Automation of maintenance mode operations for network devices
Granted: December 14, 2021
Patent Number:
11201782
An example method includes determining, by a network controller, based on a high-level data model, vendor-agnostic device information for a first network device, translating the vendor-agnostic device information into vendor-specific device information, sending, to the first network device, first configuration information included in the vendor-specific device information to cause the first network device to switch into a maintenance mode and enable diversion of network traffic from the…
Mapping services to tunnels in order to forward packets using a network device
Granted: November 30, 2021
Patent Number:
11190461
This disclosure is related to devices, systems, and techniques for controlling a flow of network traffic between two or more devices. For example, a network device includes a control unit, a forwarding unit including a forwarding manager including a server configured to store a tunnel hierarchy structure, and a packet processor. The packet processor is configured to receive, via an interface card of a set of interface cards, a packet including a packet header. The forwarding manager is…
Service chaining with physical network functions and virtualized network functions
Granted: November 16, 2021
Patent Number:
11178041
Techniques are described in which a centralized controller, such as a software defined networking (SDN) controller, constructs a service chain that includes a physical network function (PNF) between a bare metal server (BMS) and a virtual execution element (e.g., virtual machine or container), or in some instances a remote BMS, or vice-versa. In accordance with the techniques disclosed herein, the controller may construct an inter-network service chain that includes PNFs, or a…
Multi-stage switch fabric fault detection and handling
Granted: November 16, 2021
Patent Number:
11178001
In some examples, a switching system includes a plurality of fabric endpoints and a multi-stage switching fabric having a plurality of fabric planes each having a plurality of stages to switch data units between any of the plurality of fabric endpoints. A fabric endpoint of the fabric endpoints is configured to send, to a switch of a first one of the stages and within a first fabric plane of the plurality of fabric planes, a self-ping message destined for the fabric endpoint. The fabric…
Methods and apparatus for optical communications via pulse amplitude modulation (PAM) in dense wavelength-division multiplexing (DWDM) systems
Granted: November 16, 2021
Patent Number:
11177888
A method includes modulating a digital signal via pulse amplitude modulation (PAM) and applying Nyquist shaping to the digital signal to generate a filtered digital signal. The method also includes converting the filtered digital signal into an analog signal and transmitting the analog signal in an optical communication channel via a dense wavelength division multiplexing (DWDM) scheme.
Measuring packet residency and travel time
Granted: November 9, 2021
Patent Number:
11171866
The disclosure sets forth techniques, devices, systems, and methods for measuring a packet residency time in a network device. In some aspects, a network flow measurement protocol includes data fields in flow data records exported to a traffic collector, including a packet ingress time and a packet egress time. The data fields allow the calculation of the packet residency time within a network device, as well as the time required for the packet to traverse between two network devices in…
Distributed virtualized computing infrastructure management
Granted: November 9, 2021
Patent Number:
11171834
A computing device includes processing circuitry coupled to a memory device, and an orchestration agent configured for execution by the processing circuitry. The orchestration agent is an agent of an orchestrator for a computing infrastructure that includes the computing device, wherein the orchestration agent is configured to: detect configuration events from the computing device to determine local configuration state of the computing device; aggregate the local configuration state from…
Multiple networks for virtual execution elements
Granted: November 9, 2021
Patent Number:
11171830
In some examples, a method includes receiving, by an orchestrator for a virtualized computing infrastructure, namespace specification data the specifies a namespace, a first virtual network for the namespace, and a second virtual network for the namespace; sending, by the orchestrator to a network controller for the virtualized computing infrastructure, based on the namespace specification data, at least one request to create, for a virtual execution element to be deployed to the…
Identifying egress of nil forward equivalency class (FEC) used for FEC hiding
Granted: November 2, 2021
Patent Number:
11165695
A label switch router (LSR) in a label-switched path (LSP) may receive, from an ingress edge LSR, a Multi-Protocol Label Switching (MPLS) echo request, where the LSP includes a tunnel having details that are hidden by a Nil Forward Equivalency Class (FEC). The LSR may determine whether the LSR is an egress node for the tunnel in the LSP based at least in part on one or more labels in the MPLS echo request. The LSR may, in response to determining that the LSR is the egress node for the…
Flexible services-based pipeline for firewall filter processing
Granted: November 2, 2021
Patent Number:
11165750
In general, techniques are described for creating a flexible services-based pipeline for firewall filter processing. A network device may be configured to perform the techniques. In one example, a method includes receiving, by a network device, data defining a plurality of firewall filter processing services, the data defining an order in which to apply services of the plurality of firewall filter processing services to firewall filters; configuring, by the network device and based on…
Providing physical host state information to virtual machines deployed on the physical host
Granted: November 2, 2021
Patent Number:
11163600
An orchestrator component, of a host device, may establish a connection to a bridge associated with the host device, where multiple virtual machines are executing on the host device. The orchestrator component may provide, to one or more of the multiple virtual machines, a notification about the bridge associated with the host device, where the notification is to permit the one or more of the multiple virtual machines to connect to the bridge. The orchestrator component may obtain one or…
Inter-autonomous system trace route message
Granted: November 2, 2021
Patent Number:
11165681
A network device may receive a message. The network device may determine that the message includes return information indicating a path to an initial device that generated the message. The network device may modify the message by adding an upstream device identifier, wherein the upstream device identifier identifies a device from which the message is received. The network device may modify the message by adding an indication of whether the initial device is reachable by the network…
Facilitating network configuration testing
Granted: November 2, 2021
Patent Number:
11165648
A device may obtain information concerning a potential network and may process the information concerning the potential network to determine a plurality of configuration parameters associated with the potential network. The device may determine, based on the plurality of configuration parameters, at least one network configuration profile. The device may generate, based on the at least one network configuration profile, a network configuration test plan and may cause one or more network…
Managing multiple semantic versions of device configuration schemas
Granted: November 2, 2021
Patent Number:
11165647
A controller device manages a plurality of network devices. The controller device includes one or more processing units implemented in circuitry and configured to maintain a graph data structure representing device level configuration schemas for the plurality of network devices, the graph data structure including trie nodes for every first device level configuration schema element for a first model of a version of network device of the plurality of network devices; obtain corresponding…
Identifying a root cause of alerts within virtualized computing environment monitoring system
Granted: November 2, 2021
Patent Number:
11165631
This disclosure describes techniques for analyzing information generated as a result of monitoring resources within computing environments. In one example, this disclosure describes a method that includes observing a plurality of alerts generated in response to monitoring resources associated with a plurality of connected elements within a network; determining a plurality of occurrence counts; determining a plurality of concurrent occurrence counts, wherein each of the plurality of…
Network state management
Granted: November 2, 2021
Patent Number:
11165625
A network device intercepts, from an application associated with a user space, a request message associated with obtaining information regarding a network state from a kernel. The network device directs the request message to a service daemon of the user space based on intercepting the request message, and determines, using the service daemon, network state information regarding the network state. The network device intercepts, from the service daemon, a response message associated with…
Source-active community for improved multicasting
Granted: November 2, 2021
Patent Number:
11165598
This disclosure describes techniques for improved multicasting of source VLAN multicast traffic. For example, a method includes receiving, by a switch device within a data center of a leaf and spine network, multicast traffic from a multicast source; sending, by the switch device and to a border device within the data center that is communicatively coupled to a multicast rendezvous point external to the data center, a source-active routing message to indicate that the switch device is…
Time synchronization for encrypted traffic in a computer network
Granted: November 2, 2021
Patent Number:
11165527
In general, various aspects of the techniques described in this disclosure provide time synchronization for encrypted traffic in a computer network. In one example, the disclosure describes an apparatus, such as a network device, having a control unit for a network device in a computerized network having a topology of network devices; and a forwarding unit operative to determine a release time for sending a synchronization packet in accordance with a time synchronization protocol; modify…
Radio-frequency loss reduction for integrated devices
Granted: November 2, 2021
Patent Number:
11164893
In radio-frequency (RF) devices integrated on semiconductor-on-insulator (e.g., silicon-based) substrates, RF losses may be reduced by increasing the resistivity of the semiconductor device layer in the vicinity of (e.g., underneath and/or in whole or in part surrounding) the metallization structures of the RF device, such as, e.g., transmission lines, contacts, or bonding pads. Increased resistivity can be achieved, e.g., by ion-implantation, or by patterning the device layer to create…
Multi-file malware analysis
Granted: November 2, 2021
Patent Number:
11163879
A device may identify a plurality of files for a multi-file malware analysis. The device may execute the plurality of files in a malware testing environment. The device may monitor the malware testing environment for behavior indicative of malware. The device may detect the behavior indicative of malware. The device may perform a first multi-file malware analysis or a second multi-file malware analysis based on detecting the behavior indicative of malware. The first multi-file malware…
