Policy implementation and management
Granted: June 25, 2024
Patent Number:
12021692
The present invention addresses the need for improved virtualized cloud infrastructure policy implementation and management in order allow real-time monitoring and optimization of virtualized resources. It provides systems and methods for real-time cloud infrastructure policy implementation and management that include a plurality of host devices, a plurality of real-time probe agents associated with the plurality of host devices operating on each of the plurality of host devices, and a…
Fast convergence for MAC mobility
Granted: June 25, 2024
Patent Number:
12021657
A first provider edge device may receive device information from a second provider edge device included in an Ethernet virtual private network (EVPN). The device information may identify a media access control (MAC) address and may indicate that the device is connected to the second provider edge device. The first provider edge device may receive data transmitted by the device and may determine, based on information included in the data, that the device has moved from the second provider…
Guided alignment of wireless device orientation
Granted: June 11, 2024
Patent Number:
12010645
Embodiments provide for guided alignment of the orientation of two wireless devices. A first wireless device is at a known position and a known orientation. A signal from a second wireless device is received via a plurality of receive elements of the first wireless device. The first wireless device measures phase differences of the signal at the plurality of receive elements, and determines locations of each of the second wireless device's transmit elements based on the differences.…
Allocating addresses from pools
Granted: June 11, 2024
Patent Number:
12010093
Techniques are described for creating isolated pools of external, failover, and/or floating IP addresses. In one example, this disclosure describes a method including creating a plurality of virtual networks, creating a plurality of pools of external IP addresses, detecting a request to instantiate an object that identifies a specific pool from the plurality of pools of external IP addresses; and instantiating the object and configuring the object with an external IP address drawn from…
Methods and apparatus for facilitating fault detection and/or predictive fault detection
Granted: June 11, 2024
Patent Number:
12010031
Methods and apparatus for automatically identifying and correcting faults relating to poor communications service in a wireless system, e.g., in real time, are described. The methods are well suited for use in a system with a variety of access points, e.g., wireless and/or wired access points, which can be used to obtain access to the Internet or another network. Access points (APs), which have been configured to monitor in accordance with received monitoring configuration information,…
Fast reroute for ethernet virtual private networks—virtual extensible local area network
Granted: June 11, 2024
Patent Number:
12010011
Techniques are described for providing fast reroute for traffic in EVPN-VXLAN. For example, a backup PE device of an Ethernet segment is configured with an additional tunnel endpoint address (“reroute tunnel endpoint address”) for a backup path associated with a second split-horizon group that is different than a tunnel endpoint address and first split-horizon group for another path used for normal traffic forwarding. The backup PE device sends the reroute tunnel endpoint address to…
Monitoring and policy control of distributed data and control planes for virtual nodes
Granted: June 11, 2024
Patent Number:
12009988
A computing system includes a computing device configured to execute a plurality of virtual machines, each virtual machine of the plurality of virtual machines configured to provide control plane functionality for at least a different respective subset of forwarding units of a network device, the computing device distinct from the network devices. The computing system also includes a policy agent configured to execute on the computing device. The agent is configured to determine that a…
Automatic formation of a virtual chassis using zero touch provisioning
Granted: June 11, 2024
Patent Number:
12008382
A network device may obtain information concerning a virtual chassis that indicates that the network device and an additional network device are to be included in the virtual chassis. The network device may determine, based on the information concerning the virtual chassis, that the network device is connected to the additional network device, wherein the network device is connected to the additional network device via a link between a network interface of the network device and a…
Machine learning for rule evaluation
Granted: June 11, 2024
Patent Number:
12007865
A performance monitoring system includes a metric collector configured to receive, via metric exporters, telemetry data comprising metrics related to a network of computing devices. A metric time series database stores related metrics. An alert rule evaluator service is configured to evaluate rules using stored metrics. The performance monitoring system may include a machine learning module and is configured to determine optimized metric collection sampling intervals and rule evaluation…
Determining location based on dynamic path loss exponent (PLE) and intercept (Int) estimation
Granted: June 4, 2024
Patent Number:
12004045
Methods of deriving location information of a wireless device include deriving, in the continuous domain, a location of a wireless device and at least one time and location varying path loss function parameter. The coordinates and parameter are derived based on signal strength measurements made at the wireless device, with the measured signals originating from a plurality of wireless transmitters, such as access points. The derived path loss function parameter can include one or more of…
Lawfully intercepting traffic for analysis independent of a protocol associated with the traffic
Granted: June 4, 2024
Patent Number:
12003551
A network device may receive a request to install a rule set, and may add, based on the request, information identifying the rule set to a list of rule sets associated with the network device. The network device may receive a packet destined for an endpoint device, may generate a copy of the packet, and may cause the packet to be forwarded to the endpoint device. The network device may perform deep packet inspection of the copy of the packet to identify a packet rule set associated with…
Smart firewall filtering in a label-based network
Granted: June 4, 2024
Patent Number:
12003483
A network device may receive an input identifying one or more conditions associated with traversal of packets through a network and one or more actions to be performed if the one or more conditions are satisfied. The network device may transmit, to a path computation element, a request for a label set that satisfies the one or more conditions. The network device may receive the label set from the path computation element. The network device may configure a firewall policy indicating that…
Network device interface for supporting centralized address pool management
Granted: June 4, 2024
Patent Number:
12003481
A first device may establish a connection with a second device, and may provide a connection check RPC message to the second device. The first device may receive a verification RPC message from the second device, and may provide, to the second device, a sync domains RPC request that includes a first list of active domains with associated address pools. The first device may receive, from the second device, a sync domains RPC response that includes threshold values for the active domains…
Dual user space-kernel space datapaths for packet processing operations
Granted: June 4, 2024
Patent Number:
12003429
In general, techniques are described for enhancing packet processing in a computing device of a network. The computing device is configured to in response to receiving ingress data of a flow from the first network device via the first network interface, execute, based on a hook point in kernel space of the device, a kernel program to transfer, via a first socket of a user module, the ingress data for packet processing; configure an code point for the second network interface, wherein the…
Service and topology exchange protocol having client-driven active-active repositories with high availability
Granted: June 4, 2024
Patent Number:
12003379
Techniques are disclosed for promulgating service information and topology information in a network in a high availability manner. An example device is configured to create a first service and topology exchange protocol (STEP) document. The first STEP document includes service information and topology information. The example device is configured to send the first STEP document to a first STEP repository for forwarding to at least one subscribing network device. The example device is…
Automatically troubleshooting and remediating network issues via connected neighbors
Granted: June 4, 2024
Patent Number:
12003363
An example system includes network devices at a site; and a network management system (NMS) that is configured to: identify a first network device of the plurality of network devices with which a network connection has been lost; identify, based on a network topology graph generated from the network data, one or more neighbor network devices of the plurality of network devices that are connected to the first network device; perform root cause analysis of the lost connection with the…
Power supply assembly with input module and power supply unit
Granted: May 28, 2024
Patent Number:
11994924
A power supply assembly includes an input module that includes one or more captive screws, one or more first power supply connection components, and one or more first input feed connection components; and a power supply unit that includes one or more captive screw connection switches, one or more second power supply connection components, and one or more second input feed connection components. The input module is to physically and electrically connect to the power supply unit; the one…
Selection of member ports in a link aggregation group
Granted: May 28, 2024
Patent Number:
11997025
This disclosure describes techniques that include selecting a member port of an aggregation bundle by evaluating utilization of paths, within a router, to member ports of an aggregation bundle. In one example, this disclosure describes a method that includes receiving network data to be output through an aggregation bundle having a plurality of member ports; identifying local member ports; identifying non-local member ports, each of the non-local member ports being reachable from the…
Automatic policy configuration for packet flows
Granted: May 28, 2024
Patent Number:
11997014
Techniques are disclosed for providing automatic policy configuration for packet flows. For example, a computing device comprises a virtual node and one or more virtual execution elements coupled to the virtual node. The computing device may also comprise one or more processors configured to: receive a packet originating from an application workload hosted on the one or more virtual execution elements and destined for a remote destination device; determine the packet is part of a new…
Virtual port group
Granted: May 28, 2024
Patent Number:
11997011
A virtual port group abstraction can facilitate automated configuration of devices in a data center. For example, a data center administrator can define a virtual port group to include a set of logical and physical interfaces for devices allocated to a particular department or other group within a company. An administrator for the department can then utilize a user interface to perform actions with respect to the virtual port group. The actions can include configuration actions, modeling…
