公开(公告)号：US12255797B2

公开(公告)日：2025-03-18

申请号：US17867389

申请日：2022-07-18

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Vivek Agarwal ,  Jegan Kumar Somi Ramasamy Subramanian ,  Gokul Krishnan ,  Giorgio Valentini ,  Venkatraman Venkatapathy

IPC: G06F15/16 ,  H04L41/0654 ,  H04L43/08 ,  H04L43/12

Abstract: Techniques for sharing the probing of software-as-a-service clouds among a cluster of routers are described herein. The techniques may include establishing a first path between a cluster of routers and an application infrastructure. Establishing a second path between the cluster of routers and the application infrastructure. Designating a first router in the cluster of routers to send probes over the first path to the application infrastructure. Designating a second router in the cluster of routers to send probes over the second path to the application infrastructure. Distributing, by the first router and to the cluster of routers, first routing performance data indicating a performance of the first path when communicating with the application infrastructure over the first path, distributing, by the second router and to the cluster of routers, second routing performance data indicating a performance of the second path when communicating with the application infrastructure over the second path.

公开(公告)号：US20240430124A1

公开(公告)日：2024-12-26

申请号：US18828293

申请日：2024-09-09

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Vivek Agarwal ,  Anand Oswal ,  Chethan Channappa ,  Subhash Kodnad ,  Jeevan Sharma

IPC: H04L12/28 ,  G06F9/455 ,  G16Y30/10 ,  H04L9/40 ,  H04L12/66 ,  H04L41/0894 ,  H04L41/14 ,  H04L41/50 ,  H04L47/76 ,  H04L49/00 ,  H04L67/12 ,  H04W92/02

Abstract: The present disclosure is directed to managing industrial internet of things end points and includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors and comprising instructions that, when executed by the one or more processors, cause one or more switches to perform operations comprising: identifying a first end point using a protocol associated with the first end point, determining a classification for the identified first end point based on one or more attributes of the first end point, identifying one or more related end points having the classification in common with the first end point, segmenting the first end point with the identified one or more related end points, and applying one or more policies to the segmented first end point and the one or more related end points.

公开(公告)号：US12160370B2

公开(公告)日：2024-12-03

申请号：US18166786

申请日：2023-02-09

Applicant: Cisco Technology, Inc.

Inventor： Srilatha Tangirala ,  Nithin Bangalore Raju ,  Ananya Raval ,  Prabahar Radhakrishnan ,  Vivek Agarwal ,  Balaji Sundararajan

IPC: H04L47/80 ,  H04L45/02 ,  H04L45/64 ,  H04L47/70 ,  H04L47/762 ,  H04L47/78

Abstract: Route exchange in a plurality of network controller appliances on a per-tenant basis is disclosed. In one aspect, a method includes receiving, from a network management system and at a first network controller appliance, a designation of at least two tenants to be hosted on the first network controller appliance, the first network controller appliance being one of a plurality of network controller appliances in a SD-WAN; sending, from the first network controller appliance to other network controller appliances of the plurality of network controller appliances, a tenant list query message to obtain a corresponding tenant list of each of the other network controller appliances; and receiving a corresponding response from each of the other network controller appliances indicating the corresponding tenant list of each of the other network controller appliances, the corresponding response being used to update the tenant list on the first network controller appliance.

公开(公告)号：US20240275800A1

公开(公告)日：2024-08-15

申请号：US18644315

申请日：2024-04-24

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Gaurang Rajeev Mokashi ,  Preety Mordani ,  Vivek Agarwal

IPC: H04L9/40 ,  G06F9/455 ,  H04L43/08 ,  H04L47/20 ,  H04L49/25

CPC classification number: H04L63/1416 ,  G06F9/45558 ,  H04L43/08 ,  H04L47/20 ,  H04L49/25 ,  H04L63/20 ,  G06F2009/45587 ,  G06F2009/45595

Abstract: Systems, methods, and computer-readable media for performing threat remediation through a switch fabric of a virtualized network environment. Data traffic passing into a virtualized network environment including a plurality of virtual machines running on a switch fabric is monitored. A network threat introduced through at a least a portion of the data traffic is identified at the switch fabric. One or more remedial measures are performed in the network environment based on the identification of the network threat in the virtualized network environment.

公开(公告)号：US20240205094A1

公开(公告)日：2024-06-20

申请号：US18591960

申请日：2024-02-29

Applicant: Cisco Technology, Inc.

Inventor： Alberto Rodriguez-Natal ,  Saswat Praharaj ,  Lorand Jakab ,  Fabio R. Maino ,  Pradeep Kumar Kathail ,  Vivek Agarwal ,  Ram Dular Singh

IPC: H04L41/12

CPC classification number: H04L41/12

Abstract: An application monitoring system for collecting, utilizing, and/or exchanging state information (e.g., application state and network state), configuration information, and/or other information to make network optimizations for applications orchestrated by an application orchestration system. The application monitoring system may include an application orchestrator discovery component that is configured to determine a presence of an application orchestration system for orchestrating applications. The application monitoring system may also include one or more application watch components for monitoring, among other things, application state, application configuration, and/or application replicas. The application monitoring system may further include a network state propagation component configured to provide network state information to the orchestration system.

公开(公告)号：US11985007B2

公开(公告)日：2024-05-14

申请号：US17898214

申请日：2022-08-29

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Madhuri Kolli ,  Giorgio Valentini ,  Venkatraman Venkatapathy ,  Avinash Ashok Kumar Chiganmi ,  Vivek Agarwal

IPC: H04L12/46 ,  H04L12/66 ,  H04L45/00 ,  H04L45/02

CPC classification number: H04L12/4666 ,  H04L12/465 ,  H04L12/4675 ,  H04L12/66 ,  H04L45/04 ,  H04L45/54

Abstract: The present technology pertains to receiving a tag associating at least one routing domain in an on-premises site with at least one virtual network in a cloud environment associated with a cloud service provider. The present technology also pertains to the automation of populating route and propagation tables with the cloud service provider.

公开(公告)号：US11916786B2

公开(公告)日：2024-02-27

申请号：US17586204

申请日：2022-01-27

Applicant: Cisco Technology, Inc.

Inventor： Samir Thoria ,  Vivek Agarwal ,  Satish Kumar Mahadevan ,  Laxmikantha Reddy Ponnuru ,  Jean-Marc Barozet ,  Hamzah Kardame

IPC: H04L45/64 ,  H04L9/40 ,  H04L45/02 ,  H04L41/0894

CPC classification number: H04L45/64 ,  H04L41/0894 ,  H04L45/02 ,  H04L63/029

Abstract: According to some embodiments, a software defined wide area network (SD-WAN) includes a first region and a second region. The first region includes multiple first routing controllers and multiple first SD-WAN edge routers. The second region includes multiple second routing controllers and multiple second SD-WAN edge routers. Each first SD-WAN edge router of the first region is configured to establish Overlay Management Protocol (OMP) peering connections with the plurality of first routing controllers of the first region but to avoid establishing OMP peering connections with the plurality of second routing controllers of the second region. Each second SD-WAN edge router of the second region is configured to establish OMP peering connections with the plurality of second routing controllers of the second region but to avoid establishing OMP peering connections with the plurality of first routing controllers of the first region.

公开(公告)号：US11888876B2

公开(公告)日：2024-01-30

申请号：US18171322

申请日：2023-02-17

Applicant: Cisco Technology, Inc.

Inventor： Balaji Sundararajan ,  Gaurang Rajeev Mokashi ,  Preety Mordani ,  Vivek Agarwal

IPC: H04L9/40 ,  G06F9/455 ,  H04L47/20 ,  H04L43/08 ,  H04L49/25

CPC classification number: H04L63/1416 ,  G06F9/45558 ,  H04L43/08 ,  H04L47/20 ,  H04L49/25 ,  H04L63/20 ,  G06F2009/45587 ,  G06F2009/45595

Abstract: Systems, methods, and computer-readable media for performing threat remediation through a switch fabric of a virtualized network environment. Data traffic passing into a virtualized network environment including a plurality of virtual machines running on a switch fabric is monitored. A network threat introduced through at a least a portion of the data traffic is identified at the switch fabric. One or more remedial measures are performed in the network environment based on the identification of the network threat in the virtualized network environment.

公开(公告)号：US20230188502A1

公开(公告)日：2023-06-15

申请号：US17709922

申请日：2022-03-31

Applicant: Cisco Technology, Inc.

Inventor： Samir Thoria ,  Ajeet Pal Singh Gill ,  Srilatha Tangirala ,  Balaji Sundararajan ,  Nithin Bangalore Raju ,  Vivek Agarwal

IPC: H04L9/40 ,  H04L12/46 ,  H04L45/74

CPC classification number: H04L63/0272 ,  H04L12/4641 ,  H04L45/74

Abstract: In one embodiment, a method includes identifying, by a router, a first tenant. The first tenant is associated with a first tenant virtual private network (VPN). The method also includes determining, by the router, a mapping of the first tenant VPN to a first device VPN and generating, by the router, a first label representing the first device VPN. The method further includes adding, by the router, the first label to a first network packet and communicating, by the router, the first network packet with the first label to a controller.

公开(公告)号：US20220326995A1

公开(公告)日：2022-10-13

申请号：US17390187

申请日：2021-07-30

Applicant: Cisco Technology, Inc.

Inventor： Xiaohu Wang ,  Ajeet Pal Singh Gill ,  Srilatha Tangirala ,  Nithin Bangalore Raju ,  Prabahar Radhakrishnan ,  Vivek Agarwal ,  Balaji Sundararajan

IPC: G06F9/50 ,  G06F9/455

Abstract: A method for allocating resources of a virtual controller is disclosed. The method comprises: allocating resources of a virtual controller to a first tenant, wherein the first tenant is allocated a first tenant quantity of guaranteed resources of the virtual controller and a second tenant is allocated a second tenant quantity of guaranteed resources of the virtual controller; determining that resources requested by the first tenant are greater than the first tenant quantity of guaranteed resources; determining that the virtual controller has unutilized resources sufficient to at least partially provide additional resources beyond the first tenant quantity of guaranteed resources to the first tenant; and temporarily provisioning the additional resources to the first tenant, wherein the additional resources are greater than the first tenant quantity of guaranteed resources.