Patents by Inventor Satish Kondalam
Satish Kondalam has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 12192057Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: GrantFiled: May 29, 2024Date of Patent: January 7, 2025Assignee: Cisco Technology, Inc.Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Patent number: 12107734Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: GrantFiled: July 27, 2023Date of Patent: October 1, 2024Assignee: Cisco Technology, Inc.Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Publication number: 20240314036Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: ApplicationFiled: May 29, 2024Publication date: September 19, 2024Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Patent number: 12028250Abstract: Systems, methods, and computer-readable media for communicating policy changes in a Locator/ID Separation Protocol (LISP) based network deployment include receiving, at a first routing device, a first notification from a map server, the first notification indicating a change in a policy for LISP based communication between at least a first endpoint device and at least a second endpoint device, the first endpoint device being connected to a network fabric through the first routing device and the second endpoint device being connected to the network fabric through a second routing device. The first routing device forwards a second notification to the second routing device if one or more entries of a first map cache implemented by the first routing device are affected by the policy change, the second notification indicating a set of one or more endpoints connected to the second routing device that are affected by the policy change.Type: GrantFiled: May 24, 2023Date of Patent: July 2, 2024Assignee: Cisco Technology, Inc.Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam, Raja Janardanan, Aaditya Vadnere, Shivangi Sharma
-
Patent number: 12021699Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: GrantFiled: April 21, 2023Date of Patent: June 25, 2024Assignee: Cisco Technology, Inc.Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Publication number: 20240039839Abstract: Systems, methods, and computer-readable media for discovering silent hosts in a software-defined network and directing traffic to the silent hosts in a scalable and targeted manner include determining interfaces of a fabric device that are connected to respective one or more endpoints, where the fabric device is configured to connect the endpoints to a network fabric of the software-defined network. At least a first interface is identified, where an address of a first endpoint connected to the first interface is not available at the fabric device. A first notification is transmitted to a control plane of the software-defined network based on identifying the first interface, where the control plane may create a flood list which includes the fabric device. Traffic intended for the first endpoint from the network fabric is received by the fabric device can be based on the flood list.Type: ApplicationFiled: October 13, 2023Publication date: February 1, 2024Inventors: Satish Kondalam, Sanjay Kumar Hooda, Prakash C. Jain, Vikram Vikas Pendharkar
-
Publication number: 20240007353Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: ApplicationFiled: July 27, 2023Publication date: January 4, 2024Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Patent number: 11799767Abstract: Systems, methods, and computer-readable media for discovering silent hosts in a software-defined network and directing traffic to the silent hosts in a scalable and targeted manner include determining interfaces of a fabric device that are connected to respective one or more endpoints, where the fabric device is configured to connect the endpoints to a network fabric of the software-defined network. At least a first interface is identified, where an address of a first endpoint connected to the first interface is not available at the fabric device. A first notification is transmitted to a control plane of the software-defined network based on identifying the first interface, where the control plane may create a flood list which includes the fabric device. Traffic intended for the first endpoint from the network fabric is received by the fabric device can be based on the flood list.Type: GrantFiled: March 1, 2022Date of Patent: October 24, 2023Assignee: Cisco Technology, Inc.Inventors: Satish Kondalam, Sanjay Kumar Hooda, Prakash C. Jain, Vikram Vikas Pendharkar
-
Publication number: 20230308391Abstract: Systems, methods, and computer-readable media for communicating policy changes in a Locator/ID Separation Protocol (LISP) based network deployment include receiving, at a first routing device, a first notification from a map server, the first notification indicating a change in a policy for LISP based communication between at least a first endpoint device and at least a second endpoint device, the first endpoint device being connected to a network fabric through the first routing device and the second endpoint device being connected to the network fabric through a second routing device. The first routing device forwards a second notification to the second routing device if one or more entries of a first map cache implemented by the first routing device are affected by the policy change, the second notification indicating a set of one or more endpoints connected to the second routing device that are affected by the policy change.Type: ApplicationFiled: May 24, 2023Publication date: September 28, 2023Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam, Raja Janardanan, Aaditya Vadnere, Shivangi Sharma
-
Publication number: 20230269139Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: ApplicationFiled: April 21, 2023Publication date: August 24, 2023Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Patent number: 11706139Abstract: Systems, methods, and computer-readable media for communicating policy changes in a Locator/ID Separation Protocol (LISP) based network deployment include receiving, at a first routing device, a first notification from a map server, the first notification indicating a change in a policy for LISP based communication between at least a first endpoint device and at least a second endpoint device, the first endpoint device being connected to a network fabric through the first routing device and the second endpoint device being connected to the network fabric through a second routing device. The first routing device forwards a second notification to the second routing device if one or more entries of a first map cache implemented by the first routing device are affected by the policy change, the second notification indicating a set of one or more endpoints connected to the second routing device that are affected by the policy change.Type: GrantFiled: September 15, 2021Date of Patent: July 18, 2023Assignee: Cisco Technology, Inc.Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam, Raja Janardanan, Aaditya Vadnere, Shivangi Sharma
-
Patent number: 11658876Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: GrantFiled: July 16, 2021Date of Patent: May 23, 2023Assignee: Cisco Technology, Inc.Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Patent number: 11516184Abstract: Systems, methods, and computer-readable media for preserving source host context when firewall policies are applied to traffic in an enterprise network fabric. A data packet to a destination host from a source host can be received at a first border node instance in an enterprise network fabric as part of network traffic. The data packet can include a context associated with the source host. Further, the data packet can be sent to a firewall of the enterprise network fabric and can be received at a second border node instance after the firewall applies a firewall policy to the data packet. The data packet can then be selectively encapsulated with the context associated with the source host at the second border node instance for applying one or more policies to control transmission of the network traffic through the enterprise network fabric.Type: GrantFiled: September 5, 2019Date of Patent: November 29, 2022Assignee: Cisco Technology, Inc.Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam
-
Publication number: 20220191135Abstract: Systems, methods, and computer-readable media for discovering silent hosts in a software-defined network and directing traffic to the silent hosts in a scalable and targeted manner include determining interfaces of a fabric device that are connected to respective one or more endpoints, where the fabric device is configured to connect the endpoints to a network fabric of the software-defined network. At least a first interface is identified, where an address of a first endpoint connected to the first interface is not available at the fabric device. A first notification is transmitted to a control plane of the software-defined network based on identifying the first interface, where the control plane may create a flood list which includes the fabric device. Traffic intended for the first endpoint from the network fabric is received by the fabric device can be based on the flood list.Type: ApplicationFiled: March 1, 2022Publication date: June 16, 2022Inventors: Satish Kondalam, Sanjay Kumar Hooda, Prakash C. Jain, Vikram Vikas Pendharkar
-
Patent number: 11316782Abstract: Systems, methods, and computer-readable media for discovering silent hosts in a software-defined network and directing traffic to the silent hosts in a scalable and targeted manner include determining interfaces of a fabric device that are connected to respective one or more endpoints, where the fabric device is configured to connect the endpoints to a network fabric of the software-defined network. At least a first interface is identified, where an address of a first endpoint connected to the first interface is not available at the fabric device. A first notification is transmitted to a control plane of the software-defined network based on identifying the first interface, where the control plane may create a flood list which includes the fabric device. Traffic intended for the first endpoint from the network fabric is received by the fabric device can be based on the flood list.Type: GrantFiled: May 1, 2020Date of Patent: April 26, 2022Assignee: CISCO TECHNOLOGY, INC.Inventors: Satish Kondalam, Sanjay Kumar Hooda, Prakash C. Jain, Vikram Vikas Pendharkar
-
Publication number: 20220006738Abstract: Systems, methods, and computer-readable media for communicating policy changes in a Locator/ID Separation Protocol (LISP) based network deployment include receiving, at a first routing device, a first notification from a map server, the first notification indicating a change in a policy for LISP based communication between at least a first endpoint device and at least a second endpoint device, the first endpoint device being connected to a network fabric through the first routing device and the second endpoint device being connected to the network fabric through a second routing device. The first routing device forwards a second notification to the second routing device if one or more entries of a first map cache implemented by the first routing device are affected by the policy change, the second notification indicating a set of one or more endpoints connected to the second routing device that are affected by the policy change.Type: ApplicationFiled: September 15, 2021Publication date: January 6, 2022Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam, Raja Janardanan, Aaditya Vadnere, Shivangi Sharma
-
Publication number: 20210344565Abstract: Systems, methods, and computer-readable storage media are provided for provisioning a common subnet across a number of subscribers and their respective virtual networks using dynamically generated network policies that provide isolation between the subscribers. The dynamic generation of the network policies is performed when a host (e.g. client) is detected (via a switch) as the host joins the computing network via virtual networks. This ability to configure a common subnet for all the subscriber virtual networks allows these subscribers to more easily access external shared services coming from a headquarter site while keeping the separation and segmentation of multiple subscriber virtual networks within a single subnet. This allows the Enterprise fabric to be more simple and convenient to deploy without making security compromises.Type: ApplicationFiled: July 16, 2021Publication date: November 4, 2021Inventors: Sanjay Kumar Hooda, Muninder Singh Sambi, Victor Moreno, Prakash C. Jain, Tarunesh Ahuja, Satish Kondalam
-
Publication number: 20210344595Abstract: Systems, methods, and computer-readable media for communicating policy changes in a Locator/ID Separation Protocol (LISP) based network deployment include receiving, at a first routing device, a first notification from a map server, the first notification indicating a change in a policy for LISP based communication between at least a first endpoint device and at least a second endpoint device, the first endpoint device being connected to a network fabric through the first routing device and the second endpoint device being connected to the network fabric through a second routing device. The first routing device forwards a second notification to the second routing device if one or more entries of a first map cache implemented by the first routing device are affected by the policy change, the second notification indicating a set of one or more endpoints connected to the second routing device that are affected by the policy change.Type: ApplicationFiled: May 1, 2020Publication date: November 4, 2021Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam, Raja Janardanan, Aaditya Vadnere, Shivangi Sharma
-
Publication number: 20210344591Abstract: Systems, methods, and computer-readable media for discovering silent hosts in a software-defined network and directing traffic to the silent hosts in a scalable and targeted manner include determining interfaces of a fabric device that are connected to respective one or more endpoints, where the fabric device is configured to connect the endpoints to a network fabric of the software-defined network. At least a first interface is identified, where an address of a first endpoint connected to the first interface is not available at the fabric device. A first notification is transmitted to a control plane of the software-defined network based on identifying the first interface, where the control plane may create a flood list which includes the fabric device. Traffic intended for the first endpoint from the network fabric is received by the fabric device can be based on the flood list.Type: ApplicationFiled: May 1, 2020Publication date: November 4, 2021Inventors: Satish Kondalam, Sanjay Kumar Hooda, Prakash C. Jain, Vikram Vikas Pendharkar
-
Patent number: 11165702Abstract: Systems, methods, and computer-readable media for communicating policy changes in a Locator/ID Separation Protocol (LISP) based network deployment include receiving, at a first routing device, a first notification from a map server, the first notification indicating a change in a policy for LISP based communication between at least a first endpoint device and at least a second endpoint device, the first endpoint device being connected to a network fabric through the first routing device and the second endpoint device being connected to the network fabric through a second routing device. The first routing device forwards a second notification to the second routing device if one or more entries of a first map cache implemented by the first routing device are affected by the policy change, the second notification indicating a set of one or more endpoints connected to the second routing device that are affected by the policy change.Type: GrantFiled: May 1, 2020Date of Patent: November 2, 2021Assignee: CISCO TECHNOLOGY, INC.Inventors: Prakash C. Jain, Sanjay Kumar Hooda, Satish Kondalam, Raja Janardanan, Aaditya Vadnere, Shivangi Sharma