公开(公告)号：US20210152480A1

公开(公告)日：2021-05-20

申请号：US16686922

申请日：2019-11-18

Applicant: VMware, Inc.

Inventor： Suresh MUPPALA ,  Nafisa MANDLIWALA ,  Sirisha MYNENI ,  Venkatakrishnan RAJAGOPALAN

IPC: H04L12/851 ,  G06F9/455 ,  H04L12/863 ,  H04L12/861

Abstract: The disclosure provides an approach for rate limiting packets in a network. Embodiments include receiving, by a rate limiting engine running on a host machine, a network event related to a virtual computing instance running on the host machine, the network event comprising flow information about a network flow. Embodiments include receiving, by the rate limiting engine, context information corresponding to the network flow, wherein the context information comprises one or more of a user characteristic or an application characteristic. Embodiments include determining, by the rate limiting engine, a priority for the network flow by applying a rate limiting policy to the flow information and the context information. Embodiments include providing, by the rate limiting engine, the priority for the network flow to a multiplexer for use in rate limiting the network flow.

公开(公告)号：US20210184914A1

公开(公告)日：2021-06-17

申请号：US16714805

申请日：2019-12-16

Applicant: VMware, Inc.

Inventor： Sirisha MYNENI ,  Kausum KUMAR ,  Nafisa MANDLIWALA ,  Venkatakrishnan RAJAGOPALAN

IPC: H04L12/24 ,  H04L12/46 ,  H04L12/751 ,  H04L29/06

Abstract: Example methods and systems are provided for network diagnosis. One example method may comprise: detecting an egress packet and determining whether each of multiple network issues is detected for the egress packet or a datapath between a first virtualized computing instance and a second virtualized computing instance. The method may also comprise: generating network diagnosis code information specifying whether each of the multiple network issues is detected or not detected; generating an encapsulated packet by encapsulating the egress packet with an outer header that specifies the network diagnosis code information; and sending the encapsulated packet towards the second virtualized computing instance to cause a second computer system to perform one or more remediation actions based on the network diagnosis code information.

公开(公告)号：US20220210167A1

公开(公告)日：2022-06-30

申请号：US17137385

申请日：2020-12-30

Applicant: VMware, Inc.

Inventor： Venkatakrishnan RAJAGOPALAN ,  Sirisha MYNENI ,  Srinivas RAMASWAMY ,  Nafisa MANDLIWALA ,  Robin MANHAS

IPC: H04L29/06 ,  G06F9/455

Abstract: Example methods and systems for context-aware intrusion detection are described. In one example, in response to determination that there is a matching intrusion detection signature based on packet flow information associated with a packet, a computer system may generate an intrusion detection alert that identifies the matching intrusion detection signature and the packet flow information. Further, the computer system may map the intrusion detection alert to contextual information, and generate a context-aware intrusion detection alert to trigger a context-aware remediation action based on at least the contextual information. The intrusion detection alert may be enhanced with context information associated with at least one of the following: the virtualized computing instance, a client device associated with the virtualized computing instance, and a user operating the client device.