US 12,278,713 B2
Filtering VLAN packets having malformed tpids
Anirudh Ramesh Iyer, Bangalore (IN); Satish Kumar Selvaraj, San Jose, CA (US); Akhil Ojha, Bangalore (IN); Purushothaman Nandakumaran, Milpitas, CA (US); Aman Aman-Ul-Haq, Vancouver (CA); and Jyothish Kunkumath, Bangalore (IN)
Assigned to ARISTA NETWORKS, INC., Santa Clara, CA (US)
Filed by Arista Networks, Inc., Santa Clara, CA (US)
Filed on Dec. 29, 2021, as Appl. No. 17/565,236.
Claims priority of application No. 202141048769 (IN), filed on Oct. 26, 2021.
Prior Publication US 2023/0147422 A1, May 11, 2023
Int. Cl. H04L 12/46 (2006.01); H04L 47/20 (2022.01); H04L 47/31 (2022.01); H04L 47/32 (2022.01)
CPC H04L 12/465 (2013.01) [H04L 47/20 (2013.01); H04L 47/31 (2013.01); H04L 47/32 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method in a network device to detect and filter virtual local area network (VLAN) packets, the method comprising:
receiving an ingress packet, the ingress packet containing one or more VLAN tags;
identifying a VLAN tag in the ingress packet;
using the identified VLAN tag to access data in the ingress packet, wherein when the identified VLAN tag has a first value, the data is at a first location in the ingress packet, wherein when the identified VLAN tag has a second value, the data is at a second location in the ingress packet different from the first location;
using the data to identify a matched rule among a plurality of rules stored in a memory of the network device; and
processing the ingress packet in accordance with one or more actions associated with the matched rule, wherein the one or more actions includes dropping the ingress packet.