Priority channels for distributed broadband network gateway control packets
Granted: May 3, 2022
Patent Number:
11324077
In general, techniques are described herein for implementing priority channels by prioritizing and communicating control packets on an interface between a disaggregated Broadband Network Gateway control plane and the disaggregated Broadband Network Gateway user plane. In some examples, a method includes assigning, by a disaggregated broadband network gateway (DBNG) user plane device, a control packet for a control protocol to an assigned priority channel of a plurality of priority…
Supporting multiple PDU sessions for 5G client devices on wireline access
Granted: May 3, 2022
Patent Number:
11324057
A network device may receive a message from a device. The network device may process the message to determine identification information associated with the device. The network device may process the message to determine identification information associated with a packet data unit (PDU) session, of one or more PDU sessions, of the device. The network device may transmit based on the identification information associated with the device and the identification information associated with…
Scalable policy management for virtual networks
Granted: May 3, 2022
Patent Number:
11323487
Techniques are disclosed for implementing scalable policies across a plurality of categories that support application workloads. In one example, a policy controller assigns to the plurality of categories tags specifying one or more of a plurality of dimensions. The policy controller distributes a plurality of policies to policy agents for the plurality of categories. Each policy includes one or more policy rules, and each policy rule includes one or more tags specifying one or more of…
Network traffic switching for virtual machines
Granted: May 3, 2022
Patent Number:
11323485
A cloud network may include a distributed security switch (DSS). The DSS may be to receive configuration information from the hypervisor. The configuration information may include a set of access mode attributes and a security policy. The DSS may be to determine that a packet is to be directed from a source virtual machine to a target virtual machine. The DSS may be to identify an egress interface of the source virtual machine and an ingress interface of the target virtual machine. The…
Organizing execution of distributed operating systems for network devices
Granted: April 26, 2022
Patent Number:
11316744
In general, techniques are described for organizing execution of distributed operating systems for network devices. A device comprising hardware computing nodes may be configured to perform the techniques. The hardware computing nodes may execute a protocol by which to discover a topology of the plurality of hardware computing nodes, and determine, based on the topology, a subset of the plurality of hardware computing nodes to manage execution of a distributed operating system. The…
Fast heartbeat liveness between packet processing engines using media access control security (MACsec) communication
Granted: April 26, 2022
Patent Number:
11316858
A device may include one or more processors to establish a media access control security (MACsec) key agreement (MKA) session between a first network device and a second network device via a MACsec link; establish a fast heartbeat session via the MACsec communication link, between a first packet processing engine of the first network device and a second packet processing engine of the second network device, to permit the first packet processing engine and the second packet processing…
Allocating external IP addresses from isolated pools
Granted: April 26, 2022
Patent Number:
11316822
Techniques are described for creating isolated pools of external, failover, and/or floating IP addresses. In one example, this disclosure describes a method including creating a plurality of virtual networks, creating a plurality of pools of external IP addresses, detecting a request to instantiate an object that identifies a specific pool from the plurality of pools of external IP addresses; and instantiating the object and configuring the object with an external IP address drawn from…
Spraying for unequal link connections in an internal switch fabric
Granted: April 26, 2022
Patent Number:
11316796
In general, techniques are described for facilitating balanced cell handling by fabric cores of a fabric plane for an internal device switch fabric. In some examples, a routing system includes a plurality of fabric endpoints and a switching fabric comprising a fabric plane to switch cells among the fabric endpoints. The fabric plane includes two fabric cores and one or more inter-core links connecting the fabric cores. Each fabric core selects an output port of the fabric core to which…
Maintaining coherency in distributed operating systems for network devices
Granted: April 26, 2022
Patent Number:
11316775
In general, techniques are described for maintaining coherency in distributed operating systems for network devices. A network device comprising hardware computing nodes may be configured to perform the techniques. The hardware computing nodes may execute a distributed operating system. At least one the hardware computing nodes may determine whether one or more of the plurality of hardware computing nodes has failed and is no longer supporting execution of the distributed operating…
Network dashboard with multifaceted utilization visualizations
Granted: April 26, 2022
Patent Number:
11316763
This disclosure describes techniques for presenting information about a network, virtualization infrastructure, cluster, or other computing environment, and may involve presentation of user interfaces that may enable nuanced, unique, and/or comprehensive insights into how infrastructure elements and computing resources are being used and information about patterns of usage and/or utilization. This disclosure also describes techniques for communicating, within a computing system,…
Vendor agnostic profile-based modeling of service access endpoints in a multitenant environment
Granted: April 26, 2022
Patent Number:
11316738
An access profile includes configuration characteristics that are defined using device and operating system agnostic attributes. Thus, the access profiles are not necessarily dependent or otherwise tied to any particular vendor or network OS. When a system administrator configures one or more service access points, the system administrator need only specify the vendor and network OS agnostic characteristics that are to be associated with the service access point. A configuration…
Key exchange using pre-generated key pairs
Granted: April 26, 2022
Patent Number:
11316667
A network device may identify a plurality of security policies associated with the network device. The network device may generate respective sets of local key pairs for the plurality of security policies, wherein the respective sets of local key pairs are to facilitate negotiating security associations involving the network device. The network device may store the respective sets of local key pairs in a key data structure of the network device to permit the network device to provide, to…
Enhanced bonding between III-V material and oxide material
Granted: April 19, 2022
Patent Number:
11309261
When III-V semiconductor material is bonded to an oxide material, water molecules can degrade the bonding if they become trapped at the interface between the III-V material and the oxide material. Because water molecules can diffuse readily through oxide material, and may not diffuse as readily through III-V material or through silicon, forcing the III-V material against the oxide material can force water molecules at the interface into the oxide material and away from the interface.…
Systems and methods for sharing memory pointers across multiple processes
Granted: April 19, 2022
Patent Number:
11307981
A disclosed method may include (1) mapping a block of shared memory to a plurality of processes running on a computing device, (2) determining, for a process within the plurality of processes, a local pointer that references a specific portion of the block of shared memory from a shared memory pointer that is shared across the plurality of processes by (A) identifying, within the shared memory pointer, a block number assigned to the block of shared memory and (B) identifying, within the…
Apparatus, system, and method for lockless resource reclamation in single writer multiple reader technologies
Granted: April 19, 2022
Patent Number:
11307896
A disclosed method may include (1) maintaining a set of fleeting contexts that represent a lockless data structure at different moments in time, (2) determining an oldest context within the set of fleeting contexts, (3) identifying, within a discard list of the oldest context, a reference to an object stored in shared memory, and then (4) reclaiming, in the shared memory, a memory location occupied by the object whose reference was identified within the discard list of the oldest…
Network traffic control based on application feature
Granted: April 12, 2022
Patent Number:
11303575
A network device may receive network traffic associated with a network and determine that the network traffic is associated with a dynamic application. The network device may determine, based on the network traffic being associated with a dynamic application, an application feature associated with the network traffic. The network device may perform a lookup operation associated with the application feature to identify policy information associated with the application feature. The…
Inter-data center software-defined network controller network
Granted: April 12, 2022
Patent Number:
11303555
Techniques are disclosed for providing a Software Defined Networking (SDN) controller with real-time or near-real time visibility of the operation of data center fabrics to determine whether the DCI was properly configured. For example, an SDN controller receives high-level configuration data that describes a desired state of a network managed by the SDN controller at a high level of abstraction. The SDN controller applies a transformation function to the high-level configuration data to…
Segmented traceroute for segment routing traffic engineering
Granted: April 12, 2022
Patent Number:
11303549
Techniques are described for selectively pinging certain devices along a segment routing label switched path (LSP) to detect failures in the segment routing LSP. For example, an ingress device comprises one or more processors operably coupled to a memory that are configured to: in response to a request to verify connectivity of a segment routing LSP, configure a FEC stack specifying a stack of segment routing labels for the segment routing LSP; for each of the one or more devices…
Split-horizon filtering for EVPN-VXLAN
Granted: April 12, 2022
Patent Number:
11303474
Techniques for split-horizon filtering for EVPN-VXLANs are described. For example, an egress provider edge (PE) device is configured to apply split-horizon filtering to a BUM packet received from an intermediate network if the BUM packet includes a split-horizon identifier advertised by the egress PE device. As one example, the PE device encapsulates the split-horizon identifier within a tagging packet frame, such as a tagging packet frame in accordance with the 802.1Q tag format…
Managing satellite devices within a branch network
Granted: April 5, 2022
Patent Number:
11296783
This disclosure is related to devices, systems, and techniques for using an aggregation device to manage satellite devices that are coupled to host devices. For example, a system includes a set of satellite devices providing switching functionality and an aggregation device configured to communicate with an orchestrator of a wide area network (WAN), where the aggregation device serves as a master switch and is coupled to the set of satellite devices via a set of cascade ports. The…
