Patents Assigned to Juniper Network, Inc.
-
Patent number: 10742548Abstract: A first device may receive a packet that includes information identifying a path through a network. The first device may configure a header of the packet to include a first set of identifiers that identifies the path and the first device via which the packet was received. The first device may configure the header of the packet to include a second set of identifiers that identifies a set of devices associated with the path. The set of devices may be associated with providing the packet via a network. The first device may determine whether a counter associated with the first set of identifiers has been initialized. The first device may modify a value of the counter to record a metric. The first device may provide the packet to a second device. The first device may perform an action related to the packet or based on the value of the counter.Type: GrantFiled: June 2, 2017Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Harish Sitaraman, Zhifang Zeng, Shraddha Hegde
-
Patent number: 10742570Abstract: A device may receive, from the packet processing component and through an internal interface, a packet that includes a virtual routing and forwarding (VRF) interface identifier associated with a VRF interface of a virtual device. The internal interface may be associated with multiple external interfaces. The device may modify a value identifying an incoming interface via which the packet is received after receiving the packet that includes the VRF interface identifier. The modified value may be associated with the virtual device, and the modified value may allow an upper communication layer to determine that the packet is associated with the virtual device. The device may provide the packet to the upper communication layer after modifying the value identifying the incoming interface via which the packet is received to permit the upper communication layer to forward the packet to a destination.Type: GrantFiled: March 2, 2017Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Sreekanth Rupavatharam, Erin C. MacNeil, Hariprasad Shanmugam
-
Patent number: 10742690Abstract: Techniques are disclosed for implementing scalable policies across a plurality of categories that support application workloads. In one example, a policy controller assigns to the plurality of categories tags specifying one or more of a plurality of dimensions. The policy controller distributes a plurality of policies to policy agents for the plurality of categories. Each policy includes one or more policy rules, and each policy rule includes one or more tags specifying one or more of the plurality of dimensions. For each policy rule, the policy agents allow or deny a traffic flow between objects that belong to categories of the plurality of categories described by the one or more dimensions of a respective tag of the policy rule.Type: GrantFiled: November 21, 2017Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Prasad Miriyala, Anish Mehta
-
Patent number: 10742599Abstract: In general, techniques are described for conflict resolution in source packet routing in networking. For example, a first router receives a first advertisement originated in a first Interior Gateway Protocol (IGP) level. The first advertisement specifies a first prefix and a segment identifier (SID). The first router also receives a second advertisement originated in a second IGP level of the network. The second advertisement specifies a second prefix and the SID. Based on the first advertisement and the second advertisement specifying the same SID and based on the first IGP level having less visibility than the second IGP level, the first router selects the SID to be associated with a route to the first prefix.Type: GrantFiled: December 15, 2017Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Bharath RadhaKrishna Bhat, Shraddha Hegde, William Britto Arimboor Joseph
-
Patent number: 10742553Abstract: A network device may determine a control plane session type associated with a control plane session. The control plane session may be associated with the network device. The network device may determine whether the control plane session type is associated with a forwarding information base (FIB) cache on the network device. The network device may obtain, based on determining that the control plane session type is associated with the FIB cache, forwarding information associated with the control plane session. The forwarding information may be stored in a FIB, associated with the FIB cache, on the network device. The network device may store the forwarding information in the FIB cache and process the control plane session using the forwarding information stored in the FIB cache.Type: GrantFiled: May 29, 2018Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Reji Thomas, Jimmy Jose, Amit Arora, Sairam Neelam
-
Patent number: 10742607Abstract: A Software-defined Networking (SDN) controller of data center with application-aware firewall policy enforcement is disclosed. In one example, the SDN controller receives a request to initialize an instance of an application. in response to receiving the request, the SDN controller transmits, to a firewall component positioned between an SDN gateway device of the data center and a network external to the data center, a message. In some examples, the messing includes an application signature corresponding to the instance of the application and an application firewall policy corresponding to the application signature. The message instructs the firewall component to install the application firewall policy for application to network traffic for the instance of the application.Type: GrantFiled: February 6, 2018Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventor: Kumuthini Ratnasingham
-
Patent number: 10742770Abstract: Techniques are described for extending a two-way active measurement protocol (TWAMP) to enable measurement of service key performance indicators (KPIs) in a software defined network (SDN) and network function virtualization (NFV) architecture. The TWAMP extensions enable control messaging to be handled by a TWAMP control client executed on a centralized controller, and data messaging to be handled by a TWAMP session initiator executed on a separate network device. Techniques are also described for extending TWAMP to enable measurement of any of a plurality of service KPIs for a given service supported at a TWAMP server. The service KPIs may include one or more of keepalive measurements, round trip time measurements, path delay measurements, service latency measurements, or service load measurements. The TWAMP extensions for the service KPIs may be used in both conventional network architectures and in SDN and NFV architectures.Type: GrantFiled: July 9, 2018Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Peyush Gupta, Amit Kumar Agarwal, Srivathsa Sarangapani
-
Patent number: 10742501Abstract: An example method includes determining, by a network controller, based on a high-level data model, vendor-agnostic device information for a first network device, translating the vendor-agnostic device information into vendor-specific device information, sending, to the first network device, first configuration information included in the vendor-specific device information to cause the first network device to switch into a maintenance mode and enable diversion of network traffic from the first network device to a second network device, responsive to verifying that the first network device has diverted the traffic, initiating maintenance procedures on the first network device while the first network device is in the maintenance mode, and sending, to the first network device, second configuration information included in the vendor-specific device information to cause the first network device to switch out of the maintenance mode and enable reversion of network traffic from the second device to the first networkType: GrantFiled: December 21, 2018Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Jacopo Pianigiani, Michal Styszynski, Atul S Moghe, Joseph Williams, Sahana Sekhar Palagrahara Chandrashekar, Tong Jiang, Rishabh Ramakant Tulsian, Manish Krishnan, Soumil Ramesh Kulkarni, Vinod Nair, Jeba Paulaiyan, Sukhdev S. Kapur, Ashok Ganesan
-
Patent number: 10740162Abstract: A device may receive, by a kernel of the device and from a loadable kernel module of the device, information that instructs the kernel to invoke a callback function associated with the loadable kernel module based on an execution of a hook of the kernel. The device may receive, by the kernel of the device and from an application of the device, a socket application programming interface (API) call. The socket API call may include control information. The device may execute, by the kernel of the device, the hook based on receiving the socket API call. The device may invoke, by the kernel of the device, the callback function associated with the loadable kernel module based on executing the hook to permit a functionality associated with the callback function to be provided. The kernel may provide the control information, associated with the socket API call, to the callback function as an argument.Type: GrantFiled: October 31, 2018Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Erin C. MacNeil, Hariprasad Shanmugam, Sreekanth Rupavatharam
-
Patent number: 10742533Abstract: A network device may include a packet generator device implemented in hardware. The packet generator device may include a control component, a payload generation component, and an interface element to receive test packet generation information. The test packet generation information may include one or more control inputs, header data that is to be included in one or more test packets, and information regarding a data pattern that is to be included in payload data of the one or more test packets. The one or more control inputs, when provided to the control component, may cause the control component to control the payload generation component to generate the one or more test packets based on the header data and the information regarding the data pattern.Type: GrantFiled: February 9, 2018Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Alam Yadav, Karthikeyan Veerabadran, Eswaran Srinivasan, Manjunath Mandigatta Navilappa, Balaji Mohan, Raghuraman Thirumalairajan, Dhairyashil Patil
-
Patent number: 10739539Abstract: An example photonic integrated circuit includes a transmitter circuit with a optical communication path to an optical coupler configured to couple with an optical fiber. The optical communication path has a propagation direction away from the transmitter circuit and towards the optical coupler. A counter-propagating tap diverts light sent by a light source backward against the propagation direction of the optical communication path. A photodiode receives the diverted light and measures its power level. The photodiode generates a feedback signal for the optical coupler and provides the feedback signal to the optical coupler. The optical coupler receives the feedback signal and adjusts a coupling alignment of the optical communication path to the optical fiber based on the feedback signal, which indicates the measured power level of the diverted counter-propagating light.Type: GrantFiled: March 15, 2019Date of Patent: August 11, 2020Assignee: Juniper Networks, Inc.Inventors: Brandon W. Buckley, Brian Robert Koch, John Garcia, Jared Bauters, Sudharsanan Srinivasan, Anand Ramaswamy
-
Patent number: 10732961Abstract: A disclosed method may include (1) identifying an old version of software that is running on a network device, (2) receiving a new version of the software that is to replace the old version of the software during an in-service software upgrade, and then (3) performing the in-service software upgrade on the network device by making a system call that (A) loads the new version of the software onto the network device as the old version of the software continues to run and (B) transfers control of the network device from the old version of the software to the new version of the software by booting the new version of the software without shutting down the network device. Various other systems and methods are also disclosed.Type: GrantFiled: December 2, 2017Date of Patent: August 4, 2020Assignee: Juniper Networks, IncInventors: Siva Madasamy, Shyamshankar Dharmarajan
-
Patent number: 10735312Abstract: An apparatus includes a first edge device configured to receive a data unit destined to a peripheral processing device that is operatively coupled to a network interconnect via a LAG associated with a second edge device and a third edge device. The first edge device is configured to select an edge device set that includes the third edge device and excludes the second edge device, from a group of edge device sets. Each edge device set from the group of edge device sets is directly coupled to the peripheral processing device. The first edge device is configured to send an instance of the data unit to each edge device from the edge device set such that the third edge device sends an instance of the data unit to the peripheral processing device based on a selection method that omits ports on the second edge device as potential selections.Type: GrantFiled: May 24, 2018Date of Patent: August 4, 2020Assignee: Juniper Networks, Inc.Inventor: Shriram Srinivasan
-
Patent number: 10735469Abstract: The disclosed apparatus may include a storage device that stores a set of security policies. In this example, the apparatus may also include a physical processor that is communicatively coupled to the storage device. This physical processor may (1) analyze an unknown flow of packets that are destined for a target node within the network, (2) identify at least one characteristic of the unknown flow of packets based at least in part on the analysis, (3) predictively select, from the set of security policies stored in the storage device, a security policy to apply to the unknown flow of packets based at least in part on the characteristic of the unknown flow of packets, and then (4) perform at least one security action defined by the predictively selected security policy on the unknown flow of packets. Various other apparatuses, systems, and methods are also disclosed.Type: GrantFiled: July 1, 2017Date of Patent: August 4, 2020Assignee: Juniper Networks, IncInventor: Craig Dods
-
Patent number: 10735251Abstract: A first maintenance endpoint (MEP) device may identify that a first interface of the first MEP device is associated with a connectivity failure. The first MEP device may provide, to a second MEP device, a first continuity check message (CCM), that includes a MEP identifier of the first MEP device. The first CCM may cause the second MEP device to designate a second interface of the second MEP device as being offline. The first MEP device may receive, from the second MEP device, a second CCM, that includes the MEP identifier of the first MEP device and information indicating that the second interface of the second MEP device is offline. The first MEP device may execute a rule to avoid a deadlock situation based on the second CCM including the MEP identifier of the first MEP device.Type: GrantFiled: January 25, 2019Date of Patent: August 4, 2020Assignee: Juniper Networks, Inc.Inventors: Vamsi Krishna A, Sudheendra Bellamkonda, Paleti Venkata Ramana, Prabhu Raj V.K., Viswanath KJ
-
Apparatus, system, and method for debugging network devices based on the contents of dropped packets
Patent number: 10735282Abstract: A disclosed method may include (1) detecting, at a network stack of a network device, a packet that (A) is destined at least intermediately for a network interface of the network device and (B) has been flagged by the network stack to be dropped instead of forwarded to the network interface based on at least one characteristic of the packet, (2) instead of dropping the packet, forwarding the packet to an alternative network interface of the network device that analyzes content of packets, (3) identifying, at the alternative network interface, the characteristic of the packet, and then (4) executing, based on the characteristic of the packet, at least one action in connection with the packet that improves the performance of the network device. Various other apparatuses, systems, and methods are also disclosed.Type: GrantFiled: June 29, 2018Date of Patent: August 4, 2020Assignee: Juniper Networks, IncInventors: Prashant Singh, Sreekanth Rupavatharam, Erin C. MacNeil -
Patent number: 10732691Abstract: The disclosed method may include (1) monitoring, while a computing device receives power from an external power supply, (A) the amount of power consumed by the computing device and (B) the amount of power provided to the computing device by the external power supply, (2) detecting that the amount of power provided to the computing device exceeds the amount of power consumed by the computing device by at least a certain threshold, (3) determining, based on the amount of power provided to the computing device exceeding the amount of power consumed by the computing device by the certain threshold, that the computing device is experiencing a malfunction, and then (4) mitigating potential damage to the computing device due to the malfunction by at least partially reducing the amount of power provided to the computing device from the external power supply. Various other apparatuses, systems, and methods are disclosed.Type: GrantFiled: August 31, 2018Date of Patent: August 4, 2020Assignee: Juniper Networks, IncInventors: Franklin D. Boyden, David K. Owen, Anupama Padminidevi Karthikeyan Nair, Jaspal S. Gill, Katsuhiro Okamura, Michael D. Savini
-
Patent number: 10733000Abstract: The disclosed computer-implemented method may include (1) determining that a user is viewing a user interface of an application, (2) detecting that the user has requested assistance with interacting with a specific portion of content displayed within the user interface, and then (3) assisting the user with interacting with the specific portion of content by (A) identifying, within a repository of software documentation that describes features of the application, information relevant to utilizing the specific portion of content and (B) dynamically integrating the relevant information into the user interface. Various other methods, systems, and computer-readable media are also disclosed.Type: GrantFiled: November 21, 2017Date of Patent: August 4, 2020Assignee: Juniper Networks, IncInventor: Neha Singh
-
Patent number: 10735125Abstract: An apparatus includes a first input port, a first switch, and a second switch. The first switch and the second input port are in optical communication with the first input port. The apparatus also includes a second input port, a third switch, and a fourth switch. The third switch and the fourth switch are in optical communication with the second input port. Each switch is switchable between a first state to pass optical signals and a second state to block optical signals. The apparatus also includes a first combiner in optical communication with the first input port via the first switch and the second input port via the third switch. The apparatus also includes a second combiner in optical communication with the first input port via the second switch and the second input port via the fourth switch.Type: GrantFiled: September 30, 2017Date of Patent: August 4, 2020Assignee: Juniper Networks, Inc.Inventor: Kevan Peter Jones
-
Patent number: 10733067Abstract: The disclosed method may include (1) identifying, within a virtual network, a primary virtual network device and a backup virtual network device that is to handle traffic directed to the primary virtual network device following a failure of the primary virtual network device, (2) installing, on the primary virtual network device, a first virtual controller that manages the primary virtual network device, (3) installing, on the backup virtual network device, a second virtual controller that manages the backup virtual network device, (4) directing, by the first virtual controller, the second virtual controller to replicate a state of the primary virtual network device, (5) detecting the failure of the primary virtual network device, and then in response to detecting the failure of the primary virtual network device, (6) directing, by the first virtual controller, the second virtual controller to facilitate handling the traffic directed to the primary virtual network device.Type: GrantFiled: April 14, 2018Date of Patent: August 4, 2020Assignee: Juniper Networks, Inc.Inventors: Abhinav Tandon, Kaustubh Shantanu, Kamal Kumar Tiwari, Siva Krishna Gudivada, Kapil Rajendra Neeralgi