公开(公告)号：US20240195712A1

公开(公告)日：2024-06-13

申请号：US18119842

申请日：2023-03-10

Applicant: VMWARE, INC.

Inventor： DEVRAJ NARENDRA BAHETI ,  AMBARISH PRASHANT PANDE ,  AVINASH NIGAM ,  VISHAL RANJAN

IPC: H04L43/026 ,  H04L45/745

CPC classification number: H04L43/026 ,  H04L45/745

Abstract: Embodiments for identifying workloads in a networking environment based on a flow record from an observation point are described. One embodiment of a method includes receiving network data from an endpoint in the networking environment, determining a plurality of administrative domains within the networking environment, and generating observation point mapping information that maps each observation point within the networking environment to one of the plurality of administrative domains. Some embodiments include generating a plurality of lookup tables, where a first lookup table is associated with a first administrative domain and where the first administrative domain corresponds to an L2 network that is disconnected from any router in the networking environment. Some embodiments include generating a workload identification table that maps combinations of IP addresses and administrative domains to workloads, receiving the flow record from the observation point, and identifying source and destination workloads of the flow record.

公开(公告)号：US20190260654A1

公开(公告)日：2019-08-22

申请号：US15946737

申请日：2018-04-06

Applicant: VMWARE, INC.

Inventor： ROHIT TOSHNIWAL ,  ABHIJIT SHARMA ,  GAURAV AGARWAL ,  AVINASH NIGAM ,  GYAN SAGAR SINHA ,  SOMIL BHANDARI

IPC: H04L12/26 ,  H04L29/12 ,  H04L12/24 ,  H04L12/911

Abstract: Embodiments described herein generally involve identifying workloads in a networking environment based on a flow record from an observation point. In one embodiment, network data is received from one or more endpoints and used to determine a plurality of administrative domains. Each administrative domain comprises a distinct section of the networking environment within which every Internet Protocol (IP) address is unique. The network data may be used to generate observation point mapping information that maps each observation point to an administrative domain, lookup tables associated with each of the plurality of administrative domains that map IP addresses to administrative domains, and a workload identification table that maps combinations of IP addresses and administrative domains to workloads. The flow record is received from the observation point and a source and destination workload of the flow record are identified using the observation point mapping information, applicable lookup table, and workload identification table.

公开(公告)号：US20210367851A1

公开(公告)日：2021-11-25

申请号：US16939141

申请日：2020-07-27

Applicant: VMWARE, INC.

Inventor： RAVI SINGHAL ,  PRAHALAD DESHPANDE ,  AVINASH NIGAM ,  ABHIJIT SHARMA ,  SOMIL BHANDARI ,  AMARJIT GUPTA ,  AMBARISH PANDE

IPC: H04L12/24 ,  H04L29/12

Abstract: A system and method for topology construction in hybrid cloud environments includes receiving connection information from a local perimeter edge router of a local network that has a known topology and receiving connection information from a remote perimeter edge router of a remote network that is provided by a cloud provider. The received local perimeter edge router connection information is associated with the received remote perimeter edge router connection information. The associated connection information is normalized to a generic model, the generic model representing connections having different link layer policies in a generic way and the normalized connection information is applied to a network topology of the local network and the remote network.

公开(公告)号：US20220393964A1

公开(公告)日：2022-12-08

申请号：US17396861

申请日：2021-08-09

Applicant: VMWARE, INC.

Inventor： AMBARISH PRASHANT PANDE ,  DEVRAJ NARENDRA BAHETI ,  AVINASH NIGAM ,  VISHAL RANJAN ,  PRAHALAD DESHPANDE

IPC: H04L12/755 ,  H04L12/721 ,  H04L29/08 ,  H04L29/12

Abstract: Embodiments described herein generally involve identifying workloads in a multi-site networking environment. Embodiments include determining that a given network is stretched across a first network segment at a first site and a second network segment at a second site. Embodiments include creating a stretched administrative domain for the given network and mapping an address of the given network to the stretched administrative domain in a lookup table for an administrative domain associated with the first network segment. Embodiments include receiving a flow record from an observation point in the first network segment, the flow record having a source IP address associated with the second network segment and a destination IP address associated with the first network segment. Embodiments include identifying a source workload and destination workload of the flow record using the lookup table and a workload identification table that maps combinations of IP addresses and administrative domains to workloads.