公开(公告)号：US11892926B2

公开(公告)日：2024-02-06

申请号：US17879998

申请日：2022-08-03

Applicant: Citrix Systems, Inc.

Inventor： Chiradeep Vittal ,  Abhishek Chauhan

IPC: G06F11/00 ,  G06F11/30 ,  G06F11/07 ,  G06F9/455 ,  G06F16/901 ,  G06F16/11

CPC classification number: G06F11/301 ,  G06F9/45558 ,  G06F11/0709 ,  G06F16/128 ,  G06F16/9024 ,  G06F2009/45591

Abstract: Described embodiments provide systems and methods for displaying a service graph in association with a time of a detected anomaly. A device may store a plurality of snapshots of a service graph of a plurality of microservices. Each of the snapshots of the service graphs include metrics at a respective time increment from execution of each of the plurality of microservices. The device may detect an anomaly with operation of one or more microservices of the plurality of services. The device may identify a set of snapshots of the service graph within a predetermined time period of a time of the anomaly. The device may display each of the snapshots in the set of snapshots of in sequence corresponding to time increments within the predetermined time period of the time of the anomaly.

公开(公告)号：US11411974B2

公开(公告)日：2022-08-09

申请号：US16415857

申请日：2019-05-17

Applicant: Citrix Systems, Inc.

Inventor： Chiradeep Vittal

IPC: H04L29/06 ,  G06F9/54 ,  H04L41/22

Abstract: The implementations described herein provide a tool for identifying security issues and applying security policies to the service(s) and/or microservices. Rather than a user (such as an administrator) reactively diagnosing security incidents, the systems and methods described herein may provide a tool by which the user can proactively monitor the use of the services and microservices for security issues and control the user of such microservices and services via policies. The systems and methods allow API granular policy control to determine which APIs may be granted or denies access based on a variety of criteria, such as but not limited to the source of the request, the specific API being called, temporal conditions, geography and so forth. The user can identify security concerns or issues on a per API basis.

公开(公告)号：US20210109734A1

公开(公告)日：2021-04-15

申请号：US16600735

申请日：2019-10-14

Applicant: Citrix Systems, Inc.

Inventor： Chiradeep Vittal ,  Rajesh Joshi ,  Aman Chaudhary ,  Raghav SN ,  Ruchit Gupta ,  Bhavana Shobhana ,  Sanchita Ghai

IPC: G06F8/65 ,  H04L29/08

Abstract: Methods and systems for performing application deployments in a computing environment are presented herein. One or more components of the computing environment may perform a canary deployment of an updated version of an application. As the canary deployment is performed, one or more determinations as to whether to continue, stop, or complete the canary deployment may be performed. These determinations may be based on one or more metrics determined by an application delivery controller of the computing environment. The application delivery controller may be configured to divert or forward traffic to application resources that execute the updated version. Additionally, the canary deployment may be performed in an automated fashion.

公开(公告)号：US20220374324A1

公开(公告)日：2022-11-24

申请号：US17879998

申请日：2022-08-03

Applicant: Citrix Systems, Inc.

Inventor： Chiradeep Vittal ,  Abhishek Chauhan

IPC: G06F11/30 ,  G06F11/07 ,  G06F9/455 ,  G06F16/901 ,  G06F16/11

Abstract: Described embodiments provide systems and methods for displaying a service graph in association with a time of a detected anomaly. A device may store a plurality of snapshots of a service graph of a plurality of microservices. Each of the snapshots of the service graphs include metrics at a respective time increment from execution of each of the plurality of microservices. The device may detect an anomaly with operation of one or more microservices of the plurality of services. The device may identify a set of snapshots of the service graph within a predetermined time period of a time of the anomaly. The device may display each of the snapshots in the set of snapshots of in sequence corresponding to time increments within the predetermined time period of the time of the anomaly.

公开(公告)号：US20210295872A1

公开(公告)日：2021-09-23

申请号：US17343445

申请日：2021-06-09

Applicant: Citrix Systems, Inc.

Inventor： Chiradeep Vittal

IPC: G11B27/00 ,  G11B27/10

Abstract: Described embodiments provide systems and methods for replaying a service graph of a plurality of microservices. A device stores a plurality of snapshots of a service graph of a plurality of microservices generated for each of a plurality time increments over a time period. Each of the plurality of snapshots of the service graphs include metrics at a respective time increment from execution of each of the plurality of microservices. The device receives a request to replay the service graph. Responsive to the request, the device displays at least two or more of the plurality of snapshots of the service graph in sequence corresponding to two or more of the plurality of time increments.

公开(公告)号：US20190089589A1

公开(公告)日：2019-03-21

申请号：US16192136

申请日：2018-11-15

Applicant: Citrix Systems, Inc.

Inventor： Alex Huang ,  William Chan ,  Chiradeep Vittal

IPC: H04L12/24 ,  G06F9/50 ,  G06F9/455 ,  H04L29/08 ,  H04L29/12

Abstract: A cloud system may create and support multiple network offerings for virtual machines in a cloud zone. Physical networks comprising sets of network elements, such as routers, gateways, firewalls, load balancers, and other network hardware, may be created and updated within a zone. Network offerings may be defined and associated, using tags or other techniques, with virtual machine networks, physical networks and/or network elements. Cloud end users may request specific network offerings when creating virtual machines, or may request to move existing virtual machines from one network offering to another. The cloud system may use the requested network offering to identify the virtual machine network, physical network, and/or network elements corresponding to the requested network offering. The cloud system may allocate a new virtual machine network and configure the network elements within the associated physical network to provide network services to the virtual machine.

公开(公告)号：US09276925B2

公开(公告)日：2016-03-01

申请号：US14472371

申请日：2014-08-29

Applicant: Citrix Systems, Inc.

Inventor： Alex Huang ,  Chiradeep Vittal ,  William Chan

IPC: H04L29/06 ,  G06F21/33 ,  G06F9/50 ,  H04L12/24 ,  H04L29/08

CPC classification number: H04L63/08 ,  G06F9/5072 ,  G06F21/33 ,  H04L41/046 ,  H04L67/02 ,  H04L67/10

Abstract: Methods and systems for managing cloud zones are described herein. A management server for a cloud of computing resources may add private zones to the cloud. The private zones may contain computers owned and operated by a user of the cloud, such as a cloud customer, rather than the cloud operator. The management server may manage the computing resources in the private zone by sending commands to an agent, which in turn relays the management server's commands to the individual computing resources. The agent may be authenticated using a token.

Abstract translation: 这里描述了用于管理云区域的方法和系统。 用于云计算资源的管理服务器可能会向云端添加专用区域。 私有区域可以包含由云的用户拥有和操作的计算机，例如云客户，而不是云运营商。 管理服务器可以通过向代理发送命令来管理私有区域中的计算资源，而代理又将管理服务器的命令中继到各个计算资源。 可以使用令牌认证代理。

公开(公告)号：US09225661B1

公开(公告)日：2015-12-29

申请号：US14057438

申请日：2013-10-18

Applicant: Citrix Systems, Inc.

Inventor： Guanghong Yang ,  Will Chan ,  Alex Huang ,  Sheng Liang ,  Chiradeep Vittal

IPC: G06F15/16 ,  H04L12/911

CPC classification number: H04L47/70 ,  G06F9/5077 ,  H04L67/1002

Abstract: A scalable cloud infrastructure serves two or more customers, where each customer is associated with at least one unit of virtual resources. The virtual resources are established by apportioning physical resources in the cloud infrastructure that are partitioned into pods within one or more zones in a scalable manner. Additionally, the cloud infrastructure establishes one or more management server clusters each comprising one or more management servers. The two or more customers create a number of virtual machines within pods in a zone. Due to the scalability of the cloud infrastructure, a console proxy virtual machine and server is introduced to support console access to virtual machines. The console proxy server serves as an intermediary between a browser and a viewed virtual machine configured to maintain viewing session quality while minimizing network impact.

Abstract translation: 可扩展的云基础设施为两个或更多客户提供服务，每个客户与至少一个虚拟资源单元相关联。 虚拟资源是通过在云基础设施中分配物理资源来建立的，这些资源以可扩展的方式分为一个或多个区域内的荚。 此外，云基础设施建立一个或多个管理服务器集群，每个管理服务器集群都包含一个或多个管理服务器。 两个或多个客户在区域中的pod内创建了许多虚拟机。 由于云基础设施的可扩展性，引入了控制台代理虚拟机和服务器，以支持对虚拟机的控制台访问。 控制台代理服务器充当浏览器和查看的虚拟机之间的中介，配置为在最小化网络影响的同时维护查看会话质量。

公开(公告)号：US09015714B2

公开(公告)日：2015-04-21

申请号：US13686445

申请日：2012-11-27

Applicant: Citrix Systems, Inc.

Inventor： Chiradeep Vittal ,  Alex Huang ,  Kevin Kluge

IPC: G06F9/455 ,  G06F9/46 ,  G06F9/44 ,  G06F15/16 ,  G06F9/50 ,  G06F11/34

CPC classification number: G06F9/45558 ,  G06F9/45533 ,  G06F9/5072 ,  G06F11/3006 ,  G06F11/34 ,  G06F11/3452 ,  G06F2009/45591 ,  G06F2009/45595 ,  G06F2201/815

Abstract: A diagnostic virtual machine having access to resources of an infrastructure as a service cloud may be created. A user device may be provided access to the diagnostic virtual machine. In some embodiments, the diagnostic virtual machine may be configured to monitor a cluster of hypervisors, and the resources of the infrastructure as a service cloud which the diagnostic virtual machine has access to may include physical resources of the infrastructure as a service cloud that are associated with the cluster of hypervisors.

Abstract translation: 可以创建具有作为服务云的基础设施的资源的诊断虚拟机。 可以向用户设备提供对诊断虚拟机的访问。 在一些实施例中，诊断虚拟机可以被配置为监视虚拟机管理程序的集群，并且作为诊断虚拟机具有访问权限的服务云的基础设施的资源可以包括作为相关联的服务云的基础设施的物理资源 与虚拟机管理程序集群。

公开(公告)号：US20140123135A1

公开(公告)日：2014-05-01

申请号：US13662483

申请日：2012-10-28

Applicant: CITRIX SYSTEMS, INC.

Inventor： Alex Huang ,  William Chan ,  Chiradeep Vittal

IPC: G06F9/455

CPC classification number: H04L41/0806 ,  G06F9/45558 ,  G06F9/5005 ,  G06F9/5072 ,  G06F9/5077 ,  G06F2009/45562 ,  G06F2009/45595 ,  H04L41/5054 ,  H04L41/5096 ,  H04L61/2015 ,  H04L61/2507 ,  H04L67/10

Abstract: A cloud system may create and support multiple network offerings for virtual machines in a cloud zone. Physical networks comprising sets of network elements, such as routers, gateways, firewalls, load balancers, and other network hardware, may be created and updated within a zone. Network offerings may be defined and associated, using tags or other techniques, with virtual machine networks, physical networks and/or network elements. Cloud end users may request specific network offerings when creating virtual machines, or may request to move existing virtual machines from one network offering to another. The cloud system may use the requested network offering to identify the virtual machine network, physical network, and/or network elements corresponding to the requested network offering. The cloud system may allocate a new virtual machine network and configure the network elements within the associated physical network to provide network services to the virtual machine.

Abstract translation: 云系统可以为云区域中的虚拟机创建和支持多个网络产品。 可以在区域内创建和更新包括诸如路由器，网关，防火墙，负载平衡器和其他网络硬件的网络元件组的物理网络。 网络产品可以使用标签或其他技术与虚拟机网络，物理网络和/或网络元素进行定义和关联。 云终端用户可以在创建虚拟机时请求特定的网络产品，或者可以请求将现有虚拟机从一个网络产品移动到另一个。 云系统可以使用所请求的网络产品来识别与所请求的网络产品相对应的虚拟机网络，物理网络和/或网络元件。 云系统可以分配新的虚拟机网络并配置相关联的物理网络内的网络元件以向虚拟机提供网络服务。