Some embodiments of the invention provide a method for deploying network elements for a set of machines in a set of one or more datacenters. The datacenter set is part of one availability zone in some embodiments. The method receives intent-based API (Application Programming Interface) requests, and parses these API requests to identify a set of network elements to connect and/or perform services for the set of machines. In some embodiments, the API is a hierarchical document that can specify multiple different compute and/or network elements at different levels of compute and/or network element hierarchy. The method performs automated processes to define a virtual private cloud (VPC) to connect the set of machines to a logical network that segregates the set of machines from other machines in the datacenter set. In some embodiments, the set of machines include virtual machines and containers, the VPC is defined with a supervisor cluster namespace, and the API requests are provided as YAML, files.

Some embodiments provide a method for implementing a logical router in a network. The method receives a definition of a logical router for implementation on a set of network elements. The method defines several routing components for the logical router. Each of the defined routing components includes a separate set of routes and separate set of logical interfaces. The method implements the several routing components in the network. In some embodiments, the several routing components include one distributed routing component and several centralized routing components.

In general, techniques are described for providing user nomadicity in wireline broadband networks. A network device positioned in a wireline broadband network comprising a processor and an interface may be configured to perform the techniques. The processor may be configured to execute a first virtual customer premises equipment to provide, to a first subscriber, access to the wireline broadband network from a first subscription point in accordance with a first subscription. The processor may also be configured to provide, to a second subscriber, access to the wireline broadband network from the first subscription point in accordance with a second subscription. The interface may be configured to forward, in accordance with the first subscription, traffic received from the first subscription point and associated with the first subscriber, and forward, in accordance with the second subscription, traffic received from the first subscription point and associated with the second subscriber.

A model-driven system automatically deploys a virtualized service, including multiple service components, on a distributed cloud infrastructure. A master service orchestrator causes a cloud platform orchestrator to retrieve a cloud services archive file, extract a cloud resource configuration template and create cloud resources at appropriate data centers as specified. The master service orchestrator also causes a software defined network controller to retrieve the cloud services archive file, to extract a cloud network configuration template and to configure layer 1 through layer 3 virtual network functions and to set up routes between them. Additionally, the master service orchestrator causes an application controller to retrieve the cloud services archive file, to extract a deployment orchestration plan and to configure and start layer 4 through layer 7 application components and bring them to a state of operational readiness.

Technologies for deploying dynamic underlay networks in a cloud computing infrastructure include a network controller of the cloud computing infrastructure communicatively coupled via disaggregated switches to one or more compute nodes of the cloud computing infrastructure. The network controller is configured to receive tenant network creation requests from a cloud operating system (OS) of the cloud computing infrastructure indicating that a tenant network is to be created in the cloud computing infrastructure (e.g., for a new tenant of the cloud computing infrastructure). The network controller is configured to provision an underlay network to support the tenant network based on identified physical resources using criteria specified by the cloud OS and transmit information of the provisioned underlay network to the cloud OS that is usable to create a cloud visible overlay network associated with the underlay network. Other embodiments are described herein.

The invention relates to a method for managing services on a network, comprising: at least two interconnected computer sites, each of which is capable of implementing at least one service that can be accessed from the network; at least one service implemented on a network site; a capability for transferring a service from an initial site to a separate destination site. Each is associated with security attributes and the method includes transferring at least one service from an initial site to a destination site of the network following a predetermined transfer sequence which depends on the security attributes.

The present disclosure generally discloses an addressing mechanism adapted for extending a customer local area network of a customer premises of a customer outside of the customer premises and into a private data network with improved scalability and performance. The extension of a local area network of a customer premises of a customer outside of the customer premises and into a private data network may be provided using a customer bridge associated with the customer local area network of the customer, a customer bridging domain hosted on a network gateway device for the customer, and a switching element hosted in the private data network for the customer for one or more customer components hosted within the private data network for the customer. The addressing mechanism may include one or more of address announcement functions, address resolution functions, address translation functions, or the like, as well as various combinations thereof.

A method may include monitoring a network performance metric for multiple paths to a destination through a network, and storing historical performance data for the paths. The method may also include receiving a data flow directed to the destination, where the data flow may be subject to a network performance agreement. The method may additionally include determining aggregate historical performances for the paths, and comparing the aggregate historical performances for the paths. The method may also include, based on the comparison of the aggregate historical performances, routing the data flow through the network.

A service orchestration method and apparatus in SDN, and a storage medium are described. The method includes: determining whether a current SDN open network platform resource meets an SDN open network platform resource requested by an SDN application after receiving a request of using the SDN open network platform resource sent from the SDN application via an external application interface, determining whether an application engine function module and an application extension function module meet an execution of the SDN application when the requested resource is met, and loading an application engine function of the application engine function module or an application extension function of the application extension function module when meeting; and applying for the resource required by the SDN application from a controller layer of the SDN, and allocating the applied resource to the loaded application engine function or application extension function.

A system and technique for identity service management in a computing environment having a plurality of managed endpoints includes a mediator located remote from an identity management service provider and configured to interface with the plurality of managed endpoints to enable management thereof by the identity management service provider. The mediator includes a web services client configured to package and upload data from at least one of the managed endpoints to the identity management service provider via a web services protocol. The mediator also includes a plurality of providers each configured to identify a particular type of adapter of the mediator for communicating with a respective managed endpoint.