公开(公告)号：US20210036891A1

公开(公告)日：2021-02-04

申请号：US16580456

申请日：2019-09-24

Applicant: VMware, Inc.

Inventor： Mansi Babbar ,  Subin Cyriac Mathew ,  Chidambareswaran Raman

IPC: H04L12/46 ,  H04L29/12 ,  H04L12/931 ,  H04L12/749 ,  G06F9/455

Abstract: In an embodiment, a computer-implemented method provides mechanisms for identifying a source location in a service chaining topology. In an embodiment, a method comprises: receiving a query, from a service plane implementation module executing on a host of a service virtual machine (“SVM”), for a location of a source host implementing a guest virtual machine (“source GVM”) that originated a packet in a computer network and that serviced the packet; in response to receiving the query, performing a search of bindings associated with one or more virtual network identifiers (“VNIs”) or service virtual network identifiers (“SVNIs”) to identify a particular binding that includes a MAC address of the host implementing the source GVM; identifying, in the particular binding, the location of the source host; and providing the location of the source host to the host of the SVM to facilitate forwarding of the packet from the SVM to the GVM.

公开(公告)号：US10778457B1

公开(公告)日：2020-09-15

申请号：US16445030

申请日：2019-06-18

Applicant: VMware, Inc.

Inventor： Subin Cyriac Mathew ,  Alexander Tessmer ,  Chidambareswaran Raman

IPC: H04L12/18 ,  H04L12/46 ,  H04L12/24 ,  H04L29/08

Abstract: Some embodiments provide a method of replicating messages for a logical network. At a particular tunnel endpoint in a particular datacenter, the method receives a message to be replicated to members of a replication group. The method replicates the message to a set of tunnel endpoints of the replication group located in a same segment of the particular datacenter as the particular tunnel endpoint. The method replicates the message to a first set of proxy endpoints of the replication group, each of which is located in a different segment of the particular datacenter and for replicating the message to tunnel endpoints located in its respective segment of the particular datacenter. The method replicates the message to a second set of proxy endpoints of the replication group, each of which is located in a different datacenter and for replicating the message to tunnel endpoints located in its respective datacenter.

公开(公告)号：US20200280534A1

公开(公告)日：2020-09-03

申请号：US16804638

申请日：2020-02-28

Applicant: VMware, Inc.

Inventor： Parasuramji Rajendran ,  Rishi Kanth Alapati ,  Shireesh Kumar Singh ,  Aditi Vutukuri ,  Chidambareswaran Raman ,  Margaret Angeline Petrus ,  Anuprem Chalvadi ,  Pallavi Moghe ,  Weiming Xu

IPC: H04L29/12 ,  G06F9/455 ,  H04L12/751 ,  H04L12/741 ,  H04L12/715

Abstract: Described herein are systems and methods to manage Internet Protocol (IP) address discovery in a software defined networking (SDN) environment. In one example, a manager may generate an IP address discovery configuration and pass the IP address discovery configuration to a controller. Once received, the controller may obtain a discovered list from a hypervisor of one or more IP addresses associated with one or more logical ports and update a realized list for the one or more logical ports based on the discovered list and the IP address discovery configuration.

公开(公告)号：US10649805B1

公开(公告)日：2020-05-12

申请号：US16177855

申请日：2018-11-01

Applicant: VMware, Inc.

Inventor： Rahul Mishra ,  Chidambareswaran Raman ,  Abhishek Mishra

IPC: G06F9/455 ,  H04L12/761 ,  H04L12/947

Abstract: A method for a parallel execution of services, of a serial service chain, on packets using multicast-based service insertion is disclosed. In an embodiment, a method comprises detecting a packet of a data flow and storing the packet in memory. From a plurality of multicast groups, a first multicast group is identified. The first multicast group includes a plurality of service machines configured to provide a plurality of services to the data flow. The first multicast group includes all services machines of the plurality of service machines. The packet is multicast to the first multicast group of the plurality of multicast groups to cause applying, in parallel, services of service machines included in the first multicast group. Upon receiving a plurality of responses from service machines of the first multicast group, the plurality of responses is analyzed to determine whether the plurality of responses includes a modify-response. In response to determining that the plurality of responses does not include any modify-response, the plurality of responses is analyzed to determine whether the plurality of responses includes a drop-response. In response to determining that the plurality of responses does not include any drop-response, the packet is forwarded toward its destination without multicasting the packet to any other multicast group of the plurality of multicast groups.

公开(公告)号：US20150172331A1

公开(公告)日：2015-06-18

申请号：US14108277

申请日：2013-12-16

Applicant: VMware, Inc.

Inventor： Chidambareswaran Raman

IPC: H04L29/06 ,  G06F9/54 ,  G06F9/455

CPC classification number: H04L45/04 ,  G06F9/45533 ,  G06F9/541 ,  G06F2009/45595 ,  H04L45/586 ,  H04L65/403

Abstract: A method for creating a set of virtual machines on a public datacenter. The method, from a first network controller of a private network, commands a second network controller of the public datacenter to create the virtual machines. The method, from the first network controller of the private network, communicates with the second network controller of the public datacenter to determine a type of the second network controller. When the first network controller includes instructions for using application programming interfaces (APIs) of the type of the second network controller, the method uses the APIs to set up a VLAN for the set of virtual machines in order to allow the virtual machines of the set of virtual machines to communicate securely with each other without sending the communications through the private network. In some embodiments, the VLAN is a private VLAN (PVLAN).

Abstract translation: 在公共数据中心上创建一组虚拟机的方法。 该方法从私有网络的第一网络控制器命令公共数据中心的第二网络控制器来创建虚拟机。 来自专用网络的第一网络控制器的方法与公共数据中心的第二网络控制器进行通信，以确定第二网络控制器的类型。 当第一个网络控制器包含使用第二个网络控制器类型的应用编程接口（API）的指令时，该方法使用API​​为该组虚拟机设置一个VLAN，以便允许该组的虚拟机 的虚拟机彼此安全地通信，而不通过专用网络发送通信。 在一些实施例中，VLAN是私有VLAN（PVLAN）。

公开(公告)号：US12231262B2

公开(公告)日：2025-02-18

申请号：US17560284

申请日：2021-12-23

Applicant: VMware, Inc.

Inventor： Subin Cyriac Mathew ,  Chidambareswaran Raman ,  Prerit Rodney ,  Naveen Vijayan Kodakkal Puthiyaveettil

IPC: H04L29/12 ,  H04L12/46 ,  H04L43/0876

Abstract: Example methods and systems for virtual tunnel endpoint (VTEP) mapping for overlay networking are described. One example may involve a computer system monitoring multiple VTEPs that are configured for overlay networking. In response to detecting a state transition associated with a first VTEP from a healthy state to an unhealthy state, the computer system may identify mapping information that associates a virtualized computing instance with the first VTEP in the unhealthy state; and update the mapping information to associate the virtualized computing instance with a second VTEP in the healthy state. In response to detecting an egress packet from the virtualized computing instance to a destination, an encapsulated packet may be generated and sent towards the destination based on the updated mapping information. The encapsulated packet may include the egress packet and an outer header identifying the second VTEP to be a source VTEP.

公开(公告)号：US12047298B2

公开(公告)日：2024-07-23

申请号：US18299686

申请日：2023-04-12

Applicant: VMware, Inc.

Inventor： Senthilkumar Karunakaran ,  Chidambareswaran Raman ,  Meenakshi Sundaram Selvaraj ,  Subin Cyriac Mathew ,  Stephen Tan

IPC: H04L47/125 ,  H04L12/46 ,  H04L47/193 ,  H04L47/80

CPC classification number: H04L47/125 ,  H04L12/4633 ,  H04L47/193 ,  H04L47/806

Abstract: A method of transmitting multicast traffic to workloads of tenants communicating over overlay networks provisioned on top of a physical network includes the steps of: detecting the multicast traffic; determining that the multicast traffic is bound for workloads of a first tenant and workloads of a second tenant; encapsulating one instance of the multicast traffic using a Layer 2 (L2) over Layer 3 (L3) encapsulation protocol to generate encapsulated traffic, wherein the encapsulated traffic includes an identifier of a first backplane network corresponding to the first tenant and an identifier of a second backplane network corresponding to the second tenant in a header portion of each packet of the encapsulated traffic; and transmitting, to a first host computing device, the encapsulated traffic with the identifiers of the first and second overlay networks.

公开(公告)号：US20240028366A1

公开(公告)日：2024-01-25

申请号：US17871991

申请日：2022-07-25

Applicant: VMware, Inc.

Inventor： Subin Cyriac Mathew ,  Prerit Rodney ,  Chidambareswaran Raman

IPC: G06F9/455

CPC classification number: G06F9/45558 ,  G06F2009/45595 ,  G06F2009/4557

Abstract: Some embodiments provide a method of forwarding data messages between source and destination host computers that execute source and destination machines. At a source computer on which a source machine for a data message flow executes, the method in some embodiments identifies a source tunnel endpoint group (TEPG) associated with the source machine. For the flow, the method selects one TEP of the TEPG as the source TEP. The method then uses the selected source TEP to forward the flow to the destination computer on which the destination machine executes.

公开(公告)号：US20230396536A1

公开(公告)日：2023-12-07

申请号：US18235874

申请日：2023-08-20

Applicant: VMware, Inc.

Inventor： Ganesh Sadasivan ,  Chidambareswaran Raman ,  Dileep K. Devireddy ,  Hongwei Zhu ,  Sreenivas Duvvuri

IPC: H04L45/00 ,  H04L45/44 ,  H04L45/24 ,  H04L45/42 ,  H04L45/586 ,  H04L47/762 ,  H04L47/78 ,  H04L47/80 ,  H04L45/74

CPC classification number: H04L45/38 ,  H04L45/44 ,  H04L45/24 ,  H04L45/72 ,  H04L45/42 ,  H04L45/586 ,  H04L47/762 ,  H04L47/781 ,  H04L47/803 ,  H04L45/74 ,  H04L47/801

Abstract: Some embodiments provide policy-driven methods for deploying edge forwarding elements in a public or private SDDC for tenants or applications. For instance, the method of some embodiments allows administrators to create different traffic groups for different applications and/or tenants, deploys edge forwarding elements for the different traffic groups, and configures forwarding elements in the SDDC to direct data message flows of the applications and/or tenants through the edge forwarding elements deployed for them. The policy-driven method of some embodiments also dynamically deploys edge forwarding elements in the SDDC for applications and/or tenants after detecting the need for the edge forwarding elements based on monitored traffic flow conditions.

公开(公告)号：US11805051B2

公开(公告)日：2023-10-31

申请号：US17344956

申请日：2021-06-11

Applicant: VMware, Inc.

Inventor： Ganesh Sadasivan ,  Chidambareswaran Raman ,  Dileep K. Devireddy ,  Hongwei Zhu ,  Sreenivas Duvvuri

IPC: H04L47/762 ,  H04L45/00 ,  H04L45/44 ,  H04L45/24 ,  H04L45/42 ,  H04L45/586 ,  H04L47/78 ,  H04L47/80 ,  H04L45/74

CPC classification number: H04L45/38 ,  H04L45/24 ,  H04L45/42 ,  H04L45/44 ,  H04L45/586 ,  H04L45/72 ,  H04L45/74 ,  H04L47/762 ,  H04L47/781 ,  H04L47/801 ,  H04L47/803

Abstract: Some embodiments provide policy-driven methods for deploying edge forwarding elements in a public or private SDDC for tenants or applications. For instance, the method of some embodiments allows administrators to create different traffic groups for different applications and/or tenants, deploys edge forwarding elements for the different traffic groups, and configures forwarding elements in the SDDC to direct data message flows of the applications and/or tenants through the edge forwarding elements deployed for them. The policy-driven method of some embodiments also dynamically deploys edge forwarding elements in the SDDC for applications and/or tenants after detecting the need for the edge forwarding elements based on monitored traffic flow conditions.