公开(公告)号：US20240037495A1

公开(公告)日：2024-02-01

申请号：US18097522

申请日：2023-01-17

Applicant: VMWARE, INC.

Inventor： NICHOLAS MARK GRANT STEPHEN ,  MARIUS VILCU ,  PRAHALAD DESHPANDE ,  SANTOSHKUMAR KAVADIMATTI

IPC: G06Q10/087 ,  G06Q10/04

CPC classification number: G06Q10/087 ,  G06Q10/04

Abstract: The current document is directed to a meta-level management system (“MMS”) that aggregates information and functionalities provided by multiple management systems and provides additional management functionalities and information. In one implementation, the MMS interfaces to external entities and users through an MMS application programming interface (“API”) implemented as a GraphQL™ interface. The MMS API, in turn, accesses microservices and stream/batch processing components through microservice and stream/batch-processing-component GraphQL interfaces. The MMS employs at least three different databases: (1) an inventory/configuration database; (2) a metrics database that stores metrics derived from time-series data obtained from the multiple management systems and from other information stored in the inventory/configuration database; and (3) an MMS database that stores business insights and other MMS-generated data. A central data bus is implemented by a KAFKA™ event-streaming system. The data and information is input to the data bus by the various microservices, stream/batch processing components, and collectors.

公开(公告)号：US20200336457A1

公开(公告)日：2020-10-22

申请号：US16436930

申请日：2019-06-11

Applicant: VMWARE, INC.

Inventor： ABHIJIT SHARMA ,  PRAHALAD DESHPANDE ,  ATUL JADHAV ,  NIKHIL BHALERAO ,  SHASHANK RANJAN

IPC: H04L29/06 ,  H04L12/26

Abstract: The present disclosure provides an approach for generating one or more firewall rules to regulate communication between containerized services running within containers. The approach includes determining which services communicate with each other, independently of in which containers the services execute. The determining occurs over a period of time. If two services communicated with each other during the period of time, then the firewall allows the services to continue communicating, but only over the same ports as used during the period of time. If two services did not communicate during the period of time, then the firewall does not allow the services to communicate after the expiration of the period of time. In some embodiments, redetermining the communication flow over a new period of time may occur after the initial period of time so as to refresh the firewall rules.

公开(公告)号：US20220393964A1

公开(公告)日：2022-12-08

申请号：US17396861

申请日：2021-08-09

Applicant: VMWARE, INC.

Inventor： AMBARISH PRASHANT PANDE ,  DEVRAJ NARENDRA BAHETI ,  AVINASH NIGAM ,  VISHAL RANJAN ,  PRAHALAD DESHPANDE

IPC: H04L12/755 ,  H04L12/721 ,  H04L29/08 ,  H04L29/12

Abstract: Embodiments described herein generally involve identifying workloads in a multi-site networking environment. Embodiments include determining that a given network is stretched across a first network segment at a first site and a second network segment at a second site. Embodiments include creating a stretched administrative domain for the given network and mapping an address of the given network to the stretched administrative domain in a lookup table for an administrative domain associated with the first network segment. Embodiments include receiving a flow record from an observation point in the first network segment, the flow record having a source IP address associated with the second network segment and a destination IP address associated with the first network segment. Embodiments include identifying a source workload and destination workload of the flow record using the lookup table and a workload identification table that maps combinations of IP addresses and administrative domains to workloads.

公开(公告)号：US20210409303A1

公开(公告)日：2021-12-30

申请号：US16996945

申请日：2020-08-19

Applicant: VMWARE, INC.

Inventor： AMBARISH PANDE ,  PRAHALAD DESHPANDE

IPC: H04L12/751 ,  H04L12/46

Abstract: A system and method for data route discovery through cross-connection tunnels uses routing configurations from a local edge router in a private cloud that include learnt and advertised subnets, as well as cross-connection tunnels for the learnt and advertised subnets, to populate a public cloud table of public cloud learnt subnets and a public cloud table of public cloud advertised subnets. The public cloud tables of public cloud learnt subnets and public cloud advertised subnets are applied to discover data routes through the cross-connection tunnels of the hybrid cloud environment.

公开(公告)号：US20210367851A1

公开(公告)日：2021-11-25

申请号：US16939141

申请日：2020-07-27

Applicant: VMWARE, INC.

Inventor： RAVI SINGHAL ,  PRAHALAD DESHPANDE ,  AVINASH NIGAM ,  ABHIJIT SHARMA ,  SOMIL BHANDARI ,  AMARJIT GUPTA ,  AMBARISH PANDE

IPC: H04L12/24 ,  H04L29/12

Abstract: A system and method for topology construction in hybrid cloud environments includes receiving connection information from a local perimeter edge router of a local network that has a known topology and receiving connection information from a remote perimeter edge router of a remote network that is provided by a cloud provider. The received local perimeter edge router connection information is associated with the received remote perimeter edge router connection information. The associated connection information is normalized to a generic model, the generic model representing connections having different link layer policies in a generic way and the normalized connection information is applied to a network topology of the local network and the remote network.