VIRTUAL PRIVATE NETWORKS DISTRIBUTED ACROSS MULTIPLE CLOUD-COMPUTING FACILITIES
First Claim
1. A cloud-connector subsystem that provides a virtual private cloud operation for creating virtual private clouds distributed across a first and a second cloud-computing facility, the cloud-connector subsystem comprising:
- cloud-connector nodes associated with each of the first and second cloud-computing facilities; and
a cloud-connector server that includes one or more processors, one or more memories, one or more data-storage devices, and computer instructions that, when executed on the one or more processors, control the cloud-connector server to provide, in cooperation with the cloud-connector nodes, a virtual-private-cloud-creation operation thatsecurely interconnects a first virtual organization network within the first cloud-computing facility to a second virtual organization network within the second cloud-computing facility;
distributes internal IP virtual-private-network addresses to the first and second cloud-computing facilities for use by virtual-private-cloud members that execute within the organization virtual data centers to communicate over the virtual private network; and
configures organization-edge appliances and edge appliances associated with virtual appliances within the organization virtual data centers to route packets transmitted by virtual-private-cloud members through the virtual private network.
2 Assignments
0 Petitions
Accused Products
Abstract
The current document discloses methods and systems for extending an internal network within a first cloud-computing facility to a second cloud-computing facility and using the extended internal network as a basis for creating virtual private clouds distributed across multiple cloud-computing facilities. In one implementation, a pool of IP addresses is allocated and distributed to end appliances of the first and second cloud-computing facilities. In this implementation, the internal network is extended via a secure tunnel between end appliances in the first and second cloud-computing facilities and the end appliances of the extended internal network are configured to route messages transmitted by a first member of the virtual private cloud executing on a first cloud-computing facility to a second member of the virtual private cloud executing on a second cloud-computing facility through the secure tunnel.
-
Citations
20 Claims
-
1. A cloud-connector subsystem that provides a virtual private cloud operation for creating virtual private clouds distributed across a first and a second cloud-computing facility, the cloud-connector subsystem comprising:
-
cloud-connector nodes associated with each of the first and second cloud-computing facilities; and a cloud-connector server that includes one or more processors, one or more memories, one or more data-storage devices, and computer instructions that, when executed on the one or more processors, control the cloud-connector server to provide, in cooperation with the cloud-connector nodes, a virtual-private-cloud-creation operation that securely interconnects a first virtual organization network within the first cloud-computing facility to a second virtual organization network within the second cloud-computing facility; distributes internal IP virtual-private-network addresses to the first and second cloud-computing facilities for use by virtual-private-cloud members that execute within the organization virtual data centers to communicate over the virtual private network; and configures organization-edge appliances and edge appliances associated with virtual appliances within the organization virtual data centers to route packets transmitted by virtual-private-cloud members through the virtual private network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method that creates a virtual private cloud distributed across a first and a second cloud-computing facility that include cloud-connector nodes associated with each of the first and second cloud-computing facilities and a cloud-connector server that includes one or more processors, one or more memories, one or more data-storage devices, and computer instructions that are executed on the one or more processors control the cloud-connector server to provide, in cooperation with the cloud-connector nodes, a virtual-private-cloud-creation operation, the method comprising:
securely interconnecting a first virtual organization network within the first cloud-computing facility to a second virtual organization network within the second cloud-computing facility; distributing internal IP virtual-private-network addresses to the first and second cloud-computing facilities for use by virtual-private-cloud members that execute within the organization virtual data centers to communicate over the virtual private network; and configuring organization-edge appliances and edge appliances associated with virtual appliances within the organization virtual data centers to route packets transmitted by virtual-private-cloud members through the virtual private network. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
19. Computer instructions stored on a physical data-storage device that, when executed one or more processors of a cloud-connector server that includes the one or more processors, one or more memories, and one or more data-storage devices that include the physical data-storage device, control the cloud-connector server to create a virtual private cloud distributed across a first and a second cloud-computing facility, carried out in a cloud-connector subsystem that includes cloud-connector nodes associated with each of the first and second cloud-computing facilities and the cloud-connector server, by:
securely interconnecting a first virtual organization network within the first cloud-computing facility to a second virtual organization network within the second cloud-computing facility; distributing internal IP virtual-private-network addresses to the first and second cloud-computing facilities for use by virtual-private-cloud members that execute within the organization virtual data centers to communicate over the virtual private network; and configuring organization-edge appliances and edge appliances associated with virtual appliances within the organization virtual data centers to route packets transmitted by virtual-private-cloud members through the virtual private network. - View Dependent Claims (20)
Specification