Dynamically defined virtual private network tunnels in hybrid cloud environments
First Claim
1. A method comprising:
- in a first virtual private network (VPN) agent, managing a first VPN tunnel in a plurality of VPN tunnels, wherein the first VPN tunnel provides communication for traffic between a first node in a first cloud and a second node in a second cloud in a hybrid cloud environment;
receiving a request from a VPN manager, the request including a first set of requirements for a first cloud application for the first VPN tunnel in the plurality of VPN tunnels;
creating the first VPN tunnel according to the first set of requirements;
receiving a modification request from the VPN manager containing a second set of requirements for a second cloud application; and
wherein the modification request comprises a selected one of either tuning the first VPN tunnel according to both the first and second set of requirements if the first and second requirements are compatible or creating a second VPN tunnel between the first node and the second node if the first and second requirements are not compatible, the second VPN tunnel managed by the VPN agent.
1 Assignment
0 Petitions
Accused Products
Abstract
A method, apparatus and computer program product manage a plurality of VPN tunnels between a first cloud and a second cloud in a hybrid cloud environment is described. A first virtual private network (VPN) agent manages a first VPN tunnel in a plurality of VPN tunnels. The first VPN tunnel provides communication for traffic between a first node in a first cloud and a second node in a second cloud in a hybrid cloud environment. The agent receives a request from a VPN manager which includes a first set of requirements for a first cloud application for the first VPN tunnel in the plurality of VPN tunnels. The agent creates the first VPN tunnel according to the first set of requirements. Next, the agent receives a modification request from the VPN manager containing a second set of requirements for a second cloud application. The modification request comprises a request either to tune the first VPN tunnel according to both the first and second set of requirements if the first and second requirements are compatible. Alternatively, the request may include creating a second VPN tunnel between the first node and the second node if the first and second requirements are not compatible. The second VPN tunnel is managed by the VPN agent.
28 Citations
20 Claims
-
1. A method comprising:
-
in a first virtual private network (VPN) agent, managing a first VPN tunnel in a plurality of VPN tunnels, wherein the first VPN tunnel provides communication for traffic between a first node in a first cloud and a second node in a second cloud in a hybrid cloud environment; receiving a request from a VPN manager, the request including a first set of requirements for a first cloud application for the first VPN tunnel in the plurality of VPN tunnels; creating the first VPN tunnel according to the first set of requirements; receiving a modification request from the VPN manager containing a second set of requirements for a second cloud application; and wherein the modification request comprises a selected one of either tuning the first VPN tunnel according to both the first and second set of requirements if the first and second requirements are compatible or creating a second VPN tunnel between the first node and the second node if the first and second requirements are not compatible, the second VPN tunnel managed by the VPN agent. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. Apparatus, comprising:
-
a processor; computer memory holding computer program instructions executed by the processor for a virtual private network (VPN) agent to manage a first VPN tunnel of a plurality of VPN tunnels between a first node in a first cloud and a second node in a second cloud in a hybrid cloud environment, the computer program instructions comprising; program code, operative to receive a first request from a VPN manager, the request including a first set of requirements for a first cloud application for the first VPN tunnel in the plurality of VPN tunnels, program code, operative to create the first VPN tunnel according to the first set of requirements; program code, operative to receive a second request from the VPN manager, the second request including a second set of requirements for a second cloud application; and program code operative to perform a selected one of either tuning the first VPN tunnel according to both the first and second set of requirements if the first and second requirements are compatible or creating a second VPN tunnel between the first node and the second node if the first and second requirements are not compatible, the second VPN tunnel managed by the VPN agent. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15)
-
-
16. A computer program product in a non-transitory computer readable medium for use in a data processing system, the computer program product holding computer program instructions executed by the processor to manage a first VPN tunnel of a plurality of VPN tunnels between a first node in a first cloud and a second node in a second cloud in a hybrid cloud environment, the computer program instructions comprising:
-
program code, operative to instruct a virtual private network (VPN) agent to manage a first VPN tunnel of a plurality of VPN tunnels between a first node in a first cloud and a second node in a second cloud in a hybrid cloud environment, the computer program instructions comprising; program code, operative to receive a first request from a VPN manager, the request including a first set of requirements for a first cloud application for the first VPN tunnel in the plurality of VPN tunnels, program code, operative to create the first VPN tunnel according to the first set of requirements; program code, operative to receive a second request from the VPN manager, the second request including a second set of requirements for a second cloud application; and program code operative to perform a selected one of either tuning the first VPN tunnel according to both the first and second set of requirements if the first and second requirements are compatible or creating a second VPN tunnel between the first node and the second node if the first and second requirements are not compatible, the second VPN tunnel managed by the VPN agent. - View Dependent Claims (17, 18, 19, 20)
-
Specification