Presented herein are techniques for use in a network environment that includes one or more service zones, each service zone including at least one instance of an in-line application service to be applied to network traffic and one or more routers to direct network traffic to the at least one service, and a route target being assigned to a unique service zone to serve as a community value for route import and export between routers of other service zones, destination networks or source networks via a control protocol. An edge router in each service zone or destination network advertises routes by its destination network prefix tagged with its route target. A service chain is created by importing and exporting of destination network prefixes by way of route targets at edge routers of the service zones or source networks.

Presented herein are hybrid approaches to multi-destination traffic forwarding in overlay networks that can be used to facilitate interoperability between head-end-replication-support network devices (i.e., those that only use head-end-replication) and multicast-support network devices (i.e., those that only use native multicast). By generally using existing tunnel end-points (TEPs) supported functionality for sending multi-destination traffic and enhancing the TEPs to receive multi-destination traffic with the encapsulation scheme they do not natively support, the presented methods and systems minimize the required enhancements to achieve interoperability and circumvents any hard limitations that the end-point hardware may have. The present methods and systems may be used with legacy hardware that are commissioned or deployed as well as new hardware that are configured with legacy protocols.

A software-defined network (SDN) system, device and method comprise one or more input ports, a programmable parser, a plurality of programmable lookup and decision engines (LDEs), programmable lookup memories, programmable counters, a programmable rewrite block and one or more output ports. The programmability of the parser, LDEs, lookup memories, counters and rewrite block enable a user to customize each microchip within the system to particular packet environments, data analysis needs, packet processing functions, and other functions as desired. Further, the same microchip is able to be reprogrammed for other purposes and/or optimizations dynamically.

In an OpenFlow network, a “proactive type” is attained and hardware (HW) performance problem is solved. Specifically, in the OpenFlow network, each of a plurality of switches executes, on a reception packet that meets a rule of an entry registered in its own flow table, an operation based on an action defined in the entry. A controller registers an entry, in which an identifier unique to a path calculated based on a physical topology of a network composed of the plurality of switches is set as a rule and an output from a predetermined output port as an action, in each of the plurality of switches before communication is started among the plurality of switches.

The present disclosure discloses a software defined network SDN-based data processing system, and the system includes: a source data node, configured to receive a first data packet, and send to a corresponding source control node; the source control node, configured to receive the first data packet, where the first data packet carries a destination address of the first data packet; and determine a destination control node; and the destination control node, configured to receive the first data packet, and generate a second data packet and a matching policy rule. According to a software defined network-based data processing system in an embodiment of the present disclosure, the collaboration capability between nodes is improved so as to reduce the redundancy of multi-node processing in a network device, thereby improving the service processing efficiency of the network. The present disclosure further discloses a software defined network-based data processing method and device.

A procedure for managing network traffic, and a system that operates in accordance with the procedure. Performance monitoring data is received from multiple network elements that define one or more paths along a network tunnel. The performance monitoring data includes data on network utilization. There is a detection of whether network utilization through the network tunnel exceeds an overflow threshold or an underflow threshold based on the performance monitoring data. A new path and new network elements are determined for the network tunnel, and instructions are transmitted to the network elements on the network to implement the new path.

Some embodiments provide a method for implementing a logical router in a network. The method receives a definition of a logical router for implementation on a set of network elements. The method defines several routing components for the logical router. Each of the defined routing components includes a separate set of routes and separate set of logical interfaces. The method implements the several routing components in the network. In some embodiments, the several routing components include one distributed routing component and several centralized routing components.

The method relates to the monitoring of at least one routing parameter for a cluster including nodes and switches, static communication links connecting nodes and switches. Each switch includes several output ports. After having selected at least one switch, a number of routes per port is calculated for each port of each switch selected, routes being defined during a routing step for each connecting one node to another. A mean number of routes per port is then calculated for the at least one selected switch. Each number of routes per port calculated is then compared with the mean number of routes per port calculated and, in response to this comparison, a potential imbalance of routing of the cluster is notified.

A network communication method, a device, and an Internet system are presented. The method includes receiving, by a first primary node at a first network layer, first communication information sent, by a non-primary node that initiates communication, to a non-primary node that receives communication, where the non-primary node that initiates communication is in a domain to which the first primary node belongs, and the non-primary node that receives communication is in a different domain at the first network layer; determining, first label information, where the first label information is used to indicate a communication path, at a second network layer, from a node that receives the first communication information to a node that has a mapping relationship with a second primary node to which the non-primary node that receives communication belongs; and sending, first information to a node at the second network layer.

Methods and apparatus for accelerating VM-to-VM Network Traffic using CPU cache. A virtual queue manager (VQM) manages data that is to be kept in VM-VM shared data buffers in CPU cache. The VQM stores a list of VM-VM allow entries identifying data transfers between VMs that may use VM-VM cache “fast-path” forwarding. Packets are sent from VMs to the VQM for forwarding to destination VMs. Indicia in the packets (e.g., in a tag or header) is inspected to determine whether a packet is to be forwarded via a VM-VM cache fast path or be forwarded via a virtual switch. The VQM determines the VM data already in the CPU cache domain while concurrently coordinating with the data to and from the external shared memory, and also ensures data coherency between data kept in cache and that which is kept in shared memory.