Generating cryptographic random data from raw random data
Granted: July 6, 2021
Patent Number:
11057186
A device may store raw random data in a raw random data store. The raw random data may include a first plurality of data strings. The device may generate, using a quotient ring transform (QRT), cryptographic random data based on the raw random data. The cryptographic random data includes a second plurality of data strings that is transformed from the first plurality of data strings based on an extraction state stored in an extraction state store. The device may store the cryptographic…
Automated configuration and data collection during modeling of network devices
Granted: July 6, 2021
Patent Number:
11055453
In general, techniques are described for providing diversity in simulation datasets during modeling. A device comprising a memory and a processor may be configured to perform the techniques. The memory may store simulation configuration files for conducting simulations of the network device within a test environment. The processor may conduct, based on the simulation configuration files, each of the simulations with respect to the network device to collect corresponding simulation…
Thermal management with variable conductance heat pipe
Granted: June 29, 2021
Patent Number:
11051431
Photonic and electronic integrated circuits can be cooled using variable conductance heat pipes containing a non-condensable gas in addition to a phase-changing working fluid. To package the heat pipe with a subassembly including the integrated circuits in a standard housing providing a heat sink contact area, the heat pipe is oriented, in some embodiments, with its axis between evaporator and condenser ends substantially perpendicular to the direction along which the integrated circuit…
Methods and apparatus for performing access and/or forwarding control in wireless networks such as WLANS
Granted: June 29, 2021
Patent Number:
11051169
Methods and apparatus for controlling access to and/or forwarding of communicated information, e.g. traffic, in a wireless communication system are described. The key, e.g., PSK, used to secure data that is transmitted to an access point for communication to a destination device is taken into consideration when deciding whether or not to provide the destination device access to the communicated content. The decision of whether or not to provide the destination device access to a…
Fast routing convergence for border gateway protocl (BGP) systems including one or more route reflectors (RRs)
Granted: June 29, 2021
Patent Number:
11050681
Responsive to receiving the BGP UPDATE message, a route reflector may (1) update a CLUSTER_LIST value and, if needed, an ORIGINATOR_ID value, in a path attribute section in the BGP UPDATE message to generate a revised BGP UPDATE message, and (2) send the revised BGP UPDATE message to a client of the route reflector, regardless of whether or not one of (A) field validity checking of the BGP UPDATE message, (B) Adj-RIBS-In update using the BGP UPDATE message, (C) decision processing for…
Defining non-forwarding adjacencies in bipartite networks, such as Clos newtorks, having a level 2 backbone and level 1 nodes
Granted: June 29, 2021
Patent Number:
11050679
Problems associated with providing a large Clos network having at least one top of fabric (ToF) node, a plurality of internal nodes, and a plurality of leaf nodes may be solved by: (a) providing L2 tunnels between each of the leaf nodes of the Clos and one or more of the at least one ToF node to ensure a non-partitioned IGP L2 backbone, and (b) identifying the L2 tunnels as non-forwarding adjacencies in link state topology information stored in ToF node(s) and leaf node(s) such that the…
Preventing traffic outages during address resolution protocol (ARP) storms
Granted: June 29, 2021
Patent Number:
11050650
A device may determine internet protocol (IP) traffic monitoring criteria and may monitor IP traffic based on the IP traffic monitoring criteria. The device may update, based on monitoring the IP traffic, a table of currently active IP traffic flows and may update, based on the table of currently active IP traffic flows, an address resolution protocol (ARP) packet filter. The device may receive one or more ARP packets from a different device and may determine whether to accept or discard…
Apparatus, systems, and methods for optical channel management
Granted: June 22, 2021
Patent Number:
11044035
An apparatus includes a reconfigurable optical add/drop multiplexer (ROADM) having an input port to receive a first optical signal from a second device. The ROADM also includes a first wavelength selective switch (WSS), in optical communication with the input port, to convert the first optical signal into a second optical signal, a loopback, in optical communication with the first WSS, to transmit the second optical signal, and a second WSS, in optical communication with the loopback, to…
Orthogonal cross-connecting of printed circuit boards without a midplane board
Granted: June 15, 2021
Patent Number:
11038313
A line card of a set of line cards is configured to be coupled to a set of switch-fabric cards to collectively define at least a portion of an orthogonal cross fabric without a midplane board. The line card has an edge portion, a first side and a second side, opposite the first side. The line card includes a set of first set of connectors and a second set of connectors. The first set of connectors is disposed along the edge portion on the first side of the line card and the second set of…
Applying application-based policy rules using a programmable application cache
Granted: June 8, 2021
Patent Number:
11032389
A network device receives a packet from a client device, and identifies, based on receiving the packet, a destination of the packet. The network device determines, based on information included in an application cache, an application associated with the destination of the packet, where the first network device, the client device, and the application cache are included in a first local network. The network device determines, based on the information included in the application cache, a…
Network monitoring based on distribution of false account credentials
Granted: June 8, 2021
Patent Number:
11032318
A device receives end user device information for end user devices associated with a network, and creates a data structure that includes the end user device information. The device creates a data structure that includes false account credentials, and maps the end user device information and the false account credentials to create a mapped data structure. The device provides the false account credentials to memory locations of corresponding ones of the end user devices, and provides…
Providing predictable quality of service traffic steering
Granted: June 8, 2021
Patent Number:
11032203
A first network device of a network receives first traffic and second traffic, and assigns a first priority to the first traffic and a second priority to the second traffic. The first network device provides, to a second network device, a first message requesting whether the second network device can process the first traffic, and receives, from the second network device, a first response with a first value indicating that the second network device can process the first traffic. The…
Per path and per link traffic accounting
Granted: June 8, 2021
Patent Number:
11032196
A first device may receive a packet that includes information identifying a path through a network. The first device may configure a header of the packet to include a first set of identifiers that identifies the path and the first device via which the packet was received. The first device may configure the header of the packet to include a second set of identifiers that identifies a set of devices associated with the path. The set of devices may be associated with providing the packet…
Signaling a planned off-lining, such as for maintenance, of a node or node component supporting a label switched path (LSP), and using such signaling
Granted: June 8, 2021
Patent Number:
11032192
A node of an LSP may inform the ingress node of the LSP, for example via RSVP signaling, about its temporary unavailability for a certain time. In response, the ingress node can stop using any affected LSP(s) and divert the traffic to other LSPs. This provides a faster mechanism to signal traffic shift then traditional IGP overload which causes considerable churn into the network as all the nodes need to compute the SPF. It is sufficient for ingress node to be aware of this node…
GRE tunneling with reduced packet encryption at intermediate routers
Granted: June 8, 2021
Patent Number:
11032107
A network node may receive a packet having an inner internet protocol (IP) header and an outer IP header. The inner IP header may be encrypted. The network node may generate a copy of the packet to obtain a copied packet. The network node may perform decryption on one of the packet or the copied packet to identify a recipient address of the inner IP header. The network node may update the outer IP header of the other of the packet or the copied packet to obtain an updated packet with an…
Layer 2 tunnel protocol (“L2TP”) node processing optimization using a dedicated hello channel keepalive mechanism
Granted: June 8, 2021
Patent Number:
11032106
A separate dedicated channel is set up and used for tunnel keepalive exchanges. Using such a dedicated channel permits tunnel keepalives to be processed completely at forwarding plane, without needing to send them to the control plane for processing. This dedicated channel can implement its own sequencing (in a way that avoids the need to use the control plane for processing). Alternatively, this dedicated channel might not use sequencing at all.
Multicast group membership management
Granted: June 8, 2021
Patent Number:
11032093
A network device may intercept, from an application associated with a user space of the network device, a request message to join a multicast group or to leave the multicast group. The request message may be addressed to a kernel of the network device. The network device may direct the request message to a service daemon associated with the user space of the network device. The network device may determine, using the service daemon, whether another application associated with the user…
Efficient unicast signaling in a precision time protocol enabled packet network
Granted: June 8, 2021
Patent Number:
11032056
A first device may provide, to a second device, a first message that includes a first request for a first type of precision time protocol (PTP) message and a second request for a second type of PTP message. The first device may receive, from the second device, a second message based on the first message. The second message may identify whether the first request and the second request are granted. The first device may provide, to the second device, a third message that instructs the…
Path monitoring system (PMS) controller or ingress node based multiprotocal label switching (MPLS) ping and traceroute in inter- autonomous system (AS) segment routing (SR) networks
Granted: June 1, 2021
Patent Number:
11025522
Echo or traceroute functionality is supported in a path spanning multiple autonomous systems (ASes) having segment routing (SR) enabled, the path including an ingress node and an egress node, by: (a) obtaining a return label stack to reach the ingress node from either (A) the egress node, or (B) a transit node in the path; (b) obtaining a label stack to reach, from the ingress node, either (A) the egress node, or (B) the transit node; (c) generating a request message including the return…
Group load balancing for virtual router redundancy
Granted: June 1, 2021
Patent Number:
11025708
Load balancing in a network section implementing VRRPv3 may be supported in a way that is easier to implement than that described in § 4.2 of RFC 5798. This may be done by (a) receiving, by a virtual router redundancy protocol (VRRP) router on a local area network (LAN), a group load balancing identifier (GLB ID) value; (b) sending, by the VRRP router, the GLB ID value to at least one peer VRRP router on the LAN, the VRRP router and the at least one peer VRRP router on the LAN defining…
