Session monitoring using metrics of session establishment
Granted: December 10, 2024
Patent Number:
12166670
A first router generates session establishment metrics for use in network path selection. For example, a plurality of routers connect a client device to a network service instance hosted by a server. A first router is connected to the network service instance via first and second paths. The first router receives session performance requirements for a session between the client device and the network service instance. The first router forwards, along the first path, network traffic for…
Software upgrade deployment in mixed network of in-service software upgrade (ISSU)-capable and ISSU-incapable devices
Granted: December 10, 2024
Patent Number:
12164905
Techniques are disclosed for deploying software upgrades to a mixed network of In-Service Software Upgrade (ISSU)-capable and ISSU-incapable network devices without interrupting network traffic serviced by the mixed network. In one example, a centralized controller for a network determines that first network devices of a plurality of network devices for the network are In-Service Software Upgrade (ISSU)-capable and second network devices of the plurality of network devices are not…
Containerized router with virtual networking
Granted: December 3, 2024
Patent Number:
12160811
In general, this disclosure describes techniques for a containerized router operating within a cloud native orchestration framework. In an example, a virtualized cell site router comprises a computing device configured with a containerized router, the computing device comprising: a containerized virtual router configured to execute on the processing circuitry and configured to implement a data plane for the containerized router; a containerized routing protocol process configured to…
Traceroute for multi-path routing
Granted: December 3, 2024
Patent Number:
12160362
In general, techniques are described for extending network connectivity software utilities, such as traceroute, to provide complete visibility into a network topology between a source device and a destination device, even when an intermediate network device may be actively utilizing multiple network links when forwarding packets toward the destination. In one example, a network device coupled to a plurality of paths and positioned between a source network device and destination network…
Methods and apparatus for capturing and/or using packets to facilitate fault detection
Granted: December 3, 2024
Patent Number:
12160354
Methods and apparatus for controlling monitoring operations performed by various devices, e.g., access points, in a communications network and for using information obtained by the devices which perform the monitoring are described. The methods are well suited for use in a system with a variety of access points, e.g., wireless and/or wired access points, which can be used to obtain access to the Internet or another network. An access point, which has been configured to monitor in…
Protecting instances of resources of a container orchestration platform from unintentional deletion
Granted: December 3, 2024
Patent Number:
12159176
A container orchestration platform manages a plurality of instances of resources including a first custom resource and a second custom resource. An API server of the container orchestration platform receives a request to delete an instance of the second custom resource; determines whether instance data associated with the instance of the second custom resource has a backreference identifying an instance of the first custom resource, the backreference indicating the instance of the first…
Memory tracking for malware detection
Granted: November 26, 2024
Patent Number:
12153675
A device may load a process under test into virtual memory associated with the device. The virtual memory may include a plurality of memory pages. The device may insert a malware inspection element and a memory tracking element into the process under test and may provide a notification of an event associated with the process under test to a memory tracking element. The device may identify, using the memory tracking element, one or more memory pages of the plurality of memory pages. The…
Multi-stage virtual private network service provisioning for containerized routers
Granted: November 26, 2024
Patent Number:
12155569
In general, this disclosure describes techniques for provisioning virtual private network (VPN) services for cloud native routers using a multi-stage process. In an example, a method comprises deploying, in a first computing device, using a layer 2 bridge domain that includes the first computing device, a containerized routing protocol process; deploying, in the first computing device, using the layer 2 bridge domain, a containerized application; configuring, in the containerized routing…
Metric-based multi-hop path selection
Granted: November 26, 2024
Patent Number:
12155553
Techniques are described for a router providing metric-based multi-hop path selection. For example, a first router of a plurality of routers receives a plurality of network performance metrics for a plurality of links interconnecting the plurality of routers. The plurality of links form a plurality of multi-hop paths through the plurality of routers to a service instance. The router determines, based on the plurality of network performance metrics for the plurality of links, an…
Self-driven and adaptable multi-vBNG management orchestration
Granted: November 26, 2024
Patent Number:
12155531
A broadband network gateway (BNG) controller is described that includes a network subscriber database (NSDB) and one or more core applications. The NSDB is configured to store vBNG instance information for one or more subscriber devices. The vBNG instance information specifies vBNG instances operable by one or more edge routers. The vBNG instances are configured to receive requests to access service provider services from the one or more subscriber devices and to selectively authenticate…
Extending a software defined network between public cloud computing architecture and a data center
Granted: November 19, 2024
Patent Number:
12147826
An example system includes first servers deployed in a public cloud computing infrastructure and second servers deployed external to the public cloud computing infrastructure connected to the first servers via a layer 3 network. The first servers include first virtual routers to implement one or more virtual networks and first virtual execution elements. The first virtual execution elements execute a network controller that includes a plurality of microservices. A network device manages…
Using delta snapshots to facilitate intent policy model rollback and deployment
Granted: November 19, 2024
Patent Number:
12147315
A system identifies an intent policy model associated with an initial time. The system updates a data structure to cause the data structure to include one or more portions. Each portion of the data structure is associated with a start time and an end time. Each portion includes: a first delta snapshot that indicates one or more first changes to the intent policy model from the initial time to the start time associated with the portion, and one or more additional delta snapshots that…
Role-based access control policy auto generation
Granted: November 12, 2024
Patent Number:
12143385
In some examples, an access control policy controller in a computer network may receive a request to create an access control policy that permits a role to perform one or more functions in the computer network. The access control policy controller may determine one or more operations performed on one or more objects in the computer network to perform the one or more functions based at least in part on tracking performance of the one or more functions in the computer network. The access…
Dynamically learning media access control and internet protocol addresses
Granted: November 12, 2024
Patent Number:
12143353
Techniques are described for learning an unknown virtual network information, such as an virtual Internet Protocol (IP) address, of a pod in a virtual network. In some examples, a virtual router executing at a computing device may receive an Address Resolution Protocol (ARP) packet from a virtual execution element in the virtual network, the virtual execution element executing at the computing device. The virtual router may determine, based at least in part on the ARP packet, whether…
Power level reduction based on maximum bandwidth requirement
Granted: November 12, 2024
Patent Number:
12143315
In some implementations, a network device may determine a maximum bandwidth requirement (MBR) associated with a network device. The network device may reduce based at least in part on the MBR, a power level of a component of the network device.
Underlay-overlay correlation
Granted: November 12, 2024
Patent Number:
12143304
This disclosure describes techniques that include collecting underlay flow data along with overlay flow data within a network and correlating the data to enable insights into network operation and performance. In one example, this disclosure describes a method that includes collecting flow data for a network having a plurality of network devices and a plurality of virtual networks established within the network; storing the flow data in a data store; receiving a request for information…
Fast reroute for BUM traffic in ethernet virtual private networks
Granted: November 12, 2024
Patent Number:
12143293
Techniques are described for providing fast reroute for BUM traffic in EVPN. For example, a first provider edge (PE) device, elected as a designated forwarder (DF) of an Ethernet segment, configures a backup path using a label received from a second PE device of the Ethernet segment (e.g., backup DF) that identifies the second PE device as a “protector” of the Ethernet segment. For example, a routing component of the DF configures within a forwarding component a backup path to the…
Display screen or portion thereof with graphical user interface
Granted: November 5, 2024
Patent Number:
D1050166
Network management actions based on access point classification
Granted: November 5, 2024
Patent Number:
12137024
An example system includes access point (AP) devices configured to provide a wireless network at a site; and a network management system that stores network data received from the AP devices, the network data collected by the AP devices or client devices associated with the wireless network, and one or more processors configured to: receive a time series of SLE metrics based on the network data, determine, based on the time series, whether a network event has occurred, in response to a…
Display screen or portion thereof with graphical user interface
Granted: November 5, 2024
Patent Number:
D1050167
