公开(公告)号：US11792041B2

公开(公告)日：2023-10-17

申请号：US16953191

申请日：2020-11-19

Applicant: Amazon Technologies, Inc.

Inventor： Kevin Christopher Miller ,  Richard Alexander Sheehan ,  Douglas Stewart Laurence ,  Marwan Salah El-Din Oweis ,  Andrew Bruce Dickinson

IPC: H04L12/46 ,  G06F9/455 ,  H04L9/40 ,  H04L101/604 ,  H04L101/659

CPC classification number: H04L12/4633 ,  G06F9/45558 ,  H04L63/0272 ,  H04L63/0428 ,  G06F2009/45595 ,  H04L63/10 ,  H04L2101/604 ,  H04L2101/659

Abstract: In accordance with a designation of a private alias endpoint as a routing target for traffic directed to a service from within an isolated virtual network of a provider network, a tunneling intermediary receives a baseline packet generated at a compute instance. The baseline packet indicates a public IP (Internet Protocol) address of the service as the destination, and a private IP address of the compute instance as the source. In accordance with a tunneling protocol, the tunneling intermediary generates an encapsulation packet comprising at least a portion of the baseline packet and a header indicating the isolated virtual network. The encapsulation packet is transmitted to a node of the service.

公开(公告)号：US11770364B2

公开(公告)日：2023-09-26

申请号：US17145130

申请日：2021-01-08

Applicant: Amazon Technologies, Inc.

Inventor： Bashuman Deb ,  Andrew Bruce Dickinson ,  Christopher Ian Hendrie

IPC: H04L9/40 ,  H04L67/104 ,  H04L61/00 ,  H04L61/2521 ,  H04L61/2592 ,  H04L61/2514

CPC classification number: H04L63/0272 ,  H04L61/00 ,  H04L61/2514 ,  H04L61/2521 ,  H04L61/2592 ,  H04L67/104

Abstract: Methods and apparatus for private network peering in virtual network environments in which peerings between virtual client private networks on a provider network may be established by clients via an API to a peering service. The peering service and API 104 may allow clients to dynamically establish and manage virtual network transit centers on the provider network at which virtual ports may be established and configured, virtual peerings between private networks may be requested and, if accepted, established, and routing information for the peerings may be specified and exchanged. Once a virtual peering between client private networks is established, packets may be exchanged between the respective client private networks via the peering over the network substrate according to the overlay network technology used by the provider network, for example an encapsulation protocol technology.

公开(公告)号：US10893024B2

公开(公告)日：2021-01-12

申请号：US16258418

申请日：2019-01-25

Applicant: Amazon Technologies, Inc.

Inventor： Bashuman Deb ,  Andrew Bruce Dickinson ,  Christopher Ian Hendrie

IPC: H04L29/06 ,  H04L29/08 ,  H04L29/12

Abstract: Methods and apparatus for private network peering in virtual network environments in which peerings between virtual client private networks on a provider network may be established by clients via an API to a peering service. The peering service and API 104 may allow clients to dynamically establish and manage virtual network transit centers on the provider network at which virtual ports may be established and configured, virtual peerings between private networks may be requested and, if accepted, established, and routing information for the peerings may be specified and exchanged. Once a virtual peering between client private networks is established, packets may be exchanged between the respective client private networks via the peering over the network substrate according to the overlay network technology used by the provider network, for example an encapsulation protocol technology.

公开(公告)号：US10666606B2

公开(公告)日：2020-05-26

申请号：US15636523

申请日：2017-06-28

Applicant: Amazon Technologies, Inc.

Inventor： Michael Siaosi Voegele ,  Kevin Christopher Miller ,  Justin Canfield Crites ,  Andriy Palamarchuk ,  Andrew Bruce Dickinson ,  Christopher Carson Thomas ,  Rebecca Claire Weiss

IPC: H04L29/12 ,  H04L12/46 ,  H04L12/741 ,  H04L12/803

Abstract: A customer may request a service endpoint for a service in their virtual network on a provider network. In response, a service endpoint is generated in the customer's virtual network, a local IP address in the IP address range of the customer's virtual network is assigned to the service endpoint, and a DNS name is assigned to the service endpoint. Resources on the customer's virtual network resolve the DNS name of the service endpoint to obtain the local IP address of the service endpoint and send service requests for the service to the local IP address of the service endpoint. The service endpoint adds routing information to the service requests and sends the service requests over the network substrate to be routed to the service.

公开(公告)号：US20190356587A1

公开(公告)日：2019-11-21

申请号：US16530881

申请日：2019-08-02

Applicant: Amazon Technologies, Inc.

Inventor： Kevin Christopher Miller ,  Andrew Bruce Dickinson ,  Eric Wayne Schultze ,  Ian Roger Searle ,  Shane Ashley Hall ,  Deepak Mohan ,  David Brian Lennon

IPC: H04L12/713 ,  H04L29/06 ,  H04L12/741

Abstract: Methods and apparatus that allow clients to connect resource instances to virtual networks in provider network environments via private IP. Via private IP linking methods and apparatus, a client of a provider network can establish private IP communications between the client's resource instances on the provider network and the client's resource instances provisioned in the client's virtual network via links from the private IP address space of the virtual network to the private IP address space of the provider network. The provider network client resource instances remain part of the client's provider network implementation and may thus also communicate with other resource instances on the provider network and/or with entities on external networks via public IP while communicating with the virtual network resource instances via private IP.

公开(公告)号：US10193866B2

公开(公告)日：2019-01-29

申请号：US15798052

申请日：2017-10-30

Applicant: Amazon Technologies, Inc.

Inventor： Bashuman Deb ,  Andrew Bruce Dickinson ,  Christopher Ian Hendrie

IPC: H04L29/06 ,  H04L29/08 ,  H04L29/12

Abstract: Methods and apparatus for private network peering in virtual network environments in which peerings between virtual client private networks on a provider network may be established by clients via an API to a peering service. The peering service and API 104 may allow clients to dynamically establish and manage virtual network transit centers on the provider network at which virtual ports may be established and configured, virtual peerings between private networks may be requested and, if accepted, established, and routing information for the peerings may be specified and exchanged. Once a virtual peering between client private networks is established, packets may be exchanged between the respective client private networks via the peering over the network substrate according to the overlay network technology used by the provider network, for example an encapsulation protocol technology.

公开(公告)号：US10075305B2

公开(公告)日：2018-09-11

申请号：US15489529

申请日：2017-04-17

Applicant: Amazon Technologies, Inc.

Inventor： Eric Jason Brandwine ,  Andrew Bruce Dickinson

IPC: H04L12/46 ,  H04L29/06 ,  H04W80/06 ,  H04L12/70

CPC classification number: H04L12/4641 ,  H04L12/4633 ,  H04L29/06095 ,  H04L61/2514 ,  H04L61/2592 ,  H04L63/0272 ,  H04L69/16 ,  H04L69/161 ,  H04L69/166 ,  H04L69/167 ,  H04L69/168 ,  H04L69/169 ,  H04L2012/5667 ,  H04W80/06

Abstract: Methods and apparatus for remapping IP addresses of a network to endpoints within a different network. A provider network may allocate IP addresses and resources to a customer. The provider network may allow the customer to remap an IP address to an endpoint on the customer's network. When a packet is received from a client addressed to the IP address, the provider network may determine that the IP address has been remapped to the endpoint. The provider network may translate the source and destination addresses of the packet and encode the packet for transmission over a private communications channel. The encoded packet may be sent to the endpoint via the private communications channel over an intermediate network. Response traffic may be routed to the client through the provider network, or may be directly routed to the client by the customer network.

公开(公告)号：US09491098B1

公开(公告)日：2016-11-08

申请号：US14083005

申请日：2013-11-18

Applicant: Amazon Technologies, Inc.

Inventor： Matthew Shawn Wilson ,  Andrew Bruce Dickinson ,  Justin Oliver Pietsch ,  Aaron C. Thompson ,  Frederick David Sinn ,  Alan Michael Judge ,  Jagwinder Singh Brar

IPC: H04L12/741 ,  H04L12/803

CPC classification number: H04L47/125

Abstract: Methods and apparatus for transparent multipath utilization through encapsulation are disclosed. Respective encapsulation packets are generated for at least two different baseline packets transmitted between a source and destination linked by multiple network paths. Each encapsulation packet comprises contents of a corresponding baseline packet, and one or more data values selected in accordance with a path balancing policy. The data values added to one encapsulation packet may differ from those added to another. Different network paths to the destination may be selected for different encapsulation packets of a given transmission based at least in part on the added data values.

Abstract translation: 公开了通过封装实现透明多路径利用的方法和装置。 针对由多个网络路径链接的源和目的地之间传输的至少两个不同的基线分组生成相应的封装分组。 每个封装分组包括相应基线分组的内容，以及根据路径平衡策略选择的一个或多个数据值。 添加到一个封装数据包的数据值可能与添加到另一封装数据包的数据值不同。 至少部分地基于所添加的数据值，可以为给定传输的不同封装分组选择到目的地的不同网络路径。

公开(公告)号：US20160173323A1

公开(公告)日：2016-06-16

申请号：US14923282

申请日：2015-10-26

Applicant: Amazon Technologies, Inc.

Inventor： Thomas Bradley Scholl ,  Andrew Bruce Dickinson

IPC: H04L12/24 ,  H04L12/703 ,  H04L12/707

CPC classification number: H04L41/0668 ,  H04L41/0654 ,  H04L45/04 ,  H04L45/22 ,  H04L45/245 ,  H04L45/28 ,  Y02D50/30

Abstract: Systems and methods are described to provide fault tolerant folded Clos networks. A folded Clos network is disclosed including a set of tier 1 routers interconnected with a set of tier 2 routers. Tier 1 routers are configured to view a set of tier 2 routers as a single aggregate router. Accordingly, tier 1 routers are unaware of faults between tier 2 routers and additional tier 1 routers. A throwback router is connected to each tier 2 router to facilitate handling of data under such fault conditions. When a tier 2 router receives undeliverable data, the data is passed to a throwback router, which retransmits the data to an additional tier 2 router. Data that is retransmitted multiple times can be disregarded by the throwback router.

Abstract translation: 描述了系统和方法来提供容错折叠Clos网络。 公开了一种折叠Clos网络，其包括与一组二层路由器互连的一层层次1路由器。 一级路由器被配置为将一组二层路由器视为单个聚合路由器。 因此，第1层路由器不知道第2层路由器和其他1级路由器之间的故障。 一个倒带路由器连接到每个二层路由器，以便于在这种故障条件下处理数据。 当二层路由器接收到不可投递的数据时，数据将被传递给一个丢弃的路由器，该路由器将数据重发到另一个二层路由器。 多次重传的数据可以被丢弃路由器忽略。

公开(公告)号：US11792116B1

公开(公告)日：2023-10-17

申请号：US17394090

申请日：2021-08-04

Applicant: Amazon Technologies, Inc.

Inventor： Andrew Bruce Dickinson ,  Anoop Dawani ,  Joseph Elmar Magerramov ,  Nishant Mehta ,  Lee Spencer Dillard

IPC: H04L45/00 ,  H04L43/0817 ,  H04L47/2483 ,  H04L47/783 ,  H04L45/02 ,  H04L9/40 ,  H04L45/302 ,  H04L45/7453

CPC classification number: H04L45/38 ,  H04L43/0817 ,  H04L45/04 ,  H04L45/306 ,  H04L45/7453 ,  H04L47/2483 ,  H04L47/783 ,  H04L63/0272

Abstract: Disclosed are various embodiments of a stateful network router. In one embodiment, a network data connection is intercepted between a first host and a second host on a network. First data packets from the network data connection sent by the first host to the second host are routed to a target network appliance. Second data packets from the network data connection sent by the second host to the first host are also to the target network appliance.