公开(公告)号：US20240298180A1

公开(公告)日：2024-09-05

申请号：US18661055

申请日：2024-05-10

Applicant: Cisco Technology, Inc.

Inventor： Stefan Olofsson ,  Ijsbrand Wijnands ,  Hendrikus G. P. Bosch ,  Jeffrey Napper ,  Anubhav Gupta

IPC: H04W12/086 ,  H04L9/40 ,  H04L45/64 ,  H04W12/37

CPC classification number: H04W12/086 ,  H04L63/0272 ,  H04L63/20 ,  H04W12/37 ,  H04L45/64

Abstract: In one embodiment, a router includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the router to perform operations including receiving software-defined networking in a wide area network (SD-WAN) policies from a component of an SD-WAN network. The operations also include establishing a session with a mobile device and receiving information associated with the mobile device in response to establishing the session with the mobile device. The operations further include filtering the SD-WAN policies based on the information associated with the mobile device to generate SD-WAN device-specific policies and communicating the SD-WAN device-specific policies to the mobile device.

公开(公告)号：US20210369309A1

公开(公告)日：2021-12-02

申请号：US17403676

申请日：2021-08-16

Applicant: Cisco Technology Inc.

Inventor： Stefan Olofsson ,  Ijsbrand Wijnands ,  Hendrikus G.P. Bosch ,  Jeffrey Napper ,  Anubhav Gupta

IPC: A61B17/72 ,  A61B17/86 ,  A61B17/92

Abstract: In one embodiment, a router includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the router to perform operations including receiving software-defined networking in a wide area network (SD-WAN) policies from a component of an SD-WAN network. The operations also include establishing a session with a mobile device and receiving information associated with the mobile device in response to establishing the session with the mobile device. The operations further include filtering the SD-WAN policies based on the information associated with the mobile device to generate SD-WAN device-specific policies and communicating the SD-WAN device-specific policies to the mobile device.

公开(公告)号：US11129023B2

公开(公告)日：2021-09-21

申请号：US16574963

申请日：2019-09-18

Applicant: Cisco Technology Inc.

Inventor： Stefan Olofsson ,  Ijsbrand Wijnands ,  Hendrikus G. P. Bosch ,  Jeffrey Napper ,  Anubhav Gupta

IPC: H04W12/086 ,  H04L29/06 ,  H04W12/37 ,  H04L12/715

Abstract: In one embodiment, a router includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the router to perform operations including receiving software-defined networking in a wide area network (SD-WAN) policies from a component of an SD-WAN network. The operations also include establishing a session with a mobile device and receiving information associated with the mobile device in response to establishing the session with the mobile device. The operations further include filtering the SD-WAN policies based on the information associated with the mobile device to generate SD-WAN device-specific policies and communicating the SD-WAN device-specific policies to the mobile device.

公开(公告)号：US20150036685A1

公开(公告)日：2015-02-05

申请号：US13954657

申请日：2013-07-30

Applicant: Cisco Technology, Inc.

Inventor： Ijsbrand Wijnands ,  Stefan Olofsson

IPC: H04L12/723

CPC classification number: H04L45/507 ,  H04L45/16 ,  H04L45/18 ,  H04L45/22

Abstract: In one embodiment, a node in a multicast label distribution protocol (mLDP) network determines a remote protecting node for a particular root node in the mLDP network. In addition, the node determines a protecting node address of the remote protecting node and a root node address of the particular root node, and establishes an mLDP label-switched path (LSP) via the remote protecting node by using the protecting node address as a root of an outer forwarding equivalent class (FEC) of a recursive FEC, and using the root node address as an inner FEC of the recursive FEC for the mLDP LSP. As such, when the remote protecting node is reached, the outer FEC is stripped and the remote protecting node continues establishing the mLDP LSP toward the particular root node.

Abstract translation: 在一个实施例中，多播标签分发协议（mLDP）网络中的节点为mLDP网络中的特定根节点确定远程保护节点。 另外，节点确定远程保护节点的保护节点地址和特定根节点的根节点地址，并且通过使用保护节点地址作为远端保护节点地址来建立通过远程保护节点的mLDP标签交换路径（LSP） 根据递归FEC的外部转发等效类（FEC）的根，并且使用根节点地址作为用于mLDP LSP的递归FEC的内部FEC。 因此，当到达远程保护节点时，外部FEC被剥离，并且远程保护节点继续向特定根节点建立mLDP LSP。

公开(公告)号：US12052569B2

公开(公告)日：2024-07-30

申请号：US17403676

申请日：2021-08-16

Applicant: Cisco Technology Inc.

Inventor： Stefan Olofsson ,  Ijsbrand Wijnands ,  Hendrikus G. P. Bosch ,  Jeffrey Napper ,  Anubhav Gupta

IPC: H04W12/086 ,  H04L9/40 ,  H04L45/64 ,  H04W12/37

CPC classification number: H04W12/086 ,  H04L63/0272 ,  H04L63/20 ,  H04W12/37 ,  H04L45/64

Abstract: In one embodiment, a router includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the router to perform operations including receiving software-defined networking in a wide area network (SD-WAN) policies from a component of an SD-WAN network. The operations also include establishing a session with a mobile device and receiving information associated with the mobile device in response to establishing the session with the mobile device. The operations further include filtering the SD-WAN policies based on the information associated with the mobile device to generate SD-WAN device-specific policies and communicating the SD-WAN device-specific policies to the mobile device.

公开(公告)号：US20230300134A1

公开(公告)日：2023-09-21

申请号：US18323183

申请日：2023-05-24

Applicant: Cisco Technology, Inc.

Inventor： Stefan Olofsson ,  Ijsbrand Wijnands ,  Hendrikus G.P. Bosch

IPC: H04L9/40 ,  H04L12/46

CPC classification number: H04L63/0892 ,  H04L63/083 ,  H04L63/0823 ,  H04L63/168 ,  H04L12/4641 ,  H04L63/0272 ,  H04L61/2571

Abstract: In one embodiment, an apparatus includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the apparatus to perform operations including receiving a user credential from a remote access client within a network and communicating the user credential to an authentication, authorization and accounting (AAA) server within the network. The operations also include receiving a user attribute from the AAA server and generating a contextual label based on the user attribute. The contextual label includes routing instructions associated with traffic behavior within the network. The operations further include advertising a control message, which includes the contextual label, to the remote access client.

公开(公告)号：US11277337B2

公开(公告)日：2022-03-15

申请号：US16750139

申请日：2020-01-23

Applicant: Cisco Technology Inc.

Inventor： Hendrikus G. P. Bosch ,  Stefan Olofsson ,  Ijsbrand Wijnands ,  Anubhav Gupta ,  Jeffrey Napper ,  Sape Jurriën Mullender

IPC: H04L12/723 ,  H04L12/755 ,  H04L12/717 ,  H04L29/12 ,  H04L29/06 ,  H04L29/08 ,  H04L12/741 ,  H04L12/725 ,  H04L45/50 ,  H04L45/021 ,  H04L67/63 ,  H04L61/4511 ,  H04L45/42

Abstract: In one embodiment, a method includes detecting a request to route traffic to a service associated with an application. The method also includes identifying an application identifier associated with the application and selecting, using the application identifier, a label from a plurality of labels included in a routing table. The label includes one or more routes. The method further includes routing the traffic to the service associated with the application using the label.

公开(公告)号：US09288069B2

公开(公告)日：2016-03-15

申请号：US13792792

申请日：2013-03-11

Applicant: Cisco Technology, Inc.

Inventor： Stefan Olofsson ,  Ijsbrand Wijnands

IPC: H04L12/18

CPC classification number: H04L12/1863

Abstract: The present disclosure provides for a loop avoidance technique that implements an upstream neighbor check to detect any forwarding inconsistencies. When a message is received from a neighbor routing element, an upstream neighbor check is performed to determine whether the neighbor routing element is an upstream neighbor toward a content provider of a datastream identified in the message. If the check determines that the neighbor routing element is not an upstream neighbor, then a forwarding inconsistency is not detected. If the check determines that the neighbor routing element is an upstream neighbor, then a forwarding inconsistency is detected.

Abstract translation: 本公开提供了一种循环避免技术，其实现上游邻居检查以检测任何转发不一致。 当从邻居路由元件接收到消息时，执行上游邻居检查以确定邻居路由元件是否是朝向消息中标识的数据流的内容提供商的上游邻居。 如果检查确定邻居路由元素不是上游邻居，则不检测到转发不一致。 如果检查确定邻居路由元素是上游邻居，则检测到转发不一致。

公开(公告)号：US20230007620A1

公开(公告)日：2023-01-05

申请号：US17931333

申请日：2022-09-12

Applicant: Cisco Technology, Inc.

Inventor： Anubhav Gupta ,  Hendrikus G.P. Bosch ,  Vamsidhar Valluri ,  Stefan Olofsson

IPC: H04W64/00 ,  H04L61/2585 ,  H04W24/08 ,  H04W48/16

Abstract: According to certain embodiments, a system comprises one or more processors and one or more computer-readable non-transitory storage media comprising instructions that, when executed by the one or more processors, cause one or more components of the system to perform operations comprising: receiving location data associated with a plurality of remote users accessing one or more existing remote access gateways that are located at one or more network locations; building a heatmap of user locations based at least in part on the received location data; and identifying, from the heatmap of user locations, at least one new network location in which to generate at least one new remote access gateway, or at least one existing network location in which to remove at least one of the existing remote access gateways.

公开(公告)号：US09154412B2

公开(公告)日：2015-10-06

申请号：US13954657

申请日：2013-07-30

Applicant: Cisco Technology, Inc.

Inventor： Ijsbrand Wijnands ,  Stefan Olofsson

IPC: H04L12/723

CPC classification number: H04L45/507 ,  H04L45/16 ,  H04L45/18 ,  H04L45/22

Abstract: In one embodiment, a node in a multicast label distribution protocol (mLDP) network determines a remote protecting node for a particular root node in the mLDP network. In addition, the node determines a protecting node address of the remote protecting node and a root node address of the particular root node, and establishes an mLDP label-switched path (LSP) via the remote protecting node by using the protecting node address as a root of an outer forwarding equivalent class (FEC) of a recursive FEC, and using the root node address as an inner FEC of the recursive FEC for the mLDP LSP. As such, when the remote protecting node is reached, the outer FEC is stripped and the remote protecting node continues establishing the mLDP LSP toward the particular root node.

Abstract translation: 在一个实施例中，多播标签分发协议（mLDP）网络中的节点为mLDP网络中的特定根节点确定远程保护节点。 另外，节点确定远程保护节点的保护节点地址和特定根节点的根节点地址，并且通过使用保护节点地址作为远端保护节点地址来建立通过远程保护节点的mLDP标签交换路径（LSP） 根据递归FEC的外部转发等效类（FEC）的根，并且使用根节点地址作为用于mLDP LSP的递归FEC的内部FEC。 因此，当到达远程保护节点时，外部FEC被剥离，并且远程保护节点继续向特定根节点建立mLDP LSP。