Packet communication between logical networks and public cloud service providers native networks using a single network interface and a single routing table
First Claim
1. A method of communicating packets by a data compute node (DCN) hosted on a host machine of a public cloud underlay network, the DCN executing (i) a set of tenant applications connected to a third party provided overlay network, (ii) a set of network manager applications, and (iii) a managed forwarding element (MFE) comprising an overlay network virtual adapter and an underlay network virtual adapter, the method comprising:
- receiving a packet from an application executing on a virtual machine (VW);
when the packet is received from a network manager application and is addressed to an underlay network destination address, sending the packet to the underlay network destination address through a physical network interface card (NIC) of the host without network address translation or encapsulation;
when the packet is received from a tenant application and is addressed to an underlay network destination address, (i) performing source network address translation (SNAT) on the packet to replace a source Internet protocol (IP) address of the packet with an underlay network IP address of the DCN and (ii) sending the packet to the underlay network destination address; and
when the packet is received from a tenant application and is addressed to an overlay destination address, (i) encapsulating the packet with a header of the overlay network and (ii) sending the encapsulated packet to the overlay network destination address through the underlay virtual adapter.
1 Assignment
0 Petitions
Accused Products
Abstract
A data compute node executes (i) a set of tenant applications connected to a third party overlay network, (ii) a set of network manager applications, and (iii) a managed forwarding element that includes a pair of overlay and underlay network virtual adapters. A packet that is received from a network manager application and addressed to an underlay network destination is sent to the underlay network destination address through a physical NIC of the host without network address translation or encapsulation. A packet that is received from a tenant application and addressed to an underlay network destination is subject to SNAT and is sent to the underlay network destination address. A packet that is received from a tenant application and is addressed an overlay destination address is encapsulated with the header of the overlay network and is sent to the overlay network destination address through the underlay virtual adapter.
147 Citations
20 Claims
-
1. A method of communicating packets by a data compute node (DCN) hosted on a host machine of a public cloud underlay network, the DCN executing (i) a set of tenant applications connected to a third party provided overlay network, (ii) a set of network manager applications, and (iii) a managed forwarding element (MFE) comprising an overlay network virtual adapter and an underlay network virtual adapter, the method comprising:
-
receiving a packet from an application executing on a virtual machine (VW); when the packet is received from a network manager application and is addressed to an underlay network destination address, sending the packet to the underlay network destination address through a physical network interface card (NIC) of the host without network address translation or encapsulation; when the packet is received from a tenant application and is addressed to an underlay network destination address, (i) performing source network address translation (SNAT) on the packet to replace a source Internet protocol (IP) address of the packet with an underlay network IP address of the DCN and (ii) sending the packet to the underlay network destination address; and when the packet is received from a tenant application and is addressed to an overlay destination address, (i) encapsulating the packet with a header of the overlay network and (ii) sending the encapsulated packet to the overlay network destination address through the underlay virtual adapter. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A non-transitory computer readable medium storing a program for communicating packets by a data compute node (DCN) hosted on a host machine of a public cloud underlay network, the DCN executing (i) a set of tenant applications connected to a third party provided overlay network, (ii) a set of network manager applications, and (iii) a managed forwarding element (MFE) comprising an overlay network virtual adapter and an underlay network virtual adapter, the program executable by a processing unit, the program comprising sets of instructions for:
-
receiving a packet from an application executing on a virtual machine (VM); when the packet is received from a network manager application and is addressed to an underlay network destination address, sending the packet to the underlay network destination address through a physical network interface card (NIC) of the host without network address translation or encapsulation; when the packet is received from a tenant application and is addressed to an underlay network destination address, (i) performing source network address translation (SNAT) on the packet to replace a source Internet protocol (IP) address of the packet with an underlay network IP address of the DCN and (ii) sending the packet to the underlay network destination address; and when the packet is received from a tenant application and is addressed to an overlay destination address, (i) encapsulating the packet with a header of the overlay network and (ii) sending the encapsulated packet to the overlay network destination address through the underlay virtual adapter. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification