公开(公告)号：US12126598B2

公开(公告)日：2024-10-22

申请号：US17715993

申请日：2022-04-08

申请人： VMware LLC

发明人： Yong Wang ,  Awan Kumar Sharma ,  Abhishek Goliya ,  Xinhua Hong ,  Bhargav Puvvada

IPC分类号： H04L12/66 ,  H04L9/40 ,  H04L61/2592

CPC分类号： H04L63/0272 ,  H04L12/66 ,  H04L61/2592 ,  H04L63/0485

摘要： Described herein are systems, methods, and software to manage secure tunnel communications in multi-edge gateway computing environments. In one implementation, a control system identifies an edge gateway from a plurality of edge gateways to support a private network tunnel. The control system further identifies addressing attributes associated with communications directed over the private network tunnel and configures the plurality of edge gateways to forward packets associated with the addressing attributes to the identified edge gateway, wherein the edge gateway can process and forward the packets over the private network tunnel.

公开(公告)号：US12088512B2

公开(公告)日：2024-09-10

申请号：US17208608

申请日：2021-03-22

申请人： VMware LLC

发明人： Jia Yu ,  Yong Wang ,  Xinhua Hong ,  Wenyi Jiang ,  Guolin Yang ,  Dexiang Wang

IPC分类号： H04L49/9057 ,  H04L12/66 ,  H04L45/64 ,  H04L69/166 ,  H04L69/22

CPC分类号： H04L49/9057 ,  H04L12/66 ,  H04L45/64 ,  H04L69/166 ,  H04L69/22 ,  H04L2212/00

摘要： In some embodiments, a method fragments a first packet into a plurality of fragments when a length of an encapsulated first packet is larger than a maximum transmission unit size. For each fragment in the plurality of fragments, fragmentation information is generated. The method encapsulates each fragment in the plurality of fragments with an outer header to form a plurality of encapsulated packets. The respective fragmentation information for each fragment is inserted in a portion of the outer header that is processed by endpoints of an overlay tunnel and not processed by a device along a path of the overlay tunnel. The plurality of encapsulated packets are sent via the overlay tunnel.

公开(公告)号：US11962564B2

公开(公告)日：2024-04-16

申请号：US17672190

申请日：2022-02-15

申请人： VMware LLC

发明人： Yong Wang ,  Xinhua Hong ,  Kai-Wei Fan

IPC分类号： H04L61/256 ,  G06F9/455 ,  H04L45/24 ,  H04L61/103 ,  H04L61/2517 ,  H04L101/622

CPC分类号： H04L61/256 ,  G06F9/45558 ,  H04L45/24 ,  H04L61/103 ,  H04L61/2517 ,  G06F2009/45595 ,  H04L2101/622

摘要： Some embodiments provide a method for forwarding data messages at multiple edge nodes of a logical network that process data messages between a logical network and an external network. At a particular one of the edge nodes, the method receives a data message sent from a source machine in the logical network. The method performs network address translation to translate a source network address of the data message corresponding to the source machine into an anycast network address that is shared among the edge nodes. The method sends the data message with the anycast network address as a source network address to the external network. Each edge node receives data messages from source machines in the logical network and translates the source addresses of the data messages into the same anycast public network address prior to sending the data messages to the external network.

公开(公告)号：US12120032B2

公开(公告)日：2024-10-15

申请号：US17971591

申请日：2022-10-22

申请人： VMware LLC

发明人： Yong Wang ,  Xinhua Hong ,  Sreeram Kumar Ravinoothala ,  Dexiang Wang

IPC分类号： H04L47/24 ,  H04L12/66

CPC分类号： H04L47/24 ,  H04L12/66

摘要： Some embodiments provide, for a gateway datapath that executes on a gateway device to implement tenant logical routers for multiple different tenant logical networks and process traffic between the tenant logical networks and an external network, a method for managing QoS for the plurality of tenant logical networks. The method receives a data message for a particular tenant logical network. The method executes a set of processing stages to process the data message. The set of processing stages includes a processing stage for a particular tenant logical router of the particular tenant logical network. As part of the processing stage for the particular tenant logical router, the method uses a QoS data structure specific to the particular tenant logical router to determine whether to allow the data message. The gateway device stores at least one separate QoS data structure for each of a set of the tenant logical routers.

公开(公告)号：US11895010B2

公开(公告)日：2024-02-06

申请号：US17362968

申请日：2021-06-29

申请人： VMware LLC

发明人： Meenakshi Sundaram Selvaraj ,  Anil Lohiya ,  Vijayalaxmi Basavaraj ,  Xinhua Hong ,  Senthilkumar Karunakaran ,  Stephen Tan

IPC分类号： H04L45/16 ,  H04L45/44

CPC分类号： H04L45/16 ,  H04L45/44

摘要： A network system that uses a cluster of edge nodes to send and receive multicast traffic is provided. The network system is a network virtualization environment that includes one or more distributed routers, each distributed router implemented by virtualization software running on one or more host machines. The network system also includes a cluster of edge nodes for sending data from the one or more distributed routers to one or more uplink/upstream physical routers outside of a datacenter and for receiving data from the physical routers to the distributed routers. One of the edge nodes is a designated edge node that queries for membership information for one or more multicast groups to be received by at least two edge nodes of the cluster of edge nodes. The cluster of edge nodes forwards multicast traffic to and from the distributed routers according to the received membership information.