公开(公告)号：US20250133116A1

公开(公告)日：2025-04-24

申请号：US18381869

申请日：2023-10-19

Applicant: VMware LLC

Inventor： Subin Cyriac Mathew ,  Chidambareswaran Raman ,  Mukesh Hira

IPC: H04L9/40 ,  G06F9/455

Abstract: Some embodiments provide a novel method for defining a set of policies for a set of applications executing on a host computer of a software-defined network (SDN). The method configures, on a physical network interface card (PNIC) connected to the host computer, a network adapter to create a logical port that connects an interface of the host computer to a virtual distributed switch (VDS) executing on the PNIC. The method defines the set of policies based on the logical port for the VDS to apply to data message flows sent from the set of applications on the host computer to one or more other host computers of the SDN.

公开(公告)号：US20250133019A1

公开(公告)日：2025-04-24

申请号：US18381806

申请日：2023-10-19

Applicant: VMware LLC

Inventor： Mukesh Hira ,  Hongwei Zhu ,  Bo Hu

IPC: H04L45/00 ,  H04L45/586 ,  H04L45/655

Abstract: Some embodiments provide a method for configuring a network to bridge data messages between a hardware-implemented L2 overlay network segment and a software-implemented L2 overlay network segment. The method identifies a host computer on which a logical network endpoint connected to the software-implemented overlay executes. The hardware-implemented L2 overlay connects at least a first set of network endpoints located in a first physical network zone and connected to a first L2 network segment and a second set of network endpoints located in a second physical network zone and connected to a second L2 network segment. The identified host computer is located in the first physical network zone. The method configures a forwarding element executing on the host computer to bridge data messages between the logical network endpoint and (i) the first set of network endpoints and (ii) the second set of network endpoints.

公开(公告)号：US20250132982A1

公开(公告)日：2025-04-24

申请号：US18381804

申请日：2023-10-19

Applicant: VMware LLC

Inventor： Mukesh Hira ,  Hongwei Zhu ,  Bo Hu

IPC: H04L41/12 ,  H04L41/0893

Abstract: Some embodiments provide a method for configuring a network to bridge data messages between a logical overlay network layer 2 (L2) segment and a physical L2 segment. The method identifies each host computer in the network on which at least one logical network endpoint connected to the logical overlay network L2 segment executes. For each identified host computer, the method configures a forwarding element executing on the identified host computer to bridge (i) data messages sent from the logical network endpoints executing on the identified host computer to network endpoints connected to the physical L2 segment and (ii) data messages sent from network endpoints connected to the physical L2 segment, executing on the identified host computer and on other host computers in the network, to the logical network endpoints executing on the identified host computer.

公开(公告)号：US11876675B2

公开(公告)日：2024-01-16

申请号：US17592451

申请日：2022-02-03

Applicant: VMware LLC

Inventor： Valentina Reutova ,  Petro Rudy ,  Poonam Chugh ,  Mukesh Hira ,  Vivek Ganesan ,  Ankur Dubey ,  Bo Hu

IPC: H04L41/08 ,  H04L41/0816 ,  H04L41/0853 ,  H04L41/084

CPC classification number: H04L41/0816 ,  H04L41/0846 ,  H04L41/0853 ,  H04L41/0883

Abstract: Some embodiments provide a method of migrating a first software defined (SD) network managed by a first network manager to a second SD network managed by a second network manager. The method of some embodiments is performed by a third network manager that provides an interface that allows a set of users to specify and review logical network components, which the first and second network managers can then respectively deploy in the first and second SD networks. The third network manager in some embodiments identifies for a migration manager a first group of two or more logical network components that the third network manager previously specified for the first network manager to deploy in the first SD network. The migration manager then uses this information to correctly convert the first group of logical network components to a second group of two or more logical components in an appropriate manner that will allow the third network manager to manage the second group of logical network components that is implemented in the second SD network.

公开(公告)号：US11929897B2

公开(公告)日：2024-03-12

申请号：US17510053

申请日：2021-10-25

Applicant: VMware LLC

Inventor： Muhammad Shahbaz ,  Mukesh Hira ,  Lalith Suresh

IPC: H04L43/062 ,  H04L45/16 ,  H04L47/125

CPC classification number: H04L43/062 ,  H04L45/16 ,  H04L47/125

Abstract: In an embodiment, a computer-implemented method for highly-scalable, in-network multicasting of statistics data is disclosed. In an embodiment, a method comprises: receiving, from an underlay controller, a match-and-action table that is indexed using one or more multicast (“MC”) group identifiers and includes one or more special MC headers; detecting a packet carrying statistics data; determining whether the packet includes an MC group identifier; in response to determining that the packet includes the MC group identifier: using the MC group identifier, retrieving a special MC header, of the one or more special MC headers, from the match-and-action table; generating an encapsulated packet by encapsulating the packet with the special MC header; and providing the encapsulated packet to an interface controller for transmitting the encapsulated packet to one or more physical switches.

公开(公告)号：US12170616B2

公开(公告)日：2024-12-17

申请号：US18103366

申请日：2023-01-30

Applicant: VMware LLC

Inventor： Rahul Jain ,  Kantesh Mundaragi ,  Pierluigi Rolando ,  Jayant Jain ,  Mukesh Hira

IPC: H04L45/745 ,  G06F9/455 ,  H04L12/46 ,  H04L49/00 ,  H04L49/354

Abstract: Example methods and systems are provided a network device to perform tunnel-based service insertion in a public cloud environment. An example method may comprise establishing a tunnel between the network device and a service path. The method may also comprise: in response to receiving a first encapsulated packet, identifying the service path specified by a service insertion rule; generating and sending a second encapsulated packet over the tunnel to cause the service path to process an inner packet according to one or more services. The method may further comprise: in response to receiving, from the service path via the tunnel, a third encapsulated packet that includes the inner packet processed by the service path, sending the inner packet processed by the service path, or a fourth encapsulated packet, towards a destination address of the inner packet.

公开(公告)号：US12074731B2

公开(公告)日：2024-08-27

申请号：US17849669

申请日：2022-06-26

Applicant: VMware LLC

Inventor： Mukesh Hira ,  Su Wang ,  Rahul Jain ,  Ganesan Chandrashekhar ,  Sandeep Siroya

IPC: H04L12/66 ,  H04L12/46 ,  H04L45/00 ,  H04L45/74 ,  H04L67/10

CPC classification number: H04L12/66 ,  H04L12/4633 ,  H04L45/72 ,  H04L45/74 ,  H04L67/10

Abstract: Some embodiments provide a centralized overlay-network cloud gateway and a set of centralized services in a transit virtual cloud network (VCN) connected to multiple other compute VCNs hosting compute nodes (VMs, containers, etc.) that are part of (belong to) the overlay network. The centralized overlay-network cloud gateway provides connectivity between compute nodes of the overlay network (e.g., a logical network spanning multiple VCNs) and compute nodes in external networks. Some embodiments use the centralized overlay-network cloud gateway to provide transitive routing (e.g., routing through a transit VCN) in the absence of direct peering between source and destination VCNs. The overlay network, of some embodiments, uses the same subnetting and default gateway address for each compute node as the cloud provider network provided by the virtual private cloud provider.