PROVIDING LOCAL SECURE NETWORK ACCESS TO REMOTE SERVICES
0 Assignments
0 Petitions
Accused Products
Abstract
Techniques are described for providing users with access to computer networks, such as to enable users to create computer networks that are provided by a remote configurable network service for use by the users. Such provided computer networks may be configured to be private computer networks accessible only by the users who create them, and may each be created and configured by a client of the configurable network service to be an extension to an existing computer network of the client, such as a private computer network extension to an existing private computer network of the client. In addition, access to remote resource services may be configured and provided from such computer networks in various manners, such as to include a local access mechanism as part of a provided computer network that is configured to forward communications sent to the access mechanism to a particular remote resource service.
-
Citations
51 Claims
-
1-30. -30. (canceled)
-
31. A computer-implemented method comprising:
-
receiving, by one or more computing systems of a configurable network service operated by a service provider, configuration information from a client of the service provider for a virtual computer network instantiated using one or more internal networks of the service provider, the received configuration information identifying a web service having a publically accessible interface that is accessible via a public network, the public network being distinct and separate from the one or more internal networks; based at least in part on the received configuration information, configuring, by the one or more computing systems, one or more communication manager modules to manage communications for computing nodes of the virtual computer network, the configuring of the one or more communication manager modules including providing routing information for the virtual computer network indicating that communications sent to or from the web service from within the virtual computer network are to be routed to or from the web service without the communications being sent via the public network; wherein the configuring of the one or more communication manager modules causes a first communication manager module to; receive one or more communications from a first computing node of the virtual computer network, the one or more communications specifying the identified web service as a destination of the one or more communications; and forward, based at least in part on the routing information provided for the virtual computer network, the one or more received communications to the identified web service over the one or more internal computer networks of the service provider and without being sent via the public network. - View Dependent Claims (32, 33, 34, 35, 36, 37, 38, 39, 40, 41)
-
-
42. A non-transitory computer-readable medium having stored contents that, when executed, configure a computing system of a configurable network service operated by a service provider to:
-
receive configuration information for a virtual computer network from a client of the service provider, the received configuration information identifying a web service having a public interface that is accessible via a one or more public networks; based at least in part on the received configuration information, configure a communication manager module of the configurable network service to manage communications for one or more computing nodes of the virtual computer network, wherein the configuring includes specifying routing information for the virtual computer network such that communications between the web service and computing nodes of the virtual computer network are to be routed via one or more internal computer networks of the service provider and not via the one or more public networks; wherein the configuring causes the communication manager module to; receive a communication from a first computing node of the virtual computer network that specifies the identified web service as a destination of the communication; and forward, based at least in part on the specified routing information, the received communication to the identified web service via the one or more internal computer networks of the service provider and not via the one or more public networks. - View Dependent Claims (43, 44, 45, 46, 47)
-
-
48. A system, comprising:
-
one or more processors; and at least one memory, the memory including instructions that, upon execution by at least one of the one or more processors, cause the system to; receive configuration information for a virtual computer network from a client of a service provider, wherein the virtual computer network includes a plurality of virtual machine nodes and is overlaid on one or more internal networks of the service provider, and wherein the received configuration information identifies a web service having a public interface accessible via a public network; based at least in part on the received configuration information, configure a communication manager module to manage communications for one or more of the virtual machine nodes of the virtual computer network, wherein the configuration includes providing routing information for the virtual computer network such that communications between the web service and the one or more virtual machine nodes are to be routed to or from the web service without being sent over the public network; wherein the configuration causes a first communication manager module to; receive a communication from a first of the one or more virtual machine nodes, the communication specifying the identified web service as a destination of the one or more communications; and forward, based at least in part on the routing information provided for the virtual computer network, the received communication to the identified web service over the one or more internal computer networks of the service provider and not via the public network. - View Dependent Claims (49, 50, 51)
-
Specification