MEASUREMENT BASED ROUTING THROUGH MULTIPLE PUBLIC CLOUDS

US 20190104051A1
Filed: 05/04/2018
Published: 04/04/2019
Est. Priority Date: 10/02/2017
Status: Active Grant

First Claim

Patent Images

1. A method for establishing a virtual network for an entity over a plurality of public cloud datacenters of a plurality of public cloud providers, the method comprising:

deploying first and second sets of forwarding elements in first and second multi-tenant public cloud datacenters operated by first and second public cloud providers;

configuring a set of measurement agents deployed in the first and second public cloud datacenters to obtain measurements regarding connections between forwarding elements in the first and second sets;

based on the obtained measurements, defining virtual-network routes through the first and second set forwarding elements; and

distributing said routes to the first and second sets of forwarding elements to configure these elements to implement the virtual network.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Some embodiments establish for an entity a virtual network over several public clouds of several public cloud providers and/or in several regions. In some embodiments, the virtual network is an overlay network that spans across several public clouds to interconnect one or more private networks (e.g., networks within branches, divisions, departments of the entity or their associated datacenters), mobile users, and SaaS (Software as a Service) provider machines, and other web applications of the entity. The virtual network in some embodiments can be configured to optimize the routing of the entity'"'"'s data messages to their destinations for best end-to-end performance, reliability and security, while trying to minimize the routing of this traffic through the Internet. Also, the virtual network in some embodiments can be configured to optimize the layer 4 processing of the data message flows passing through the network.

95 Citations

View as Search Results

19 Claims

1. A method for establishing a virtual network for an entity over a plurality of public cloud datacenters of a plurality of public cloud providers, the method comprising:
- deploying first and second sets of forwarding elements in first and second multi-tenant public cloud datacenters operated by first and second public cloud providers;
  
  configuring a set of measurement agents deployed in the first and second public cloud datacenters to obtain measurements regarding connections between forwarding elements in the first and second sets;
  
  based on the obtained measurements, defining virtual-network routes through the first and second set forwarding elements; and
  
  distributing said routes to the first and second sets of forwarding elements to configure these elements to implement the virtual network.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method of claim 1, wherein the measurements include measurements that quantify data message throughput speeds of the connections.
  - 3. The method of claim 1, wherein the measurements include measurements that quantify data message loss values or delay values of the connections.
  - 4. The method of claim 1, wherein the entity and the virtual network are a first entity and a first virtual network, the method further comprising defining virtual-network routes through at least a subset of the first forwarding element set and at least a subset of the second forwarding element set in order to define a second virtual network for a second entity.
  - 5. The method of claim 1 further comprising providing a set of controllers to aggregate said measurements, and based on the aggregated measurements, to define the virtual-network routes.
  - 6. The method of claim 5, wherein the virtual-network routes are overlay routes established by encapsulating data messages traversing these routes with encapsulation headers that store network addresses for ingress and egress forwarding elements for entering and exiting the virtual network and network addresses of next hop forwarding elements for identifying next hop destinations for traversing the virtual network.
  - 7. The method of claim 6, wherein at least a subset of the forwarding elements are also configured to implement virtual networks for other entities, wherein the encapsulation headers also store an entity identifier value that identifies the entity associated with the data message.
  - 8. The method of claim 1, wherein the virtual network is a virtual wide area network (WAN) that connects machines at multiple different machine locations of the entity, said locations including at least two of an office location, a datacenter location, a remote device location, and a SaaS (Software as a Service) provider location.
  - 9. The method of claim 1, wherein the first and second datacenters are in different regions.
  - 10. The method of claim 9, wherein said different regions are different cities, different states, or different countries.
  - 11. The method of claim 1, wherein the measurement agents obtain measurements by sending pinging messages to each other in order to measure signal latency.
  - 12. The method of claim 1, wherein the measurement agents obtain measurements by sending pinging messages to each other in order to measure signal drop rates.

13. A system for establishing a virtual network for an entity over a plurality of public cloud datacenters in a plurality of regions, the apparatus comprising:
- a first set of forwarding elements in a first multi-tenant public cloud datacenter in a first region;
  
  a second set of forwarding elements in a second multi-tenant public cloud datacenter in a second region different than the first region;
  
  a set of measurement agents deployed in the public clouds to obtain measurements regarding connections between forwarding elements in the first and second sets; and
  
  a set of controllers to aggregate said measurements and to define virtual-network routes through the first and second set forwarding elements, said routes distributed to the first and second sets of forwarding elements to configure these elements to implement the virtual network.
- View Dependent Claims (14, 15, 16, 17, 18)
- - 14. The system of claim 13, wherein the measurements include measurements that quantify at least one of data message throughput speeds, data loss rates, and data delay values of the connections.
  - 15. The system of claim 13, wherein the virtual-network routes are overlay routes established by encapsulating data messages traversing these routes with encapsulation headers that store network addresses for ingress and egress forwarding elements for entering and exiting the virtual network and network addresses of next hop forwarding elements for identifying next hop destinations for traversing the virtual network.
  - 16. The system of claim 15, wherein at least a subset of the forwarding elements are also configured to implement virtual networks for other entities, wherein the encapsulation headers also store an entity identifier value that identifies the entity associated with the data message.
  - 17. The system of claim 13, wherein the virtual network is a virtual wide area network (WAN) that connects machines at multiple different machine locations of the entity, said locations including at least two of an office location, a datacenter location, a remote device location, and a SaaS (Software as a Service) provider location.
  - 18. The system of claim 13, wherein the measurement agents obtain measurements by sending pinging messages to each other.

19. A method of routing data message flows through a virtual network defined over a plurality of public cloud datacenters for an entity, the method comprising:
- at each public cloud datacenter,deploying at least router for forwarding data messages to routers of other MFNs in other public cloud datacenters;
  
  deploying at least one measurement agent to obtain measurements regarding network connections between public cloud datacenters, and to provide the measurements to a controller set that (i) receives other measurements from measurement agents in other public cloud datacenters and (ii) based on the collected measurements, generates to generate route tables for the routers;
  
  providing at least one route table from the controller set to the router of the public cloud datacenter to use to forward data messages through the virtual network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Vmware LLC (Broadcom, Inc.)
Original Assignee
Nicira Incorporated (Broadcom, Inc.)
Inventors
Cidon, Israel, Dar, Chen, Venugopal, Prashanth, Zohar, Eyal, Markuze, Alex, Bergman, Aran

Granted Patent

US 10,666,460 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

H04L 12/14   Charging , metering or bill...

H04L 12/1403   Architecture for metering, ...

H04L 12/1428   Invoice generation, e.g. cu...

H04L 12/2854   Wide area networks, e.g. pu...

H04L 12/2859   Point-to-point connection b...

H04L 12/4633   Interconnection of networks...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 2101/35   containing special prefixes

H04L 2212/00   Encapsulation of packets

H04L 41/046   comprising network manageme...

H04L 41/0803   Configuration setting

H04L 41/0895   Configuration of virtualise...

H04L 41/40   using virtualisation of net...

H04L 43/08   Monitoring or testing based...

H04L 43/0829   Packet loss

H04L 43/0852   Delays

H04L 43/0888   Throughput

H04L 45/04   Interdomain routing, e.g. h...

H04L 45/12   Shortest path evaluation

H04L 45/14   Routing performance; Theore...

H04L 45/64 : using an overlay routing layer

H04L 45/74 : Address processing for routing

H04L 45/745 : Address table lookup; Addre...

H04L 61/25 : of the same type

H04L 61/2514 : between local and global IP...

H04L 61/255 : Maintenance or indexing of ...

H04L 61/4511 : using domain name system [DNS]

H04L 63/0245 : Filtering by information in...

H04L 63/0263 : Rule management

H04L 63/0272 : Virtual private networks

H04L 63/0281 : Proxies

H04L 63/20 : for managing network securi...

H04L 67/10 : in which an application is ...

H04M 15/00 : Arrangements for metering, ...

H04M 15/51 : for resellers, retailers or...

View All

MEASUREMENT BASED ROUTING THROUGH MULTIPLE PUBLIC CLOUDS

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

95 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

MEASUREMENT BASED ROUTING THROUGH MULTIPLE PUBLIC CLOUDS

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

95 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links