公开(公告)号：US11805036B2

公开(公告)日：2023-10-31

申请号：US17346255

申请日：2021-06-13

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Stephen Tan ,  Rahul Mishra ,  Kantesh Mundaragi ,  Jayant Jain ,  Akhila Naveen

IPC分类号： H04L12/24 ,  H04L12/26 ,  H04L43/0805 ,  H04L41/0668 ,  H04L43/10

CPC分类号： H04L43/0805 ,  H04L41/0668 ,  H04L43/10

摘要： Some embodiments provide a method for detecting a failure of a layer 2 (L2) bump-in-the-wire service at a device. In some embodiments, the device sends heartbeat signals to a second device connected to L2 service nodes in order to detect failure of the L2 service (e.g., a failure of all the service nodes). In some embodiments, the heartbeat signals are unidirectional heartbeat signals (e.g., a unidirectional bidirectional-forwarding-detection (BFD) session) sent from each device to the other. The heartbeat signals, in some embodiments, use a broadcast MAC address in order to reach the current active L2 service node in the case of a failover (i.e., an active service node failing and a standby service node becoming the new active service node). The unidirectional heartbeat signals are also used, in some embodiments, to decrease the time between a failover and data messages being forwarded to the new active service node.

公开(公告)号：US20220272037A1

公开(公告)日：2022-08-25

申请号：US17742085

申请日：2022-05-11

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Mani Kancherla ,  Dharmaraja Rajan ,  Philip Kippen ,  Yashika Narang ,  Chidambareswaran Raman

IPC分类号： H04L45/74 ,  H04L45/586 ,  H04L45/00 ,  H04L12/46 ,  G06F9/44 ,  G06F9/455 ,  H04L41/00 ,  H04L41/0893 ,  H04L41/12 ,  H04L41/5054

摘要： The technology disclosed herein enables a dynamic chain of service functions for processing network traffic. In a particular embodiment, a method includes, in a logical router for a logical network connecting service functions, receiving a network packet from a service function over the logical network after the network packet has been processed by the service function. The method further includes determining a new classification of the network packet and determining a next service function based on application of a service chain policy to the new classification. The method also includes directing the network packet to the next service function over the logical network.

公开(公告)号：US11134008B2

公开(公告)日：2021-09-28

申请号：US16579809

申请日：2019-09-23

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Mani Kancherla

IPC分类号： H04L12/717 ,  G06F9/50 ,  H04L29/12 ,  H04L12/761 ,  H04L12/721

摘要： For a managed network implementing at least one logical router having centralized and distributed components, some embodiments provide a method that better supports the provision of certain network applications and/or services. The method receives at a host implementing (1) a distributed logical router and (2) a plurality of logical switches of a logical network along with other hosts, a message from a first data compute node (DCN) executing on the host. The host logically forwards the message to the distributed logical router that uses a particular anycast internet protocol (IP) address using a first media access control (MAC) address. The distributed router determines that the message requires processing by a centralized logical router (e.g., a service router, edge node, etc.) executing on an edge node host and forwards the message to the centralized logical router using the same anycast IP address and a second, unique MAC address.

公开(公告)号：US10979246B2

公开(公告)日：2021-04-13

申请号：US16043164

申请日：2018-07-24

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Alexander Tessmer ,  Subin Cyriac Mathew ,  Chidambareswaran Raman

IPC分类号： H04L12/46 ,  H04L12/761 ,  H04L12/715 ,  H04L12/931 ,  G06F9/455

摘要： Example methods are provided for a host to perform multicast packet handling a software-defined networking (SDN) environment. One example method may comprise: in response to detecting, from a virtualized computing instance supported by the host, a request to join a first inner multicast group address, obtaining an outer multicast group address that is assigned to the first inner multicast group address and one or more second inner multicast group addresses; and generating and sending a request to join the outer multicast group address to one or more multicast-enabled network devices. In response to detecting an ingress encapsulated multicast packet that includes an outer header addressed to the outer multicast group address and an inner header addressed to the first inner multicast group address, the host may generate and send a decapsulated multicast packet to the virtualized computing instance that has joined the first inner multicast group address.

公开(公告)号：US10958462B2

公开(公告)日：2021-03-23

申请号：US16276598

申请日：2019-02-14

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Alexander Tessmer ,  Subin Cyriac Mathew ,  Ganesan Chandrashekhar ,  Vivek Agarwal

IPC分类号： H04L12/18 ,  H04L12/28 ,  H04L12/24 ,  H04L12/721 ,  H04L12/46

摘要： For a managed network implementing at least one logical router having centralized and distributed components, some embodiments provide a method for configuring a managed forwarding element (MFE) executing on a first host machine to implement a distributed multicast logical router and multiple logical switches logically connected to the logical router in conjunction with a set of additional MFEs executing on additional host machines to process multicast data messages. The method receives a multicast group report from a data compute node (DCN) that executes on the first host, sends a summarized multicast group report indicating multicast groups joined by DCNs executing on the first host to a set of central controllers, receives data based on an aggregated multicast group report from the set of central controllers, and uses the data based on the aggregated multicast group report to configure the MFE to implement the distributed multicast logical router.

公开(公告)号：US10904148B2

公开(公告)日：2021-01-26

申请号：US15918898

申请日：2018-03-12

申请人： NICIRA, INC.

发明人： Jayant Jain ,  Anirban Sengupta ,  Minjal Agarwal ,  Sami Boutros

IPC分类号： H04L12/801 ,  H04L12/721 ,  H04L12/54 ,  H04L12/70 ,  G06F9/455

摘要： A method for a hypervisor to implement flow-based local egress in a multisite datacenter is disclosed. The method comprises: determining whether a first data packet of a first data flow has been received. If the first data packet has been received, then the hypervisor determines a MAC address of a first local gateway in a first site of a multisite datacenter that communicated the first data packet, and stores the MAC address of the first local gateway and a 5-tuple for the first data flow. Upon determining that a response for the first data flow has been received, the hypervisor determines whether the response includes the MAC address of the first local gateway. If the response includes a MAC address of another local gateway, then the hypervisor replaces, in the response, the MAC address of another local gateway with the MAC address of the first local gateway.

公开(公告)号：US20200244618A1

公开(公告)日：2020-07-30

申请号：US16847866

申请日：2020-04-14

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Jerome Catrouillet ,  Ankur Kumar Sharma

IPC分类号： H04L29/12 ,  H04L12/46 ,  H04L12/66

摘要： The technology disclosed herein enables remote gateways to quickly re-learn MAC addresses of workloads for a gateway that has taken over for another gateway. In a particular embodiment, a method provides determining that a backup gateway should begin handling communications exchanged with one or more workloads of an active gateway for a logical network. The method further provides transferring a control message to one or more remote gateways in communication with the backup gateway. The control message instructs the remote gateways to change MAC addresses learned from, and associated with, the active gateway to being associated with the backup gateway. The method also provides, in the backup gateway, receiving network communications directed to one or more of the workloads from one or more of the remote gateways.

公开(公告)号：US10523455B2

公开(公告)日：2019-12-31

申请号：US15652199

申请日：2017-07-17

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Sharath Bhat ,  Jerome Catrouillet ,  Subin Cyriac Mathew ,  Alexander Tessmer

IPC分类号： H04L12/16 ,  H04L12/18 ,  H04L12/761 ,  H04L12/721 ,  H04L12/24

摘要： For a managed network implementing at least one logical router having centralized and distributed components, some embodiments provide a method for processing multicast data messages at a first managed forwarding element (MFE) executing on a first host machine that implements a distributed multicast logical router and multiple logical switches logically connected to the logical router in conjunction with a set of additional MFEs executing on additional host machines. The method replicates multicast data messages received from a source data compute node (DCN), operating on the first host machine, that logically connects to a first logical switch of the multiple logical switches. The method replicates the multicast data message to a set of DCNs in the multicast group in the logical network without routing through a centralized local multicast router.

公开(公告)号：US10454758B2

公开(公告)日：2019-10-22

申请号：US15443974

申请日：2017-02-27

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Benjamin C. Basler ,  Ronghua Zhang ,  Jerome Catrouillet

IPC分类号： G01R31/08 ,  G06F11/00 ,  G08C15/00 ,  H04J1/16 ,  H04J3/14 ,  H04L1/00 ,  H04L12/26 ,  H04L12/24 ,  H04L12/761 ,  H04L29/12 ,  H04L12/46 ,  H04L12/713 ,  H04L12/707 ,  H04L12/703 ,  H04L29/14

摘要： Some embodiments provide a method for providing redundancy and fast convergence for modules operating in a network. The method configures modules to use a same anycast inner IP address, anycast MAC address, and to associate with a same anycast VTEP IP address. In some embodiments, the modules are operating in an active-active mode and all nodes running modules advertise the anycast VTEP IP addresses with equal local preference. In some embodiments, modules are operating in active-standby mode and the node running the active module advertises the anycast VTEP IP address with higher local preference.

公开(公告)号：US20190306036A1

公开(公告)日：2019-10-03

申请号：US15937621

申请日：2018-03-27

申请人： Nicira, Inc.

发明人： Sami Boutros ,  Stephen Tan ,  Rahul Mishra ,  Kantesh Mundaragi ,  Jayant Jain ,  Akhila Naveen

IPC分类号： H04L12/26 ,  H04L12/24

摘要： Some embodiments provide a method for detecting a failure of a layer 2 (L2) bump-in-the-wire service at a device. In some embodiments, the device sends heartbeat signals to a second device connected to L2 service nodes in order to detect failure of the L2 service (e.g., a failure of all the service nodes). In some embodiments, the heartbeat signals are unidirectional heartbeat signals (e.g., a unidirectional bidirectional-forwarding-detection (BFD) session) sent from each device to the other. The heartbeat signals, in some embodiments, use a broadcast MAC address in order to reach the current active L2 service node in the case of a failover (i.e., an active service node failing and a standby service node becoming the new active service node). The unidirectional heartbeat signals are also used, in some embodiments, to decrease the time between a failover and data messages being forwarded to the new active service node.