Multi-factor authentication using gestures
Granted: December 31, 2024
Patent Number:
12184631
This disclosure describes techniques for performing multi-factor authentication (MFA) by utilizing user generated authenticating gestures. The techniques may include establishing and monitoring peer-to-peer communication links between user devices. The techniques may include monitoring channel properties for fluctuations in the channel properties associated with the user generated authenticating gesture passing through signals of the communication links. The techniques may further…
Providing adaptive transition between an inactive state and an idle state
Granted: December 31, 2024
Patent Number:
12185407
Adaptive transition between an inactive state and an idle state may be provided. An end node device may be configured with an end node device upper threshold. Next, it may be determined that that client devices are inactive preferred. Then the client devices determined to be inactive preferred may be assigned to a Radio Resource Control (RRC) inactive state and to the end node device. One or more of the client devices previously assigned to the RRC inactive state may be assigned to an…
Shared lock screen across paired devices
Granted: December 31, 2024
Patent Number:
12185391
In one embodiment, a telephony device establishes a pairing connection with a user device. The telephony device disables, based on the pairing connection with the user device, a default screen locking policy of the telephony device. The telephony device polls a screen lock status of the user device to determine whether the user device is locked. The telephony device locks the telephony device when the screen lock status of the user device indicates that the user device is locked.
Coordinating best effort traffic to an associationless, overhead mesh of access points
Granted: December 31, 2024
Patent Number:
12185389
In one embodiment, an access point of an overhead mesh of access points in an area selects a range of client identifiers. The access point sends, via a beam cone transmitted in a substantially downward direction towards a floor of the area, a trigger signal that includes the range of client identifiers and prompts client devices having identifiers in that range to send best effort transmissions towards the overhead mesh. The access point detects a collision between the best effort…
Dynamic allocation of broadcast stream support
Granted: December 31, 2024
Patent Number:
12185218
Aspects described herein include a method and related network device and computer program product. The method includes receiving a neighbor report that indicates whether a first network device in an environment is advertising broadcast services and generating, using the neighbor report, a broadcast optimization map that indicates a set of network devices in the environment that will provide a broadest coverage of broadcast services within the environment. The set corresponds to a minimum…
Root network device causing execution of network service operations on behalf of constrained wireless network device in a low power and lossy network
Granted: December 31, 2024
Patent Number:
12185092
In one embodiment, a method comprises: registering, by a root network device in a low power and lossy network, a constrained network device that is reachable within the low power and lossy network; obtaining, by the root network device, executable code associated with execution of a network service operation by the constrained network device; receiving a data packet from a source device and destined for the constrained network device; and causing execution on the data packet, by the root…
Minimizing network disruption via graceful upgrade of routing controllers
Granted: December 31, 2024
Patent Number:
12184736
Disclosed herein are systems, methods, and computer-readable media for upgrading vSmart controllers. In one aspect, a method includes an edge router receiving a notification from a vSmart controller that an upgrade to the controller will occur. The notification can be dynamically triggered by a centralized network management system. In some embodiments, the vSmart controller can run as a virtual machine (VM) and maintains a control plane connection with one or more edge routers in an…
Multi-protocol / multi-session process identification
Granted: December 31, 2024
Patent Number:
12184694
In one embodiment, a device obtains one or more packets of a traffic session in a network. The device determines, for a particular packet of the one or more packets that match a filter, a fingerprint for the particular packet. The device identifies a plurality of traffic sessions whose packets match the fingerprint, wherein each of the plurality of traffic sessions is associated with at least one process. The device updates a process with the traffic session by applying a classifier to…
Creating network-based consent contracts
Granted: December 31, 2024
Patent Number:
12184661
Techniques for creating consent contracts for devices that indicate whether the devices consent to receiving network-based communications from other devices. Further, the techniques include enforcing the consent contracts such that network-based communications are either allowed or disallowed in the network-communications layer prior to the network communications reaching the devices. Rather than simply allowing a device to communicate with any other device over a network, the techniques…
Media access control (MAC) address anonymization based on allocations by network controller elements
Granted: December 31, 2024
Patent Number:
12184648
A method is provided to anonymize the media access control (MAC) address of a client device. The method involves generating a plurality of media access control (MAC) addresses for use by a client device in a network. Policies are defined that determine which one of the plurality of MAC addresses is to be used by the client device. The plurality of MAC addresses allocated for use by the client device are registered with a management entity in the network.
Application programming interface (API)-based multi-tenant routing control plane
Granted: December 31, 2024
Patent Number:
12184547
Techniques for using global virtual network instance (VNI) labels in a multi-domain network to route network data with a multi-tenant network overlay are described herein. A routing device provisioned in a network domain of the multi-domain network may register with a service discovery system of the network domain for use of network configuration data to establish routes through the multi-domain network with network nodes. Each network domain of the multi-domain network may include an…
In-situ operation, administration, and maintenance in segment routing with multiprotocol label switching networks
Granted: December 31, 2024
Patent Number:
12184543
Presented herein is an “In-situ OAM” (IOAM) mechanism that uses a Segment Routing-Multiprotocol Label Switching (SR-MPLS) IOAM segment identifier that can selectively collect IOAM data from “target” network nodes along a data packet path. In one embodiment, a method includes receiving, at a first network node in the SR-MPLS network, a data packet that includes an MPLS label stack comprising a plurality of segment identifiers (SIDs) associated with a plurality of network nodes.…
Group-based policies for inter-domain traffic
Granted: December 31, 2024
Patent Number:
12184539
In one embodiment, a method by an edge router configured to operate at a first site of a software-defined wide-area network includes receiving a data packet from a first host located in the first site, where the data packet is destined to a second host located in a second site, determining that an identifier of a second group to which the second host belongs is not available at the edge router, sending a request for an identifier of the second group to a network apparatus, where the…
Monitoring primary and local repair paths on all hops between two nodes
Granted: December 31, 2024
Patent Number:
12184534
In one aspect, a method for monitoring a Fast Re-Route (FRR) path between a source node (Node-S) and a destination node (Node-E) in a network, includes generating a discovery-probe at the source node (Node-S) to detect at least one node with an FRR indicator along the FRR path that includes a plurality of next available nodes. The method also includes upon the discovery probe reaching a first node with the FRR indicator, generating a primary probe configured to detect a primary path and…
Dual channel correlation of API monitoring to business transactions
Granted: December 31, 2024
Patent Number:
12184519
In one embodiment, an illustrative method herein may comprise: sending, from a server instrumentation agent configured on a transaction server, instrumented server performance data regarding the transaction server and an associated correlation token to an application programming interface (API) monitoring agent; receiving, at the server instrumentation agent, a returned acknowledgment of the instrumented server performance data regarding the transaction server and the associated…
Filesystem destinations
Granted: December 24, 2024
Patent Number:
12174797
A method for file system destinations includes obtaining events for storage on one or more of the storage systems. For each event, the method includes extracting at least one field value from the event, comparing the at least one field value to configurations of the storage systems to identify at least one storage system of the plurality of storage systems having a matching configuration, transmitting the event to an ingest module queue for the at least one storage system, selecting a…
Routing network traffic based on DNS
Granted: December 24, 2024
Patent Number:
12177116
A method may include receiving a domain name system (DNS) query at a network device, where the DNS query may be associated with a traffic flow identified for rerouting through an alternative path utilizing an alternative network device instead of a default path. The method may also include rewriting the DNS query such that the DNS query is routed through the alternative network device along the alternative path and to a DNS server associated with the alternative path. The method may…
Policy utilization analysis
Granted: December 24, 2024
Patent Number:
12177097
An example method according to some embodiments includes receiving flow data for a packet traversing a network. The method continues by determining a source endpoint group and a destination endpoint group for the packet. The method continues by determining that a policy was utilized, the policy being applicable to the endpoint group. Finally, the method includes updating utilization data for the policy based on the flow data.
Detection of overlapping subnets in a network
Granted: December 24, 2024
Patent Number:
12177077
Disclosed are systems, methods, and computer-readable media for assuring tenant forwarding in a network environment. Network assurance can be determined in layer 1, layer 2 and layer 3 of the networked environment including, internal-internal (e.g., inter-fabric) forwarding and internal-external (e.g., outside the fabric) forwarding in the networked environment. The network assurance can be performed using logical configurations, software configurations and/or hardware configurations
Systems and methods for providing SDWAN IP multicast without a rendezvous point
Granted: December 24, 2024
Patent Number:
12177032
According to certain embodiments, a method by a router in a software-defined wide-area network (SDWAN) includes determining one or more replicators in the SDWAN and generating a multicast distribution tree that includes the determined one or more replicators. The method further includes receiving multicast traffic from a source and creating a (S,G) route for the received multicast traffic. The method further includes replicating the multicast traffic using the multicast distribution…
