VIRTUAL LINK AGGREGATION OF NETWORK TRAFFIC IN AN AGGREGATION SWITCH
Granted: September 19, 2013
Application Number:
20130243008
Access switches in a switching system may use virtual aggregated links. When a link between an aggregation switch and an access switch fails, the link failure may be reflected in the virtual aggregated link and data traffic to another access switch may be switched away from the failed switch. A forwarding table in the access switch stores a number of entries that each define a correspondence between destination addresses and an output identifier for the switch. At least a first output…
CELL TRANSFER APPARATUS WITH HARDWARE STRUCTURE FOR OAM CELL GENERATION
Granted: September 19, 2013
Application Number:
20130242753
An ATM (asynchronous transfer mode) cell transfer apparatus includes an input interface, a switch block, and an OAM cell processing hardware block having a memory unit. The input interface receives an SDH/SONET signal on each of a plurality of first transfer paths to output an input OAM cell corresponding to the SDH/SONET signal to one of a plurality of input ports of the switch block corresponding to the first transfer path for the SDH/SONET signal to be transferred. The switch block…
ENCAPSULATING/DECAPSULATING DATA IN HARDWARE
Granted: September 12, 2013
Application Number:
20130238810
A forwarding node decapsulates and encapsulates data. The decapsulation may be performed using pattern matching techniques and the encapsulation may be performed using pattern insertion techniques. The decapsulation and encapsulation are preferably performed by hardware devices such as application specific integrated circuits (ASICs) to enhance the speed of such operations. The decapsulation and encapsulation may be independent of each other and performed on a per virtual circuit basis.
ENHANCED HIGH AVAILABILITY FOR GROUP VPN IN BROADCAST ENVIRONMENT
Granted: September 12, 2013
Application Number:
20130238794
A light-weight resilient mechanism is used to synchronize server secure keying data with member devices in a highly-scalable distributed group virtual private network (VPN). A server device generates an initial secure keying data set, for the VPN, that includes a first version identifier, and sends, to member devices and via point-to-point messages, the secure keying data set. The server device sends, to the member devices, heartbeat push messages including the first version identifier.…
LEARNING VALUES OF TRANSMISSION CONTROL PROTOCOL (TCP) OPTIONS
Granted: September 12, 2013
Application Number:
20130238766
A system includes a storage device and a processor. The storage device is configured to store a first set of values of TCP options for a first group of servers. The processor is configured to: transmit first requests to the first group of servers; receive first replies, in response to the first requests, from the first group of servers; determine the first set of values of the TCP options for the first group based on values in the first replies; store the first set of values in the…
APPLYING BACKPRESSURE TO A SUBSET OF NODES IN A DEFICIT WEIGHTED ROUND ROBIN SCHEDULER
Granted: September 12, 2013
Application Number:
20130235880
A scheduler in a network element may include a dequeuer to dequeue packets from a set of scheduling nodes using a deficit weighted round robin process, where the dequeuer is to determine whether a subset of the set of scheduling nodes is being backpressured. The dequeuer may set a root rich most negative credits (MNC) value, associated with a root node, to a root poor MNC value, associated with the root node, and set the root poor MNC value to zero, when the subset is not being…
HYBRID TYPE TELEPHONY SYSTEM
Granted: September 12, 2013
Application Number:
20130235867
A hybrid type telephony system capable of establishing a connection between conventional type telephone sets contained in an exchange unit and LAN type telephone sets contained in an IP network, the system comprising: a gateway circuit connected between the exchange unit and the IP network and performing voice data format conversion, and a central control unit connected to the LAN of the. IP network for establishing a communication path to the exchange unit via a control bus, controlling…
PSEUDO-RELATIVE MODE WRED/TAIL DROP MECHANISM
Granted: September 12, 2013
Application Number:
20130235725
A buffer memory can be configured to temporarily store data in a number of queues. A processor can be configured to measure a fullness of the buffer memory. The processor can be configured to adjust thresholds and drop profiles based on a measured global resource usage for a weighted random early detection (WRED) technique with less resources than a conventional.
MULTI-CHASSIS ROUTER WITH MULTIPLEXED OPTICAL INTERCONNECTS
Granted: September 5, 2013
Application Number:
20130230322
A multi-chassis network device includes a plurality of nodes that operate as a single device within the network and a switch fabric that forwards data plane packets between the plurality of nodes. The switch fabric includes a set of multiplexed optical interconnects coupling the nodes. For example, a multi-chassis router includes a plurality of routing nodes that operate as a single router within a network and a switch fabric that forwards packets between the plurality of routing nodes.…
PEER DISCOVERY AND SECURE COMMUNICATION IN FAILOVER SCHEMES
Granted: August 29, 2013
Application Number:
20130227022
A system discovers peer nodes in a failover system, establishes a secure channel between at least two of the peer nodes, and exchanges state information over the secure channel.
SYSTEMS AND METHODS FOR EQUAL-COST MULTI-PATH VIRTUAL PRIVATE LAN SERVICE
Granted: August 29, 2013
Application Number:
20130223283
A provider edge device, associated with a virtual private local area network service (VPLS) system, includes a memory to store instructions to implement a pseudowire mechanism to receive a first data frame from a source customer edge (CE) device associated with the VPLS system, incorporate the first data frame into a first VPLS packet, determine whether the source CE device is a single-homed CE device or a multi-homed CE device, and incorporate, into the first VPLS packet, a first…
PACKET SPRAYING FOR LOAD BALANCING ACROSS MULTIPLE PACKET PROCESSORS
Granted: August 29, 2013
Application Number:
20130223224
A network device includes multiple packet processing engines implemented in parallel with one another. A spraying component distributes incoming packets to the packet processing engines using a spraying technique that load balances the packet processing engines. In particular, the spraying component distributes the incoming packets based on queue lengths associated with the packet processing engines and based on a random component. In one implementation, the random component is a random…
MULTI-INTERFACE COMPATIBLE BUS OVER A COMMON PHYSICAL CONNECTION
Granted: August 22, 2013
Application Number:
20130215911
A multi-interface bus allows for different bus standards to be implemented over the same set of physical bus lines. More particularly, in one implementation, the system includes a first circuit board, a second circuit board, and a bus connecting the first and second circuit boards. The second circuit board is configured to communicate with the first circuit board using either a synchronous or an asynchronous bus protocol determined based on a bus protocol used by the first circuit board.
NETWORK PROVIDER BRIDGE MMRP REGISTRATION SNOOPING
Granted: August 22, 2013
Application Number:
20130215892
A provider edge bridge in a service provider network receives multiple media access control (MAC) Registration Protocol (MMRP) registration messages from customer networks via tunnels. The provider edge bridge snoops the MMRP registration messages to obtain multicast MAC addresses from the registration messages, and tunnels the MMRP registration messages toward one or more other bridges. The provider edge bridge constructs multicast forwarding tables based on the multicast addresses…
MEMORY ORGANIZATION IN A NETWORK DEVICE
Granted: August 22, 2013
Application Number:
20130215886
A router for switching data packets from a source to a destination in a network in which the router includes a distributed memory. The distributed memory includes two or more memory banks. Each memory bank is used for storing uniform portions of a data packet received from a source and linking information for each data packet to allow for the extraction of the uniform portions of a data packet from distributed locations in memory in proper order after a routing determination has been…
CHASSIS SYSTEM WITH FRONT COOLING INTAKE
Granted: August 22, 2013
Application Number:
20130213909
A line card includes a metal frame that includes a front section, and a bottom section connected to the front section via an angled section, where the angled section results in an opening between the line card and a second line card, when the line card is installed above the second line card in a rack, and where the opening allows directed air to enter the rack from a front direction; a printed circuit board attached to the metal frame; and a group of front panel connectors attached to…
FLOW CACHE MECHANISM FOR PERFORMING PACKET FLOW LOOKUPS IN A NETWORK DEVICE
Granted: August 15, 2013
Application Number:
20130212296
An example network device includes a network interface configured to receive a packet of a packet flow, wherein the packet flow is one of a plurality of packet flows processed by the network device, a flow cache configured to receive a lookup key associated with the packet flow, and a Bloom filter configured to process the lookup key. The flow cache is further configured to store information about a portion of the plurality of packet flows processed by the network device, and determine…
DYNAMIC THREAT PROTECTION IN MOBILE NETWORKS
Granted: August 8, 2013
Application Number:
20130205361
In general, techniques are described for dynamic threat protection in mobile networks. A network system comprising a network security device and a management system may implement the techniques. The management system includes a network server having a shared database. A mobile device manager (MDM) of the management system receives a report message from a mobile device, specifying a threat to a mobile network. The MDM publishes the threat to the shared database. A network management…
MOBILE NODE HOST ROUTE INSTALLATION AND WITHDRAWAL
Granted: August 8, 2013
Application Number:
20130201909
In general, techniques are described for atomically installing and withdrawing host routes along paths connecting network routers to attenuate packet loss for mobile nodes migrating among wireless LAN access networks and a mobile network. In some examples, whenever the mobile node moves from one attachment point to the next, it triggers the distribution of its host route from the new attachment point toward the service provider network hub provider edge (PE) router that anchors the…
NETCONF-ENABLED PROVISIONING IN ROLLBACK AGNOSTIC ENVIRONMENT
Granted: August 1, 2013
Application Number:
20130194974
A method includes receiving configuration data for configuring network devices; generating remote procedure calls (RPCs) for configuring the network devices, which include provisioning and reverse provisioning RPCs, where each reverse provisioning RPC reverse provisions a particular pseudowire; providing to the network devices the provisioning RPCs; determining a success with respect to each of the provisioning RPCs, where the success indicates that all endpoints of a pseudowire have…
