公开(公告)号：US20240356850A1

公开(公告)日：2024-10-24

申请号：US18303704

申请日：2023-04-20

Applicant: Arista Networks, Inc.

Inventor： Vishal Bandekar ,  Naina Jalan

IPC: H04L45/745 ,  H04L41/0895 ,  H04L45/586

CPC classification number: H04L45/745 ,  H04L41/0895 ,  H04L45/586

Abstract: A network device or a system can be configured to support split virtual routing and forwarding (VRF) for unicast reverse path forwarding (RPF). A method is provided that includes receiving a data packet, performing VRF mapping lookup to identify a forwarding VRF identifier and a source VRF identifier, storing at least the source VRF identifier and a VRF profile as metadata, passing the packet through one or more stages in a packet processing pipeline, extracting the source VRF identifier from the metadata, performing RPF lookup based on the extracted source VRF identifier or the forwarding VRF identifier based on the extracted VRF profile from the metadata and a source address of the packet, selectively dropping the packet, performing forwarding lookup based on the forwarding VRF identifier and a destination address of the packet, and selectively forwarding the packet.

公开(公告)号：US20240323111A1

公开(公告)日：2024-09-26

申请号：US18731073

申请日：2024-05-31

Applicant: Arista Networks, Inc.

Inventor： Abhijith Kudupu Narayan ,  Venkitraman Kasiviswanathan ,  Alton Lo ,  Udayakumar Srinivasan ,  Kumaran Narayanan

IPC: H04L45/02 ,  H04L45/586

CPC classification number: H04L45/02 ,  H04L45/586

Abstract: A method for generating an application-aware virtual topology (AAVT) routing table for a network device among network devices connected via a wide area network is provided. The method is executed by a network controller connected to the network and includes: receiving, from the network devices, path information of the network devices; generating, using the path information, an underlay graph specifying a path topology of the network device; generating, based on the path topology specified in the underlay graph, the AAVT routing table for the network device where the AAVT routing table includes a set of paths; and transmitting, in response to generating the AAVT routing table, the AAVT routing table to the network device to cause the network device to program the set of paths.

公开(公告)号：US12101253B2

公开(公告)日：2024-09-24

申请号：US18345442

申请日：2023-06-30

Applicant: Juniper Networks, Inc.

Inventor： Shailender Sharma ,  Yuvaraja Mariappan ,  Rakesh Kumar Reddy Varimalla ,  Jude Pragash Vedam

IPC: H04L45/586 ,  G06F9/455 ,  H04L41/046 ,  H04L41/0893 ,  H04L45/64

CPC classification number: H04L45/586 ,  G06F9/45558 ,  H04L41/046 ,  H04L41/0893 ,  H04L45/64 ,  G06F2009/45595

Abstract: In general, techniques are described for a computing device including a virtual router, a pod comprising a container, and a network plugin. The virtual router includes a virtual router agent. The network plugin includes processing circuitry configured to receive, from the virtual router agent, an indication of an interface type for a virtual network for the pod and to configure, for the pod, a virtual network interface having the interface type, the virtual network interface for communicating on the virtual network.

公开(公告)号：US12074791B2

公开(公告)日：2024-08-27

申请号：US18304635

申请日：2023-04-21

Applicant: Oracle International Corporation

Inventor： Shane Baker ,  Santosh Narayan Shilimkar ,  Jagwinder Singh Brar

IPC: H04L45/00 ,  H04L45/302 ,  H04L45/586 ,  H04L45/74

CPC classification number: H04L45/38 ,  H04L45/302 ,  H04L45/566 ,  H04L45/586 ,  H04L45/74

Abstract: Techniques for controlling packet flows through the generation of packet flow rules are described. In an example, a network virtualization device receives network data. The network virtualization device determines a set of networks of a virtual network based on the network data. The network virtualization device receives flow data of the customer. The network virtualization device generates a packet flow rule based on the flow data and the set of networks. The packet flow rule defines a network boundary of one or more networks such that a first packet having a destination within the network boundary can flow and such that a second packet having a destination outside of the network boundary is to be dropped. The network virtualization device stores the packet flow rule in association with the compute instance.

公开(公告)号：US20240267328A1

公开(公告)日：2024-08-08

申请号：US18309033

申请日：2023-04-28

Applicant: Arista Networks, Inc.

Inventor： Matthieu Loriol ,  Sharad Birmiwal ,  Darragh Dunne

IPC: H04L45/745 ,  H04L12/46 ,  H04L45/586

CPC classification number: H04L45/745 ,  H04L12/4641 ,  H04L45/586

Abstract: User commands to export and import routes between a customer-facing VRF and a core-facing VRF in a PE device can include two filters. An export command installs VPN paths in the core-facing VRF based on VRF paths in a customer VRF. An export command includes a filter that selects VRF paths in the customer VRF from which VPN paths are generated. An editor function edits the generated VPN paths prior to being stored in the core-facing VRF. Conversely, an import command includes a filter that selects VPN paths in the core-facing VRF from which VRF paths are generated. An edit function edits the generated VRF paths prior to being stored in the customer VRF.

公开(公告)号：US12021740B2

公开(公告)日：2024-06-25

申请号：US17305117

申请日：2021-06-30

Applicant: Juniper Networks, Inc.

Inventor： Prasad Miriyala ,  Wen Lin ,  Suresh Palguna Krishnan ,  SelvaKumar Sivaraj ,  Kumuthini Ratnasingham

IPC: G06F15/16 ,  H04L12/46 ,  H04L45/00 ,  H04L45/586 ,  H04L45/74

CPC classification number: H04L45/34 ,  H04L12/4641 ,  H04L45/566 ,  H04L45/586 ,  H04L45/74

Abstract: A plurality of switches may be arranged according to a spine and leaf topology in which each spine switch is connected to all leaf switches. A leaf switch includes a memory configured to store a plurality of policies, each of the plurality of policies being associated with a respective source identifier value and a respective destination address; a network interface communicatively coupled to one of the spine switches; and a processor implemented in circuitry and configured to: receive a packet from the spine switch via the network interface, the packet being encapsulated with a Virtual Extensible Local Area Network (VXLAN) header; extract a source identifier value from the VXLAN header; determine a destination address for the packet; determine a policy of the plurality of policies to apply to the packet according to the source identifier value and the destination address; and apply the policy to the packet.

公开(公告)号：US12015552B2

公开(公告)日：2024-06-18

申请号：US17494722

申请日：2021-10-05

Applicant: Oracle International Corporation

Inventor： Jagwinder Singh Brar ,  Lucas Michael Kreger-Stickles ,  Bryce Eugene Bockman ,  Peter Croft Jones ,  Shane Baker

IPC: G06F15/16 ,  G06F9/455 ,  G06F9/50 ,  H04L9/40 ,  H04L45/00 ,  H04L45/16 ,  H04L45/586 ,  H04L47/12 ,  H04L47/2483 ,  H04L49/00 ,  H04L61/103 ,  H04L61/2517 ,  H04L69/324 ,  H04L67/10 ,  H04L101/622

CPC classification number: H04L45/586 ,  G06F9/45558 ,  G06F9/5077 ,  H04L45/16 ,  H04L45/66 ,  H04L47/12 ,  H04L47/2483 ,  H04L49/70 ,  H04L61/103 ,  H04L61/2517 ,  H04L63/101 ,  H04L69/324 ,  G06F2009/4557 ,  G06F2009/45595 ,  H04L67/10 ,  H04L2101/622

Abstract: Techniques are described for communications in an L2 virtual network of a customer. In an example, the L2 virtual network includes a plurality of L2 compute instances hosted on a set of host machines and a plurality of L2 virtual network interfaces and L2 virtual switches hosted on a set of network virtualization devices. An L2 virtual network interface emulates an L2 port of the L2 virtual network. Information associated with the L2 virtual switches is collected and provided to the customer.

公开(公告)号：US20240195736A1

公开(公告)日：2024-06-13

申请号：US18077940

申请日：2022-12-08

Applicant: Mellanox Technologies, Ltd.

Inventor： Sudharsan Dhamal Gopalarathnam

IPC: H04L45/586 ,  H04L12/46 ,  H04L45/745

CPC classification number: H04L45/586 ,  H04L12/4641 ,  H04L45/745

Abstract: Apparatuses, systems, and techniques to establish a redundant communication pathway to a management network. In at least one embodiment, the redundant communication pathway is established by creating a virtual interface using a network device, and using the virtual interface to communicate with the management network via a management port of a second network device, and a connection between a first data port of the network device and a second data port of the second network device.

公开(公告)号：US20240179089A1

公开(公告)日：2024-05-30

申请号：US18521936

申请日：2023-11-28

Applicant: Juniper Networks, Inc.

Inventor： Sasha Cirkovic ,  Sachchidanand Vaidya ,  AnandaVelu Thulasiram ,  Aravind Srinivas Srinivasa Prabhakar ,  Sai Prashanth Ramanathan ,  Yuvaraja Mariappan ,  Lavanya Kumar Ambatipudi ,  Vinay K Nallamothu

IPC: H04L45/586 ,  H04L45/02 ,  H04L45/748

CPC classification number: H04L45/586 ,  H04L45/02 ,  H04L45/748

Abstract: The disclosure relates to computer networking and, more specifically, to service chaining a containerized network function (CNF) using a containerized router, the CNF and containerized router both deployed to the same server. In an example, a method comprises executing, with a computing device: a containerized network function; a virtual router to implement a data plane for a containerized router; and a containerized routing protocol daemon to implement a control plane for the containerized router, wherein the containerized network function and containerized routing protocol daemon execute on the same computing device, and wherein a first virtual network interface of the computing device enables communications between the containerized network function and the virtual router; and forwarding, by the virtual router, based on a static route, traffic destined for a prefix to the first virtual network interface to send the traffic to the containerized network function.

公开(公告)号：US11997011B2

公开(公告)日：2024-05-28

申请号：US16588749

申请日：2019-09-30

Applicant: Juniper Networks, Inc.

Inventor： Jacopo Pianigiani ,  Tong Jiang ,  Sukhdev S. Kapur ,  Atul S Moghe

IPC: H04L45/00 ,  H04L12/46 ,  H04L45/42 ,  H04L45/586 ,  H04L45/64 ,  H04L49/00 ,  H04L49/354

CPC classification number: H04L45/46 ,  H04L12/4641 ,  H04L45/42 ,  H04L45/586 ,  H04L45/64 ,  H04L49/354 ,  H04L49/70

Abstract: A virtual port group abstraction can facilitate automated configuration of devices in a data center. For example, a data center administrator can define a virtual port group to include a set of logical and physical interfaces for devices allocated to a particular department or other group within a company. An administrator for the department can then utilize a user interface to perform actions with respect to the virtual port group. The actions can include configuration actions, modeling actions and/or deployment actions. An action received by a network management controller such as a Software-Defined Networking (SDN) controller can be converted into the appropriate actions for the relevant logical and physical interfaces that are configured to be part of the virtual port group.