Method and apparatus for implementing and managing virtual switches

US 9,590,919 B2
Filed: 01/09/2015
Issued: 03/07/2017
Est. Priority Date: 04/01/2009
Status: Active Grant

First Claim

Patent Images

1. A method for implementing a logical forwarding element, that connects a plurality of machines, on a physical forwarding element that also implements other logical forwarding elements for connecting other pluralities of machines, the method comprising:

mapping an incoming packet, from a machine in the plurality of machines connected by the logical forwarding element, to a logical context that identifies the logical forwarding element;

making a logical forwarding decision on the packet, in order to identify a logical egress port of the logical forwarding element;

mapping the logical egress port to a physical next hop address; and

forwarding the packet out of a physical egress port based on the physical next hop address.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In general, the present invention relates to a virtual platform in which one or more distributed virtual switches can be created for use in virtual networking. According to some aspects, the distributed virtual switch according to the invention provides the ability for virtual and physical machines to more readily, securely, and efficiently communicate with each other even if they are not located on the same physical host and/or in the same subnet or VLAN. According other aspects, the distributed virtual switches of the invention can support integration with traditional IP networks and support sophisticated IP technologies including NAT functionality, stateful firewalling, and notifying the IP network of workload migration. According to further aspects, the virtual platform of the invention creates one or more distributed virtual switches which may be allocated to a tenant, application, or other entity requiring isolation and/or independent configuration state. According to still further aspects, the virtual platform of the invention manages and/or uses VLAN or tunnels (e.g, GRE) to create a distributed virtual switch for a network while working with existing switches and routers in the network. The present invention finds utility in both enterprise networks, datacenters and other facilities.

261 Citations

20 Claims

1. A method for implementing a logical forwarding element, that connects a plurality of machines, on a physical forwarding element that also implements other logical forwarding elements for connecting other pluralities of machines, the method comprising:
- mapping an incoming packet, from a machine in the plurality of machines connected by the logical forwarding element, to a logical context that identifies the logical forwarding element;
  
  making a logical forwarding decision on the packet, in order to identify a logical egress port of the logical forwarding element;
  
  mapping the logical egress port to a physical next hop address; and
  
  forwarding the packet out of a physical egress port based on the physical next hop address.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1, wherein the logical forwarding element is also implemented on a plurality of additional physical forwarding elements.
  - 3. The method of claim 1, wherein the logical forwarding decision comprises a L2 lookup for a logical switch.
  - 4. The method of claim 1, wherein the logical forwarding decision comprises a sequence of lookups for a logical L3 router.
  - 5. The method of claim 1, wherein forwarding the packet comprises encapsulating the packet to be transferred to the physical next hop address.
  - 6. The method of claim 1, wherein the physical forwarding element receives state to perform the mapping operations, logical forwarding decision, and forwarding operation from a network hypervisor.
  - 7. The method of claim 6, wherein the network hypervisor provides state for implementing the logical forwarding element to a plurality of physical forwarding elements.
  - 8. The method of claim 1, wherein the logical forwarding element exclusively handles communication between the plurality of machines while maintaining isolation between the plurality of machines and other pluralities of machines.
  - 9. The method of claim 1, wherein the plurality of machines comprises a plurality of virtual machines.
  - 10. The method of claim 1, wherein the logical forwarding element is associated with a particular data center tenant.

11. A non-transitory machine readable medium storing a program which when executed by at least one processing unit implements a logical forwarding element, that connects a plurality of machines, on a physical forwarding element that also implements other logical forwarding elements for connecting other pluralities of machines, the program comprising sets of instructions for:
- mapping an incoming packet, from a machine in the plurality of machines connected by the logical forwarding element, to a logical context that identifies the logical forwarding element;
  
  making a logical forwarding decision on the packet, in order to identify a logical egress port of the logical forwarding element;
  
  mapping the logical egress port to a physical next hop address; and
  
  forwarding the packet out of a physical egress port based on the physical next hop address.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 12. The non-transitory machine readable medium of claim 11, wherein the logical forwarding element is also implemented on a plurality of additional physical forwarding elements.
  - 13. The non-transitory machine readable medium of claim 11, wherein the logical forwarding decision comprises a L2 lookup for a logical switch.
  - 14. The non-transitory machine readable medium of claim 11, wherein the logical forwarding decision comprises a sequence of lookups for a logical L3 router.
  - 15. The non-transitory machine readable medium of claim 11, wherein the set of instructions for forwarding the packet comprises a set of instructions for encapsulating the packet to be transferred to the physical next hop address.
  - 16. The non-transitory machine readable medium of claim 11, wherein the physical forwarding element receives state to perform the mapping operations, logical forwarding decision, and forwarding operation from a network hypervisor.
  - 17. The non-transitory machine readable medium of claim 16, wherein the network hypervisor provides state for implementing the logical forwarding element to a plurality of physical forwarding elements.
  - 18. The non-transitory machine readable medium of claim 11, wherein the logical forwarding element exclusively handles communication between the plurality of machines while maintaining isolation between the plurality of machines and other pluralities of machines.
  - 19. The non-transitory machine readable medium of claim 11, wherein the plurality of machines comprises a plurality of virtual machines.
  - 20. The non-transitory machine readable medium of claim 11, wherein the logical forwarding element is associated with a particular data center tenant.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Nicira Incorporated (Broadcom, Inc.)
Original Assignee
Nicira Incorporated (Broadcom, Inc.)
Inventors
Casado, Martin, Ingram, Paul, Amidon, Keith E., Balland, Peter J. III, Koponen, Teemu, Pfaff, Benjamin L., Pettit, Justin, Gross, Jesse E. IV, Wendlandt, Daniel J.
Primary Examiner(s)
Clawson, Stephen J

Application Number

US14/594,043
Publication Number

US 20150180801A1
Time in Patent Office

788 Days
Field of Search

370/409
US Class Current

1/1
CPC Class Codes

G06F 2009/45595   Network integration; Enabli...

G06F 9/45558   Hypervisor-specific managem...

H04L 12/4633   Interconnection of networks...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 41/0893   Assignment of logical group...

H04L 41/0895   Configuration of virtualise...

H04L 41/0896   Bandwidth or capacity manag...

H04L 41/0897   by horizontal or vertical s...

H04L 41/12   Discovery or management of ...

H04L 41/122   of virtualised topologies, ...

H04L 45/54   Organization of routing tables

H04L 45/66   Layer 2 routing, e.g. in Et...

H04L 49/00   Packet switching elements

H04L 49/15   Interconnection of switchin...

H04L 49/25   Routing or path finding in ...

H04L 49/70   Virtual switches

H04L 61/256   NAT traversal

Method and apparatus for implementing and managing virtual switches

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

261 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method and apparatus for implementing and managing virtual switches

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

261 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links