公开(公告)号：US10320644B1

公开(公告)日：2019-06-11

申请号：US14853646

申请日：2015-09-14

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Kyle Tailor Akers ,  Kevin Christopher Miller ,  Michael Brooke Furr ,  Christopher Ian Hendrie

IPC: G06F15/173 ,  H04L12/26 ,  H04L12/24

Abstract: A traffic analyzer of a provider network identifies endpoint categories into which traffic directed to or from a first isolated virtual network of the provider network is to be classified. A first endpoint category includes an endpoint configured in a second isolated virtual network. Using packet-level metrics collected at virtualization management components of virtualization hosts, the traffic analyzer determines the amount of data transmitted between the first isolated virtual network and the various endpoint categories during selected time intervals. The traffic analyzer provides the categorized traffic amounts as input to a predictive model, and stores expected future traffic trends generated by the model.

公开(公告)号：US10187289B1

公开(公告)日：2019-01-22

申请号：US14981677

申请日：2015-12-28

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Mark Edward Stalzer ,  Marco Eulenfeld

IPC: H04L12/751 ,  H04L12/66

Abstract: A system includes a provider network and a client network connected via a dedicated physical connection. The client network and the provider network exchange routing information using routing protocol messages, such as border gateway protocol (BGP) update messages exchanged during a BGP session. A provider network includes tag field values in outgoing routing protocol messages that indicate a portion of the provider network wherein resources of the provider network associated with a corresponding route are located. The client network may use the tag field value to determine whether to add the route to a routing table of the client network. A client network may also include tag field values in outgoing routing protocol messages to a provider network. The tag field values may indicate what portions of the provider network are to receive the routes from the client network. For example a tag field value may indicate that a route is to be propagated within a limited portion of the provider network.

公开(公告)号：US09749039B1

公开(公告)日：2017-08-29

申请号：US13913763

申请日：2013-06-10

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  David Brian Lennon ,  Patrick Brigham Cullen ,  Daniel Thomas Robinson ,  Jawash Mohamed ,  Alexander Justin Penney ,  Kevin Christopher Miller ,  Marwan Salah Oweis

IPC: H04B10/07 ,  G06F21/30

CPC classification number: H04B10/07 ,  G06F21/30 ,  G06F21/44 ,  H04B10/073

Abstract: A portable device is brought into a data center for testing connectivity between a customer and a service provider. A user of the device uses the device to requests ticket and customer information from a service provider in order to obtain more information about a particular task. The user plugs a cable into the device and performs a series of diagnostic tests on the connection. The device is configured to display the results of the diagnostic tests and any associated errors. The user of the device performs one or more actions based on the results of the diagnostic tests.

公开(公告)号：US20210075727A1

公开(公告)日：2021-03-11

申请号：US16952733

申请日：2020-11-19

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Sanjay Arunkumar Bhal ,  James Michael Lamanna ,  Kim Thanh Do ,  Justin Thomas Smith

IPC: H04L12/741 ,  H04L29/06 ,  H04L12/723 ,  H04L12/46 ,  H04L12/24 ,  H04L29/12

Abstract: The following description is directed to configuring gateways in computer networks. For example, a method includes receiving a first request from a client associated with a configurable network. The first request can request associating a set of network addresses assigned to the configurable network to a gateway. A second request can be received from a client associated with the gateway. The second request can request accepting the association of the first request. It can be determined that the set of network addresses do not overlap with a network address space that is accessible using the gateway. Routing information can be generated for the gateway. The generated routing information can be used to configure the gateway for forwarding network packets between the client private network and the configurable network.

公开(公告)号：US10771309B1

公开(公告)日：2020-09-08

申请号：US15926849

申请日：2018-03-20

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Mark Edward Stalzer ,  Andrew Hemstreet Redmon

IPC: G06F15/173 ,  H04L12/24 ,  H04L12/713 ,  H04L12/751

Abstract: A technology is described for updating an Autonomous System Number (ASN) in a Border Gateway Protocol (BGP) routing configuration. An example method may include receiving a request to update a BGP routing configuration on a gateway with an ASN associated with a customer. In response to the request, the BGP routing configuration on the gateway may be updated to replace a default ASN associated with a computing service provider with the ASN associated with the customer. The BGP routing configuration on the gateway may also be updated to allow the ASN associated with the customer to appear in an Autonomous System (AS) path at least twice, thereby allowing for BGP routes to be exchanged between gateways.

公开(公告)号：US10728085B1

公开(公告)日：2020-07-28

申请号：US15927690

申请日：2018-03-21

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Shuai Ye

IPC: H04L12/24 ,  H04L12/58

Abstract: In a provider network, data indicative of an operational state of the computing devices of the provider network is processed by an inference engine. The inference engine is configured to model operational characteristics of the computing devices of the provider network. The inference engine determines a potential fault condition for one of the computing devices of the provider network. A remedial action is invoked.

公开(公告)号：US20200153749A1

公开(公告)日：2020-05-14

申请号：US16739783

申请日：2020-01-10

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen

IPC: H04L12/911 ,  G06Q30/02 ,  H04L12/24 ,  G06Q40/00 ,  G06Q10/10 ,  G06Q30/06 ,  G06Q10/06 ,  G06Q30/00

Abstract: A connectivity coordinator may receive a request for a dedicated physical connection between a provider network and a client network. In response, the connectivity coordinator may determine a capacity for each connection capacity group available to accept the dedicated physical connection. The connectivity coordinator may use the determined capacities for each available connection capacity group to determine bias response information for each connection capacity group based on the determined capacities and a capacity bias model. The connectivity coordinator may provide the determined bias response information to the client as part of a response to the connectivity request to influence the client to select to connect to a connection capacity group that has more physical ports available to accept the dedicated physical connection than other connection capacity groups that have less ports available to accept the dedicated physical connection.

公开(公告)号：US09712386B1

公开(公告)日：2017-07-18

申请号：US14625537

申请日：2015-02-18

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Russell Richard Leighton ,  Wesley Douglas Doonan ,  Kevin Christopher Miller

IPC: G06F15/16 ,  H04L12/24 ,  G06F9/455 ,  H04L12/46

CPC classification number: H04L41/0806 ,  G06F9/45558 ,  G06F2009/45595 ,  H04L12/4641 ,  H04L41/0893 ,  H04L41/12

Abstract: A connectivity manager (CM) of a provider network establishes a plurality of ERGs (edge resource groups), each comprising at least an edge router and a network marker translation agent (NMTA). The CM selects a particular ERG to be used for network traffic between a first set of resources of a virtual computing service of the provider network and a second set of resources outside the provider network. To enable connectivity between the first and second set of resources, the CM initiate propagation of (a) routing metadata to an edge router of the particular ERG and/or (b) a network marker mapping entry to an NMTA of the particular ERG.

公开(公告)号：US20240039895A1

公开(公告)日：2024-02-01

申请号：US18487575

申请日：2023-10-16

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Omer Hashmi ,  Sanjay Bhal

IPC: H04L9/40 ,  H04L67/10 ,  H04L12/66 ,  H04L12/46

CPC classification number: H04L63/0272 ,  H04L67/10 ,  H04L12/66 ,  H04L12/4633 ,  H04L63/0428 ,  H04L63/18

Abstract: A request to establish an encrypted VPN connection between a network and the provider network via a dedicated direct physical link and a set of resources of the provider network is received. An isolated virtual network (IVN) is established to implement an encryption virtual private gateway to be used for the connection. Protocol processing engines (PPEs) are instantiated within the IVN, address information of the PPEs is exchanged with the external network and an encrypted VPN tunnel is configured between the PPEs and the external network. Routing information pertaining to the set of resources is provided to the external network via at least one of the encrypted VPN tunnels, enabling routing of customer data to the set of resources within the provider network from the external network via an encrypted VPN tunnel implemented over a dedicated direct physical link between the external network and the provider network.

公开(公告)号：US11470001B2

公开(公告)日：2022-10-11

申请号：US16952733

申请日：2020-11-19

Applicant: Amazon Technologies, Inc.

Inventor： Po-Chun Chen ,  Sanjay Arunkumar Bhal ,  James Michael Lamanna ,  Kim Thanh Do ,  Justin Thomas Smith

IPC: H04L45/745 ,  H04L9/40 ,  H04L45/50 ,  H04L12/46 ,  H04L41/0893 ,  H04L61/106

Abstract: The following description is directed to configuring gateways in computer networks. For example, a method includes receiving a first request from a client associated with a configurable network. The first request can request associating a set of network addresses assigned to the configurable network to a gateway. A second request can be received from a client associated with the gateway. The second request can request accepting the association of the first request. It can be determined that the set of network addresses do not overlap with a network address space that is accessible using the gateway. Routing information can be generated for the gateway. The generated routing information can be used to configure the gateway for forwarding network packets between the client private network and the configurable network.