公开(公告)号：EP4404534A1

公开(公告)日：2024-07-24

申请号：EP24152705.0

申请日：2024-01-18

申请人： VMware LLC

发明人： Goliya, Abhishek ,  Vaidya, Sachin Mohan ,  Vigneron, Thomas Pierre Labor

IPC分类号： H04L61/5061 ,  H04L45/02 ,  H04L9/40

CPC分类号： H04L61/5061 ,  H04L45/02 ,  H04L63/0227 ,  H04L61/5007

摘要： The technology disclosed herein enables. In a particular example, a control plane for a software-defined data center performs a method including identifying a tenant network address space for use by a tenant of the software-defined data center. The method further includes generating a filter rule for a tenant gateway between the tenant network address space and a provider gateway outside of the tenant network address space. Also, the method includes implementing the filter rule in the tenant gateway, wherein the filter rule prevents the tenant gateway from advertising network addresses outside of the tenant network address space.

公开(公告)号：EP4376359A2

公开(公告)日：2024-05-29

申请号：EP24169319.1

申请日：2021-07-17

申请人： VMware LLC

发明人： Vaidya, Sachin Mohan ,  Kumar, Kausum ,  Bokare, Nikhil ,  Dhas, Mayur ,  Makhijani, Shailesh ,  Wagh, Rushikesh ,  Parashar, Shrinivas Sharad ,  Bhandari, Vaibhav ,  Margarian, Pavlush ,  Pendharkar, Alka ,  Goliya, Abhishek

IPC分类号： H04L9/40

CPC分类号： H04L41/0803 ,  H04L63/029 ,  H04L45/42 ,  H04L45/586 ,  H04L45/64 ,  H04L12/66 ,  H04L49/70 ,  H04L12/44 ,  H04L63/0209 ,  G06F9/45558 ,  G06F2009/4559520130101 ,  H04L41/0895 ,  H04L41/0894

摘要： Some embodiments provide a method for network management and control system that manages one or more logical networks. From a first user, the method receives a definition of one or more security zones for a logical network. Each security zone definition includes a set of security rules for data compute nodes (DCNs) assigned to the security zone. From a second user, the method receives a definition of an application to be deployed in the logical network. The application definition specifies a set of requirements. Based on the specified set of requirements, the method assignes DCNs implementing the application to one or more of the security zones for the logical network.

公开(公告)号：EP4407489A1

公开(公告)日：2024-07-31

申请号：EP24153751.3

申请日：2024-01-24

申请人： VMware LLC

发明人： Makhijani, Shailesh ,  Bokare, Nikhil ,  Vigneron, Thomas Pierre Labor ,  Wagh, Rushikesh ,  Vaidya, Sachin Mohan ,  Margarian, Pavlush ,  Dorr, Josh ,  Bhandari, Vaibhav

IPC分类号： G06F21/10 ,  G06F21/55 ,  H04L9/40 ,  H04W12/08 ,  H04W12/12

CPC分类号： H04L63/10 ,  H04W12/08 ,  G06F21/10

摘要： Some embodiments provide a method of managing policy for a logical network spanning multiple datacenters, including at least first and second datacenters. The method is performed by a network management service operating in a public cloud to manage the datacenters. The method receives (i) a first policy configuration specifying logical network policy at the first datacenter from a first local network manager at the first datacenter and (ii) a second policy configuration specifying logical network policy at the second datacenter from a second local network manager at the second datacenter. The method consolidates the first and second policy configurations into a global policy configuration that also includes policy configuration defined at the network management service. The method uses the global policy configuration to manage the policy configurations for the logical network.

公开(公告)号：EP4376359A3

公开(公告)日：2024-06-26

申请号：EP24169319.1

申请日：2021-07-17

申请人： VMware LLC

发明人： Vaidya, Sachin Mohan ,  Kumar, Kausum ,  Bokare, Nikhil ,  Dhas, Mayur ,  Makhijani, Shailesh ,  Wagh, Rushikesh ,  Parashar, Shrinivas Sharad ,  Bhandari, Vaibhav ,  Margarian, Pavlush ,  Pendharkar, Alka ,  Goliya, Abhishek

IPC分类号： H04L9/40 ,  H04L41/0803 ,  H04L41/0894 ,  H04L41/0895 ,  H04L45/42 ,  H04L45/64

CPC分类号： H04L41/0803 ,  H04L63/029 ,  H04L45/42 ,  H04L45/586 ,  H04L45/64 ,  H04L12/66 ,  H04L49/70 ,  H04L12/44 ,  H04L63/0209 ,  G06F9/45558 ,  G06F2009/4559520130101 ,  H04L41/0895 ,  H04L41/0894

摘要： Some embodiments provide a method for network management and control system that manages one or more logical networks. From a first user, the method receives a definition of one or more security zones for a logical network. Each security zone definition includes a set of security rules for data compute nodes (DCNs) assigned to the security zone. From a second user, the method receives a definition of an application to be deployed in the logical network. The application definition specifies a set of requirements. Based on the specified set of requirements, the method assignes DCNs implementing the application to one or more of the security zones for the logical network.