公开(公告)号：US11595388B2

公开(公告)日：2023-02-28

申请号：US17533139

申请日：2021-11-23

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Qi Wu ,  Donghai Han

IPC: H04L9/40 ,  H04L41/0893 ,  H04L61/5014 ,  G06F9/455 ,  H04L61/2557

Abstract: Example methods and systems are provided for location-aware service request handling. The method may comprise: generating and sending location information associated with virtualized computing instance to a service node or a management entity for transmission to the service node. The location information may identify logical element(s) to which the virtualized computing instance is connected. The method may further comprise: in response to detecting, from the virtualized computing instance, a service request for a service from the service node, generating a modified service request by modifying the service request to include the location information associated with the virtualized computing instance; and sending the modified service request towards the service node.

公开(公告)号：US11190508B2

公开(公告)日：2021-11-30

申请号：US16542304

申请日：2019-08-16

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Qi Wu ,  Donghai Han

IPC: H04L29/06 ,  H04L29/12 ,  H04L12/24 ,  G06F9/455

Abstract: Example methods and systems are provided for location-aware service request handling. The method may comprise: generating and sending location information associated with virtualized computing instance to a service node or a management entity for transmission to the service node. The location information may identify logical element(s) to which the virtualized computing instance is connected. The method may further comprise: in response to detecting, from the virtualized computing instance, a service request for a service from the service node, generating a modified service request by modifying the service request to include the location information associated with the virtualized computing instance; and sending the modified service request towards the service node.

公开(公告)号：US11831677B2

公开(公告)日：2023-11-28

申请号：US18057601

申请日：2022-11-21

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Qi Wu ,  Donghai Han

IPC: H04L9/40 ,  G06F9/455 ,  H04L61/5014 ,  H04L61/5076

CPC classification number: H04L63/1466 ,  G06F9/45558 ,  H04L61/5014 ,  H04L61/5076 ,  H04L63/20 ,  G06F2009/45595

Abstract: Methods and apparatus to manage a dynamic deployment environment including one or more virtual machines is provided herein. A disclosed example includes involves: scanning, by executing a computer readable instruction with a processor, the virtual machines in the deployment environment to identify a service installed on any of the virtual machines; determining, by executing a computer readable instruction with the processor, the identified service corresponds to a service monitoring rule; determining, by executing a computer readable instruction with the processor, that a monitoring agent identified by the service monitoring rule is installed on the one or more virtual machines on which the service is installed; and configuring the monitoring agent, by executing a computer readable instruction with the processor, to monitor the service in accordance with the service monitoring rule on the at least one of the virtual machines on which the service is installed.

公开(公告)号：US11509686B2

公开(公告)日：2022-11-22

申请号：US16442841

申请日：2019-06-17

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Qi Wu ,  Donghai Han

IPC: H04L9/40 ,  G06F9/455 ,  H04L61/5014 ,  H04L61/5076

Abstract: In an embodiment, a computer-implemented method for DHCP-communications monitoring by a network controller in software defined networks is disclosed. A method comprises detecting that a virtualized compute instance is instantiated on a host computer; generating, and transmitting to a port manager executing on the host computer, instructions to set a BLOCK-EXCEPT-DHCP status on a port assigned to the virtualized compute instance; determining whether an IP address has been assigned to the port by a DHCP service; and if it has: generating, and transmitting to the port manager, instructions to set a NORMAL status on the port; generating, and transmitting to the port manager, a SpoofGuard configured with the IP address assigned to the port; based on notifications received from the SpoofGuard, determining whether the IP address assigned to the port of the virtualized compute instance has been misused, expired or spoofed; and if it has, transmitting instructions to set the BLOCK-EXCEPT-DHCP status on the port.

公开(公告)号：US11470071B2

公开(公告)日：2022-10-11

申请号：US16852553

申请日：2020-04-20

Applicant: VMware, Inc.

Inventor： Ye Luo ,  Jinjun Gao ,  Qi Wu ,  Donghai Han

IPC: H04L9/40 ,  G06F9/455

Abstract: Example methods and systems for authentication for logical overlay network traffic are described. In one example, a first computer system may detect an inner packet and generate authentication information associated with the inner packet based on control information from a management entity. The authentication information may indicate that the inner packet originates from a trusted zone. The first computer system may further generate an encapsulated packet by encapsulating the inner packet with an outer header that specifies the authentication information, and send the encapsulated packet towards the second virtualized computing instance to cause a second computer system to verify that the inner packet originates from the trusted zone based on the authentication information.