公开(公告)号：US20250071059A1

公开(公告)日：2025-02-27

申请号：US18948182

申请日：2024-11-14

Applicant: VMware LLC

Inventor： Danting Liu ,  Qian Sun ,  Jianjun Shen ,  Wenfeng Liu ,  Donghai Han

IPC: H04L45/745 ,  H04L45/02 ,  H04L45/586

Abstract: Some embodiments provide an automated method for defining externally routable Pods within a Kubernetes cluster. In some embodiments, the Pod operates in a guest cluster has its own VPC (virtual private cloud) network in a datacenter with several other guest clusters that have their own VPC networks and their own set of managers. In some embodiments, a Pod within a GC can be made externally routable so that it can be directly addressable from an external client outside of the Pod's network by using two new Kubernetes CRDs (custom resource definitions), which are an IPPool CRD and a RouteSet CRD. Examples of such external clients include VMs or Pods in another GC or a supervisor cluster connected to the particular GC through a gateway, or from a machine outside of the network of all of the GCs or SC.

公开(公告)号：US12235726B2

公开(公告)日：2025-02-25

申请号：US17578928

申请日：2022-01-19

Applicant: VMware LLC

Inventor： Claudio Fleiner ,  Marc Fleischmann

IPC: G06F15/16 ,  G06F9/50 ,  G06F11/07 ,  G06F11/14 ,  H04L41/0893 ,  H04L67/10 ,  H04L67/1087

Abstract: Some embodiments provide a hierarchical data service (HDS) that manages many resource clusters that are in a resource cluster hierarchy. In some embodiments, each resource cluster has its own cluster manager, and the cluster managers are in a cluster manager hierarchy that mimics the hierarchy of the resource clusters. In some embodiments, both the resource cluster hierarchy and the cluster manager hierarchy are tree structures, e.g., a directed acyclic graph (DAG) structure that has one root node with multiple other nodes in a hierarchy, with each other node having only one parent node and one or more possible child nodes.

公开(公告)号：US20250063468A1

公开(公告)日：2025-02-20

申请号：US18234374

申请日：2023-08-16

Applicant: VMware LLC

Inventor： Arun Kumar Srinivasan ,  Navaneeth Krishnan Ramaswamy ,  Sumit Mundhra ,  Saravanan Kandasamy ,  Balaji Shanmugam

IPC: H04W40/32 ,  H04W40/02

Abstract: Some embodiments of the invention provide a method for implementing an SD-WAN connecting multiple sites at multiple physical locations. The method is performed at a first route reflector for a first region of the SD-WAN. The method receives, from a hub router of the first region, a peer-connection notification regarding a newly connected first edge router located at a first site in a second region. The method determines that a routing table maintained by the first route reflector does not include routes of the first edge router and that the first route reflector does not have a direct connection to the first edge router. Based on said determining, the method requests routes of the first edge router from the hub router. After receiving from the hub router the requested routes of the first edge router, the method updates the routing table to include the routes of the first edge router.

公开(公告)号：US20250063461A1

公开(公告)日：2025-02-20

申请号：US18234377

申请日：2023-08-16

Applicant: VMware LLC

Inventor： Arun Kumar Srinivasan ,  Navaneeth Krishnan Ramaswamy ,  Sumit Mundhra ,  Saravanan Kandasamy ,  Balaji Shanmugam

IPC: H04W40/12

Abstract: Some embodiments of the invention provide a method for interconnecting hub router clusters in an SD-WAN. The method is performed for each hub router of a first cluster and located in a first of multiple regions connected by the SD-WAN. The method establishes a connection with a respective hub router of a second cluster and located in a second of the multiple regions. The method sends, to a route reflector for the first region connected to the first cluster, a first peer-connection notification identifying the hub router as a next-hop for reaching the respective hub router. For each other hub router of the first cluster, the method receives from the route reflector a second peer-connection notification identifying the other hub router as a next-hop for reaching the other hub router's respective second cluster hub router for use in reaching edge routers connected to each other hub router's respective hub router.

公开(公告)号：US20250063420A1

公开(公告)日：2025-02-20

申请号：US18234372

申请日：2023-08-16

Applicant: VMware LLC

Inventor： Arun Kumar Srinivasan ,  Navaneeth Krishnan Ramaswamy ,  Sumit Mundhra ,  Saravanan Kandasamy ,  Balaji Shanmugam

IPC: H04W28/02

Abstract: Some embodiments of the invention provide a method of detecting and remediating anomalies in an SD-WAN implemented by multiple forwarding elements (FEs) located at multiple sites connected by the SD-WAN. The method receives, from the multiple FEs, multiple sets of flow data associated with application traffic that traverses the multiple FEs. The method uses a first set of machine-trained processes to analyze the multiple sets of flow data in order to identify at least one anomaly associated with at least one particular FE in the multiple FEs. The method uses a second set of machine-trained processes to identify at least one remedial action for remediating the identified anomaly. The method implements the identified remedial action by directing an SD-WAN controller deployed in the SD-WAN to implement the identified remedial action.

公开(公告)号：US20250062982A1

公开(公告)日：2025-02-20

申请号：US18234373

申请日：2023-08-16

Applicant: VMware LLC

Inventor： Arun Kumar Srinivasan ,  Navaneeth Krishnan Ramaswamy ,  Sumit Mundhra ,  Saravanan Kandasamy ,  Balaji Shanmugam

IPC: H04L45/12 ,  H04L45/76

Abstract: Some embodiments of the invention provide a method for implementing an SD-WAN connecting multiple sites at multiple physical locations. The method is performed at a first hub router of the SD-WAN. The method establishes, with a first edge router located at a first site in a first region, a new connection for the first hub router to use to connect the first edge router to a second edge router of a second site in the first region. The method determines that a peer-connection notification regarding a set of other routers of which the first hub router has been notified has to be sent to the first edge router. The method sends the peer-connection notification to the first edge router for the first edge router to analyze in order to determine whether the first edge router needs to obtain routes associated with each other router in the set of other routers.

公开(公告)号：US12218915B2

公开(公告)日：2025-02-04

申请号：US18076328

申请日：2022-12-06

Applicant: VMware LLC

Inventor： Igor Golikov ,  Aran Bergman ,  Lior Gal ,  Avishay Yanai ,  Israel Cidon ,  Alex Markuze ,  Eyal Zohar

IPC: H04L9/40 ,  H04L9/14

Abstract: Some embodiments of the invention provide a method for WAN (wide area network) optimization for a WAN that connects multiple sites, each of which has at least one router. At a gateway router deployed to a public cloud, the method receives from at least two routers at least two sites, multiple data streams destined for a particular centralized datacenter. The method performs a WAN optimization operation to aggregate the multiple streams into one outbound stream that is WAN optimized for forwarding to the particular centralized datacenter. The method then forwards the WAN-optimized data stream to the particular centralized datacenter.

公开(公告)号：US12218800B2

公开(公告)日：2025-02-04

申请号：US18211568

申请日：2023-06-19

Applicant: VMware LLC.

Inventor： Navaneeth Krishnan Ramaswamy ,  Gopakumar Choorakkot Edakkunni

IPC: H04L41/122 ,  H04L9/40 ,  H04L43/028 ,  H04L43/0882 ,  H04L43/18

Abstract: Some embodiments provide a method of selecting data links for an application in a network. The method receives, from a machine implementing the application, a set of identifiers of required link characteristics. Based on at least one of the identifiers, the method selects a transport group that includes a set of optional links matching the identifiers. From the selected transport group, the method selects a link matching the set of identifiers.

公开(公告)号：US20250039175A1

公开(公告)日：2025-01-30

申请号：US18765928

申请日：2024-07-08

Applicant: VMware LLC

Inventor： Daniel J. Beveridge

IPC: H04L9/40 ,  G06F9/451 ,  G06F9/455

Abstract: Some embodiments provide a novel method for analyzing data collected by a vehicle at a first location. On a first device operating in the vehicle, the method instantiates a virtual desktop first virtual machine (VM) for remote use of the first device by a remote user that uses a remote second device at a remote second location. The method instantiates a data collection second VM for local use of the first device to collect a set of data at the first location and store the set of data at the vehicle. The method facilitates interaction between the virtual desktop first VM and the remote user over a network for the remote user to access the data collection second VM to analyze the set of data without needing to forward the set of data over the network to the remote second device.

公开(公告)号：US20250039129A1

公开(公告)日：2025-01-30

申请号：US18229645

申请日：2023-08-02

Applicant: VMware LLC

Inventor： Pierluigi Rolando ,  Peng Li ,  Boon S. Ang ,  Guolin Yang ,  Wenyi Jiang ,  Yuxiao Zhang ,  Raju Koganty ,  Subrahmanyam Manuguri ,  Kok Pyng Liew ,  Jin Heo ,  Srinath Suriyanarayanan Thillaisthanam

IPC: H04L9/40 ,  G06F9/455

Abstract: Some embodiments provide a novel method for processing flows at an embedded hardware switch of a physical network interface card (PNIC) connected to a host computer. A firewall of the PNIC detects an end of a particular data message flow associated with a particular VM of the host computer. Processing of the particular data message flow was offloaded from the firewall to an embedded hardware switch of the PNIC. After detecting the end of the particular data message flow, the firewall ends offloading of the particular data message flow by deleting a first flow record stored at the embedded hardware switch for the particular data message flow. The firewall deletes a second flow record stored at the first firewall for the particular data message flow.