-
1.发明授权Method and apparatus for supporting access control lists in a multi-tenant environment 有权在多租户环境中支持访问控制列表的方法和装置公开(公告)号:US08751650B2
公开(公告)日:2014-06-10
申请号:US13468739
申请日:2012-05-10
申请人: Anuraag Mittal , Maithili Narasimha , Ashwin Deepak Swaminathan , Badhri Madabusi Vijayaraghavan
发明人: Anuraag Mittal , Maithili Narasimha , Ashwin Deepak Swaminathan , Badhri Madabusi Vijayaraghavan
CPC分类号: H04L63/101
摘要: In one embodiment, a method includes identifying common access control list (ACL) parameters and variable ACL parameters among a plurality of tenants in a network, mapping parameter values for the variable ACL parameters to the tenants, generating a multi-tenant access control list for the tenants, storing the multi-tenant access control list and mapping at a network device, and applying the multi-tenant access control list to ports at the network device. The multi-tenant access control list includes the common ACL parameters and variable ACL parameters.
摘要翻译: 在一个实施例中,一种方法包括在网络中的多个租户中识别公共访问控制列表(ACL)参数和可变ACL参数,将可变ACL参数的参数值映射到租户,生成多租户访问控制列表, 租户,在网络设备上存储多租户访问控制列表和映射,以及将多租户访问控制列表应用于网络设备的端口。 多租户访问控制列表包括通用ACL参数和可变ACL参数。
-
2.发明申请METHOD AND APPARATUS FOR SUPPORTING ACCESS CONTROL LISTS IN A MULTI-TENANT ENVIRONMENT 有权在多个环境中支持访问控制列表的方法和装置公开(公告)号:US20130304917A1
公开(公告)日:2013-11-14
申请号:US13468739
申请日:2012-05-10
申请人: Anuraag Mittal , Maithili Narasimha , Ashwin Deepak Swaminathan , Badhri Madabusi Vijayaraghavan
发明人: Anuraag Mittal , Maithili Narasimha , Ashwin Deepak Swaminathan , Badhri Madabusi Vijayaraghavan
IPC分类号: G06F15/173
CPC分类号: H04L63/101
摘要: In one embodiment, a method includes identifying common access control list (ACL) parameters and variable ACL parameters among a plurality of tenants in a network, mapping parameter values for the variable ACL parameters to the tenants, generating a multi-tenant access control list for the tenants, storing the multi-tenant access control list and mapping at a network device, and applying the multi-tenant access control list to ports at the network device. The multi-tenant access control list includes the common ACL parameters and variable ACL parameters.
摘要翻译: 在一个实施例中,一种方法包括在网络中的多个租户中识别公共访问控制列表(ACL)参数和可变ACL参数,将可变ACL参数的参数值映射到租户,生成多租户访问控制列表, 租户,在网络设备上存储多租户访问控制列表和映射,以及将多租户访问控制列表应用于网络设备的端口。 多租户访问控制列表包括通用ACL参数和可变ACL参数。
-
公开(公告)号:US09288162B2
公开(公告)日:2016-03-15
申请号:US13566030
申请日:2012-08-03
IPC分类号: G06F21/00 , H04L12/931
CPC分类号: H04L49/70
摘要: In one embodiment, a method includes identifying at a network device, characteristics of a distributed virtual switch comprising a control plane component and a plurality of data plane components, grouping the data plane components, and adapting operation of the distributed virtual switch for one or more groups of the data plane components based on the characteristics. An apparatus and logic are also disclosed herein.
摘要翻译: 在一个实施例中,一种方法包括在网络设备处识别包括控制平面组件和多个数据平面组件的分布式虚拟交换机的特性,对数据平面组件进行分组,以及将分布式虚拟交换机的操作适配于一个或多个 基于特征的数据平面组件组。 本文还公开了一种装置和逻辑。
-
公开(公告)号:US20130024553A1
公开(公告)日:2013-01-24
申请号:US13135918
申请日:2011-07-18
IPC分类号: G06F15/177
CPC分类号: H04L41/0893 , H04L61/2015 , H04L61/2069
摘要: In one embodiment, a method includes receiving at a network device operating as a relay agent, a Dynamic Host Configuration Protocol (DHCP) request from an end host, inserting a group identifier into the DHCP request and forwarding the DHCP request to a DHCP server, the end host associated with a group identified by the group identifier, receiving a response from the DHCP server, and forwarding the response to the end host. The response includes configuration information for the end host, at least some of the configuration information selected based on the group identifier. An apparatus is also disclosed.
摘要翻译: 在一个实施例中,一种方法包括在作为中继代理工作的网络设备处接收来自终端主机的动态主机配置协议(DHCP)请求,将组标识符插入到DHCP请求中并将DHCP请求转发给DHCP服务器, 与由组标识符标识的组相关联的终端主机,从DHCP服务器接收响应,并将响应转发到终端主机。 响应包括终端主机的配置信息,基于组标识符选择的至少一些配置信息。 还公开了一种装置。
-
公开(公告)号:US20140036730A1
公开(公告)日:2014-02-06
申请号:US13566030
申请日:2012-08-03
IPC分类号: H04L12/56
CPC分类号: H04L49/70
摘要: In one embodiment, a method includes identifying at a network device, characteristics of a distributed virtual switch comprising a control plane component and a plurality of data plane components, grouping the data plane components, and adapting operation of the distributed virtual switch for one or more groups of the data plane components based on the characteristics. An apparatus and logic are also disclosed herein.
摘要翻译: 在一个实施例中,一种方法包括在网络设备处识别包括控制平面组件和多个数据平面组件的分布式虚拟交换机的特性,对数据平面组件进行分组,以及将分布式虚拟交换机的操作适配于一个或多个 基于特征的数据平面组件组。 本文还公开了一种装置和逻辑。
-
公开(公告)号:US08654765B2
公开(公告)日:2014-02-18
申请号:US13288417
申请日:2011-11-03
IPC分类号: H04L12/28
CPC分类号: H04L43/026 , H04L43/04
摘要: A network appliance that is part of a distributed virtual switch collects network flow information for network flows passing through the network appliance. The network flow information is encapsulated into packets as a data record for transport. Network flow exporter type information is added to the network flow records configured to indicate that the packets are from a distributed exporter. An option template is sent to the network flow data collectors that includes a device identifier that is configured to uniquely identify the network appliance. The packets are exported to the network flow data collector. The network flow data collector uses the network flow exporter type information and the device identifier to associate the network flow information with the distributed virtual switch.
摘要翻译: 作为分布式虚拟交换机一部分的网络设备收集通过网络设备的网络流的网络流信息。 网络流信息被封装成数据包作为传输数据记录。 网络流量导出器类型信息被添加到配置为指示分组来自分布式导出器的网络流记录中。 将选项模板发送到网络流数据收集器,其中包括配置为唯一标识网络设备的设备标识符。 数据包被导出到网络流数据收集器。 网络流数据收集器使用网络流量输出器类型信息和设备标识符将网络流信息与分布式虚拟交换机相关联。
-
7.发明申请SYSTEM AND METHOD FOR VERIFYING LAYER 2 CONNECTIVITY IN A VIRTUAL ENVIRONMENT 有权用于在虚拟环境中验证层2连接的系统和方法公开(公告)号:US20130219384A1
公开(公告)日:2013-08-22
申请号:US13400046
申请日:2012-02-18
IPC分类号: G06F9/455
CPC分类号: G06F9/45558 , G06F2009/4557 , H04L12/462 , H04L12/4641
摘要: A method is provided in one example embodiment that includes detecting a migration of a virtual machine from an origination host to a destination host and comparing a first root bridge to a second root bridge to verify data link layer continuity of the virtual network on the destination host. The virtual machine is connected to a virtual network, the first root bridge is associated with the virtual network on the origination host and the second root bridge is associated with the virtual network on the destination host. The method may further include blocking the migration if the first root bridge and the second root bridge are not the same.
摘要翻译: 在一个示例实施例中提供了一种方法,其包括检测虚拟机从始发主机到目的主机的迁移,并将第一根网桥与第二根网桥进行比较,以验证目标主机上的虚拟网络的数据链路层连续性 。 虚拟机连接到虚拟网络,第一根网桥与源主机上的虚拟网络相关联,第二根网桥与目标主机上的虚拟网络相关联。 该方法还可以包括如果第一根网桥和第二根网桥不相同则阻止迁移。
-
8.发明授权System and method for discovering multipoint endpoints in a network environment 有权在网络环境中发现多点端点的系统和方法公开(公告)号:US08948054B2
公开(公告)日:2015-02-03
申请号:US13341726
申请日:2011-12-30
申请人: Lawrence Kreeger , Suraj Nellikar , Sudarshana Kandachar Sridhara Rao , Udayakumar Srinivasan , Anuraag Mittal , Lilian Sylvia Fernandes
发明人: Lawrence Kreeger , Suraj Nellikar , Sudarshana Kandachar Sridhara Rao , Udayakumar Srinivasan , Anuraag Mittal , Lilian Sylvia Fernandes
IPC分类号: H04L12/28
CPC分类号: H04L12/1877 , H04L41/0677 , H04L41/12 , H04L45/26 , Y02D30/30
摘要: An example method is provided and may include multicasting a discovery packet in an overlay network, which includes a Layer 2 scheme over a Layer 3 network; and identifying endpoints based on their respective responses to the discovery packet, where the endpoints are coupled across a multicast backbone. In more specific embodiments, the method may include identifying disconnected endpoints in the overlay network based on a lack of responses from the disconnected endpoints.
摘要翻译: 提供了一种示例性方法,并且可以包括在覆盖网络中多播发现分组,其包括通过第3层网络的第2层方案; 并且基于它们对发现分组的各自的响应来识别端点,其中端点跨多播主干耦合。 在更具体的实施例中,该方法可以包括基于来自断开的端点的响应的缺乏来识别覆盖网络中的断开的端点。
-
9.发明申请SYSTEM AND METHOD FOR DISCOVERING MULTIPOINT ENDPOINTS IN A NETWORK ENVIRONMENT 有权在网络环境中发现多点终点的系统和方法公开(公告)号:US20130170490A1
公开(公告)日:2013-07-04
申请号:US13341726
申请日:2011-12-30
申请人: Lawrence Kreeger , Suraj Nellikar , Sudarshana Kandachar Sridhara Rao , Udayakumar Srinivasan , Anuraag Mittal , Lilian Sylvia Fernandes
发明人: Lawrence Kreeger , Suraj Nellikar , Sudarshana Kandachar Sridhara Rao , Udayakumar Srinivasan , Anuraag Mittal , Lilian Sylvia Fernandes
IPC分类号: H04L12/56
CPC分类号: H04L12/1877 , H04L41/0677 , H04L41/12 , H04L45/26 , Y02D30/30
摘要: An example method is provided and may include multicasting a discovery packet in an overlay network, which includes a Layer 2 scheme over a Layer 3 network; and identifying endpoints based on their respective responses to the discovery packet, where the endpoints are coupled across a multicast backbone. In more specific embodiments, the method may include identifying disconnected endpoints in the overlay network based on a lack of responses from the disconnected endpoints.
摘要翻译: 提供了一种示例性方法,并且可以包括在覆盖网络中多播发现分组,其包括通过第3层网络的第2层方案; 并且基于它们对发现分组的各自的响应来识别端点,其中端点跨多播主干耦合。 在更具体的实施例中,该方法可以包括基于来自断开的端点的响应的缺乏来识别覆盖网络中的断开的端点。
-
10.发明申请公开(公告)号:US20130125112A1
公开(公告)日:2013-05-16
申请号:US13293421
申请日:2011-11-10
申请人: Anuraag Mittal , Prasad Miriyala , Mark Bakke
发明人: Anuraag Mittal , Prasad Miriyala , Mark Bakke
IPC分类号: G06F9/455
CPC分类号: H04L41/0813 , G06F9/45558
摘要: In one embodiment, a method includes receiving static profiles each comprising one or more properties of an operating environment, receiving a dynamic profile for identifying a configuration of an interface based on the static profile associated with said dynamic profile, associating the dynamic profile with one of the static profiles based on the operating environment of the interface, and automatically updating the association upon identifying a change in the operating environment. An apparatus is also disclosed.
摘要翻译: 在一个实施例中,一种方法包括接收每个包括操作环境的一个或多个属性的静态简档,基于与所述动态简档关联的静态简档接收用于识别接口的配置的动态配置文件,将动态配置文件与 基于接口的操作环境的静态配置文件,以及在识别操作环境的变化时自动更新关联。 还公开了一种装置。
-
-
-
-
-
-
-
-
-
搜索结果
17 条记录 (耗时 0.023 秒)
