公开(公告)号：US20240244037A1

公开(公告)日：2024-07-18

申请号：US18178832

申请日：2023-03-06

Applicant: VMware, Inc.

Inventor： Lan Luo ,  Jianjun Shen ,  Jiajing Hu ,  Wenfeng Liu ,  Donghai Han

IPC: H04L9/40 ,  G06F9/455

CPC classification number: H04L63/029 ,  G06F9/45558 ,  G06F2009/45595

Abstract: Systems and methods for exchanging network information between member clusters include configuring a gateway pool of a member cluster, the gateway pool comprising a plurality of gateway nodes, the member cluster comprising the plurality of gateway nodes and one or more nodes, configuring a gateway node of the plurality of gateway nodes as an active gateway node for the member cluster, writing member cluster information to a storage, the member cluster information indicating address information of the gateway node, reading second member cluster information from the storage, the second member cluster information indicating address information of a gateway node of a second member cluster, establishing a tunnel between the gateway node and the second gateway node based on the second member cluster information, and communicating network traffic from at least one node of the member cluster to at least one node of the second member cluster via the tunnel.

公开(公告)号：US20240113968A1

公开(公告)日：2024-04-04

申请号：US17960126

申请日：2022-10-04

Applicant: VMware, Inc.

Inventor： Danting Liu ,  Qian Sun ,  Jianjun Shen ,  Wenfeng Liu ,  Donghai Han

IPC: H04L45/745 ,  H04L45/02 ,  H04L45/586

CPC classification number: H04L45/745 ,  H04L45/02 ,  H04L45/586

Abstract: Some embodiments provide an automated method for defining externally routable Pods within a Kubernetes cluster. In some embodiments, the Pod operates in a guest cluster has its own VPC (virtual private cloud) network in a datacenter with several other guest clusters that have their own VPC networks and their own set of managers. In some embodiments, a Pod within a GC can be made externally routable so that it can be directly addressable from an external client outside of the Pod's network by using two new Kubernetes CRDs (custom resource definitions), which are an IPPool CRD and a RouteSet CRD. Examples of such external clients include VMs or Pods in another GC or a supervisor cluster connected to the particular GC through a gateway, or from a machine outside of the network of all of the GCs or SC.

公开(公告)号：US11936544B2

公开(公告)日：2024-03-19

申请号：US17820328

申请日：2022-08-17

Applicant: VMware, Inc.

Inventor： Jianwei Sui ,  Danting Liu ,  Donghai Han ,  Wenfeng Liu ,  Jianjun Shen

IPC: G06F9/455 ,  G06F9/54 ,  H04L43/0876

CPC classification number: H04L43/0876 ,  G06F9/45558 ,  G06F9/547 ,  G06F2009/45595

Abstract: A system and method for capturing resource usage information in a network for namespaces in which pods operate are described herein. A data structure specifies a topology that includes a gateway and routing addresses in a network whose usage is to be captured. The data structure is provided to an API of a master node controlling the pods. A controller in the master node enforces the data structure and reports results back to the API.

公开(公告)号：US20240031258A1

公开(公告)日：2024-01-25

申请号：US18372632

申请日：2023-09-25

Applicant: VMware, Inc.

Inventor： Xi Cheng ,  Caixia Jiang ,  Dongrui Mo ,  Jingchun Jason Jiang ,  Xiaoyan Jin ,  Qiong Wang ,  Donghai Han

IPC: H04L43/028 ,  H04L43/10 ,  H04L47/2483 ,  G06F9/455 ,  H04L43/04 ,  H04L69/22 ,  H04L47/41

CPC classification number: H04L43/028 ,  H04L43/10 ,  H04L47/2483 ,  G06F9/45558 ,  H04L43/04 ,  H04L69/22 ,  H04L47/41 ,  G06F2009/45595

Abstract: Some embodiments provide a method for performing data traffic monitoring. The method processes a packet through a packet processing pipeline that includes multiple stages. At a filtering stage, the method tags the packet with a set of monitoring actions for subsequent stages to perform on the packet based on a determination that the packet matches a particular filter. For each stage of a set of packet processing stages subsequent to the filtering stage, the method (i) executes any monitoring actions specified for the stage to perform on the packet and (ii) sends the packet to a next stage in the packet processing pipeline.

公开(公告)号：US20240012664A1

公开(公告)日：2024-01-11

申请号：US17815609

申请日：2022-07-28

Applicant: VMware, Inc.

Inventor： Lan Luo ,  Wenfeng Liu ,  Donghai Han ,  Jianjun Shen

IPC: G06F9/455

CPC classification number: G06F9/45558 ,  G06F2009/45595

Abstract: The disclosure provides an approach for cross-cluster service resource discovery. A method includes obtaining, at a common store in a first node cluster in a cluster set information about a service resource of a second node cluster. The method includes creating a multi-cluster object associated with the service resource, wherein the multi-cluster object provides an association between the service resource and one or more endpoints on the second node cluster. The method includes storing the multi-cluster object in the common store, wherein the multi-cluster object is accessible in the common store by any of the plurality of node clusters in the cluster set to access the service resource on any of the one or more endpoints on the second node cluster.

公开(公告)号：US20230179484A1

公开(公告)日：2023-06-08

申请号：US18102700

申请日：2023-01-28

Applicant: VMware, Inc.

Inventor： Danting Liu ,  Jianjun Shen ,  Wenfeng Liu ,  Rui Cao ,  Ran Gu ,  Donghai Han

IPC: H04L41/08 ,  H04L12/46

CPC classification number: H04L41/0876 ,  H04L12/4641

Abstract: The method of some embodiments allocates a secondary network interface for a pod, which has a primary network interface, in a container network operating on an underlying logical network. The method receives an ND that designates a network segment. The method receives the pod, wherein the pod includes an identifier of the ND. The method then creates a secondary network interface for the pod and connects the secondary network interface to the network segment. In some embodiments, the pods include multiple ND identifiers that each identify a network segment. The method of such embodiments creates multiple secondary network interfaces and attaches the multiple network segments to the multiple secondary network interfaces.

公开(公告)号：US20230087143A1

公开(公告)日：2023-03-23

申请号：US17507462

申请日：2021-10-21

Applicant: VMware, Inc.

Inventor： Xi Cheng ,  Caixia Jiang ,  Dongrui Mo ,  Jingchun Jason Jiang ,  Xiaoyan Jin ,  Qiong Wang ,  Donghai Han

IPC: H04L12/26 ,  H04L12/851 ,  G06F9/455

Abstract: Some embodiments provide a method for performing data traffic monitoring. For each packet processing stage of a set of packet processing stages in a packet processing pipeline, the method determines whether a packet received by the packet processing pipeline specifies a set of monitoring actions to be performed on the packet. When the packet specifies a set of monitoring action, the method determines whether the monitoring actions in the set are supported by the packet processing stage. The method executes the supported monitoring actions on the packet in addition to processing the packet according to configuration data for the stage.

公开(公告)号：US11595388B2

公开(公告)日：2023-02-28

申请号：US17533139

申请日：2021-11-23

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Qi Wu ,  Donghai Han

IPC: H04L9/40 ,  H04L41/0893 ,  H04L61/5014 ,  G06F9/455 ,  H04L61/2557

Abstract: Example methods and systems are provided for location-aware service request handling. The method may comprise: generating and sending location information associated with virtualized computing instance to a service node or a management entity for transmission to the service node. The location information may identify logical element(s) to which the virtualized computing instance is connected. The method may further comprise: in response to detecting, from the virtualized computing instance, a service request for a service from the service node, generating a modified service request by modifying the service request to include the location information associated with the virtualized computing instance; and sending the modified service request towards the service node.

公开(公告)号：US11182352B2

公开(公告)日：2021-11-23

申请号：US16532084

申请日：2019-08-05

Applicant: VMware, Inc.

Inventor： Da Wan ,  Jianjun Shen ,  Feng Pan ,  Pankaj Thakkar ,  Donghai Han

IPC: G06F16/20 ,  G06F9/50 ,  G06F9/455

Abstract: In an embodiment, a computer-implemented method for dynamically exchanging runtime state data between datacenters using a controller bridge is disclosed. In an embodiment, the method comprises: requesting, and receiving, one or more first runtime state data from one or more logical sharding central control planes (“CCPs”) controlling one or more logical sharding hosts; requesting, and receiving, one or more second runtime state data from one or more physical sharding CCPs controlling one or more physical sharding hosts; aggregating, to aggregated runtime state data, the one or more first runtime state data and the one or more second runtime state data; determining updated runtime state data based on the aggregated runtime state data, the one or more first runtime state data, and the one or more second runtime state data; and transmitting the updated runtime state data to the logical sharding CCPs and physical sharding CCPs.

公开(公告)号：US20240388559A1

公开(公告)日：2024-11-21

申请号：US18212674

申请日：2023-06-21

Applicant: VMware, Inc.

Inventor： Quan Tian ,  Jianjun Shen ,  Donghai Han ,  Shuyang Xin ,  Wenqi Qiu

IPC: H04L61/103 ,  H04L9/40

Abstract: Systems and methods for configuring an egress node for an egress pod set comprising one or more pods are provided. The egress pod set may be allocated one or more egress internet protocol (IP) addresses. The egress node may be selected among nodes of a cluster including the one or more pods. The egress node may be configured as the routing destination for an egress IP address selected among the one or more egress internet protocol (IP) addresses.