Patents Assigned to Juniper Networks, Inc.
  • Systems and methods for dropping data using a drop profile
    Patent number: 8335158
    Abstract: A system selectively drops data from queues. The system includes a drop table that stores drop probabilities. The system selects one of the queues to examine and generates an index into the drop table to identify one of the drop probabilities for the examined queue. The system then determines whether to drop data from the examined queue based on the identified drop probability.
    Type: Grant
    Filed: May 14, 2010
    Date of Patent: December 18, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Pradeep Sindhu, Debashis Basu, Jayabharat Boddu, Avanindra Godbole
  • NETCONF-enabled provisioning in rollback agnostic environment
    Patent number: 8335171
    Abstract: A method includes receiving configuration data for configuring network devices; generating remote procedure calls (RPCs) for configuring the network devices, which include provisioning and reverse provisioning RPCs, where each reverse provisioning RPC reverse provisions a particular pseudowire; providing to the network devices the provisioning RPCs; determining a success with respect to each of the provisioning RPCs, where the success indicates that all endpoints of a pseudowire have been successfully configured; providing the reverse provisioning RPCs to the network devices, when it is determined that the success has not been achieved; and storing an indication of success when it is determined that the success has been achieved with respect to the provisioning RPCs.
    Type: Grant
    Filed: October 27, 2009
    Date of Patent: December 18, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Monimoy Purkayastha, Madhukar Mulpuri
  • Methods and apparatus related to low latency within a data center
    Patent number: 8335213
    Abstract: In one embodiment, an apparatus includes a switch core that has a multi-stage switch fabric. The multi-stage switch fabric has a set of ingress ports and a set of egress ports. The switch core can be configured to be coupled to a set of edge devices via the set of ingress ports and the set of egress ports. The switch core can be configured to receive a packet from an ingress port from the set of ingress ports. The switch core can be configured to send a set of cells associated with the packet from the ingress port to an egress port from the set of egress ports without a store-and-forward delay associated with a zero-load latency for the switch core.
    Type: Grant
    Filed: June 30, 2009
    Date of Patent: December 18, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Pradeep Sindhu, Gunes Aybay, Jean-Marc Frailong, Anjan Venkatramani, Quaizar Vohra
  • Hierarchical firewalls
    Patent number: 8336094
    Abstract: A method of implementing a firewall that receives a layer of policies from each of multiple entities with different levels of authority. The method evaluates received packets based on the received layers of policies. A layer of policies of a higher level of authority can accept a received packet, block the received packet, or delegate a decision of whether to accept or block the received packet to a layer of policies of a lower level of authority.
    Type: Grant
    Filed: January 5, 2009
    Date of Patent: December 18, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Moshe Litvin, Gilad Benjamini
  • PRIORITIZING LAWFUL INTERCEPT SESSIONS
    Publication number: 20120317273
    Abstract: A method may include receiving a request for a lawful intercept (LI) session, where the LI session is associated with a particular priority of a set of priority levels, and determining whether a maximum quantity of LI sessions has been initiated by a network device. The method may further include initiating a new LI session based on the request, when the maximum quantity of LI sessions has not been initiated; determining whether at least one LI session exists that is associated with a lower priority than the particular priority, when the maximum quantity of LI sessions has been initiated; and terminating a particular LI session associated with a lowest priority and initiating a new LI session based on the received request, when the at least one LI session associated with the lower priority exists.
    Type: Application
    Filed: June 13, 2011
    Publication date: December 13, 2012
    Applicant: Juniper Networks, Inc.
    Inventor: Divakar SHANKARAPPA
  • Methods and apparatus for distributed dynamic network provisioning
    Patent number: 8331362
    Abstract: In one embodiment, a method includes receiving a device identifier associated with a virtual resource, determining a configuration template identifier based on the device identifier, and selecting a configuration template from a library of configuration templates based on the configuration template identifier. The receiving, determining, and selecting are at a network device. The virtual resource is hosted by a host device. The device identifier is received from the host device.
    Type: Grant
    Filed: December 30, 2008
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Amit Shukla, Xiangwen Xu
  • Intelligent integrated network security device
    Patent number: 8332948
    Abstract: Methods, computer program products and apparatus for processing data packets are described. Methods include receiving the data packet, examining the data packet, determining a single flow record associated with the packet and extracting flow instructions for two or more devices from the single flow record.
    Type: Grant
    Filed: October 8, 2009
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Nir Zuk
  • Branching to target address by adding value selected from programmable offset table to base address specified in branch instruction
    Patent number: 8332622
    Abstract: Methods and systems consistent with the present invention provide a programmable table which allows software to define a plurality of branching functions, each of which maps a vector of condition codes to a branch offset. This technique allows for a flexible multi-way branching functionality, using a conditional branch outcome table that can be specified by a programmer. Any instruction can specify the evaluation of arbitrary conditional expressions to compute the values for the condition codes, and can choose a particular branching function. When the processor executes the instruction, the processor's arithmetic/logical functional units evaluate the conditional expressions and then the processor performs the branch operation, according to the specified branching function.
    Type: Grant
    Filed: December 12, 2011
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Anurag P Gupta, John Keen, Jeffrey G Libby, Jean-Marc Frailong, Avanindra Godbole, Sharada Yeluri
  • Packet processing in a multiple processor system
    Patent number: 8331374
    Abstract: Packet processing is provided in a multiple processor system including a first processor to processing a packet and to create a tag associated with the packet. The tag includes information about the processing of the packet. A second processor receives the packet subsequent to the first processor and processes the packet using the tag information.
    Type: Grant
    Filed: December 12, 2011
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Nir Zuk, Yu Ming Mao
  • Flexible counter update and retrieval
    Patent number: 8331359
    Abstract: A network device includes one or more processing units and an external memory. Each of the one or more processing units includes a centralized counter configured to perform accounting for the respective processing unit. The external memory is associated with at least one of the one or more processing units and is configured to store a group of count values for the at least one processing unit.
    Type: Grant
    Filed: March 12, 2010
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Albert Weichung Kuo, Reuven Meyer Samuel, Debashis Basu, Arunachalam Vaidyanathan, Spencer Greene
  • Using a waveguide to display information on electronic devices
    Patent number: 8331749
    Abstract: An electronic device includes an instrument panel that includes a display opening, where the instrument panel is located in a first plane; a circuit board located inside the electronic device, where the circuit board includes a display device that includes a display area, and where the display area is located in a second plane that is different from the first plane; and a waveguide that couples the display area to the display opening and guides light, and/or an image displayed in the display area, from the display area to the display opening.
    Type: Grant
    Filed: December 31, 2009
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Hogan Lew
  • Merging filter rules to reduce forwarding path lookup cycles
    Patent number: 8332927
    Abstract: The invention is directed to techniques for managing filter rules applied to network traffic at a network device. A network device merges multiple filter rules associated with separate filter matching modules to reduce lookup cycles in a forwarding path of the network device. The network device may thus simultaneously apply multiple filter rules in a reduced number of clock cycles. A network device comprises an interface that receives packets from a network, a filter memory that stores a plurality of filters, and a plurality of filter matching modules that apply the filters to packets in a forwarding path of the network device. A filter control module merges two or more filters each associated with a different one of the filter matching modules into a single merged filter, and stores the merged filter to the filter memory. The network device applies the merged filter to packets in the forwarding path.
    Type: Grant
    Filed: November 10, 2011
    Date of Patent: December 11, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Sandip Shah
  • DYNAMIC VARIABLE RATE MEDIA DELIVERY SYSTEM
    Publication number: 20120311177
    Abstract: A method and apparatus for dynamically transcoding and delivering variable bit rate media files delivers media files to client systems. The media server dynamically transcodes a content file to a bit rate requested by a client using an original content file or other transcoded content files. The media server can dynamically select a segment of a content file to transcode. The file format required by the client is determined and the transcoded segment is formatted to the file format. The formatted segment is delivered to the client.
    Type: Application
    Filed: June 7, 2012
    Publication date: December 6, 2012
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Zubair VISHARAM, Jaspal KOHLI, Kumar NARAYANAN, Prabakar SUNDARRAJAN, Sunil MUKUNDAN
  • PROTOCOL FREE TESTING OF A FABRIC SWITCH
    Publication number: 20120307651
    Abstract: A switch fabric for a modular router may be tested without connecting the switch fabric portion of the router to the other modular portions of the router. The switch fabric may generate test data units and insert the test data units into one or more elements of the switch fabric. The switch fabric may operate with the inserted test data units. A control component may receive data units from the switch fabric after operation of the switch fabric and analyze the received data units to determine whether the received data units correspond to the inserted test data units.
    Type: Application
    Filed: August 17, 2012
    Publication date: December 6, 2012
    Applicant: Juniper Networks Inc.
    Inventors: Hao SU, Mark NICHOLSON
  • GUARANTEED BANDWIDTH MEMORY APPARATUS AND METHOD
    Publication number: 20120311175
    Abstract: Output logic generates read requests using a programmable schedule that controls read bandwidth for multiple data streams and stores the read requests in a queuing device. The output logic also dequeues the read requests based on a similar programmable schedule, forwards the read requests to the memory, and reads data units from the memory based on the read requests.
    Type: Application
    Filed: August 16, 2012
    Publication date: December 6, 2012
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Song ZHANG, Phil LACROUTE, Anurag P. GUPTA, Raymond M. LIM, Avanindra GODBOLE, Debashis BASU
  • Methods and apparatus for transmission of groups of cells via a switch fabric
    Patent number: 8325749
    Abstract: In one embodiment, a method can include receiving at an egress schedule module a request to schedule transmission of a group of cells from an ingress queue through a switch fabric of a multi-stage switch. The ingress queue can be associated with an ingress stage of the multi-stage switch. The egress schedule module can be associated with an egress stage of the multi-stage switch. The method can also include determining, in response to the request, that an egress port at the egress stage of the multi-stage switch is available to transmit the group of cells from the multi-stage switch.
    Type: Grant
    Filed: December 24, 2008
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Sarin Thomas, Srihari Vegesna, Pradeep Sindhu, Chi-Chung Kenny Chen, Jean-Marc Frailong, David J. Ofelt, Philip A. Thomas, Chang-Hong Wu
  • Intelligent integrated network security device for high-availability applications
    Patent number: 8326961
    Abstract: Methods and apparatuses for inspecting packets are provided. A primary security system may be configured for processing packets. The primary security system may be operable to maintain flow information for a group of devices to facilitate processing of the packets. A secondary security system may be designated for processing packets upon a failover event. Flow records may be shared from the primary security system with the secondary security system.
    Type: Grant
    Filed: April 23, 2010
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Nir Zuk, Yu Ming Mao, Kowsik Guruswamy
  • Method and system for providing secure access to private networks
    Patent number: 8326981
    Abstract: Improved approaches for providing secure access to resources maintained on private networks are disclosed. The secure access can be provided through a public network using a standard network browser. Multiple remote users are able to gain restricted and controlled access to at least portions of a private network through a common access point. The solution provided by the invention is not only easily set up and managed, but also able to support many remote users in a cost-effective manner.
    Type: Grant
    Filed: June 23, 2010
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventors: Theron Tock, Sampath Srinivas
  • Device communications over unnumbered interfaces
    Patent number: 8327016
    Abstract: A method and a network device for enabling communication between unnumbered interfaces are provided. A device level address may be assigned to a network device. The network device may announce the assigned device level address to a neighboring network device over a link. A corresponding device level address associated with the neighboring network device may be received over the link. A route may be stored including the received device level address associated with the neighboring network device and the link. In some implementations, the announcement of the assigned device level address is performed during protocol configuration.
    Type: Grant
    Filed: September 24, 2007
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Kireeti Kompella
  • Detection of network security breaches based on analysis of network record logs
    Patent number: 8326881
    Abstract: Computer program products and methods of inspecting a log of security records in a computer network are provided. The method includes retrieving a log record, processing the log record including deriving a key to a table, determining a data value from information in the log record and adding the data value to a list of data values associated with the key if the data value is unique. One or more entries of the table are evaluated based on predetermined criteria to detect attempted security breaches.
    Type: Grant
    Filed: January 26, 2011
    Date of Patent: December 4, 2012
    Assignee: Juniper Networks, Inc.
    Inventor: Nir Zuk