Processing

Please wait...

Settings

Settings

Goto Application

1. CN110366720 - SYSTEMS AND METHODS TO RUN USER SPACE NETWORK STACK INSIDE DOCKER CONTAINER WHILE BYPASSING CONTAINER LINUX NETWORK STACK

Office
China
Application Number 201880014504.5
Application Date 08.01.2018
Publication Number 110366720
Publication Date 22.10.2019
Publication Kind A
IPC
G06F 9/54
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
46Multiprogramming arrangements
54Interprogram communication
H04L 29/12
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
12characterised by the data terminal
H04L 29/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 12/741
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
701Routing or path finding
741Header address processing for routing, e.g. table lookup
CPC
G06F 9/54
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
46Multiprogramming arrangements
54Interprogram communication
H04L 61/1511
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
15Directories; Name-to-address mapping
1505involving standard directories or standard directory access protocols
1511using domain name system [DNS]
H04L 61/2514
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
25mapping of addresses of the same type; address translation
2503Internet protocol [IP] address translation
2507translating between special types of IP addresses
2514between local and global IP addresses
H04L 61/2557
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
25mapping of addresses of the same type; address translation
2503Internet protocol [IP] address translation
2557Translation policies and rules
H04L 63/02
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
02for separating internal from external traffic, e.g. firewalls
Applicants CITRIX SYSTEMS INC
思杰系统有限公司
Inventors SAXENA MOHIT PRAKASH
M·P·萨克塞纳
Agents 北京泛华伟业知识产权代理有限公司 11280
Priority Data 15406264 13.01.2017 US
Title
(EN) SYSTEMS AND METHODS TO RUN USER SPACE NETWORK STACK INSIDE DOCKER CONTAINER WHILE BYPASSING CONTAINER LINUX NETWORK STACK
(ZH) 在绕过容器Linux网络堆栈的同时运行Docker容器内的用户空间网络堆栈的系统和方法
Abstract
(EN)
The present disclosure is directed towards systems and methods for transmitting data packets to a software container executing on a host computing device. A network service can be enabled within a software container established on the host computing device. A data packet of a request formatted according to the network service can be received via a first port of a first subnetwork assigned to the host computing device. The data packet can be forwarded to a second port assigned to the software container, responsive to a network address translation rule associating the second port assigned to thesoftware container with the first port of the host computing device. The second port can be a port of a second subnetwork assigned to the software container. The data packet can be processed according to the network service within the software container.

(ZH)
本公开涉及用于将数据分组传输到在主计算装置上执行的软件容器的系统和方法。可以在主计算装置上建立的软件容器内启用网络服务。可以经由分配给主计算装置的第一子网的第一端口接收根据网络服务格式化的请求的数据分组。响应于将分配给软件容器的第二端口与主计算装置的第一端口相关联的网络地址转换规则,可以将数据分组转发到分配给软件容器的第二端口。第二端口可以是分配给软件容器的第二子网的端口。可以根据软件容器内的网络服务来处理数据分组。