-
公开(公告)号:US12284110B1
公开(公告)日:2025-04-22
申请号:US17853531
申请日:2022-06-29
Applicant: Amazon Technologies, Inc.
Inventor: Joan Barcelo Llado , Eric Charles Briffa , Bobby Brown , Kenan Yang , Seyed Arash Sadrieh , Tahir Azim , Julien Ridoux , Harvo Reyzell Jones , Thomas Bradley Scholl , Ali Khayam , Robert Louis Mosher , Michael W. Palladino , Rajat Chaudhary , Nikhil Ashok Arjunagi , Fiachra John Groarke
IPC: H04L45/12 , H04L43/087 , H04L43/0888 , H04L45/121 , H04L47/125
Abstract: Technologies are disclosed for performing context-aware routing of traffic based on an application of a series of filters and/or selectors to determine an optimal group of interfaces for servicing traffic relating to a prefix. A traffic management control plane processes input data corresponding to aggregated telemetry data for a network by determining candidate groups of interfaces to service a network prefix and applies tunable filters and/or selectors to the candidate groups to determine a targeted group to use for servicing traffic corresponding to the prefix. The determined targeted group is mapped to the prefix in a mapping result, which is then provided to an actuator interface to control network devices to inject the new mapping into the network to control traffic according to the mapping.
-
公开(公告)号:US11985064B1
公开(公告)日:2024-05-14
申请号:US18083216
申请日:2022-12-16
Applicant: Amazon Technologies, Inc.
Inventor: Christine Estefania Morales Hernandez , Ahmed Negm , Thomas Bradley Scholl , Suresh Ambalavanan , Keerthi Krishnan , Michael W. Palladino , Valentin Iulian Neacsu , Fiachra John Groarke
IPC: H04L45/748 , H04L41/0604 , H04L45/125
CPC classification number: H04L45/748 , H04L41/0627 , H04L45/125
Abstract: A detection mechanism is disclosed for identifying peers transmitting network traffic towards a cloud provider using routing prefixes that were not advertised for that peer. Once detected, an alarm condition can occur and the peer notified to remove any static route configurations. In one embodiment, a collector server computer can be used to acquire routing prefixes advertised to a peer. A second server computer can be used to obtain network traffic received from the peer. A comparison can then be made between the advertised prefixes and the network traffic being received. If network traffic is being received for unadvertised prefixes, then an alarm condition can occur. The detection mechanism can regularly inspect active traffic flows against BGP route advertisements at fixed intervals. For peers that are identified that are not in compliance with route advertisements, the alarm condition can occur for follow-up remediation.
-
公开(公告)号:US20230246943A1
公开(公告)日:2023-08-03
申请号:US17590285
申请日:2022-02-01
Applicant: Amazon Technologies, Inc.
Inventor: Bradford Sachin Chatterjee , Thomas Bradley Scholl , Michael W. Palladino , Cheng-Jia Lai , Christopher Jason Brown , Yao Liu , Sasha Robbins , Blake Hoelzel , Eric Charles Briffa , Madhura Kale , Dennis Marinus , Matt Chung , Ibn Wendell Archer
Abstract: A system can determine by which path/tunnel an Internet destination can be best reached for a user with an IP address from a static BGP range. The system looks up the destination address in an egress map. This map can either specify a tunnel that should be used for encapsulation for static BGP, or (when tunnel is not present) cause the system to send out unencapsulated traffic, in which the traffic follows normal BGP routing on a border network.
-
-
Search Results
3
records
(took 0.013 seconds)
