Processing

Please wait...

Settings

Settings

Goto Application

1. EP3568765 - SYSTEMS AND METHODS TO RUN USER SPACE NETWORK STACK INSIDE DOCKER CONTAINER WHILE BYPASSING CONTAINER LINUX NETWORK STACK

Office
European Patent Office
Application Number 18701978
Application Date 08.01.2018
Publication Number 3568765
Publication Date 20.11.2019
Publication Kind A1
IPC
G06F 9/54
GPHYSICS
06COMPUTING; CALCULATING OR COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
46Multiprogramming arrangements
54Interprogram communication
H04L 12/741
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
12Data switching networks
70Packet switching systems
701Routing or path finding
741Header address processing for routing, e.g. table lookup
H04L 29/06
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
02Communication control; Communication processing
06characterised by a protocol
H04L 29/12
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
29Arrangements, apparatus, circuits or systems, not covered by a single one of groups H04L1/-H04L27/136
12characterised by the data terminal
CPC
G06F 9/54
GPHYSICS
06COMPUTING; CALCULATING; COUNTING
FELECTRIC DIGITAL DATA PROCESSING
9Arrangements for program control, e.g. control units
06using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
46Multiprogramming arrangements
54Interprogram communication
H04L 61/1511
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
15Directories; Name-to-address mapping
1505involving standard directories or standard directory access protocols
1511using domain name system [DNS]
H04L 61/2514
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
25mapping of addresses of the same type; address translation
2503Internet protocol [IP] address translation
2507translating between special types of IP addresses
2514between local and global IP addresses
H04L 61/2557
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
61Network arrangements or network protocols for addressing or naming
25mapping of addresses of the same type; address translation
2503Internet protocol [IP] address translation
2557Translation policies and rules
H04L 63/02
HELECTRICITY
04ELECTRIC COMMUNICATION TECHNIQUE
LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
63Network architectures or network communication protocols for network security
02for separating internal from external traffic, e.g. firewalls
Applicants CITRIX SYSTEMS INC
Inventors SAXENA MOHIT PRAKASH
Designated States
Priority Data 15406264 13.01.2017 US
Title
(DE) SYSTEME UND VERFAHREN ZUM BETREIBEN EINES BENUTZERRAUM-NETZWERKSTAPELS INNERHALB EINES DOCK-CONTAINERS UNTER UMGEHUNG DES CONTAINER-LINUX-NETZWERKSTAPELS
(EN) SYSTEMS AND METHODS TO RUN USER SPACE NETWORK STACK INSIDE DOCKER CONTAINER WHILE BYPASSING CONTAINER LINUX NETWORK STACK
(FR) SYSTÈMES ET PROCÉDÉS POUR FAIRE FONCTIONNER UNE PILE DE RÉSEAU D'ESPACE D'UTILISATEUR À L'INTÉRIEUR D'UN CONTENEUR D'ENTREPÔT TOUT EN CONTOURNANT UNE PILE DE RÉSEAU LINUX DE CONTENEUR
Abstract
(EN)
The present disclosure is directed towards systems and methods for transmitting data packets to a software container executing on a host computing device. A network service can be enabled within a software container established on the host computing device. A data packet of a request formatted according to the network service can be received via a first port of a first subnetwork assigned to the host computing device. The data packet can be forwarded to a second port assigned to the software container, responsive to a network address translation rule associating the second port assigned to the software container with the first port of the host computing device. The second port can be a port of a second subnetwork assigned to the software container. The data packet can be processed according to the network service within the software container.

(FR)
La présente invention concerne des systèmes et des procédés qui permettent de transmettre des paquets de données à un conteneur logiciel s'exécutant sur un dispositif informatique hôte. Un service de réseau peut être activé dans un conteneur logiciel établi sur le dispositif informatique hôte. Un paquet de données d'une requête formatée selon le service de réseau peut être reçu par le biais d'un premier port d'un premier sous-réseau attribué au dispositif informatique hôte. Le paquet de données peut être transmis à un second port attribué au conteneur logiciel, en réponse à une règle de traduction d'adresse de réseau associant le second port attribué au conteneur logiciel au premier port du dispositif informatique hôte. Le second port peut être un port d'un second sous-réseau attribué au conteneur logiciel. Le paquet de données peut être traité selon le service de réseau à l'intérieur du conteneur logiciel.