公开(公告)号：US11765081B2

公开(公告)日：2023-09-19

申请号：US17890348

申请日：2022-08-18

Applicant: Google LLC

Inventor： Prashant R. Chandra ,  Balakrishna Raghunath ,  Uday Ramakrishna Naik ,  Michael Dalton

IPC: H04L45/64 ,  H04L45/586 ,  G06F9/455 ,  H04L45/745 ,  H04L69/22 ,  H04L61/5007

CPC classification number: H04L45/586 ,  G06F9/45558 ,  H04L45/64 ,  H04L45/745 ,  H04L61/5007 ,  H04L69/22 ,  G06F2009/45595

Abstract: Systems and methods of offloading multicast virtual network packet processing to a network interface card are provided. In an example implementation, a network interface card can route packets in a virtual network. The network interface card can be configured to receive a data packet having a multicast header for transmission to a plurality of destination virtual machines. The network interface card can retrieve a list of next hop destinations for the data packet. The network interface card can replicate the packet for each next hop destination. The network interface card can encapsulate each replicated packet with a unicast header that includes a next hop destination virtual IP address indicating the next hop destination and a source virtual IP address, and transmit the encapsulated packets.

公开(公告)号：US11463354B2

公开(公告)日：2022-10-04

申请号：US17119275

申请日：2020-12-11

Applicant: Google LLC

Inventor： Prashant Chandra ,  Balakrishna Raghunath ,  Uday Ramakrishna Naik ,  Michael Dalton

IPC: H04L12/28 ,  H04L45/586 ,  G06F9/455 ,  H04L45/64 ,  H04L45/745 ,  H04L69/22 ,  H04L61/5007

Abstract: Systems and methods of offloading multicast virtual network packet processing to a network interface card are provided. In an example implementation, a network interface card can route packets in a virtual network. The network interface card can be configured to receive a data packet having a multicast header for transmission to a plurality of destination virtual machines. The network interface card can retrieve a list of next hop destinations for the data packet. The network interface card can replicate the packet for each next hop destination. The network interface card can encapsulate each replicated packet with a unicast header that includes a next hop destination virtual IP address indicating the next hop destination and a source virtual IP address, and transmit the encapsulated packets.

公开(公告)号：US10013276B2

公开(公告)日：2018-07-03

申请号：US14310492

申请日：2014-06-20

Applicant: Google LLC

Inventor： Brian Matthew Fahs ,  Jinnah Dylan Hosein ,  Venkatesh Babu Chitlur Srinivasa ,  Guy Shefner ,  Roy Donald Bryant ,  Uday Ramakrishna Naik ,  Francis E. Swiderski ,  Nan Hua

IPC: G06F9/46 ,  G06F9/455

CPC classification number: G06F9/46 ,  G06F9/45558 ,  G06F9/4856 ,  G06F2009/4557

Abstract: A method and apparatus are provided in which a source and target perform bidirectional forwarding of traffic while a migration guest is being transferred from the source to the target. In some examples, the migration guest is exposed to the impending migration and takes an action in response. A virtual network programming controller informs other devices in the network of the change, such that those devices may communicate directly with the migration guest on the target host. According to some examples, an “other” virtual network device in communication with the controller and the target host facilitates the seamless migration. In such examples, the forwarding may be performed only until the other virtual machine receives an incoming packet from the target host, and then the other virtual machine resumes communication with the migration guest on the target host.

公开(公告)号：US20230123734A1

公开(公告)日：2023-04-20

申请号：US17970073

申请日：2022-10-20

Applicant: Google LLC

Inventor： Eli Oxman ,  Salomon Sonny Ben-Shimon ,  Anshuman Gupta ,  Alok Kumar ,  Ittai Balaban ,  Benjamin John Benardos ,  Sameer Adhikari ,  Mukta Gupta ,  Anjin Guo ,  Pierre-Emmanuel Ettori ,  Noam Lampert ,  Uday Ramakrishna Naik ,  Jesse Louis Alpert ,  Ines Clara Envid Lazaro ,  Uri Goren ,  Ariel Waizel

IPC: H04L61/256 ,  H04L12/46

Abstract: Establishing proxy-less connectivity from logically isolated virtual private clouds (VPC)within a cloud environment without the use of VPN or VPC peering is provided. Establishing a service attachment in one VPC, related to a service which is to be accessed, and a service endpoint in another VPC allows for private communication between the two networks without exposing the service to other VPCs in the cloud environment.

公开(公告)号：US11368385B1

公开(公告)日：2022-06-21

申请号：US17028460

申请日：2020-09-22

Applicant: Google LLC

Inventor： Anna Berenberg ,  Venkat Subbaiah Naidu Kotla ,  Neha Pattan ,  Uday Ramakrishna Naik ,  Prajakta Joshi ,  Ines Envid

IPC: H04L12/803 ,  H04L45/02 ,  H04L61/5007 ,  H04L67/1001 ,  H04L67/02 ,  H04L67/56

Abstract: Grouping virtualized computing instances in cloud environments can be achieved utilizing groups of network endpoints, such as hardware devices, virtualized computing instances, etc. The network endpoint group (NEG) provides a logical grouping for providers of backend services that may be arranged on the network endpoints, and may be organized based on the backend service to be provided by the computing environments that operate as network endpoints. For example, the NEGs may be implemented for load balancing applications. The network endpoint groups, and the network endpoints included therein, may be managed using a framework of tools, libraries and application programming interfaces.

公开(公告)号：US10592273B2

公开(公告)日：2020-03-17

申请号：US15923151

申请日：2018-03-16

Applicant: Google LLC

Inventor： Brian Matthew Fahs ,  Jinnah Dylan Hosein ,  Venkatesh Babu Chitlur Srinivasa ,  Guy Shefner ,  Roy Donald Bryant ,  Uday Ramakrishna Naik ,  Francis Edward Swiderski, III ,  Nan Hua

IPC: G06F9/46 ,  G06F9/455 ,  G06F9/48

Abstract: A method and apparatus are provided in which a source and target perform bidirectional forwarding of traffic while a migration guest is being transferred from the source to the target. In some examples, the migration guest is exposed to the impending migration and takes an action in response. A virtual network programming controller informs other devices in the network of the change, such that those devices may communicate directly with the migration guest on the target host. According to some examples, an “other” virtual network device in communication with the controller and the target host facilitates the seamless migration. In such examples, the forwarding may be performed only until the other virtual machine receives an incoming packet from the target host, and then the other virtual machine resumes communication with the migration guest on the target host.

公开(公告)号：US12255813B2

公开(公告)日：2025-03-18

申请号：US18229696

申请日：2023-08-03

Applicant: Google LLC

Inventor： Prashant Chandra ,  Balakrishna Raghunath ,  Uday Ramakrishna Naik ,  Michael Dalton

IPC: H04L45/586 ,  G06F9/455 ,  H04L45/64 ,  H04L45/745 ,  H04L61/5007 ,  H04L69/22

Abstract: Systems and methods of offloading multicast virtual network packet processing to a network interface card are provided. In an example implementation, a network interface card can route packets in a virtual network. The network interface card can be configured to receive a data packet having a multicast header for transmission to a plurality of destination virtual machines. The network interface card can retrieve a list of next hop destinations for the data packet. The network interface card can replicate the packet for each next hop destination. The network interface card can encapsulate each replicated packet with a unicast header that includes a next hop destination virtual IP address indicating the next hop destination and a source virtual IP address, and transmit the encapsulated packets.

公开(公告)号：US11838199B1

公开(公告)日：2023-12-05

申请号：US17843336

申请日：2022-06-17

Applicant: Google LLC

Inventor： Anna Berenberg ,  Venkat Subbaiah Naidu Kotla ,  Neha Pattan ,  Uday Ramakrishna Naik ,  Prajakta Joshi ,  Ines Clara Envid Lazaro

IPC: H04L45/02 ,  H04L61/5007 ,  H04L67/1001 ,  H04L67/56 ,  H04L67/02

CPC classification number: H04L45/02 ,  H04L61/5007 ,  H04L67/1001 ,  H04L67/02 ,  H04L67/56

Abstract: Grouping virtualized computing instances in cloud environments can be achieved utilizing groups of network endpoints, such as hardware devices, virtualized computing instances, etc. The network endpoint group (NEG) provides a logical grouping for providers of backend services that may be arranged on the network endpoints, and may be organized based on the backend service to be provided by the computing environments that operate as network endpoints. For example, the NEGs may be implemented for load balancing applications. The network endpoint groups, and the network endpoints included therein, may be managed using a framework of tools, libraries and application programming interfaces.

公开(公告)号：US20230379247A1

公开(公告)日：2023-11-23

申请号：US18229696

申请日：2023-08-03

Applicant: Google LLC

Inventor： Prashant Chandra ,  Balakrishna Raghunath ,  Uday Ramakrishna Naik ,  Michael Dalton

IPC: H04L45/586 ,  G06F9/455 ,  H04L45/64 ,  H04L45/745 ,  H04L69/22 ,  H04L61/5007

CPC classification number: H04L45/586 ,  G06F9/45558 ,  H04L45/64 ,  H04L45/745 ,  H04L69/22 ,  H04L61/5007 ,  G06F2009/45595

Abstract: Systems and methods of offloading multicast virtual network packet processing to a network interface card are provided. In an example implementation, a network interface card can route packets in a virtual network. The network interface card can be configured to receive a data packet having a multicast header for transmission to a plurality of destination virtual machines. The network interface card can retrieve a list of next hop destinations for the data packet. The network interface card can replicate the packet for each next hop destination. The network interface card can encapsulate each replicated packet with a unicast header that includes a next hop destination virtual IP address indicating the next hop destination and a source virtual IP address, and transmit the encapsulated packets.

公开(公告)号：US20230269229A1

公开(公告)日：2023-08-24

申请号：US17679814

申请日：2022-02-24

Applicant: Google LLC

Inventor： Ujjwal Jain ,  Yuquan Jiang ,  Ines Clara Envid Lazaro ,  Rodney Chu ,  Uday Ramakrishna Naik

IPC: H04L9/40

CPC classification number: H04L63/0263 ,  H04L63/105 ,  H04L63/20

Abstract: Methods, systems, and apparatus include computer programs encoded on a computer-readable storage medium for firewall policies with improved efficiency. A policy can be defined that specifies a set of firewall rules, where the set of firewall rules provides a respective firewall rule for each layer of a plurality of layers within a hierarchical structure of a network, the network including a plurality of elements. Determining, for a first element within the network, a position within a first layer of the hierarchical structure. In response to receiving a data transmission request to or from the first element, applying the set of firewall rules in accordance with the first layer of the hierarchical structure, where applying the set of firewall rules comprises sequentially applying each respective firewall rule at each layer from an upper layer within the network to the first layer within the network.