公开(公告)号：US20230130529A1

公开(公告)日：2023-04-27

申请号：US18088562

申请日：2022-12-24

Applicant: VMware, Inc.

Inventor： Dexiang Wang ,  Yong Wang ,  Jerome Catrouillet ,  Sreeram Kumar Ravinoothala

IPC: H04L47/2466 ,  H04L12/66 ,  H04L69/22 ,  H04L9/40 ,  H04L69/326 ,  H04L61/5007

Abstract: Some embodiments provide a method for a gateway datapath that executes on a gateway device to implement logical routers for a set of logical networks and process traffic between the logical networks and an external network. The method receives a data message at the gateway device. To process the data message, the method executes a set of processing stages that includes a processing stage for a particular logical router. As part of the processing stage for the particular logical router, the method (i) uses an access control list (ACL) table to determine whether the data message is subject to rate limiting controls defined for the particular logical router and (ii) only when the data message is subject to rate limiting controls, determines whether to allow the data message according to a rate limiting mechanism for the particular logical router.

公开(公告)号：US11539633B2

公开(公告)日：2022-12-27

申请号：US17008576

申请日：2020-08-31

Applicant: VMware, Inc.

Inventor： Dexiang Wang ,  Yong Wang ,  Jerome Catrouillet ,  Sreeram Ravinoothala

IPC: H04L47/2466 ,  H04L12/66 ,  H04L69/22 ,  H04L9/40 ,  H04L69/326 ,  H04L61/5007 ,  H04L101/686

Abstract: Some embodiments provide a method for a gateway datapath that executes on a gateway device to implement logical routers for a set of logical networks and process traffic between the logical networks and an external network. The method receives a data message at the gateway device. To process the data message, the method executes a set of processing stages that includes a processing stage for a particular logical router. As part of the processing stage for the particular logical router, the method (i) uses an access control list (ACL) table to determine whether the data message is subject to rate limiting controls defined for the particular logical router and (ii) only when the data message is subject to rate limiting controls, determines whether to allow the data message according to a rate limiting mechanism for the particular logical router.

公开(公告)号：US11533259B2

公开(公告)日：2022-12-20

申请号：US16520876

申请日：2019-07-24

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  Jerome Catrouillet ,  Sri Mohana Singamsetty

IPC: H04L45/74 ,  H04L12/66 ,  H04L45/586

Abstract: The present disclosure provides an approach for scaling the number of VNFs in a data center without scaling the number of control sessions between VNFs and a data center gateway. The approach includes opening a session between a VNF and a route server, rather than between the VNF and the gateway, when the VNF needs to send its connectivity information to the gateway. The VNF sends its connectivity information to the route server, and the route server forwards the connectivity information to the gateway. The gateway receives connectivity information of a plurality of VNFs in the data center from the route server rather than from each of the VNFs individually. The connectivity information is then used to send packets, by the gateway to a VNF, for processing. The packets are sent using three layers of networking: an underlay physical network, an overlay logical network, and a second overlay logical network.

公开(公告)号：US20220393983A1

公开(公告)日：2022-12-08

申请号：US17569276

申请日：2022-01-05

Applicant: VMware, Inc.

Inventor： Dexiang Wang ,  Sreeram Kumar Ravinoothala ,  Yong Wang ,  Jerome Catrouillet

IPC: H04L47/2416 ,  H04L47/2425 ,  H04L47/125 ,  H04L47/122 ,  H04L47/78 ,  H04L43/0888

Abstract: A network system that implements quality of service (QoS) by rate limiting at a logical network entity is provided. The logical network entity includes multiple transport nodes for transporting network traffic in and out of the logical network entity. The system monitors traffic loads of the multiple transport nodes of the logical network entity. The system allocates a local CR and a local BS to each of the multiple transport nodes. The allocated local CR and the local BS are determined based on the CR and BS parameters of the logical network entity and based on the monitored traffic loads. Each transport node of the logical network entity in turn controls an amount of data being processed by the transport node based on a token bucket value that is computed based on the local CR and the local BS of the transport node.