公开(公告)号：US10135875B2

公开(公告)日：2018-11-20

申请号：US15605194

申请日：2017-05-25

Applicant: Amazon Technologies, Inc.

Inventor： Rajat Banerjee ,  Nathan Andrew Miller ,  Aniket Deepak Divecha ,  John Robert Kerl ,  Mingxue Zhao ,  Shuai Ye ,  Kevin Christopher Miller

IPC: H04L29/06 ,  H04L12/26

Abstract: Computing resource service providers may provide computing resources to customers in a multi-tenant environment. These computing resources may be behind a firewall or other security device such that certain information does not reach the computing resources provided to the customer. A logging entity may be implemented on computer server operated by the computing resource service provider. The logging entity may obtain log information from the firewall or other security device and store the log information such that it is accessible to the customer. Additionally, the log information may be provided to other services such as a metrics service or intrusion detection service.

公开(公告)号：US09979616B2

公开(公告)日：2018-05-22

申请号：US14665683

申请日：2015-03-23

Applicant: Amazon Technologies, Inc.

Inventor： Shuai Ye

IPC: G06F15/173 ,  H04L12/26

CPC classification number: H04L43/06 ,  H04L43/04

Abstract: Time-based groupings of network traffic flow data for virtualized computing resources are stored. Notifications that the time-based groupings are stored are sent, and in response to the notifications, the groupings are processed in accordance with the notifications. Network traffic flow data that is associated with users who have requested publication is published for associated virtualized computing resources.

公开(公告)号：US09954763B1

公开(公告)日：2018-04-24

申请号：US14192476

申请日：2014-02-27

Applicant: .Amazon Technologies, Inc.

Inventor： Shuai Ye ,  Patrick Brigham Cullen ,  Mark Edward Stalzer

IPC: H04L12/28 ,  H04L12/56 ,  H04L12/715 ,  H04L12/707 ,  H04L12/24

CPC classification number: H04L45/04 ,  H04L41/0813 ,  H04L45/22

Abstract: Methods and apparatus for pre-configured virtual gateways for isolated virtual networks are described. An isolated virtual network (IVN) is configured at a provider network on behalf of a customer. The IVN includes one or more devices whose network addresses are not accessible from the public Internet. In response to a request from a connectivity intermediary, a virtual private gateway (VPG) is established, configurable to enable connectivity between IVNs of the provider network and devices outside the provider network. The VPG is included within a set of candidate VPGs indicated programmatically to the customer. Connectivity is established between the customer's IVN and an external device via the VPG.

公开(公告)号：US09521053B1

公开(公告)日：2016-12-13

申请号：US14526408

申请日：2014-10-28

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Shuguang Wang ,  Mark Edward Stalzer ,  Shuai Ye

IPC: H04L12/26 ,  H04L12/46 ,  H04L12/24

CPC classification number: H04L43/08 ,  H04L12/4641 ,  H04L41/22 ,  H04L41/5041 ,  H04L43/0829 ,  H04L43/087

Abstract: A provider network may collect diagnostic metrics for virtual connections implemented over physical connections to resources in the provider network. Diagnostic metric collection may be enabled via an interface for the provider network. In response to receiving a request to enable diagnostic metric collection for a particular virtual connection, a diagnostic agent within the provider network may begin sending diagnostic request messages to a client-side endpoint via the particular virtual connection. Responses to the request messages may be received back at the diagnostic agent. The diagnostic responses may then be used to generate diagnostic metrics for the particular virtual connection, which may be provided through the provider network interface.

Abstract translation: 供应商网络可以收集通过物理连接实现的虚拟连接到供应商网络中的资源的诊断度量。 可以通过供应商网络的接口启用诊断指标收集。 响应于接收到针对特定虚拟连接启用诊断度量收集的请求，提供商网络内的诊断代理可以开始经由特定虚拟连接向客户端端点发送诊断请求消息。 可以在诊断代理处接收对请求消息的响应。 然后可以使用诊断响应来产生用于特定虚拟连接的诊断度量，其可以通过提供商网络接口来提供。