公开(公告)号：US20210314240A1

公开(公告)日：2021-10-07

申请号：US16897704

申请日：2020-06-10

Applicant: VMware, Inc.

Inventor： Danting Liu ,  Jianjun Shen ,  Abhishek Raut ,  Wenfeng Liu ,  Donghai Han

IPC: H04L12/24 ,  H04L29/08 ,  G06F9/455 ,  H04L29/06 ,  G06F9/54

Abstract: Some embodiments of the invention provide a method for deploying network elements for a set of machines in a set of one or more datacenters. The datacenter set is part of one availability zone in some embodiments. The method receives intent-based API (Application Programming Interface) requests, and parses these API requests to identify a set of network elements to connect and/or perform services for the set of machines. In some embodiments, the API is a hierarchical document that can specify multiple different compute and/or network elements at different levels of compute and/or network element hierarchy. The method performs automated processes to define a virtual private cloud (VPC) to connect the set of machines to a logical network that segregates the set of machines from other machines in the datacenter set. In some embodiments, the set of machines include virtual machines and containers, the VPC is defined with a supervisor cluster namespace, and the API requests are provided as YAML files.

公开(公告)号：US20210011780A1

公开(公告)日：2021-01-14

申请号：US16532084

申请日：2019-08-05

Applicant: VMware, Inc.

Inventor： Da Wan ,  Jianjun Shen ,  Feng Pan ,  Pankaj Thakkar ,  Donghai Han

IPC: G06F9/50 ,  G06F9/455

Abstract: In an embodiment, a computer-implemented method for dynamically exchanging runtime state data between datacenters using a controller bridge is disclosed. In an embodiment, the method comprises: requesting, and receiving, one or more first runtime state data from one or more logical sharding central control planes (“CCPs”) controlling one or more logical sharding hosts; requesting, and receiving, one or more second runtime state data from one or more physical sharding CCPs controlling one or more physical sharding hosts; aggregating, to aggregated runtime state data, the one or more first runtime state data and the one or more second runtime state data; determining updated runtime state data based on the aggregated runtime state data, the one or more first runtime state data, and the one or more second runtime state data; and transmitting the updated runtime state data to the logical sharding CCPs and physical sharding CCPs.

公开(公告)号：US10887222B2

公开(公告)日：2021-01-05

申请号：US16382002

申请日：2019-04-11

Applicant: VMware, Inc.

Inventor： Ziyou Wang ,  Li Sun ,  Anuprem Chalvadi ,  Yanjun Lin ,  Yang Ping ,  Mary Firenze ,  Pierluigi Rolando ,  Yong Feng ,  Raju Koganty ,  Jianjun Shen ,  Medhavi Dhawan

IPC: H04L12/717 ,  G06F9/455 ,  H04L12/707

Abstract: Some embodiments provide a method for assigning different service path identifiers to each of a set of different service paths along each of which a same set of service operations are performed on a set of packets. The method retrieves an available service path identifier from an identifier storage that stores service path identifiers for multiple service paths. The method generates a set of proposed service path identifiers based on the retrieved available service path identifier and the number of service paths in the set of service paths. The method performs a write operation on the identifier storage based on the set of proposed service path identifiers, and based on a determination that the write operation was successful, assigns the set of proposed service path identifiers to the set of service paths. Based on the set of service path identifiers, the method forwards the set of packets along the set of service paths.

公开(公告)号：US09264330B2

公开(公告)日：2016-02-16

申请号：US14052765

申请日：2013-10-13

Applicant: VMware, Inc.

Inventor： Alexander Tessmer ,  Jianjun Shen

IPC: H04L12/28 ,  H04L12/26

CPC classification number: H04L43/0811 ,  H04L43/10 ,  H04L43/50

Abstract: Some embodiments provide a method for a first host machine that hosts a virtual machine connected to a particular logical network. The method receives a command to test connectivity between the first host machine and a set of at least one additional host machine that also host virtual machines on the particular logical network. At the first host machine, the method generates a packet for sending to the set of additional host machines in order to test the connectivity. The method appends to the generated packet (i) information that identifies the particular logical network and (ii) a flag indicating that the packet is for connectivity testing. The method encapsulates the generated packet with tunnel endpoint addresses, including a tunnel endpoint located at the first host machine. The method sends the encapsulated packet from the first host machine to the set of additional host machines according to the tunnel encapsulation.

Abstract translation: 一些实施例提供一种用于承载连接到特定逻辑网络的虚拟机的第一主机的方法。 该方法接收用于测试第一主机与一组至少一个附加主机之间的连接的命令，该主机还在特定逻辑网络上托管虚拟机。 在第一台主机上，该方法生成一个数据包，用于发送给一组附加主机，以便测试连接。 该方法附加到生成的分组（i）识别特定逻辑网络的信息，以及（ii）指示分组用于连接测试的标志。 该方法使用隧道端点地址封装生成的数据包，包括位于第一个主机的隧道端点。 该方法根据隧道封装，将封装的数据包从第一台主机发送到另一台主机。

公开(公告)号：US20240388523A1

公开(公告)日：2024-11-21

申请号：US18212677

申请日：2023-06-21

Applicant: VMware, Inc.

Inventor： Quan Tian ,  Jianjun Shen ,  Donghai Han ,  Shuyang Xin ,  Wenqi Qiu

IPC: H04L45/02 ,  H04L9/40

Abstract: Systems and methods for configuring an egress node for an egress pod set comprising one or more pods are provided. The egress pod set may be allocated one or more egress internet protocol (IP) addresses. The egress node may be selected among nodes of a cluster including the one or more pods. The egress node may be configured as the routing destination for an egress IP address selected among the one or more egress internet protocol (IP) addresses.

公开(公告)号：US20240244037A1

公开(公告)日：2024-07-18

申请号：US18178832

申请日：2023-03-06

Applicant: VMware, Inc.

Inventor： Lan Luo ,  Jianjun Shen ,  Jiajing Hu ,  Wenfeng Liu ,  Donghai Han

IPC: H04L9/40 ,  G06F9/455

CPC classification number: H04L63/029 ,  G06F9/45558 ,  G06F2009/45595

Abstract: Systems and methods for exchanging network information between member clusters include configuring a gateway pool of a member cluster, the gateway pool comprising a plurality of gateway nodes, the member cluster comprising the plurality of gateway nodes and one or more nodes, configuring a gateway node of the plurality of gateway nodes as an active gateway node for the member cluster, writing member cluster information to a storage, the member cluster information indicating address information of the gateway node, reading second member cluster information from the storage, the second member cluster information indicating address information of a gateway node of a second member cluster, establishing a tunnel between the gateway node and the second gateway node based on the second member cluster information, and communicating network traffic from at least one node of the member cluster to at least one node of the second member cluster via the tunnel.

公开(公告)号：US20240113968A1

公开(公告)日：2024-04-04

申请号：US17960126

申请日：2022-10-04

Applicant: VMware, Inc.

Inventor： Danting Liu ,  Qian Sun ,  Jianjun Shen ,  Wenfeng Liu ,  Donghai Han

IPC: H04L45/745 ,  H04L45/02 ,  H04L45/586

CPC classification number: H04L45/745 ,  H04L45/02 ,  H04L45/586

Abstract: Some embodiments provide an automated method for defining externally routable Pods within a Kubernetes cluster. In some embodiments, the Pod operates in a guest cluster has its own VPC (virtual private cloud) network in a datacenter with several other guest clusters that have their own VPC networks and their own set of managers. In some embodiments, a Pod within a GC can be made externally routable so that it can be directly addressable from an external client outside of the Pod's network by using two new Kubernetes CRDs (custom resource definitions), which are an IPPool CRD and a RouteSet CRD. Examples of such external clients include VMs or Pods in another GC or a supervisor cluster connected to the particular GC through a gateway, or from a machine outside of the network of all of the GCs or SC.

公开(公告)号：US11936544B2

公开(公告)日：2024-03-19

申请号：US17820328

申请日：2022-08-17

Applicant: VMware, Inc.

Inventor： Jianwei Sui ,  Danting Liu ,  Donghai Han ,  Wenfeng Liu ,  Jianjun Shen

IPC: G06F9/455 ,  G06F9/54 ,  H04L43/0876

CPC classification number: H04L43/0876 ,  G06F9/45558 ,  G06F9/547 ,  G06F2009/45595

Abstract: A system and method for capturing resource usage information in a network for namespaces in which pods operate are described herein. A data structure specifies a topology that includes a gateway and routing addresses in a network whose usage is to be captured. The data structure is provided to an API of a master node controlling the pods. A controller in the master node enforces the data structure and reports results back to the API.

公开(公告)号：US20240039751A1

公开(公告)日：2024-02-01

申请号：US17945435

申请日：2022-09-15

Applicant: VMware, Inc.

Inventor： Wenying Dong ,  Lan Luo ,  Ruochen Shen ,  Jianjun Shen ,  Antonin Mathieu Bas

IPC: H04L12/18 ,  H04L45/16 ,  H04L1/18

CPC classification number: H04L12/185 ,  H04L45/16 ,  H04L1/188

Abstract: Described herein are systems, methods, and software to manage multicast communications for containers in a computing network. In one example, a first node is configured to monitor for registration packets from pods on the first node to join a multicast group. The first node further identifies a registration packet from a first pod of the pods, wherein the registration packet indicates a multicast IP address, and configures one or more forwarding rules in a virtual switch to direct packets with the multicast IP address as a destination IP address to a virtual interface for the first pod. Once configured, the first node is further configured to receive a packet with the multicast IP address as the destination and direct the packet based on the one or more or more forwarding rules.

公开(公告)号：US20240028365A1

公开(公告)日：2024-01-25

申请号：US17871934

申请日：2022-07-23

Applicant: VMware, Inc.

Inventor： Han Li ,  Li Sun ,  Jianjun Shen

IPC: G06F9/455 ,  G06F9/50

CPC classification number: G06F9/45558 ,  G06F9/5088 ,  G06F2009/4557 ,  G06F2009/45587

Abstract: Some embodiments provide a novel method for processing control plane messages regarding migration of a particular machine from a first host computer managed by a first central control plane (CCP) server to a second host computer. At the first CCP server, the method receives a first data message from the first host computer notifying that the particular machine has been removed from the first host computer. The method determines whether a second data message from a second host computer notifying that the particular machine has been added to the second host computer has been received and processed in order to process the first data message. When it is determined that the second data message has been received and processed, the method processes the first data message.