Providing timing information from a network via a virtual network address
Granted: November 29, 2022
Patent Number:
11516321
A network device may receive, from a timing source of a network, timing information. The network device may identify a client device to which the timing information is to be provided, wherein the network device provides an interface between the client device and the network. The network device may select a virtual network address to associate with a timing agent of the network device, wherein the virtual network address is within an address range that is reachable by the client device.…
Controlling access to microservices within a multi-tenancy framework
Granted: November 29, 2022
Patent Number:
11516254
In some examples, a system includes a network managed by a service provider and configured to provide access to one or more objects to a set of tenants each having one or more users, the service provider and the set of tenants being part of a set of entities that form a hierarchy, and a controller having access to the network. The controller is configured to obtain data indicative of a set of parameters, where the data indicative of the set of parameters is associated with an owner…
Creating roles and controlling access within a computer network
Granted: November 29, 2022
Patent Number:
11516220
This disclosure is directed to devices, systems, and techniques for enforcing access to resources within a computer network. In some examples, a system includes a network managed by a service provider and configured to provide a plurality of microservices to a plurality of tenants each having one or more users and a controller having access to the network. The controller is configured to output, to a user interface, data indicative of a plurality of capabilities for presentation by the…
Automatic recovery from duplicate network addresses
Granted: November 29, 2022
Patent Number:
11516179
A network device in a network may determine a tentative network address for a network interface of the network device and may determine whether the tentative network address is duplicative of any one of the network addresses in the network. If the tentative network address is duplicative of a network address assigned to another network interface in the network, the network device may store an indication of the other network interface. In response to receiving an indication that a new…
Distributed node processing of network traffic
Granted: November 29, 2022
Patent Number:
11516136
A first network device may receive first traffic of a session that involves a service. The first network device may identify that the service is configured for distributed node processing. The first network device may identify a second network device that is configured for distributed node processing. The first network device may identify a state machine that is associated with the service. The first network device may determine, based on the state machine, a first function and a second…
Determining network device statistics associated with fast counters and slow counters
Granted: November 22, 2022
Patent Number:
11509590
A network device may receive one or more packets, and may determine a flow control parameter, a rate limiting parameter, and a statistical sampling parameter associated with a slow counter. The network device may determine whether the flow control parameter satisfies a first threshold, whether the rate limiting parameter satisfies a second threshold, and whether the statistical sampling parameter satisfies a third threshold. The network device may identify a counter event associated with…
Collection of error packet information for network policy enforcement
Granted: November 22, 2022
Patent Number:
11509534
A network device may detect an error associated with a packet based on error information being generated from processing the packet at a layer of a network stack. The network device may determine, based on detecting the error, metadata associated with the packet. The network device may generate telemetry data to include the metadata. The network device may provide the telemetry data to a network analyzer for policy enforcement.
Processing segment routing packets with two policy processing instructions in a segment routing domain
Granted: November 15, 2022
Patent Number:
11502954
A network device may receive a packet and may determine whether a next header of the packet is an Internet protocol (IP) header, an Internet control message protocol (ICMP) header, or a segment routing header. The network device may determine, when the next header of the packet is the IP header, whether policy processing of the packet is set to ultimate segment decapsulation and may discard the packet when the policy processing of the packet is not set to ultimate segment decapsulation.…
Providing anonymous network data to an artificial intelligence model for processing in near-real time
Granted: November 15, 2022
Patent Number:
11503002
A device may receive, from a network device in near-real time, a packet of data associated with network traffic of a network, wherein the packet includes privacy-related data and network-related data. The device may read the privacy-related data from the packet. The device may generate anonymous data based on the privacy-related data, wherein the anonymous data obscures the privacy-related data. The device may generate a mapping between the anonymous data and the privacy-related data.…
Dynamic internet protocol translation using port-control-protocol communication
Granted: November 15, 2022
Patent Number:
11502955
A network device may receive, from a source device, an option request that includes a source address of the source device and a destination address of a destination device, wherein the network device is associated with an Internet protocol version 6 (IPv6) network. The network device may identify a map code that is associated with an address translation for traffic associated with the destination device and may determine, based on identifying the map code, a source prefix code and a…
Distributed label assignment for labeled routing protocol routes
Granted: November 15, 2022
Patent Number:
11502946
In general, various aspects of the techniques are described in this disclosure for distributed label assignment for labeled routes. In one example, a method includes obtaining, by a first thread of a plurality of execution threads for at least one routing protocol process executing on processing circuitry of a network device, an allocation of first labels drawn from a label space for a network service; adding, by the first thread, the first labels to a first local label pool for the…
High-availability networking as a service via Wi-Fi
Granted: November 15, 2022
Patent Number:
11502945
A first network device may receive a request associated with forming a high-availability cluster with a second network device, wherein the first network device is associated with a session of a user device. The first network device may determine, based on authorization information associated with the first network device, that the first network device is authorized to form the high-availability cluster. The first network device may configure communication links with the second network…
Seamless segment routing for multiprotocol label switching (MPLS) interworking
Granted: November 15, 2022
Patent Number:
11502939
A network device may receive policy data identifying a first segment routing (SR) policy and a second SR policy. The first SR policy may be associated with a first path through a network and a first next hop, and the second SR policy may be associated with a second path through the network and a second next hop. The network device may advertise, to another device, reachability associated with the first next hop and the second next hop, and may receive, from the other device, a packet…
Balancing power distribution
Granted: November 15, 2022
Patent Number:
11502615
A device determines a first current, of a first input phase of a power system, and a second current, of a second input phase of the power system. The device determines whether the first input phase and the second input phase are balanced based on the first current and the second current. When the first input phase and the second input phase are not balanced, the device selects the first input phase and an output phase of the power system. The device balances the first input phase and the…
Machine learning pipeline for predictions regarding a network
Granted: November 15, 2022
Patent Number:
11501190
This disclosure describes techniques that include using an automatically trained machine learning system to generate a prediction. In one example, this disclosure describes a method comprising: based on a request for the prediction: training each respective machine learning (ML) model in a plurality of ML models to generate a respective training-phase prediction in a plurality of training-phase predictions; automatically determining a selected ML model in the plurality of ML models based…
Adaptive log data level in a computing system
Granted: November 8, 2022
Patent Number:
11494255
Disclosed are embodiments for improving remote diagnostics of a computer system. Some embodiments obtain operational parameter values and log data from a plurality of network devices, and provide the operational parameter values and log data to a machine learning model. The model is trained to identify a root cause of a degradation of the computer system based on the operational parameter values and log data, and to provide recommendations of log data level settings for the network…
Enhanced conversation interface for network management
Granted: November 8, 2022
Patent Number:
11496373
Disclosed is a network management system that provides an interface to enable diagnostics and troubleshoot of a remotely managed multi-site network. Some embodiments provide a natural language interface, while other embodiments provide a chatbot type interface that communicates with a technician via traditional text information on a display screen. The diagnostic and troubleshooting capabilities search a central data store that receives device property information from each site of the…
Correlation of virtual network traffic across bare metal servers
Granted: November 8, 2022
Patent Number:
11496363
This disclosure describes techniques that include collecting flow data associated with communications between network devices, and determining, based on the flow data, one or more virtual networks over which the communications are taking place. In one example, this disclosure describes a system configured to perform operations comprising: storing virtual network configuration information associated with a first virtual network and a second virtual network established within a network;…
EVPN multicast ingress forwarder election using source-active route
Granted: November 8, 2022
Patent Number:
11496329
The techniques describe example network systems providing core-facing designated forwarder (DF) election to forward multicast traffic into an EVPN of a core network. For example, a first PE device of a plurality of PE devices participating in an EVPN comprises one or more processors operably coupled to a memory, wherein the one or more processors are configured to: determine that a first multicast traffic flow has started for the first PE device; in response, send a source-active (SA)…
Symmetric path/link over LAG interface using LLDP for time synchronization between two nodes using PTP
Granted: November 8, 2022
Patent Number:
11496235
A network device may assign, to a port of a plurality of ports on the network device, a precision timing protocol (PTP) port priority for PTP communications between the network device and another network device. The network device and the other network device may be communicatively connected via a plurality of links in a link aggregation group (LAG). Each port, of the plurality of ports, may be associated with a respective link, of the plurality of links, in the LAG. The network device…
