公开(公告)号：US11924160B2

公开(公告)日：2024-03-05

申请号：US17677560

申请日：2022-02-22

Applicant: Cisco Technology, Inc.

Inventor： Murukanandam Panchalingam ,  Umamaheswararao Karyampudi ,  Sudhakar Chunduru ,  Junyun Li ,  Ajay Kumar Modi

IPC: G06F15/16 ,  H04L61/2503 ,  H04L101/622

CPC classification number: H04L61/2503 ,  H04L2101/622

Abstract: Techniques for management of traffic in a network. The techniques provide application awareness in a Network Address Translation (NAT) system. In some examples, a first traffic is received at a first switch in a network from a first application hosted behind the first switch. The first switch identifies a first resource tag associated with the application from the first traffic. Further, the first switch identifies a first rule from the first resource tag indicating that the first traffic is to be routed through an intermediate device that performs network address translation. Moreover, the first switch transmits the traffic to an intermediate device, which perform NAT to translate the source IP address of the first traffic to a second IP address. Finally, the intermediate device sends the traffic to a destination device indicated by the first traffic.

公开(公告)号：US20230046070A1

公开(公告)日：2023-02-16

申请号：US17677560

申请日：2022-02-22

Applicant: Cisco Technology, Inc.

Inventor： Murukanandam Panchalingam ,  Umamaheswararao Karyampudi ,  Sudhakar Chunduru ,  Junyun Li ,  Ajay Kumar Modi

IPC: H04L61/2503

Abstract: Techniques for management of traffic in a network. The techniques provide application awareness in a Network Address Translation (NAT) system. In some examples, a first traffic is received at a first switch in a network from a first application hosted behind the first switch. The first switch identifies a first resource tag associated with the application from the first traffic. Further, the first switch identifies a first rule from the first resource tag indicating that the first traffic is to be routed through an intermediate device that performs network address translation. Moreover, the first switch transmits the traffic to an intermediate device, which perform NAT to translate the source IP address of the first traffic to a second IP address. Finally, the intermediate device sends the traffic to a destination device indicated by the first traffic.

公开(公告)号：US11509536B2

公开(公告)日：2022-11-22

申请号：US17075084

申请日：2020-10-20

Applicant: Cisco Technology, Inc.

Inventor： Vedashree Bagade ,  Ajay Kumar Modi ,  Umamaheswararao Karyampudi ,  Abhishek Gupta

IPC: H04L41/12 ,  H04L49/25

Abstract: Relay functionality may be provided. A network device may receive a response packet and may determine that one of Option-82 and Option-18 information is not present in the received response packet. Next, in response to determining that one of Option-82 and Option-18 information is not present in the received response packet, a database may be queried for information associated with the response packet. Then, based on the information associated with the response packet, the response packet may be sent to a client device associated with the response packet.

公开(公告)号：US20190124093A1

公开(公告)日：2019-04-25

申请号：US15788861

申请日：2017-10-20

Applicant: Cisco Technology, Inc.

Inventor： Govind P. Sharma ,  Gilles Rhéal Roy ,  Eric Levy-Abegnoli ,  Ajay Kumar Modi ,  Sridhar Vallepalli

IPC: H04L29/06

Abstract: Theft detection in data center networks may be provided. First, a first leaf switch may create an entry in a first distributed secure cache in response to an endpoint appearing on the first leaf switch. The entry may correspond to the endpoint and may be marked as having a tentative state. Then a request message may be sent to a plurality of leaf switches. The request message may comprise data identifying the endpoint. Next, a reply message may be received in response to the request message from a second leaf switch within the plurality of leaf switches. The tentative state may then be removed from the entry in response to the reply message indicating that the endpoint is valid.