公开(公告)号：US20220021615A1

公开(公告)日：2022-01-20

申请号：US16931207

申请日：2020-07-16

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  Mani Kancherla ,  Jayant Jain ,  Anirban Sengupta

IPC: H04L12/749 ,  H04L29/12 ,  H04L12/24 ,  H04L12/715 ,  H04L12/66

Abstract: Some embodiments of the invention provide novel methods for facilitating a distributed SNAT (dSNAT) middlebox service operation for a first network at a host computer in the first network on which the dSNAT middlebox service operation is performed and a gateway device between the first network and a second network. The novel methods enable dSNAT that provides stateful SNAT at multiple host computers, thus avoiding the bottleneck problem associated with providing stateful SNAT at gateways and also significantly reduces the need to redirect packets received at the wrong host by using a capacity of off-the-shelf gateway devices to perform IPv6 encapsulation for IPv4 packets and assigning locally unique IPv6 addresses to each host executing a dSNAT middlebox service instance that are used by the gateway device.

公开(公告)号：US11088935B2

公开(公告)日：2021-08-10

申请号：US16727968

申请日：2019-12-27

Applicant: VMWARE, INC.

Inventor： Ankur Dubey ,  Sami Boutros ,  Abhishek Goliya

IPC: G06F15/16 ,  H04L12/751 ,  H04L12/24 ,  H04L29/12 ,  H04L12/745 ,  H04L12/46

Abstract: Example methods and network devices for tunnel-based routing calculation. One example method may comprise establishing a tunnel between a first tunnel interface and a second tunnel interface; establishing a first session for routing information exchange between a first tunnel endpoint and an underlay network device; establishing a second session for routing information exchange between the first tunnel interface and the second tunnel interface over the tunnel. In response to receiving first routing information over the first session, the underlay network device may be configured to be a next hop to reach the second tunnel endpoint by updating a routing table to include a first entry. In response to receiving second routing information from the second tunnel interface over the second session, the underlay network device may be retained as the next hop based on an excluded address specified in the second routing information.

公开(公告)号：US20230179564A1

公开(公告)日：2023-06-08

申请号：US18102697

申请日：2023-01-28

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  Mani Kancherla ,  Jayant Jain ,  Anirban Sengupta

IPC: H04L61/256 ,  H04L61/2592 ,  H04L45/745 ,  H04L12/66 ,  H04L61/5007

CPC classification number: H04L61/256 ,  H04L12/66 ,  H04L45/745 ,  H04L61/2592 ,  H04L61/5007 ,  H04L2101/659

Abstract: Some embodiments of the invention provide novel methods for facilitating a distributed SNAT (dSNAT) middlebox service operation for a first network at a host computer in the first network on which the dSNAT middlebox service operation is performed and a gateway device between the first network and a second network. The novel methods enable dSNAT that provides stateful SNAT at multiple host computers, thus avoiding the bottleneck problem associated with providing stateful SNAT at gateways and also significantly reduces the need to redirect packets received at the wrong host by using a capacity of off-the-shelf gateway devices to perform IPv6 encapsulation for IPv4 packets and assigning locally unique IPv6 addresses to each host executing a dSNAT middlebox service instance that are used by the gateway device.

公开(公告)号：US11616755B2

公开(公告)日：2023-03-28

申请号：US16931196

申请日：2020-07-16

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  Mani Kancherla ,  Jayant Jain ,  Anirban Sengupta

IPC: H04L61/256 ,  H04L61/2592 ,  H04L45/745 ,  H04L12/66 ,  H04L61/5007 ,  H04L101/659

Abstract: Some embodiments of the invention provide novel methods for facilitating a distributed SNAT (dSNAT) middlebox service operation for a first network at a host computer in the first network on which the dSNAT middlebox service operation is performed and a gateway device between the first network and a second network. The novel methods enable dSNAT that provides stateful SNAT at multiple host computers, thus avoiding the bottleneck problem associated with providing stateful SNAT at gateways and also significantly reduces the need to redirect packets received at the wrong host by using a capacity of off-the-shelf gateway devices to perform IPv6 encapsulation for IPv4 packets and assigning locally unique IPv6 addresses to each host executing a dSNAT middlebox service instance that are used by the gateway device.

公开(公告)号：US11558220B2

公开(公告)日：2023-01-17

申请号：US16944205

申请日：2020-07-31

Applicant: VMWARE, INC.

Inventor： Sami Boutros ,  Jerome Catrouillet ,  Santosh Pallagatti Kotrabasappa ,  Jia Yu

IPC: H04L12/46 ,  H04L45/64 ,  H04L43/106 ,  H04L43/08 ,  H04L45/28 ,  H04L43/50

Abstract: Example methods and systems for uplink-aware logical overlay tunnel monitoring are described. In one example, a first computer system may establish a logical overlay tunnel with a second computer system. The first computer system may generate and send, over the logical overlay tunnel via the first uplink, a first encapsulated monitoring packet identifying the first uplink. Based on a first reply, first performance metric information associated with the first uplink may be determined. The first computer system may generate and send, over the logical overlay tunnel via the second uplink, a second encapsulated monitoring packet identifying the second uplink. Based on a second reply, second performance metric information associated with the second uplink may be determined. Based on the first performance metric information and the second performance metric information, the first uplink or the second uplink may be selected to send encapsulated data packet(s) over the logical overlay tunnel.

公开(公告)号：US11539659B2

公开(公告)日：2022-12-27

申请号：US17461900

申请日：2021-08-30

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  W. Andrew Lambeth ,  Jayant Jain ,  Mani Kancherla

IPC: G06F15/16 ,  H04L61/103 ,  H04L9/40 ,  H04L61/5069 ,  H04L101/622

Abstract: Some embodiments of the invention provide a method for managing logical forwarding elements (LFEs) implemented by multiple physical forwarding elements (PFEs) operating on multiple devices, each LFE including multiple logical ports. On a host computer executing a particular machine connected to the LFE and a PFE implementing the LFE, the method identifies an address discovery message associating a particular network address of the particular machine with another network address of the particular machine. The method identifies an LFE logical port associated with the particular machine, stores in an encapsulation header an identifier that identifies this port, and then forwards the encapsulated message to a set of one or more devices implementing the LFE for the devices to use in processing data messages associated with the particular machine.

公开(公告)号：US11431635B2

公开(公告)日：2022-08-30

申请号：US16813691

申请日：2020-03-09

Applicant: VMware, Inc.

Inventor： Vijayalaxmi Basavaraj ,  Ankur Dubey ,  Sami Boutros

IPC: H04L47/125 ,  H04L12/66 ,  H04L12/18

Abstract: Some embodiments provide a method for a host computer that executes a set of data compute nodes (DCNs), for identifying a designated router for a multicast group. The method receives a membership request message to join the multicast group from a particular DCN of the set of DCNs, the membership request message including an address associated with the multicast group. The method identifies a logical router gateway from a set of logical router gateways as the designated router for the multicast group, based at least in part on the address associated with the multicast group, where different logical router gateways from the set of logical router gateways are assigned as designated routers for different multicast groups with different associated addresses. The method forwards the membership request message to the identified logical router gateway.

公开(公告)号：US20220191126A1

公开(公告)日：2022-06-16

申请号：US17685948

申请日：2022-03-03

Applicant: VMware, Inc.

Inventor： Ankur Dubey ,  Sami Boutros ,  Yashika Narang ,  Vinay Kumar Ganeshmal Jain ,  Meenakshi Sundaram Selvaraj

IPC: H04L45/021 ,  H04L45/028 ,  H04L45/586 ,  H04L45/00 ,  H04L49/25 ,  H04L49/65 ,  H04L61/2592 ,  H04L67/289 ,  H04L41/0893 ,  H04L45/42 ,  H04L49/00 ,  H04L12/46 ,  H04L12/66 ,  H04L45/74 ,  H04L61/5007 ,  H04L101/622 ,  H04L45/64 ,  H04L45/02 ,  H04L45/24 ,  H04L45/50 ,  H04L41/0803 ,  H04L45/44

Abstract: Some embodiments provide a method for configuring an edge computing device to implement a logical router belonging to a logical network. The method configures a datapath executing on the edge computing device to use a first routing table associated with the logical router for processing data messages routed to the logical router. The method configures a routing protocol application executing on the edge computing device to (i) use the first routing table for exchanging routes with a network external to the logical network and (ii) use a second routing table for exchanging routes with other edge computing devices that implement the logical router.

公开(公告)号：US20220038309A1

公开(公告)日：2022-02-03

申请号：US16941467

申请日：2020-07-28

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  Anirban Sengupta ,  Mani Kancherla ,  Jerome Catrouillet ,  Sri Mohana Singamsetty

IPC: H04L12/46 ,  H04L29/08 ,  H04L12/713 ,  H04L12/715 ,  H04L29/12 ,  H04L12/66 ,  H04L29/06

Abstract: Some embodiments of the invention provide a novel network architecture for advertising routes in an availability zone (AZ). The novel network architecture includes a set of route servers for receiving advertisements of network addresses as being available in the AZ from different routers in the AZ. The novel network architecture also includes multiple host computers that each execute a router that (i) identifies network addresses available on the host computer, (ii) sends advertisements of the identified network addresses to the set of route servers, and (iii) receives advertisements from the set of route servers regarding network addresses available on other host computers. The identified network addresses, in some embodiments, include at least one of network addresses associated with data compute nodes (DCNs) and network addresses associated with services available at the host computer. The route servers advertise the received network addresses to other routers in the AZ.

公开(公告)号：US20220021645A1

公开(公告)日：2022-01-20

申请号：US16931196

申请日：2020-07-16

Applicant: VMware, Inc.

Inventor： Sami Boutros ,  Mani Kancherla ,  Jayant Jain ,  Anirban Sengupta

IPC: H04L29/12 ,  H04L12/66 ,  H04L12/741

Abstract: Some embodiments of the invention provide novel methods for facilitating a distributed SNAT (dSNAT) middlebox service operation for a first network at a host computer in the first network on which the dSNAT middlebox service operation is performed and a gateway device between the first network and a second network. The novel methods enable dSNAT that provides stateful SNAT at multiple host computers, thus avoiding the bottleneck problem associated with providing stateful SNAT at gateways and also significantly reduces the need to redirect packets received at the wrong host by using a capacity of off-the-shelf gateway devices to perform IPv6 encapsulation for IPv4 packets and assigning locally unique IPv6 addresses to each host executing a dSNAT middlebox service instance that are used by the gateway device.