-
公开(公告)号:US20200059493A1
公开(公告)日:2020-02-20
申请号:US16248824
申请日:2019-01-16
Applicant: VMWARE, INC.
Inventor: Bhaskar Subramanyam Annadata , Abhinav Vijay Bhagwat , Sachin Thakkar , Debashis Basak , Serge Maskalik
Abstract: An example method of migrating a firewall policy between a first virtual data center and a second virtual data center includes: generating a static firewall from a firewall document at a first firewall server in the first virtual data center, the firewall document defining polices applied to groups of objects in the first virtual data center, the static firewall including firewall rule tuples; sending the static firewall from the first firewall server to a second firewall server in the second virtual data center; migrating a plurality of virtual machines (VMs) from the first virtual data center to the second virtual data center; and importing the firewall document from the first firewall server to the second firewall server by mapping the policies of the first firewall to groups of objects in an inventory of the second virtual data center.
-
公开(公告)号:US10476843B2
公开(公告)日:2019-11-12
申请号:US15455510
申请日:2017-03-10
Applicant: VMware, Inc.
Inventor: Debashis Basak , Rohit Toshniwal , Allwyn Sequeira
IPC: H04L29/06
Abstract: A method is provided to control the flow of packets within a system that includes one or more computer networks comprising: policy rules are provided that set forth attribute dependent conditions for communications among machines on the one or more networks; machine attributes and corresponding machine identifiers are obtained for respective machines on the networks; and policy rules are transformed to firewall rules that include machine identifiers of machines having attributes from among the obtained machine attributes that satisfy the attribute dependent policy rules.
-
公开(公告)号:US10250685B2
公开(公告)日:2019-04-02
申请号:US15690225
申请日:2017-08-29
Applicant: VMware, Inc.
Inventor: Aravind Srinivasan , Narendra Kumar Basur Shankarappa , Sachin Thakkar , Serge Maskalik , Debashis Basak
IPC: G06F8/65 , H04L29/08 , H04L29/12 , H04L29/06 , H04L12/26 , H04L12/721 , H04L12/801 , H04L12/911 , H04W28/02 , G06F9/50 , H04L12/24 , H04L12/931 , H04L12/46 , H04L12/715 , H04L12/725 , G06F9/455
Abstract: Techniques for creating layer 2 (L2) extension networks are disclosed. One embodiment permits an L2 extension network to be created by deploying, configuring, and connecting a pair of virtual appliances in the data center and the cloud so that the appliances communicate via secure tunnels and bridge networks in the data center and the cloud. A pair of virtual appliances are first deployed in the data center and the cloud, and secure tunnels are then created between the virtual appliances. Thereafter, a stretched network is created by connecting a network interface in each of the virtual appliances to a respective local network, configuring virtual switch ports to which the virtual appliances are connected as sink ports that receive traffic with non-local destinations, and configuring each of the virtual appliances to bridge the network interface therein that is connected to the local network and tunnels between the pair of virtual appliances.
-
公开(公告)号:US10212195B2
公开(公告)日:2019-02-19
申请号:US14981424
申请日:2015-12-28
Applicant: VMware, Inc.
Inventor: Serge Maskalik , Aravind Srinivasan , Debashis Basak , Sachin Thakkar , Allwyn Sequeira
Abstract: A hybrid computing system includes an on-premise data center and a cloud computing system. To connect between an organization's multiple data centers, a gateway may instead utilize the connections between the private data center and the cloud computing system rather than a direct connection to the other of the organizations' data centers.
-
公开(公告)号:US10009368B2
公开(公告)日:2018-06-26
申请号:US15413637
申请日:2017-01-24
Applicant: VMware, Inc.
Inventor: Sachin Thakkar , Serge Maskalik , Debashis Basak , Allwyn Sequeira , Govind Haridas
CPC classification number: H04L63/1433 , G06F9/45558 , G06F21/53 , G06F21/6236 , G06F2009/4557 , G06F2009/45591 , G06F2009/45595 , H04L63/1408 , H04L67/1097
Abstract: A method of transferring a virtual machine between a virtualized computing system and a cloud computing system includes determining that a virtual machine is to be transferred from a virtualized computing system to a cloud computing system and determining a connection between a first resource in the virtualized computing system and a second resource in the cloud computing system. Files that enable implementation of the virtual machine at the virtualized computing system and identified, as are file portions of the files for transfer from the virtualized computing system to the cloud computing system. At least one compliance check is executed on each of the file portions using at least one compliance checker. Each of the file portions that fails a compliance check is blocked from being maintained in the cloud computing system.
-
Patent Agency Ranking
36.发明授权公开(公告)号:US09851997B2
公开(公告)日:2017-12-26
申请号:US14750901
申请日:2015-06-25
Applicant: VMware, Inc.
Inventor: Michael Gough , Debashis Basak , Mark Whipple
CPC classification number: G06F9/45558 , G06F2009/4557 , H04L67/1095
Abstract: The order of migrating virtual computing instances from a private data center to a public cloud is optimized using a TSP solver. The method of migrating a plurality of virtual computing instances that are in communication with each other within a private data center to a public cloud includes the steps of assigning, for each different pair of virtual computing instances, a numerical value that represents an amount of data transmission between the pair over a predetermined period of time, determining a recommended order of migration for the virtual computing instances based on the assigned numerical values, and migrating the virtual computing instances according to the recommended order.
-
公开(公告)号:US09723065B2
公开(公告)日:2017-08-01
申请号:US14529469
申请日:2014-10-31
Applicant: VMware, Inc.
Inventor: Sachin Thakkar , Debashis Basak , Serge Maskalik , Mark Bryan Whipple , Aarti Kumar Gupta
CPC classification number: H04L67/10 , G06F9/45558 , G06F9/5072 , G06F2009/4557 , H04L12/4641 , H04L43/10 , H04L67/34
Abstract: A hybrid cloud computing system having a private data center and a public cloud computing system is discussed. The private data center is managed by a first organization. The public cloud computing system is managed by a second organization, and the first organization is a tenant in the public cloud computing system. The hybrid cloud computing system is configured to generate a mapping that contextualizes virtual objects migrated between the private data center and the public cloud computing system based on the objects' location. Such a mapping is maintained to expose the true hybridity of the hybrid cloud rather than present two distinct views of a private data center (or private cloud) and a public cloud.
-
公开(公告)号:US11310277B2
公开(公告)日:2022-04-19
申请号:US16248828
申请日:2019-01-16
Applicant: VMWARE, INC.
Abstract: One or more embodiments provide a firewall policy between a first virtual data center and a second virtual data center. A method includes: establishing a communication link between a first firewall server in the first virtual data center and a second firewall server in the second virtual data center over a network, the first firewall server having a first firewall defined by polices applied to groups of objects in the first virtual data center; obtaining, at the first firewall server, an inventory of objects in the second virtual data center from the second firewall server; determining firewall rule tuples by mapping the policies of the first firewall to groups of objects in the inventory of the second virtual data center; and sending the firewall rule tuples to enforcement points in the second virtual data center.
-
公开(公告)号:US11194608B2
公开(公告)日:2021-12-07
申请号:US16417491
申请日:2019-05-20
Applicant: VMware, Inc.
Inventor: Allwyn Sequeira , Sachin Thakkar , Serge Maskalik , Debashis Basak , Mark Whipple
Abstract: Techniques disclosed herein relate to migrating virtual computing instances such as virtual machines (VMs). In one embodiment, VMs are migrated across different virtual infrastructure platforms by, among other things, translating between resource models used by virtual infrastructure managers (VIMs) that manage the different virtual infrastructure platforms. VM migrations may also be validated prior to being performed, including based on resource policies that define what is and/or is not allowed to migrate, thereby providing compliance and controls for borderless data centers. In addition, an agent-based technique may be used to migrate VMs and physical servers to virtual infrastructure, without requiring access to an underlying hypervisor layer.
-
公开(公告)号:US11184397B2
公开(公告)日:2021-11-23
申请号:US16248824
申请日:2019-01-16
Applicant: VMWARE, INC.
Inventor: Bhaskar Subramanyam Annadata , Abhinav Vijay Bhagwat , Sachin Thakkar , Debashis Basak , Serge Maskalik
Abstract: An example method of migrating a firewall policy between a first virtual data center and a second virtual data center includes: generating a static firewall from a firewall document at a first firewall server in the first virtual data center, the firewall document defining polices applied to groups of objects in the first virtual data center, the static firewall including firewall rule tuples; sending the static firewall from the first firewall server to a second firewall server in the second virtual data center; migrating a plurality of virtual machines (VMs) from the first virtual data center to the second virtual data center; and importing the firewall document from the first firewall server to the second firewall server by mapping the policies of the first firewall to groups of objects in an inventory of the second virtual data center.
-
-
-
-
-
-
-
-
-
Search Results
52
records
(took 0.015 seconds)
