Some embodiments provide a method that, at a first domain name system (DNS) cluster of a set of DNS clusters, receives a DNS request from a client. The first DNS cluster identifies, based on an identifier of the client in the DNS request, a home DNS cluster of the client. The method forwards the DNS request to the home DNS cluster. The home DNS cluster supplies a DNS response to the client. Identifying the home DNS cluster, in some embodiments, includes performing a hash on the identifier of the client. Supplying the DNS response, in some embodiments, includes receiving a virtual IP (VIP) address associated with one of a plurality of sets of application servers to the client and providing the received VIP address to the client in the DNS response.

An IoT service of a provider network may be used to increase the edge device address space while complying with a radio communication protocol. This may allow a service provider to manage a much larger number of client devices that use a particular radio communication protocol that specifies a limited address space (e.g., LoRaWAN). When the IoT service receives a join request via a private gateway of the client network, the service determines, based on the private gateway ID, the client ID of the client that owns the private gateway/client network. The service may generate a unique internal ID for the edge device by combining the client ID with an assigned device ID. The internal ID identifies the edge device as an activated device of the edge network.

An IoT service of a provider network may be used to increase the edge device address space while complying with a radio communication protocol. This may allow a service provider to manage a much larger number of client devices that use a particular radio communication protocol that specifies a limited address space (e.g., LoRaWAN). When the IoT service receives a join request via a private gateway of the client network, the service determines, based on the private gateway ID, the client ID of the client that owns the private gateway/client network. The service may generate a unique internal ID for the edge device by combining the client ID with an assigned device ID. The internal ID identifies the edge device as an activated device of the edge network.

A method comprises, at a wireless network controller of wireless access points through which wireless client devices that are wireless communicate with the controller: upon receiving, from a wireless client device, a dynamic host configuration protocol (DHCP) request having a media access control (MAC) address, determining whether the wireless client device rotated its MAC address from a previous MAC address to the MAC address; when the wireless client device rotated its MAC address, forwarding, to a DHCP service, the DHCP request with a notification of a MAC address rotation to cause the DHCP service to reassign a previously assigned Internet Protocol (IP) address to the wireless client device; and upon receiving, from the DHCP service, a DHCP offer asserting the previously assigned IP address, forwarding the DHCP offer to the wireless client device.

Disclosed is a method of a first ultra-wideband (UWB) device, including identifying an extended MAC address of the first UWB device, generating a short MAC address of the first UWB device based on the extended MAC address, selecting one of the short MAC address and the extended MAC address as a MAC address identifying the first UWB device, and performing UWB communication with a second UWB device, using the MAC address, wherein the second UWB device operates as a controller defining and controlling a control message for UWB ranging, and wherein the first UWB device operates as a controlee using information included in the control message.

A method of changing a MAC address of a WLAN affiliated STA of a multi-link device (MLD) and related system, device and non-transitory machine-readable storage medium. A new MAC address is generated for an affiliated non-AP STA of a non-AP MLD. A request to change the MAC address of the affiliated non-AP STA to the new MAC address is sent from the non-AP MLD to an AP MLD. An acknowledgement that the new MAC address for the affiliated non-AP STA of the non-AP MLD has been successfully applied by the AP MLD is received by the non-AP MLD from the AP MLD. The MAC address for the affiliated non-AP STA of the non-AP MLD is changed to the new MAC address in response to the acknowledgment.

A network controller provides proactive notification of a wireless client device's address rotation to layer 2 (L2) and/or layer 3 (L3) devices. Traditional methods of device address discovery rely on broadcasting of address queries across a plurality of links until a path to a device having the queried address responds. As device address changes become more frequent in an effort to improve user privacy, traditional methods of address discovery impose a large burden on networks, reducing their performance and efficiency. By proactively propagating address changes to upstream devices, the need for broadcast oriented address discovery techniques is reduced, resulting in improved network performance.

Techniques are provided that rotate a device address used to identify a wireless client device on a wireless network. The wireless client device and at least one network infrastructure component identify a plurality of device addresses associated with the wireless client device. In some embodiments, the plurality of device addresses are generated via a corresponding plurality of invocations of a stateful random number generator, such as a cryptographically secure pseudorandom number generator.

Techniques for transferring address rights (e.g., internet protocol address(es), media access control address(es), etc.) amongst devices in a data center network fabric. A data center (DC) authority (e.g., network controller and/or a service controller) of a data center network fabric may determine that a device in the network is to communicate on an address in the network. The DC authority may create and sign a token that indicates a verifiable authorization to communicate on the address. The token may allow any device that posses the token to communicate on the address, following verification from an associated network switch. Additionally, the token may be signed by a device in the network in possession of the token, and delegated to another device in the data center network fabric following a migration of a service from one server to another, for example.

A system includes a memory including a plurality of rings, an endpoint associated with a ring of the plurality of rings, and a gateway. The gateway is configured to receive a notification from the endpoint regarding a packet made available in the ring associated with the endpoint, access the ring with an RDMA read request, retrieve the packet made available in the ring, and forward the packet on an external network.