Virtual distributed bridging

US 10,511,458 B2
Filed: 09/30/2014
Issued: 12/17/2019
Est. Priority Date: 09/30/2014
Status: Active Grant

First Claim

Patent Images

1. A method for identifying destination tunnel endpoints for outgoing packets, the method comprising:

receiving a first packet from a distributed bridging module executing at a same host machine as a source tunnel endpoint in an overlay logical network, the first packet comprising a tunnel address of the source tunnel endpoint, a source media access control (MAC) address and a destination MAC address;

associating the destination MAC address with the tunnel address in a bridge identification table as a MAC address assigned to the distributed bridging module for bridging; and

using the bridge identification table to identify a destination tunnel endpoint when subsequently transmitting a second packet that requires bridging and that has a particular source MAC address that (i) is the same as the destination MAC address of the first packet and (ii) is associated with the destination tunnel endpoint in the bridge identification table.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Virtualization software that includes a VDRB (virtual distributed router/bridge) module for performing L3 routing and/or bridging operations is provided. At least some of the VDRBs are configured as VDBs (virtual distributed bridge) for performing bridging operations between different network segments in a distributed manner. The bridging tasks of a network are partitioned among several VDBs of the network based on MAC addresses. MAC addresses of VMs or other types of network nodes belonging to an overlay logical network are partitioned into several shards, each shard of MAC addresses assigned to a VDB in the network. Each VDB assigned a shard of MAC addresses performs bridging when it receives a packet bearing a MAC address belonging to its assigned shard. A VDB does not perform bridging on packets that do not have MAC address that falls within the VDB'"'"'s shard of MAC addresses.

362 Citations

18 Claims

1. A method for identifying destination tunnel endpoints for outgoing packets, the method comprising:
- receiving a first packet from a distributed bridging module executing at a same host machine as a source tunnel endpoint in an overlay logical network, the first packet comprising a tunnel address of the source tunnel endpoint, a source media access control (MAC) address and a destination MAC address;
  
  associating the destination MAC address with the tunnel address in a bridge identification table as a MAC address assigned to the distributed bridging module for bridging; and
  
  using the bridge identification table to identify a destination tunnel endpoint when subsequently transmitting a second packet that requires bridging and that has a particular source MAC address that (i) is the same as the destination MAC address of the first packet and (ii) is associated with the destination tunnel endpoint in the bridge identification table.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, wherein the source tunnel endpoint is a first source tunnel endpoint, the tunnel address is a first tunnel address, the source MAC address is a first source MAC address, and the destination MAC address is a first destination MAC address, the method further comprising:
    - receiving a third packet from a routing module executing at a same host machine as a second source tunnel endpoint in the overlay logical network, the third packet comprising a second tunnel address of the second source tunnel endpoint, a second source media access control (MAC) address and a second destination MAC address;
      
      associating the second source MAC address with the second source tunnel address in a machine-identification table as a MAC address available at the second source tunnel; and
      
      using the machine identification table to identify a destination tunnel endpoint when subsequently transmitting a fourth packet that does not require bridging and that is destined to the second source MAC address.
  - 3. The method of claim 1, wherein the destination endpoint is operating a distributed bridge between the overlay logical network and a L2 network.
  - 4. The method of claim 1, wherein associating the destination MAC address of the first packet with the tunnel address in the bridge identification table occurs when a source MAC address of the first packet does not belong to the overlay logical network.
  - 5. The method of claim 1, wherein associating the destination MAC address of the first packet with the tunnel address in the bridge identification table occurs when the first packet comprises a flag bit indicating that the first packet has been bridged.
  - 6. The method of claim 1 further comprising recording the source MAC address of the first packet as a MAC address that requires bridging.

7. A computer comprising:
- a set of processing units; and
  
  a non-transitory machine readable medium storing virtualization software for hosting a plurality of data compute nodes (DCNs) and for serving as a tunnel endpoint in an overlay logical network, wherein the virtualization software comprises sets of instruction for;
  
  receiving a first packet from a source tunnel endpoint in the overlay logical network, the packet comprising a tunnel address of the source tunnel endpoint, a source media access control (MAC) address and a destination MAC address;
  
  associating the source MAC address with the tunnel address in a machine-identification first table when the first packet is not a bridged packet;
  
  associating the destination MAC address with the tunnel address in a bridge-identification second table when the first packet is a bridged packet; and
  
  to transmit a second packet from a DCN executing on the computer, using the first table to identify a destination tunnel endpoint when the second packet does not require bridging and using the second table to identify a destination tunnel endpoint when the second packet (i) requires bridging and (ii) originates from a MAC address stored in the second table.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The computer of claim 7, wherein the second packet requires bridging when the source MAC address of the second packet is in the overlay logical network but the destination MAC address of the second packet is not in the overlay logical network.
  - 9. The computer of claim 7, wherein the destination tunnel endpoint of the packet that requires bridging is operating a distributed bridge between the overlay logical network and a L2 network.
  - 10. The computer of claim 7, wherein the virtualization software further comprises a set of instructions for identifying the first packet as a bridged packet when a source MAC address of the first packet does not belong to the overlay logical network.
  - 11. The computer of claim 7, wherein the virtualization software further comprises a set of instructions for identifying the first packet as a bridged packet when the first packet comprises a flag bit indicating that the first packet has been bridged.
  - 12. The computer of claim 7, wherein the virtualization further comprises a set of instructions for recording the source MAC address of the first packet as a MAC address that requires bridging when the first packet is a bridged packet.

13. A non-transitory machine readable medium storing a program for execution by at least one processing unit, the program comprising sets of instructions for:
- receiving a first packet from a distributed bridging module executing at a same host machine as a source tunnel endpoint in an overlay logical network, the first packet comprising a tunnel address of the source tunnel endpoint, a source media access control (MAC) address and a destination MAC address;
  
  associating the destination MAC address with the tunnel address in a bridge identification table as a MAC address assigned to the distributed bridging module for bridging; and
  
  using the bridge identification table to identify a destination tunnel endpoint when subsequently transmitting a second packet that requires bridging and has a particular source MAC address that (i) is the same as the destination MAC address of the first packet and (ii) is associated with the destination tunnel endpoint in the bridge identification table.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The non-transitory machine readable medium of claim 13, wherein the source tunnel endpoint is a first source tunnel endpoint, the tunnel address is a first tunnel address, the source MAC address is a first source MAC address, and the destination MAC address is a first destination MAC address, the method further comprising:
    - receiving a third packet from a routing module executing at a same host machine as a second source tunnel endpoint in the overlay logical network, the third packet comprising a second tunnel address of the second source tunnel endpoint, a second source media access control (MAC) address and a second destination MAC address;
      
      associating the second source MAC address with the second source tunnel address in a machine-identification table as a MAC address available at the second source tunnel; and
      
      using the machine identification table to identify a destination tunnel endpoint when subsequently transmitting a fourth packet that does not require bridging and that is destined to the second source MAC address.
  - 15. The non-transitory machine readable medium of claim 13, wherein the destination endpoint is operating a distributed bridge between the overlay logical network and a L2 network.
  - 16. The non-transitory machine readable medium of claim 13, wherein the set of instructions for associating the destination MAC address of the first packet with the tunnel address in the bridge identification table is executed when a source MAC address of the first packet does not belong to the overlay logical network.
  - 17. The non-transitory machine readable medium of claim 13, wherein the set of instructions for associating the destination MAC address of the first packet with the tunnel address in the bridge identification table is executed when the first packet comprises a flag bit indicating that the first packet has been bridged.
  - 18. The non-transitory machine readable medium of claim 13, wherein the program further comprises a set of instructions for recording the source MAC address of the first packet as a MAC address that requires bridging.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nicira Incorporated (Broadcom, Inc.)
Original Assignee
Nicira Incorporated (Broadcom, Inc.)
Inventors
Subramaniyam, Rahul Korivi, Wang, Howard, Chandrashekhar, Ganesan, Agarwal, Vivek, Singh, Ram Dular
Primary Examiner(s)
Sheikh, Ayaz R
Assistant Examiner(s)
Carpio, Mariela Vidal

Application Number

US14/503,168
Publication Number

US 20160094365A1
Time in Patent Office

1,904 Days
Field of Search

None
US Class Current
CPC Class Codes

H04L 12/4625   Single bridge functionality...

H04L 12/4633   Interconnection of networks...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 2012/4629   using multilayer switching,...

Virtual distributed bridging

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

362 Citations

18 Claims

Specification

Solutions

Use Cases

Quick Links

Virtual distributed bridging

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

362 Citations

18 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links