公开(公告)号：US11140218B2

公开(公告)日：2021-10-05

申请号：US16668485

申请日：2019-10-30

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L29/08 ,  H04L29/06 ,  H04L12/851 ,  H04L12/859

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US20210135998A1

公开(公告)日：2021-05-06

申请号：US17144652

申请日：2021-01-08

Applicant: VMware, Inc.

Inventor： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC: H04L12/851 ,  H04L12/813 ,  H04L12/855 ,  H04L12/863 ,  H04L12/947 ,  H04L12/935 ,  H04L29/06

Abstract: A switch in a slice-based network can be used to enforce quality of service (“QoS”). Agents can run in the switches, such as in the core of each switch. The switches can sort ingress packets into slice-specific ingress queues in a slice-based pool. The slices can have different QoS prioritizations. A switch-wide policing algorithm can move the slice-specific packets to egress interfaces. Then, one or more user-defined egress policing algorithms can prioritize which packets are sent out into the network first based on slice classifications.

公开(公告)号：US10979314B2

公开(公告)日：2021-04-13

申请号：US16256668

申请日：2019-01-24

Applicant: VMWARE, INC.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou

IPC: H04L12/24 ,  G06F9/455

Abstract: Examples can include an optimizer that dynamically determines where to place virtual network functions for a slice in a distributed Telco cloud network. The optimizer can determine a slice path that complies with a service level agreement and balances network load. The virtual network functions of the slice can be provisioned at clouds identified by the optimal slice path. In one example, performance metrics are normalized, and tenant-selected weights can be applied. This can allow the optimizer to prioritize particular SLA attributes in choosing an optimal slice path.

公开(公告)号：US20210067421A1

公开(公告)日：2021-03-04

申请号：US16722795

申请日：2019-12-20

Applicant: VMWARE, INC.

Inventor： Robert Kidd ,  Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L12/24 ,  H04W28/24 ,  H04L12/927 ,  H04L12/723 ,  H04L12/933 ,  H04W76/12 ,  H04W28/20

Abstract: In a slice-based network, slice multiplexers can be used to anchor inter-cloud tunnels across different clouds in a slice path. The slice multiplexers can dynamically change a total allocated bandwidth of an outer tunnel and reconfigure relative slice bandwidths of inner tunnels. This can result in an optimized bandwidth allocation that enforces slice priorities, maintains required SLA performance levels, and minimizes total allocated bandwidth on the network connection. The dynamic changes can be based on slice priority levels, total number of slices, and historical slice throughput.

公开(公告)号：US20200275358A1

公开(公告)日：2020-08-27

申请号：US16443812

申请日：2019-06-17

Applicant: VMware, Inc.

Inventor： Marc-Andre Bordeleau ,  Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Edward Choh ,  Ojas Gupta ,  Georgios Oikonomou ,  Robert Kidd

IPC: H04W48/18 ,  H04L12/26 ,  H04L29/06 ,  G06F9/455

Abstract: Some embodiments provide a method for a network slice selector. From an electronic device, the method receives a connection initiation message for a connection between the electronic device and a network domain. The method exchanges a set of connection initiation messages with the electronic device to set up the connection. The method receives a data message belonging to the connection from the electronic device. The method selects one of multiple network slices to which the electronic device has access as the network slice for the connection based on analysis of the received data message. The method forwards the data message and subsequent data messages belonging to the connection onto the selected network slice to be delivered to the network domain.

公开(公告)号：US11722559B2

公开(公告)日：2023-08-08

申请号：US17492626

申请日：2021-10-03

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L67/1012 ,  H04L69/22 ,  H04L47/2483 ,  H04L47/2475 ,  H04L47/2441 ,  H04L67/51

CPC classification number: H04L67/1012 ,  H04L47/2441 ,  H04L47/2475 ,  H04L47/2483 ,  H04L67/51 ,  H04L69/22

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US11595315B2

公开(公告)日：2023-02-28

申请号：US17144652

申请日：2021-01-08

Applicant: VMware, Inc.

Inventor： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC: H04L47/2441 ,  H04L47/20 ,  H04L49/25 ,  H04L49/00 ,  H04L47/2425 ,  H04L47/2466 ,  H04L47/62 ,  H04L69/22

Abstract: A switch in a slice-based network can be used to enforce quality of service (“QoS”). Agents can run in the switches, such as in the core of each switch. The switches can sort ingress packets into slice-specific ingress queues in a slice-based pool. The slices can have different QoS prioritizations. A switch-wide policing algorithm can move the slice-specific packets to egress interfaces. Then, one or more user-defined egress policing algorithms can prioritize which packets are sent out into the network first based on slice classifications.

公开(公告)号：US11283717B2

公开(公告)日：2022-03-22

申请号：US16668505

申请日：2019-10-30

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L12/743 ,  H04L45/7453 ,  H04L45/28 ,  H04L9/06 ,  H04L45/00 ,  H04L45/021

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US20210314255A1

公开(公告)日：2021-10-07

申请号：US17352258

申请日：2021-06-19

Applicant: VMware, Inc.

Inventor： Raja Kommula ,  Constantine Polychronopoulos ,  Thayumanavan Sridhar ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou ,  Jeremy Tidemann

IPC: H04L12/707 ,  H04L12/721

Abstract: Some embodiments provide a novel method for adjusting a path for a packet flow from a source machine to a destination machine in a network. The method of some embodiments identifies a condition at a first forwarding element along a first path traversed by the packet flow through the network. The first path traverses through a hardware, second forwarding element before the first forwarding element. In some embodiments, the second forwarding element includes a programmable data plane circuit. The method, in some embodiments, uses an application programming interface (API) of the programmable data plane circuit to provide a set of parameters to the data plane circuit that cause the data plane circuit to forego selecting the first path to forward the packets of the packet flow to the destination machine and instead to select a second path, not traversing the first forwarding element, to the destination machine.

公开(公告)号：US20210135992A1

公开(公告)日：2021-05-06

申请号：US16668505

申请日：2019-10-30

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L12/743 ,  H04L12/703 ,  H04L12/755 ,  H04L12/707 ,  H04L9/06

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.