Direct connect virtual private interface for a one to many connection with multiple virtual private clouds
원문보기
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
H04L-012/00
H04L-012/931
G06F-009/50
H04L-012/24
출원번호
US-0270667
(2014-05-06)
등록번호
US-9584445
(2017-02-28)
발명자
/ 주소
Stubberfield, Andre
Albert, Fabrice
Maitra, Sougata
출원인 / 주소
Equinix, Inc.
대리인 / 주소
Shumaker & Sieffert, P.A.
인용정보
피인용 횟수 :
2인용 특허 :
15
초록▼
Systems and methods include a direct connect virtual private interface includes a physical port configured to receive one physical connection in order to provide two or more virtual connections for multiple virtual private clouds (VPCs) within a public cloud provider's infrastructure. Each public cl
Systems and methods include a direct connect virtual private interface includes a physical port configured to receive one physical connection in order to provide two or more virtual connections for multiple virtual private clouds (VPCs) within a public cloud provider's infrastructure. Each public cloud infrastructure has its own multiple VPCs. Each VPC is an on demand configurable pool of shared computing resources allocated within each public cloud provider's infrastructure that provides a certain level of isolation via an access control mechanism between different organizations using the pool of shared computing resources of that VPC's public cloud infrastructure. The direct connect virtual private interface is configured to provision a virtual circuit from the one physical connection between the public cloud infrastructure for each VPC within each public cloud provider's infrastructure.
대표청구항▼
1. A direct connect virtual private interface comprising: a physical port configured to receive one physical connection in order to provide respective virtual connections for multiple virtual private clouds within a public cloud provider infrastructure; andat least one physical hardware router in co
1. A direct connect virtual private interface comprising: a physical port configured to receive one physical connection in order to provide respective virtual connections for multiple virtual private clouds within a public cloud provider infrastructure; andat least one physical hardware router in communication with the public cloud provider infrastructure via the physical port,where the virtual private clouds comprise respective on-demand configurable pools of shared computing resources allocated within the public cloud provider infrastructure that provide a level of isolation via access control mechanisms between respective organizations using the virtual private clouds,where the direct connect virtual private interface is configured with private virtual interfaces to provide, for each virtual private cloud, a virtual connection between the virtual private cloud within the public cloud provider infrastructure and the at least one physical hardware router, andwhere the at least one physical hardware router comprises respective virtual routers for the virtual private clouds, each virtual router configured to import respective routes for the virtual private clouds from the other virtual routers to enable the virtual private clouds to exchange traffic with one another over the private virtual interfaces via the at least one physical hardware router. 2. The direct connect virtual private interface of claim 1, wherein the direct connect virtual private interface has a plurality of physical ports for multiple public cloud provider infrastructures to physically connect to the direct connect virtual private interface as well as physical ports for two or more private Ethernet lines to connect to the direct connect virtual private interface. 3. The direct connect virtual private interface of claim 1, wherein one or more telecommunications carriers connect to the direct connect virtual private interface, andwhere the public cloud infrastructure has the organizations using the shared computing resources within the public cloud infrastructure, each organization with its own portion of the pool of shared computing resources forming a virtual private cloud for that organization, which is isolated from the other organizations using the shared computing resources within the public cloud infrastructure. 4. The direct connect virtual private interface of claim 1, wherein each virtual private cloud has its own private virtual interface into the direct connect virtual private interface, andwherein the virtual routers are set up or simulated by software running on the at least one physical hardware router that can be set up, taken down, moved around, and scaled up or down on-demand. 5. The direct connect virtual private interface of claim 1, wherein each virtual private cloud has its own private virtual interface into the direct connect virtual private interface, and wherein each organization having a virtual private cloud also has a client device resident within a multiple tenant datacenter, where the direct connect virtual private interface establishes the virtual connection between the virtual private cloud in the public cloud and the client device via the at least one physical hardware router. 6. The direct connect virtual private interface of claim 1, wherein the direct connect virtual private interface incorporates a number of components to provision the virtual connection, where the number of components includes the at least one physical hardware router configurable to implement virtual routing and forwarding (VRF) and one or more Service Access Switches configurable to establish a virtual local area networks (VLANs) to create virtual routing tunnels between each virtual private cloud and the direct connect virtual private interface. 7. The direct connect virtual private interface of claim 4, wherein the direct connect virtual private interface is configured to assign each virtual private cloud of the public cloud provider infrastructure a separate private virtual interface, a separate secure virtual routing network, and a separate route table within the direct connect virtual private interface in order to keep the traffic from each virtual private cloud separate rather than comingled with all the traffic received from the public cloud provider infrastructure. 8. The direct connect virtual private interface of claim 7, wherein the direct connect virtual private interface incorporates a number of components to implement each virtual connection, where the number of components includes the one or more physical hardware routers and virtual routing forwarding instances (VRFs) to create a secure circuit between each virtual private cloud and the direct connect virtual private interface, where VRFs allow multiple instances of a routing table to co-exist within the same router at the same time, where the direct connect virtual private interface cooperates with each public cloud provider infrastructure to allow each VPC to scale its use of the pool of shared computing resources, perform at the VPC's desired level of performance, and have the security desired and compatible with the VPC. 9. The direct connect virtual private interface of claim 1, wherein the virtual routers comprise respective route tables, each of the route tables storing one or more imported/exported routes from other route tables to allow connectivity/communication for the traffic within each virtual private cloud in this one to many connection set up established through the direct connect virtual private interface, and wherein the virtual routers handle inter virtual private cloud communication as well as external exchange of communication of traffic between the multiple virtual private clouds using the route tables. 10. The direct connect virtual private interface of claim 1, further comprising: an additional router configured to:handle control communications between each local network of an organization using one of the virtual private cloud and the organization's telecommunications carrier connecting to the direct connect virtual private interface; andenable and control access between all of the organization's local networks in various public cloud provider infrastructures. 11. The direct connect virtual private interface of claim 1, wherein the virtual routers act as independent entities and the direct connect virtual private interface is configured to allow for overlapping network VLANs between public cloud providers, organizations, and telecommunications carriers. 12. The direct connect virtual private interface of claim 1, wherein the isolation between one organization using a first virtual private cloud of the virtual private clouds and all other organizations using virtual private clouds of the virtual private clouds is achieved through allocation of a private IP subnet and a virtual communication construct per organization. 13. The direct connect virtual private interface of claim 1, wherein, for cloud infrastructure services (SaaS), the public cloud provider providing the public cloud infrastructure and the company realizing the virtual private cloud service over the public cloud provider infrastructure are different. 14. The direct connect virtual private interface of claim 1, wherein the direct connect virtual private interface is configured to require only one physical connection to the physical port to connect with the public cloud provider infrastructure in order to create multiple virtual connections with corresponding virtual private interfaces in the direct connect virtual private interface in order to deliver services to the organizations having respective virtual private clouds within the public cloud provider infrastructure. 15. The direct connect virtual private interface of claim 1, wherein the direct connect virtual private interface is configured to use a switched virtual circuit to form a virtual connection, such that after a virtual connection is established between two nodes or application processes, a bit stream or byte stream may be delivered between the nodes, andwherein a virtual connection protocol allows higher level protocols to avoid dealing with the division of data into segments, packets, or frames, where the switched virtual circuit is a temporary connection that is established and maintained only for the duration of a data transfer session. 16. The direct connect virtual private interface of claim 1, wherein each of the organizations uses a single physical connection to the public cloud provider infrastructure,where over the single physical connection to the public cloud provider infrastructure multiple service provider clients gain access only to their own virtual private cloud. 17. The direct connect virtual private interface of claim 16, wherein the public cloud provider infrastructure security setup is maintained because all virtualization is unique for each of the multiple service provider clients so that traffic from different multiple service provider clients is not commingled. 18. The direct connect virtual private interface of claim 1, where the direct connect virtual private interface is configured to use one or more public interfaces that advertise via Border Gateway Protocol additional network use in the public cloud provider infrastructure in addition to the organizations each having their own virtual private cloud in the public cloud provider infrastructure,wherein both the private interfaces and one or more public interfaces traverse the one physical connection between the public cloud provider infrastructure and the direct connect virtual private interface, where the public virtual interface enables access to a commercial web service for hosting computer applications. 19. A method comprising: configuring a physical port of a direct connect private virtual interface to receive one physical connection with a public cloud infrastructure;connections over the one physical connection for multiple virtual private clouds within the public cloud provider infrastructure,where the virtual private clouds comprise respective on-demand configurable pools of shared computing resources allocated within the public cloud provider infrastructure that provide a level of isolation via access control mechanisms between respective organizations using the virtual private clouds; andconfiguring the direct connect virtual private interface with private virtual interfaces to provide, for each virtual private cloud, a virtual connection between the virtual private cloud within the public cloud provider infrastructure and at least one physical hardware router in communication with the public cloud provider infrastructure via the physical port; andconfiguring the at least one physical hardware router with respective virtual routers for the virtual private clouds, each virtual router configured to import respective routes for the virtual private clouds from the other virtual routers to enable the virtual private clouds to exchange traffic with one another over the private virtual interfaces via the at least one physical hardware router. 20. A physical hardware router comprising: a physical port configured to receive one physical connection to provide respective virtual connections for multiple virtual private clouds within a public cloud provider infrastructure, wherein the physical port is configured to exchange data communication with the public cloud provider infrastructure,where each of the virtual private clouds comprises an on-demand configurable pool of shared computing resources allocated within the public cloud provider infrastructure that provide isolation via access control mechanisms between respective organizations using the virtual private clouds;a plurality of private virtual interfaces, each of the private virtual interfaces configured to provide a separate virtual connection between a corresponding virtual private cloud within the public cloud provider infrastructure and the physical hardware router via the physical port; anda plurality of virtual routers, each of the virtual routers configured to import respective routes for the virtual private clouds from the other virtual routers and to switch traffic among the virtual private clouds to enable the virtual private clouds to exchange traffic with one another over the private virtual interfaces via the physical hardware router.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (15)
Pedro, John M., Cascading cable tray system with pre-fabricated support structure.
Sundaresan, Krishna; Chellappa, Mahesh; Krishnamurthy, Chandrasekar; Pignataro, Carlos M., Method and system for optimizing link aggregation usage during failures.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.