Identifying an Egress Point to a Network Location
First Claim
1. A method of identifying an egress point to a network location, the method comprising:
- receiving a client connection from an external network;
retrieving an egress point identifier from an egress data source for the received client connection, the egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork;
binding the client connection to an egress point corresponding to the retrieved egress point identifier;
encapsulating packets of data received from the client connection;
sending the encapsulated data packets through an instantiated network tunnel to the bound egress point; and
decapsulating the encapsulated data packets at least near the bound egress point.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of identifying an egress point to a network location includes receiving a client connection from an external network (e.g., the internet) and retrieving an egress point identifier from an egress data source (e.g., a database, look-up table, hash table, data object etc.) for the received client connection. The egress data source stores egress point identifiers associated with at least one of an internet protocol address and a subnetwork. The method further includes binding the client connection to an egress point corresponding to the retrieved egress point identifier, encapsulating packets of data received from the client connection, and sending the encapsulated data packets through an instantiated network tunnel to the bound egress point. The method includes decapsulating the encapsulated data packets at least near the bound egress point. A default routing policy may then guide the data packets to the egress point.
-
Citations
29 Claims
-
1. A method of identifying an egress point to a network location, the method comprising:
-
receiving a client connection from an external network; retrieving an egress point identifier from an egress data source for the received client connection, the egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork; binding the client connection to an egress point corresponding to the retrieved egress point identifier; encapsulating packets of data received from the client connection; sending the encapsulated data packets through an instantiated network tunnel to the bound egress point; and decapsulating the encapsulated data packets at least near the bound egress point. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A network system comprising:
-
an egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork; a tunnel manager instantiating network tunnels of a provider network for each egress point having a corresponding egress point identifier stored by the egress data source; a connection manager in communication with the egress data source and the tunnel manager, the connection manager; receiving a client connection from an external network; retrieving an egress point identifier from the egress data source for the received client connection; binding the client connection to an egress point corresponding to the retrieved egress point identifier; encapsulating packets of data received from the client connection; and sending the encapsulated data packets through an instantiated network tunnel to the bound egress point; and a decapsulator decapsulating the encapsulated data packets at least near the egress point. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer program product encoded on a computer readable storage medium comprising instructions that when executed by a data processing apparatus cause the data processing apparatus to perform operations comprising:
-
receiving a client connection from an external network; retrieving an egress point identifier from an egress data source for the received client connection, the egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork; binding the client connection to an egress point corresponding to the retrieved egress point identifier; encapsulating packets of data received from the client connection; sending the encapsulated data packets through an instantiated network tunnel to the bound egress point; and decapsulating the encapsulated data packets at least near the bound egress point. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29)
-
Specification