Patents by Inventor Suresh Vishwanathan
Suresh Vishwanathan has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 11818051Abstract: A first network device may receive first traffic of a session that involves a service. The first network device may identify that the service is configured for distributed node processing. The first network device may identify a second network device that is configured for distributed node processing. The first network device may identify a state machine that is associated with the service. The first network device may determine, based on the state machine, a first function and a second function, wherein the first function is identified by a first label and the second function is identified by a second label. The first network device may process the first traffic based on the first function. The first network device may provide, to the second network device, the first traffic and the second label to permit the second network device to process second traffic in association with the second function.Type: GrantFiled: October 27, 2022Date of Patent: November 14, 2023Assignee: Juniper Networks, Inc.Inventors: Vijay Anand Karuppiah, Mohit Joshi, Suresh Vishwanathan, Sankar Ramamoorthi
-
Publication number: 20230084909Abstract: A first network device may receive first traffic of a session that involves a service. The first network device may identify that the service is configured for distributed node processing. The first network device may identify a second network device that is configured for distributed node processing. The first network device may identify a state machine that is associated with the service. The first network device may determine, based on the state machine, a first function and a second function, wherein the first function is identified by a first label and the second function is identified by a second label. The first network device may process the first traffic based on the first function. The first network device may provide, to the second network device, the first traffic and the second label to permit the second network device to process second traffic in association with the second function.Type: ApplicationFiled: October 27, 2022Publication date: March 16, 2023Inventors: Vijay Anand KARUPPIAH, Mohit JOSHI, Suresh VISHWANATHAN, Sankar RAMAMOORTHI
-
Patent number: 11516136Abstract: A first network device may receive first traffic of a session that involves a service. The first network device may identify that the service is configured for distributed node processing. The first network device may identify a second network device that is configured for distributed node processing. The first network device may identify a state machine that is associated with the service. The first network device may determine, based on the state machine, a first function and a second function, wherein the first function is identified by a first label and the second function is identified by a second label. The first network device may process the first traffic based on the first function. The first network device may provide, to the second network device, the first traffic and the second label to permit the second network device to process second traffic in association with the second function.Type: GrantFiled: December 23, 2020Date of Patent: November 29, 2022Assignee: Juniper Networks, Inc.Inventors: Vijay Anand Karuppiah, Mohit Joshi, Suresh Vishwanathan, Sankar Ramamoorthi
-
Patent number: 11323485Abstract: A cloud network may include a distributed security switch (DSS). The DSS may be to receive configuration information from the hypervisor. The configuration information may include a set of access mode attributes and a security policy. The DSS may be to determine that a packet is to be directed from a source virtual machine to a target virtual machine. The DSS may be to identify an egress interface of the source virtual machine and an ingress interface of the target virtual machine. The egress interface may be associated with a first access mode attribute and the ingress interface being associated with a second access mode attribute. The DSS may be to selectively route the packet, using the shared memory, based on the first access mode attribute, the second access mode attribute, and the security policy.Type: GrantFiled: April 21, 2020Date of Patent: May 3, 2022Assignee: Juniper Networks, Inc.Inventors: Suresh Vishwanathan, Avinash Kumar Singh
-
Publication number: 20210385167Abstract: A first network device may receive first traffic of a session that involves a service. The first network device may identify that the service is configured for distributed node processing. The first network device may identify a second network device that is configured for distributed node processing. The first network device may identify a state machine that is associated with the service. The first network device may determine, based on the state machine, a first function and a second function, wherein the first function is identified by a first label and the second function is identified by a second label. The first network device may process the first traffic based on the first function. The first network device may provide, to the second network device, the first traffic and the second label to permit the second network device to process second traffic in association with the second function.Type: ApplicationFiled: December 23, 2020Publication date: December 9, 2021Inventors: Vijay Anand KARUPPIAH, Mohit JOSHI, Suresh VISHWANATHAN, Sankar RAMAMOORTHI
-
Publication number: 20200252437Abstract: A cloud network may include a distributed security switch (DSS). The DSS may be to receive configuration information from the hypervisor. The configuration information may include a set of access mode attributes and a security policy. The DSS may be to determine that a packet is to be directed from a source virtual machine to a target virtual machine. The DSS may be to identify an egress interface of the source virtual machine and an ingress interface of the target virtual machine. The egress interface may be associated with a first access mode attribute and the ingress interface being associated with a second access mode attribute. The DSS may be to selectively route the packet, using the shared memory, based on the first access mode attribute, the second access mode attribute, and the security policy.Type: ApplicationFiled: April 21, 2020Publication date: August 6, 2020Inventors: Suresh Vishwanathan, Avinash Kumar Singh
-
Patent number: 10645123Abstract: A cloud network may include a distributed security switch (DSS). The DSS may be to receive configuration information from the hypervisor. The configuration information may include a set of access mode attributes and a security policy. The DSS may be to determine that a packet is to be directed from a source virtual machine to a target virtual machine. The DSS may be to identify an egress interface of the source virtual machine and an ingress interface of the target virtual machine. The egress interface may be associated with a first access mode attribute and the ingress interface being associated with a second access mode attribute. The DSS may be to selectively route the packet, using the shared memory, based on the first access mode attribute, the second access mode attribute, and the security policy.Type: GrantFiled: December 28, 2016Date of Patent: May 5, 2020Assignee: Juniper Networks, Inc.Inventors: Suresh Vishwanathan, Avinash Kumar Singh
-
Patent number: 10560480Abstract: A first device may include one or more processors. The first device may receive a network address request to obtain a network address that is associated with an application. The network address request may include application information that identifies the application. The first device may determine that the application is associated with a rule. The first device may store the application information and information identifying the network address request. The first device may obtain the network address based on the network address request. The first device may determine that the network address is associated with the rule. The first device may provide the network address, the rule, and/or the application information to a second device, to permit the second device to enforce the rule, based on determining that the application is associated with the rule and determining that the network address is associated with the rule.Type: GrantFiled: July 8, 2016Date of Patent: February 11, 2020Assignee: Juniper Networks, Inc.Inventors: Anil Kumar Reddy Sirigiri, Suresh Vishwanathan
-
Patent number: 10291682Abstract: A device may determine that a received transmission control protocol (TCP) segment includes data for a hypertext transfer protocol (HTTP) version N stream, where N is greater than or equal to 2. The device may identify, from the received TCP segment, a stream identifier for the HTTP version N stream. The device may determine that a condition is satisfied for releasing one or more TCP segments, associated with the stream identifier, from a TCP reassembly queue. The device may release the one or more TCP segments from the TCP reassembly queue based on determining that the condition is satisfied.Type: GrantFiled: September 22, 2016Date of Patent: May 14, 2019Assignee: Juniper Networks, Inc.Inventors: Suresh Vishwanathan, Anil Kumar Reddy Sirigiri