公开(公告)号：US20220210722A1

公开(公告)日：2022-06-30

申请号：US17136773

申请日：2020-12-29

Applicant: Cisco Technology, Inc.

Inventor： Vinay SAINI ,  Robert Edgar BARTON ,  Elango GANESAN ,  Swapna ANANDAN ,  Jerome HENRY

IPC: H04W48/16 ,  H04W48/18 ,  H04W36/14 ,  H04W8/18 ,  H04W12/06 ,  H04W84/12

Abstract: Automatic onboarding of a device onto a cellular network may be provided through a Wireless Local Area Network (WLAN). Subsequent to a device connecting to a first network (e.g., the WLAN), information associated with the device and the first network may be received. One or more tags may be generated and an intent profile may be defined for the device based on the received information, where the intent profile may indicate at least a second network (e.g., the cellular network) that the device is enabled to connect with and one or more policies associated with the connection. The tags and intent profile may be transmitted to a service provider platform, and an onboarding profile template identified using the tags and the intent profile may be received from the service provider platform. The onboarding profile template may be provided to the device to enable connection to the second network.

公开(公告)号：US20240236045A9

公开(公告)日：2024-07-11

申请号：US17971285

申请日：2022-10-21

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Flemming Stig ANDREASEN ,  Jerome HENRY ,  Elango GANESAN

IPC: H04L9/40

CPC classification number: H04L63/0281

Abstract: In one embodiment, a device receives discovery data generated by a plurality of networking devices in a network. The device determines, based on the discovery data, a hierarchy of layers of the network. The device receives a request by a client that is external to the network to access remotely a particular endpoint in the network. The device configures, and in response to the request, a proxy chain of remote access agents executed by a subset of networking devices from the plurality of networking devices to allow the client to access remotely the particular endpoint, each of those networking devices proxying traffic between different layers of the network.

公开(公告)号：US20240137344A1

公开(公告)日：2024-04-25

申请号：US17971285

申请日：2022-10-20

Applicant: Cisco Technology, Inc.

Inventor： Robert E. Barton ,  Flemming Stig ANDREASEN ,  Jerome HENRY ,  Elango GANESAN

IPC: H04L9/40

CPC classification number: H04L63/0281

Abstract: In one embodiment, a device receives discovery data generated by a plurality of networking devices in a network. The device determines, based on the discovery data, a hierarchy of layers of the network. The device receives a request by a client that is external to the network to access remotely a particular endpoint in the network. The device configures, and in response to the request, a proxy chain of remote access agents executed by a subset of networking devices from the plurality of networking devices to allow the client to access remotely the particular endpoint, each of those networking devices proxying traffic between different layers of the network.

公开(公告)号：US20250141927A1

公开(公告)日：2025-05-01

申请号：US18385607

申请日：2023-10-31

Applicant: Cisco Technology, Inc.

Inventor： Elango GANESAN ,  Swapna ANANDAN ,  Akshay KHUSHU ,  Flemming Stig ANDREASEN

IPC: H04L9/40

Abstract: In one implementation, a method is disclosed comprising: determining, by a process, a network topology of a particular computer network and capabilities of particular devices within the network topology; determining, by the process, a logical framework of the particular computer network; mapping, by the process, access control and segmentation features of the particular devices to the logical framework based on the capabilities of the particular devices; and causing, by the process, mapped access control and segmentation features to be implemented to enforce the logical framework within the network topology.

公开(公告)号：US20230188978A1

公开(公告)日：2023-06-15

申请号：US18104829

申请日：2023-02-02

Applicant: Cisco Technology, Inc.

Inventor： Elango GANESAN ,  Michael FREED ,  Scott Taft POTTER

IPC: H04W12/04 ,  H04L12/46 ,  H04W8/18 ,  H04W64/00 ,  H04W12/06 ,  H04W60/00 ,  H04W12/088 ,  H04L61/5007

CPC classification number: H04W12/04 ,  H04L12/4641 ,  H04L12/4633 ,  H04W8/18 ,  H04W64/00 ,  H04W12/06 ,  H04W60/00 ,  H04W12/088 ,  H04L61/5007

Abstract: In one embodiment, a service receives a device registration request sent by an endpoint device, wherein the endpoint device executes an onboarding agent that causes the endpoint device to send the device registration request via a cellular connection to a private access point name (APN) associated with the service. The service verifies that a network address of the endpoint device from which the device registration request was sent is associated with an integrated circuit card identifier (ICCID) or international mobile equipment identity (IMEI) indicated by the device registration request. The service identifies a tenant identifier associated with the ICCID or IMEI. The service sends, based on the tenant identifier, a device registration response to the endpoint device via the private APN.

公开(公告)号：US20230081990A1

公开(公告)日：2023-03-16

申请号：US18057810

申请日：2022-11-22

Applicant: Cisco Technology, Inc.

Inventor： Vinay SAINI ,  Robert Edgar BARTON ,  Elango GANESAN ,  Swapna ANANDAN ,  Jerome HENRY

IPC: H04W48/16 ,  H04W48/18 ,  H04W84/12 ,  H04W8/18 ,  H04W12/06 ,  H04W36/14

Abstract: Automatic onboarding of a device onto a cellular network may be provided through a Wireless Local Area Network (WLAN). Subsequent to a device connecting to a first network (e.g., the WLAN), information associated with the device and the first network may be received. One or more tags may be generated and an intent profile may be defined for the device based on the received information, where the intent profile may indicate at least a second network (e.g., the cellular network) that the device is enabled to connect with and one or more policies associated with the connection. The tags and intent profile may be transmitted to a service provider platform, and an onboarding profile template identified using the tags and the intent profile may be received from the service provider platform. The onboarding profile template may be provided to the device to enable connection to the second network.

公开(公告)号：US20230067223A1

公开(公告)日：2023-03-02

申请号：US17687838

申请日：2022-03-07

Applicant: Cisco Technology, Inc.

Inventor： Michael FREED ,  Madeline Y. BERNSTEIN ,  Ruben Erick ESCOLERO ,  Elango GANESAN

IPC: H04L9/40

Abstract: In one embodiment, a remote access manager receives an access request from a client to remotely access a device on a local network. The remote access manager generates a universally unique identifier for the access request. The remote access manager sends a response to the client having a one-time use domain name system name that is based on the universally unique identifier. The remote access manager communicates with a web proxy to authorize the client to remotely access the device.