Seamless hand-off of data traffic in public cloud environments

We claim: 1. A method of activating a virtual machine on a new host, wherein a routing table of an underlay network associates a first Internet protocol (IP) address, of a first tunnel endpoint, with a first network interface that is associated with an old host; associates a second IP address, of a second tunnel endpoint, with a second network interface that is associated with the new host; and associates a third IP address, of the virtual machine, with the first network interface, the method comprising: initiating reprogramming of the routing table to associate the third IP address with the second network interface instead of the first network interface; after initiating the reprogramming, receiving, at the first network interface, a packet having as a destination address the third IP address; encapsulating, by the first tunnel endpoint, the packet with an outer header having as a destination address the second IP address; transmitting, via the underlay network, the encapsulated packet to the second tunnel endpoint, wherein the underlay network routes the encapsulated packet from the first network interface to the second network interface based on the routing table associating the second IP address with the second network interface; decapsulating, by the second tunnel endpoint, the encapsulated packet; and forwarding the packet on the new host to the virtual machine. 2. The method of claim 1 , further comprising, prior to receiving, at the first network interface, the packet: programming a first routing table of a first virtual router, running on the old host, to route packets, having as a destination IP address the third IP address, to the second IP address; and programming a second routing table of a second virtual router running on the new host to route packets having as a destination IP address the third IP address to the virtual machine. 3. The method of claim 2 , further comprising, after the routing table of the underlay network is reprogrammed: reprogramming the first routing table of the first virtual router, running on the old host, to no longer route packets having as a destination IP address the third IP address to the second IP address. 4. The method of claim 1 , further comprising: prior to activating the virtual machine on the new host, establishing a control tunnel between the old host and the new host; and after activating the virtual machine on the new host, transmitting a second packet from the old host to the new host over the control tunnel, wherein the second packet associates the third IP address with the first IP address. 5. The method of claim 4 , wherein establishing the control tunnel between the old host and the new host comprises programming a route table in the underlay network to associate an address of a first local process running on the old host with the first network interface and to associate an address of a second local process running on the new host with the second network interface. 6. The method of claim 1 , further comprising, after the routing table of the underlay network is reprogrammed: receiving, via the underlay network, a second packet at the second network interface, the second packet having as a destination address the third IP address; and forwarding the second packet on the new host to the virtual machine. 7. The method of claim 1 , wherein the third IP address of the virtual machine stays the same prior to and after activating the virtual machine on the new host. 8. A non-transitory computer readable medium comprising instructions that, when executed by one or more processors of a computing system, cause the computing system to perform a method for activating a virtual machine on a new host, wherein a routing table of an underlay network associates a first Internet protocol (IP) address, of a first tunnel endpoint, with a first network interface that is associated with an old host; associates a second IP address, of a second tunnel endpoint, with a second network interface that is associated with the new host; and associates a third IP address, of the virtual machine, with the first network interface, the method comprising: initiating reprogramming of the routing table to associate the third IP address with the second network interface instead of the first network interface; after initiating the reprogramming, receiving, at the first network interface, a packet having as a destination address the third IP address; encapsulating, by the first tunnel endpoint, the packet with an outer header having as a destination address the second IP address; transmitting, via the underlay network, the encapsulated packet to the second tunnel endpoint, wherein the underlay network routes the encapsulated packet from the first network interface to the second network interface based on the routing table associating the second IP address with the second network interface; decapsulating, by the second tunnel endpoint, the encapsulated packet; and forwarding the packet on the new host to the virtual machine. 9. The non-transitory computer readable medium of claim 8 , wherein the method further comprises, prior to receiving, at the first network interface, the packet: programming a first routing table of a first virtual router, running on the old host, to route packets, having as a destination IP address the third IP address, to the second IP address; and programming a second routing table of a second virtual router running on the new host to route packets having as a destination IP address the third IP address to the virtual machine. 10. The non-transitory computer readable medium of claim 9 , wherein the method further comprises, after the routing table of the underlay network is reprogrammed: reprogramming the first routing table of the first virtual router, running on the old host, to no longer route packets having as a destination IP address the third IP address to the second IP address. 11. The non-transitory computer readable medium of claim 8 , wherein the method further comprises: prior to activating the virtual machine on the new host, establishing a control tunnel between the old host and the new host; and after activating the virtual machine on the new host, transmitting a second packet from the old host to the new host over the control tunnel, wherein the second packet associates the third IP address with the first IP address. 12. The non-transitory computer readable medium of claim 11 , wherein establishing the control tunnel between the old host and the new host comprises programming a route table in the underlay network to associate an address of a first local process running on the old host with the first network interface and to associate an address of a second local process running on the new host with the second network interface. 13. The non-transitory computer readable medium of claim 8 , wherein the method further comprises, after the routing table of the underlay network is reprogrammed: receiving, via the underlay network, a second packet at the second network interface, the second packet having as a destination address the third IP address; and forwarding the second packet on the new host to the virtual machine. 14. The non-transitory computer readable medium of claim 8 , wherein the third IP address of the virtual machine stays the same prior to and after activating the virtual machine on the new host. 15. A system comprising one or more processors and a non-transitory computer readable medium, wherein the non-transitory computer readable medium comprises instructions that, when executed by the one or more processors, cause the