公开(公告)号：US11012288B2

公开(公告)日：2021-05-18

申请号：US16411912

申请日：2019-05-14

Applicant: VMWARE, INC.

Inventor： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC: H04L12/24 ,  H04L12/26 ,  H04L12/721 ,  H04L12/751 ,  H04L12/851 ,  G06F9/455

Abstract: A system can reduce congestion in slice-based networks, such as a virtual service network (“VSN”). The system can include a monitoring module that communicates with agents on switches, such as routers or servers. The switches report telematics data to the monitoring module, which determines slice-specific performance attributes such as slice latency and slice throughput. These slice-specific performance attributes are compared against software license agreement (“SLA”) requirements. When the SLA is not met, the monitoring module can implement a new slice path for the slice to reduce the congestion.

公开(公告)号：US20210136141A1

公开(公告)日：2021-05-06

申请号：US16668485

申请日：2019-10-30

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L29/08 ,  H04L12/851 ,  H04L12/859 ,  H04L29/06

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US20210136140A1

公开(公告)日：2021-05-06

申请号：US16668477

申请日：2019-10-30

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L29/08 ,  H04L12/851 ,  H04L12/859

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US10958579B2

公开(公告)日：2021-03-23

申请号：US16411893

申请日：2019-05-14

Applicant: VMWARE, INC.

Inventor： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC: H04L12/803 ,  H04L12/851 ,  H04L12/707 ,  H04L12/933 ,  H04L12/841 ,  H04L29/06 ,  H04L12/947

Abstract: A system can reduce congestion in slice-based networks, such as a virtual service network (“VSN”). The system can include a monitoring module that communicates with agents on switches, such as routers or servers. The switches report telematics data to the monitoring module, which determines slice-specific performance attributes such as slice latency and slice throughput. These slice-specific performance attributes are compared against software license agreement (“SLA”) requirements. When the SLA is not met, the monitoring module can implement a new slice path for the slice to reduce the congestion.

公开(公告)号：US20210064407A1

公开(公告)日：2021-03-04

申请号：US16568322

申请日：2019-09-12

Applicant: VMware, Inc.

Inventor： Raja Kommula ,  Constantine Polychronopoulos ,  Thayumanavan Sridhar ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou ,  Jeremy Tidemann

IPC: G06F9/455 ,  H04L12/24

Abstract: Some embodiments of the invention provide a novel method of performing network slice-based operations on a data message at a hardware forwarding element (HFE) in a network. For a received data message flow, the method has the HFE identify a network slice associated with the received data message flow. This network slice in some embodiments is associated with a set of operations to be performed on the data message by several network elements, including one or more machines executing on one or more computers in the network. Once the network slice is identified, the method has the HFE process the data message flow based on a rule that applies to data messages associated with the identified slice.

公开(公告)号：US10834669B2

公开(公告)日：2020-11-10

申请号：US16443813

申请日：2019-06-17

Applicant: VMware, Inc.

Inventor： Marc-Andre Bordeleau ,  Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Edward Choh ,  Ojas Gupta ,  Georgios Oikonomou ,  Robert Kidd

IPC: H04W48/18 ,  H04L12/66 ,  H04L12/26 ,  G06F9/455 ,  H04L29/06

Abstract: Some embodiments provide a method for a network slice selector that forwards messages from endpoint electronic devices onto different network slices of multiple network slices. The method receives a set of connection initiation messages setting up a connection between an endpoint electronic device and a network domain. The method forwards the set of connection initiation messages from the endpoint electronic device onto a default network slice while storing data regarding the connection initiation messages. After the connection is setup, the method receives a data message belonging to the connection from the endpoint electronic device. The method selects one of the plurality of network slices to which the electronic device has access as the network slice for the connection based on analysis of the received data message. The method retransmits the set of connection initiation messages on the selected network slice between the network slice selector and a network gateway.

公开(公告)号：US11722559B2

公开(公告)日：2023-08-08

申请号：US17492626

申请日：2021-10-03

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L67/1012 ,  H04L69/22 ,  H04L47/2483 ,  H04L47/2475 ,  H04L47/2441 ,  H04L67/51

CPC classification number: H04L67/1012 ,  H04L47/2441 ,  H04L47/2475 ,  H04L47/2483 ,  H04L67/51 ,  H04L69/22

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US11595315B2

公开(公告)日：2023-02-28

申请号：US17144652

申请日：2021-01-08

Applicant: VMware, Inc.

Inventor： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC: H04L47/2441 ,  H04L47/20 ,  H04L49/25 ,  H04L49/00 ,  H04L47/2425 ,  H04L47/2466 ,  H04L47/62 ,  H04L69/22

Abstract: A switch in a slice-based network can be used to enforce quality of service (“QoS”). Agents can run in the switches, such as in the core of each switch. The switches can sort ingress packets into slice-specific ingress queues in a slice-based pool. The slices can have different QoS prioritizations. A switch-wide policing algorithm can move the slice-specific packets to egress interfaces. Then, one or more user-defined egress policing algorithms can prioritize which packets are sent out into the network first based on slice classifications.

公开(公告)号：US11283717B2

公开(公告)日：2022-03-22

申请号：US16668505

申请日：2019-10-30

Applicant: VMware, Inc.

Inventor： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC: H04L12/743 ,  H04L45/7453 ,  H04L45/28 ,  H04L9/06 ,  H04L45/00 ,  H04L45/021

Abstract: Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US20210314255A1

公开(公告)日：2021-10-07

申请号：US17352258

申请日：2021-06-19

Applicant: VMware, Inc.

Inventor： Raja Kommula ,  Constantine Polychronopoulos ,  Thayumanavan Sridhar ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou ,  Jeremy Tidemann

IPC: H04L12/707 ,  H04L12/721

Abstract: Some embodiments provide a novel method for adjusting a path for a packet flow from a source machine to a destination machine in a network. The method of some embodiments identifies a condition at a first forwarding element along a first path traversed by the packet flow through the network. The first path traverses through a hardware, second forwarding element before the first forwarding element. In some embodiments, the second forwarding element includes a programmable data plane circuit. The method, in some embodiments, uses an application programming interface (API) of the programmable data plane circuit to provide a set of parameters to the data plane circuit that cause the data plane circuit to forego selecting the first path to forward the packets of the packet flow to the destination machine and instead to select a second path, not traversing the first forwarding element, to the destination machine.