Multiple top-of-rack (TOR) switches connected to a network virtualization device
US-12086625-B2 · Sep 10, 2024 · US
Distributed virtual switch architecture for a hybrid cloud
US9203784B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-9203784-B2 |
| Application number | US-201213454528-A |
| Country | US |
| Kind code | B2 |
| Filing date | Apr 24, 2012 |
| Priority date | Apr 24, 2012 |
| Publication date | Dec 1, 2015 |
| Grant date | Dec 1, 2015 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
In one embodiment, a secure transport layer tunnel may be established over a public network between a first cloud gateway in a private cloud and a second cloud gateway in a public cloud, where the secure transport layer tunnel is configured to provide a link layer network extension between the private cloud and the public cloud. In addition, a cloud virtual Ethernet module (cVEM) may be executed (instantiated) within the public cloud, where the cVEM is configured to switch inter-virtual-machine (VM) traffic between the private cloud and one or more private application VMs in the public cloud connected to the cVEM.
First claim
Opening claim text (preview).
What is claimed is: 1. A method, comprising: establishing a secure transport layer tunnel over a public network between a first cloud gateway in a private cloud and a second cloud gateway in a public cloud, the secure transport layer tunnel configured to provide a link layer network extension between the private cloud and the public cloud that creates a secure link layer network overlay infrastructure at a cloud data center on demand, wherein the secure link layer network overlay infrastructure allows for same customer network polices to be applied to the cloud resources without requiring application re-architecting; executing a cloud virtual Ethernet module (cVEM) within the public cloud, the cVEM configured to switch inter-virtual-machine (VM) traffic between the private cloud and one or more private application VMs in the public cloud connected to the cVEM; managing the one or more private application VMs in the public cloud by a virtual supervisor module (VSM) in the private cloud as though the cVEM and VMs in the public cloud were within the private cloud; and migrating an instance of a particular private application VM between a virtual Ethernet module (VEM) of the private cloud and the cVEM of the public cloud on demand. 2. The method as in claim 1 , further comprising: managing a virtual network interface card (vNIC) of each of the one or more private application VMs in the public cloud as a virtual Ethernet interfaces (veth) on the VSM. 3. The method as in claim 2 , further comprising: configuring a particular veth using a port-profile applicable to an instance of a particular private application VM when instantiated within the public cloud or within the private cloud. 4. The method as in claim 1 , further comprising: instantiating the first cloud gateway and second cloud gateway by a cloud manager within the public cloud. 5. The method as in claim 1 , further comprising: monitoring health of the first and second cloud gateways, the one or more private application VMs, the cVEM, and the secure transport layer tunnel by a cloud manager within the public cloud. 6. The method as in claim 1 , further comprising: embedding the cVEM within the second cloud gateway. 7. The method as in claim 1 , further comprising: attaching the first cloud gateway as a VM to one of either a switch of the private cloud or to a virtual Ethernet module (VEM) of the private cloud that is attached to the switch. 8. A system, comprising: a first cloud gateway device in a private cloud; a second cloud gateway device in a public cloud; a secure transport layer tunnel over a public network between the first cloud gateway device in the private cloud and the second cloud gateway device in the public cloud, the secure transport layer tunnel configured to provide a link layer network extension between the private cloud and the public cloud that creates a secure link layer network overlay infrastructure at a cloud data center on demand, wherein the secure link layer network overlay infrastructure allows for same customer network polices to be applied to the cloud resources without requiring application re-architecting; a cloud virtual Ethernet module (cVEM) executed within the public cloud; and one or more private application virtual machines (VMs) in the public cloud connected to the cVEM, wherein the cVEM is configured to switch inter-VM traffic between the private cloud and the one or more private application VMs; a virtual supervisor module (VSM) in the private cloud configured to manage the one or more private application VMs in the public cloud as though the cVEM and VMs in the public cloud were within the private cloud; and a cloud manager within the public cloud and configured to migrate an instance of a particular private application VM between a virtual Ethernet module (VEM) of the private cloud and the cVEM of the public cloud on demand. 9. The system as in claim 8 , wherein the VSM is further configured to manage a virtual network interface card (vNIC) of each of the one or more private application VMs in the public cloud as a virtual Ethernet interfaces (veth) on the VSM. 10. The system as in claim 9 , wherein the VSM is further configured to configure a particular veth using a port-profile applicable to an instance of a particular private application VM when instantiated within the public cloud or within the private cloud. 11. The system as in claim 8 , further comprising: a cloud manager within the private cloud and configured to instantiate the first cloud gateway and second cloud gateway device. 12. The system as in claim 8 , further comprising: a cloud manager within the private cloud and configured to monitor health of the first and second cloud gateway devices, the one or more private application VMs, the cVEM, and the secure transport layer tunnel. 13. The system as in claim 8 , wherein the cVEM is embedded within the second cloud gateway device. 14. The system as in claim 8 , further comprising: a switch of the private cloud, wherein the first cloud gateway device is attached as a VM to one of either the switch or to a virtual Ethernet module (VEM) of the private cloud that is attached to the switch. 15. A tangible, non-transitory, computer-readable media having software encoded thereon, the software when executed by a processor operable to: establish a secure transport layer tunnel over a public network between a first cloud gateway in a private cloud and a second cloud gateway in a public cloud, the secure transport layer tunnel configured to provide a link layer network extension between the private cloud and the public cloud that creates a secure link layer network overlay infrastructure at a cloud data center on demand, wherein the secure link layer network overlay infrastructure allows for same customer network polices to be applied to the cloud resources without requiring application re-architecting; and instantiate a cloud virtual Ethernet module (cVEM) within the public cloud, the cVEM configured to switch inter-virtual-machine (VM) traffic between the private cloud and one or more private application VMs in the public cloud connected to the cVEM; and migrate an instance of a particular private application VM between a virtual Ethernet module (VEM) of the private cloud and the cVEM of the public cloud, wherein the particular private application VM is managed by the virtual supervisor module (VSM) of the private cloud as though the cVEM and VMs in the public cloud were within the private cloud.
Assignees
Inventors
Classifications
Virtual LANs; Emulation of LANs · CPC title
Single bridge functionality, e.g. connection of two networks over a single bridge · CPC title
Interconnection of networks using encapsulation techniques, e.g. tunneling · CPC title
- H04L49/70Primary
Virtual switches · CPC title
LAN interconnection over a bridge based backbone · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US9203784B2 cover?
- In one embodiment, a secure transport layer tunnel may be established over a public network between a first cloud gateway in a private cloud and a second cloud gateway in a public cloud, where the secure transport layer tunnel is configured to provide a link layer network extension between the private cloud and the public cloud. In addition, a cloud virtual Ethernet module (cVEM) may be execute…
- Who is the assignee on this patent?
- Chang David W, Patra Abhijit, Bagepalli Nagaraj A, and 2 more
- What technology area does this patent fall under?
- Primary CPC classification H04L49/70. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Dec 01 2015 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).