A network reachability verification method and apparatus, and a computer storage medium are provided, and pertain to the field of network technologies. The method includes: obtaining a source interface and a destination interface that correspond to a virtual packet in a target network; and verifying reachability of the virtual packet in an overlay network based on a logical topology of a plurality of forwarding instances of a plurality of network devices in the target network, routing information of the plurality of forwarding instances, a source forwarding instance corresponding to the source interface, and a destination forwarding instance corresponding to the destination interface. In this way, single-layer reachability verification on the overlay network in the target network is implemented, and verification accuracy is high.

A system for layer-2 path tracing is provided. During operation, the system can send, from an originating device, a layer-2 trace packet with a packet type in a layer-2 header of the layer-2 trace packet. The packet type can indicate the trace packet to be a tracing packet. The system can then receive a layer-2 response packet from a respective participating device, which supports layer-2 path tracing, on a path to a target device of the trace packet. Subsequently, the system can obtain, from a payload of the response packet, trace information of a forward path to the participating device traversed by the trace packet and a reverse path from the participating device traversed by the response packet. The trace information can identify one or more layer-2 devices along the forward and reverse paths, and include one or more layer-2 identifiers corresponding to the identified one or more layer-2 devices.

Systems, methods, and computer-readable media are provided for generating a unique ID for a sensor in a network. Once the sensor is installed on a component of the network, the sensor can send attributes of the sensor to a control server of the network. The attributes of the sensor can include at least one unique identifier of the sensor or the host component of the sensor. The control server can determine a hash value using a one-way hash function and a secret key, send the hash value to the sensor, and designate the hash value as a sensor ID of the sensor. In response to receiving the sensor ID, the sensor can incorporate the sensor ID in subsequent communication messages. Other components of the network can verify the validity of the sensor using a hash of the at least one unique identifier of the sensor and the secret key.

A system and a method are for routing data packets from or to at least one electronic control unit, referred to as outgoing packets or incoming packets respectively. The at least one electronic control unit is connected to a communications system via a first interface. The communications system is connected via a second interface to a modem suitable for transferring the outgoing packets and the incoming packets to or respectively from at least one telecommunications network through a plurality of access points. Each access point is secured or unsecured. The outgoing and incoming packets are processed according to the type of access point by which the packets are transferred to or from the at least one telecommunications network.

Systems, methods, and devices for offloading network data to a datastore. A system includes a publisher device in a network computing environment. The system includes a subscriber device in the network computing environment. The system includes a datastore independent of the publisher device and the subscriber device, the datastore comprising one or more processors in a processing platform configurable to execute instructions stored in non-transitory computer readable storage media. The instructions includes receiving data from the publisher device. The instructions include storing the data across one or more of a plurality of shared storage devices. The instructions include providing the data to the subscriber device.

In one embodiment, a method includes receiving a broadcast, unknown-unicast, or multicast (BUM) frame from a connected device, where the BUM frame is associated with a broadcast domain, determining a segment within the broadcast domain associated with the device, adding to the BUM frame a segment identifier that uniquely identifies the segment within the broadcast domain, and causing the BUM frame to be delivered to one or more recipient network apparatuses in a network associated with the broadcast domain, where the segment identifier added to the BUM frame is configured to be used by the one or more recipient network apparatuses to selectively forward the BUM frame to connected devices that are associated with segment identifier.

In general, embodiments of the invention relate to routing packets between hosts or virtual machines in different layer 2 domains. More specifically, embodiments of the invention relate to using overlay routing mechanisms in an Internet Protocol (IP) fabric to enable communication between hosts or virtual machines in different layer 2 domains to communication. The overlay routing mechanisms may include direct routing, indirect routing, naked routing, or a combination thereof (e.g., hybrid routing).

In general, techniques are described for forwarding L2 BUM traffic within an Ethernet Virtual Private Network (EVPN) by implementing a forwarding preference for local interfaces of a PE device for broadcast domains in the EVPN. For example, a method includes receiving, by a first provider edge (PE) device of a plurality of PE devices configured with an EVPN instance comprising one or more broadcast domains reachable by a plurality of Ethernet segments connecting the plurality of PE devices to a plurality of customer edge (CE) devices, first EVPN routes; and configuring, by the first PE device in response to determining the first EVPN routes indicate the first PE device has a local interface for each of the plurality of Ethernet segments, forwarding information of the first PE device to cause the first PE device to perform local-bias forwarding of layer 2 (L2) packets for the EVPN instance.

In order to enable dynamic scaling of network services at the edge, novel systems and methods are provided to enable addition of add new nodes or removal of existing nodes while retaining the affinity of the flows through the stateful services. The methods provide a cluster of network nodes that can be dynamically resized to handle and process network traffic that utilizes stateful network services. The existing traffic flows through the edge continue to function during and after the changes to membership of the cluster. All nodes in the cluster operate in active-active mode, i.e., they are receiving and processing traffic flows, thereby maximizing the utilization of the available processing power.

Techniques for in-situ passive performance measurement are described. In one embodiment, a method includes receiving a data packet at a first network element, determining whether measurement information is to be collected for the data packet, providing one or more measurement fields for the data packet based on a determination that measurement information is to be collected for the data packet in which at least one measurement field identifies a measurement type, and forwarding the data packet to a second network element. The method further includes determining, by the second network element, the measurement type for the data packet, and performing one or more actions based on the measurement type.