-
公开(公告)号:US08775594B2
公开(公告)日:2014-07-08
申请号:US13218433
申请日:2011-08-25
申请人: Teemu Koponen , Martin Casado , Jeremy Stribling , Natasha Gude
发明人: Teemu Koponen , Martin Casado , Jeremy Stribling , Natasha Gude
IPC分类号: G06F15/173
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: A network control system that includes several controllers for managing several switching elements and a distributed hash table (DHT) formed across the controllers for storing data regarding the switching elements that is accessible by the controllers. Each hash table serves as a DHT instance. In some embodiments, the DHT instances of all controller instances collectively store one set of records that is indexed based on hashed indices for quick access. These records are distributed across the different controller instances to minimize the size of the records within each instance and to allow for the size of the DHT to be increased by adding other DHT instances. According to this scheme, each DHT record is not stored in each controller instance. In fact, in some embodiments, each DHT record is stored in at most one controller instance.
摘要翻译: 一种网络控制系统,其包括用于管理多个交换元件的多个控制器和跨越控制器形成的分布式哈希表(DHT),用于存储关于控制器可访问的交换元件的数据。 每个哈希表用作DHT实例。 在一些实施例中,所有控制器实例的DHT实例共同地存储基于用于快速访问的散列索引进行索引的一组记录。 这些记录分布在不同的控制器实例之间,以最小化每个实例中记录的大小,并允许通过添加其他DHT实例来增加DHT的大小。 根据该方案,每个DHT记录不存储在每个控制器实例中。 事实上,在一些实施例中,每个DHT记录被存储在至多一个控制器实例中。
-
22.发明授权公开(公告)号:US08717895B2
公开(公告)日:2014-05-06
申请号:US13177530
申请日:2011-07-06
申请人: Teemu Koponen , Pankaj Thakkar , Martin Casado , W. Andrew Lambeth , Alexander Yip , Jeremy Stribling
发明人: Teemu Koponen , Pankaj Thakkar , Martin Casado , W. Andrew Lambeth , Alexander Yip , Jeremy Stribling
IPC分类号: H04L12/26 , H04L12/54 , G06F15/173 , G06F12/10
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Some embodiments provide a virtualizer for managing a plurality of managed switching elements that forward data through a network. The virtualizer comprises a first set of tables for storing input logical forwarding plane data and a second set of tables for storing output physical control plane data. It also includes a table mapping engine for mapping the input logical forwarding plane data in the first set of tables to output physical control plane data in the second set of tables by performing a set of database join operations on the input logical forwarding plane data in the first set of tables. In some embodiments, the physical control plane data is subsequently translated into physical forwarding behaviors that direct the forwarding of data by the managed switching elements.
摘要翻译: 一些实施例提供了一种虚拟器,用于管理通过网络转发数据的多个被管理的交换元件。 虚拟器包括用于存储输入逻辑转发平面数据的第一组表和用于存储输出物理控制平面数据的第二组表。 它还包括一个表映射引擎,用于映射第一组表中的输入逻辑转发平面数据,以通过对输入的逻辑转发平面数据执行一组数据库连接操作来输出第二组表中的物理控制平面数据 第一套表。 在一些实施例中,物理控制平面数据随后被转换成物理转发行为,其指导被管理的交换元件转发数据。
-
公开(公告)号:US20130060929A1
公开(公告)日:2013-03-07
申请号:US13177538
申请日:2011-07-06
申请人: Teemu Koponen , Martin Casado , Natasha Gude , Jeremy Stribling
发明人: Teemu Koponen , Martin Casado , Natasha Gude , Jeremy Stribling
IPC分类号: G06F15/173 , G06F11/30
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Some embodiments provide a program that monitors several network controllers in a network. Each network controller manages a logical data path set that is implemented across several managed switching elements. The program detects that a first network controller in the several network controllers has failed. The program selects a second network controller in the several network controllers to manage the logical data path set managed by the first network controller.
摘要翻译: 一些实施例提供了监视网络中的若干网络控制器的程序。 每个网络控制器管理跨多个管理的交换元件实现的逻辑数据路径集合。 该程序检测到几个网络控制器中的第一个网络控制器出现故障。 程序选择多个网络控制器中的第二个网络控制器来管理由第一个网络控制器管理的逻辑数据路径集。
-
24.发明申请USE OF NETWORK INFORMATION BASE STRUCTURE TO ESTABLISH COMMUNICATION BETWEEN APPLICATIONS 有权使用网络信息基础架构建立应用之间的通信公开(公告)号:US20130060922A1
公开(公告)日:2013-03-07
申请号:US13177541
申请日:2011-07-06
申请人: Teemu Koponen , Martin Casado , Jeremy Stribling , Natasha Gude
发明人: Teemu Koponen , Martin Casado , Jeremy Stribling , Natasha Gude
IPC分类号: G06F15/173
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Some embodiments provide a program for managing several switching elements. The program receives, at a network information base (NIB) data structure that stores data for managing the several switching elements, a request to notify a first application that uses the NIB when a set of data stored in the NIB is changed. The program changes, in response to an instruction from a second application, the set of data in the NIB. The program sends a notification to the first application of the change to the set of data in the NIB.
摘要翻译: 一些实施例提供用于管理若干开关元件的程序。 该程序在存储用于管理多个交换单元的数据的网络信息库(NIB)数据结构中接收到当存储在NIB中的一组数据改变时通知使用NIB的第一应用的请求。 响应于来自第二应用的指令,该程序改变NIB中的一组数据。 该程序向NIB中的数据集发送通知给第一次应用更改。
-
公开(公告)号:US20130058341A1
公开(公告)日:2013-03-07
申请号:US13177546
申请日:2011-07-06
IPC分类号: H04L12/56
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Port security in some embodiments is a technique to apply to a particular port of a logical switching element such that the network data entering and existing the logical switching element through the particular logical port have certain addresses that the switching element has restricted the logical port to use. For instance, a logical switching element may restrict a particular logical port to one or more certain network addresses. To enable a logical port of a logical switch for port security, the control application of some embodiments receives user inputs that designate a particular logical port and a logical switch to which the particular logical port belongs. The control application in some embodiments formats the user inputs into logical control plane data specifying the designation. The control application in some embodiments then converts the logical control plane data into logical forwarding data that specify port security functions.
摘要翻译: 一些实施例中的端口安全性是应用于逻辑交换元件的特定端口的技术,使得通过特定逻辑端口进入和存在逻辑交换元件的网络数据具有某些地址,交换元件已经限制了要使用的逻辑端口 。 例如,逻辑交换单元可以将特定逻辑端口限制为一个或多个特定网络地址。 为了启用用于端口安全性的逻辑交换机的逻辑端口,一些实施例的控制应用接收指定特定逻辑端口和特定逻辑端口所属的逻辑交换机的用户输入。 在一些实施例中,控制应用将用户输入格式化成指定指定的逻辑控制平面数据。 一些实施例中的控制应用随后将逻辑控制平面数据转换为指定端口安全功能的逻辑转发数据。
-
26.发明申请公开(公告)号:US20130058334A1
公开(公告)日:2013-03-07
申请号:US13225553
申请日:2011-09-06
申请人: Teemu Koponen , Keith E. Amidon , Paul S. Ingram , Martin Casado
发明人: Teemu Koponen , Keith E. Amidon , Paul S. Ingram , Martin Casado
IPC分类号: H04L12/56
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Some embodiments provide a managed network for implementing a logical switching element. The managed network includes several managed edge switching elements that are each for (1) receiving packets for forwarding through the logical switching element and (2) forwarding packets that are known to the managed edge switching element to other managed edge switching elements in the several managed edge switching elements. The managed network includes a set of managed non-edge switching elements for (1) receiving packets from the several managed edge switching elements that are unknown to a particular managed edge switching element in the several managed edge switching elements and (2) forwarding packets to the several managed edge switching elements that are unknown to the several managed edge switching elements.
摘要翻译: 一些实施例提供用于实现逻辑交换元件的受管网络。 管理网络包括几个管理边缘交换元件,每个管理边缘交换元件分别用于(1)接收用于通过逻辑交换元件转发的分组;以及(2)将被管理边缘交换元件已知的分组转发到多个管理的其他管理边缘交换元件 边缘开关元件。 管理网络包括一组管理的非边缘交换元件,用于(1)从几个管理边缘交换元件中的特定管理边缘交换元件未知的几个管理边缘交换元件接收分组,以及(2)将分组转发到 几个管理边缘交换元件对于几个管理边缘交换元件是未知的。
-
27.发明申请公开(公告)号:US20130058215A1
公开(公告)日:2013-03-07
申请号:US13177530
申请日:2011-07-06
申请人: Teemu Koponen , Pankaj Thakkar , Martin Casado , W. Andrew Lambeth , Alexander Yip , Jeremy Stribling
发明人: Teemu Koponen , Pankaj Thakkar , Martin Casado , W. Andrew Lambeth , Alexander Yip , Jeremy Stribling
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Some embodiments provide a virtualizer for managing a plurality of managed switching elements that forward data through a network. The virtualizer comprises a first set of tables for storing input logical forwarding plane data and a second set of tables for storing output physical control plane data. It also includes a table mapping engine for mapping the input logical forwarding plane data in the first set of tables to output physical control plane data in the second set of tables by performing a set of database join operations on the input logical forwarding plane data in the first set of tables. In some embodiments, the physical control plane data is subsequently translated into physical forwarding behaviors that direct the forwarding of data by the managed switching elements.
摘要翻译: 一些实施例提供了一种虚拟器,用于管理通过网络转发数据的多个被管理的交换元件。 虚拟器包括用于存储输入逻辑转发平面数据的第一组表和用于存储输出物理控制平面数据的第二组表。 它还包括一个表映射引擎,用于映射第一组表中的输入逻辑转发平面数据,以通过对输入的逻辑转发平面数据执行一组数据库连接操作来输出第二组表中的物理控制平面数据 第一套表。 在一些实施例中,物理控制平面数据随后被转换成物理转发行为,其指导被管理的交换元件转发数据。
-
公开(公告)号:US10103939B2
公开(公告)日:2018-10-16
申请号:US13269409
申请日:2011-10-07
申请人: Teemu Koponen , Pankaj Thakkar , W. Andrew Lambeth
发明人: Teemu Koponen , Pankaj Thakkar , W. Andrew Lambeth
IPC分类号: H04L12/24 , H04L12/931 , H04L12/803
摘要: For a network control system that receives, from a user, logical datapath sets that logically express desired forwarding behaviors that are to be implemented by a set of managed switching elements, a controller for managing several managed switching elements that forward data in a network that includes the managed switching elements is described. The controller includes a set of modules for detecting a change in one or more managed switching elements and for updating logical datapath set based on the detected change. The logical datapath set is for subsequent translation into a set of physical forwarding behaviors of the managed switching elements.
-
公开(公告)号:US09369426B2
公开(公告)日:2016-06-14
申请号:US13589062
申请日:2012-08-17
申请人: Teemu Koponen , Ronghua Zhang , Martin Casado , Pankaj Thakkar , Jesse E. Gross, IV , Daniel J. Wendlandt , Mehak Mahajan
发明人: Teemu Koponen , Ronghua Zhang , Martin Casado , Pankaj Thakkar , Jesse E. Gross, IV , Daniel J. Wendlandt , Mehak Mahajan
IPC分类号: H04L12/28 , H04L12/26 , H04L12/24 , H04L12/931 , H04L12/46 , H04L29/12 , H04L12/801 , H04L12/803 , H04L12/741 , H04L12/715
CPC分类号: H04L45/74 , H04L41/0803 , H04L45/04 , H04L45/54 , H04L47/12 , H04L47/125 , H04L61/103 , H04L61/256 , H04L61/2592
摘要: A novel method for configuring first and second managed forwarding elements to perform logical L2 switching and L3 routing is described. The method generates a first set of flow entries for configuring the first managed forwarding element to perform logical L2 ingress processing and L3 routing processing. The method generates a second set of flow entries for configuring the second managed forwarding element to performing logical L2 egress processing.
摘要翻译: 描述了一种用于配置第一和第二管理转发元件以执行逻辑L2交换和L3路由的新颖方法。 该方法生成第一组流条目,用于配置第一管理转发元素以执行逻辑L2入口处理和L3路由处理。 该方法生成第二组流条目,用于配置第二管理转发元件以执行逻辑L2出口处理。
-
公开(公告)号:US09231891B2
公开(公告)日:2016-01-05
申请号:US13288023
申请日:2011-11-02
IPC分类号: H04L12/28 , H04L12/44 , G06F15/16 , G06F15/173 , H04L12/931 , H04L12/933 , H04L12/713 , H04L12/54 , H04L12/24 , H04L12/935 , H04L12/46 , H04L12/911 , G06F11/07
CPC分类号: H04L41/0893 , G06F11/07 , G06F15/17312 , H04L12/4633 , H04L41/0816 , H04L41/0853 , H04L41/0896 , H04L45/00 , H04L45/586 , H04L47/783 , H04L49/00 , H04L49/1546 , H04L49/3063 , H04L49/70 , H04L61/2007 , H04L61/6022
摘要: Some embodiments provide a method that identifies several higher level switching elements for facilitating lower level switching elements to forward packets among network hosts. The method establishes a set of tunnels among the lower level switching elements and the higher level switching elements. At least one tunnel is established between a lower level switching element and a higher level switching element. For each higher level switching element in the several higher level switching elements, the method identifies a first set of forwarding data that specifies forwarding of packets between the higher level switching element and the several lower level switching elements. For each lower level switching element in the several lower level switching elements, the method identifies a second set of forwarding data that specifies forwarding of packets between the lower level switching element, the several of network hosts, and the several higher level switching elements.
摘要翻译: 一些实施例提供了一种识别多个更高级别的交换元件以促进下层交换元件在网络主机之间转发分组的方法。 该方法在较低级别的开关元件和较高级别的开关元件之间建立一组隧道。 在较低级别的开关元件和较高级别的开关元件之间建立至少一个通道。 对于多个较高级别的交换单元中的每个较高级别的交换单元,该方法识别第一组转发数据,该第一组转发数据指定在较高级别的开关元件和多个较低级别的开关元件之间转发分组。 对于多个下层交换单元中的每个下级交换单元,该方法识别第二组转发数据,该第二组转发数据指定在下层交换单元,若干网络主机与多个较高级别的交换单元之间转发分组。
-
-
-
-
-
-
-
-
-
搜索结果
92 条记录 (耗时 0.042 秒)
