-
公开(公告)号:US20220255896A1
公开(公告)日:2022-08-11
申请号:US17731232
申请日:2022-04-27
Applicant: VMware, Inc.
Inventor: Rahul Jain , Mukesh Hira , Su Wang
Abstract: Some embodiments provide a method for a managed forwarding element (MFE) executing on a data compute node (DCN) that operates on a host computer in a public datacenter. The MFE implements a logical network that connects multiple DCNs within the public datacenter. The method receives a packet, directed to the DCN, that (i) has a first logical network source address and (ii) is encapsulated with a second source address associated with an underlying public datacenter network. The method determines whether the first logical network source address is a valid source address for the packet based on a mapping table that maps logical network addresses to underlying public datacenter network addresses. When the first source address is not a valid source address for the packet, the method drops the packet.
-
公开(公告)号:US11032162B2
公开(公告)日:2021-06-08
申请号:US16515026
申请日:2019-07-18
Applicant: VMware, Inc.
Inventor: Rahul Jain , Mukesh Hira , Su Wang
IPC: G06F15/173 , G06F15/16 , H04L12/24 , H04L12/46 , H04L29/08
Abstract: Example methods and computer systems are provided for east-west service insertion in a public cloud environment. An example method may comprise detecting an egress packet that is destined for a second endpoint located in the same virtual network as a first endpoint. The method may also comprise: in response to determination that service insertion is required, identifying a service path based on a service insertion rule; generating an encapsulated packet by encapsulating the egress packet with an outer header that is addressed from the first endpoint to a network device; and sending the encapsulated packet to cause the network device to send the egress packet towards the service path, thereby steering the egress packet towards the service path for processing.
-
公开(公告)号:US20220329461A1
公开(公告)日:2022-10-13
申请号:US17849669
申请日:2022-06-26
Applicant: VMware, Inc.
Inventor: Mukesh Hira , Su Wang , Rahul Jain , Ganesan Chandrashekhar , Sandeep Siroya
Abstract: Some embodiments provide a centralized overlay-network cloud gateway and a set of centralized services in a transit virtual cloud network (VCN) connected to multiple other compute VCNs hosting compute nodes (VMs, containers, etc.) that are part of (belong to) the overlay network. The centralized overlay-network cloud gateway provides connectivity between compute nodes of the overlay network (e.g., a logical network spanning multiple VCNs) and compute nodes in external networks. Some embodiments use the centralized overlay-network cloud gateway to provide transitive routing (e.g., routing through a transit VCN) in the absence of direct peering between source and destination VCNs. The overlay network, of some embodiments, uses the same subnetting and default gateway address for each compute node as the cloud provider network provided by the virtual private cloud provider.
-
公开(公告)号:US11374794B2
公开(公告)日:2022-06-28
申请号:US16112597
申请日:2018-08-24
Applicant: VMware, Inc.
Inventor: Mukesh Hira , Su Wang , Rahul Jain , Ganesan Chandrashekhar , Sandeep Siroya
Abstract: Some embodiments provide a centralized overlay-network cloud gateway and a set of centralized services in a transit virtual cloud network (VCN) connected to multiple other compute VCNs hosting compute nodes (VMs, containers, etc.) that are part of (belong to) the overlay network. The centralized overlay-network cloud gateway provides connectivity between compute nodes of the overlay network (e.g., a logical network spanning multiple VCNs) and compute nodes in external networks. Some embodiments use the centralized overlay-network cloud gateway to provide transitive routing (e.g., routing through a transit VCN) in the absence of direct peering between source and destination VCNs. The overlay network, of some embodiments, uses the same subnetting and default gateway address for each compute node as the cloud provider network provided by the virtual private cloud provider.
-
Patent Agency Ranking
公开(公告)号:US11196591B2
公开(公告)日:2021-12-07
申请号:US16112602
申请日:2018-08-24
Applicant: VMware, Inc.
Inventor: Mukesh Hira , Su Wang , Rahul Jain , Ganesan Chandrashekhar , Sandeep Siroya
IPC: H04L12/66 , H04L12/721 , H04L29/08 , H04L12/741
Abstract: Some embodiments provide a centralized overlay-network cloud gateway and a set of centralized services in a transit virtual private cloud (VPC) connected to multiple other compute VPCs hosting compute nodes (VMs, containers, etc.) that are part of (belong to) the overlay network. The centralized overlay-network cloud gateway provides connectivity between compute nodes of the overlay network (e.g., a logical network spanning multiple VPCs) and compute nodes in external networks. Some embodiments use the centralized overlay-network cloud gateway to provide transitive routing (e.g., routing through a transit VPC) in the absence of direct peering between source and destination VPCs. The overlay network, of some embodiments, uses the same subnetting and default gateway address for each compute node as the cloud provider network provided by the virtual private cloud provider.
-
公开(公告)号:US20200067733A1
公开(公告)日:2020-02-27
申请号:US16112597
申请日:2018-08-24
Applicant: VMware, Inc.
Inventor: Mukesh Hira , Su Wang , Rahul Jain , Ganesan Chandrashekhar , Sandeep Siroya
IPC: H04L12/66 , H04L12/741 , H04L29/08 , H04L12/721 , H04L12/46
Abstract: Some embodiments provide a centralized overlay-network cloud gateway and a set of centralized services in a transit virtual cloud network (VCN) connected to multiple other compute VCNs hosting compute nodes (VMs, containers, etc.) that are part of (belong to) the overlay network. The centralized overlay-network cloud gateway provides connectivity between compute nodes of the overlay network (e.g., a logical network spanning multiple VCNs) and compute nodes in external networks. Some embodiments use the centralized overlay-network cloud gateway to provide transitive routing (e.g., routing through a transit VCN) in the absence of direct peering between source and destination VCNs. The overlay network, of some embodiments, uses the same subnetting and default gateway address for each compute node as the cloud provider network provided by the virtual private cloud provider.
-
公开(公告)号:US20200067734A1
公开(公告)日:2020-02-27
申请号:US16112602
申请日:2018-08-24
Applicant: VMware, Inc.
Inventor: Mukesh Hira , Su Wang , Rahul Jain , Ganesan Chandrashekhar , Sandeep Siroya
IPC: H04L12/66 , H04L12/741 , H04L29/08 , H04L12/721
Abstract: Some embodiments provide a centralized overlay-network cloud gateway and a set of centralized services in a transit virtual private cloud (VPC) connected to multiple other compute VPCs hosting compute nodes (VMs, containers, etc.) that are part of (belong to) the overlay network. The centralized overlay-network cloud gateway provides connectivity between compute nodes of the overlay network (e.g., a logical network spanning multiple VPCs) and compute nodes in external networks. Some embodiments use the centralized overlay-network cloud gateway to provide transitive routing (e.g., routing through a transit VPC) in the absence of direct peering between source and destination VPCs. The overlay network, of some embodiments, uses the same subnetting and default gateway address for each compute node as the cloud provider network provided by the virtual private cloud provider.
-
公开(公告)号:US20200007497A1
公开(公告)日:2020-01-02
申请号:US16022657
申请日:2018-06-28
Applicant: VMware, Inc.
Inventor: Rahul Jain , Mukesh Hira , Su Wang
Abstract: Some embodiments provide a method for a managed forwarding element (MFE) executing on a data compute node (DCN) that operates on a host computer in a public datacenter. The MFE implements a logical network that connects multiple DCNs within the public datacenter. The method receives a packet, directed to the DCN, that (i) has a first logical network source address and (ii) is encapsulated with a second source address associated with an underlying public datacenter network. The method determines whether the first logical network source address is a valid source address for the packet based on a mapping table that maps logical network addresses to underlying public datacenter network addresses. When the first source address is not a valid source address for the packet, the method drops the packet.
-
公开(公告)号:US11343229B2
公开(公告)日:2022-05-24
申请号:US16022657
申请日:2018-06-28
Applicant: VMware, Inc.
Inventor: Rahul Jain , Mukesh Hira , Su Wang
Abstract: Some embodiments provide a method for a managed forwarding element (MFE) executing on a data compute node (DCN) that operates on a host computer in a public datacenter. The MFE implements a logical network that connects multiple DCNs within the public datacenter. The method receives a packet, directed to the DCN, that (i) has a first logical network source address and (ii) is encapsulated with a second source address associated with an underlying public datacenter network. The method determines whether the first logical network source address is a valid source address for the packet based on a mapping table that maps logical network addresses to underlying public datacenter network addresses. When the first source address is not a valid source address for the packet, the method drops the packet.
-
-
-
-
-
-
-
-
Search Results
9
records
(took 0.016 seconds)
