公开(公告)号：US20230123237A1

公开(公告)日：2023-04-20

申请号：US17976788

申请日：2022-10-29

申请人： VMware, Inc.

发明人： Raja Kommula ,  Constantine Polychronopoulos ,  Thayumanavan Sridhar ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou ,  Jeremy Tidemann

IPC分类号： H04L41/12 ,  G06F9/455 ,  H04L45/00 ,  H04L49/90 ,  H04L41/082 ,  G06F9/54 ,  H04L41/0893 ,  H04L41/0896

摘要： Some embodiments of the invention provide a novel method of performing network slice-based operations on a data message at a hardware forwarding element (HFE) in a network. For a received data message flow, the method has the HFE identify a network slice associated with the received data message flow. This network slice in some embodiments is associated with a set of operations to be performed on the data message by several network elements, including one or more machines executing on one or more computers in the network. Once the network slice is identified, the method has the HFE process the data message flow based on a rule that applies to data messages associated with the identified slice.

公开(公告)号：US11522791B2

公开(公告)日：2022-12-06

申请号：US17352258

申请日：2021-06-19

申请人： VMware, Inc.

发明人： Raja Kommula ,  Constantine Polychronopoulos ,  Thayumanavan Sridhar ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou ,  Jeremy Tidemann

IPC分类号： H04L45/24 ,  H04L45/00

摘要： Some embodiments provide a novel method for adjusting a path for a packet flow from a source machine to a destination machine in a network. The method of some embodiments identifies a condition at a first forwarding element along a first path traversed by the packet flow through the network. The first path traverses through a hardware, second forwarding element before the first forwarding element. In some embodiments, the second forwarding element includes a programmable data plane circuit. The method, in some embodiments, uses an application programming interface (API) of the programmable data plane circuit to provide a set of parameters to the data plane circuit that cause the data plane circuit to forego selecting the first path to forward the packets of the packet flow to the destination machine and instead to select a second path, not traversing the first forwarding element, to the destination machine.

公开(公告)号：US11240113B2

公开(公告)日：2022-02-01

申请号：US16568332

申请日：2019-09-12

申请人： VMware, Inc.

发明人： Raja Kommula ,  Constantine Polychronopoulos ,  Thayumanavan Sridhar ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou ,  Jeremy Tidemann

IPC分类号： H04L12/24 ,  G06F9/455 ,  H04L12/721 ,  H04L12/861 ,  G06F9/54

摘要： Some embodiments of the invention provide a novel method of performing network slice-based operations on a data message at a hardware forwarding element (HFE) in a network. For a received data message flow, the method has the HFE identify a network slice associated with the received data message flow. This network slice in some embodiments is associated with a set of operations to be performed on the data message by several network elements, including one or more machines executing on one or more computers in the network. Once the network slice is identified, the method has the HFE process the data message flow based on a rule that applies to data messages associated with the identified slice.

公开(公告)号：US11140218B2

公开(公告)日：2021-10-05

申请号：US16668485

申请日：2019-10-30

申请人： VMware, Inc.

发明人： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc-Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou ,  Mingjie Zhao

IPC分类号： H04L29/08 ,  H04L29/06 ,  H04L12/851 ,  H04L12/859

摘要： Some embodiments of the invention provide novel methods for performing services on data messages passing through a network connecting one or more datacenters, such as software defined datacenters (SDDCs). The method of some embodiments uses service containers executing on host computers to perform different chains (e.g., ordered sequences) of services on different data message flows. For a data message of a particular data message flow that is received or generated at a host computer, the method in some embodiments uses a service classifier executing on the host computer to identify a service chain that specifies several services to perform on the data message. For each service in the identified service chain, the service classifier identifies a service container for performing the service. The service classifier then forwards the data message to a service forwarding element to forward the data message through the service containers identified for the identified service chain. The service classifier and service forwarding element are implemented in some embodiments as processes that are defined as hooks in the virtual interface endpoints (e.g., virtual Ethernet ports) of the host computer's operating system (e.g., Linux operating system) over which the service containers execute.

公开(公告)号：US20210135998A1

公开(公告)日：2021-05-06

申请号：US17144652

申请日：2021-01-08

申请人： VMware, Inc.

发明人： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC分类号： H04L12/851 ,  H04L12/813 ,  H04L12/855 ,  H04L12/863 ,  H04L12/947 ,  H04L12/935 ,  H04L29/06

摘要： A switch in a slice-based network can be used to enforce quality of service (“QoS”). Agents can run in the switches, such as in the core of each switch. The switches can sort ingress packets into slice-specific ingress queues in a slice-based pool. The slices can have different QoS prioritizations. A switch-wide policing algorithm can move the slice-specific packets to egress interfaces. Then, one or more user-defined egress policing algorithms can prioritize which packets are sent out into the network first based on slice classifications.

公开(公告)号：US10979314B2

公开(公告)日：2021-04-13

申请号：US16256668

申请日：2019-01-24

申请人： VMWARE, INC.

发明人： Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Raja Kommula ,  Georgios Oikonomou

IPC分类号： H04L12/24 ,  G06F9/455

摘要： Examples can include an optimizer that dynamically determines where to place virtual network functions for a slice in a distributed Telco cloud network. The optimizer can determine a slice path that complies with a service level agreement and balances network load. The virtual network functions of the slice can be provisioned at clouds identified by the optimal slice path. In one example, performance metrics are normalized, and tenant-selected weights can be applied. This can allow the optimizer to prioritize particular SLA attributes in choosing an optimal slice path.

公开(公告)号：US20210067421A1

公开(公告)日：2021-03-04

申请号：US16722795

申请日：2019-12-20

申请人： VMWARE, INC.

发明人： Robert Kidd ,  Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Georgios Oikonomou ,  Mingjie Zhao

IPC分类号： H04L12/24 ,  H04W28/24 ,  H04L12/927 ,  H04L12/723 ,  H04L12/933 ,  H04W76/12 ,  H04W28/20

摘要： In a slice-based network, slice multiplexers can be used to anchor inter-cloud tunnels across different clouds in a slice path. The slice multiplexers can dynamically change a total allocated bandwidth of an outer tunnel and reconfigure relative slice bandwidths of inner tunnels. This can result in an optimized bandwidth allocation that enforces slice priorities, maintains required SLA performance levels, and minimizes total allocated bandwidth on the network connection. The dynamic changes can be based on slice priority levels, total number of slices, and historical slice throughput.

公开(公告)号：US20200275358A1

公开(公告)日：2020-08-27

申请号：US16443812

申请日：2019-06-17

申请人： VMware, Inc.

发明人： Marc-Andre Bordeleau ,  Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Edward Choh ,  Ojas Gupta ,  Georgios Oikonomou ,  Robert Kidd

IPC分类号： H04W48/18 ,  H04L12/26 ,  H04L29/06 ,  G06F9/455

摘要： Some embodiments provide a method for a network slice selector. From an electronic device, the method receives a connection initiation message for a connection between the electronic device and a network domain. The method exchanges a set of connection initiation messages with the electronic device to set up the connection. The method receives a data message belonging to the connection from the electronic device. The method selects one of multiple network slices to which the electronic device has access as the network slice for the connection based on analysis of the received data message. The method forwards the data message and subsequent data messages belonging to the connection onto the selected network slice to be delivered to the network domain.

公开(公告)号：US11588733B2

公开(公告)日：2023-02-21

申请号：US16411923

申请日：2019-05-14

申请人： VMWARE, INC.

发明人： Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Marc Andre Bordeleau ,  Edward Choh ,  Ojas Gupta ,  Robert Kidd ,  Georgios Oikonomou

IPC分类号： H04L45/74 ,  H04L45/30 ,  H04L45/7453 ,  H04L45/16 ,  H04L45/00 ,  H04L45/24 ,  H04L45/302 ,  H04W40/24

摘要： In a slice-based network, switches can be programmed to perform routing functions based on a slice identifier. The switch can receive a packet and determine a slice identifier for the packet based on packet header information. The switch can use the slice identifier to determine a next hop. Using the slice identifier with a multi-path table, the switch can select an egress interface for sending the packet to the next hop. The multi-path table can ensure that traffic for a slice stays on the same interface link to the next hop, even when a link aggregation group (“LAG”) is used for creation of a virtual channel across multiple interfaces or ports.

公开(公告)号：US11483762B2

公开(公告)日：2022-10-25

申请号：US16443810

申请日：2019-06-17

申请人： VMware, Inc.

发明人： Marc-Andre Bordeleau ,  Raja Kommula ,  Jeremy Tidemann ,  Constantine Polychronopoulos ,  Edward Choh ,  Ojas Gupta ,  Georgios Oikonomou ,  Robert Kidd

IPC分类号： H04W48/18 ,  H04W64/00 ,  G06F9/455 ,  H04L41/046

摘要： Some embodiments provide a method for establishing multiple virtual service networks over multiple datacenters. The method configures, for each virtual service network of the plurality of virtual service networks, a set of machines distributed across the datacenters to implement an ordered set of network services for the virtual service network. The method configures multiple service network selectors executing within the datacenters to receive a data message, select one of the virtual service networks for the data message based on analysis of contents of the data message, determine a location within the datacenters for a machine implementing a first network service of the ordered set of network services for the selected virtual service network, and transmit the data message to the machine implementing the first network service.