Patents Assigned to Juniper Networks, Inc.
  • Patent number: 7864774
    Abstract: An asynchronous transfer mode (ATM) connection band control system, in an ATM network, may include a first memory, a second, different memory, and a connection-setting control portion. The first memory may store, in a buffer control memory, band acquiring data of a connection, the first memory preliminarily acquiring a connection band for the connection, irrespective of the connection being a switched virtual connection (SVC) or a permanent virtual connection (PVC). The second, different memory may store acquired band data of a currently established connection, irrespective of the currently established connection being a PVC or an SVC. The connection-setting control portion may control a setting of the currently established connection, where a band for the currently established connection, irrespective of the currently established connection being a PVC or an SVC, is preliminarily set as the band acquiring data.
    Type: Grant
    Filed: December 9, 2008
    Date of Patent: January 4, 2011
    Assignee: Juniper Networks, Inc.
    Inventor: Shinichi Ukon
  • Patent number: 7864769
    Abstract: Techniques are described to replicate multicast packets in accordance with a hierarchical data structure. For example, upon receiving a multicast packet, a packet-forwarding engine may communicate the packet to packet-forwarding engines corresponding to starting nodes of the hierarchical data structure. The packet-forwarding engines corresponding to starting nodes of the hierarchical data structure may replicate the multicast packet for local interface cards, and forward the replicated packets to the network. Furthermore, the packet-forwarding engines may replicate the packet for packet-forwarding engines corresponding to downstream nodes. In this manner, the packet replication process is distributed throughout the router decreasing the complexity of necessary replication hardware. Furthermore, the packet replication process is highly scalable resulting in a latency of one fabric hop when the number of packet-forwarding engines doubles.
    Type: Grant
    Filed: August 18, 2008
    Date of Patent: January 4, 2011
    Assignee: Juniper Networks, Inc.
    Inventors: Hsien-Chung Woo, Dennis C. Ferguson, Lawrence Hui
  • Publication number: 20100329109
    Abstract: A method performed by a provider edge device includes generating pseudo-wire tables based on virtual private local area network service advertisements from other provider edge devices, where the provider edge device services customer edge devices, and establishing pseudo-wires with respect to the other provider edge devices, based on the pseudo-wire tables, where the pseudo-wires include an active pseudo-wire and at least one standby pseudo-wire with respect to each of the other provider edge devices. The method also includes generating and advertising VPLS advertisement to the other provider edge devices, detecting a communication link failure associated with one of the customer edge devices in which the provider edge device services, and determining whether the at least one standby pseudo-wire needs to be utilized because of the communication link failure.
    Type: Application
    Filed: June 30, 2009
    Publication date: December 30, 2010
    Applicant: Juniper Networks, Inc
    Inventors: Bhupesh KOTHARI, Rahul Aggarwal
  • Publication number: 20100328886
    Abstract: A chassis may include a front section that contains a first electronic circuit board oriented in a first plane, a rear section that contains a second electronic circuit board oriented in a second plane, where the first plane and the second plane are substantially orthogonal, a midplane dividing the front and the rear sections, and a fan tray assembly including a plurality of fans to cool both the first electronic circuit board of the front section and the second electronic circuit board of the rear section.
    Type: Application
    Filed: September 3, 2010
    Publication date: December 30, 2010
    Applicant: JUNIPER NETWORKS, INC.
    Inventor: Tri Luong NGUYEN
  • Patent number: 7860104
    Abstract: The invention is directed toward techniques for Multi-Protocol Label Switching (MPLS) upstream label assignment for the Resource Reservation Protocol with Traffic Engineering (RSVP-TE). The techniques include extensions to the RSVP-TE that enable distribution of upstream assigned labels in Path messages from an upstream router to two or more downstream routers of tunnel established over a network. The tunnel may comprise a RSVP-TE P2MP Label Switched Path (LSP) or an Internet Protocol (IP) multicast tunnel. The techniques also include extensions to the RSVP-TE that enable a router to advertise upstream label assignment capability to neighboring routers in the network. The MPLS upstream label assignment using RSVP-TE described herein enables a branch router to avoid traffic replication on a Local Area Network (LAN) for RSVP-TE P2MP LSPs.
    Type: Grant
    Filed: June 21, 2010
    Date of Patent: December 28, 2010
    Assignee: Juniper Networks, Inc.
    Inventor: Rahul Aggarwal
  • Patent number: 7859999
    Abstract: A system for multicasting a packet of data to a single data stream is provided. The system may determine a size of the packet and may send a single copy of the packet if the size of the packet exceeds a threshold value. A number of copies of the packet yet to be multicast may be ascertained if the size of the packet of data does not exceed the threshold value. Copies of the packet may be transmitted based on the number of copies of the packet yet to be multicast.
    Type: Grant
    Filed: September 20, 2007
    Date of Patent: December 28, 2010
    Assignee: Juniper Networks, Inc.
    Inventors: Debashis Basu, Avanindra Godbole, Raymond M. Lim, Jeffrey G. Libby
  • Patent number: 7860981
    Abstract: A network device may include logic to establish an IP session, establish a BFD session within the established IP session, transmit BFD packets within the established BFD session, and determine that the established IP session is active based upon reception of the BFD packets. In another embodiment, the logic may also determine that an IP session is active using an inactivity timer that may also trigger transmission of BFD packets.
    Type: Grant
    Filed: September 29, 2006
    Date of Patent: December 28, 2010
    Assignee: Juniper Networks, Inc.
    Inventors: Vitali Vinokour, Sanjay Wadhwa, Jerome Moisand
  • Patent number: 7860112
    Abstract: Techniques are described for providing hybrid forwarding within an Ethernet-based service domain established over one or more intermediate networks, such as a service provider (SP) network. For example, the Ethernet-based service domain may comprise a virtual private local area network service (VPLS) domain. A hybrid VPLS domain may transport layer two (L2) communications, such as Ethernet packets, between remote customer networks via the SP network. The techniques described herein enable a network device, e.g., a router, within a SP network to forward packets from a source device of a hybrid VPLS domain toward one or more subscriber devices of the hybrid VPLS domain (i.e., in a downstream direction) using P2MP forwarding semantics. The same network device forwards packets from one of the subscriber devices toward the source device (i.e., in an upstream direction) using P2P forwarding semantics.
    Type: Grant
    Filed: January 9, 2007
    Date of Patent: December 28, 2010
    Assignee: Juniper Networks, Inc.
    Inventor: Kireeti Kompella
  • Patent number: 7861078
    Abstract: Communicating keys between network devices on a network using asymmetric cryptographic techniques, for which asymmetric keys may be derived from a single (same) password. Knowledge or partial knowledge of the password may be the only information shared between parties prior to execution of a key exchange, and may be the only criteria by which one party will base trust in the other. A first network device may encrypt a key using a password-based key derived from a password, and authenticate a second device based on the second network device's ability to decrypt the encrypted key using a key derived from the same password. Knowledge of the password may be conveyed by the second device to the first device—a session key may be generated as a function of the decrypted key, and a function of this session key may be communicated from the second device to the first device.
    Type: Grant
    Filed: October 13, 2006
    Date of Patent: December 28, 2010
    Assignee: Juniper Networks, Inc.
    Inventor: Paul Funk
  • Publication number: 20100322249
    Abstract: Intermediate network devices, such as routers, are configured to discover a maximum transmission unit (MTU) for a path between two network endpoints by removing data from packets when the packet size exceeds a link MTU to a next hop. An example intermediate network device includes a forwarding engine to determine an interface card through which to forward a received packet and to determine a link MTU for a link corresponding to the interface card, wherein the received packet comprises a header and a payload, the header indicating not to fragment the packet, and a PMTU determination module to determine whether a size of the received packet exceeds the link MTU, and to remove a portion of data from the payload of the packet, discard the removed portion, and adjust the header of the packet according to the removed portion when the size of the received packet exceeds the link MTU.
    Type: Application
    Filed: June 23, 2009
    Publication date: December 23, 2010
    Applicant: Juniper Networks, Inc.
    Inventors: Timothy N. Thathapudi, Srinivasa D. Satyanarayana
  • Publication number: 20100325486
    Abstract: A system includes a first network device and a second network device. The first network device includes a group of first logical portions and is configured to detect a problem with one of the first logical portions, and transmit a message identifying the one first logical portion. The second network device includes a group of second logical portions, where the group of second logical portions corresponds to the group of first logical portions. The second network device is configured to receive the message from the first network device, and activate the one second logical portion corresponding to the one first logical portion in response to receiving the message.
    Type: Application
    Filed: August 30, 2010
    Publication date: December 23, 2010
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Changming LIU, Xiaosong Yang, Lin Chen
  • Publication number: 20100322075
    Abstract: A system provides congestion control and includes multiple queues that temporarily store data and a drop engine. The system associates a value with each of the queues, where each of the values relates to an amount of memory associated with the queue. The drop engine compares the value associated with a particular one of the queues to one or more programmable thresholds and selectively performs explicit congestion notification or packet dropping on data in the particular queue based on a result of the comparison.
    Type: Application
    Filed: September 1, 2010
    Publication date: December 23, 2010
    Applicant: Juniper Networks, Inc.
    Inventors: Pradeep SINDHU, Debashis BASU, Jayabharat BODDU, Avanindra GODBOLE
  • Publication number: 20100322242
    Abstract: A forwarding node decapsulates and encapsulates data. The decapsulation may be performed using pattern matching techniques and the encapsulation may be performed using pattern insertion techniques. The decapsulation and encapsulation are preferably performed by hardware devices such as application specific integrated circuits (ASICs) to enhance the speed of such operations. The decapsulation and encapsulation may be independent of each other and performed on a per virtual circuit basis.
    Type: Application
    Filed: August 26, 2010
    Publication date: December 23, 2010
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Steven R. WILLIS, Gregg F. BROMLEY, Eric S. CRAWLEY, Frank KASTENHOLZ
  • Publication number: 20100322243
    Abstract: A system balances bandwidth used by a data stream. The system receives data in the data stream and partitions the data into bursts. The system then identifies whether a size of a current one of the bursts is less than a size of a maximum burst associated with the data stream and schedules an additional burst in the data stream when the current burst size is less than the maximum burst size. The system transmits the current burst and the additional burst to balance bandwidth used by the data stream.
    Type: Application
    Filed: August 31, 2010
    Publication date: December 23, 2010
    Applicant: JUNIPER NETWORKS, INC.
    Inventors: Kevin CLARK, Sharada YELURI, Shahriar ILISLAMLOO
  • Patent number: 7856509
    Abstract: A device provides layer two (L2) services between customer networks that are coupled by one or more intermediate computer networks. The device comprises a routing process that receives label information for a label switched path (LSP) through the intermediate networks. The device further comprises a L2 service that receives L2 service information from a device associated with second customer networks. In accordance with the label information, the device transports L2 communications between the first and second customer networks through the one or more intermediate networks. By utilizing label information in this manner, the device may minimize the impact of providing L2 services through the intermediate networks.
    Type: Grant
    Filed: April 9, 2004
    Date of Patent: December 21, 2010
    Assignee: Juniper Networks, Inc.
    Inventor: Chaitanya Kodeboyina
  • Patent number: 7856510
    Abstract: A key engine that performs route lookups for a plurality of keys may include a data processing portion configured to process one data item at a time and to request data when needed. A buffer may be configured to store a partial result from the data processing portion. A controller may be configured to load the partial result from the data processing portion into the buffer. The controller also may be configured to input another data item into the data processing portion for processing while requested data is obtained for a prior data item. A number of these key engines may be used by a routing unit to perform a large number of route lookups at the same time.
    Type: Grant
    Filed: May 15, 2008
    Date of Patent: December 21, 2010
    Assignee: Juniper Networks, Inc.
    Inventors: Pankaj Patel, Viswesh Ananthakrishnan
  • Patent number: 7852778
    Abstract: Techniques are described for verifying a status of a set of paths through a computer network for two or more connectivity protocols. For example, a node uses a first connectivity protocol to concurrently learn information that will cause packets conforming to the first connectivity protocol and packet conforming to a second connectivity protocol to traverse a set of paths through a computer network. After learning this information, the node may verify a status of each of the paths using the first connectivity protocol. In addition, the node may verify a status of each of the paths using the second connectivity protocol. By verifying the status of the paths using both the first and the second connectivity protocols, the node may be able to quickly and accurately determine whether a path has failed.
    Type: Grant
    Filed: September 22, 2006
    Date of Patent: December 14, 2010
    Assignee: Juniper Networks, Inc.
    Inventor: Kireeti Kompella
  • Patent number: 7853714
    Abstract: A network device provides services for multiple virtual private networks (VPNs) via one or more virtual hosts. For example, a router receives packets from multiple VPNs, and communicates the packets to a service card via a logical interface in accordance with a forwarding information base. A virtual host within the service card processes the packets and provides a service for the network device from which the packet was sent. The virtual host may, for example, provide print services for network devices within a corresponding VPN. The virtual host acts, in essence, as a print server within the corresponding VPN. In this manner, the router may eliminate the need for the customer associated with the VPN to maintain print servers within remote customer sites.
    Type: Grant
    Filed: January 29, 2007
    Date of Patent: December 14, 2010
    Assignee: Juniper Networks, Inc.
    Inventors: Kenneth A. Moberg, Steven Lin, Spencer Greene, James Murphy
  • Patent number: 7853591
    Abstract: A system protects database operations performed on a shared resource. The system may chunk memory to form a set of memory chunks which have memory blocks, at least some of the memory blocks including database objects. The system may configure at least one binary search tree using the memory chunks as nodes and buffer a set of pointers corresponding to the memory blocks. The system may further validate the buffered pointers and dereference validated buffered pointers.
    Type: Grant
    Filed: June 30, 2006
    Date of Patent: December 14, 2010
    Assignee: Juniper Networks, Inc.
    Inventors: Xiaosong Yang, Lin Chen, Changming Liu
  • Patent number: 7853781
    Abstract: A load balancing SSL acceleration device. The device includes a processor, memory and communications interface. A TCP communications manager capable of interacting with a plurality of client devices and server devices simultaneously is provided, along with a secure communications manager. The apparatus further includes an encryption and decryption engine instructing the processor to encrypt data from a secure communications session and direct it to said second communication session. Still further, the apparatus includes a load balancing engine associating ones of said client devices with ones of said servers for a communications session based on calculated processing loads of each said server. In a further aspect, a method for performing SSL acceleration of data communications between a plurality of customer devices attempting to communicate with an enterprise having a plurality of servers is disclosed.
    Type: Grant
    Filed: July 6, 2001
    Date of Patent: December 14, 2010
    Assignee: Juniper Networks, Inc.
    Inventors: Michael Freed, Elango Gannesan