公开(公告)号：US11528201B1

公开(公告)日：2022-12-13

申请号：US16904415

申请日：2020-06-17

Applicant: Amazon Technologies, Inc.

Inventor： Steven Bruce Richards ,  David James Goodell ,  Nandita Mathews

IPC: H04L43/062 ,  H04L47/34 ,  H04L43/50

Abstract: Features are disclosed for enriching a packet of network traffic between a first computing environment and a second computing environment with telemetry information. Each computing environment can include a network device for enriching packets with telemetry information and parsing enriched packets. A source network device can select a packet of the network traffic for enrichment based on enrichment parameters and generate an enriched packet including payload information and telemetry information. A destination network device can receive the enriched packet and parse the enriched packet to separate the payload information and telemetry information. The destination network device can transmit transmission information to the source network device based on the enriched packet.

公开(公告)号：US11516050B2

公开(公告)日：2022-11-29

申请号：US16579743

申请日：2019-09-23

Applicant: Amazon Technologies, Inc.

Inventor： Anoop Dawani ,  Joseph Elmar Magerramov ,  Zachary Brandes ,  Apoorv Mittal ,  Bharadwaj Avva ,  Ryan James Schaefer ,  Kiran Venkat Sayeeram Karpurapu ,  Ajay Jha ,  Steven Bruce Richards ,  Richard H Galliher

IPC: H04L12/46 ,  H04L43/10

Abstract: Technologies are disclosed for monitoring network traffic using traffic mirroring. According to some examples, traffic mirroring allows customers to monitor traffic at different sources within a VPC. For example, a source may be any Elastic Network Interface (ENI) in their VPC, including elastic network interfaces (ENIs) on virtual machine instances, Network Address Translation (NAT) Gateways, Load Balancers, VPC endpoints, Internal Gateways, Transit Gateways, and more. Filters can be utilized to determine the network traffic to mirror. A customer may also configure to monitor real-time traffic with a monitoring appliance of their choice. With traffic mirroring, data traffic may be identified and sent to one or more target devices. Customers may monitor traffic within a VPC for content inspection, forensic analysis, troubleshooting, record keeping, and the like. Using traffic mirroring, customers can replicate VPC traffic, along with full payload data, without installing and managing agents on virtual machine instances.