-
公开(公告)号:US08533343B1
公开(公告)日:2013-09-10
申请号:US13485846
申请日:2012-05-31
IPC分类号: G06F15/16
CPC分类号: G06F9/546 , H04L63/0876 , H04L63/126
摘要: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for implementing virtual network pairs between virtual machines and other devices. In one aspect, a method includes receiving a plurality of outgoing packets from one or more source virtual machines executing on the data processing apparatus, each source virtual machine being a hardware virtualization of the data processing apparatus and each packet destined for a destination virtual machine; establishing a plurality of virtual network pairs, one for each unique pair of source and destination virtual machines, wherein establishing the plurality of virtual network pairs comprises obtaining, from an external data processing apparatus, a different network address for each destination virtual machine; encapsulating each outgoing packet in a message; and sending each message to the destination virtual machine for the respective packet by sending the message to the respective network destination address.
摘要翻译: 方法,系统和装置,包括在计算机存储介质上编码的计算机程序,用于在虚拟机和其他设备之间实现虚拟网络对。 一方面,一种方法包括从在数据处理装置上执行的一个或多个源虚拟机接收多个输出分组,每个源虚拟机是数据处理装置的硬件虚拟化和目的地是目的地虚拟机的每个分组; 建立多个虚拟网络对,其中一个用于每个唯一的源和目的地虚拟机对,其中建立所述多个虚拟网络对包括从外部数据处理设备获得每个目的地虚拟机的不同网络地址; 将每个输出分组封装在消息中; 并通过将消息发送到相应的网络目的地地址来将每个消息发送到目的地虚拟机用于相应的分组。
-
公开(公告)号:US09135037B1
公开(公告)日:2015-09-15
申请号:US13350470
申请日:2012-01-13
CPC分类号: G06F9/45533 , G06F9/45558 , G06F2009/45587 , G06F2009/45595 , H04L12/4633
摘要: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for receiving an outgoing packet from a source virtual machine; obtaining a secret key for the source virtual machine, the secret key not being known by a destination virtual machine; obtaining a unique token derived at least partly from the secret key and a network address of the destination virtual machine; encapsulating the outgoing packet in a second packet along with the token and a token expiration time; and sending the second packet to the destination virtual machine.
摘要翻译: 方法,系统和装置,包括在计算机存储介质上编码的计算机程序,用于从源虚拟机接收输出分组; 获得源虚拟机的秘密密钥,目的虚拟机不知道该秘密密钥; 获得至少部分地从秘密密钥导出的唯一令牌和目的地虚拟机的网络地址; 将输出数据包与令牌一起封装在第二个数据包中以及令牌到期时间; 并将所述第二分组发送到所述目的地虚拟机。
-
公开(公告)号:US10228959B1
公开(公告)日:2019-03-12
申请号:US13186293
申请日:2011-07-19
摘要: Systems and techniques are described for virtual machine communication and migration. A described technique includes operating server systems that are configured to run virtual machines and providing a virtual network for Internet Protocol (IP) based communications to the virtual machines. The virtual machines can be assigned network addresses, such as IP addresses, on the virtual network. Providing the virtual network can include using separate IP tunnels to effect delivery of IP packets on the virtual network to the virtual machines, respectively. The technique includes migrating a virtual machine running on a first server system to a second server system. The migrated virtual machine can maintain its assigned IP address. The technique includes updating a tunnel endpoint destination associated with the assigned IP address of the migrated virtual machine. The updated tunnel endpoint destination can be based on a network address associated with the second server system.
-
公开(公告)号:US09619662B1
公开(公告)日:2017-04-11
申请号:US13348548
申请日:2012-01-11
IPC分类号: G06F21/60
CPC分类号: G06F21/606 , G06F9/00 , H04L61/2007 , H04L61/2084 , H04L61/6063 , H04L63/00 , H04L63/0807
摘要: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for implementing virtual network pairs between virtual machines and other devices. In one aspect, a method includes associating each of a plurality of different virtual machine network addresses with a respective host machine network address; receiving, from a sender, a request for a source virtual machine to communicate with a destination virtual machine; determining that the source virtual machine is authorized to communicate with the destination virtual machine; selecting, from the associations, a host machine network address for the destination virtual machine; generating a token based at least partly on the selected host machine network address and on a secret key of the destination virtual machine, wherein the secret key is not known by the source virtual machine; and sending the selected host machine network address and generated token to the sender.
-
公开(公告)号:US08862743B1
公开(公告)日:2014-10-14
申请号:US13349547
申请日:2012-01-12
IPC分类号: G06F15/16 , G06F15/173
CPC分类号: G06F9/54 , G06F9/5077
摘要: Methods, systems, and apparatus, including computer programs encoded on a computer storage medium, for managing resources in a computing system. A plurality of distributed computing system resources are represented as nodes in a graph. Links between the nodes are defined, where each link in the links representing ownership or usage by a parent node of a respective resource represented by a child node. A message is sent from a source node in the graph to a target node in the graph wherein the source node is linked directly or indirectly to the target node. The message is processed by a message handler task associated with the target node, wherein processing includes allocating or deallocating a respective resource represented by the target node.
摘要翻译: 方法,系统和装置,包括在计算机存储介质上编码的用于管理计算系统中的资源的计算机程序。 多个分布式计算系统资源在图中表示为节点。 定义节点之间的链接,其中链路中的每个链路表示由子节点表示的相应资源的父节点的所有权或使用。 消息从图中的源节点发送到图中的目标节点,其中源节点直接或间接地链接到目标节点。 消息由与目标节点相关联的消息处理程序任务处理,其中处理包括分配或取消分配由目标节点表示的相应资源。
-
公开(公告)号:US20130263131A1
公开(公告)日:2013-10-03
申请号:US13842456
申请日:2013-03-15
IPC分类号: G06F9/455
CPC分类号: G06F9/455 , G06F8/63 , G06F9/45533 , G06F9/45558 , G06F9/48 , G06F9/4806 , G06F9/4843 , G06F9/485 , G06F9/4856 , G06F9/4868 , G06F9/4875 , G06F9/50 , G06F9/5005 , G06F9/5011 , G06F9/5022 , G06F9/5027 , G06F9/505 , G06F9/5055 , G06F9/5072 , G06F9/5083 , G06F9/5088 , G06F2009/45562 , G06F2009/45575
摘要: Methods, systems, and apparatus, including computer programs encoded on computer storage media, for implementing a global computing interface. One of the methods includes maintaining a global database of virtual machine configuration information, the database including information on cloud computing resources in each of a plurality of regions, wherein each region of the plurality of regions includes one or more datacenters. A virtual machine image is received in a first region. The global database is updated with configuration information about the received virtual machine image that is stored in the first region. A request is received to start one or more virtual machines from the virtual machine image in a second different region, and the virtual machine image is transmitted from the first region to the second region and one or more virtual machines are started from the virtual machine image in a datacenter of the second different region.
摘要翻译: 方法,系统和装置,包括在计算机存储介质上编码的计算机程序,用于实现全局计算接口。 所述方法之一包括维护虚拟机配置信息的全局数据库,所述数据库包括关于多个区域中的每个区域中的云计算资源的信息,其中所述多个区域中的每个区域包括一个或多个数据中心。 在第一区域中接收虚拟机图像。 使用存储在第一个区域中的接收的虚拟机映像的配置信息来更新全局数据库。 接收到请求以在第二不同区域中从虚拟机映像启动一个或多个虚拟机,并且将虚拟机映像从第一区域发送到第二区域,并且从虚拟机映像启动一个或多个虚拟机 在第二个不同区域的数据中心。
-
-
-
-
-