-
1.发明授权公开(公告)号:US09304798B2
公开(公告)日:2016-04-05
申请号:US14122164
申请日:2011-06-07
申请人: Jayaram Mudigonda , Praveen Yalagandula , Jeffrey Clifford Mogul , Bryan Stiekes , Anna Fischer
发明人: Jayaram Mudigonda , Praveen Yalagandula , Jeffrey Clifford Mogul , Bryan Stiekes , Anna Fischer
CPC分类号: G06F9/45533 , H04L12/4633 , H04L12/4641 , H04L61/103 , H04L67/1095 , H04L67/38
摘要: A scalable, multi-tenant network architecture for a virtualized datacenter is provided. The network architecture includes a network having a plurality of servers connected to a plurality of switches. The plurality of servers hosts a plurality of virtual interfaces for a plurality of tenants. A configuration repository is connected to the network and each server in the plurality of servers has a network agent hosted therein. The network agent encapsulates packets for transmission across the network from a source virtual interface to a destination virtual interface in the plurality of virtual interfaces for a tenant in the plurality of tenants. The packets are encapsulated with information identifying and locating the destination virtual interface, and the information is interpreted by switches connected to the source virtual interface and the destination virtual interface.
摘要翻译: 提供了虚拟化数据中心的可扩展的多租户网络架构。 网络架构包括具有连接到多个交换机的多个服务器的网络。 多个服务器为多个租户托管多个虚拟接口。 配置存储库连接到网络,并且多个服务器中的每个服务器具有托管在其中的网络代理。 网络代理封装用于跨网络传输的分组,用于在多个虚拟接口中的源虚拟接口到多个虚拟接口中的目的地虚拟接口,用于多个租户中的租户。 通过识别和定位目标虚拟接口的信息封装数据包,并且该信息由连接到源虚拟接口和目标虚拟接口的交换机解释。
-
公开(公告)号:US09106578B2
公开(公告)日:2015-08-11
申请号:US13485837
申请日:2012-05-31
申请人: Bryan Stiekes
发明人: Bryan Stiekes
IPC分类号: H04L12/66 , H04L12/931 , H04L12/933
CPC分类号: H04L49/356 , H04L49/15 , H04L49/45
摘要: A network includes at least two core local area network (LAN) fabrics, each including a first core switch cluster deployed at a first sub-core and a second core switch cluster deployed at a second sub-core different from the first sub-core. The network also includes a multi-port link aggregation group to link the first core switch cluster and the second core switch cluster.
摘要翻译: 网络包括至少两个核心局域网(LAN)结构,每个核心局域网(LAN)结构包括部署在第一子核心处的第一核心交换机集群和部署在与第一子核心不同的第二子核心处的第二核心交换机集群。 该网络还包括一个多端口链路聚合组,用于链接第一个核心交换机集群和第二个核心交换机集群。
-
公开(公告)号:US20150143470A1
公开(公告)日:2015-05-21
申请号:US14391834
申请日:2012-07-31
申请人: Bryan Stiekes , Vishwas Manral
发明人: Bryan Stiekes , Vishwas Manral
IPC分类号: H04L29/06
CPC分类号: H04L63/10 , G06F9/468 , H04L63/123 , H04L63/126 , H04L67/303
摘要: According to an implementation, an interface between an application and a network is managed, for instance, by an interface manager. The interface manager is to receive a request from the application for access to the network, determine privileges assigned to the application, and provide the application with a level of access to the network that corresponds to the determined privileges assigned to the application.
摘要翻译: 根据实现,应用和网络之间的接口例如由接口管理器来管理。 接口管理器将从应用程序接收对网络的访问请求,确定分配给应用程序的权限,并向应用程序提供与分配给应用程序的确定权限对应的网络访问级别。
-
公开(公告)号:US09049236B2
公开(公告)日:2015-06-02
申请号:US13880078
申请日:2010-10-22
申请人: Bryan Stiekes
发明人: Bryan Stiekes
IPC分类号: H04L29/06
CPC分类号: H04L63/20 , H04L41/0893 , H04L43/06 , H04L63/0227 , H04L63/04 , H04L63/101 , H04L63/105 , H04L63/1416 , H04L63/306
摘要: A distributed network instrumentation system (100) includes a security management station (110) including a global network policy decomposer (112) configured to decompose global network security policies to local security policies for distributed policy enforcement, and a network interface (220) communicatively coupled to a compute platform (200). The network interface (220) is configured to off-load processing of the local security policies and end-to-end encryption from an operating system (210) of the compute platform (200) for facilitating network instrumentation.
摘要翻译: 分布式网络仪表系统(100)包括安全管理站(110),安全管理站(110)包括被配置为将全局网络安全策略分解成用于分布式策略实施的本地安全策略的全局网络策略分解器(112),以及通信耦合的网络接口 到计算平台(200)。 网络接口(220)被配置为从计算平台(200)的操作系统(210)卸载本地安全策略和端到端加密的处理,以便于网络工具。
-
公开(公告)号:US20130212641A1
公开(公告)日:2013-08-15
申请号:US13880078
申请日:2010-10-22
申请人: Bryan Stiekes
发明人: Bryan Stiekes
IPC分类号: H04L29/06
CPC分类号: H04L63/20 , H04L41/0893 , H04L43/06 , H04L63/0227 , H04L63/04 , H04L63/101 , H04L63/105 , H04L63/1416 , H04L63/306
摘要: A distributed network instrumentation system (100) includes a security management station (110) including a global network policy decomposer (112) configured to decompose global network security policies to local security policies for distributed policy enforcement, and a network interface (220) communicatively coupled to a compute platform (200), The network interface (220) is configured to off-load processing of the local security policies and end-to-end encryption from an operating system (210) of the compute platform (200) for facilitating network instrumentation.
摘要翻译: 分布式网络仪表系统(100)包括安全管理站(110),安全管理站(110)包括被配置为将全局网络安全策略分解成用于分布式策略实施的本地安全策略的全局网络策略分解器(112),以及通信耦合的网络接口 网络接口(220)被配置为从计算平台(200)的操作系统(210)卸载本地安全策略和端到端加密的处理,以便于网络 仪器仪表。
-
公开(公告)号:US20130322427A1
公开(公告)日:2013-12-05
申请号:US13485837
申请日:2012-05-31
申请人: Bryan Stiekes
发明人: Bryan Stiekes
CPC分类号: H04L49/356 , H04L49/15 , H04L49/45
摘要: A network includes at least two core local area network (LAN) fabrics, each including a first core switch cluster deployed at a first sub-core and a second core switch cluster deployed at a second sub-core different from the first sub-core. The network also includes a multi-port link aggregation group to link the first core switch cluster and the second core switch cluster.
摘要翻译: 网络包括至少两个核心局域网(LAN)结构,每个核心局域网(LAN)结构包括部署在第一子核心处的第一核心交换机集群和部署在与第一子核心不同的第二子核心处的第二核心交换机集群。 该网络还包括一个多端口链路聚合组,用于链接第一个核心交换机集群和第二个核心交换机集群。
-
-
-
-
-
搜索结果
6 条记录 (耗时 0.02 秒)
