End-to-end monitoring of overlay networks providing virtualized network services
First Claim
1. A method comprising:
- injecting, by a network device external to a services complex of a data center having a plurality of service nodes, a first plurality of probe packets along service chains provided by the services complex,wherein each of the service chains comprises a different ordered combination of network services applied to packets received by the service nodes, and wherein each of the first plurality of probe packets includes a first timestamp indicating a time at which the network device sent the respective probe packet, and overlay encapsulation with header information relating to a transport tunnel and tenant identification associated with a tenant enterprise network or a tenant public network configured for forwarding packets of a particular customer of the data center;
by one or more of the plurality of service nodes in the services complex, modifying each of the first plurality of probe packets by inserting a respective second timestamp indicating a respective time at which the respective service node processed the respective one of the first plurality of probe packets and applying the network services to the modified probe packets according to the respective service chains;
aggregating, by an analytics device, separate from the plurality of service nodes, probe report information received from each of the plurality of service nodes to determine one or more path monitoring metrics associated with service level agreements of customers of the data center;
identifying, by the analytics device and based on the probe report information, a component in a service node of the plurality of service nodes that is not receiving probe packets along one of the service chains;
in response to identifying the component, configuring a probe packet injector at a virtual router component of the service node having the component; and
injecting, by the probe packet injector of the virtual router component, a second plurality of probe packets for forwarding, by the service node having the component, along a remaining portion of the service chain that includes the component.
1 Assignment
0 Petitions
Accused Products
Abstract
In one example, a network device external to a services complex injects a plurality of probe packets along service chains provided by the services complex, wherein each of the plurality of probe packets includes a first timestamp indicating a time at which the network device sent the respective probe packet. Each of a plurality of service nodes in the services complex modifies each of the plurality of probe packets by inserting a respective second timestamp indicating a respective time at which the respective service node processed the respective one of the plurality of probe packets. An analytics device aggregates probe report information received from each of the plurality of service nodes to determine one or more path monitoring metrics.
-
Citations
13 Claims
-
1. A method comprising:
-
injecting, by a network device external to a services complex of a data center having a plurality of service nodes, a first plurality of probe packets along service chains provided by the services complex, wherein each of the service chains comprises a different ordered combination of network services applied to packets received by the service nodes, and wherein each of the first plurality of probe packets includes a first timestamp indicating a time at which the network device sent the respective probe packet, and overlay encapsulation with header information relating to a transport tunnel and tenant identification associated with a tenant enterprise network or a tenant public network configured for forwarding packets of a particular customer of the data center; by one or more of the plurality of service nodes in the services complex, modifying each of the first plurality of probe packets by inserting a respective second timestamp indicating a respective time at which the respective service node processed the respective one of the first plurality of probe packets and applying the network services to the modified probe packets according to the respective service chains; aggregating, by an analytics device, separate from the plurality of service nodes, probe report information received from each of the plurality of service nodes to determine one or more path monitoring metrics associated with service level agreements of customers of the data center; identifying, by the analytics device and based on the probe report information, a component in a service node of the plurality of service nodes that is not receiving probe packets along one of the service chains; in response to identifying the component, configuring a probe packet injector at a virtual router component of the service node having the component; and injecting, by the probe packet injector of the virtual router component, a second plurality of probe packets for forwarding, by the service node having the component, along a remaining portion of the service chain that includes the component. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A system comprising:
-
a services complex of a data center, the services complex comprising a plurality of service nodes; a border router external to the services complex, wherein the border router is configured to inject a first plurality of probe packets along service chains provided by the service complex, wherein each of the service chains comprises a different ordered combination of network services applied to packets received by the service nodes, wherein each of the first plurality of probe packets includes a first timestamp indicating a time at which the border router sent the respective probe packet and overlay encapsulation with header information relating to a transport tunnel and tenant identification associated with a tenant enterprise network or a tenant public network configured for forwarding packets of a particular customer of the data center; wherein one or more of the plurality of service nodes is configured to modify each of the first plurality of probe packets by inserting a respective second timestamp indicating a respective time at which the respective service node processed the respective one of the first plurality of probe packets, and apply the network services to the modified probe packets according to the respective service chains; and a central controller device configured to aggregate probe report information received from each of the plurality of service nodes to determine one or more path monitoring metrics associated with service level agreements of customers of the data center, identify, based on the probe report information, a component in a service node of the plurality of service nodes that is not receiving probe packets along one of the service chains, and, in response to identifying the component, configure a probe packet injector at a virtual router component of the service node having the component, wherein the probe packet injector of the virtual router component injects a second plurality of probe packets for forwarding, by the service node having the component, along a remaining portion of the service chain that includes the component.
-
Specification