公开(公告)号：US20220038308A1

公开(公告)日：2022-02-03

申请号：US17408151

申请日：2021-08-20

Applicant: Microsoft Technology Licensing, LLC

Inventor： Neeraj Motwani ,  Rishabh Tewari ,  Pranjal Shrivastava ,  Deepak Bansal ,  Vaibhav Kumar ,  Nisheeth Srivastava ,  Abhishek Shukla ,  Rangaprasad Narasimhan ,  Vinayak Uppunda Padiyar ,  James Boerner ,  Avijit Gupta

IPC: H04L12/46 ,  H04L12/66 ,  G06F9/455 ,  H04L12/715

Abstract: Systems and methods for enabling access to dedicated resources in a virtual network using top of rack switches are disclosed. A method includes a virtual filtering platform encapsulating at least one packet, received from a virtual machine, to generate at least one encapsulated packet comprising a virtual network identifier (VNI). The method further includes a TOR switch: (1) receiving the at least one encapsulated packet and decapsulating the at least one encapsulated packet to create at least one decapsulated packet, (2) using the VNI to identify a virtual routing and forwarding artifact to determine a virtual local area network interface associated with the dedicated hardware portion, and (3) transmitting the at least one decapsulated packet to the dedicated hardware portion based on at least one policy provided by a controller, where the at least one policy comprises information related to a customer of the service provider.

公开(公告)号：US11102164B1

公开(公告)日：2021-08-24

申请号：US17109120

申请日：2020-12-01

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： Avijit Gupta ,  Anish Sagar Narsian ,  Hang Kwong Lee ,  Sumit Sharad Dhoble ,  Manasi Deval ,  James Wesley Boerner ,  Rishabh Tewari ,  Pranjal Shrivastava ,  Sonia Sharma ,  Deepak Bansal

IPC: G06F15/173 ,  H04L29/12 ,  H04L12/26 ,  H04L12/715 ,  H04L12/713 ,  H04L29/08

Abstract: A virtual network comprising virtual machines executing at a computing environment is implemented. A software defined networking (SDN) appliance is configured to provide a connection to computing resources via a virtual network of a virtual computing environment. The SDN appliance is configured to apply policies of the virtual computing environment to data traffic on the virtual network. The SDN appliance is operable to interact with multiple network devices that are configured to act as a hardware acceleration device for processing data traffic. Virtual addresses are assigned to the network devices. The SDN appliance executes a virtual switch configured to identify data traffic sent to or received from a host and act as a proxy for the network devices and respond on their behalf.

公开(公告)号：US11102079B2

公开(公告)日：2021-08-24

申请号：US15955491

申请日：2018-04-17

Applicant: Microsoft Technology Licensing, LLC

Inventor： Anavi Arun Nahar ,  David M. Brumley ,  Harish Kumar Chandrappa ,  Neeraj Motwani ,  Nisheeth Srivastava ,  Rishabh Tewari ,  Vaibhav Kumar ,  Vishal Taneja ,  Vladimir Serov ,  Xinyan Zan ,  Deepak Bansal ,  Narayan Annamalai ,  Milan Dasgupta

IPC: H04L12/24 ,  H04L29/12 ,  H04L12/46 ,  H04L29/08 ,  H04L12/715

Abstract: Virtual networks located in different regions of cloud provider are peered using unique regional identifiers for the virtual networks. The regional identifiers and other information are pushed down a network management stack to implement the peering.

公开(公告)号：US10705870B2

公开(公告)日：2020-07-07

申请号：US15916225

申请日：2018-03-08

Applicant: Microsoft Technology Licensing, LLC

Inventor： Sushant Pramod Rewaskar ,  Md. Daud Hossain Howlader ,  Ashish Bhargava ,  Nisheeth Srivastava ,  Naveen Prabhat ,  Jayesh Kumaran ,  Xinyan Zan ,  Abhishek Shukla ,  Rishabh Tewari

IPC: G06F15/16 ,  G06F9/455 ,  G06F9/4401 ,  G06F9/445 ,  H04L29/12 ,  H04L12/24

Abstract: The disclosed technology is generally directed to virtual machines. In one example of the technology, a network change from a first virtual network having a first customer Internet Protocol (IP) address to a second virtual network having a second customer IP address is configured for a first virtual machine. The configuring includes controlling the following actions. The second virtual network is provided. At least one networking artifact is associated with a first user that is associated with the first virtual machine. The at least one networking artifact includes the second virtual network. A directory service is updated to map the second customer IP address to a first physical IP address. The first physical IP address is a physical IP address of the first virtual network.

公开(公告)号：US11799785B2

公开(公告)日：2023-10-24

申请号：US17334997

申请日：2021-05-31

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： Gerald Roy Degrace ,  Deepak Bansal ,  Rishabh Tewari ,  Michal Czeslaw Zygmunt ,  Deven Jagasia ,  Lihua Yuan

IPC: H04L47/2441 ,  H04L47/125 ,  H04L47/2416 ,  H04L47/10

CPC classification number: H04L47/2441 ,  H04L47/125 ,  H04L47/2416 ,  H04L47/29

Abstract: Techniques are disclosed for processing data packets by a hardware-based networking device configured to disaggregate processing of data packets from hosts of a virtualized computing environment. The hardware-based networking device includes a hardware-based component implementing a plurality of behavioral models indicative of packet processing graphs for data flows in the virtualized computing environment. A data packet having a source from or destination to an endpoint in a virtual network of the virtualized computing environment is received. Based on determining that the data packet is a first packet of a data flow to or from the endpoint, one of the behavioral models is mapped to the data flow. The packet is modified in accordance with the mapped behavioral model. A state of the data flow is stored. Subsequent data packets of the data flow are processed based on the stored state.

公开(公告)号：US11190406B1

公开(公告)日：2021-11-30

申请号：US17109105

申请日：2020-12-01

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： Rishabh Tewari ,  Sumit Sharad Dhoble ,  Madhan Sivakumar ,  Manasi Deval ,  Avijit Gupta ,  Pranjal Shrivastava ,  Zexuan Zhao ,  Jun Tse Chen ,  Sirshak Das ,  Sahil Aggarwal ,  Weixi Chen ,  Bhushan Vinayak Bhise ,  Devan Harikumar ,  Arun Jeedigunta Venkata Satya ,  Deepak Bansal

IPC: G06F15/173 ,  H04L12/24 ,  H04L12/721

Abstract: A virtual network comprising virtual machines executing at a computing environment is implemented. A flexibly extensible NIC (eNIC) is executed at a software defined networking (SDN) appliance. A data packet is received that is addressed to a host that is connected to the virtual network. Based on a layer 2 address and a network identifier, the virtual switch identifies the host represented by the eNIC that is associated with the data packet. A policy associated with the host is determined and applied to the data packet. The policy is dynamically adjustable based on the host.

公开(公告)号：US11184274B2

公开(公告)日：2021-11-23

申请号：US16428868

申请日：2019-05-31

Applicant: Microsoft Technology Licensing, LLC

Inventor： Harish Kumar Chandrappa ,  Adarsh Kirnelli Rangaiah ,  Milan Dasgupta ,  Daniel Max Firestone ,  Michal Czeslaw Zygmunt ,  Xinyan Zan ,  Rishabh Tewari ,  Eric Lawrence Albert Lantz ,  Deepak Bansal ,  Young Lee

IPC: H04L12/761 ,  G06F9/455 ,  H04L12/46 ,  H04L12/715 ,  H04L12/721

Abstract: Described herein are systems and methods for supporting multicast for virtual networks. In some embodiments, a native multicast approach can utilized in which packet replication is performed on a host node of a virtual machine (VM) with a multicast data packet encapsulated in uniquely address unicast packets. In some embodiments, a network virtual appliance can be utilized. A multicast packet sent from the VM can be unicasted to the network virtual appliance. The multicast appliance can then replicate the packet into multiple copies and send the packets to the receivers in the virtual network as unicast data packets encapsulating the multicast packet.

公开(公告)号：US20200371842A1

公开(公告)日：2020-11-26

申请号：US16563785

申请日：2019-09-06

Applicant: Microsoft Technology Licensing, LLC

Inventor： Rishabh Tewari ,  Abhiijeet Kumar ,  Neeraj Motwani ,  Daniel M. Firestone ,  Vivek Bhanu ,  Madhan Sivakumar ,  Michal Czeslaw Zygmunt ,  Deepak Bansal

IPC: G06F9/50 ,  G06F9/445

Abstract: A network appliance is configured to receive a packet having an address of a custom device as a source address. Policies are accessed that are applicable to a virtual network associated with the custom device. The policies are applied to the packet. A hairpin layer redirects the packet to a destination address contained in the packet. For subsequent packets, application of the policies is bypassed to the subsequent packets. Application of the policies is offloaded to an acceleration device.

公开(公告)号：US11799782B2

公开(公告)日：2023-10-24

申请号：US18152732

申请日：2023-01-10

Applicant: MICROSOFT TECHNOLOGY LICENSING, LLC

Inventor： Gerald Roy Degrace ,  Deepak Bansal ,  Rishabh Tewari ,  Michal Czeslaw Zygmunt ,  Deven Jagasia

IPC: G06F15/177 ,  H04L47/20 ,  H04L12/46 ,  H04L49/00 ,  H04L67/141 ,  H04L41/0654 ,  H04L41/0893 ,  H04L67/1095 ,  G06F9/455 ,  H04L41/0806

CPC classification number: H04L47/20 ,  G06F9/45558 ,  H04L12/4641 ,  H04L41/0654 ,  H04L41/0806 ,  H04L41/0893 ,  H04L49/30 ,  H04L67/1095 ,  H04L67/141 ,  G06F2009/45579 ,  G06F2009/45595

Abstract: Techniques are disclosed for processing data packets and implementing policies in a software defined network (SDN) of a virtual computing environment. At least two SDN appliances are configured to disaggregate enforcement of policies of the SDN from hosts of the virtual computing environment. The hosts are implemented on servers communicatively coupled to network interfaces of the SDN appliance. The servers host a plurality of virtual machines. The servers are communicatively coupled to network interfaces of at least two top-of-rack switches (ToRs). The SDN appliance comprises a plurality of smart network interface cards (sNICs) configured to implement functionality of the SDN appliance. The sNICs have a floating network interface configured to provide a virtual port connection to an endpoint within a virtual network of the virtual computing environment.

公开(公告)号：US11599380B2

公开(公告)日：2023-03-07

申请号：US17241963

申请日：2021-04-27

Applicant: Microsoft Technology Licensing, LLC

Inventor： Abhishek Shukla ,  Abhishek Ellore Sreenath ,  Neha Aggarwal ,  Naveen Prabhat ,  Nisheeth Srivastava ,  Xinyan Zan ,  Ashish Bhargava ,  Parag Sharma ,  Rishabh Tewari

IPC: G06F9/455 ,  H04W4/50 ,  H04L12/66 ,  H04L9/40 ,  G06F9/50

Abstract: A virtual network interface controller (NIC) associated with a virtual machine in a cloud computing network is configured to support one or more network containers that encapsulate networking configuration data and policies that are applicable to a specific discrete computing workload to thereby enable the virtual machine to simultaneously belong to multiple virtual networks using the single NIC. The network containers supported by the NIC can be associated with a single tenant to enable additional flexibility such quickly switching between virtual networks and support pre-provisioning of additional computing resources with associated networking policies for rapid deployment. The network containers can also be respectively associated with different tenants so that the single NIC can support multi-tenant services on the same virtual machine.