Abstract: In general, techniques are described for a creating a virtual network router via a user interface (UI) presented by a software defined network (SDN) architecture. A network controller comprising a memory and processing circuitry may perform the techniques. The memory may store the UI, while the processing circuitry may present the UI and execute a control node. The UI may graphically represent a topology of a network including first and second virtual networks. The UI may dynamically generate a graphical element representative of a virtual network router by which to interconnect the first and second virtual networks. The virtual network router may represent a logical abstraction of one or more policies that cause one or more of import and export of routing information between the first and second virtual networks. The control node configures the first virtual network and the second virtual network according to the one or more policies.

Abstract: A system comprising one or more processors configured to receive a query indicating one or more of filtering information, sorting information, or joining information and retrieve, from a first datastore, an intent graph for a network, wherein the intent graph comprises nodes representing components of the network and edges representing connections between the components. The one or more processors being further configured to select a subset of a plurality of network devices of the network based on the query and the intent graph retrieved from the first datastore and retrieve, from a second datastore, data received from the plurality of network devices of the network. The one or more processors being further configured to determine a response to the query based on the selected subset of the plurality of network devices and the data retrieved from the second datastore and output the response to the query.

Abstract: A first network device may receive a first advertisement of a network destination from a second network device and may detect multihoming with the second network device. The second network device may detect the multihoming with the first network device. The first network device and the second network may enable egress protection for the multihoming. The first network device may allocate, from a first pool, a protection group identifier for a group of multihomed network devices and may allocate, from a second pool, a network destination identifier for the network destination. The first network device may provide, to a network and the second network device, a second advertisement that includes the protection group identifier and the network destination identifier. The protection group identifier and the network destination identifier may cause the network to direct traffic for the network destination, via the group of multihomed network devices.

Abstract: Techniques are disclosed for disseminating network service-specific mapping information across administrative domains. In one example, a network device receives an indication of a route target and one or more underlay tunnels configured to support a service route. The service route is configured to transport network traffic associated with a first network service of a plurality of network services. The network device defines, based on the indication, a first transport class of a plurality of transport classes. The network device receives a service route for the first network service and stores a correspondence between the service route and the first transport class. The network device receives network traffic associated with the first network service and forwards, based on the correspondence, the network traffic along the underlay tunnels specified by the first transport class.

Abstract: A network device may assign subscriber groups to logical ports of the network device, and may generate a load balanced group that includes the logical ports assigned to the subscriber groups. The network device may provide a backup logical port for the load balanced group, and may maintain the backup logical port in an oversubscribed state or a full state. The network device may identify a subscriber group failure for one of the subscriber groups, and may switch the one of the subscriber groups to the backup logical port based on the subscriber group failure.

Abstract: A method for use in a system including an Ethernet Virtual Private Network (EVPN) core network and a VXLAN data plane, a first gateway device GW1 and a second gateway device GW2 operating in an all-active multihoming mode to interconnect the EVPN core network and VXLAN data plane, is described. The method includes establishing, by the second gateway device GW2, a VXLAN tunnel to a remote VTEP X before traffic is sent by the remote VTEP X and received by the second gateway device GW2, but after traffic is sent by the remote VTEP X and received by the first gateway device GW1. wherein the first and second gateway devices GW1 and GW2 use an anycast IP address as a source address for VTEP X.

Abstract: A network device may receive, from endpoint devices, login requests for a server device and may establish logins with the server device based on the login requests. The network device may generate a discover message with a bulk release message indicating that the network device is capable of bulk release and including an identifier of the network device. The network device may include the address of the network device in the bulk release message based on the address of the network device not being shared across interfaces of the network device or may include a group identifier for the endpoint devices in the bulk release message based on the address of the network device being shared across the interfaces. The network device may provide the bulk release message to the server device based on determining that a restart of components of the network device is to occur.

Abstract: An example system includes an access network intelligent controller comprising processing circuitry configured to communicate with a 3GPP access network control function and a non-3GPP access network control function. The non-3GPP access network control function comprises a first plurality of controllable functions. The 3GPP access network control function comprises a second plurality of controllable functions. The access network intelligent controller is configured to execute one or more applications, each application of the one or more applications configured to: issue a subscription request for a subscription to a first controllable function of the first plurality of controllable functions of the non-3GPP access network control function or a second controllable function of the second plurality of controllable functions of the 3GPP access network control function, and exchange messages with the first controllable function or the second controllable function in accordance with the subscription.

Abstract: A disclosed apparatus may include (1) a multilaminate circuit board that includes multiple layers whose dielectric values differ from one another and (2) at least one stacked via formed through the multilaminate circuit board, wherein the stacked via comprises (A) a first sub-laminate via that spans a first layer included in the multiple layers and is characterized by at least one feature and (B) a second sub-laminate via that spans a second layer included in the multiple layers and is characterized by at least one other feature. Various other apparatuses, systems, and methods are also disclosed.

Abstract: A device may receive edge data identifying locations of a plurality of edge devices and other criteria associated with the plurality of edge devices, and may identify an upgrade for an edge device, of the plurality of edge devices, based on the other criteria of the edge data. The device may identify a location of a repository mirror for the upgrade based on a location of the edge device identified in the edge data, and may instruct the edge device to utilize the location of the repository mirror to receive the upgrade.

Abstract: Methods and apparatus for controlling access to and/or forwarding of communicated information, e.g. traffic, in a wireless communication system are described. The key, e.g., PSK, used to secure data that is transmitted to an access point for communication to a destination device is taken into consideration when deciding whether or not to provide the destination device access to the communicated content. The decision of whether or not to provide the destination device access to a communication may involve deciding whether or not to forward the received data to another device, e.g., another access point, for delivery to the destination device and/or may involve deciding whether or not to transmit the data to the destination device. If the destination device is not associated with, e.g., does not have access to and/or authorization to use, the key used to secure the received data, the data is not communicated to the destination device.

Abstract: An optical transmitter can generate probabilistically shaped quadrature amplitude modulation (PS-QAM) signaling for transmission over a fiber to a destination without optical amplification. The single fiber can transmit the PS-QAM signaling using dense wavelength division multiplexing having a relatively large number of channels that are closely spaced. A coherent receiver can receive the PS-QAM signaling for decoding without implementing chromatic dispersion compensation.

Abstract: A field-replaceable unit (FRU) includes a self-actuating protective cover device that includes: a protective cover, a housing component that includes a slot, a driving link component attached to the protective cover and the housing component, a supporting link component attached to the protective cover and the housing component, and an engagement component attached to the driving link component, wherein the engagement component is to be engaged by an actuation component of a mating connector and caused to move within the slot of the housing component, and the engagement component is to cause the driving link component, the supporting link component, and the protective cover to move when the engagement component moves within the slot of the housing component. The protective cover is to be positioned over one or more connectors of the FRU when the engagement component is positioned at an unengaged position within the slot of the housing component.

Abstract: A network device may originate a route, and may designate the route as a first colored route having a first color. The network device may advertise the first colored route to a first intermediate network device to cause the first intermediate network device to propagate the first colored route to an ingress network device over a first colored border gateway protocol session. The network device may designate the route as a second colored route having a second color, and may advertise the second colored route to a second intermediate network device to cause the second intermediate network device to propagate the second colored route to the ingress network device over a second colored border gateway protocol session.

Abstract: In some implementations, a network device may receive one or more indications of one or more internet protocol (IP) addresses. The network device may determine that the one or more IP addresses are associated with an IP over Ethernet (IPoE) subscriber. The network device may generate, based at least in part on determining that the one or more IP addresses are associated with the IPoE subscriber, a mapping of the one or more IP addresses to an identifier of the IPoE subscriber. The network device may receive a network packet associated with at least one IP address of the one or more IP addresses. The network device may perform, based at least in part on the mapping of the one or more IP addresses to the identifier of the IPoE subscriber, a network service associated with the network packet on a per-IPoE-subscriber basis.

Abstract: In some implementations, a heatsink assembly may include a heatsink that transfers heat from a pluggable module plugged into a frame, a clip coupling the heatsink to the frame and biasing the heatsink toward the pluggable module when the pluggable module is plugged into the frame, and an actuator plate that engages with the pluggable module as the pluggable module is plugged into the frame and thereby translates between an activated position and a deactivated position. When the actuator plate is in the activated position, the actuator plate may lift the heatsink away from the pluggable module, and, when the actuator plate is in the deactivated position, the actuator plate may permit the heatsink to engage the pluggable module. The actuator plate may translate from the activated position to the deactivated position by contacting the pluggable module as the pluggable module is plugged into the frame.

Abstract: A network device may install a new receive encryption key, and may start a timer associated with deleting an old receive encryption key. The network device may provide, to another network device, a message identifying the new receive encryption key, and may determine whether packet counts, successfully decrypted with the old receive encryption key, have changed. The first network device may determine whether the timer has expired, and may determine whether the new receive encryption key has successfully decrypted a packet. The first network device may delete the old receive encryption key from the first network device based on the new receive encryption key successfully decrypting a packet.

Abstract: Techniques for EVPN Host Routed Bridging (HRB) and EVPN cloud-native data center with Host Routed Bridging (HRB) are described. A host computing device of a data center includes one or more containerized user-level applications. A cloud native virtual router is configured for dynamic deployment by the data center application orchestration engine and operable in a user space of the host computing device. Processing circuitry is configured for execution of the containerized user-level applications and the cloud native virtual router. The cloud native virtual router comprises a containerized routing protocol process configured to operate as a control plane, and a data plane for the containerized router. The data plane is configured to operate an ethernet virtual private network (EVPN) encapsulation/decapsulation data path of an overlay network for communicating layer two (L2) network traffic of the containerized user applications over a switch fabric of the data center.

Abstract: A network device may enable local breakout for a subscriber device, and may create, for the subscriber device, a primary path to a data network via a user plane function. The network device may create, for the subscriber device, a secondary path direct to the data network and based on the local breakout being enabled, and may determine whether a connection with the user plane function is available. The network device may selectively provide traffic between the subscriber device and the data network via the primary path based on determining that the connection with the user plane function is available, or may provide the traffic between the subscriber device and the data network via the secondary path based on determining that the connection with the user plane function is unavailable.

Abstract: A network device may include (1) at least one storage device configured to store a plurality of SIDs and (2) at least one processing device configured to (A) insert, into the storage device, a single instance of a SID corresponding to a multihomed network segment and/or (B) advertise the SID to a remote network device for aliasing to enable the remote network device to load-balance traffic across the multihomed network segment. Various other apparatuses, systems, and methods are also disclosed.