Physically attachable wireless apparatus
Granted: October 29, 2024
Patent Number:
12133145
Disclosed is a modular teleconference system that provides the convenience of a wireless headset for teleconference participants and the determinism associated with a physical connection between the headset and teleconferencing system. Some embodiments include a teleconference adaptor or mini-hub-device that is able to maintain a wireless connection even when disconnected from a teleconference hub device. The hub-device provides one or more cradles, each of which provides a physical…
Agent for aggregation of telemetry flow data
Granted: October 29, 2024
Patent Number:
12132623
A method includes subscribing, by an agent, to telemetry flow data from each network device of a plurality of network devices and receiving, by the agent, a plurality of streams of telemetry flow data from the plurality of the network devices. Each of the plurality of streams corresponds to a different one of the plurality of network devices. The method further includes aggregating, by the agent, data from at least one stream of the plurality of streams of the telemetry flow data…
Enhanced conversation interface for network management
Granted: October 29, 2024
Patent Number:
12132622
Disclosed is a network management system that provides an interface to enable diagnostics and troubleshoot of a remotely managed multi-site network. Some embodiments provide a natural language interface, while other embodiments provide a chatbot type interface that communicates with a technician via traditional text information on a display screen. The diagnostic and troubleshooting capabilities search a central data store that receives device property information from each site of the…
Model-based service placement
Granted: October 29, 2024
Patent Number:
12132615
An example computing device is configured to receive an instance of a customer service model representative of a plurality of customer services. Each of the plurality of customer services associated with a corresponding at least one requirement and a corresponding at least one constraint. The computing device is configured to receive an instance of a resource model representative of a plurality of resources and map the instance of the customer service model and the instance of the…
Measuring metrics of a computer network
Granted: October 22, 2024
Patent Number:
12126504
A method of measuring (100) metrics of a computer network, comprising the steps of: from a data source collecting (110) sets of data points during a sampling time period, wherein the set of data points constitute a sample, and uploading (120) each sample to a server for further processing (130), wherein from each sample, a fractile information instance is produced (131), wherein the fractile information has a type and each data source is associated (110a) with a fractile information…
Providing subscriber aware network address filtering using an open configuration remote procedure call framework
Granted: October 15, 2024
Patent Number:
12120093
A network device may provide a request for blacklists specific to respective subscribers. The network device may receive a first blacklist of network addresses associated with a first subscriber and a second blacklist of network addresses associated with a second subscriber. The network device may receive first traffic associated with a first network address and destined for the first subscriber, and may determine whether the first network address is included in the first blacklist. The…
Traffic filtering based on destination address and incoming interface of a network device
Granted: October 15, 2024
Patent Number:
12120022
In some implementations, a network device may receive one or more packets via an incoming interface of the network device. The network device may forward, or refraining from forwarding, based on a destination address associated with the one or more packets and the incoming interface of the network device, the one or more packets. The network device may receive, prior to receiving the one or more packets, route information indicating the destination address, and at least one of a set of…
Delaying resource reservation protocol label-switched path signaling through a restarting network device
Granted: October 15, 2024
Patent Number:
12120020
A network device may receive RSVP path request messages from an upstream ingress network device, and may generate an RSVP path error message, with an overload error code and a timeout period, after the network device is online within the configured timeout period. The network device may provide the RSVP path error message to the ingress network devices to cause the ingress network devices to wait for expiration of the timeout period, after the network device is fully online, until…
Policy driven zero touch provisioning of network devices
Granted: October 8, 2024
Patent Number:
12112177
A policy driven zero touch provisioning (ZTP) system implements techniques for policy driven ZTP of network devices. One or more ZTP policies, configurations and/or boot images associated with one or more network devices are stored in a database. Upon execution of a boot sequence, a network device automatically sends a DHCP request including network device identification information to the policy driven ZTP system. The policy driven ZTP system identifies a matching ZTP policy having…
Controlling access to microservices within a multi-tenancy framework
Granted: October 8, 2024
Patent Number:
12113832
In some examples, a system includes a network managed by a service provider and configured to provide access to one or more objects to a set of tenants each having one or more users, the service provider and the set of tenants being part of a set of entities that form a hierarchy, and a controller having access to the network. The controller is configured to obtain data indicative of a set of parameters, where the data indicative of the set of parameters is associated with an owner…
Role-based access control policy auto generation
Granted: October 1, 2024
Patent Number:
12107859
In some examples, an access control policy controller in a computer network may receive a request to create an access control policy that permits a role to perform one or more functions in the computer network. The access control policy controller may determine one or more operations performed on one or more objects in the computer network to perform the one or more functions based at least in part on tracking performance of the one or more functions in the computer network. The access…
Network device upgrade based group priority
Granted: October 1, 2024
Patent Number:
12107726
Techniques are disclosed for identifying sets of network devices to which to deploy a software upgrade based on an importance to the network of each network device. For example, a network system obtains information identifying a number of instances of an application associated with network traffic forwarded by each network device of a plurality of network devices. The instances of the application are executed by client devices serviced by each network device in forwarding the network…
Container networking interface for multiple types of interfaces
Granted: September 24, 2024
Patent Number:
12101253
In general, techniques are described for a computing device including a virtual router, a pod comprising a container, and a network plugin. The virtual router includes a virtual router agent. The network plugin includes processing circuitry configured to receive, from the virtual router agent, an indication of an interface type for a virtual network for the pod and to configure, for the pod, a virtual network interface having the interface type, the virtual network interface for…
Network policy validation
Granted: September 24, 2024
Patent Number:
12101227
In an example, a validation system comprises processing circuitry having access to a storage device and is configured to obtain flow records indicative of packet flows among workloads deployed to a cluster of one or more computing devices configured with a network policy, wherein each flow record of the flow records indicates a corresponding packet flow was allowed or denied by the cluster; receive an updated network policy; determine whether a corresponding packet flow for a flow record…
Network segmentation for container orchestration platforms
Granted: September 24, 2024
Patent Number:
12101204
In general, techniques are described for performing network segmentation for container orchestration platforms. A network controller comprising a memory and processing circuitry may be configured to perform the techniques. The memory may be configured to store a request, conforming to a container orchestration platform, to configure a new pod of a plurality of pods with a primary interface to communicate on a virtual network to segment a network formed by the plurality of pods. The…
Machine learning for metric collection
Granted: September 24, 2024
Patent Number:
12099427
A performance monitoring system includes a metric collector configured to receive, via metric exporters, telemetry data comprising metrics related to a network of computing devices. A metric time series database stores related metrics. An alert rule evaluator service is configured to evaluate rules using stored metrics. The performance monitoring system may include a machine learning module and is configured to determine optimized metric collection sampling intervals and rule evaluation…
Display screen with animated graphical user interface
Granted: September 17, 2024
Patent Number:
D1042507
Intent-based enterprise security using dynamic learning of network segment prefixes
Granted: September 17, 2024
Patent Number:
12095817
In an example, systems and methods enable automatic implementation of intent-based security policies in a network system, such as a software-defined wide area network system, in which network segment prefixes for network segments at one or more sites are dynamically learned. A service orchestrator controller translates an intent-based security policy input by a user to a security policy for a first site. The security policy for the first site specifies a segment-specific queryable…
Interspersing network traffic across members of a container label-switched path
Granted: September 17, 2024
Patent Number:
12095661
A network device may define a container LSP that includes multiple member LSPs. Each of the multiple member LSPs defines a path from the network device through a network of a plurality of network devices. The network device may receive traffic that includes multiple packet flows. The network device may identify a first set of packet flows that are intolerant to packet reordering. The network device may identify a second set of packet flows that are tolerant to packet reordering. The…
Processing unmodified configuration data with a network device application
Granted: September 17, 2024
Patent Number:
12095614
A network device may receive a first configuration object associated with an application and may parse the first configuration object to identify first configuration data. The network device may calculate a first hash value based on the first configuration data and may generate a first operational object based on the first configuration data and the first hash value. The network device may receive a second configuration object associated with the application of the network device and may…
