公开(公告)号：US11005745B2

公开(公告)日：2021-05-11

申请号：US16278194

申请日：2019-02-18

Applicant: VMware, Inc.

Inventor： Qiao Huang ,  Donghai Han ,  Qiong Wang ,  Benli Ye ,  Xu Wang ,  Jia Cheng

IPC: H04L12/26

Abstract: Example methods are provided for a network management entity to perform network configuration failure diagnosis in a software-defined networking (SDN) environment. The method may comprise receiving a request to diagnose a network configuration failure; and generating and sending control information to a host to cause the host to inject, at a first network element, a diagnostic packet for transmission along a datapath to a configuration server via multiple second network elements. The diagnostic packet may be configured according to a network configuration protocol supported by the configuration server. The method may also comprise: receiving report information associated with the diagnostic packet from at least one of the following: the first network element, the multiple second network elements and the configuration server; and based on the report information, determining a diagnosis result associated with the network configuration failure.

公开(公告)号：US20240031268A1

公开(公告)日：2024-01-25

申请号：US17898351

申请日：2022-08-29

Applicant: VMware, Inc.

Inventor： Ran Gu ,  Wenfeng Liu ,  Donghai Han ,  Jianjun Shen ,  Zhengsheng Zhou

IPC: H04L43/10 ,  H04L45/64

CPC classification number: H04L43/10 ,  H04L45/64

Abstract: Some embodiments of the invention provide a method for performing data traffic monitoring for a system that includes a set of heterogeneous networks that includes at least an overlay first network layer that is built on top of an underlay second network layer. The method is performed at a federation controller for the system. The method directs (1) a first set of components in the overlay first network layer to perform a first trace operation to trace a packet exchanged between two machines and passing through network components defined in the overlay first network layer and underlay second network layer and (2) a second set of components in the underlay second network layer to perform a second trace operation to trace the packet. The method receives, from the first and second sets of components, first and second sets of trace data collected during the first and second trace operations. The collected trace data includes correlation data for correlating the first and second sets of data. The method uses the correlation data to correlate the first and second sets of trace data to generate a final trace report identifying a complete path traversed by the packet through the overlay first network layer and underlay second network layer.

公开(公告)号：US11641320B2

公开(公告)日：2023-05-02

申请号：US17509074

申请日：2021-10-25

Applicant: VMware, Inc.

Inventor： Ziyou Wang ,  Donghai Han ,  Mengdie Song ,  Rui Cao

IPC: H04L45/02 ,  H04L41/0803 ,  H04L12/46 ,  H04L9/40 ,  H04L45/586 ,  G06F9/455 ,  H04L41/12

Abstract: Example methods and systems for intent-based network virtualization design are disclosed. One example may comprise: obtaining configuration information and traffic information associated with multiple virtualized computing instances, processing the configuration information and traffic information to identify network connectivity intents and mapping the network connectivity intents to a logical network topology template. Based on a switching intent, a first group may be assigned to a logical network domain and the logical network topology template modified to include a logical switching element. Based on a routing intent, the logical network topology template may be modified to include a logical routing element. A logical network may be configured based on the modified logical network topology template to satisfy the switching intent and routing intent.

公开(公告)号：US20230101764A1

公开(公告)日：2023-03-30

申请号：US17507449

申请日：2021-10-21

Applicant: VMware, Inc.

Inventor： Xi Cheng ,  Caixia Jiang ,  Dongrui Mo ,  Jingchun Jason Jiang ,  Xiaoyan Jin ,  Qiong Wang ,  Donghai Han

IPC: H04L12/26 ,  H04L12/851 ,  H04L12/891

Abstract: Some embodiments provide a method of aggregating and providing packet metrics collected during a live packet monitoring session performed for packets matching a specified set of characteristics. The method receives, from one or more computing devices that process packets during the live packet monitoring session, multiple metrics associated with a set of packets matching the specified set of characteristics. Metrics associated with each packet in the set are accompanied by a packet identifier (ID) used to tag the packet by an initial computing device that processed the packet. The method uses the accompanying packet IDs to aggregate the received plurality of metrics. The method provides (i) an aggregated set of session metrics for the set of packets matching the specified set of characteristics during the live packet monitoring session and (ii) individual packet metrics using the packet IDs for at least one packet in the set of packets.

公开(公告)号：US11595303B2

公开(公告)日：2023-02-28

申请号：US16538855

申请日：2019-08-13

Applicant: VMware, Inc.

Inventor： Yusheng Wang ,  Donghai Han ,  Danting Liu ,  Quan Tian

IPC: H04L45/00 ,  H04L45/64 ,  G06F9/455 ,  H04L47/125

Abstract: Example methods and systems for packet handling in a software-defined networking (SDN) environment are disclosed. One example method may comprise detecting an egress application-layer message from a first logical endpoint supported by a first host; and identifying a second logical endpoint supported by the second host for which the egress application-layer message is destined. The method may also comprise generating an egress packet that includes the egress application-layer message and metadata associated with the second logical endpoint, but omits one or more headers that are addressed from the first logical endpoint to the second logical endpoint. The method may further comprise sending the egress packet to the second host to cause the second host to identify the second logical endpoint based on the metadata, and to send the egress application-layer message to the second logical endpoint.

公开(公告)号：US20220400053A1

公开(公告)日：2022-12-15

申请号：US17389305

申请日：2021-07-29

Applicant: VMware, Inc.

Inventor： Danting Liu ,  Jianjun Shen ,  Wenfeng Liu ,  Rui Cao ,  Ran Gu ,  Donghai Han

IPC: H04L12/24 ,  H04L12/46

Abstract: The method of some embodiments allocates a secondary network interface for a pod, which has a primary network interface, in a container network operating on an underlying logical network. The method receives an ND that designates a network segment. The method receives the pod, wherein the pod includes an identifier of the ND. The method then creates a secondary network interface for the pod and connects the secondary network interface to the network segment. In some embodiments, the pods include multiple ND identifiers that each identify a network segment. The method of such embodiments creates multiple secondary network interfaces and attaches the multiple network segments to the multiple secondary network interfaces.

公开(公告)号：US11301278B2

公开(公告)日：2022-04-12

申请号：US15961900

申请日：2018-04-25

Applicant: VMware, Inc.

Inventor： Jingchun Jiang ,  Donghai Han

IPC: G06F9/455 ,  H04L29/06 ,  H04L69/22

Abstract: Example methods are provided for a host to perform packet handling based on a microprocessor architecture configuration that includes a first node and a second node. One example method may comprise detecting, from a virtualized computing instance supported by the host, an egress packet for transmission to a destination via one of multiple physical network interface controllers (PNICs) of the host. The method may also comprise: identifying the first node assigned to the virtualized computing instance and selecting a first PNIC associated with the first node assigned to the virtualized computing instance. The multiple PNICs may include the first PNIC, and a second PNIC associated with the second node. The method may further comprise sending the egress packet to the destination via the first PNIC associated with the first node.

公开(公告)号：US11190508B2

公开(公告)日：2021-11-30

申请号：US16542304

申请日：2019-08-16

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Qi Wu ,  Donghai Han

IPC: H04L29/06 ,  H04L29/12 ,  H04L12/24 ,  G06F9/455

Abstract: Example methods and systems are provided for location-aware service request handling. The method may comprise: generating and sending location information associated with virtualized computing instance to a service node or a management entity for transmission to the service node. The location information may identify logical element(s) to which the virtualized computing instance is connected. The method may further comprise: in response to detecting, from the virtualized computing instance, a service request for a service from the service node, generating a modified service request by modifying the service request to include the location information associated with the virtualized computing instance; and sending the modified service request towards the service node.

公开(公告)号：US11184295B2

公开(公告)日：2021-11-23

申请号：US16236282

申请日：2018-12-28

Applicant: VMware, Inc.

Inventor： Feng Pan ,  Xu Wang ,  Qiong Wang ,  Donghai Han ,  Qi Wu

IPC: G06F15/167 ,  H04L12/931 ,  G06F15/173

Abstract: Example methods are provided for port mirroring based on remote direct memory access (RDMA) in a software-defined networking (SDN) environment. One example method may comprise obtaining configuration information associated with a port mirroring session between a source logical port supported by a source host and a destination logical port supported by a destination host, and establishing an RDMA-based connection between the source and destination hosts. The method may also comprise: in response to detecting a packet passing through the source logical port, generating a mirrored packet based on the detected packet, and storing, in source memory associated with the source host, the mirrored packet in association with destination information identifying the destination logical port or destination host. The method may further comprise transferring the mirrored packet from the source memory to destination memory associated with the destination host via the RDMA-based connection.

公开(公告)号：US20210314361A1

公开(公告)日：2021-10-07

申请号：US16897695

申请日：2020-06-10

Applicant: VMware, Inc.

Inventor： Zhengsheng Zhou ,  Abhishek Raut ,  Jianjun Shen ,  Donghai Han

IPC: H04L29/06 ,  H04L29/12

Abstract: Some embodiments of the invention provide a method for deploying network elements for a set of machines in a set of one or more datacenters. The datacenter set is part of one availability zone in some embodiments. The method receives intent-based API (Application Programming Interface) requests, and parses these API requests to identify a set of network elements to connect and/or perform services for the set of machines. In some embodiments, the API is a hierarchical document that can specify multiple different compute and/or network elements at different levels of compute and/or network element hierarchy. The method performs automated processes to define a virtual private cloud (VPC) to connect the set of machines to a logical network that segregates the set of machines from other machines in the datacenter set. In some embodiments, the set of machines include virtual machines and containers, the VPC is defined with a supervisor cluster namespace, and the API requests are provided as YAML, files.