Patents by Inventor Victor M. Moreno

Victor M. Moreno has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Publication number: 20230171662
    Abstract: A wireless telemetry process (WTP) may obtain telemetry data which includes signal strength information associated with a plurality of fabric wireless access points (APs) of a network fabric. The WTP may identify that a signal strength between a current AP and a wireless endpoint is below a threshold. In response, the WTP may select addresses of a set of handoff candidate APs for the wireless endpoint based on the signal strength information. The WTP may communicate, to a map server, a message to register, as entries in a replication list, a plurality of routing locators associated with the addresses of the set of handoff candidate APs for association with an address of the wireless endpoint. The map server may notify a router of the replication list, for replicating packets intended for the wireless endpoint to a plurality of routers that are connected to the set of handoff candidate APs.
    Type: Application
    Filed: November 29, 2021
    Publication date: June 1, 2023
    Inventors: Victor M. Moreno, Sanjay K. Hooda, Errol Fenton Roberts
  • Patent number: 11563682
    Abstract: In one embodiment, a method generally includes a first edge (E) node in a network receiving an encapsulated data packet, wherein the encapsulated data packet comprises an outer header and a data packet, wherein the outer header comprises a first router locator (RLOC) corresponding to the first E node, wherein the data packet comprises an internet protocol (IP) header, and wherein the IP header comprises a destination endpoint identification (EID) corresponding to a host H. The first E node determines whether the host H is attached to the first E node. And in response to the first E node determining the host is attached to the first E node, the first E node forwards the data packet to the host H. The first E node receives a message from another node after the host H detaches from the first E node and reattaches to another E node, wherein the message comprises the destination EID.
    Type: Grant
    Filed: February 19, 2021
    Date of Patent: January 24, 2023
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Sanjay K. Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 11546254
    Abstract: In one embodiment, a method is performed at a node in a multi-site enterprise fabric. The method includes obtaining map entries from a fabric control plane of the multi-site enterprise fabric, where the map entries are associated with identifiers of endpoints in external networks, site and virtual network identifiers of sites in the multi-site enterprise fabric, location identifiers of border nodes, and characteristics of the border nodes. The method further includes receiving a request from a source to connect to an external endpoint. After deriving an external endpoint identifier and source parameters, the method additionally includes establishing at least one connection between the source and the external endpoint via border node(s) that are selected from the map entries based at least in part on the source parameters, the external endpoint identifier, and characteristics of the border node(s) with their site and virtual network identifier(s) along the at least one connection.
    Type: Grant
    Filed: November 16, 2020
    Date of Patent: January 3, 2023
    Assignee: CISCO TECHNOLOGY, INC.
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 11496399
    Abstract: Techniques for improved routing based on network traffic are provided. Telemetry data relating to a first network node of a plurality of network nodes in a locator ID separation protocol (LISP) fabric is received. A first portion of the telemetry data that relates to a first destination of a plurality of destinations is identified. Further, a first routing weight associated with a first interface of the first network node is revised based on the first portion of the telemetry data, where the first interface is associated with the first destination. The revised first routing weight is published to a second plurality of network nodes in the LISP fabric, wherein the second plurality of network nodes route packets to the first network node based in part on the revised first routing weight.
    Type: Grant
    Filed: October 26, 2018
    Date of Patent: November 8, 2022
    Assignee: Cisco Technology, Inc.
    Inventors: Reshad Rahman, Victor M. Moreno
  • Publication number: 20210176173
    Abstract: In one embodiment, a method generally includes a first edge (E) node in a network receiving an encapsulated data packet, wherein the encapsulated data packet comprises an outer header and a data packet, wherein the outer header comprises a first router locator (RLOC) corresponding to the first E node, wherein the data packet comprises an internet protocol (IP) header, and wherein the IP header comprises a destination endpoint identification (EID) corresponding to a host H. The first E node determines whether the host H is attached to the first E node. And in response to the first E node determining the host is attached to the first E node, the first E node forwards the data packet to the host H. The first E node receives a message from another node after the host H detaches from the first E node and reattaches to another E node, wherein the message comprises the destination EID.
    Type: Application
    Filed: February 19, 2021
    Publication date: June 10, 2021
    Inventors: Sanjay K. Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Publication number: 20210135984
    Abstract: In one embodiment, a method is performed at a node in a multi-site enterprise fabric. The method includes obtaining map entries from a fabric control plane of the multi-site enterprise fabric, where the map entries are associated with identifiers of endpoints in external networks, site and virtual network identifiers of sites in the multi-site enterprise fabric, location identifiers of border nodes, and characteristics of the border nodes. The method further includes receiving a request from a source to connect to an external endpoint. After deriving an external endpoint identifier and source parameters, the method additionally includes establishing at least one connection between the source and the external endpoint via border node(s) that are selected from the map entries based at least in part on the source parameters, the external endpoint identifier, and characteristics of the border node(s) with their site and virtual network identifier(s) along the at least one connection.
    Type: Application
    Filed: November 16, 2020
    Publication date: May 6, 2021
    Applicant: Cisco Technology, Inc.
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 10944672
    Abstract: In one embodiment, a method generally includes a first edge (E) node in a network receiving an encapsulated data packet, wherein the encapsulated data packet comprises an outer header and a data packet, wherein the outer header comprises a first router locator (RLOC) corresponding to the first E node, wherein the data packet comprises an internet protocol (IP) header, and wherein the IP header comprises a destination endpoint identification (EID) corresponding to a host H. The first E node determines whether the host H is attached to the first E node. And in response to the first E node determining the host is attached to the first E node, the first E node forwards the data packet to the host H. The first E node receives a message from another node after the host H detaches from the first E node and reattaches to another E node, wherein the message comprises the destination EID.
    Type: Grant
    Filed: December 23, 2019
    Date of Patent: March 9, 2021
    Assignee: Cisco Technology, Inc.
    Inventors: Sanjay K. Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 10917343
    Abstract: A first map request message is sent from a source network device to a mapping network device to determine a destination network device associated with a destination endpoint device and a security association between the source network device and the destination network device. A first response message is received at the source network device that includes data indicating a mapping between the destination network device and the destination endpoint device and data indicating a security association between the source network device and the destination network device. The data is stored at the source network device. A second map request message is sent from the source network device to the mapping network device to update the data indicative of the mapping or the security association. A second response message is received at the source network device from the mapping network device.
    Type: Grant
    Filed: December 10, 2019
    Date of Patent: February 9, 2021
    Assignee: Cisco Technology, Inc.
    Inventors: Sanjay K. Hooda, Satish K. Kondalam, Fabio R. Maino, Victor M. Moreno, Reshad Rahman
  • Patent number: 10841209
    Abstract: In one embodiment, a method is performed at a node in a multi-site enterprise fabric. The method includes obtaining map entries from a fabric control plane of the multi-site enterprise fabric, where the map entries are associated with identifiers of endpoints in external networks, site and virtual network identifiers of sites in the multi-site enterprise fabric, location identifiers of border nodes, and characteristics of the border nodes. The method further includes receiving a request from a source to connect to an external endpoint. After deriving an external endpoint identifier and source parameters, the method additionally includes establishing at least one connection between the source and the external endpoint via border node(s) that are selected from the map entries based at least in part on the source parameters, the external endpoint identifier, and characteristics of the border node(s) with their site and virtual network identifier(s) along the at least one connection.
    Type: Grant
    Filed: December 21, 2018
    Date of Patent: November 17, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 10798195
    Abstract: The embodiments herein push notifications to network devices used by a shared service to which a roaming host in a network fabric is subscribed. For example, a network fabric controller can access a VN policy table which stores the relationships between the virtual networks in the network fabric. Using this table, the controller can identify what shared service VNs (i.e., extranets) can communicate with the host's VN. The controller can push out notifications to the network devices used by the shared service VNs to store the new location of the host. That is, the network devices that locally store a location of the host can update their routing caches to point to the new location of the host. In this manner, the network fabric can reduce the time needed to reconverge on the new location of the host by updating the network devices used by the shared service VNs.
    Type: Grant
    Filed: December 7, 2017
    Date of Patent: October 6, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Sanjay K. Hooda, Prakash Jain, Marc P. Comeras, Victor M. Moreno, Atri Indiresan
  • Patent number: 10791004
    Abstract: In one example, a router is configured to process communications according to a tunneling protocol to provide network overlay tunnels to facilitate virtual private networks (VPNs) for hosts, and to process communications associated with an external network with use of a provider virtualization routing and forwarding (VRF) instance. With use of a subscription function, the router receives an initial set of extranet VPN prefixes associated with the network overlays for storage in association with the provider VRF, as well as regularly receive publications of updates to extranet VPN prefixes associated with the network overlays. With use of a route obtaining function, the router, in response to receiving a communication associated with one of the stored extranet VPN prefixes at the provider VRF, sends to a communications management server a message indicating request for a host-to-router mapping and receive from the communications management server a reply including the host-to-router mapping.
    Type: Grant
    Filed: October 29, 2018
    Date of Patent: September 29, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 10778430
    Abstract: In accordance with various implementations, a method is performed at a source node of a fabric network coupled to a plurality of hosts respectively associated with a plurality of group identifiers. The method includes generating a source public key based on a source private key, a source group identifier of the plurality of group identifiers, and a destination group identifier of the plurality of group identifiers. The method includes sending, from the source node coupled to at least one host associated with the source group identifier to a destination node coupled to at least one host associated with the destination group identifier, the source public key. The method includes receiving, at the source node from the destination node, a destination public key based on a destination private key, the source group identifier, and the destination group identifier. The method further includes generating a shared secret based on the destination public key and the source private key.
    Type: Grant
    Filed: May 1, 2018
    Date of Patent: September 15, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Satish Kondalam, Victor M. Moreno, Sanjay Kumar Hooda, Muhammad Ahmad Imam
  • Patent number: 10749799
    Abstract: In accordance with various embodiments, a method is performed including receiving, at a first node associated with a first instance identifier, a packet from a first host addressed to a second host. The method includes sending, from the first node to the second node, the packet. The method includes receiving, from the second node, a solicit map-request for the second host including the first instance identifier of the first node and the second instance identifier of the second node for the second host. The method includes sending, in response to receiving the solicit map-request for the second host, a map-request for the second host. The method includes receiving, in response to sending the map-request for the second host, a map-reply indicating a third node associated with the second instance identifier. The method includes sending, from the first node to the third node, the packet.
    Type: Grant
    Filed: May 1, 2018
    Date of Patent: August 18, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno
  • Patent number: 10715633
    Abstract: Techniques are disclosed for maintaining reachability of an application moving between a central cloud network and a fog network using duplicate endpoint identifiers. Network characteristics of a cloud environment are monitored. The cloud environment includes a central cloud network and a fog network. A server in the central cloud network hosts an application that serves a client device. The application is assigned an endpoint identifier that is mapped to a locator identifier associated with the central cloud network. It is determined that a condition for moving the application to the fog network is satisfied based on the monitored network characteristics. An instance of the application is installed on a server in the fog network. The endpoint identifier is assigned to the application instance and mapped to a locator identifier associated with the fog network.
    Type: Grant
    Filed: January 10, 2018
    Date of Patent: July 14, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Laxmi Mukund, Victor M. Moreno
  • Publication number: 20200204483
    Abstract: In one embodiment, a method is performed at a node in a multi-site enterprise fabric. The method includes obtaining map entries from a fabric control plane of the multi-site enterprise fabric, where the map entries are associated with identifiers of endpoints in external networks, site and virtual network identifiers of sites in the multi-site enterprise fabric, location identifiers of border nodes, and characteristics of the border nodes. The method further includes receiving a request from a source to connect to an external endpoint. After deriving an external endpoint identifier and source parameters, the method additionally includes establishing at least one connection between the source and the external endpoint via border node(s) that are selected from the map entries based at least in part on the source parameters, the external endpoint identifier, and characteristics of the border node(s) with their site and virtual network identifier(s) along the at least one connection.
    Type: Application
    Filed: December 21, 2018
    Publication date: June 25, 2020
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Patent number: 10652047
    Abstract: In one embodiment, a method is performed at a first node. The method may include receiving, at a first node, a request from a source host associated with a network to communicate with a destination host. The first node may determine whether the destination host is associated with the network. If the destination host is not associated with the network, the first node may determine an instance identifier (IID) and a proxy egress tunnel router (PETR) locator address used to communicate with the destination host. The first node may send an indicator to an ingress tunnel router (ITR) to encapsulate a packet with the IID and the PETR locator address before sending the packet from the source host to the destination host.
    Type: Grant
    Filed: June 16, 2018
    Date of Patent: May 12, 2020
    Assignee: Cisco Technology, Inc.
    Inventors: Prakash Chand Jain, Sanjay Kumar Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Publication number: 20200136968
    Abstract: In one embodiment, a method generally includes a first edge (E) node in a network receiving an encapsulated data packet, wherein the encapsulated data packet comprises an outer header and a data packet, wherein the outer header comprises a first router locator (RLOC) corresponding to the first E node, wherein the data packet comprises an internet protocol (IP) header, and wherein the IP header comprises a destination endpoint identification (EID) corresponding to a host H. The first E node determines whether the host H is attached to the first E node. And in response to the first E node determining the host is attached to the first E node, the first E node forwards the data packet to the host H. The first E node receives a message from another node after the host H detaches from the first E node and reattaches to another E node, wherein the message comprises the destination EID.
    Type: Application
    Filed: December 23, 2019
    Publication date: April 30, 2020
    Inventors: Sanjay K. Hooda, Victor M. Moreno, Satish Kumar Kondalam
  • Publication number: 20200136973
    Abstract: Techniques for improved routing based on network traffic are provided. Telemetry data relating to a first network node of a plurality of network nodes in a locator ID separation protocol (LISP) fabric is received. A first portion of the telemetry data that relates to a first destination of a plurality of destinations is identified. Further, a first routing weight associated with a first interface of the first network node is revised based on the first portion of the telemetry data, where the first interface is associated with the first destination. The revised first routing weight is published to a second plurality of network nodes in the LISP fabric, wherein the second plurality of network nodes route packets to the first network node based in part on the revised first routing weight.
    Type: Application
    Filed: October 26, 2018
    Publication date: April 30, 2020
    Inventors: Reshad RAHMAN, Victor M. MORENO
  • Publication number: 20200136862
    Abstract: In one example, a router is configured to process communications according to a tunneling protocol to provide network overlay tunnels to facilitate virtual private networks (VPNs) for hosts, and to process communications associated with an external network with use of a provider virtualization routing and forwarding (VRF) instance. With use of a subscription function, the router receives an initial set of extranet VPN prefixes associated with the network overlays for storage in association with the provider VRF, as well as regularly receive publications of updates to extranet VPN prefixes associated with the network overlays. With use of a route obtaining function, the router, in response to receiving a communication associated with one of the stored extranet VPN prefixes at the provider VRF, sends to a communications management server a message indicating request for a host-to-router mapping and receive from the communications management server a reply including the host-to-router mapping.
    Type: Application
    Filed: October 29, 2018
    Publication date: April 30, 2020
    Inventors: Prakash Chand JAIN, Sanjay Kumar HOODA, Victor M. MORENO, Satish Kumar KONDALAM
  • Publication number: 20200112509
    Abstract: A first map request message is sent from a source network device to a mapping network device to determine a destination network device associated with a destination endpoint device and a security association between the source network device and the destination network device. A first response message is received at the source network device that includes data indicating a mapping between the destination network device and the destination endpoint device and data indicating a security association between the source network device and the destination network device. The data is stored at the source network device. A second map request message is sent from the source network device to the mapping network device to update the data indicative of the mapping or the security association. A second response message is received at the source network device from the mapping network device.
    Type: Application
    Filed: December 10, 2019
    Publication date: April 9, 2020
    Inventors: Sanjay K. Hooda, Satish K. Kondalam, Fabio R. Maino, Victor M. Moreno, Reshad Rahman