公开(公告)号：US20200028764A1

公开(公告)日：2020-01-23

申请号：US16041939

申请日：2018-07-23

Applicant: VMware, Inc.

Inventor： Bolt Zhang ,  Wenyu Zhang ,  Sahan Gamage ,  Wang Qiong ,  Hua Wang ,  Lei Lu

IPC: H04L12/26 ,  G06F9/455

Abstract: Systems and methods for reducing network cost in a hyper-converged infrastructure are disclosed. The network cost of workload pairs can be assessed. Migration of the workloads can be considered to reduce the network cost and improve the network efficiency of the hyper-converged infrastructure.

公开(公告)号：US20150172165A1

公开(公告)日：2015-06-18

申请号：US14133528

申请日：2013-12-18

Applicant: VMware, Inc.

Inventor： Alexander Tessmer ,  Jianjun Shen ,  Hua Wang ,  Rahul Korivi Subramaniyam

IPC: H04L12/751 ,  H04L12/18

CPC classification number: H04L45/02 ,  H04L12/1886 ,  H04L12/462 ,  H04L12/4633 ,  H04L12/4641

Abstract: A novel method for fully utilizing the multicast or broadcast capability of a physical network is provided. The method identifies segments of the network within which broadcast traffic, multicast traffic, or traffic to unknown recipients (BUM traffic) is allowed or enabled. The identified segment encompasses parts of the network that the BUM traffic is able reach while excluding parts of the network nodes that the BUM traffic is unable to reach. Each identified segment includes network nodes that are interconnected by physical network hardware that supports BUM traffic. The method identifies multiple BUM traffic segments in a given network that each supports its own BUM traffic. The different BUM traffic segments are interconnected by physical network hardware that does not support BUM network traffic. Each identified segment is assigned an identifier that uniquely distinguishes the identified segment from other identified segments.

Abstract translation: 提供了一种充分利用物理网络的多播或广播能力的新颖方法。 该方法识别允许或启用广播流量，组播流量或到未知接收者（BUM流量）的流量的网络段。 识别的段包含BUM业务能够到达的网络的部分，同时排除BUM业务无法到达的部分网络节点。 每个识别的段包括通过支持BUM业务的物理网络硬件互连的网络节点。 该方法识别给定网络中的每个支持其自己的BUM流量的多个BUM流量段。 不同的BUM流量段通过不支持BUM网络流量的物理网络硬件互连。 为每个标识的段分配一个标识符，其将所识别的段与其他识别的段唯一区分开。

公开(公告)号：US20150103661A1

公开(公告)日：2015-04-16

申请号：US14070451

申请日：2013-11-01

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Hua Wang ,  James Joseph Stabile ,  Xuan Zhang

IPC: H04L12/24 ,  H04L12/803

CPC classification number: H04L41/042 ,  G06F9/452 ,  H04L41/0659 ,  H04L45/64 ,  H04L47/125 ,  H04L61/103 ,  H04L61/2015 ,  H04L67/38

Abstract: Some embodiments provide a novel method for distributing control-channel communication load between multiple controllers in a network control system. In some embodiments, the controllers manage physical forwarding elements that forward data between several computing devices (also called hosts or host computers), some or all of which execute one or more virtual machines (VMs). The method of some embodiments distributes a controller assignment list to the host computers. The host computers use this list to identify the controllers with which they need to interact to perform some of the forwarding operations of their associated logical forwarding elements. In some embodiments, agents executing on the host computers (1) review the controller assignment list to identify the appropriate controllers, and (2) establish control channel communications with these controllers to obtain the needed data for effectuating the forwarding operations of their associated physical forwarding elements. These agents in some embodiments are responsible for out-of-band control channel communication with the controllers.

Abstract translation: 一些实施例提供了一种用于在网络控制系统中的多个控制器之间分配控制信道通信负载的新颖方法。 在一些实施例中，控制器管理在多个计算设备（也称为主机或主机计算机）之间转发数据的物理转发元件，其中一些或全部执行一个或多个虚拟机（VM）。 一些实施例的方法将控制器分配列表分发给主计算机。 主计算机使用此列表来识别他们需要进行交互的控制器，以执行其相关联的逻辑转发元件的一些转发操作。 在一些实施例中，在主计算机（1）上执行的代理查看控制器分配列表以识别适当的控制器，以及（2）与这些控制器建立控制信道通信，以获得所需的数据，以实现其相关物理转发的转发操作 元素。 在一些实施例中，这些代理负责与控制器的带外控制信道通信。

公开(公告)号：US10938688B2

公开(公告)日：2021-03-02

申请号：US16041939

申请日：2018-07-23

Applicant: VMware, Inc.

Inventor： Bolt Zhang ,  Wenyu Zhang ,  Sahan Gamage ,  Wang Qiong ,  Hua Wang ,  Lei Lu

IPC: H04L12/26 ,  G06F9/455

Abstract: Systems and methods for reducing network cost in a hyper-converged infrastructure are disclosed. The network cost of workload pairs can be assessed. Migration of the workloads can be considered to reduce the network cost and improve the network efficiency of the hyper-converged infrastructure.

公开(公告)号：US20150058463A1

公开(公告)日：2015-02-26

申请号：US14070346

申请日：2013-11-01

Applicant: VMware, Inc.

Inventor： Hua Wang ,  Jianjun Shen ,  Donghai Han ,  Caixia Jiang ,  Wei Lu ,  Rahul Korivi Subramaniyam

IPC: H04L12/58

CPC classification number: H04L63/0281 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L51/12 ,  H04L61/103 ,  H04L61/2015 ,  H04L61/6013 ,  H04L61/6022 ,  H04L63/0236 ,  H04L63/1441 ,  H04L63/1466

Abstract: Some embodiments use proxies on host devices to suppress broadcast traffic in a network. Each host in some embodiments executes one or more virtual machines (VMs). In some embodiments, a proxy operates on each host between each VM and the underlying network. For instance, in some of these embodiments, a VM's proxy operates between the VM and a physical forwarding element executing on the VM's host. The proxy monitors the VM's traffic, and intercepts broadcast packets when it knows how to deal with them. The proxy connects to a set of one or more controllers that provides a directory service that collects and maintains global information of the network. By connecting to the controller cluster, the proxy can obtain information that it can use to resolve broadcast requests. In some embodiments, the connection between the proxy and the controller cluster is encrypted and authenticated, to enhance the security. Also, in some embodiments, the connection is an indirect connection through an agent that executes on the host device and connects the proxies of the host device with the controller cluster.

公开(公告)号：US09432204B2

公开(公告)日：2016-08-30

申请号：US14020369

申请日：2013-09-06

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Alexander Tessmer ,  Ram Dular Singh ,  Hua Wang ,  Da Wan

IPC: H04L12/18 ,  H04L12/46 ,  H04L12/761

CPC classification number: H04L12/1886 ,  H04L12/185 ,  H04L12/1854 ,  H04L12/46 ,  H04L12/4641 ,  H04L45/16

Abstract: A novel method of conducting multicast traffic in a network is provided. The network includes multiple endpoints that receive messages from the network and generate messages for the network. The endpoints are located in different segments of the network, each segment including one or more of the endpoints. For a source endpoint to replicate a particular message (e.g., a data packet) for all endpoints belonging to a particular replication group (i.e., multicast group) within the network, the source endpoint replicates the particular message to each endpoint within the source endpoint's own segment and to a proxy endpoint in each of the other segments. Each proxy endpoint in turn replicates the particular message to all endpoints belonging to the particular replication group within the proxy endpoint's own segment.

Abstract translation: 提供了一种在网络中进行组播流量的新颖方法。 网络包括从网络接收消息并为网络生成消息的多个端点。 端点位于网络的不同段中，每个段包括一个或多个端点。 对于源端点来复制属于网络内特定复制组（即多播组）的所有端点的特定消息（例如，数据包），源端点会将特定消息复制到源端点自身的每个端点 段和每个其他段中的代理端点。 每个代理端点反过来将特定消息复制到属于代理端点自身段内特定复制组的所有端点。

公开(公告)号：US20150103645A1

公开(公告)日：2015-04-16

申请号：US14070448

申请日：2013-11-01

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Hua Wang ,  James Joseph Stabile ,  Xuan Zhang

IPC: H04L12/24 ,  H04L12/803

CPC classification number: H04L41/042 ,  G06F9/452 ,  H04L41/0659 ,  H04L45/64 ,  H04L47/125 ,  H04L61/103 ,  H04L61/2015 ,  H04L67/38

Abstract: Some embodiments provide a novel method for distributing control-channel communication load between multiple controllers in a network control system. In some embodiments, the controllers manage physical forwarding elements that forward data between several computing devices (also called hosts or host computers), some or all of which execute one or more virtual machines (VMs). The method of some embodiments distributes a controller assignment list to the host computers. The host computers use this list to identify the controllers with which they need to interact to perform some of the forwarding operations of their associated logical forwarding elements. In some embodiments, agents executing on the host computers (1) review the controller assignment list to identify the appropriate controllers, and (2) establish control channel communications with these controllers to obtain the needed data for effectuating the forwarding operations of their associated physical forwarding elements. These agents in some embodiments are responsible for out-of-band control channel communication with the controllers.

Abstract translation: 一些实施例提供了一种用于在网络控制系统中的多个控制器之间分配控制信道通信负载的新颖方法。 在一些实施例中，控制器管理在多个计算设备（也称为主机或主机计算机）之间转发数据的物理转发元件，其中一些或全部执行一个或多个虚拟机（VM）。 一些实施例的方法将控制器分配列表分发给主计算机。 主计算机使用此列表来识别他们需要进行交互的控制器，以执行其相关联的逻辑转发元件的一些转发操作。 在一些实施例中，在主计算机（1）上执行的代理查看控制器分配列表以识别适当的控制器，以及（2）与这些控制器建立控制信道通信，以获得所需的数据，以实现其相关物理转发的转发操作 元素。 在一些实施例中，这些代理负责与控制器的带外控制信道通信。

公开(公告)号：US20150055651A1

公开(公告)日：2015-02-26

申请号：US14020369

申请日：2013-09-06

Applicant: VMware, Inc.

Inventor： Jianjun Shen ,  Alexander Tessmer ,  Ram Dular Singh ,  Hua Wang ,  Da Wan

IPC: H04L12/18

CPC classification number: H04L12/1886 ,  H04L12/185 ,  H04L12/1854 ,  H04L12/46 ,  H04L12/4641 ,  H04L45/16

Abstract: A novel method of conducting multicast traffic in a network is provided. The network includes multiple endpoints that receive messages from the network and generate messages for the network. The endpoints are located in different segments of the network, each segment including one or more of the endpoints. For a source endpoint to replicate a particular message (e.g., a data packet) for all endpoints belonging to a particular replication group (i.e., multicast group) within the network, the source endpoint replicates the particular message to each endpoint within the source endpoint's own segment and to a proxy endpoint in each of the other segments. Each proxy endpoint in turn replicates the particular message to all endpoints belonging to the particular replication group within the proxy endpoint's own segment.

Abstract translation: 提供了一种在网络中进行组播流量的新颖方法。 网络包括从网络接收消息并为网络生成消息的多个端点。 端点位于网络的不同段中，每个段包括一个或多个端点。 对于源端点来复制属于网络内特定复制组（即多播组）的所有端点的特定消息（例如，数据包），源端点会将特定消息复制到源端点自身的每个端点 段和每个其他段中的代理端点。 每个代理端点反过来将特定消息复制到属于代理端点自身段内特定复制组的所有端点。

公开(公告)号：US20150058968A1

公开(公告)日：2015-02-26

申请号：US14070360

申请日：2013-11-01

Applicant: VMware, Inc.

Inventor： Hua Wang ,  Jianjun Shen ,  Donghai Han ,  Caixia Jiang ,  Wei Lu ,  Rahul Korivi Subramaniyam

IPC: H04L29/06

CPC classification number: H04L63/0281 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L51/12 ,  H04L61/103 ,  H04L61/2015 ,  H04L61/6013 ,  H04L61/6022 ,  H04L63/0236 ,  H04L63/1441 ,  H04L63/1466

Abstract: Some embodiments use proxies on host devices to suppress broadcast traffic in a network. Each host in some embodiments executes one or more virtual machines (VMs). In some embodiments, a proxy operates on each host between each VM and the underlying network. For instance, in some of these embodiments, a VM's proxy operates between the VM and a physical forwarding element executing on the VM's host. The proxy monitors the VM's traffic, and intercepts broadcast packets when it knows how to deal with them. The proxy connects to a set of one or more controllers that provides a directory service that collects and maintains global information of the network. By connecting to the controller cluster, the proxy can obtain information that it can use to resolve broadcast requests. In some embodiments, the connection between the proxy and the controller cluster is encrypted and authenticated, to enhance the security. Also, in some embodiments, the connection is an indirect connection through an agent that executes on the host device and connects the proxies of the host device with the controller cluster.

Abstract translation: 一些实施例使用主机设备上的代理来抑制网络中的广播流量。 在一些实施例中，每个主机执行一个或多个虚拟机（VM）。 在一些实施例中，代理在每个VM和底层网络之间的每个主机上运行。 例如，在这些实施例中的一些实施例中，VM的代理在VM和在VM主机上执行的物理转发元件之间运行。 代理监视虚拟机的流量，并在知道如何处理广播数据包时拦截广播数据包。 代理连接到一组一个或多个控制器，提供收集和维护网络的全局信息的目录服务。 通过连接到控制器集群，代理可以获取可用于解决广播请求的信息。 在一些实施例中，代理和控制器集群之间的连接被加密和认证，以增强安全性。 而且，在一些实施例中，连接是通过在主机设备上执行并将主机设备的代理与控制器集群连接的代理的间接连接。