公开(公告)号：US20240012664A1

公开(公告)日：2024-01-11

申请号：US17815609

申请日：2022-07-28

Applicant: VMware, Inc.

Inventor： Lan Luo ,  Wenfeng Liu ,  Donghai Han ,  Jianjun Shen

IPC: G06F9/455

CPC classification number: G06F9/45558 ,  G06F2009/45595

Abstract: The disclosure provides an approach for cross-cluster service resource discovery. A method includes obtaining, at a common store in a first node cluster in a cluster set information about a service resource of a second node cluster. The method includes creating a multi-cluster object associated with the service resource, wherein the multi-cluster object provides an association between the service resource and one or more endpoints on the second node cluster. The method includes storing the multi-cluster object in the common store, wherein the multi-cluster object is accessible in the common store by any of the plurality of node clusters in the cluster set to access the service resource on any of the one or more endpoints on the second node cluster.

公开(公告)号：US20230297404A1

公开(公告)日：2023-09-21

申请号：US17724436

申请日：2022-04-19

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Ran Gu ,  Caixia Jiang ,  Yves Fauser

IPC: G06F9/455 ,  G06F9/50 ,  H04L61/2521

CPC classification number: G06F9/45558 ,  G06F9/5016 ,  G06F9/505 ,  H04L61/2535 ,  G06F2009/4557 ,  G06F2009/45595

Abstract: Some embodiments of the invention provide a method for processing data messages for routable subnets of a logical network, the logical network implemented by a software-defined network (SDN) and connecting multiple machines. The method receives an inbound data message. The method performs a DNAT (destination network address translation) operation on the received data message to identify a record associated with a destination IP (Internet protocol) address of the data message. From the record, the method identifies a VLAN (virtual local area network) identifier, an LNI (logical network identifier), and a destination host computer IP address for the data message. The method encapsulates the data message with an outer header containing the destination host computer IP address and the VLAN identifier. The method forwards the encapsulated data message to the destination host computer.

公开(公告)号：US11689497B2

公开(公告)日：2023-06-27

申请号：US16897652

申请日：2020-06-10

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Kai Su ,  Danting Liu ,  Yang Liu

IPC: H04L12/24 ,  H04L29/08 ,  G06F9/54 ,  H04L29/06 ,  G06F9/455 ,  H04L61/50 ,  H04L49/00 ,  H04L45/42 ,  G06F9/50 ,  H04L9/40 ,  H04L61/103 ,  H04L41/0893 ,  H04L41/18 ,  H04L41/5041 ,  H04L41/50 ,  H04L67/10 ,  H04L12/46 ,  H04L12/66 ,  H04L67/1001 ,  H04L45/586

CPC classification number: H04L61/50 ,  G06F9/45558 ,  G06F9/5083 ,  G06F9/54 ,  G06F9/547 ,  H04L12/4641 ,  H04L12/66 ,  H04L41/0893 ,  H04L41/18 ,  H04L41/5048 ,  H04L41/5077 ,  H04L45/42 ,  H04L45/586 ,  H04L49/70 ,  H04L61/103 ,  H04L63/0209 ,  H04L63/0218 ,  H04L63/0263 ,  H04L63/0272 ,  H04L63/20 ,  H04L67/10 ,  H04L67/1001 ,  G06F9/5077 ,  G06F2009/4557 ,  G06F2009/45562 ,  G06F2009/45595

Abstract: Some embodiments of the invention provide a method for deploying network elements for a set of machines in a set of one or more datacenters. The datacenter set is part of one availability zone in some embodiments. The method receives intent-based API (Application Programming Interface) requests, and parses these API requests to identify a set of network elements to connect and/or perform services for the set of machines. In some embodiments, the API is a hierarchical document that can specify multiple different compute and/or network elements at different levels of compute and/or network element hierarchy. The method performs automated processes to define a virtual private cloud (VPC) to connect the set of machines to a logical network that segregates the set of machines from other machines in the datacenter set. In some embodiments, the set of machines include virtual machines and containers, the VPC is defined with a supervisor cluster namespace, and the API requests are provided as YAML files.

公开(公告)号：US20230179484A1

公开(公告)日：2023-06-08

申请号：US18102700

申请日：2023-01-28

Applicant: VMware, Inc.

Inventor： Danting Liu ,  Jianjun Shen ,  Wenfeng Liu ,  Rui Cao ,  Ran Gu ,  Donghai Han

IPC: H04L41/08 ,  H04L12/46

CPC classification number: H04L41/0876 ,  H04L12/4641

Abstract: The method of some embodiments allocates a secondary network interface for a pod, which has a primary network interface, in a container network operating on an underlying logical network. The method receives an ND that designates a network segment. The method receives the pod, wherein the pod includes an identifier of the ND. The method then creates a secondary network interface for the pod and connects the secondary network interface to the network segment. In some embodiments, the pods include multiple ND identifiers that each identify a network segment. The method of such embodiments creates multiple secondary network interfaces and attaches the multiple network segments to the multiple secondary network interfaces.

公开(公告)号：US11579908B2

公开(公告)日：2023-02-14

申请号：US16223235

申请日：2018-12-18

Applicant: VMware, Inc.

Inventor： Aditi Ghag ,  Pranshu Jain ,  Yaniv Ben-Itzhak ,  Jianjun Shen

IPC: G06F9/455 ,  G06F9/48 ,  G06F9/50 ,  H04L43/065 ,  H04L43/0876

Abstract: A method for containerized workload scheduling can include determining a network state for a first hypervisor in a virtual computing cluster (VCC). The method can further include determining a network state for a second hypervisor. Containerized workload scheduling can further include deploying a container to run a containerized workload on a virtual computing instance (VCI) deployed on the first hypervisor or the second hypervisor based, at least in part, on the determined network state for the first hypervisor and the second hypervisor.

公开(公告)号：US20230013269A1

公开(公告)日：2023-01-19

申请号：US17376106

申请日：2021-07-14

Applicant: VMware, Inc.

Inventor： Akshay Kale ,  Anil Lohiya ,  Fang Peng ,  Maheedhar Nallapareddy ,  Jianjun Shen

IPC: H04L12/715 ,  H04L12/713 ,  H04L12/66 ,  H04L12/46 ,  H04L12/24

Abstract: A method for creating overlay networking constructs to establish network connectivity between virtual routers and remote physical gateways is provided. An orchestrator receives a mapping between tenant network identifiers for multiple tenant networks and overlay network identifiers for multiple overlay networks. The orchestrator attaches a virtual router to a parent logical port of an overlay logical switch for connectivity between a physical gateway and the multiple tenant networks. The orchestrator creates multiple child logical ports that are sub-interfaces of the parent logical port. Each child logical port is uniquely identified by a tenant network identifier. The orchestrator connects multiple child logical switches to the multiple child logical ports according to the received mapping. Each child logical switch is uniquely identified by an overlay network identifier. The orchestrator establishes multiple overlay networks based on the child logical switches to tunnel data between the physical gateway and the child logical ports.

公开(公告)号：US11349933B1

公开(公告)日：2022-05-31

申请号：US16953269

申请日：2020-11-19

Applicant: VMware, Inc.

Inventor： Zi Feng ,  Jianjun Shen ,  Fangyuan Li

IPC: H04L67/141 ,  H04L67/00 ,  G06F9/451 ,  G06F9/455 ,  H04L67/02

Abstract: A computing system and method for providing a service for a guest container-based cluster of the computing system utilizes a translated service software object created in a supervisor container-based cluster of the computing system to create at least one resource to support the service requested for the guest container-based cluster. The translated service software object is created in response to a service software object being created in the guest container-based cluster. In response to the translated service software object being created in the supervisor container-based cluster, at least one service-related software object is then created in the supervisor container-based cluster that corresponds to the translated service software object. Provider-specific instructions are then sent to a resource provider from the supervisor container-based cluster to create at least one resource associated with the at least one service-related software object to support the requested service for the guest container-based cluster.

公开(公告)号：US20220038501A1

公开(公告)日：2022-02-03

申请号：US17006846

申请日：2020-08-30

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Wenying Dong ,  Quan Tian ,  Antonin Bas ,  Srikar Tati

IPC: H04L29/06 ,  G06F9/50 ,  H04L12/26

Abstract: Some embodiments provide a method for a module executing on a Kubernetes node in a cluster. The method retrieves data regarding ongoing connections processed by a forwarding element executing on the node. The method maps the retrieved data to Kubernetes concepts implemented in the cluster. The method exports the retrieved data along with the Kubernetes concepts to an aggregator that receives data regarding ongoing connections from a plurality of nodes in the cluster.

公开(公告)号：US20220038311A1

公开(公告)日：2022-02-03

申请号：US17185844

申请日：2021-02-25

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Mark Johnson ,  Gaetano Borgione ,  Benjamin John Corrie ,  Derek Beard ,  Zach James Shepherd ,  Vinay Reddy

IPC: H04L12/66 ,  H04L12/803 ,  H04L12/721 ,  H04L12/717 ,  H04L12/713 ,  H04L29/06

Abstract: Some embodiments of the invention provide a novel network architecture for deploying guest clusters (GCs) including workload machines for a tenant (or other entity) within an availability zone. The novel network architecture includes a virtual private cloud (VPC) deployed in the availability zone (AZ) that includes a centralized routing element that provides access to a gateway routing element of the AZ. In some embodiments, the centralized routing element provides a set of services for packets traversing a boundary of the VPC. The services, in some embodiments, include load balancing, firewall, quality of service (QoS) and may be stateful or stateless. Guest clusters are deployed within the VPC and use the centralized routing element of the VPC to access the gateway routing element of the AZ.

公开(公告)号：US11182352B2

公开(公告)日：2021-11-23

申请号：US16532084

申请日：2019-08-05

Applicant: VMware, Inc.

Inventor： Da Wan ,  Jianjun Shen ,  Feng Pan ,  Pankaj Thakkar ,  Donghai Han

IPC: G06F16/20 ,  G06F9/50 ,  G06F9/455

Abstract: In an embodiment, a computer-implemented method for dynamically exchanging runtime state data between datacenters using a controller bridge is disclosed. In an embodiment, the method comprises: requesting, and receiving, one or more first runtime state data from one or more logical sharding central control planes (“CCPs”) controlling one or more logical sharding hosts; requesting, and receiving, one or more second runtime state data from one or more physical sharding CCPs controlling one or more physical sharding hosts; aggregating, to aggregated runtime state data, the one or more first runtime state data and the one or more second runtime state data; determining updated runtime state data based on the aggregated runtime state data, the one or more first runtime state data, and the one or more second runtime state data; and transmitting the updated runtime state data to the logical sharding CCPs and physical sharding CCPs.