Intelligent use of peering in public cloud

US 10,491,466 B1
Filed: 08/24/2018
Issued: 11/26/2019
Est. Priority Date: 08/24/2018
Status: Active Grant

First Claim

Patent Images

1. A method for configuring a plurality of managed forwarding elements (MFEs) in a plurality of cloud-provider virtual networks (CPVNs) to make routing decisions that efficiently use a peered transit CPVN and peering with other CPVNs in the plurality of CPVNs, the MFEs implementing a logical forwarding element of a tenant logical network spanning the transit CPVN and the plurality of CPVNs, the method comprising:

at a set of controller computers,receiving an identification of peering relationships between CPVNs in the plurality of CPVNs;

generating configuration data for configuring each particular MFE (1) to forward data messages received at the particular MFE using a peering between a source CPVN including a source compute node in the tenant logical network and a destination CPVN including a destination compute node when possible and (2) to forward data messages received at the particular MFE to a transit gateway device in a transit CPVN when it is not possible to use a peering between the source and destination CPVNs, the transit gateway device implementing a logical routing element of the tenant logical network; and

sending the configuration data for each particular MFE to a corresponding configuration agent executing in a CPVN in which the particular MFE executes to configure the particular MFE.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Some embodiments provide a method and system for configuring a plurality of managed forwarding elements (MFEs) in a plurality of cloud-provider virtual networks (CPVNs) to make routing decisions that efficiently use a peered transit CPVN and peering with other CPVNs in the plurality of CPVNs. In some embodiments, a controller set receives an identification of peering relationships between CPVNs in the plurality of CPVNs and generates configuration data for configuring each MFE. The configuration data is used to configure the MFE to forward data messages received at the MFE using a peering between a source CPVN and a destination CPVN when possible and to forward data messages received at the MFE to a transit gateway device in a transit CPVN when it is not possible to use a peering between the source and destination CPVNs.

129 Citations

18 Claims

1. A method for configuring a plurality of managed forwarding elements (MFEs) in a plurality of cloud-provider virtual networks (CPVNs) to make routing decisions that efficiently use a peered transit CPVN and peering with other CPVNs in the plurality of CPVNs, the MFEs implementing a logical forwarding element of a tenant logical network spanning the transit CPVN and the plurality of CPVNs, the method comprising:
- at a set of controller computers,receiving an identification of peering relationships between CPVNs in the plurality of CPVNs;
  
  generating configuration data for configuring each particular MFE (1) to forward data messages received at the particular MFE using a peering between a source CPVN including a source compute node in the tenant logical network and a destination CPVN including a destination compute node when possible and (2) to forward data messages received at the particular MFE to a transit gateway device in a transit CPVN when it is not possible to use a peering between the source and destination CPVNs, the transit gateway device implementing a logical routing element of the tenant logical network; and
  
  sending the configuration data for each particular MFE to a corresponding configuration agent executing in a CPVN in which the particular MFE executes to configure the particular MFE.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1, wherein it is possible to forward a data message received at each particular MFE when (1) a peering exists between a source and destination CPVN and (2) no service provided by the transit gateway device is required for the data message.
  - 3. The method of claim 1, wherein the configuration data for configuring a particular MFE comprises a list of internet protocol (IP) addresses and prefixes for which using peering is impossible.
  - 4. The method of claim 3, wherein the configuration data is used to remove routes to the IP addresses and prefixes included in the list, so that a default route to the transit gateway device is used to route data messages matching the IP addresses and prefixes included in the list.
  - 5. The method of claim 1, wherein the tenant logical network is implemented as an overlay logical network and the IP addresses assigned to compute nodes in the tenant logical network executing in the plurality of CPVNs are identical to the IP addresses assigned to the compute nodes by a cloud-provider to implement the CPVNs.
  - 6. The method of claim 5, wherein the compute nodes are connected to an MFE implementing a hybrid logical switching element that performs switching for both a CPVN and the tenant logical network.
  - 7. The method of claim 1, wherein using the peering between a source CPVN and a destination CPVN comprises sending a data message to a forwarding element of the source CPVN without encapsulation.
  - 8. The method of claim 7, wherein the forwarding element of the source CPVN encapsulates the data message before forwarding the data message to the destination CPVN.
  - 9. The method of claim 1, wherein forwarding a data message received at a specific MFE to a transit gateway device comprises encapsulating the data message with an address associated with the transit gateway device.

10. A system comprising:
- a set of controller computers; and
  
  a plurality of managed forwarding elements (MFEs) in a plurality of cloud-provider virtual networks (CPVNs) comprising a transit CPVN peered with each CPVN and a set of other CPVNs peered with other CPVNs in the plurality of CPVNs, the MFEs implementing a logical forwarding element of a tenant logical network spanning the transit CPVN and the plurality of CPVNs;
  
  the set of controller computers comprising a non-transitory machine readable medium storing a program comprising sets of instructions for;
  
  receiving an identification of peering relationships between CPVNs in the plurality of CPVNs;
  
  generating configuration data for configuring each particular MFE (1) to forward data messages received at the particular MFE using a peering between a source CPVN including a source compute node in the tenant logical network and a destination CPVN including a destination compute node when possible and (2) to forward data messages received at the particular MFE to a transit gateway device in a transit CPVN when it is not possible to use a peering between the source and destination CPVNs, the transit gateway device implementing a logical routing element of the tenant logical network; and
  
  sending the configuration data for each particular MFE to a corresponding configuration agent executing in a CPVN in which the particular MFE executes to configure the particular MFE.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
- - 11. The system of claim 10, wherein it is possible to forward a data message received at each particular MFE when (1) a peering exists between a source and destination CPVN and (2) no service provided by the transit gateway device is required for the data message.
  - 12. The system of claim 10, wherein the configuration data for configuring a particular MFE comprises a list of internet protocol (IP) addresses and prefixes for which using peering is impossible.
  - 13. The system of claim 12, wherein the configuration data is used to remove routes to the IP addresses and prefixes included in the list, so that a default route to the transit gateway device is used to route data messages matching the IP addresses and prefixes included in the list.
  - 14. The system of claim 10, wherein the tenant logical network is implemented as an overlay logical network and the IP addresses assigned to compute nodes in the tenant logical network executing in the plurality of CPVNs are identical to the IP addresses assigned to the compute nodes by a cloud-provider to implement the CPVNs.
  - 15. The system of claim 14, wherein the compute nodes are connected to an MFE implementing a hybrid logical switching element that performs switching for both a CPVN and the tenant logical network.
  - 16. The system of claim 10, wherein using the peering between a source CPVN and a destination CPVN comprises sending a data message to a forwarding element of the source CPVN without encapsulation.
  - 17. The system of claim 16, wherein the forwarding element of the source CPVN encapsulates the data message before forwarding the data message to the destination CPVN.
  - 18. The system of claim 10, wherein forwarding a data message received at a specific MFE to a transit gateway device comprises encapsulating the data message with an address associated with the transit gateway device.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Vmware LLC (Broadcom, Inc.)
Original Assignee
VMware, Inc. (Broadcom, Inc.)
Inventors
Hira, Mukesh, Wang, Su, Jain, Rahul, Chandrashekhar, Ganesan, Siroya, Sandeep
Primary Examiner(s)
Holland, Jenee

Application Number

US16/112,599
Time in Patent Office

459 Days
Field of Search
US Class Current
CPC Class Codes

H04L 12/4633   Interconnection of networks...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 12/66   Arrangements for connecting...

H04L 41/046   comprising network manageme...

H04L 41/0803   Configuration setting

H04L 41/0806   for initial configuration o...

H04L 41/0895   Configuration of virtualise...

H04L 41/12   Discovery or management of ...

H04L 45/64   using an overlay routing layer

H04L 61/2514   between local and global IP...

H04L 61/256   NAT traversal

H04L 61/2592   using tunnelling or encapsu...

H04L 61/5007   Internet protocol [IP] addr...

H04L 67/10   in which an application is ...

Intelligent use of peering in public cloud

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

129 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Intelligent use of peering in public cloud

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

129 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links