Patents Assigned to Juniper Network, Inc.
  • Data structure-less distributed fabric multicast
    Patent number: 8325726
    Abstract: A network device receives a packet with a multicast nexthop identifier, and creates a mask that includes addresses of egress packet forwarding engines, of the network device, to which to provide the packet. The network device divides the mask into two portions, generates two copies of the packet, provides a first portion of the mask in a first copy of the packet, and provides a second portion of the mask in a second copy of the packet. The network device also forwards the first copy of the packet to an address of a first egress packet forwarding engine provided in the first portion of the mask, and forwards the second copy of the packet to an address of a second egress packet forwarding engine provided in the second portion of the mask.
    Type: Grant
    Filed: February 9, 2010
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Alex Baban, Jean-Marc Frailong, Kireeti Kompella, Nitin Kumar, Jamsheed Wania, Murtuza Attarwala
  • Ordering write bursts to memory
    Patent number: 8327057
    Abstract: A device may receive requests intended for a memory that includes a number of banks, determine a number of the requests intended for each of the banks, determine an order for the requests based on the determined number of the requests intended for each of the banks, and send one of the requests to the memory based on the determined order.
    Type: Grant
    Filed: July 27, 2007
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Anjan Venkatramani, Srinivas Perla, John Keen
  • IDENTIFYING SCRIPTING FORM OF TEXT COMMANDS FOR A NETWORK DEVICE
    Publication number: 20120303758
    Abstract: In one example, a device includes a network interface configured to present a command interface to receive input comprising a command and an indicator, wherein the command conforms to an execution format and specifies one or more parameters to be applied during execution of the command, and wherein the indicator indicates, at least in part, that the command is not to be executed, and a control unit configured to reformat, based on the indicator, the command to conform to an extensible markup language (XML) format such that the reformatted command complies with a syntax supported by a script processing module of the network device and specifies the command and the one or more parameters in the XML format in a format that can be executed by the script processing module, and to output the reformatted command via the command interface. Thus, the device may provide XML formatted equivalents for commands.
    Type: Application
    Filed: August 17, 2011
    Publication date: November 29, 2012
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Arockia Anbarasan, Philip A. Shafer
  • FAST RESTORATION FOR PROVIDER EDGE NODE AND ACCESS LINK FAILURES
    Publication number: 20120300620
    Abstract: A first network device creates a protection path to a second network device associated with a first service site, and creates a pseudowire between the first service site and a second service site via the first network device and the second network device. The first network device also detects a failure between the first network device and the first service site, and forwards traffic, provided by the pseudowire between the first service site and the second service site, via the protection path. The second network device uses the traffic on the protection path as a trigger to activate a link between the second network device and the first service site.
    Type: Application
    Filed: July 31, 2012
    Publication date: November 29, 2012
    Applicant: Juniper Networks, Inc.
    Inventors: Bhupesh Kothari, Nischal Sheth
  • FIREWALL SECURITY BETWEEN NETWORK DEVICES
    Publication number: 20120304251
    Abstract: A security device may be interconnected, via multiple links, between multiple network devices in a network. The firewall device may include multiple input interfaces that receive data units from a first network device destined for a second network device of the multiple network devices, identify a session associated with each of the data units, and process the data units in accordance with the identified sessions and a security policy.
    Type: Application
    Filed: August 10, 2012
    Publication date: November 29, 2012
    Applicant: Juniper Networks, Inc.
    Inventors: Changming LIU, Lee Chik Cheung
  • FAST CONVERGENCE ON CHILD LINK FAILURES AND WEIGHTED LOAD BALANCING OF AGGREGATE ETHERNET/SONET BUNDLES
    Publication number: 20120300674
    Abstract: A network device provides a selector list that includes indices of child nexthops associated with the network device, where each of the child nexthops is associated with a corresponding child link provided in an aggregated bundle of child links. The network device also receives an indication of a failure of a child link in the aggregated bundle of child links, and removes, from the selector list, an index of a child nexthop associated with the failed child link. The network device further receives probabilities associated with the child links of the aggregated bundle of child links. Each of the probabilities indicates a probability of a packet exiting the network device on a child link. The network device also creates a distribution table based on the probabilities associated with the child links, and rearranges values provided in the distribution table.
    Type: Application
    Filed: July 30, 2012
    Publication date: November 29, 2012
    Applicant: Juniper Networks, Inc.
    Inventors: Nitin Kumar, Alex Baban, Alok Khambatkone
  • Increasing mean time between failures for power supplies
    Patent number: 8321698
    Abstract: A redundant power supply may obtain a rule for increasing mean time between failures (MTBF) for a first internal power supply and a second internal power supply connected to an electronic device, apply the rule to the first and second power supplies, activate the second internal power supply based on the rule to permit the second internal power supply to provide power to the electronic device, and deactivate the first internal power supply based on the rule.
    Type: Grant
    Filed: January 25, 2011
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Ankur Singla, Surendra Patel, Harshad Nakil
  • Malware modeling detection system and method for mobile platforms
    Patent number: 8321941
    Abstract: A system and method for detecting malware by modeling the behavior of malware and comparing a suspect executable with the model. The system and method extracts feature elements from malware-infected applications, groups the feature elements into feature sets, and develops rules describing a malicious probability relationship between the feature elements. Using malware-free and malware-infected applications as training data, the system and method heuristically trains the rules and creates a probability model for identifying malware. To detect malware, the system and method scans the suspect executable for feature sets and applies the results to the probability model to determine the probability that the suspect executable is malware-infected.
    Type: Grant
    Filed: April 6, 2007
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: George Tuvell, Deepak Venugopal, Guoning Hu
  • Dynamic queue management
    Patent number: 8320247
    Abstract: A method may include receiving a data unit and identifying a state of a memory storing data units. The method may include selecting a threshold value having a first threshold unit or a second threshold unit based on the state of the memory. The method may include comparing the threshold value to a queue state using the first threshold unit if the memory is in a first state. The method may include comparing the threshold value to the queue state using the second threshold unit if the memory is in a second state.
    Type: Grant
    Filed: April 23, 2010
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Paul J. Giacobbe, John C. Carney
  • Wireless load balancing across bands
    Patent number: 8320949
    Abstract: A technique for wireless load balancing involves providing a wireless infrastructure that creates a target band option and helps push clients toward that band. An example of a method according to the technique involves, by way of example but not limitation, responding only to probe requests on a first band when a client is detected on the first band and a second band. For example, using the techniques described herein, a platform that is both 802.11a and 802.11b/g compliant may attempt to connect preferentially to the 802.11b/g band of a wireless network, and be migrated toward the 802.11a band instead.
    Type: Grant
    Filed: October 13, 2011
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Sudheer Poorna Chandra Matta
  • Application identification
    Patent number: 8321595
    Abstract: A method may include receiving a communication from a client device and identifying a port number, a protocol and a destination associated with the communication. The method may also include identifying a first application being executed by the first client device based on the port number, the protocol and the destination associated with the first communication.
    Type: Grant
    Filed: April 22, 2011
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Krishna Narayanaswamy, Siying Yang
  • Arbiter circuit and method of carrying out arbitration
    Patent number: 8320379
    Abstract: A method of carrying out arbitration in a packet exchanger including an input buffer temporarily storing a packet having arrived at an input port, and a packet switch which switches a packet between a specific input port and a specific output port, includes the steps of (a) concurrently carrying out a first plurality of sequences in each of the sequences basic processes for at least one of the input buffer and the output port are carried out in a predetermined order, and (b) making an allowance in each of the sequences for packets to be output through output through output ports at different times from one another.
    Type: Grant
    Filed: July 30, 2010
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Masayuki Shinohara
  • Thermal management of electronic devices
    Patent number: 8318546
    Abstract: Thermal management is provided for a device. The device may include a substrate having a mounting area on a first surface of the substrate. The device may also include first thermal vias extending from the mounting area to at least an interior of the substrate. The device may also include at least one thermal plane substantially parallel to the first surface of the substrate, the at least one thermal plane being in thermal contact with at least one of the first thermal vias. The device may also include a heat sink attachment area, and second thermal vias extending from the heat sink attachment area to the interior of the substrate, the at least one thermal plane being in thermal contact with the second thermal vias.
    Type: Grant
    Filed: April 20, 2011
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: David J. Lima
  • Optimization of packet buffer memory utilization
    Patent number: 8321753
    Abstract: A method performed by an I/O unit connected to another I/O unit in a network device. The method includes receiving a packet; segmenting the packet into a group of data blocks; storing the group of data blocks in a data memory; generating data protection information for a data block of the group of data blocks; creating a control block for the data block; storing, in a control memory, a group of data items for the control block, the group of data items including information associated with a location, of the data block, within the data memory and the data protection information for the data block; performing a data integrity check on the data block, using the data protection information, to determine whether the data block contains a data error; and outputting the data block when the data integrity check indicates that the data block does not contain a data error.
    Type: Grant
    Filed: April 13, 2010
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Pradeep Sindhu, Srihari Vegesna
  • Systems and methods for implementing virtual switch planes in a physical switch fabric
    Patent number: 8320369
    Abstract: A switching device includes multiple interfaces and a switch fabric. The switch fabric includes switch integrated circuits arranged in a number of stages. Multiple virtual switch planes may be implemented in the switch fabric. Data traffic received at the interfaces is selectively assigned to different ones of the virtual switch planes.
    Type: Grant
    Filed: June 6, 2008
    Date of Patent: November 27, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Philippe LaCroute, Matthew A Tucker, John D Weisbloom, Anjan Venkatramani, Jayabharat Boddu, Stefan Dyckerhoff
  • FILTERING AND ROUTE LOOKUP IN A SWITCHING DEVICE
    Publication number: 20120297083
    Abstract: Methods and devices for processing packets are provided. The processing device may Include an input interface for receiving data units containing header information of respective packets; a first module configurable to perform packet filtering based on the received data units; a second module configurable to perform traffic analysis based on the received data units; a third module configurable to perform load balancing based on the received data units; and a fourth module configurable to perform route lookups based on the received data units.
    Type: Application
    Filed: June 29, 2012
    Publication date: November 22, 2012
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Dennis C. FERGUSON, Rajiv PATEL, Gerald CHEUNG, Pradeep SINDHU
  • DONOR/BORROWER INCIDENT NOTIFICATION FOR DAEMONS
    Publication number: 20120297047
    Abstract: A device may include a donor to maintain a pool of addresses; a group of borrowers to obtain addresses from the donor; a daemon that has registered an interest in one or more borrowers in the group of borrowers; and a library to maintain first relationships between donors and borrowers that have obtained addresses from the donors, maintain second relationships between daemons and borrowers in which the daemons have registered an interest, receive a notification regarding an incident associated with the donor, identify, in response to the notification, the group of borrowers based on the first relationships, determine that the daemon has registered an interest in the one or more borrowers in the group of borrowers based on the second relationships, and output, to the daemon, a notification regarding the incident associated with the donor.
    Type: Application
    Filed: July 31, 2012
    Publication date: November 22, 2012
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Kaushik GHOSH, Bharani CHADALAVADA, Vinay NALLAMOTHU
  • Routing device having integrated MPLS-aware firewall with virtual security system support
    Patent number: 8316435
    Abstract: An MPLS-aware firewall allows firewall security policies to be applied to MPLS traffic. The firewall, which may be integrated within a routing device, can be configured into multiple virtual security systems. The routing device provides a user interface by which a user specifies one or more zones to be recognized by the integrated firewall when applying stateful firewall services to the packets. The user interface allows the user to define different zones and policies for different ones of the virtual security systems. In addition, the user interface supports a syntax that allows the user to define the zones for the firewall by specifying the customer VPNs as interfaces associated with the zones. The routing device generates mapping information for the integrated firewall to map the customer VPNs to specific MPLS labels for the MPLS tunnels carrying the customer's traffic.
    Type: Grant
    Filed: November 14, 2008
    Date of Patent: November 20, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Kannan Varadhan, Joao Campelo F. N. Gomes
  • Maintaining spatial ordering in firewall filters
    Patent number: 8316151
    Abstract: A network device may be configured to filter network traffic using multiple filters bound to different interfaces, such as different ports or other logical interfaces associated with the network device. Multiple filters may be merged to obtain a number of merged filter sets. A rank may be calculated for the merged filter sets and used to maintain a required ordering of the merged filter sets when performing a lookup.
    Type: Grant
    Filed: February 25, 2009
    Date of Patent: November 20, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Anand Ammundi
  • Adaptive transition between layer three and layer four network tunnels
    Patent number: 8316226
    Abstract: Adaptive failover occurs between a Layer Three (L3) based network tunnel and a Layer Four (L4) based network tunnel. An example of a L4 based network tunnel is a Secure Sockets Layer (SSL) tunnel and an example of a L3 based network tunnel is an Internet Protocol Security (IPSec) tunnel. SSL tunnels work through most firewalls and proxies, but may introduce latency and other performance problems. IPSec tunnels provide a more efficient performance, but may not work through some firewalls and proxies. The techniques include dynamically selecting a tunneling protocol in order to achieve a more efficient network tunnel performance when possible while maintaining consistent L3 connectivity from a variety of remote network environments.
    Type: Grant
    Filed: September 14, 2005
    Date of Patent: November 20, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Shekhar Kshirsagar, James Wood, David W. Young, Vamsi K. Anne, Vadim Egorov, Christopher N. Thomas