公开(公告)号：US12021898B2

公开(公告)日：2024-06-25

申请号：US16713025

申请日：2019-12-13

申请人： NICIRA, INC.

发明人： Prashant Ambardekar ,  Rajiv Krishnamurthy ,  Prayas Gaurav ,  Ujwala Kawalay ,  Gurprit Johal

IPC分类号： H04L9/40 ,  G06F9/455 ,  G06F16/28

CPC分类号： H04L63/20 ,  G06F9/45558 ,  G06F16/289 ,  H04L63/10 ,  G06F2009/45587 ,  G06F2009/45591 ,  G06F2009/45595

摘要： This disclosure presents processes and systems that translate policies defined for virtual objects, such as virtual servers, applications, and databases, of a distributed computing system into identity information of services provided by virtual objects to computing devices located outside the distributed computing system. Processes and systems form object graphs of computing device identity information, virtual objects, and virtual object identify information. Processes and systems translate polices for controlling network between the computing devices and the virtual objects into identity information of the computing devices and the virtual objects. The identify information of the virtual objects and the computing devices is used to create rules for controlling network traffic between the virtual objects and the computing devices. The rules are distributed to hosts of the distributed computing system that execute the rules, allowing access by the computing devices to services provided by the virtual objects.

公开(公告)号：US11349724B2

公开(公告)日：2022-05-31

申请号：US15907304

申请日：2018-02-28

申请人： NICIRA, INC.

发明人： Ujwala Kawalay ,  Prashant Ambardekar ,  Prayas Gaurav ,  Rajiv Krishnamurthy ,  Gurprit Johal

IPC分类号： H04L41/147 ,  H04L41/22

摘要： An approach for a software defined networking manager to perform a predictive analysis of proposed modifications to a software defined network (SDN) is presented. A method comprises receiving entity logical associations that are captured in a set of rules implemented in a SDN. Once a proposed modification to the entity logical associations is received, without implementing the proposed modification and without modifying the set of rules, impacted entity associations, from the entity logical associations, are identified. Upon receiving input indicating that the proposed modification is to be accepted, an updated set of rules for the SDN is generated by updating the set of rules based on the proposed modification, and the updated set of rules is implemented in the SDN.

公开(公告)号：US20200244702A1

公开(公告)日：2020-07-30

申请号：US16713025

申请日：2019-12-13

申请人： NICIRA, INC.

发明人： PRASHANT AMBARDEKAR ,  Rajiv Krishnamurthy ,  Prayas Gaurav ,  Ujwala Kawalay ,  Gurrprit Johal

IPC分类号： H04L29/06 ,  G06F9/455 ,  G06F16/28

摘要： This disclosure presents processes and systems that translate policies defined for virtual objects, such as virtual servers, applications, and databases, of a distributed computing system into identity information of services provided by virtual objects to computing devices located outside the distributed computing system. Processes and systems form object graphs of computing device identity information, virtual objects, and virtual object identify information. Processes and systems translate polices for controlling network between the computing devices and the virtual objects into identity information of the computing devices and the virtual objects. The identify information of the virtual objects and the computing devices is used to create rules for controlling network traffic between the virtual objects and the computing devices. The rules are distributed to hosts of the distributed computing system that execute the rules, allowing access by the computing devices to services provided by the virtual objects.