中科微点-全球专利检索

  1. Login
  2. Sign Up

Search Results

24 records (took 0.056 seconds)

    Synergistic DNS security update
    1.
    发明授权
    Synergistic DNS security update 有权

    公开(公告)号:US12166772B2

    公开(公告)日:2024-12-10

    申请号:US17817724

    申请日:2022-08-05

    Applicant: Cisco Technology, Inc.

    Inventor: Vamsidhar Valluri Vinay Prabhu Sarah Adelaide Evans Suraj Rangaswamy

    IPC: H04L9/40 H04L45/00 H04L61/4511

    Abstract: Systems and methods provide for synergistic domain name system DNS security updates for an enterprise network operating under a Software Defined Wide Area Network (SD-WAN). A system may be configured to collect positive and/or negative unified threat defense (UTD) results, deploy a rules-based model that, when a threat or clearance is detected across several SD-WAN edge network devices, triggers an update to a local security blacklist/whitelist, wherein the update comprises a signature, and push the update to other devices that have not yet seen the threat or clearance.

    Dynamic intent-based firewall
    4.
    发明授权
    Dynamic intent-based firewall 有权

    公开(公告)号:US11201854B2

    公开(公告)日:2021-12-14

    申请号:US16434115

    申请日:2019-06-06

    Applicant: Cisco Technology, Inc.

    Inventor: Vamsidhar Valluri Saravanan Radhakrishnan Anand Oswal Vinay Prabhu Sarah Adelaide Evans Suraj Rangaswamy

    IPC: H04L12/46 H04L29/06 H04L12/751 H04L12/741

    Abstract: Systems and methods provide for provisioning a dynamic intent-based firewall. A network controller can generate a master route table for network segments reachable from edge network devices managed by the controller. The controller can receive zone definition information mapping the network segments into zones and Zone-based Firewall (ZFW) policies to apply to traffic between a source and destination zone specified by each ZFW policy. The controller can evaluate a ZFW policy to determine first edge network devices that can reach first network segments mapped to the source zone specified by the ZFW policy, second edge network devices that can reach second network segments mapped to the destination zone specified by the ZFW policy, and routing information (from the route table) between the first network segments, the first and second edge network devices, and the second network segments. The controller can transmit the routing information to the edge network devices.

    SYNERGISTIC DNS SECURITY UPDATE
    5.
    发明申请
    SYNERGISTIC DNS SECURITY UPDATE 审中-公开

    公开(公告)号:US20200177606A1

    公开(公告)日:2020-06-04

    申请号:US16567435

    申请日:2019-09-11

    Applicant: Cisco Technology, Inc.

    Inventor: Vamsidhar Valluri Vinay Prabhu Sarah Adelaide Evans Suraj Rangaswamy

    IPC: H04L29/06 H04L29/12

    Abstract: Systems and methods provide for synergistic domain name system DNS security updates for an enterprise network operating under a Software Defined Wide Area Network (SD-WAN). A system may be configured to collect positive and/or negative unified threat defense (UTD) results, deploy a rules-based model that, when a threat or clearance is detected across several SD-WAN edge network devices, triggers an update to a local security blacklist/whitelist, wherein the update comprises a signature, and push the update to other devices that have not yet seen the threat or clearance.

    Optimizing Return Traffic Paths Using Network Address Translation
    6.
    发明申请
    Optimizing Return Traffic Paths Using Network Address Translation 审中-公开
    使用网络地址转换优化返回流量路径

    公开(公告)号:US20130227071A1

    公开(公告)日:2013-08-29

    申请号:US13861210

    申请日:2013-04-11

    Applicant: Cisco Technology, Inc.

    Inventor: Vamsidhar Valluri Anantha Ramaiah Kaushik Biswas

    IPC: H04L29/08

    CPC classification number: H04L67/02 H04L12/66

    Abstract: In one embodiment, an apparatus comprises logic for optimizing return traffic paths using network address translation (NAT). The logic is operable to receive outbound data from a source node in a source network, and to replace a source address in a source address field in the outbound data with a first address from a first address pool associated with a first connection. The logic is operable to determine that return traffic on the first connection needs to be switched over to a second connection, where a second address pool is associated with the second connection. The logic is operable to generate a mapping that associates the first address with a second address from the second address pool and, based on the mapping, to replace the first address in the source address field in the outbound data with the second address. The logic is also operable to send the outbound data to the destination node over the second connection.

    Abstract translation: 在一个实施例中,装置包括用于使用网络地址转换(NAT)来优化返回业务路径的逻辑。 该逻辑可操作以从源网络中的源节点接收出站数据,并且使用来自与第一连接相关联的第一地址池的第一地址来替换出站数据中的源地址字段中的源地址。 逻辑可操作以确定第一连接上的返回流量需要切换到第二连接,其中第二地址池与第二连接相关联。 逻辑可操作以生成将第一地址与来自第二地址池的第二地址相关联的映射,并且基于该映射,以用第二地址替换出站数据中的源地址字段中的第一地址。 该逻辑还可用于通过第二连接将出站数据发送到目的地节点。

    Intent based application fabric
    7.
    发明授权
    Intent based application fabric 有权

    公开(公告)号:US11381478B2

    公开(公告)日:2022-07-05

    申请号:US17140273

    申请日:2021-01-04

    Applicant: Cisco Technology, Inc.

    Inventor: Balaji Sundararajan Vamsidhar Valluri Chandramouli Balasubramanian Anand Oswal Ram Dular Singh

    IPC: H04L12/24 H04L41/5051 H04L43/55 H04L43/091

    Abstract: In one embodiment, a method includes providing a first profile to a plurality of edge routers of the SD-WAN, the plurality of edge routers operable to interface a plurality of devices to the SD-WAN. The first profile enables the plurality of edge routers to discover which devices of the plurality of devices support a first application. The method includes receiving, from one or more of the edge routers, information indicating which devices of the plurality of devices support the first application and building a first application fabric based on the information indicating which devices of the plurality of devices support the first application.

    DYNAMIC INTENT-BASED FIREWALL
    8.
    发明申请
    DYNAMIC INTENT-BASED FIREWALL 审中-公开

    公开(公告)号:US20200177550A1

    公开(公告)日:2020-06-04

    申请号:US16434115

    申请日:2019-06-06

    Applicant: Cisco Technology, Inc.

    Inventor: Vamsidhar Valluri Saravanan Radhakrishnan Anand Oswal Vinay Prabhu Sarah Adelaide Evans Suraj Rangaswamy

    IPC: H04L29/06 H04L12/46 H04L12/741 H04L12/751

    Abstract: Systems and methods provide for provisioning a dynamic intent-based firewall. A network controller can generate a master route table for network segments reachable from edge network devices managed by the controller. The controller can receive zone definition information mapping the network segments into zones and Zone-based Firewall (ZFW) policies to apply to traffic between a source and destination zone specified by each ZFW policy. The controller can evaluate a ZFW policy to determine first edge network devices that can reach first network segments mapped to the source zone specified by the ZFW policy, second edge network devices that can reach second network segments mapped to the destination zone specified by the ZFW policy, and routing information (from the route table) between the first network segments, the first and second edge network devices, and the second network segments. The controller can transmit the routing information to the edge network devices.

    Dynamic acceleration of prioritized mobile application traffic
    9.
    发明授权
    Dynamic acceleration of prioritized mobile application traffic 有权

    公开(公告)号:US10104704B2

    公开(公告)日:2018-10-16

    申请号:US14175079

    申请日:2014-02-07

    Applicant: Cisco Technology, Inc.

    Inventor: Shivangi Sharma Daniel G. Wing Parameswaran Kumarasamy Parag Pritam Thakore Anand Oswal Vamsidhar Valluri

    IPC: H04W76/12 H04W76/02 H04W72/12

    Abstract: In one embodiment, a method for the prioritized transmission of messages includes monitoring a network link of a mobile device to determine performance characteristics of the network link, establishing a network association between the mobile device and a routing network node, receiving a connection request from an application that is directed to a connection between the mobile device and a destination server, determining a relative priority of the connection, mapping the connection to a stream of the network association that is associated with the relative priority of the connection and identifies the destination server, and transmitting messages for the stream to the routing network node interlaced with messages of other streams of the network association based on the performance characteristics of the network link and the relative priority associated with the stream in comparison to relative priorities associated with the other streams of the network association.

    Zero Touch Deployment over a Wireless Wide Area Network
    10.
    发明申请
    Zero Touch Deployment over a Wireless Wide Area Network 有权
    通过无线广域网进行零触控部署

    公开(公告)号:US20160249186A1

    公开(公告)日:2016-08-25

    申请号:US14626506

    申请日:2015-02-19

    Applicant: Cisco Technology, Inc.

    Inventor: Leo Dumov Kiritkumar B. Joshi Vamsidhar Valluri

    IPC: H04W4/12 H04L5/00 H04W12/08

    CPC classification number: H04W4/12 H04L1/00 H04L41/026 H04L41/04 H04L41/0806 H04L2001/0097 H04W12/02 H04W12/04 H04W12/08 H04W88/06

    Abstract: Presented herein are techniques for enabling the zero touch deployment of devices having an integrated wireless wide area network (WWAN) interface. In one example, a device with a wireless wide area network interface is initialized and attaches to the wireless wide area network. The device receives, via the integrated wireless wide area network interface, a data message that includes a configuration file for the device. The device extracts the configuration file from the data message and uses the configuration file to perform configuration operations.

    Abstract translation: 这里提出的是用于实现具有集成无线广域网(WWAN)接口的设备的零触摸部署的技术。 在一个示例中,具有无线广域网接口的设备被初始化并附加到无线广域网。 该设备经由集成无线广域网接口接收包含该设备的配置文件的数据消息。 该设备从数据消息中提取配置文件,并使用配置文件执行配置操作。

Patent Agency Ranking