Patents by Inventor Sameer Kittur
Sameer Kittur has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11936726Abstract: Methods and systems for implementing traffic mirroring for network telemetry are disclosed. An embodiment of a method for implementing traffic mirroring for network telemetry involves identifying network traffic at a network appliance that is to be subjected to traffic mirroring for network telemetry, and selecting from available options of transmitting enhanced mirrored network traffic from the network appliance to a collector, wherein the enhanced mirrored network traffic is generated at the network appliance by at least one of compressing and encrypting the network traffic, and transmitting mirrored network traffic from the network appliance to the collector without compressing or encrypting the network traffic.Type: GrantFiled: October 12, 2021Date of Patent: March 19, 2024Assignee: Pensando Systems Inc.Inventors: Varagur Chandrasekaran, Sameer Kittur Subrahmanya, Balakrishnan Raman, Tuyen Quoc, Murty Subba Rama Chandra Kotha
-
Patent number: 11818039Abstract: A network appliance can be configured for storing a plurality of flow table entries in a flow table of a match-action pipeline, wherein the match-action pipeline is implemented via a packet processing circuit configured to process a plurality of network traffic flows associated with the plurality of flow table entries. An extended packet processing pipeline of the network appliance can read a flow table entry of the flow table. The extended packet processing pipeline can be implemented via a pipeline circuit. The extended packet processing pipeline can determine that a network traffic flow associated with the flow table entry is expired or terminated. The network appliance can delete the flow table entry from the flow table by processing a traffic flow deletion operation after determining that the network traffic flow is expired or terminated.Type: GrantFiled: August 29, 2022Date of Patent: November 14, 2023Assignee: PENSANDO SYSTEMS INC.Inventors: Sameer Kittur Subrahmanya, Murty Kota, Tuyen Quoc, Harinadh Nagulapalli
-
Publication number: 20230224217Abstract: A network appliance can continue operation at a degraded level during an upgrade that requires less free pipeline memory than other upgrade techniques. The network appliance has a control plane and has a data plane with a packet processing pipeline circuit. Before the upgrade, the control plane has configured the packet processing pipeline circuit to process a network flow. The packet processing pipeline may be halted in order to perform a pipeline upgrade during which the packet processing pipeline circuit's pipeline memory is cleared. The packet processing pipeline circuit is restarted after the pipeline upgrade after which the control plane can reconfigure the packet processing pipeline circuit to process the network flow. The packet processing pipeline circuit can therefore process the network flow after the pipeline upgrade.Type: ApplicationFiled: January 11, 2022Publication date: July 13, 2023Inventors: Sameer Kittur Subrahmanya, Krishna Doddapaneni
-
Publication number: 20230111744Abstract: Methods and systems for implementing traffic mirroring for network telemetry are disclosed. An embodiment of a method for implementing traffic mirroring for network telemetry involves identifying network traffic at a network appliance that is to be subjected to traffic mirroring for network telemetry, and selecting from available options of transmitting enhanced mirrored network traffic from the network appliance to a collector, wherein the enhanced mirrored network traffic is generated at the network appliance by at least one of compressing and encrypting the network traffic, and transmitting mirrored network traffic from the network appliance to the collector without compressing or encrypting the network traffic.Type: ApplicationFiled: October 12, 2021Publication date: April 13, 2023Inventors: Varagur Chandrasekaran, Sameer Kittur Subrahmanya, Balakrishnan Raman, Tuyen Quoc, Murty Subba Rama Chandra Kotha
-
Publication number: 20220417142Abstract: A network appliance can be configured for storing a plurality of flow table entries in a flow table of a match-action pipeline, wherein the match-action pipeline is implemented via a packet processing circuit configured to process a plurality of network traffic flows associated with the plurality of flow table entries. An extended packet processing pipeline of the network appliance can read a flow table entry of the flow table. The extended packet processing pipeline can be implemented via a pipeline circuit. The extended packet processing pipeline can determine that a network traffic flow associated with the flow table entry is expired or terminated. The network appliance can delete the flow table entry from the flow table by processing a traffic flow deletion operation after determining that the network traffic flow is expired or terminated.Type: ApplicationFiled: August 29, 2022Publication date: December 29, 2022Inventors: Sameer Kittur SUBRAHMANYA, Murty KOTA, Tuyen QUOC, Harinadh NAGULAPALLI
-
Patent number: 11456952Abstract: A network appliance can be configured for storing a plurality of flow table entries in a flow table of a match-action pipeline, wherein the match-action pipeline is implemented via a packet processing circuit configured to process a plurality of network traffic flows associated with the plurality of flow table entries. An extended packet processing pipeline of the network appliance can read a flow table entry of the flow table. The extended packet processing pipeline can be implemented via a pipeline circuit. The extended packet processing pipeline can determine that a network traffic flow associated with the flow table entry is expired or terminated. The network appliance can delete the flow table entry from the flow table by processing a traffic flow deletion operation after determining that the network traffic flow is expired or terminated.Type: GrantFiled: August 4, 2020Date of Patent: September 27, 2022Assignee: Pensando Systems, Inc.Inventors: Sameer Kittur Subrahmanya, Murty Kota, Tuyen Quoc, Harinadh Nagulapalli
-
Patent number: 11431681Abstract: Described are platforms, systems, and methods for actuating transmission control protocol/Internet protocol (TCP/IP) through a method comprises: identifying a computer workload during a handshake process for establishing a network connection with a remote host; configuring, based on the computer workload, one or more TCP/IP parameters of the network connection; and completing the handshake process to establish the network connection with the remote host.Type: GrantFiled: April 7, 2020Date of Patent: August 30, 2022Assignee: PENSANDO SYSTEMS INC.Inventors: Sameer Kittur, Raghava Kodigenahalli Sivaramu, Alok Rathore, Vijay Sampath, Vipin Jain
-
Patent number: 11394700Abstract: Described are platforms, systems, and methods for providing an in-line, transparent Transmission Control Protocol (TCP)/Transport Layer Security (TLS) proxy. In one aspect, a programmable input output (IO) device comprises at least one advanced reduced instruction set computer (RISC) machine (ARM) core communicably coupled to at least one central processing unit (CPU) core of a host device; a programmable P4 pipeline comprising a cryptographic offload subsystem; and a memory unit. The programmable IO device executing instruction stored on the memory unit comprising: establishing a session for an incoming TCP connection received from a remote host via the at least one ARM core; processing data packets received from the remote host via the programmable P4 pipeline; decrypting the received data packets via the cryptographic offload subsystem; and providing the decrypted data packets to the host device.Type: GrantFiled: January 31, 2020Date of Patent: July 19, 2022Assignee: PENSANDO SYSTEMS INC.Inventors: Sameer Kittur, Raghava Kodigenahalli Sivaramu, Alok Rathore, Vijay Sampath, Vipin Jain
-
Patent number: 11374859Abstract: A network appliance can queue a first packet and a second packet of a network traffic flow in an input queue of a match-action pipeline. The match-action pipeline can be implemented via a packet processing circuit of the network appliance and can be configured to process a plurality of network traffic flows. Submitting the first packet to the match-action pipeline can cause a first flow miss. The second packet can be moved to a burst queue of the network appliance and a match-action configuration can be generated based on the first packet. The second packet can be moved from the burst queue to the input queue after the match-action pipeline is configured with the match-action configuration. The match-action pipeline can then process the second packet.Type: GrantFiled: August 4, 2020Date of Patent: June 28, 2022Assignee: Pensando Systems, Inc.Inventors: Sameer Kittur Subrahmanya, Vijay Sampath, Sarat Kamisetty, Pirabhu Raman, Krishna Doddapaneni, Raghava Kodigenahalli Sivaramu
-
Patent number: 11249805Abstract: Methods and systems for memory resource allocation are disclosed. In an embodiment, a method for memory resource allocation involves reading a pool-specific configuration record from an array of memory mapped pool-specific configuration records according to a memory resource allocation request that is held in an address register of a memory mapped register interface, performing a memory resource allocation operation to service the memory resource allocation request, wherein performing the memory resource allocation operation involves interacting with a resource list according to a pointer in the pool-specific configuration record, advancing the pointer after the interaction, and updating the pointer in the pool-specific configuration record with the advanced pointer.Type: GrantFiled: May 26, 2020Date of Patent: February 15, 2022Assignee: Pensando Systems, Inc.Inventors: Michael B. Galles, Alessandro Fulli, Sameer Kittur Subrahmanya
-
Publication number: 20220045945Abstract: A network appliance can be configured for storing a plurality of flow table entries in a flow table of a match-action pipeline, wherein the match-action pipeline is implemented via a packet processing circuit configured to process a plurality of network traffic flows associated with the plurality of flow table entries. An extended packet processing pipeline of the network appliance can read a flow table entry of the flow table. The extended packet processing pipeline can be implemented via a pipeline circuit. The extended packet processing pipeline can determine that a network traffic flow associated with the flow table entry is expired or terminated. The network appliance can delete the flow table entry from the flow table by processing a traffic flow deletion operation after determining that the network traffic flow is expired or terminated.Type: ApplicationFiled: August 4, 2020Publication date: February 10, 2022Inventors: Sameer Kittur SUBRAHMANYA, Murty KOTA, Tuyen QUOC, Harinadh NAGULAPALLI
-
Publication number: 20220045940Abstract: A network appliance can queue a first packet and a second packet of a network traffic flow in an input queue of a match-action pipeline. The match-action pipeline can be implemented via a packet processing circuit of the network appliance and can be configured to process a plurality of network traffic flows. Submitting the first packet to the match-action pipeline can cause a first flow miss. The second packet can be moved to a burst queue of the network appliance and a match-action configuration can be generated based on the first packet. The second packet can be moved from the burst queue to the input queue after the match-action pipeline is configured with the match-action configuration. The match-action pipeline can then process the second packet.Type: ApplicationFiled: August 4, 2020Publication date: February 10, 2022Inventors: Sameer Kittur SUBRAHMANYA, Vijay SAMPATH, Sarat KAMISETTY, Pirabhu RAMAN, Krishna DODDAPANENI, Raghava Kodigenahalli SIVARAMU
-
Publication number: 20210373955Abstract: Methods and systems for memory resource allocation are disclosed. In an embodiment, a method for memory resource allocation involves reading a pool-specific configuration record from an array of memory mapped pool-specific configuration records according to a memory resource allocation request that is held in an address register of a memory mapped register interface, performing a memory resource allocation operation to service the memory resource allocation request, wherein performing the memory resource allocation operation involves interacting with a resource list according to a pointer in the pool-specific configuration record, advancing the pointer after the interaction, and updating the pointer in the pool-specific configuration record with the advanced pointer.Type: ApplicationFiled: May 26, 2020Publication date: December 2, 2021Inventors: Michael B. GALLES, Alessandro FULLI, Sameer Kittur SUBRAHMANYA
-
Publication number: 20210314303Abstract: Described are platforms, systems, and methods for actuating transmission control protocol/Internet protocol (TCP/IP) through a method comprises: identifying a computer workload during a handshake process for establishing a network connection with a remote host; configuring, based on the computer workload, one or more TCP/IP parameters of the network connection; and completing the handshake process to establish the network connection with the remote host.Type: ApplicationFiled: April 7, 2020Publication date: October 7, 2021Inventors: Sameer KITTUR, Raghava Kodigenahalli SIVARAMU, Alok RATHORE, Vijay SAMPATH, Vipin JAIN
-
Publication number: 20210243169Abstract: Described are platforms, systems, and methods for providing an in-line, transparent Transmission Control Protocol (TCP)/Transport Layer Security (TLS) proxy. In one aspect, a programmable input output (IO) device comprises at least one advanced reduced instruction set computer (RISC) machine (ARM) core communicably coupled to at least one central processing unit (CPU) core of a host device; a programmable P4 pipeline comprising a cryptographic offload subsystem; and a memory unit. The programmable IO device executing instruction stored on the memory unit comprising: establishing a session for an incoming TCP connection received from a remote host via the at least one ARM core; processing data packets received from the remote host via the programmable P4 pipeline; decrypting the received data packets via the cryptographic offload subsystem; and providing the decrypted data packets to the host device.Type: ApplicationFiled: January 31, 2020Publication date: August 5, 2021Inventors: Sameer KITTUR, Raghava Kodigenahalli SIVARAMU, Alok RATHORE, Vijay SAMPATH, Vipin JAIN
-
Patent number: 10177977Abstract: A method for deployment and upgrade of network devices in a network environment includes receiving (for example, at a switch being activated in the network environment), Dynamic Host Configuration Protocol (DHCP) information (for example, from a DHCP server in the network environment). The DHCP information includes a filename and location of a script file. The method further includes downloading the script file from a script server in the network environment and executing the script file. Executing the script file includes copying a configuration file and one or more software images to a memory element of the switch, where the configuration file includes configuration settings relevant to at least a switch identity, and a switch location in the network environment, installing the software images on the switch, rebooting the switch, applying configuration settings from the configuration file to the software images, and saving the configuration file to the memory element.Type: GrantFiled: February 2, 2016Date of Patent: January 8, 2019Assignee: CISCO TECHNOLOGY, INC.Inventors: Lucien M. Avramov, Sameer Kittur, Chandrasekhar V. Modumudi, Praful G. Bhaidasna
-
Patent number: 9286047Abstract: A method for deployment and upgrade of network devices in a network environment includes receiving (for example, at a switch being activated in the network environment), Dynamic Host Configuration Protocol (DHCP) information (for example, from a DHCP server in the network environment). The DHCP information includes a filename and location of a script file. The method further includes downloading the script file from a script server in the network environment and executing the script file. Executing the script file includes copying a configuration file and one or more software images to a memory element of the switch, where the configuration file includes configuration settings relevant to at least a switch identity, and a switch location in the network environment, installing the software images on the switch, rebooting the switch, applying configuration settings from the configuration file to the software images, and saving the configuration file to the memory element.Type: GrantFiled: February 13, 2013Date of Patent: March 15, 2016Assignee: CISCO TECHNOLOGY, INC.Inventors: Lucien M. Avramov, Sameer Kittur, Chandrasekhar V. Modumudi, Praful G. Bhaidasna