-
-
-
-
搜索结果
17 条记录 (耗时 0.018 秒)
