| 发明名称 | Providing services to virtual overlay network traffic | ||
| 摘要 | According to one embodiment, a system includes an overlay network device which includes an interface adapted for electrically communicating with a virtual overlay network (VON) gateway, logic adapted for receiving a plurality of packets from the VON gateway, logic adapted for determining whether the plurality of packets comprise an overlay header, logic adapted for de-encapsulating inner packets of packets comprising an overlay header, logic adapted for performing services on the plurality of packets or the de-encapsulated inner packets, and logic adapted for encapsulating the serviced inner packets or the serviced packets with an overlay header to be switched to a destination address in a virtual network and sending the encapsulated packets to the VON gateway or logic adapted for sending the serviced packets to the VON gateway without encapsulating the packets with an overlay header to be switched to a destination address in a non-virtual network. | ||
| 申请公布号 | US9106508(B2) | 申请公布日期 | 2015.08.11 |
| 申请号 | US201213460558 | 申请日期 | 2012.04.30 |
| 申请人 | International Business Machines Corporation | 发明人 | Banavalikar Bhalachandra G.;Kamble Keshav G.;Leu Dar-Ren |
| 分类号 | H04L12/28;H04L12/56;H04L12/701;H04L29/06;H04L12/715;H04L12/46 | 主分类号 | H04L12/28 |
| 代理机构 | Zilka-Kotab, PC | 代理人 | Zilka-Kotab, PC |
| 主权项 | 1. A system, comprising: a processor and logic integrated with and/or executable by the processor, the logic configured to apply one or more Access Control Lists (ACLs) to network traffic to direct certain packets to an overlay network device for performing services thereon, wherein each ACL specifies at least one characteristic of a packet that dictates that at least one service is to be performed on any packets corresponding to the at least one characteristic; the overlay network device, comprising: an interface configured to electrically communicate with a virtual overlay network (VON) gateway;and a processor and logic integrated with and/or executable by the processor, the logic being configured to: receive a plurality of packets from the VON gateway;determine whether the plurality of packets comprise an overlay header;terminate a tunnel and de-capsulate inner packets of packets comprising the overlay header;perform services on the plurality of packets or the de-encapsulated inner packets;originate a tunnel and encapsulate the serviced inner packets or the serviced packets with an overlay header when the serviced inner packets or the serviced packets are to be switched to a destination address in a virtual network and send the encapsulated packets to the VON gateway; andsend the serviced packets to the VON gateway without encapsulating the packets with the overlay header when the serviced packets are to be switched to the destination address in a non-virtual network,wherein the at least one characteristic of the packet includes a port on which the network traffic is received. | ||
| 地址 | Armonk NY US | ||