US 12,413,518 B2
Mapping of IPSec tunnels to SD-WAN segmentation
Steven Wood, Ottawa (CA); Balaji Sundararajan, Fremont, CA (US); Laxmikantha Reddy Ponnuru, San Ramon, CA (US); Avinash Shah, Pleasanton, CA (US); Pritam Baruah, Fremont, CA (US); Venkatesh Nataraj, Union City, CA (US); and Ganesh Devendrachar, Milpitas, CA (US)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Jan. 10, 2024, as Appl. No. 18/409,701.
Claims priority of provisional application 63/578,937, filed on Aug. 25, 2023.
Prior Publication US 2025/0071060 A1, Feb. 27, 2025
Int. Cl. H04L 45/76 (2022.01); H04L 12/46 (2006.01)
CPC H04L 45/76 (2022.05) [H04L 12/4633 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
receiving, by a Virtual Routing and Forwarding (VRF) router, a flow of traffic bound for a destination from a Local Area Network (LAN) side of a Software-Defined Wide Area Network (SD-WAN) router over an IPSec tunnel, wherein the destination of the flow of traffic is a cloud based service;
determining, by the VRF Router, an IP address associated with the LAN side of the SD-WAN router;
determining, by the VRF Router, a VRF segment in a SD-WAN fabric associated with the cloud based service;
mapping, by the VRF Router, the VRF segment to the IP address of the LAN side;
forwarding the flow of traffic originating from the LAN side of the router on the VRF segment associated with the cloud based service; and
sending the flow of traffic to the destination via the VRF Router.