Virtual Network Flow Monitoring
First Claim
1. A system for end-to-end virtual network flow monitoring in a virtual datacenter having a plurality of virtual machines (VMs), said system comprising:
- a memory area associated with the virtual datacenter, said memory area storing a flow pattern including at least a source address and a destination address, the flow pattern being received from a user in a request to perform virtual network flow monitoring; and
a processor programmed to;
distribute the flow pattern stored in the memory area to a plurality of applications in the virtual datacenter, each of the plurality of applications managing a plurality of VMs as part of at least one virtual network;
aggregate, by the virtual datacenter from the plurality of applications, context data for one or more data packets routed by the plurality of applications and matching the flow pattern; and
determine a role associated with the user; and
filter, by the virtual datacenter based on the determined role, the aggregated context data for presentation to the user.
2 Assignments
0 Petitions
Accused Products
Abstract
Embodiments perform end-to-end virtual network flow monitoring in a virtual datacenter and provide differentiated views to users based on user role. A target flow pattern describing data packets of interest is distributed to a plurality of applications managing VMs in the virtual datacenter, such as hosts, virtual gateways, and other virtual network applications. Each of the applications monitors data packets routed by the application by comparing the data packets to the flow pattern and selectively collecting context data describing the data packets. The context data collected by the applications is aggregated at a remote server for analysis and reporting.
308 Citations
20 Claims
-
1. A system for end-to-end virtual network flow monitoring in a virtual datacenter having a plurality of virtual machines (VMs), said system comprising:
-
a memory area associated with the virtual datacenter, said memory area storing a flow pattern including at least a source address and a destination address, the flow pattern being received from a user in a request to perform virtual network flow monitoring; and a processor programmed to; distribute the flow pattern stored in the memory area to a plurality of applications in the virtual datacenter, each of the plurality of applications managing a plurality of VMs as part of at least one virtual network; aggregate, by the virtual datacenter from the plurality of applications, context data for one or more data packets routed by the plurality of applications and matching the flow pattern; and determine a role associated with the user; and filter, by the virtual datacenter based on the determined role, the aggregated context data for presentation to the user. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method comprising:
for each of a plurality of computing devices associated with one or more virtual networks in a virtual datacenter, the virtual datacenter comprising a plurality of virtual machines (VMs); accessing, by the computing device, a flow pattern providing a source address and a destination address; receiving a data packet from the one or more virtual networks; comparing, by the computing device, the received data packet to the accessed flow pattern; and based on the comparison, collecting data describing the received data packet and transmitting the collected data for analysis to a reporting device accessible by each of the plurality of computing devices associated with the one or more virtual networks in the virtual datacenter. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
16. One or more computer-readable storage media storing computer-executable components for performing end-to-end virtual network flow monitoring in a virtual datacenter having a plurality of virtual machine (VMs), the computer-executable components comprising:
-
a plurality of host components that each, when executed, cause at least one processor to; receive a data packet; compare the received data packet to a flow pattern defined by a user, the flow pattern including at least a source address and a destination address; and based on the comparison, collect context data describing the received data packet; and a management component in communication with each of the plurality of host components, the management component, when executed, causing at least one processor to; aggregate the collected context data from one or more of the plurality of host components; determine a role associated with the user; and filter, based on the determined role, the aggregated, collected context data for presentation to the user. - View Dependent Claims (17, 18, 19, 20)
-
Specification