Abstract: Implementations of the disclosure provide for queuing portions of the network traffic directed to a migrated guest for both receiving and transmitting at a source of the migration. In one implementation, a method is provided. The method comprises receiving, by a processing device via a network interface card (NIC), a first data packet. The first data packet includes a network address associated with a virtual machine (VM) that migrates from a first host to a second host. The first data packet is queued in a memory buffer at the first host in view of the network address. An indication that the network address of the VM is associated with the second host is received. Thereupon, the method causes the NIC to transmit the first data packet from the memory buffer over a network associated with the VM at the second host.

Abstract: Embodiments of this application provide a data transmission method and a host machine, so that when a host machine cannot directly connect to the Internet, a virtual terminal can still connect to a mobile network. This extends an application scope of the virtual terminal. The host machine obtains a first network address of a physical terminal, where the physical terminal has started to establish a connection or has established a connection to the mobile network; and the host machine sets a second network address of the virtual terminal to the first network address, so that the virtual terminal sends data to the mobile network by using the first network address and/or receives, by using the first network address, data sent by the mobile network. The virtual terminal runs on the host machine.

Abstract: A remote computing session management process is directed to the execution and management of aspects of virtual instances executed on data center computers at a program execution service (PES) platform. A computing session may be established between the PES platform and a computing device connected to the PES platform over a communications network. The data created by the user of the client computing device interacting with the virtual instance may be stored, and following an interruption of the remote computing session, the data may be used when re-establishing the remote computing session.

Abstract: A method is provided for suspending and resuming virtual machines in a network in dependence of network activity. The method includes providing a virtual machine manager. The virtual machine manager monitors network traffic of the virtual machines on a network bridge in a network layer using data packet analysis to detect dedicated network protocol traffic. More particularly, the monitoring of network traffic of the virtual machines may include: logging network addresses of the virtual machines of the network; combining logged network addresses with information about suspending or resuming virtual machines based on filtering rules being provided for such combination; and sending information about the network addresses of active and suspended virtual machines for virtual network adapters assigned to the virtual machines to the virtual machine manager.

Abstract: Methods, computer program products, and network authority devices are presented. The methods include, for instance: updating a source network with migration information of a virtual machine to redirect network traffic for the virtual machine to a destination network; and updating at least one remote network with the migration information of the virtual machine. In one embodiment, the updating includes updating the source network concurrent with a migration of the virtual machine to minimize interruption of the network traffic. In another embodiment, the updating includes updating a network device of the source network to forward the network traffic for the virtual machine to another network device of the destination network. In a further embodiment, the updating includes updating the source network to redirect the network traffic from at least one client on the at least one remote network.

Abstract: In one embodiment, a method includes storing a cost assigned to a physical computing device in a storage device. The physical computing device is found in a physical infrastructure of a data center. The method determines an instantiation of a virtual machine in a virtual infrastructure. Information for a provisioning of the virtual machine with the physical computing device in the physical infrastructure of the data center is then received. The cost assigned to the physical computing device from the storage device is determined where the cost is used to determine a charge for the virtual machine based on usage of the physical computing device.

Abstract: A method, executed by a computer, includes receiving, for a cluster, a request to create a new container host, wherein the cluster comprises a plurality of container hosts having a corresponding plurality of local repositories, creating the new container host, selecting an image for the new container host according to one or more host preferences, wherein the image is stored in an image location, and copying the image from the image location to the local repository of the new container host. A computer system and computer program product corresponding to the above method are also disclosed herein.

Abstract: Disclosure is a framework for providing microservices for database with embedded container service in a container cloud platform. The framework includes a container cloud manager for performing distributed management of resources in a data center. The container cloud manager includes an orchestrator with a flexible job scheduler and operator pool. The flexible job scheduler and container cloud master form a flexible job management platform for managing jobs of the data center. The flexible job management framework can isolate various types of jobs as well as mix various jobs for efficient usage of hosts or resources in the data center. The operator pool includes optional components of a database. The orchestrator facilitates quick customization and release of database products, such as HANA database with optional services, as requested by a user in the container cloud platform.

Abstract: A secure cloud computing environment protects the confidentiality of application code from a customer while simultaneously protecting the confidentiality of a customer's data from intentional or inadvertent leaks by the application code. This result is accomplished without the need to trust the application code and without requiring human surveillance or intervention. A client secure virtual machine (SVM) is accessible by a client who supplies commands, operand data and application data. An appliance SVM has the application code loaded therein and includes an application program interface that accesses a memory area shared by both SVMs. All access to the appliance SVM is initially revoked by an ultravisor, except for the shared memory. The appliance SVM processes the commands without ever saving any persistent state of the application data. The ultravisor manages an SVM by maintaining exclusive control over a device tree used by the operating system of the SVM.

Abstract: A method of migrating an application to a computing environment including: obtaining a service topology and a deployment sequence from an existing application; choosing a deployment preference, each deployment preference containing factors and a weight of each of the factors; outputting the service topology and the deployment preference; reading service records for the chosen service topology and deployment preference from a repository, the service records containing a value score and weight mapping information of each factor of each service record; performing a mock conversion of migrating the application to the computing environment; adjusting the value score and weight mapping of the service records according to the results of the mock conversion; responsive to a user choosing one service record representing a solution for migrating the application to the computing environment, generating files for the solution; and deploying the solution into the computing environment using the files.

Abstract: Techniques for graphics processing unit (GPU) partitioning for virtualization are described herein. In one or more implementations, a GPU partitioning manager of a host device obtains a request for a virtual machine having GPU functionality. In particular, the request specifies the GPU functionality in terms of different GPU capabilities. These different capabilities correspond to segments of a GPU model that represents GPU functionality and is used to govern interactions between virtual machines and GPUs. The GPU partitioning manager determines whether GPUs of the host device are available to satisfy the request based on the specified capabilities. If so, the GPU partitioning manager allocates a portion of the determined available GPUs to the virtual machine to configure the virtual machine with a GPU partition having the functionality. The virtual machine configured with the GPU partition can then be exposed to provide GPU-processed data to a GPU partition requestor.

Abstract: A copy-free transition tool converts storage objects from a source format associated with a source storage system to a destination format associated with a destination storage system. The transition tool exports configuration information associated with the source storage system to the destination storage system and brings the storage objects offline. Once the transition tool determines that the storage devices containing the storage objects are physically connected to the destination storage system, the tool can convert file systems from the source format to the destination format while leaving data and file layout unchanged. The tool can also modify metadata associated with each of the storage objects to conform to the destination format and store the modified metadata with the destination storage system.

Abstract: Software packages may be installed, uninstalled and/or updated across a group of computing instances by way of a single issuance of a user request. The request may include information such as a software package name, a software package version, an action (e.g., install or uninstall), and one or more operating constraints for the software package. For an installation request, an agent on a given computing instance may process the request by accessing a manifest that indicates various computing instance characteristics (e.g., operating system types, architecture types, etc.) and various respective available versions of the software package. The agent may then select, based on characteristics of the computing instance, a package type for the computing instance. An installation request may also allow operating constraints (e.g. regarding usage of processing, memory, I/O and other resources) to be set and enforced for the software package.

Abstract: A placement simulator is used for testing a placement engine in a virtual machine environment. The placement simulator includes a simulation controller, an event manager, and an inventory manager. The simulation controller receives input data for a simulated datacenter. The event manager invokes event handlers for a sequence of events from the input data. The inventory manager stores states of inventory objects to simulate deployment of virtual infrastructure resources by the placement engine based on the sequence of the events.

Abstract: Evaluating a potentially malicious sample using a copy-on-write overlay is disclosed. A first virtual machine instance is initialized as a copy-on-write overlay associated with an original virtual machine image. The first virtual machine image is started and a first sample is executed. A second virtual machine instance is initialized as a copy-on-write overlay associated with a second original virtual machine image. The second virtual machine image is started and a second sample is executed. The first and second samples are executed at an overlapping time.

Abstract: Systems and methods for live migration of VMs between different nodes are provided. The system and methods utilize a heat map and an access pattern to determine the fetching order of files and/or blocks from the cache of a host node for rebuilding the cache on a destination node. The systems and methods are able to persist the cache of a host node across a crash, allowing a destination node to fetch blocks and/or files from the cache on the host node after a crash instead of having to access the VM files and/or blocks from an original source. Accordingly, the systems and methods decrease migration latency of the VM and free up network bandwidth during the live migration when compared to prior systems and methods that utilize just the heat map to determine the fetching order and/or that are not able to persist the cache across a crash.

Abstract: Endpoint device, central data collection point, and associated methods for collecting data over a communication network between endpoints and the central collection point. Actual measurements from a sensor are obtained by the endpoint device at a relatively fine time granularity. The endpoint device generates reports for receipt by a central data collection point. The reports include regular reports containing a portion of the actual measurements representing sensor measurements at a relatively coarse time granularity, and exception reports, containing information representing one or more of the actual measurements that differ in frequency or granularity of regular report measurements. Each of the exception reports is generated in response to a determination that at least one of the actual measurements differs from a predicted value for that at least one of the one or more actual measurements by an amount that exceeds a pre-established limit.

Abstract: A processing core comprising instruction execution logic circuitry and register space. The register space to be loaded from a VMCS, commensurate with a VM entry, with information indicating whether a service provided by the processing core on behalf of the VMM is enabled. The instruction execution logic to, in response to guest software invoking an instruction: refer to the register space to confirm that the service has been enabled, and, refer to second register space or memory space to fetch input parameters for said service written by said guest software.

Abstract: Methods and systems for improving the performance of a primary system that is running one or more virtual machines and capturing snapshots of the one or more virtual machines over time are described. The performance penalty on the primary system when a hypervisor running the one or more virtual machines is used to capture the snapshots of the one or more virtual machines may be reduced by leveraging storage array snapshots to reduce the amount of time that the hypervisor must freeze virtual disks of the one or more virtual machines. In this case, changed block tracking information for changed data blocks associated with the snapshots may be acquired from the hypervisor and the changed data blocks themselves may be pulled from the storage array snapshots without requiring the hypervisor to keep the virtual disks of the one or more virtual machines in a frozen state.

Abstract: Techniques of managing oversubscription of network resources are disclosed herein. In one embodiment, a method includes receiving resource utilization data of a virtual machine hosted on a server in a computing system. The virtual machine is configured to perform a task. The method also includes determining whether a temporal pattern of the resource utilization data associated with the virtual machine indicates one or more cycles of resource utilization as a function of time and in response to determining that the temporal pattern associated with the virtual machine indicates one or more cycles of resource utilization as a function of time, causing the virtual machine to migrate to another server that is not oversubscribed by virtual machines in the computing system.

Abstract: A method of providing security for containers executing on a physical host machine is provided. The method receives a notification of a file access request. The notification includes a path in a file system of the host machine being accessed by a process. From the path, the method determines whether the file access event is for accessing a location in the file system to which container file systems are mapped. The method identifies a namespace of the process using the identification of the process included in the file path. The method determines the process is a container when the namespace belongs to a service that is used to implement containers on the host machine. The method sends the identifier of the container, the identification of a VM executing the container, and the file path to a set of security applications to determine whether the file access request to be allowed.

Abstract: Implementations are described for guest controlled virtual device packet filtering. A method of the disclosure includes receiving, at a guest operating system (OS) of a virtual machine executed by a processing device of a host machine, a notification of a host configuration change from a hypervisor of the host machine, the host configuration change affecting routing of networking packets corresponding to the virtual machine over a network, implementing, by the guest OS, configuration changes to a guest OS environment, the configuration changes corresponding to the host configuration change, and in response to implementing the configuration changes, notifying, by the virtual machine, the hypervisor that network packet filtering of the networking packets can be disabled.

Abstract: In one or more embodiments, one or more systems, method, and/or processes may store first data associated with a virtual non-volatile dual in-line memory module (vNVDIMM) of a virtual machine (VM) via a portion of storage of a first physical memory medium of a physical information handling system (IHS); may receive a request for a size increase of the vNVDIMM; may allocate, based at least on the size increase, another portion of storage from the first physical memory medium or from a second physical memory medium of the physical IHS; may create another vNVDIMM configured to accommodate the size increase and configured to store data via the portion of storage and the other portion of storage; and may provide information associated with the other vNVDIMM to the VM.

Abstract: A system and method for programming a timer in a virtualized system are disclosed. In accordance with one embodiment, a virtual machine executed by a processing device detects a need to request an interrupt at a first time and reads, from the first memory location, a second time that is associated with a next interrupt of the physical host machine scheduled by a hypervisor executed by the processing device. The virtual machine determines whether the first time is less than the second time. Responsive to the first time being less than the second time, the virtual machine transfers execution control to the hypervisor. Responsive to the first time not being less than the second time, the virtual machine stores the first time in a second memory location that is writeable by the virtual machine.

Abstract: A network device may include various cards and modules, such as management modules, line cards, and switch fabric modules. In various implementations, these components can be “hot-plugged” meaning that the components can be inserted into and removed from the network device while the network device is powered on. In various implementations, hardware in the network device can identify when a component has been added. The hardware can notify a virtual machine, which can then notify the host operating system. The host operating system can added the component, and then notify the virtual machine to also add the component. Once the virtual machine has added the component, the component becomes available for use by processes executing on the virtual machine.

Abstract: Systems, methods, computer readable media and articles of manufacture consistent with innovations herein are directed to computer virtualization, computer security and/or data isolation. According to some illustrative implementations, innovations herein may utilize and/or involve a separation kernel hypervisor which may include the use of a guest operating system virtual machine protection domain, a virtualization assistance layer, and/or a rootkit defense mechanism (which may be proximate in temporal and/or spatial locality to malicious code, but isolated from it), inter alia, for detection and/or prevention of malicious code, for example, in a manner/context that is isolated and not able to be corrupted, detected, prevented, bypassed, and/or otherwise affected by the malicious code.

Abstract: Apparatus, systems, and methods create, modify, and delete managed objects utilized by VNF lifecycle management automatically are disclosed and claimed. Other examples are also disclosed and claimed.

Abstract: A container deployment method and apparatus are disclosed. The method includes receiving a first container creation request that carries a required resource capacity and a required image identifier, where the required image identifier is an identifier of an image corresponding to an application that needs to be run. From a cluster of working nodes, at least two first working nodes whose unused resource capacity is greater than the required resource capacity are selected. A target working node is determined from the at least two working nodes according to images stored on the at least two first working nodes and the required image identifier. A second container creation request is sent to the target working node carrying the required resource capacity and the required image identifier.

Abstract: A virtual disk and associated methods for facilitating live migration of virtual machines in distributed computing systems are disclosed herein. In one embodiment, a method includes during a live migration of a virtual machine, determining whether a destination virtual disk on a node contains a block of data corresponding to the migrated virtual machine. The method can also include, in response to determining that the destination virtual disk does not contain the block of data, retrieving the block of data from a source virtual disk of the migrated virtual machine, writing the retrieved block of data to one or more empty sectors on the destination virtual disk, and marking the one or more written to sectors containing the block of data as read-only on the destination virtual disk.

Abstract: The disclosed embodiments relate to a system for presenting data for virtual machines. During operation, the system obtains hypervisor data for a set of virtual machines, wherein the hypervisor data was received from one or more hypervisors while the set of virtual machines was running on the hypervisors. The system also obtains operating system data for the set of virtual machines, wherein the operating system data was received from a set of operating systems while the set of operating systems was running on the set of virtual machines. Next, the system correlates hypervisor data for a virtual machine with corresponding operating system data for the virtual machine. Finally, the system presents the correlated hypervisor data and operating system data for the virtual machine to a user.

Abstract: For each selected category of virtual machine, a cardinality of virtual machines of the category that are requested is recorded over time. For each category of virtual machine, a prediction algorithm is used to predict a cardinality of virtual machines for the selected category to be requested in the future, such that the prediction algorithm weighs under-prediction of the cardinality of virtual machines as costlier than over-prediction. For each category of virtual machine, a cardinality of virtual machines of the category of virtual machines are composed and booted with generic virtual machine artifacts such that the cardinality of virtual machines of the selected categories is the predicted cardinality of requested virtual machines for the selected category. The booted virtual machines are caused to enter a state in which the booted virtual machines are polling for a configuration with user-specific compute settings and user-specific networking settings.

Abstract: In an aspect of the disclosure, a method, a computer-readable medium, and an apparatus are provided. The apparatus makes a first determination whether a load metric of a first hypervisor is in a first predetermined relationship with a first threshold. The first hypervisor is one of a plurality of hypervisors of a VDI system. The apparatus also makes a second determination whether an available capacity of a second hypervisor is able to run virtual desktops of the first hypervisor when the load metric of the first hypervisor is determined to be in the predetermined relationship with the first threshold. The first hypervisor migrates virtual desktops of the first hypervisor to the second hypervisor when the available capacity of the second hypervisor of the plurality of hypervisors is determined to be able to run virtual desktops of the first hypervisor. The apparatus also powers off the first hypervisor.

Abstract: Host specific containerized application configuration generation is disclosed. For example, first and second image files are stored on a first memory. Second and third memories are associated with a first host node. A request to generate a first configuration file associated with a plurality of isolated guests is received, launching a first short-lived guest of the plurality of isolated guests on the second memory. A configuration management application executes on the first short-lived guest, generating and saving the first configuration file to the third memory. The first short-lived guest is terminated. A first service guest of the plurality of isolated guests is launched on the second memory. A first service configured with the first configuration file executes on the first service guest. A second service guest of the plurality of isolated guests is launched on the second memory executing a second service configured with the first configuration file.

Abstract: Systems, methods, and non-transitory computer-readable media can receive a client request from a requesting user. The client request is associated with a web page. A static resource file identifier and a version identifier are determined based on the client request. A response to the client request is generated based on the static resource file identifier and the version identifier.

Abstract: Systems, methods, and apparatuses enable an interface microservice to intercept and filter network traffic generated by virtual machines (VMs) and routed by a virtual switch (vSwitch). A vSwitch receiving network packets from the VMs is configured to route network packets to the interface microservice via a generated VLAN trunk. The interface microservice can retrieve and apply stored packet filters to the network packets intercepted by the microservice. If an intercepted network packet matches any of the applied packet filters, the interface microservice can perform various security operations, send the network packets to another microservice for security processing, or perform any other operations. For network packets which do not match a packet filter, the interface microservice forwards the packets to the originally intended destination.

Abstract: Disclosed are a method and apparatus for running a plurality of operating systems in an industry internet operating system, wherein the industry internet operating system includes application layer, cloud control layer, and field layer; the cloud control layer includes an industry real-time cloud operating system module configured to acquire and analyze data between the cloud control layer and the application layer, and to transmit a control instruction to the field layer; and the method includes: running a first core of a multi-core CPU in a VMX mode using a preset virtualization technology, creating at least one VM in the first core of the multi-core CPU, and running a first operating system on a VM in the first core, wherein each VM corresponds respectively to a logic partition; and running a second operating system directly on a physical partition in a second core of the multi-core CPU.

Abstract: System and method for supporting virtual machine migration in a high performance computing environment. In accordance with an embodiment, when a virtual machine migrates from a first subnet to a second subnet, a gateway port at the first subnet can, upon receiving packets addressed to the migrated virtual machine, consult a memory lookup table to discover the virtual machine's new addresses. The gateway port can update the packet accordingly. The memory lookup table can be addressed based on a GUID of the virtual machine.

Abstract: In various embodiments, the predicted location of a user within an institutional space is associated with a node at or near that location, and a virtual desktop is prepared before a user has actually logged on and authenticated. Although users are not accorded access to applications and sensitive data until they have properly authenticated themselves, the virtual desktop and associated data are assembled and retrieved in the background in order to eliminate delay following log-on.

Abstract: A medical diagnostic ultrasound imaging system and method are provided for communicating with a server during an examination of a patient using first and second communication channels. Communication between the controller and the server via the second communication channel occurs within a predetermined amount of time. In one embodiment, the controller of the medical diagnostic ultrasound imaging system is configured to send and receive different information via the first communication channel than via the second communication channel. In another embodiment, communication between the controller and the server via the second communication channel is faster than communication between the controller and the server via the first communication channel. Other embodiments are presented, and each embodiment can be used alone or in combination with each other.

Abstract: The disclosure relates to a method of switching data sources during a rolling upgrade of a leader-based distributed service. In at least one implementation, the method includes establishing, at a computing device in a cluster of devices in a network, a watch for notification of completion of a rolling upgrade on all devices in the cluster; restarting the computing device on completion of the rolling upgrade; switching, at the computing device, from a first data source to a second data source once the rolling upgrade is complete on all devices in the cluster; if the computing device is a leader device in the cluster, migrating tasks from the first data source to the second data source after completion of the rolling upgrade; and if the computing device is a non-leader device in the cluster, determining if task migration to the second data source is done and, when done, sending a store object to the second data source.

Abstract: The disclosed method may include (1) identifying a data object that (A) was generated by a producer process running on a computing device and (B) is to be accessed by a consumer process running on the computing device, (2) determining at least one structural characteristic of the data object that indicates how data is stored within the data object, (3) storing the data object and the structural characteristic of the data object within a portion of shared memory on the computing device that is accessible to both the producer process and the consumer process, and then (4) disclosing, to the consumer process, locations of both the data object and the structural characteristic of the data object within the shared memory such that the consumer process is able to extract the data in the data object from the shared memory. Various other methods, systems, and apparatuses are also disclosed.

Abstract: A production host for hosting virtual machines includes a persistent storage and a production agent. The persistent storage stores a backup groupings queue and a backup process stack. The production agent obtains backup generation requests for the virtual machines; in response to obtaining the backup generation requests, generates the backup groupings queue based on the backup generation requests; identifies a maximum parallelism of the production host based on resources utilized by a portion of the virtual machines specified by the backup groupings queue; consolidates the backup groupings queue to generate the backup process stack; and generates backups for virtual machines specified by the backup process stack in parallel based on the maximum parallelism.

Abstract: Embodiments providing improved systems and methods deploying, monitoring, and troubleshooting optical physical layer networks are needed. In one embodiment, networks are first constructed in a specialized network factory, where they are racked, provisioned, audited, and tested by relevant experts in each technology. Then the equipment is custom-crated—with all cards, patch cords, labels, and provisioning in place—before being shipped to field locations. A production network health baseline is captured that creates a set of norms that later performance data can be compared against. Once the network is operational, the network health is monitored and compared against the baseline. If there's a deviation sufficient to satisfy a user-defined rule, a remedial action can be triggered. In another embodiment, a method isolates a problem in an optical transport network.

Abstract: A method and system for implementing agentless virtual disk metadata indexing. Specifically, the disclosed method and system entails the parsing of data within a virtual machine and/or virtual disk snapshot to extract filesystem metadata information during data backup operations. Extraction of the filesystem metadata information is performed based on an understanding of a filesystem layout for a format in which the snapshot is defined, rather than based on the mounting and traversing of the snapshot. Furthermore, the extracted filesystem metadata information is encoded in a schema that may facilitate indexing of the information for use in a metadata searching and/or retrieval service.

Abstract: The disclosed embodiments provide a software-defined spectrum controller that may be used to dynamically and adaptively change rules and/or policies in a wireless network. The SDSC may dynamically change the rules or policies based on usage of spectrum and/or network resources or any other criterion, e.g., established by a service provider, to allow the service provider to use the spectrum and network resources more efficiently for delivering content and services to customers. In accordance with the disclosed embodiments, the SDSC may use at least one optimization algorithm to determine which policies or rules should be enforced at each of the network nodes in the wireless network. Based on the optimization algorithm, the SDSC may interact with other network nodes to dynamically change one or more of the rules or policies that are enforced in the service provider's network to provide content and services to customers.

Abstract: The present invention relates to a method for protecting content of an electronic device, comprising the steps of: enabling a first security module to transmit a data encryption request to a second security module when data requiring security is generated according to the execution of a security application by the first security module in a security storage region of a memory; enabling the second security module to generate an encryption key by using the authentication information included in the data encryption request and to encrypt the data included in the data encryption request by using the encryption key; enabling the second security module to transfer the encrypted data to the first security module; and enabling the first security module to store the encrypted data in the security application.

Abstract: An information handling system includes a first database and a second database. A server submits a request received by the first database instead to the second database by 1) establishing a service to the second database, the service having write privileges, 2) establishing a service user account that includes the write privilege, and 3) editing the request to include a link to the second database.

Abstract: Methods and systems for supporting multifunction virtualization within SR-IOV in a multi-partition virtualization system are described. One method includes instantiating a physical function of an I/O interface device within an interconnect partition of a multi-partition virtualization system implemented at least in part on the computing device, and instantiating a plurality of virtual functions within a guest partition of the multi-partition virtualization system, each of the plurality of virtual functions associated with a physical function. The method includes assigning a bus identifier, a device identifier, and a function identifier to each of the plurality of virtual functions, the plurality of virtual functions including a first virtual function associated with a first bus identifier and a first device identifier and a second virtual function associated with the first bus identifier and the first device identifier.

Abstract: Systems and methods for disabling in-memory caching of a virtual machine during migration are disclosed. An example method may include receiving, at a migration agent of a source host machine, a request to migrate a virtual machine (VM) hosted by the source host machine to a destination host machine, determining that a migration caching attribute of the VM is enabled, instructing a VM agent executing on the VM to disable caching of the VM in view of determining that the migration caching attribute of the VM is enabled, receiving acknowledgment of successful disablement of caching on the VM, and responsive to receiving the acknowledgment, initiating migration of the VM from the source host machine to the destination host machine.

Abstract: A device may receive information associated with a service chain to be implemented in association with a flow. The information associated with the service chain may include a source network address associated with the flow, a destination network address associated with the flow, a set of protocols associated with the flow, and a set of network services, of the service chain, to be implemented in association with the flow. The device may implement the service chain in association with the flow. The device may receive network traffic information associated with the flow based on implementing the service chain in association with the flow. The device may modify the service chain based on the network traffic information associated with the flow to permit a modified service chain to be implemented in association with the flow.