Techniques are described for communications in an L2 virtual network. In an example, the L2 virtual network includes a plurality of L2 compute instances hosted on a set of host machines and a plurality of L2 virtual network interfaces and L2 virtual switches hosted on a set of network virtualization devices. An L2 virtual network interface emulates an L2 port of the L2 virtual network. Span port information applicable to the L2 port is sent to a network virtualization device that hosts the L2 virtual network interface.

Example implementation relates to a method of failure detection and seamless traffic switchover in a VPN system. A cluster of nodes exchange heartbeat messages to detect a failure at a first node in the cluster. When failure is detected at the first node, a master node transmits a failover message to a network end node connected to the first node. The failover message includes a list of active nodes to which traffic may be routed. The network end node updates its routing table based on the failover message and switches the traffic to a second node in the cluster of nodes.

Techniques are described for communications in an L2 virtual network. In an example, the L2 virtual network includes a plurality of L2 compute instances hosted on a set of host machines and a plurality of L2 virtual network interfaces and L2 virtual switches hosted on a set of network virtualization devices. An L2 virtual network interface emulates an L2 port of the L2 virtual network. Storm control information applicable to the L2 port is sent to a network virtualization device that hosts the L2 virtual network interface.

A communication system comprises a plurality of network elements and a management apparatus. Each of the network elements transfers a data signal. The management apparatus manages a line service provided by a network element as management object among the plurality of network elements. The management apparatus generates an authentication code corresponding to the network element as management object and notifies the generated authentication code to the network element as management object. The network element as management object, using the notified authentication code, judges whether or not to accept a change concerning the line service of the own network element.

Intelligent learning and management of networked architectures is disclosed. A network architecture can be mapped to identify a set of interconnected hardware and software elements that comprise the network architecture. Data sources associated with the set of interconnected hardware and software elements can be identified and employed to compile data associated with the elements. The data can be utilized to determine an action to address potential negative effects of a change to the network architecture such as an update or patch. In one instance, the action corresponds to a reconfiguration of at least one of the set of interconnected hardware and software elements. Further, machine learning can be employed to determine a particular configuration. Once determined the action can be implemented on the network architecture.

Techniques are described for generating a virtualized network function (VNF) descriptor (VNFD) indicative of resources for managing VNF components (VNFCs) across a plurality of virtualized infrastructure managers (VIMs) implemented in a virtualized computing environment configured in a user-specific configuration. A VNFD generator receives a solution description file (SDF) encoding user input pertaining to the user-specific configuration, and a VNFC descriptor encoding VNFC specific information. The SDF and VNFC descriptor are validated and translated to generate an abstracted VNFD that is independent of renderers implemented at the virtualized computing environment. The abstracted VNFD is translated to a VNFD that is specific to the renderers and VIM and VNFD-specific information at the virtualized computing environment.

A command line interface in a network device provides for specifying Virtual Local Area Network (VLAN) tag manipulations using range mappings to avoid error-prone repetitive configuration. A flexible VLAN tag range mapping is described, where the original and transformed ranges can be specified for both inner and outer positions, as long as the number of tags on either side of the transformation is the same.

A Virtual eXtensible Local Area Network (VXLAN) method comprises obtaining, by a network device, a mapping from a virtual local area network identifier VLAN ID to a VXLAN network identifier VNI; receiving, by the network device through a port, an Ethernet frame forwarded by an access device, where a VLAN tag field in the Ethernet frame includes the VLAN ID; adding, by the network device, a VXLAN header to the Ethernet frame based on the VLAN ID and the mapping to obtain a VXLAN packet, where a VNI field in the VXLAN header includes the VNI; and sending, by the network device, the VXLAN packet.

A system and method are disclosed for enabling interoperability between asymmetric and symmetric Integrated Routing and Bridging (IRB) modes. A system is configured to receive a route advertisement, examine the label fields of the route advertisement, and determine whether Layer 2 or Layer 3 information is conveyed. The system is further configured to build a route advertisement to advertise to a second device based on whether Layer 2 or Layer 3 information is conveyed in the first route advertisement.

In a method for managing a VPN, a routing device establishes a BMP session with a BMP server. The routing device allocates a VPN label associated with a VPN instance, wherein the VPN instance is used for communication between the routing device and another routing device. Then, the routing device sends, to the BMP server, a BMP message that carries the VPN label. Because the routing device sends the VPN label through the BMP message, the routing device does not need to establish a BGP peer relationship with the BMP server to send the VPN label.