	US 11,750,481 B2
	Application assessment and visibility for micro-segmentation of a network deployment
Kaushal Bansal, Pleasanton, CA (US); Uday Masurekar, Sunnyvale, CA (US); Srinivas Nimmagadda, San Jose, CA (US); Jingmin Zhou, Los Gatos, CA (US); Abhishek Goliya, Pune (IN); Amit Chopra, Palo Alto, CA (US); and Kausum Kumar, Los Gatos, CA (US)
Assigned to NICIRA, INC., Palo Alto, CA (US)
Filed by Nicira, Inc., Palo Alto, CA (US)
Filed on Feb. 21, 2022, as Appl. No. 17/676,771.
Application 17/676,771 is a continuation of application No. 15/713,702, filed on Sep. 25, 2017, granted, now 11,258,681.
Claims priority of application No. 201641043058 (IN), filed on Dec. 16, 2016.
Prior Publication US 2022/0173985 A1, Jun. 2, 2022
Int. Cl. H04L 43/026 (2022.01); H04L 67/14 (2022.01); G06F 9/455 (2018.01); H04L 9/40 (2022.01); H04L 43/045 (2022.01); H04L 67/51 (2022.01); H04L 43/18 (2022.01)

CPC H04L 43/026 (2013.01) [G06F 9/45558 (2013.01); H04L 43/045 (2013.01); H04L 63/0263 (2013.01); H04L 67/14 (2013.01); H04L 67/51 (2022.05); G06F 2009/45595 (2013.01); H04L 43/18 (2013.01); H04L 63/0236 (2013.01); H04L 63/0254 (2013.01)]

20 Claims

1. A method of creating micro-segmentation policy for applications executing in a network, the method comprising:

monitoring network packet traffic to identify network traffic types and patterns;

based on the network traffic types and patterns, identifying a set of associated components as an affinity group in the network;

using an application template that comprises a set of application components for a particular application to reconcile the components of the application template and the associated affinity group; and

creating micro-segmentation policy for the network based on a mapping of the components of the affinity group into the components of the application template of the particular application.