A method, apparatus and computer program product for providing Virtual Routing and Forwarding (VRF) and gateway Media Access Controller (MAC) distribution is presented. At least one subnet associated with a Layer 2 Virtual Switching Network (L2VSN) is provided on a network device. A message is propagated to a distributed Datapath. Network devices install the message as a routable MAC address on the L2VSN for the Layer 3 Virtual Switching Network/Virtual Routing and Forwarding (L3VSN/VRF) associated with the message. Edge devices route packets on the L2VSN addressed to the gateway MAC address.

A communication block apparatus that blocks communication by an information processing apparatus connected to a network. The communication block apparatus includes a guide unit that guides information transmitted from the information processing apparatus, an identification information acquisition unit that acquires identification information for identifying a notified party of a message from the message of a predetermined protocol higher than a transport layer, the message including information guided by the guide unit, a permission determination unit that determines whether to permit communication by the message at least based on the identification information acquired by the identification information acquisition unit, and a communication permission unit that forwards the message to permit the communication by the information processing apparatus when the permission determination unit determines to permit the communication, regardless of the block of the communication by a communication block unit.

A method, apparatus, and computer-readable storage medium are disclosed for processing shared risk group (SRG) information in communications networks. The method includes processing, at a first network layer, first network information comprising a plurality of SRG identifiers. The processing includes producing second network information comprising a smaller number of SRG identifiers than that of the plurality of SRG identifiers. The method further includes sending at least a portion of the second network information to the second network layer. The apparatus includes a network interface adapted to send network information comprising SRG information, a processor coupled to the network interface, and a memory coupled to the processor and adapted to store program instructions operable when executed to carry out steps of the method. The storage medium is configured to store program instructions that when executed are configured to cause a processor to carry out steps of the method.

The present invention provides a data packet routing method and device. When a Switch receives, form an SE, a traffic flow on which service processing is performed, the Switch can determine a forwarding rule of a corresponding service chain according to the traffic flow received from the SE, and route, according to the forwarding rule, a data packet received from the SE. Compared with a case in the prior art in which an SPC needs to deliver a forwarding rule corresponding to each traffic flow to a Switch, the embodiments of the present invention adopt the technical solutions in which the SPC only needs to deliver a forwarding rule corresponding to each service chain to the Switch, thereby reducing signaling interaction between the SPC and the Switch and saving a network overhead.

A method is implemented by a network device executing a local computation engine and a link state routing protocol. The local computation engine and the link state protocol support automatic establishment of redundant paths and cautious restoration in a packet network. The method includes receiving an explicit path (EP) type length value (TLV) via a link state routing protocol, executing a shortest path algorithm to obtain a shortest path for loose hops of a path identified by the EP TLV, the shortest path to be a primary path, updating a network graph to prune links of the primary path or bias links of the primary path, and calculating a backup path using the shortest path algorithm on the updated network graph.

Techniques are described for implementing one or more logical routers within a single physical routing device. These logical routers, as referred to herein, are logically isolated in the sense that they achieve operational and organizational isolation within the routing device without requiring the use of additional or redundant hardware, e.g., additional hardware-based routing controllers. The routing device may, for example, include a computing platform, and a plurality of software process executing within the computing platform, wherein the software processes operate as logical routers. The routing device may include a forwarding component shared by the logical routers to forward network packets received from a network in accordance with the forwarding tables.

The disclosed system may include (1) a cache module, stored in memory, that stores a neighbor cache entry that specifies whether a neighbor of a network node is reachable according to a detection mechanism, (2) a timeout module, stored in memory, that specifies a timing interval in which to select a reachable time threshold, (3) a reception module, stored in memory, that receives event information about whether the neighbor is active, (4) a biasing module, stored in memory, that biases, based on the received event information about whether the neighbor is active, a selection of the reachable time threshold within the timing interval, and (5) a determination module, stored in memory, that determines whether the neighbor is reachable based at least in part on a determination of whether the selected reachable time threshold has been satisfied. Various other systems and methods are also disclosed.

A method, non-transitory computer readable medium, and storage controller computing device that establishes an application interface and a source interface to a programmable switch. A flow table of the programmable switch is updated to insert routing actions associated with the application and source interfaces. Next, when an application request received from an application is locally serviceable is determined. When the determination indicates the application request is not locally serviceable, a migration request for data associated with the application request is sent to the programmable switch from the source interface and a destination address of a source storage server is used. Additionally, a migration response to the migration request including the data from the source storage server is received from the source interface. The data is then stored locally in a destination storage server and thereby is migrated from the source storage server.

A data packet forwarding method including receiving, by a network node, a data packet that comprises a bit string, a BFIR identifier (ID), and a multicast replication path (MRP) ID, wherein the BFIR ID identifies an ingress network node for a multicast group, and wherein the MRP ID identifies the multicast group, identifying an entry in a BIER Replication Path Cache Table (BRCT) using the BFIR ID and the MRP ID, wherein the entry identifies a replication neighbor (NBR) list associated with the BFIR ID and the MRP ID, and forwarding the data packet in accordance with the replication NBR list.

A method for sending and receiving a data through multiple communication paths and an apparatus for receiving a data through multiple communication paths. A method for receiving a data through multiple communication paths by an apparatus for receiving a data includes receiving at least t (here, 0<t=n and n and t are natural numbers) of n shares generated from one unit data by a threshold encryption scheme by an apparatus for sending a data and sent through multiple communication paths on a network; and recovering the unit data using the at least t shares. According to exemplary embodiments of the present invention, data may be sent and received while ensuring confidentiality, integrity, and availability.