公开(公告)号：US20230179517A1

公开(公告)日：2023-06-08

申请号：US18160997

申请日：2023-01-27

Applicant: Amazon Technologies, Inc.

Inventor： Baihu Qian ,  Omer Hashmi ,  Thomas Nguyen Spendley ,  Bashuman Deb ,  Shridhar Kulkarni ,  Paul John Tillotson ,  Ramin Ali Dousti ,  Indira Radhika Pulla ,  Steve Ge ,  Nicholas Ryan Lombardi ,  Nick Matthews ,  Anoop Dawani

IPC: H04L45/586 ,  H04L45/02 ,  H04L45/16

CPC classification number: H04L45/586 ,  H04L45/04 ,  H04L45/16

Abstract: An indication of a set of premises between which network traffic is to be routed via a private fiber backbone of a provider network is obtained. Respective virtual routers are configured for a first premise and a second premise, and connectivity is established between the virtual routers and routing information sources at the premises. Contents of at least one network packet originating at the first premise are transmitted to the second premise via the private fiber backbone using routing information obtained at the virtual routers from the routing information source at the second premise.

公开(公告)号：US11824773B2

公开(公告)日：2023-11-21

申请号：US17218031

申请日：2021-03-30

Applicant: Amazon Technologies, Inc.

Inventor： Baihu Qian ,  Omer Hashmi ,  Thomas Nguyen Spendley ,  Bashuman Deb ,  Shridhar Kulkarni ,  Paul John Tillotson ,  Indira Radhika Pulla ,  Ramin Ali Dousti ,  Nicholas Ryan Lombardi ,  Steve Ge ,  Nick Matthews ,  Anoop Dawani

IPC: H04L45/586 ,  H04L45/24 ,  H04L12/46 ,  H04L45/00 ,  H04L45/02

CPC classification number: H04L45/586 ,  H04L12/4641 ,  H04L45/02 ,  H04L45/20 ,  H04L45/24

Abstract: A pair of virtual routers is configured. In response to programmatic requests, dynamic transfer of routing information between the routers in accordance with configuration settings indicated by a client is enabled. The routing information is associated with a set of isolated networks to which the virtual routers are attached. A network packet originating at an address in a first isolated network is transmitted to an address in a second isolated network using a route determined from routing information transmitted between the virtual routers according to the configuration settings.

公开(公告)号：US20230164059A1

公开(公告)日：2023-05-25

申请号：US17456549

申请日：2021-11-24

Applicant: Amazon Technologies, Inc.

Inventor： Anoop Dawani ,  Bashuman Deb ,  Baihu Qian ,  Omer Hashmi ,  Nick Matthews ,  Shridhar Kulkarni ,  Thomas Nguyen Spendley ,  Indira Radhika Pulla ,  David Jonathan Adams ,  Nicholas Ryan Lombardi ,  Brandon Michael LaRue ,  Aaron Scott DeBruin ,  Ramin Ali Dousti

IPC: H04L45/00 ,  H04L45/30 ,  H04L45/44 ,  H04L45/02

CPC classification number: H04L45/04 ,  H04L45/306 ,  H04L45/566 ,  H04L45/44 ,  H04L45/02 ,  H04L63/0272

Abstract: Systems and methods are provided for management of network segments that cross geographic regions and/or other types of network divisions in a cloud-based network environment. Gateway may manage traffic across regions using routing metadata that includes a segment identifier. The gateways may also signal their routes across regions based on segment data, and implement the signaled routes using segment-based routing policies. Route selection may be performed using optimization data.

公开(公告)号：US12160366B2

公开(公告)日：2024-12-03

申请号：US17218039

申请日：2021-03-30

Applicant: Amazon Technologies, Inc.

Inventor： Bashuman Deb ,  Omer Hashmi ,  Thomas Nguyen Spendley ,  Baihu Qian ,  Guru Kannan ,  Shridhar Kulkarni ,  Paul John Tillotson ,  Ramin Ali Dousti ,  Indira Radhika Pulla ,  Yuxin Ren ,  Fahed Hijazi ,  Xiyuan Gou ,  Steve Ge ,  Nicholas Ryan Lombardi ,  Brandon Michael LaRue ,  Jaywant U. Kapadnis ,  Anoop Dawani

IPC: H04L45/586 ,  H04L45/74 ,  H04L65/102 ,  H04L69/12 ,  H04L69/326

Abstract: A message indicating an auxiliary task associated with traffic transmitted via a virtual router between a pair of isolated networks is received at an offloading device. A stack multiplexer at the offloading device selects a protocol stack instance to process the message. A result of the auxiliary task is obtained by the multiplexer from the selected protocol stack instance and transmitted to the virtual router, where it is used to transmit a packet between the isolated networks.

公开(公告)号：US20230164076A1

公开(公告)日：2023-05-25

申请号：US17456548

申请日：2021-11-24

Applicant: Amazon Technologies, Inc.

Inventor： Anoop Dawani ,  Bashuman Deb ,  Baihu Qian ,  Omer Hashmi ,  Nick Matthews ,  Shridhar Kulkarni ,  Thomas Nguyen Spendley ,  Steve Ge ,  Justin Lin Hsieh ,  Guru Kannan ,  Alok Mishra

IPC: H04L45/745 ,  H04L12/46 ,  H04L12/66

CPC classification number: H04L45/745 ,  H04L12/4641 ,  H04L12/66

Abstract: Systems and methods are provided for management of network segments that cross geographic regions and/or other types of network divisions in a cloud-based network environment. A cloud-based network provider's geographically-dispersed network infrastructure may serve as the core of a client's private wide area network, and the client may define isolated segments to which other networks (virtual private clouds, virtual private networks, etc.) may be attached. The various segments may remain logically isolated from each other even when implemented across some or all of the same regions—and using the same physical and/or virtual routing components—as other segments of the same client and/or other clients.

公开(公告)号：US11855893B2

公开(公告)日：2023-12-26

申请号：US17456548

申请日：2021-11-24

Applicant: Amazon Technologies, Inc.

Inventor： Anoop Dawani ,  Bashuman Deb ,  Baihu Qian ,  Omer Hashmi ,  Nick Matthews ,  Shridhar Kulkarni ,  Thomas Nguyen Spendley ,  Steve Ge ,  Justin Lin Hsieh ,  Guru Kannan ,  Alok Mishra

IPC: H04L45/745 ,  H04L12/66 ,  H04L12/46

CPC classification number: H04L45/745 ,  H04L12/4641 ,  H04L12/66

Abstract: Systems and methods are provided for management of network segments that cross geographic regions and/or other types of network divisions in a cloud-based network environment. A cloud-based network provider's geographically-dispersed network infrastructure may serve as the core of a client's private wide area network, and the client may define isolated segments to which other networks (virtual private clouds, virtual private networks, etc.) may be attached. The various segments may remain logically isolated from each other even when implemented across some or all of the same regions—and using the same physical and/or virtual routing components—as other segments of the same client and/or other clients.

公开(公告)号：US11799755B2

公开(公告)日：2023-10-24

申请号：US17456549

申请日：2021-11-24

Applicant: Amazon Technologies, Inc.

Inventor： Anoop Dawani ,  Bashuman Deb ,  Baihu Qian ,  Omer Hashmi ,  Nick Matthews ,  Shridhar Kulkarni ,  Thomas Nguyen Spendley ,  Indira Radhika Pulla ,  David Jonathan Adams ,  Nicholas Ryan Lombardi ,  Brandon Michael LaRue ,  Aaron Scott DeBruin ,  Ramin Ali Dousti

IPC: H04L45/00 ,  H04L45/02 ,  H04L45/302 ,  H04L45/44 ,  H04L9/40 ,  H04L45/50 ,  H04L45/021 ,  H04L41/0895 ,  H04L49/00

CPC classification number: H04L45/04 ,  H04L45/02 ,  H04L45/306 ,  H04L45/44 ,  H04L45/566 ,  H04L41/0895 ,  H04L45/021 ,  H04L45/507 ,  H04L49/3009 ,  H04L63/0272

Abstract: Systems and methods are provided for management of network segments that cross geographic regions and/or other types of network divisions in a cloud-based network environment. Gateway may manage traffic across regions using routing metadata that includes a segment identifier. The gateways may also signal their routes across regions based on segment data, and implement the signaled routes using segment-based routing policies. Route selection may be performed using optimization data.

公开(公告)号：US20220321469A1

公开(公告)日：2022-10-06

申请号：US17218031

申请日：2021-03-30

Applicant: Amazon Technologies, Inc.

Inventor： Baihu Qian ,  Omer Hashmi ,  Thomas Nguyen Spendley ,  Bashuman Deb ,  Shridhar Kulkarni ,  Paul John Tillotson ,  Indira Radhika Pulla ,  Ramin Ali Dousti ,  Nicholas Ryan Lombardi ,  Steve Ge ,  Nick Matthews ,  Anoop Dawani

IPC: H04L12/713 ,  H04L12/707 ,  H04L12/717 ,  H04L12/733 ,  H04L12/46

Abstract: A pair of virtual routers is configured. In response to programmatic requests, dynamic transfer of routing information between the routers in accordance with configuration settings indicated by a client is enabled. The routing information is associated with a set of isolated networks to which the virtual routers are attached. A network packet originating at an address in a first isolated network is transmitted to an address in a second isolated network using a route determined from routing information transmitted between the virtual routers according to the configuration settings.

公开(公告)号：US20240171583A1

公开(公告)日：2024-05-23

申请号：US18058168

申请日：2022-11-22

Applicant: Amazon Technologies, Inc.

Inventor： Shovan Kumar Das ,  Jessica Kira Szmajda ,  Bashuman Deb ,  Sujan Bolisetti ,  Shridhar Kulkarni ,  Baihu Qian ,  Brandon Michael LaRue ,  Stephen A. Saville

IPC: H04L9/40

CPC classification number: H04L63/102 ,  H04L63/0236 ,  H04L63/101

Abstract: Systems and methods are provided for creating and running an instance of a dynamic access control system (DACS). Trust providers may be defined in a trust broker of the DACS such that trust information associated with the trust providers can be used to create a custom data structure. Resources and resource groups may be defined in the DACS. Policies may be configured or coded in the DACS to map the custom data structure to recourses or resources groups. Additionally, policies may be configured or coded in the DACS to route the data structure and request to network segments or shared with other parties.

公开(公告)号：US11601365B2

公开(公告)日：2023-03-07

申请号：US17218036

申请日：2021-03-30

Applicant: Amazon Technologies, Inc.

Inventor： Baihu Qian ,  Omer Hashmi ,  Thomas Nguyen Spendley ,  Bashuman Deb ,  Shridhar Kulkarni ,  Paul John Tillotson ,  Ramin Ali Dousti ,  Indira Radhika Pulla ,  Steve Ge ,  Nicholas Ryan Lombardi ,  Nick Matthews ,  Anoop Dawani

IPC: H04L45/586 ,  H04L45/02 ,  H04L45/16

Abstract: An indication of a set of premises between which network traffic is to be routed via a private fiber backbone of a provider network is obtained. Respective virtual routers are configured for a first premise and a second premise, and connectivity is established between the virtual routers and routing information sources at the premises. Contents of at least one network packet originating at the first premise are transmitted to the second premise via the private fiber backbone using routing information obtained at the virtual routers from the routing information source at the second premise.