公开(公告)号：US11902380B1

公开(公告)日：2024-02-13

申请号：US17301808

申请日：2021-04-15

申请人： Juniper Networks, Inc.

发明人： Manish Galrani ,  Nandan Debnath

IPC分类号： H04L67/145 ,  H04L67/142 ,  H04L43/0811 ,  H04L9/40 ,  H04L61/103 ,  H04L61/5014 ,  H04L101/622

CPC分类号： H04L67/145 ,  H04L43/0811 ,  H04L61/103 ,  H04L61/5014 ,  H04L63/0892 ,  H04L67/142 ,  H04L2101/622

摘要： A network node may determine parameters of an authenticated client session for a client device, wherein the parameters comprise a network address of the client device. The network node may determine inactivity of the client device in the authenticated client session. The network node may generate, based on determining the inactivity of the client device, an address resolution protocol (ARP) message or a neighbor solicitation (NS) message to send to the client device, wherein the ARP message or the NS message is to trigger a response from the client device to indicate that the network address of the client device is in use. The network node may provide, toward the client device, the ARP message or the NS message. The network node may perform one or more actions based on receiving or not receiving the response, from the client device, to the ARP message or the NS message.

公开(公告)号：US10999379B1

公开(公告)日：2021-05-04

申请号：US16583838

申请日：2019-09-26

申请人： Juniper Networks, Inc.

发明人： Manish Galrani ,  Nandan Debnath

IPC分类号： H04L29/08 ,  H04L29/12 ,  H04L12/26 ,  H04L29/06

摘要： A network node may determine parameters of an authenticated client session for a client device, wherein the parameters comprise a network address of the client device. The network node may determine inactivity of the client device in the authenticated client session. The network node may generate, based on determining the inactivity of the client device, an address resolution protocol (ARP) message or a neighbor solicitation (NS) message to send to the client device, wherein the ARP message or the NS message is to trigger a response from the client device to indicate that the network address of the client device is in use. The network node may provide, toward the client device, the ARP message or the NS message. The network node may perform one or more actions based on receiving or not receiving the response, from the client device, to the ARP message or the NS message.

公开(公告)号：US12008382B2

公开(公告)日：2024-06-11

申请号：US18053189

申请日：2022-11-07

申请人： Juniper Networks, Inc.

发明人： Alfa Prakash Puhan ,  Nandan Debnath

IPC分类号： H04L67/1061 ,  G06F9/4401 ,  G06F16/182

CPC分类号： G06F9/4416 ,  G06F16/1834 ,  H04L67/1061

摘要： A network device may obtain information concerning a virtual chassis that indicates that the network device and an additional network device are to be included in the virtual chassis. The network device may determine, based on the information concerning the virtual chassis, that the network device is connected to the additional network device, wherein the network device is connected to the additional network device via a link between a network interface of the network device and a network interface of the additional network device. The network device may cause the network interface of the network device to be converted to a virtual chassis interface and the network interface of the additional network device to be converted to a virtual chassis interface to enable the network device and the additional network device to be included in the virtual chassis to allow bootstrapping of the virtual chassis as a single logical device.

公开(公告)号：US11811765B1

公开(公告)日：2023-11-07

申请号：US16836733

申请日：2020-03-31

申请人： Juniper Networks, Inc.

发明人： Nandan Debnath ,  Alfa Prakash Puhan ,  Subha Sankar Mishra

IPC分类号： H04L29/06 ,  H04L9/40

CPC分类号： H04L63/10 ,  H04L63/083 ,  H04L63/0892 ,  H04L63/1416

摘要： A network device may receive a request to access a network from a client device. The network device may determine that the client device is authenticated based on a set of authentication credentials obtained for the client device. The network device may determine, based on the client device being authenticated, that a quantity of devices currently accessing the network using the set of authentication credentials is equal to a maximum quantity of devices permitted to access the network using the set of authentication credentials. The network device may deny the client device access to the network based on the quantity of devices being equal to the maximum quantity of device.

公开(公告)号：US11985166B2

公开(公告)日：2024-05-14

申请号：US17655454

申请日：2022-03-18

申请人： Juniper Networks, Inc.

发明人： Nandan Debnath

IPC分类号： G06F21/00 ,  H04L9/40

CPC分类号： H04L63/162 ,  H04L63/061 ,  H04L63/068

摘要： In some implementations, a network device may establish a secure connection between the network device and another network device based on a first set of keys generated by the network device, wherein the first set of keys are generated based on a first connectivity association key (CAK) and the secure connection is established based on a media access control security (MACsec) protocol. The network device may transmit a message to the other network device, wherein the message includes an indication of a second CAK. The network device may communicate data via the secure connection based on a second set of keys, wherein the second set of keys are generated based on the second CAK.

公开(公告)号：US11562062B1

公开(公告)日：2023-01-24

申请号：US16573379

申请日：2019-09-17

申请人： Juniper Networks, Inc.

发明人： Subha Sankar Mishra ,  Nandan Debnath

IPC分类号： G06F21/45 ,  H04L9/40

摘要： A network device may receive, via a single port of the network device, a connection request from a user device and may obtain, based on the connection request, information related to an authentication history of the user device. The network device may determine, based on the information related to the authentication history of the user device, an authentication method to be used by the network device to authenticate the user device and may determine, using the authentication method, that the user device is authenticated. The network device may establish, based on determining that the user device is authenticated, an authenticated communication session with the user device on the single port of the network device. The network device may determine, using an additional authentication method, that an additional user device is authenticated and may establish an additional authenticated communication session with the additional user device on the single port.

公开(公告)号：US11537406B2

公开(公告)日：2022-12-27

申请号：US16793905

申请日：2020-02-18

申请人： Juniper Networks, Inc.

发明人： Alfa Prakash Puhan ,  Nandan Debnath

IPC分类号： H04L67/1061 ,  G06F9/4401 ,  G06F16/182

摘要： A network device may obtain information concerning a virtual chassis that indicates that the network device and an additional network device are to be included in the virtual chassis. The network device may determine, based on the information concerning the virtual chassis, that the network device is connected to the additional network device, wherein the network device is connected to the additional network device via a link between a network interface of the network device and a network interface of the additional network device. The network device may cause the network interface of the network device to be converted to a virtual chassis interface and the network interface of the additional network device to be converted to a virtual chassis interface to enable the network device and the additional network device to be included in the virtual chassis to allow bootstrapping of the virtual chassis as a single logical device.