Patents by Inventor Reshad A. Rahman
Reshad A. Rahman has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11785053Abstract: In one embodiment, an apparatus includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the apparatus to perform operations including determining a path through a plurality of provider nodes within a provider network and determining that the path through the plurality of provider nodes within the provider network is secure. The operations also include receiving, from a customer node, a Resource Reservation Protocol (RSVP) path message comprising an attribute for a security request. The operations further include routing the RSVP path message along the path of the plurality of provider nodes.Type: GrantFiled: September 24, 2019Date of Patent: October 10, 2023Assignee: CISCO TECHNOLOGY, INC.Inventors: Clarence Filsfils, David Delano Ward, Reshad Rahman, Subhasri Dhesikan, Eric Albin Voit
-
Publication number: 20230216788Abstract: In one embodiment, a method includes determining a secure path through a first plurality of network nodes within a network and determining an alternate secure path through a second plurality of network nodes within the network. The method also includes routing network traffic through the first plurality of network nodes of the secure path and detecting a failure in the secure path using single-hop BFD authentication. The method further includes rerouting the network traffic through the second plurality of network nodes of the alternate secure path.Type: ApplicationFiled: February 27, 2023Publication date: July 6, 2023Inventors: Clarence Filsfils, Reshad Rahman, Eric Albin Voit
-
Patent number: 11595441Abstract: In one embodiment, a method includes determining a secure path through a first plurality of network nodes within a network and determining an alternate secure path through a second plurality of network nodes within the network. The method also includes routing network traffic through the first plurality of network nodes of the secure path and detecting a failure in the secure path using single-hop BFD authentication. The method further includes rerouting the network traffic through the second plurality of network nodes of the alternate secure path.Type: GrantFiled: December 2, 2019Date of Patent: February 28, 2023Assignee: CISCO TECHNOLOGY, INC.Inventors: Clarence Filsfils, Reshad Rahman, Eric Albin Voit
-
Patent number: 11531660Abstract: A method includes determining whether the first version is an alias with respect to the second version, the alias being defined as an equivalent version of the YANG module. Based at least in part on a determination that the first version is the alias with respect to the second version, a version alias extension is inserted into a revision label of the first and/or second version. Based on a determination that the second version is backwards compatible with respect to the first version, a version backwards compatible extension is inserted into the revision label of the second version. Based at least in part on a determination that the second version is not backwards compatible with respect to the first version, a version non-backwards compatible extension is inserted into the revision label of the second version.Type: GrantFiled: April 20, 2021Date of Patent: December 20, 2022Assignee: Cisco Technology, Inc.Inventors: Robert George Wilton, Reshad Rahman, Joseph Michael Clarke, Paul Henry Merlo
-
Patent number: 11496399Abstract: Techniques for improved routing based on network traffic are provided. Telemetry data relating to a first network node of a plurality of network nodes in a locator ID separation protocol (LISP) fabric is received. A first portion of the telemetry data that relates to a first destination of a plurality of destinations is identified. Further, a first routing weight associated with a first interface of the first network node is revised based on the first portion of the telemetry data, where the first interface is associated with the first destination. The revised first routing weight is published to a second plurality of network nodes in the LISP fabric, wherein the second plurality of network nodes route packets to the first network node based in part on the revised first routing weight.Type: GrantFiled: October 26, 2018Date of Patent: November 8, 2022Assignee: Cisco Technology, Inc.Inventors: Reshad Rahman, Victor M. Moreno
-
Publication number: 20220335024Abstract: A method includes determining whether the first version is an alias with respect to the second version, the alias being defined as an equivalent version of the YANG module. Based at least in part on a determination that the first version is the alias with respect to the second version, a version alias extension is inserted into a revision label of the first and/or second version. Based on a determination that the second version is backwards compatible with respect to the first version, a version backwards compatible extension is inserted into the revision label of the second version. Based at least in part on a determination that the second version is not backwards compatible with respect to the first version, a version non-backwards compatible extension is inserted into the revision label of the second version.Type: ApplicationFiled: April 20, 2021Publication date: October 20, 2022Inventors: Robert George Wilton, Reshad Rahman, Joseph Michael Clarke, Paul Henry Merlo
-
Patent number: 11431617Abstract: In one example, a responder obtains an Operations, Administration, and Management/Maintenance (OAM) probe packet from a network entity operating as an initiator in a network, provides, to the initiator, a first response to the OAM probe packet over a first network path in the network, and further provides, to the initiator, a second response to the OAM probe packet over a second network path in the network that is different from the first network path. In another example, an initiator provides an OAM probe packet to a network entity operating as responder in a network, obtains, from the responder, a first response to the OAM probe packet over a first network path in the network, and further obtains, from the responder, a second response to the OAM probe packet over a second network path in the network that is different from the first network path.Type: GrantFiled: May 13, 2020Date of Patent: August 30, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Nagendra Kumar Nainar, Carlos M. Pignataro, Reshad Rahman, Pascal Thubert
-
Patent number: 11223559Abstract: Techniques and mechanisms to enable a Bidirectional Forwarding Detection (BFD) Echo function to be used for IP multi-hop paths using IP encapsulation. A source device may encapsulate one or more BFD Echo packets as payloads in IP packets. The resulting IP packets may then be sent from a source device to a destination device over a multi-hop path such that one or more intermediary devices forward the IP packets onto the destination device. Upon receiving the IP packets, the destination device may echo back the one or more BFD Echo packets in the forwarding plane to indicate connectivity of the forwarding path between the devices. However, if the BFD Echo packets are not echoed back to the source device, the source device may determine that the multi-hop path has experienced a fault, and that traffic is to be rerouted through other paths.Type: GrantFiled: September 10, 2019Date of Patent: January 11, 2022Assignee: Cisco Technology, Inc.Inventors: Reshad Rahman, Carlos M. Pignataro, Nagendra Kumar Nainar, Eric Vyncke
-
Publication number: 20210359932Abstract: In one example, a responder obtains an Operations, Administration, and Management/Maintenance (OAM) probe packet from a network entity operating as an initiator in a network, provides, to the initiator, a first response to the OAM probe packet over a first network path in the network, and further provides, to the initiator, a second response to the OAM probe packet over a second network path in the network that is different from the first network path. In another example, an initiator provides an OAM probe packet to a network entity operating as responder in a network, obtains, from the responder, a first response to the OAM probe packet over a first network path in the network, and further obtains, from the responder, a second response to the OAM probe packet over a second network path in the network that is different from the first network path.Type: ApplicationFiled: May 13, 2020Publication date: November 18, 2021Inventors: Nagendra Kumar Nainar, Carlos M. Pignataro, Reshad Rahman, Pascal Thubert
-
Patent number: 11108690Abstract: A method and a router device for managing memory for network overlay routes with fallback route support prioritization may be provided. A network overlay route as a candidate network overlay route may be obtained at a router for storage in a memory. The memory may store a plurality of network overlay routes for forwarding user plane traffic in a network. An assessment for storage of the candidate network overlay route based on a priority level indicator of the candidate network overlay route may be performed. The priority level indicator may be indicative of a fallback route support level of the candidate network overlay route in the router. Based on the assessment, at least one of the following may be performed: adding the candidate network overlay route to the memory and refraining from adding the candidate network overlay route to the memory.Type: GrantFiled: August 31, 2018Date of Patent: August 31, 2021Assignee: Cisco Technology, Inc.Inventors: Marc Portoles Comeras, Alberto Rodriguez Natal, Vina Ermagan, Reshad Rahman, Johnson Leong
-
Patent number: 10972381Abstract: In one embodiment, in-band operations data (e.g., In-situ Operations, Administration, Maintenance and/or other operations data) is added to Seamless Bidirectional Forwarding (S-BFD) packets. In one embodiment, a S-BFD packet received by a node includes a BFD discriminator and operations data. Reactive processing is identified based on the BFD discriminator. The S-BFD packet and the operations data (e.g., in an operations data field in a header of the received S-BFD packet, in an IOAM Type-Length-Value (TLV), etc.) is processed according to the identified reactive function. Examples of these reactive actions include, but are not limited to, determining a result based on processing of said particular operations data by the local node or a remote analytics server, and sending a response packet including unprocessed and/or a result of the processed operations data (e.g., performance, loss, jitter, an indication of compliance with a service level agreement, and/or another data measurement or result).Type: GrantFiled: April 23, 2019Date of Patent: April 6, 2021Assignee: Cisco Technology, Inc.Inventors: Carlos M. Pignataro, Nagendra Kumar Nainar, Reshad Rahman, Frank Brockners, Shwetha Subray Bhandari
-
Publication number: 20210075722Abstract: Techniques and mechanisms to enable a Bidirectional Forwarding Detection (BFD) Echo function to be used for IP multi-hop paths using IP encapsulation. A source device may encapsulate one or more BFD Echo packets as payloads in IP packets. The resulting IP packets may then be sent from a source device to a destination device over a multi-hop path such that one or more intermediary devices forward the IP packets onto the destination device. Upon receiving the IP packets, the destination device may echo back the one or more BFD Echo packets in the forwarding plane to indicate connectivity of the forwarding path between the devices. However, if the BFD Echo packets are not echoed back to the source device, the source device may determine that the multi-hop path has experienced a fault, and that traffic is to be rerouted through other paths.Type: ApplicationFiled: September 10, 2019Publication date: March 11, 2021Inventors: Reshad Rahman, Carlos M. Pignataro, Nagendra Kumar Nainar, Eric Vyncke
-
Patent number: 10917343Abstract: A first map request message is sent from a source network device to a mapping network device to determine a destination network device associated with a destination endpoint device and a security association between the source network device and the destination network device. A first response message is received at the source network device that includes data indicating a mapping between the destination network device and the destination endpoint device and data indicating a security association between the source network device and the destination network device. The data is stored at the source network device. A second map request message is sent from the source network device to the mapping network device to update the data indicative of the mapping or the security association. A second response message is received at the source network device from the mapping network device.Type: GrantFiled: December 10, 2019Date of Patent: February 9, 2021Assignee: Cisco Technology, Inc.Inventors: Sanjay K. Hooda, Satish K. Kondalam, Fabio R. Maino, Victor M. Moreno, Reshad Rahman
-
Publication number: 20200344152Abstract: In one embodiment, in-band operations data (e.g., In-situ Operations, Administration, Maintenance and/or other operations data) is added to Seamless Bidirectional Forwarding (S-BFD) packets. In one embodiment, a S-BFD packet received by a node includes a BFD discriminator and operations data. Reactive processing is identified based on the BFD discriminator. The S-BFD packet and the operations data (e.g., in an operations data field in a header of the received S-BFD packet, in an IOAM Type-Length-Value (TLV), etc.) is processed according to the identified reactive function. Examples of these reactive actions include, but are not limited to, determining a result based on processing of said particular operations data by the local node or a remote analytics server, and sending a response packet including unprocessed and/or a result of the processed operations data (e.g., performance, loss, jitter, an indication of compliance with a service level agreement, and/or another data measurement or result).Type: ApplicationFiled: April 23, 2019Publication date: October 29, 2020Applicant: Cisco Technology, Inc., a California corporationInventors: Carlos M. PIGNATARO, Nagendra Kumar NAINAR, Reshad RAHMAN, Frank BROCKNERS, Shwetha Subray BHANDARI
-
Publication number: 20200322391Abstract: In one embodiment, an apparatus includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the apparatus to perform operations including determining a path through a plurality of provider nodes within a provider network and determining that the path through the plurality of provider nodes within the provider network is secure. The operations also include receiving, from a customer node, a Resource Reservation Protocol (RSVP) path message comprising an attribute for a security request. The operations further include routing the RSVP path message along the path of the plurality of provider nodes.Type: ApplicationFiled: September 24, 2019Publication date: October 8, 2020Inventors: Clarence Filsfils, David Delano Ward, Reshad Rahman, Subhasri Dhesikan, Eric Albin Voit
-
Publication number: 20200322383Abstract: In one embodiment, a method includes determining a secure path through a first plurality of network nodes within a network and determining an alternate secure path through a second plurality of network nodes within the network. The method also includes routing network traffic through the first plurality of network nodes of the secure path and detecting a failure in the secure path using single-hop BFD authentication. The method further includes rerouting the network traffic through the second plurality of network nodes of the alternate secure path.Type: ApplicationFiled: December 2, 2019Publication date: October 8, 2020Inventors: Clarence Filsfils, Reshad Rahman, Eric Albin Voit
-
Publication number: 20200136973Abstract: Techniques for improved routing based on network traffic are provided. Telemetry data relating to a first network node of a plurality of network nodes in a locator ID separation protocol (LISP) fabric is received. A first portion of the telemetry data that relates to a first destination of a plurality of destinations is identified. Further, a first routing weight associated with a first interface of the first network node is revised based on the first portion of the telemetry data, where the first interface is associated with the first destination. The revised first routing weight is published to a second plurality of network nodes in the LISP fabric, wherein the second plurality of network nodes route packets to the first network node based in part on the revised first routing weight.Type: ApplicationFiled: October 26, 2018Publication date: April 30, 2020Inventors: Reshad RAHMAN, Victor M. MORENO
-
Patent number: 10623278Abstract: A reactive mechanism for in-situ operation, administration, and maintenance (IOAM) traffic is provided. In one embodiment, a method is provided that includes assigning a plurality of discriminator identifiers associated with a plurality of discriminators. Each discriminator is mapped to a specified action. The method includes receiving a data packet that includes an IOAM header comprising telemetry data associated with the data packet and a bidirectional forwarding detection (BFD) field that includes a specified discriminator identifier.Type: GrantFiled: March 20, 2018Date of Patent: April 14, 2020Assignee: Cisco Technology, Inc.Inventors: Shwetha Subray Bhandari, Nagendra Kumar Nainar, Carlos M. Pignataro, Frank Brockners, Reshad Rahman
-
Publication number: 20200112509Abstract: A first map request message is sent from a source network device to a mapping network device to determine a destination network device associated with a destination endpoint device and a security association between the source network device and the destination network device. A first response message is received at the source network device that includes data indicating a mapping between the destination network device and the destination endpoint device and data indicating a security association between the source network device and the destination network device. The data is stored at the source network device. A second map request message is sent from the source network device to the mapping network device to update the data indicative of the mapping or the security association. A second response message is received at the source network device from the mapping network device.Type: ApplicationFiled: December 10, 2019Publication date: April 9, 2020Inventors: Sanjay K. Hooda, Satish K. Kondalam, Fabio R. Maino, Victor M. Moreno, Reshad Rahman
-
Publication number: 20200076730Abstract: A method and a router device for managing memory for network overlay routes with fallback route support prioritization may be provided. A network overlay route as a candidate network overlay route may be obtained at a router for storage in a memory. The memory may store a plurality of network overlay routes for forwarding user plane traffic in a network. An assessment for storage of the candidate network overlay route based on a priority level indicator of the candidate network overlay route may be performed. The priority level indicator may be indicative of a fallback route support level of the candidate network overlay route in the router. Based on the assessment, at least one of the following may be performed: adding the candidate network overlay route to the memory and refraining from adding the candidate network overlay route to the memory.Type: ApplicationFiled: August 31, 2018Publication date: March 5, 2020Inventors: MARC PORTOLES COMERAS, ALBERTO RODRIGUEZ NATAL, VINA ERMAGAN, RESHAD RAHMAN, JOHNSON LEONG