The present application relates to traffic routing for overlay paths in a public cloud network. A path orchestrator receives a configuration of a set of overlay paths for a wide area network virtualization from a client, each overlay path including virtual routing nodes associated with respective geographic regions and at least one policy for a link between the virtual routing nodes. The path orchestrator is configured to instantiate a plurality of virtual routers on computing resources of the public cloud network located within the respective geographic regions based on the configuration, each virtual router configured to route traffic according to the policy for each link associated with the virtual routing node corresponding to the virtual router. The path orchestrator is configured to scale the plurality of virtual routers based on traffic for the client on the set of overlay paths.

The present application relates to egressing traffic from a public cloud network. An egress traffic manager configures routing at hosts and edge routers within the public cloud network. The egress traffic manager determines, for an edge router, a plurality of current border gateway protocol (BGP) sessions with external networks. The egress traffic manager configures a virtual router hosted on the edge router to route a portion of egress traffic to a selected one of the external networks via one of the BGP sessions. A host is configured to route the portion of egress traffic within the public cloud network to the edge router. An edge router configured to route, by the virtual router, the portion of egress traffic from the edge router to the selected one of the external networks.

A storage system includes a switch and a plurality of storage nodes. The switch is configured to receive a first request from a client. The first request includes an identifier of a storage partition. The switch queries an entry in a forwarding table based on the identifier to determine a target storage node in the plurality of storage nodes. The entry includes a mapping relationship between the identifier and the target storage node. The switch sends the first request to the target storage node. The target storage node is configured to receive the first request from the switch.

The present application relates to traffic routing for overlay paths in a public cloud network. A path orchestrator receives a configuration of a set of overlay paths for a wide area network virtualization from a client, each overlay path including virtual routing nodes associated with respective geographic regions and at least one policy for a link between the virtual routing nodes. The path orchestrator is configured to instantiate a plurality of virtual routers on computing resources of the public cloud network located within the respective geographic regions based on the configuration, each virtual router configured to route traffic according to the policy for each link associated with the virtual routing node corresponding to the virtual router. The path orchestrator is configured to scale the plurality of virtual routers based on traffic for the client on the set of overlay paths.

This application provides a dial-up packet processing method. The method is applied to a dial-up packet processing system. The system includes a controller, an access gateway, a forwarding plane network element, and a control plane network element that are connected to each other. The method includes: The control plane network element receives a dial-up packet from the access gateway, where the dial-up packet is a dial-up packet sent by user equipment to the access gateway; the control plane network element sends an authentication request to an external server, where the authentication request is generated by the control plane network element based on the dial-up packet; the control plane network element receives dial-up success information sent by the external server; and the control plane network element determines the forwarding plane network element based on the dial-up success information.

Techniques are described herein for service chaining in fabric networks such that hardware resources can be preserved without service nodes needing additional capabilities. The techniques may include storing a first configuration associated with a first VRF instance of a service forwarding node that is connected to a first service of a service chain sequence. The first configuration may indicate an identifier and a type associated with a second service of the service chain sequence where traffic is to be sent after the first service. Additionally, the techniques may also include storing a second configuration associated with a second VRF instance of the service forwarding node that is connected to the second service. The second configuration may indicate that the second service is a last service of the service chain sequence. When traffic is received at the service forwarding node, the service forwarding node can determine whether the traffic is pre-service traffic or post-service traffic.

The present application includes operations related to routing communications. In some embodiments, the operations may include receiving, from a third-party communication address, an incoming communication directed toward a general communication address associated with a communication system. The operations may also include routing the incoming communication to a specific communication address associated with the communication system instead of to the general communication address based on a previous outgoing communication being from the specific communication address and being directed toward the third-party communication address.

A method for deep packet inspection (DPI) in a software defined network (SDN). The method includes configuring a plurality of network nodes operable in the SDN with at least one probe instruction; receiving from a network node a first packet of a flow, the first packet matches the at least one probe instruction and includes a first sequence number; receiving from a network node a second packet of the flow, the second packet matches the at least one probe instruction and includes a second sequence number, the second packet is a response of the first packet; computing a mask value respective of at least the first and second sequence numbers indicating which bytes to be mirrored from subsequent packets belonging to the same flow; generating at least one mirror instruction based on at least the mask value; and configuring the plurality of network nodes with at least one mirror instruction.

Embodiments of this application relate to the communication field, and disclose a method, a device, and a system for transmitting a node identifier, to reduce a limitation on delivery of an SR POLICY route and improve network performance The method includes: A forwarding device sends a node identifier to a controller. The forwarding device receives a first SR POLICY route from the controller, where a target attribute of the first SR POLICY route is the node identifier. The forwarding device determines that the node identifier matches the target attribute of the first SR POLICY route, and forwards a traffic packet according to the first SR POLICY route.

A method for configuring performance measurement indication information and a related device. The method includes: a control node determines performance measurement indication information and sends a first advertisement packet in the communication network based on the BGP, where the first advertisement packet carries the performance measurement indication information, so that a plurality of forwarding nodes configure the performance measurement indication information on the plurality of forwarding nodes. In this way, when a data flow on which performance measurement is to be performed is transmitted between a plurality of different ASs, each forwarding node in the different ASs may obtain the performance measurement indication information from the first advertisement packet.