Extending an internet content delivery network into an enterprise environment by locating ICDN content servers topologically near an enterprise firewall
First Claim
1. A method operative in an Internet content delivery network (ICDN) having a set of content servers organized into regions and that provides delivery of Internet content on behalf of participating content providers, comprising:
- establishing a set of one or more enterprise CDN regions topologically near an enterprise firewall, wherein each enterprise CDN region has one or more ECDN-aware surrogate origin servers;
responsive to a request for given ECDN content originating from an a given entity, mapping the given entity to a preferred enterprise CDN region that is likely to host the given ECDN content;
determining if the given entity is authorized to obtain the given ECDN content; and
if the given entity is authorized to obtain the given ECDN content, attempting to serve the given ECDN content from the preferred enterprise CDN region.
1 Assignment
0 Petitions
Accused Products
Abstract
An Internet content delivery network deploys one or more CDN server regions in an enterprise and manages those regions as part of the Internet CDN. In one aspect of the invention, a CDN service provider (CDNSP) deploys one or more CDN regions behind an enterprise'"'"'s corporate firewall(s). The regions are used to deliver Internet content—content that has been tagged or otherwise made available for delivery over the Internet from the CDN'"'"'s content servers. This content includes, for example, content that given content providers have identified is to be delivered by the CDN. In addition, the enterprise may tag intranet content, which is then also served from the CDN regions behind the firewall. Intranet content remains secure by virtue of using the enterprise'"'"'s existing security infrastructure. In accordance with another aspect of the invention, the CDNSP implements access controls and deploys one or more CDN regions outside an enterprise'"'"'s firewall(s) such that intranet content can be served from regions located outside the firewall(s). In this embodiment, the CDNSP can provide granular control, such as permissions per groups of users. In this way, the CDNSP, in effect, extends a conventional virtual private network (VPN) to all or a portion of the ICDN, thereby enabling the CDNSP to use multiple regions and potentially thousands of content servers available to serve the enterprise'"'"'s internal content. In addition to making internal content available from the edge of the network, the CDNSP provides a mechanism by which an enterprise may share secure data with its business partner(s) without setting up any special infrastructure.
-
Citations
10 Claims
-
1. A method operative in an Internet content delivery network (ICDN) having a set of content servers organized into regions and that provides delivery of Internet content on behalf of participating content providers, comprising:
-
establishing a set of one or more enterprise CDN regions topologically near an enterprise firewall, wherein each enterprise CDN region has one or more ECDN-aware surrogate origin servers;
responsive to a request for given ECDN content originating from an a given entity, mapping the given entity to a preferred enterprise CDN region that is likely to host the given ECDN content;
determining if the given entity is authorized to obtain the given ECDN content; and
if the given entity is authorized to obtain the given ECDN content, attempting to serve the given ECDN content from the preferred enterprise CDN region. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method operative in an Internet content delivery network (ICDN) having a set of content servers organized into regions and that provides delivery of Internet content on behalf of participating content providers, comprising:
-
establishing a first enterprise CDN region topologically near an enterprise firewall, wherein the first enterprise CDN region has one or more ECDN-aware surrogate origin servers;
establishing a second enterprise CDN region within the enterprise firewall, wherein the second enterprise CDN has one or more ICDN-aware surrogate origin servers;
responsive to a request for given content originating from an end user within the enterprise, mapping the end user to the first enterprise CDN region if the given content is ECDN content and mapping the end user to the second enterprise CDN region if the given content is ICDN content;
attempting to serve the given content from the respective enterprise CDN region. - View Dependent Claims (9, 10)
-
Specification