公开(公告)号：US09092274B2

公开(公告)日：2015-07-28

申请号：US13313534

申请日：2011-12-07

Applicant: Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

Inventor： Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

IPC: G06F15/16 ,  G06F9/54 ,  G06F9/455

CPC classification number: G06F9/54 ,  G06F9/45558 ,  G06F2009/45595

Abstract: An approach is provided in which a hardware accelerated bridge executing on a network adapter receives an ingress data packet. The data packet includes a destination MAC address that corresponds to a virtual machine, which interfaces to a software bridge executing on a hypervisor. The hardware accelerated bridge identifies a software bridge table entry that includes the destination MAC address and a virtual function identifier, which identifies a virtual function corresponding to the software bridge. In turn, the hardware accelerated bridge sends the data packet from the hardware accelerated bridge to the software bridge through the identified virtual function.

Abstract translation: 提供了一种方法，其中在网络适配器上执行的硬件加速桥接收入入数据分组。 数据包包括与虚拟机相对应的目的地MAC地址，该目的MAC地址与在管理程序上执行的软件桥接口相连接。 硬件加速桥标识一个包含目标MAC地址和虚拟功能标识符的软件桥表项，它标识与软件桥相对应的虚拟功能。 反过来，硬件加速网桥通过识别的虚拟功能将数据包从硬件加速桥发送到软件桥。

公开(公告)号：US08954704B2

公开(公告)日：2015-02-10

申请号：US13209253

申请日：2011-08-12

Applicant: Omar Cardona ,  Vinit Jain ,  Jayakrishna Kidambi ,  Renato J. Recio

Inventor： Omar Cardona ,  Vinit Jain ,  Jayakrishna Kidambi ,  Renato J. Recio

IPC: G06F12/00 ,  G06F12/02

CPC classification number: G06F12/0284 ,  Y02D10/13

Abstract: An approach is provided which a system selects a first virtual function from a plurality of virtual functions executing on a network adapter that includes a memory area. Next, the system allocates, in the memory area, a memory corresponding to the first virtual function. The system then stores one or more translation entries in the allocated memory partition, which are utilized to send data traversing through the first virtual function. As such, the system sends, utilizing one or more of the translation entries, the data packets from the network adapter to one or more destinations. In turn, the system dynamically resizes the memory partition based upon an amount of the memory partition that is utilized to store the one or more translation entries.

Abstract translation: 提供了一种方法，系统从包括存储区域的网络适配器上执行的多个虚拟功能中选择第一虚拟功能。 接下来，系统在存储器区域中分配与第一虚拟功能相对应的存储器。 然后，系统将一个或多个转换条目存储在所分配的存储器分区中，用于发送穿过第一虚拟功能的数据。 因此，系统利用一个或多个转换条目将来自网络适配器的数据分组发送到一个或多个目的地。 反过来，系统基于用于存储一个或多个翻译条目的存储器分区的量来动态地调整存储器分区的大小。

公开(公告)号：US08819211B2

公开(公告)日：2014-08-26

申请号：US13556769

申请日：2012-07-24

Applicant: Katherine Barabash ,  Rami Cohen ,  Vinit Jain ,  Renato J. Recio ,  Benny Rochwerger

Inventor： Katherine Barabash ,  Rami Cohen ,  Vinit Jain ,  Renato J. Recio ,  Benny Rochwerger

IPC: G06F15/173

CPC classification number: H04L41/0893 ,  H04L63/20

Abstract: According to one embodiment of the present disclosure, an approach is provided in which a policy server receives a request for a policy from a requestor. The policy server identifies an initiating virtual machine; the initial virtual machine's corresponding virtual network; and a destination virtual machine. Next, a policy corresponding to sending data from the first virtual machine to the second virtual machine is selected. The policy includes one or more logical references to the virtual network and does not include a physical reference to a physical entity located on a physical network. In turn, a physical path translation corresponding to the selected policy is identified and sent to the requestor.

Abstract translation: 根据本公开的一个实施例，提供了一种方法，其中策略服务器从请求者接收对策略的请求。 策略服务器识别启动虚拟机; 初始虚拟机的对应虚拟网络; 和目标虚拟机。 接下来，选择对应于从第一虚拟机向第二虚拟机发送数据的策略。 策略包括对虚拟网络的一个或多个逻辑引用，并且不包括对位于物理网络上的物理实体的物理引用。 反过来，识别对应于所选策略的物理路径转换并将其发送到请求者。

公开(公告)号：US20130152075A1

公开(公告)日：2013-06-13

申请号：US13313534

申请日：2011-12-07

Applicant: Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

Inventor： Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

IPC: G06F9/455

CPC classification number: G06F9/54 ,  G06F9/45558 ,  G06F2009/45595

Abstract: An approach is provided in which a hardware accelerated bridge executing on a network adapter receives an ingress data packet. The data packet includes a destination MAC address that corresponds to a virtual machine, which interfaces to a software bridge executing on a hypervisor. The hardware accelerated bridge identifies a software bridge table entry that includes the destination MAC address and a virtual function identifier, which identifies a virtual function corresponding to the software bridge. In turn, the hardware accelerated bridge sends the data packet from the hardware accelerated bridge to the software bridge through the identified virtual function.

Abstract translation: 提供了一种方法，其中在网络适配器上执行的硬件加速桥接收入入数据分组。 数据包包括与虚拟机相对应的目的地MAC地址，该目的MAC地址与在管理程序上执行的软件桥接口相连接。 硬件加速桥标识一个包含目标MAC地址和虚拟功能标识符的软件桥表项，它标识与软件桥相对应的虚拟功能。 反过来，硬件加速网桥通过识别的虚拟功能将数据包从硬件加速桥发送到软件桥。

公开(公告)号：US08448189B2

公开(公告)日：2013-05-21

申请号：US12819502

申请日：2010-06-21

Applicant: Dolapo Martin Falola ,  Vinit Jain ,  Shannon Marie MacAlpine ,  Shawn Patrick Mullen ,  James Stanley Tesauro

Inventor： Dolapo Martin Falola ,  Vinit Jain ,  Shannon Marie MacAlpine ,  Shawn Patrick Mullen ,  James Stanley Tesauro

IPC: G06F9/44 ,  G06F11/30 ,  G06F11/00 ,  G06F17/30

CPC classification number: H04L63/1416 ,  H04L2463/146

Abstract: A method, apparatus and computer instructions for handling intrusions. A tracer packet is sent back to an intruder causing the intrusion in response to receiving notification of an intrusion from a particular node in a network data processing system. Nodes in the network data processing system are notified of the tracer packet. Identification of the node is stored for use in tracing a route of the tracer packet through the data processing system in response to receiving a message from a node indicating receipt of the tracer packet.

Abstract translation: 一种用于处理入侵的方法，装置和计算机指令。 响应于接收到来自网络数据处理系统中的特定节点的入侵的通知，跟踪器分组被发送回入侵者，导致入侵。 网络数据处理系统中的节点通知跟踪分组。 响应于从指示接收到示踪器分组的节点接收到消息，节点的标识被存储用于通过数据处理系统跟踪跟踪分组的路由。

公开(公告)号：US20130083690A1

公开(公告)日：2013-04-04

申请号：US13252649

申请日：2011-10-04

Applicant: Omar Cardona ,  Vinit Jain ,  Rakesh Sharma ,  Renato J. Recio

Inventor： Omar Cardona ,  Vinit Jain ,  Rakesh Sharma ,  Renato J. Recio

IPC: H04L12/56 ,  H04L12/28

CPC classification number: H04L12/28 ,  G06F9/44 ,  G06F9/45558 ,  G06F9/4856 ,  G06F9/5077 ,  G06F2009/4557 ,  H04L29/00 ,  H04L69/12 ,  H04L69/32

Abstract: An approach is provided in which a discovery system receives a migration request to move a virtual machine that executes on a first system. The discovery system identifies a first network adapter corresponding to the first system, and identifies hardware state data used by the first network adapter to process data packets generated by the virtual machine. In turn, the discovery system identifies a second network adapter that is compatible with a native format of the hardware state data, and migrates the virtual machine to a second system corresponding to the identified second network adapter.

公开(公告)号：US20130034109A1

公开(公告)日：2013-02-07

申请号：US13560515

申请日：2012-07-27

Applicant: Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

Inventor： Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

IPC: H04L12/56

CPC classification number: H04L49/70 ,  H04L12/4633

Abstract: An approach is provided in which a data traffic module executing on a network interface card receives a data packet initiated by a first virtual machine with a destination at a second virtual machine. The data traffic module identifies one or more physical path translations corresponding to a logical connectivity that is independent of physical topology constraints of a physical network. In turn, the data traffic module encapsulates the data packet with the one or more physical path translations and sends the encapsulated data packet to the second virtual machine over the physical network.

公开(公告)号：US20130034094A1

公开(公告)日：2013-02-07

申请号：US13204211

申请日：2011-08-05

Applicant: Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

Inventor： Omar Cardona ,  Vinit Jain ,  Renato J. Recio ,  Rakesh Sharma

IPC: H04L12/50

CPC classification number: H04L49/70

Abstract: An approach is provided in which a hypervisor provisions switch resources on a network interface card, which includes a virtual switch and a physical port. The hypervisor invokes a switch control module on a virtual machine, which provides control information to one or more of the switch resources. In turn, one or more of the switch resources utilize the control information to direct data packets between a source virtual machine and a destination virtual machine over one or more virtual networks that are independent of physical topology constraints of a physical network.

Abstract translation: 提供了一种方法，其中管理程序规定在包括虚拟交换机和物理端口的网络接口卡上的交换机资源。 虚拟机管理程序调用虚拟机上的交换机控制模块，该模块向一个或多个交换机资源提供控制信息。 反过来，交换机资源中的一个或多个利用控制信息来在独立于物理网络的物理拓扑约束的一个或多个虚拟网络上引导源虚拟机和目的地虚拟机之间的数据分组。

公开(公告)号：US20120204148A1

公开(公告)日：2012-08-09

申请号：US13451339

申请日：2012-04-19

Applicant: Dean Joseph Burdick ,  David Jones Craft ,  Eric Philip Fried ,  Vinit Jain ,  Lance Warren Russell ,  Marc Joel Stephenson

Inventor： Dean Joseph Burdick ,  David Jones Craft ,  Eric Philip Fried ,  Vinit Jain ,  Lance Warren Russell ,  Marc Joel Stephenson

IPC: G06F9/44 ,  G06F9/46

CPC classification number: G06F9/485

Abstract: A computer implemented method, apparatus, and computer usable program code for managing a software partition in logical partitioned data processing system. A virtual root process is created for the software partition, wherein the virtual root process functions as a root process for the software partition. The set of child processes is re-parented to the virtual root process in response to termination of a process having a set of child processes.

Abstract translation: 一种用于管理逻辑分区数据处理系统中的软件分区的计算机实现的方法，装置和计算机可用程序代码。 为软件分区创建虚拟根进程，其中虚拟根进程用作软件分区的根进程。 响应于具有一组子进程的进程的终止，该组子进程被重新生成到虚拟根进程。

公开(公告)号：US07933976B2

公开(公告)日：2011-04-26

申请号：US11923783

申请日：2007-10-25

Applicant: Perinkulam I. Ganesh ,  Vinit Jain ,  Lance Warren Russell

Inventor： Perinkulam I. Ganesh ,  Vinit Jain ,  Lance Warren Russell

IPC: G06F15/177

CPC classification number: G06F9/4856 ,  G06F9/5077

Abstract: Exemplary embodiments provide a computer implemented method, apparatus, and computer-usable program code for moving a software partition from an origination network file system client data processing system to a destination network file system client data processing system. Responsive to receiving a request to perform a checkpoint operation on a software partition, network file system related mount information for the software partition is gathered. Determined ports of a network are unblocked. Unwritten data on the origination network file system client data processing system is synchronized with a remote network file system server. The network is re-blocked. A checkpoint file is generated and stored. The checkpoint file is sent to the destination network file system data processing system.

Abstract translation: 示例性实施例提供了一种用于将软件分区从始发网络文件系统客户端数据处理系统移动到目的地网络文件系统客户端数据处理系统的计算机实现的方法，装置和计算机可用程序代码。 响应于接收到对软件分区执行检查点操作的请求，收集了用于软件分区的网络文件系统相关的安装信息。 网络的确定端口被解除阻塞。 起始网络文件系统客户端数据处理系统的未写入数据与远程网络文件系统服务器同步。 网络被重新阻止。 生成并存储检查点文件。 检查点文件被发送到目标网络文件系统数据处理系统。