US 12,170,616 B2
Tunnel-based service insertion in public cloud environments
Rahul Jain, Sunnyvale, CA (US); Kantesh Mundaragi, Bangalore (IN); Pierluigi Rolando, Santa Clara, CA (US); Jayant Jain, Cupertino, CA (US); and Mukesh Hira, Palo Alto, CA (US)
Assigned to VMware LLC, Palo Alto, CA (US)
Filed by VMware LLC, Palo Alto, CA (US)
Filed on Jan. 30, 2023, as Appl. No. 18/103,366.
Application 18/103,366 is a continuation of application No. 17/133,555, filed on Dec. 23, 2020, granted, now 11,570,104.
Application 17/133,555 is a continuation of application No. 16/251,080, filed on Jan. 18, 2019, granted, now 10,892,989, issued on Jan. 12, 2021.
Prior Publication US 2023/0171193 A1, Jun. 1, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 45/745 (2022.01); G06F 9/455 (2018.01); H04L 12/46 (2006.01); H04L 49/00 (2022.01); H04L 49/354 (2022.01)
CPC H04L 45/745 (2013.01) [G06F 9/45558 (2013.01); H04L 12/4633 (2013.01); H04L 12/4641 (2013.01); H04L 49/354 (2013.01); H04L 49/70 (2013.01); H04L 2212/00 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method for performing a set of two or more services on packets, the method comprising:
at a cloud gateway (CGW) operating in a first network of a public cloud,
receiving, from a second network, a packet that is addressed to reach an external server in a third network;
performing a service insertion operation to identify a service path comprising two or more service machines for performing the set of two or more services on the packet;
based on the identified service path, forwarding the packet to the set of two or more service machines to perform the set of two or more services on the packet;
receiving the packet after the set of two or more services have been performed on the packet; and
forwarding the packet to the external server operating in the third network.