Interconnecting members of a virtual network
First Claim
1. One or more computer-readable memory having computer-executable instructions embodied thereon that, when executed, perform a method for managing distribution of data packets between a plurality of members of a virtual network (V-net) that are isolated from other machines on a network, the method comprising:
- providing a first V-net that comprises the plurality of members running, in part, within at least one data center, wherein the plurality of members include an originating network adapter and a destination network adapter;
detecting the originating network adapter attempting to transmit one or more data packets to the destination network adapter, wherein the one or more data packets are structured with a header that includes a target identifier of the destination network adapter;
performing a resolution process that comprises;
(a) accessing a forwarding table that is associated with the first V-net; and
(b) discovering a locator of a destination-side VM switch, listed in the forwarding table, that corresponds to the target identifier;
encapsulating the one or more data packets to include the locator of destination-side-VM-switch locator within an expanded header; and
directing the one or more encapsulated data packets from a source-side VM switch to the destination-side VM switch using the destination-side-VM-switch locator within the expanded header.
3 Assignments
0 Petitions
Accused Products
Abstract
Computerized methods, systems, and computer-readable media are provided for establishing and managing a virtual network (V-net) and virtual machine (VM) switches that enable protected and isolated interconnections between members of the V-net. The V-net members include an originating network adapter that generates data packets addressed to a destination network adapter. Upon detecting data-packet generation, a source-side VM switch accesses a forwarding table associated with the V-net, ascertains a destination-side, VM-switch locator that corresponds to an identifier of the destination network adapter, and modifies the data packets to include the identifier. The forwarding table represents a mapping between the members of the V-net and VM switches located on respective nodes within the data center. In operation, the mapping enforces communication policies that govern data-packet traffic. Upon receiving the data packets, the destination-side VM switch restores the data packets and forwards them to the destination network adapter.
-
Citations
11 Claims
-
1. One or more computer-readable memory having computer-executable instructions embodied thereon that, when executed, perform a method for managing distribution of data packets between a plurality of members of a virtual network (V-net) that are isolated from other machines on a network, the method comprising:
-
providing a first V-net that comprises the plurality of members running, in part, within at least one data center, wherein the plurality of members include an originating network adapter and a destination network adapter; detecting the originating network adapter attempting to transmit one or more data packets to the destination network adapter, wherein the one or more data packets are structured with a header that includes a target identifier of the destination network adapter; performing a resolution process that comprises; (a) accessing a forwarding table that is associated with the first V-net; and (b) discovering a locator of a destination-side VM switch, listed in the forwarding table, that corresponds to the target identifier; encapsulating the one or more data packets to include the locator of destination-side-VM-switch locator within an expanded header; and directing the one or more encapsulated data packets from a source-side VM switch to the destination-side VM switch using the destination-side-VM-switch locator within the expanded header. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
Specification