公开(公告)号：US11196651B2

公开(公告)日：2021-12-07

申请号：US16661879

申请日：2019-10-23

Applicant: VMware, Inc.

Inventor： Yong Wang ,  Boon Ang ,  Guolin Yang ,  Wenyi Jiang

IPC: H04L12/26 ,  H04L12/46 ,  H04L12/24 ,  H04L29/08

Abstract: Some embodiments provide a method for monitoring the status of a network connection between first and second host computers. The method is performed in some embodiments by a tunnel monitor executing on the first host computer that also separately executes a machine, where the machine uses a tunnel to send and receive messages to and from the second host computer. The method establishes a liveness channel with the machine to iteratively determine whether the first machine is operational. The method further establishes a monitoring session with the second host computer to iteratively determine whether the tunnel is operational. When a determination is made through the liveness channel that the machine is no longer operational, the method terminates the monitoring session with the second host computer. When a determination is made that the tunnel is no longer operational, the method notifies the machine through the liveness channel.

公开(公告)号：US10979542B2

公开(公告)日：2021-04-13

申请号：US16114987

申请日：2018-08-28

Applicant: VMware, Inc.

Inventor： Yong Wang ,  Xinhua Hong ,  Jayant Jain

IPC: H04L29/06 ,  H04L12/747 ,  H04L12/741 ,  H04L29/08

Abstract: Certain embodiments described herein are generally directed to using a flow cache with packets comprising dynamic headers. Embodiments include receiving a packet of a packet flow from a network, parsing the packet in order to determine a flow key, and comparing the flow key to entries in the flow cache. Upon determining that the flow key does not match any of the entries, embodiments include determining whether the packet comprises a dynamic header. Upon determining that the packet comprises a dynamic header, embodiments include canceling recorded flow cache information for the packet, performing an operation on the packet, re-parsing the packet in order to determine a new flow key, and comparing the new flow key to the entries in the flow cache. Upon determining that the flow key matches an entry, embodiments include determining cached actions to perform for the packet based on the entry and performing the cached actions.

公开(公告)号：US10938788B2

公开(公告)日：2021-03-02

申请号：US16218433

申请日：2018-12-12

Applicant: VMware, Inc.

Inventor： Yong Wang ,  Xinhua Hong ,  David J. Leroy ,  Kai-Wei Fan

IPC: H01L29/06 ,  H04L29/06 ,  H04L12/751 ,  H04L12/66 ,  H04L12/24 ,  H04L12/741

Abstract: Some embodiments provide a method for configuring a gateway datapath that processes data messages between a logical network implemented in a datacenter and an external network. The method receives configuration data including security policy rules for a logical router implemented by the datapath that indicate whether to apply a security protocol to certain data messages transmitted from a particular interface of the logical router. The method identifies a particular security policy rule that applies to data messages that (i) have a destination address in a set of destination addresses and (ii) meet at least one additional criteria. The method generates a static route, for a routing table used by the datapath to implement the logical router, that routes data messages with destination addresses in the set of destination addresses to the particular interface. The datapath applies the security policy rules for data messages transmitted from the particular interface.

公开(公告)号：US20200059421A1

公开(公告)日：2020-02-20

申请号：US16105420

申请日：2018-08-20

Applicant: VMware, Inc.

Inventor： Yong Wang ,  Eduard Serra Miralles ,  David James LeRoy

IPC: H04L12/26 ,  H04L12/24 ,  H04L12/863 ,  H04L12/931

Abstract: Described herein are systems, methods, and software to enhance network traffic management. In one implementation, upon initialization of a computing system, the computing system may select one or more processing queues from a plurality of processing of processing queues to filter control packets of at least one software defined network. The computing system may further configure a network interface to filter the control packets to the identified one or more processing queues.

公开(公告)号：US10320921B2

公开(公告)日：2019-06-11

申请号：US14574336

申请日：2014-12-17

Applicant: VMware, Inc.

Inventor： Lenin Singaravelu ,  Jin Heo ,  Jui-Ting Weng ,  Ayyappan Veeraiyan ,  Yong Wang

IPC: H04L12/815 ,  H04L29/08 ,  H04L12/931 ,  G06F9/455 ,  H04L12/741 ,  H04L29/06 ,  H04L12/721 ,  H04L12/851 ,  H04L12/861

Abstract: A method of optimizing network processing in a system comprising a physical host and a set of physical network interface controllers (PNICs) is provided. The physical host includes a forwarding element. The method includes determining that a set of conditions is satisfied to bypass the forwarding element for exchanging packets between a particular data compute node (DCN) and a particular PNIC. The set of conditions includes the particular DCN being the only DCN connected to the forwarding element and the particular PNIC being the only PNIC connected to the forwarding element. The method exchanges packets between the particular DCN and the particular PNIC bypassing the forwarding element. The method determines that at least one condition in said set of conditions is not satisfied. The method utilizes the forwarding element to exchange packets between the particular DCN and the particular PNIC.

公开(公告)号：US20170310571A1

公开(公告)日：2017-10-26

申请号：US15640281

申请日：2017-06-30

Applicant: VMware, Inc.

Inventor： Lenin Singaravelu ,  Jin Heo ,  Jui-Ting Weng ,  Ayyappan Veeraiyan ,  Yong Wang

IPC: H04L12/26 ,  G06F9/455 ,  H04L12/841

CPC classification number: H04L43/16 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L43/0894 ,  H04L43/103 ,  H04L47/28

Abstract: A method of optimizing network processing in a system comprising a physical host and a set of physical network interface controllers (PNICs) is provided. The physical host includes a forwarding element. The method includes determining that a set of conditions is satisfied to bypass the forwarding element for exchanging packets between a particular data compute node (DCN) and a particular PNIC. The set of conditions includes the particular DCN being the only DCN connected to the forwarding element and the particular PNIC being the only PNIC connected to the forwarding element. The method exchanges packets between the particular DCN and the particular PNIC bypassing the forwarding element. The method determines that at least one condition in said set of conditions is not satisfied. The method utilizes the forwarding element to exchange packets between the particular DCN and the particular PNIC.

公开(公告)号：US09699060B2

公开(公告)日：2017-07-04

申请号：US14574354

申请日：2014-12-17

Applicant: VMware, Inc.

Inventor： Lenin Singaravelu ,  Jin Heo ,  Jui-Ting Weng ,  Ayyappan Veeraiyan ,  Yong Wang

IPC: H04L12/26 ,  H04L12/841 ,  G06F9/455

CPC classification number: H04L43/16 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L43/0894 ,  H04L43/103 ,  H04L47/28

Abstract: A method of high packet rate network processing in a system that includes a physical host and a set of physical network interface controllers (PNICs). The physical host is hosting a set of data compute nodes (DCNs). Each DCN includes a virtual network interface controller (VNIC) for communicating with one or more PNICs to exchange packets. The method determines that a rate of packets received from a particular DCN at the VNIC of the particular DCN exceeds a predetermined threshold. The method performs polling to determine the availability of packets received at the VNIC from the particular DCN while the rate of packets received from the DCN at the VNIC is exceeding the threshold. The method utilizes interrupts to determine the availability of packets received at the VNIC from the particular DCN while the rate of packets received from the DCN at the VNIC does not exceed the threshold.

公开(公告)号：US20160182342A1

公开(公告)日：2016-06-23

申请号：US14574354

申请日：2014-12-17

Applicant: VMware, Inc.

Inventor： Lenin Singaravelu ,  Jin Heo ,  Jui-Ting Weng ,  Ayyappan Veeraiyan ,  Yong Wang

IPC: H04L12/26 ,  G06F9/455 ,  H04L12/841

CPC classification number: H04L43/16 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L43/0894 ,  H04L43/103 ,  H04L47/28

Abstract: A method of high packet rate network processing in a system that includes a physical host and a set of physical network interface controllers (PNICs). The physical host is hosting a set of data compute nodes (DCNs). Each DCN includes a virtual network interface controller (VNIC) for communicating with one or more PNICs to exchange packets. The method determines that a rate of packets received from a particular DCN at the VNIC of the particular DCN exceeds a predetermined threshold. The method performs polling to determine the availability of packets received at the VNIC from the particular DCN while the rate of packets received from the DCN at the VNIC is exceeding the threshold. The method utilizes interrupts to determine the availability of packets received at the VNIC from the particular DCN while the rate of packets received from the DCN at the VNIC does not exceed the threshold.

Abstract translation: 在包括物理主机和一组物理网络接口控制器（PNIC）的系统中的高分组速率网络处理的方法。 物理主机正在托管一组数据计算节点（DCN）。 每个DCN包括用于与一个或多个PNIC通信以交换分组的虚拟网络接口控制器（VNIC）。 该方法确定从特定DCN的VNIC处的特定DCN接收到的分组的速率超过预定阈值。 该方法执行轮询以确定在VNIC处从特定DCN接收的分组的可用性，而从VNIC处的DCN接收到的分组的速率超过阈值。 该方法利用中断来确定在VNIC处从特定DCN接收的分组的可用性，而从VNIC处的DCN接收到的分组的速率不超过阈值。

公开(公告)号：US20230224240A1

公开(公告)日：2023-07-13

申请号：US17571409

申请日：2022-01-07

Applicant: VMware, Inc.

Inventor： Yong Wang ,  Xinhua Hong ,  Hongwei Zhu

IPC: H04L45/24 ,  H04L45/02 ,  H04L45/7453 ,  H04L47/2441 ,  H04L12/46

CPC classification number: H04L45/24 ,  H04L12/4641 ,  H04L45/02 ,  H04L45/7453 ,  H04L47/2441

Abstract: Some embodiments provide a method for forwarding data messages between edge nodes that perform stateful processing on flows between a logical network and an external network. At a particular edge node, the method receives a data message belonging to a flow. The edge nodes use a deterministic algorithm to select one of the edge nodes to perform processing for each flow. The method identifies a first edge node to perform processing for the flow in a previous configuration and a second edge node to perform processing for the flow in a new configuration according to the algorithm. When the first and second edge nodes are different, the method uses a probabilistic filter and a stateful connection tracker to determine whether the flow existed prior to a particular time. When the flow did not exist prior to that time, the method selects the second edge node for the received data message.

公开(公告)号：US11683256B2

公开(公告)日：2023-06-20

申请号：US17689606

申请日：2022-03-08

Applicant: VMware, Inc.

Inventor： Lenin Singaravelu ,  Jin Heo ,  Jui-Ting Weng ,  Ayyappan Veeraiyan ,  Yong Wang

IPC: H04L43/16 ,  G06F9/455 ,  H04L43/0894 ,  H04L43/103 ,  H04L47/28

CPC classification number: H04L43/16 ,  G06F9/45558 ,  H04L43/0894 ,  H04L43/103 ,  G06F2009/45595 ,  H04L47/28

Abstract: A method of optimizing network processing in a system comprising a physical host and a set of physical network interface controllers (PNICs) is provided. The physical host includes a forwarding element. The method includes determining that a set of conditions is satisfied to bypass the forwarding element for exchanging packets between a particular data compute node (DCN) and a particular PNIC. The set of conditions includes the particular DCN being the only DCN connected to the forwarding element and the particular PNIC being the only PNIC connected to the forwarding element. The method exchanges packets between the particular DCN and the particular PNIC bypassing the forwarding element. The method determines that at least one condition in said set of conditions is not satisfied. The method utilizes the forwarding element to exchange packets between the particular DCN and the particular PNIC.