公开(公告)号：US20240380670A1

公开(公告)日：2024-11-14

申请号：US18195551

申请日：2023-05-10

Applicant: VMware, Inc.

Inventor： Giri Prashanth Subramanian ,  Wenxuan Zhou ,  Satyandra Guthula ,  Santhosh Prabhu Muraleedhara Prabhu ,  Philip Brighten Godfrey

IPC: H04L41/14

Abstract: Some embodiments provide a method for identifying anomalies in a network. The method uses a model of the network to determine connectivity for each of multiple network endpoints to other network endpoints. The method quantifies differences in the determined connectivity for pairs of the network endpoints. The method uses the quantified differences to identify (i) clusters of network endpoints with similar properties and connectivity and (ii) anomalous network endpoints that do not fit the clusters. The anomalous endpoints are reported as potential network anomalies.

公开(公告)号：US20240097966A1

公开(公告)日：2024-03-21

申请号：US18094378

申请日：2023-01-08

Applicant: VMware, Inc.

Inventor： Vipul Harsh ,  Wenxuan Zhou ,  Radhika Niranjan Mysore ,  Philip Brighten Godfrey ,  Sujata Banerjee

IPC: H04L41/0631 ,  H04L41/0604 ,  H04L43/045

CPC classification number: H04L41/0631 ,  H04L41/0627 ,  H04L43/045

Abstract: Some embodiments provide a method for evaluating incidents within a network. The method receives notification of a first incident related to a first network entity and a second incident related to a second network entity. In response to the respective notifications of the first and second incidents, the method uses network monitoring data to generate a first component graph of a first portion of the network that includes the first network entity and a second component graph of a second portion of the network that includes the second network entity. The first and second component graphs respectively include first and second sets of network entities related to the first and second network entities according to the network monitoring data. The method uses the first and second component graphs to respectively identify root causes of the first and second incidents.

公开(公告)号：US20240089184A1

公开(公告)日：2024-03-14

申请号：US17945831

申请日：2022-09-15

Applicant: VMware, Inc.

Inventor： Santhosh Prabhu Muraleedhara Prabhu ,  Kuan-Yen Chou ,  Aanand Nayyar ,  Giri Prashanth Subramanian ,  Wenxuan Zhou ,  Philip Brighten Godfrey

IPC: H04L43/04

CPC classification number: H04L43/04

Abstract: Some embodiments provide a method for evaluating a network. The method identifies multiple network correctness requirements configured for the network. The method instantiates a separate respective evaluation program instance for each respective identified network correctness requirement to evaluate the respective network correctness requirement. At least two evaluation program instances are instantiated on different machines. Each respective evaluation program instance stores in a respective memory a respective set of network device data to evaluate the respective network correctness requirement. Each set of network device data requires less memory than storing network device data for the entire network.

公开(公告)号：US20240097970A1

公开(公告)日：2024-03-21

申请号：US18094379

申请日：2023-01-08

Applicant: VMware, Inc.

Inventor： Vipul Harsh ,  Wenxuan Zhou ,  Radhika Niranjan Mysore ,  Philip Brighten Godfrey ,  Sujata Banerjee

IPC: H04L41/0631 ,  H04L43/08

CPC classification number: H04L41/065 ,  H04L43/08

Abstract: Some embodiments provide a method for identifying root causes of incidents within a network. The method receives a graph of a portion of the network related to a particular network entity for which an incident is reported. The graph specifies dependencies between neighboring network entities in the network. The method uses probabilistic analysis to determine, for each network entity of a set of network entities represented in the graph, whether adjusting a set of metrics of the entity affects one or more metrics of the particular network entity that have been diagnosed as indicative of a problem. The method reports a subset of the network entities with metrics that affect the one or more metrics of the particular network entity as potential root causes of the incident.

公开(公告)号：US20220094614A1

公开(公告)日：2022-03-24

申请号：US17542119

申请日：2021-12-03

Applicant: VMware, Inc.

Inventor： Ahmed Khurshid ,  Matthew Caesar ,  Mo Dong ,  Philip Brighten Godfrey ,  Santhosh Prabhu Muraleedhara Prabhu ,  Wenxuan Zhou

IPC: H04L12/26

Abstract: Systems for and methods of modelling, analyzing and managing data networks are provided. In an embodiment, a plurality of network device interfaces are configured to collect state information for a plurality of network devices. A computer-implemented model of the network comprises a data structure, which may be graph-based. The data structure comprises a plurality of snapshots of the network, each snapshot representing the network at a particular point in time, and the data structure comprises a representation of possible data flow and data packet processing within the network. The data structure contains normalized representations of the network devices corresponding to the location. The normalized representation for each device contains a set of packet processing rules. A user-interface is configured to receive queries from a user that request verification of network policies and predictions of network behavior. The user-interface is configured to display responses to the queries that are obtained using the data structure.

公开(公告)号：US20240089257A1

公开(公告)日：2024-03-14

申请号：US17945833

申请日：2022-09-15

Applicant: VMware, Inc.

Inventor： Santhosh Prabhu Muraleedhara Prabhu ,  Kuan-Yen Chou ,  Aanand Nayyar ,  Giri Prashanth Subramanian ,  Wenxuan Zhou ,  Philip Brighten Godfrey

IPC: H04L9/40

CPC classification number: H04L63/0876 ,  H04L63/0869 ,  H04L63/1408

Abstract: Some embodiments provide a method for evaluating a network correctness requirement at an evaluation program instance assigned to evaluate a particular network correctness requirement. The method identifies data message properties associated with the particular network correctness requirement. The method evaluates the particular network correctness requirement by (i) determining a path through a set of network devices for a data message having the identified data message properties and (ii) from a data storage that stores data message processing rules for a plurality of network devices including the set of network devices and additional network devices, retrieving and storing in memory data specifying data message processing rules for the set of network devices to use in evaluating the particular network correctness requirement.

公开(公告)号：US11627034B1

公开(公告)日：2023-04-11

申请号：US17676266

申请日：2022-02-21

Applicant: VMWARE, INC.

Inventor： Rahul Ajit Chawathe ,  Amarjit Kumar Gupta ,  Gyan Sagar Sinha ,  Wenxuan Zhou

IPC: H04L41/22 ,  H04L41/0631 ,  H04L41/5009 ,  H04L43/045

Abstract: Automated computer-implemented processes and systems are directed to troubleshooting a network used by an application in a data center. The processes and system execute a framework for automated network troubleshooting of an application. The framework performs automated fault localization by traversing a dependency graph that models the network from the observed performance problem, guided by the causality relationships, and for each edge of the graph, performs a test to determine problem causality, terminates at a set of well-defined criteria, and outputs at least one potential root cause for the application performance problem.

公开(公告)号：US12149441B2

公开(公告)日：2024-11-19

申请号：US18343038

申请日：2023-06-28

Applicant: VMware, Inc.

Inventor： Wenxuan Zhou ,  Giri Prashanth Subramanian

IPC: H04L45/00 ,  H04L9/40 ,  H04L41/12 ,  H04L41/22 ,  H04L45/122 ,  H04L45/741 ,  H04L101/622

Abstract: A search engine queries a network model for behavior of the entire network, such as data flow, based on combinations of multiple network elements. The search engine provides the state information and/or predicted behavior of the network by searching network objects in a graph-based model or a network state database that satisfy constraints given in a search query. The search engine provides the state information and/or predicted behavior based on regular-expression or plain language search expressions that do not provide packet header information. The search engine parses such search expression into a sequence of atoms that encode forwarding paths of interest to the user. A flow path through the modeled network can be generated dynamically, within the context of the search queries.

公开(公告)号：US20240097971A1

公开(公告)日：2024-03-21

申请号：US18094380

申请日：2023-01-08

Applicant: VMware, Inc.

Inventor： Vipul Harsh ,  Wenxuan Zhou ,  Radhika Niranjan Mysore ,  Philip Brighten Godfrey ,  Sujata Banerjee

IPC: H04L41/0631 ,  H04L41/0604 ,  H04L43/065

CPC classification number: H04L41/065 ,  H04L41/0627 ,  H04L43/065

Abstract: Some embodiments provide a method for reporting potential root causes of incidents within a network. The method identifies a first network entity as a potential root cause of an incident affecting a second network entity. For each network entity of a set of network entities in a dependency chain beginning with the first network entity and ending with the second network entity, the method assigns a label to the network entity based on measured metrics of the network entity. The method uses a state machine that encodes causality between different network entity labels to generate a human-readable explanation for the first network entity causing the incident affecting the second network entity.

公开(公告)号：US20240086221A1

公开(公告)日：2024-03-14

申请号：US17945837

申请日：2022-09-15

Applicant: VMware, Inc.

Inventor： Santhosh Prabhu Muraleedhara Prabhu ,  Kuan-Yen Chou ,  Aanand Nayyar ,  Giri Prashanth Subramanian ,  Wenxuan Zhou ,  Philip Brighten Godfrey

IPC: G06F9/455

CPC classification number: G06F9/45558 ,  G06F2009/4557 ,  G06F2009/45595

Abstract: Some embodiments provide a method for an orchestration program instance assigned a particular network device in a network. Each network device of multiple network devices is assigned to a different orchestration program instance in a cluster. The method receives a notification message that a configuration for the particular network device has been modified. In response to the notification message, the method identifies a set of network correctness requirements to be evaluated for the network. The method sends a separate notification message for each identified network correctness requirement specifying that the particular network device configuration has been modified so that a set of evaluation program instances can re-evaluate any network correctness requirements dependent on the particular network device.