公开(公告)号：US20210314228A1

公开(公告)日：2021-10-07

申请号：US16906966

申请日：2020-06-19

Applicant: VMware, Inc.

Inventor： Ganesan Chandrashekhar ,  Pankaj Thakkar ,  Abhishek Goliya ,  Nilesh Ramchandra Nipane ,  Janani Natarajan

IPC: H04L12/24 ,  H04L29/06

Abstract: Some embodiments provide a method for configuring a DCN migrated from a first host computer at a first site of multiple sites spanned by a logical network to a second host computer at a second site. At the second host, the method receives, from the first host, data for configuring the DCN and implementing the logical network on the second site. The data includes (i) data particular to the first site and (ii) a global identifier for a logical port to which the DCN attaches. The method provides the global identifier to a local logical network manager, which uses the global identifier to retrieve data regarding the logical port from a global network manager that manages the logical network across the sites. Based on data retrieved from the global network manager, the method modifies the data particular to the first site into data particular to the second site.

公开(公告)号：US11128557B2

公开(公告)日：2021-09-21

申请号：US16727954

申请日：2019-12-27

Applicant: VMWARE, INC.

Inventor： Ankur Dubey ,  Sami Boutros ,  Abhishek Goliya

IPC: H04L12/28 ,  H04L12/755 ,  H04L12/733 ,  H04L12/46 ,  H04L12/741 ,  H04L12/721

Abstract: Example methods and network devices for tunnel-based routing calculation. One example method may comprise establishing a tunnel between a first tunnel interface and a second tunnel interface; establishing a first session for routing information exchange between a first tunnel endpoint and an underlay network device; establishing a second session for routing information exchange between the first tunnel interface and the second tunnel interface over the tunnel. In response to receiving first routing information over the first session, the underlay network device may be configured to be a next hop to reach the second tunnel endpoint by updating a routing table to include a first entry. Further, the underlay network device may be retained as the next hop by updating the routing table to include a second entry to override second routing information that advertises, over the second session, the second tunnel interface as the next hop.

公开(公告)号：US20230396538A1

公开(公告)日：2023-12-07

申请号：US17833555

申请日：2022-06-06

Applicant: VMware, Inc.

Inventor： Santosh Pallagatti Kotrabasappa ,  Abhishek Goliya ,  Sajan Liyon ,  Sairam Veeraswamy ,  Sumit Mundhra

IPC: H04L45/42 ,  H04L45/12 ,  H04L45/24 ,  H04L47/125

CPC classification number: H04L45/42 ,  H04L45/123 ,  H04L45/24 ,  H04L47/125

Abstract: Some embodiments provide a method for implementing context-aware routing for a software-defined wide-area network (SD-WAN). The method is performed at a particular SD-WAN edge forwarding element (FE) connected to a particular cloud datacenter. The method receives a message specifying a weight for a virtual network address associated with a set of application resources distributed across multiple cloud datacenters including the particular cloud datacenter. The method converts the specified weight into a route weight for the SD-WAN. The method provides the converted route weight to a set of SD-WAN edge FEs connected to a set of branch networks, and each SD-WAN edge FE in the set of SD-WAN edge FEs uses the provided route weight to calculate a total cost for routing data messages directed to the virtual network address to the particular cloud datacenter.

公开(公告)号：US20230026330A1

公开(公告)日：2023-01-26

申请号：US17384736

申请日：2021-07-24

Applicant: VMware, Inc.

Inventor： Pierluigi Rolando ,  Jayant Jain ,  Raju Koganty ,  Shadab Shah ,  Abhishek Goliya ,  Chandran Anjur Narasimhan ,  Gurudutt Maiya Belur ,  Vikas Kamath

IPC: H04L29/06 ,  H04L12/46 ,  H04L12/717 ,  H04L12/721 ,  H04L12/713

Abstract: A software-defined wide area network (SD-WAN) environment that leverages network virtualization management deployment is provided. Edge security services managed by the network virtualization management deployment are made available in the SD-WAN environment. Cloud gateways forward SD-WAN traffic to managed service nodes to apply security services. Network traffic is encapsulated with corresponding metadata to ensure that services can be performed according to the desired policy. Point-to-point tunnels are established between cloud gateways and the managed service nodes to transport the metadata to the managed service nodes using an overlay logical network. Virtual network identifiers (VNIs) in the metadata are used by the managed service nodes to identify tenants/policies. A managed service node receiving a packet uses provider service routers (T0-SR) and tenant service routers (T1-SRs) based on the VNI to apply the prescribed services for the tenant, and the resulting traffic is returned to the cloud gateway that originated the traffic.

公开(公告)号：US20230025586A1

公开(公告)日：2023-01-26

申请号：US17384735

申请日：2021-07-24

Applicant: VMware, Inc.

Inventor： Pierluigi Rolando ,  Jayant Jain ,  Raju Koganty ,  Shadab Shah ,  Abhishek Goliya ,  Chandran Anjur Narasimhan ,  Gurudutt Maiya Belur ,  Vikas Kamath

IPC: H04L29/06 ,  H04L12/713 ,  H04L12/717 ,  H04L12/721

Abstract: A software-defined wide area network (SD-WAN) environment that leverages network virtualization management deployment is provided. Edge security services managed by the network virtualization management deployment are made available in the SD-WAN environment. Cloud gateways forward SD-WAN traffic to managed service nodes to apply security services. Network traffic is encapsulated with corresponding metadata to ensure that services can be performed according to the desired policy. Point-to-point tunnels are established between cloud gateways and the managed service nodes to transport the metadata to the managed service nodes using an overlay logical network. Virtual network identifiers (VNIs) in the metadata are used by the managed service nodes to identify tenants/policies. A managed service node receiving a packet uses provider service routers (T0-SR) and tenant service routers (T1-SRs) based on the VNI to apply the prescribed services for the tenant, and the resulting traffic is returned to the cloud gateway that originated the traffic.

公开(公告)号：US11375005B1

公开(公告)日：2022-06-28

申请号：US17384737

申请日：2021-07-24

Applicant: VMware, Inc.

Inventor： Pierluigi Rolando ,  Jayant Jain ,  Raju Koganty ,  Shadab Shah ,  Abhishek Goliya ,  Chandran Anjur Narasimhan ,  Gurudutt Maiya Belur ,  Vikas Kamath

IPC: H04L67/10 ,  H04L12/66 ,  H04L12/46

Abstract: A software-defined wide area network (SD-WAN) environment that leverages network virtualization management deployment is provided. Edge security services managed by the network virtualization management deployment are made available in the SD-WAN environment. Cloud gateways forward SD-WAN traffic to managed service nodes to apply security services. Network traffic is encapsulated with corresponding metadata to ensure that services can be performed according to the desired policy. Point-to-point tunnels are established between cloud gateways and the managed service nodes to transport the metadata to the managed service nodes using an overlay logical network. Virtual network identifiers (VNIs) in the metadata are used by the managed service nodes to identify tenants/policies. A managed service node receiving a packet uses provider service routers (T0-SR) and tenant service routers (T1-SRs) based on the VNI to apply the prescribed services for the tenant, and the resulting traffic is returned to the cloud gateway that originated the traffic.

公开(公告)号：US11336556B2

公开(公告)日：2022-05-17

申请号：US16906889

申请日：2020-06-19

Applicant: VMware, Inc.

Inventor： Ganesan Chandrashekhar ,  Abhishek Goliya ,  Ankur Dubey ,  Sami Boutros ,  Yashika Narang

IPC: H04L12/755 ,  H04L45/021 ,  H04L45/028 ,  H04L45/586 ,  H04L45/00 ,  H04L49/25 ,  H04L49/65 ,  H04L61/2592 ,  H04L67/289 ,  H04L41/0893 ,  H04L45/42 ,  H04L49/00 ,  H04L12/46 ,  H04L12/66 ,  H04L45/74 ,  H04L61/5007 ,  H04L101/622 ,  H04L45/64 ,  H04L45/02 ,  H04L45/24 ,  H04L45/50 ,  H04L41/0803 ,  H04L45/44

Abstract: Some embodiments provide a method for a first edge device in a first datacenter that implements a centralized routing component of a logical router that spans multiple datacenters and handles data traffic between a logical network implemented across the multiple datacenters and external networks. From a second edge device in a second datacenter, the method receives via routing protocol a route having a particular routing protocol tag. When the first datacenter is a primary datacenter for the logical router such that all data traffic between the logical network and the external networks is handled by one or more centralized routing components implemented at the first datacenter, the method uses the routing protocol tag to determine whether to advertise the received route to the external networks.

公开(公告)号：US20220006748A1

公开(公告)日：2022-01-06

申请号：US17019083

申请日：2020-09-11

Applicant: VMWARE, INC.

Inventor： SANTOSH PALLAGATTI KOTRABASAPPA ,  Sairam Veeraswamy ,  Abhishek Goliya ,  Abbas Mohamed

IPC: H04L12/851 ,  G06F16/245 ,  G06N20/00

Abstract: In some embodiments, a method receives a set of packets for a flow and determines a set of features for the flow from the set of packets. A classification of an elephant flow or a mice flow is selected based on the set of features. The classification is selected before assigning the flow to a network resource in a plurality of network resources. The method assigns the flow to a network resource in the plurality of network resources based on the classification for the flow and a set of classifications for flows currently assigned to the plurality of network resources. Then, the method sends the set of packets for the flow using the assigned network resource.

公开(公告)号：US11153170B1

公开(公告)日：2021-10-19

申请号：US16906966

申请日：2020-06-19

Applicant: VMware, Inc.

Inventor： Ganesan Chandrashekhar ,  Pankaj Thakkar ,  Abhishek Goliya ,  Nilesh Ramchandra Nipane ,  Janani Natarajan

IPC: H04L12/24 ,  H04L29/06

Abstract: Some embodiments provide a method for configuring a DCN migrated from a first host computer at a first site of multiple sites spanned by a logical network to a second host computer at a second site. At the second host, the method receives, from the first host, data for configuring the DCN and implementing the logical network on the second site. The data includes (i) data particular to the first site and (ii) a global identifier for a logical port to which the DCN attaches. The method provides the global identifier to a local logical network manager, which uses the global identifier to retrieve data regarding the logical port from a global network manager that manages the logical network across the sites. Based on data retrieved from the global network manager, the method modifies the data particular to the first site into data particular to the second site.

公开(公告)号：US20210314257A1

公开(公告)日：2021-10-07

申请号：US16906905

申请日：2020-06-19

Applicant: VMware, Inc.

Inventor： Ganesan Chandrashekhar ,  Abhishek Goliya ,  Nisarg Parikh

IPC: H04L12/717 ,  H04L12/66 ,  H04L12/713 ,  H04L12/721 ,  H04L12/931 ,  H04L12/24

Abstract: Some embodiments provide a method for implementing a logical network across multiple datacenters. The method receives a configuration for a logical router that handles data traffic between the logical network implemented in the plurality of datacenters and networks external to the logical network. The method, for each datacenter defines (i) an active centralized routing component of the logical router in the datacenter and (ii) a standby centralized routing component of the logical router in the datacenter. The centralized routing components for a particular datacenter handle the data traffic between the logical network in the particular datacenter and the external networks. The active and standby centralized routing components are each assigned to edge computing devices in the datacenter that implement the centralized routing components.