公开(公告)号：US20230262035A1

公开(公告)日：2023-08-17

申请号：US17672011

申请日：2022-02-15

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： HUIMENG HUANG ,  Jianpo Han ,  Zhijun Ren ,  Chunfeng Wang

IPC: H04L9/40

CPC classification number: H04L63/0485 ,  H04L63/029 ,  H04L63/164

Abstract: Systems are methods are provided for implementing load balancing of IPsec security associations (SAs) SAs between different heterogeneous cores, for example in a multiple controller systems. The balancing of IPsec SAs are performed using software implementations of IPsec offloading and/or hardware implementations of IPsec offloading. By balancing the processing functions related to orchestration of IPsec SAs between hardware (e.g., IPsec hardware accelerator) and software (e.g., IPsec software accelerator), the methods realize increased optimization, improved user experience, and enhanced product performance in networks using IPsec. For example, an IPsec session is initiated, and it is determined whether a resource limitation for a hardware-based IPsec accelerator has been reached. If the limitation for the hardware-based IPsec accelerator has been reached, processing for the IPsec SA for the initiated IPsec session is offloaded to a software-based IPsec accelerator.

公开(公告)号：US20240388560A1

公开(公告)日：2024-11-21

申请号：US18197487

申请日：2023-05-15

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Ke Xu ,  Zhijun Ren ,  Chunfeng Wang

IPC: H04L61/2596 ,  H04L9/40 ,  H04L69/22 ,  H04L69/40

Abstract: A first switch port receives a first control packet, a header having a source media access control (MAC) address of a first MAC of a first interface of a sending device and a payload containing a second MAC of a second interface of the same sending device. The first and second interfaces form a bonded interface for failover purposes on the sending device. A second switch port receives a second control packet, a header having the second MAC as its source MAC and a payload containing the first MAC. The switch associates the first and second MAC addresses as related MAC addresses associated with the bonded interface. The switch facilitates failover between the secure interfaces via multiple uplinks while maintaining the port security on the switch by allowing transmission of data from either the first or second MAC address, associated as related MAC addresses, without triggering a port security violation.

公开(公告)号：US12132714B2

公开(公告)日：2024-10-29

申请号：US17672011

申请日：2022-02-15

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Huimeng Huang ,  Jianpo Han ,  Zhijun Ren ,  Chunfeng Wang

IPC: H04L67/1004 ,  H04L9/40 ,  H04L12/46 ,  H04L67/141

CPC classification number: H04L63/0485 ,  H04L12/4633 ,  H04L63/029 ,  H04L63/164 ,  H04L67/1004 ,  H04L67/141

Abstract: Systems are methods are provided for implementing load balancing of IPsec security associations (SAs) SAs between different heterogeneous cores, for example in a multiple controller systems. The balancing of IPsec SAs are performed using software implementations of IPsec offloading and/or hardware implementations of IPsec offloading. By balancing the processing functions related to orchestration of IPsec SAs between hardware (e.g., IPsec hardware accelerator) and software (e.g., IPsec software accelerator), the methods realize increased optimization, improved user experience, and enhanced product performance in networks using IPsec. For example, an IPsec session is initiated, and it is determined whether a resource limitation for a hardware-based IPsec accelerator has been reached. If the limitation for the hardware-based IPsec accelerator has been reached, processing for the IPsec SA for the initiated IPsec session is offloaded to a software-based IPsec accelerator.

公开(公告)号：US12301536B2

公开(公告)日：2025-05-13

申请号：US18460409

申请日：2023-09-01

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Zhijun Ren ,  Xiaoding Shang ,  Hao Lu ,  Qiwei Chang

IPC: H04L61/5014 ,  H04L61/10 ,  H04L61/103

Abstract: An AP sets up a data tunnel to a remote network and monitors a remote DHCP session between a client device and a remote DHCP server in the remote network. The remote DHCP server assigns a remote IP address to the client device, and communication between the client device and the remote network is based on the remote IP address. In response to determining completion of the remote DHCP session, the AP initializes a local DHCP session with a local DHCP server in a local network to obtain a local IP address for the client device. Communication between the client device and the local network is based on the local IP address. In response to detecting the client device roaming from the AP to a target AP, the AP forwards the remote and local IP addresses and session data of active sessions on the client device to the target AP.

公开(公告)号：US20250142466A1

公开(公告)日：2025-05-01

申请号：US18498253

申请日：2023-10-31

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Guangning Qin ,  Qin Wei ,  Zhijun Ren ,  Chunfeng Wang

IPC: H04W48/20 ,  H04W12/06 ,  H04W48/16

Abstract: A method for accelerating provisioning of wireless device. The method comprises receiving, by an access point (AP), a mapping of a wireless device and a further AP from a server. The method further comprises receiving, by the AP, presence announcement information from the wireless device. The method further comprises transmitting, by the AP and based on the received mapping, the received presence announcement information to the further AP. The method further comprises receiving, by the AP, response information for the wireless device from the further AP, the response information including an authentication request for the wireless device. The method further comprises transmitting, by the AP, the response information to the wireless device. In this manner, the provisioning ability of the provision AP can be extended to the non-provision AP, the provisioning time can be reduced, and the provisioning process can be accelerated.

公开(公告)号：US20250063613A1

公开(公告)日：2025-02-20

申请号：US18449328

申请日：2023-08-14

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Zhijun Ren ,  Chunfeng Wang ,  Jinzhao Ren ,  Yue Han

IPC: H04W76/12 ,  H04W48/16 ,  H04W72/542

Abstract: In implementations of the present disclosure, there is provided an approach for reducing unnecessary network down. A method comprises determining a plurality of virtual access points (VAPs) of the AP in a radio frequency (RF) band. Then, the plurality of VAPs are divided into a plurality of VAP zones based on a set of data forwarding entities corresponding to overlay VAPs in the plurality of VAPs, and the plurality of VAP zones includes a bridge zone and one or more overlay zones. A VAP is selected from the bridge zone for allocation to an MBSSID group of a set of MBSSID groups for the plurality of VAPs as a transmitted VAP (TX-VAP). The TX-VAP is used to transmit a beacon frame for the MBSSID group. Implementations of the present disclosure can help the AP to reduce unnecessary network down caused by data tunnel broken and limit the negative network impact.

公开(公告)号：US20250080493A1

公开(公告)日：2025-03-06

申请号：US18460409

申请日：2023-09-01

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Zhijun Ren ,  Xiaoding Shang ,  Hao Lu ,  Qiwei Chang

IPC: H04L61/5014 ,  H04L61/10

Abstract: An AP sets up a data tunnel to a remote network and monitors a remote DHCP session between a client device and a remote DHCP server in the remote network. The remote DHCP server assigns a remote IP address to the client device, and communication between the client device and the remote network is based on the remote IP address. In response to determining completion of the remote DHCP session, the AP initializes a local DHCP session with a local DHCP server in a local network to obtain a local IP address for the client device. Communication between the client device and the local network is based on the local IP address. In response to detecting the client device roaming from the AP to a target AP, the AP forwards the remote and local IP addresses and session data of active sessions on the client device to the target AP.

公开(公告)号：US12120611B2

公开(公告)日：2024-10-15

申请号：US17599727

申请日：2019-05-01

Applicant: HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP

Inventor： Mohd Shahnawaz Siraj ,  Shruthi Koundinya ,  Manoj Thawani ,  Zhijun Ren ,  Gaurav Patwardhan

IPC: H04W52/02

CPC classification number: H04W52/0229

Abstract: Examples described herein provide wake-up of a network device. Examples include receiving, by a network interface of a first network device having a first Media Access Control (MAC) address, a request to wake-up a second network device having a second MAC address that is assigned to a same subnet as the first MAC address, and in response to the request, generating, by the first network device, a first wake-up frame having a destination address of the second MAC address and configured to cause the second network device to transition from operating in the first power mode to operating in the second power mode. Examples include transmitting, by the network interface of the first network device, the first wake-up frame to the second MAC address of the second network device.

公开(公告)号：US11985038B2

公开(公告)日：2024-05-14

申请号：US17528334

申请日：2021-11-17

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Liya Yi ,  Zhijun Ren ,  Chunfeng Wang ,  Jishi Wang

IPC: H04L41/14 ,  H04L61/4511 ,  G06F8/61

CPC classification number: H04L41/14 ,  H04L61/4511 ,  G06F8/61

Abstract: Examples described herein relate to a selection of a network device in a network installation for a forwarder operation. Selection may include computing a performance score based on a set of performance parameters. Broadcasting the computed performance score to other network devices. Receiving performance scores from the other network devices. Comparing the received performance scores with the computed performance score. Continuing in the forwarder mode based on a determination that the received performance scores are less than its computed performance score. Receiving multicast Domain Name Service (mDNS) packets from one or more client devices. Sending the received mDNS packets to a central service.

公开(公告)号：US20220167272A1

公开(公告)日：2022-05-26

申请号：US17599727

申请日：2019-05-01

Applicant: Hewlett Packard Enterprise Development LP

Inventor： Mohd Shahnawaz Siraj ,  Shruthi Koundinya ,  Manoj Thawani ,  Zhijun Ren ,  Gaurav Patwardhan

IPC: H04W52/02

Abstract: Examples described herein provide wake-up of a network device. Examples include receiving, by a network interface of a first network device having a first Media Access Control (MAC) address, a request to wake-up a second network device having a second MAC address that is assigned to a same subnet as the first MAC address, and in response to the request, generating, by the first network device, a first wake-up frame having a destination address of the second MAC address and configured to cause the second network device to transition from operating in the first power mode to operating in the second power mode. Examples include transmitting, by the network interface of the first network device, the first wake-up frame to the second MAC address of the second network device.