| CPC H04L 47/125 (2013.01) [G06F 9/45558 (2013.01); H04L 61/256 (2013.01); H04L 63/02 (2013.01); G06F 2009/4557 (2013.01); G06F 2009/45595 (2013.01)] | 20 Claims |
|
1. A computer-implemented method when executed by data processing hardware causes the data processing hardware to perform operations comprising:
identifying a middlebox receiving network flow between virtual network endpoints in a virtual network layer;
performing, using the middlebox, stateful network functions in the virtual network layer using the received network flow between the virtual network endpoints;
communicating with one or more backend virtual machines corresponding to the virtual network endpoints;
receiving flow statistics corresponding to the network flow of the middlebox;
identifying, based on the flow statistics, an uncommon type of network flow from the network flow, the uncommon type of network flow comprising outlier flow statistics of the flow statistics;
identifying one or more connections associated with the uncommon type of network flow;
migrating the one or more connections associated with the uncommon type of network flow from the middlebox to an end host;
after migrating the one or more connections associated with the uncommon type of network flow from the middlebox to the end host, determining whether the flow statistics satisfy an offload rule, the offload rule indicating when to migrate the network flow from the middlebox to an end host; and
when the flow statistics satisfy the offload rule, migrating the network flow from the middlebox to the end host.
|