DEFAULT GATEWAY EXTENSION
First Claim
Patent Images
1. A method comprising:
- establishing a secure transport layer tunnel over a public network between a first cloud gateway in a private cloud and a second cloud gateway in a public cloud, the secure transport layer tunnel configured to provide a link layer network extension between the private cloud and the public cloud;
intercepting a first address resolution protocol request sent from a first virtual machine in the public cloud;
fabricating a first address resolution protocol response including a MAC address of a router in the public cloud; and
sending the first address resolution protocol response to the first virtual machine.
1 Assignment
0 Petitions
Accused Products
Abstract
Many hybrid cloud topologies require virtual machines in a public cloud to use a router in a private cloud, even when the virtual machine is transmitting to another virtual machine in the public cloud. Routing data through an enterprise router on the private cloud via the internet is generally inefficient. This problem can be overcome by placing a router within the public cloud that mirrors much of the routing functionality of the enterprise router. A switch configured to intercept address resolution protocol (ARP) request for the enterprise router'"'"'s address and fabricate a response using the MAC address of the router in the public cloud.
69 Citations
18 Claims
-
1. A method comprising:
-
establishing a secure transport layer tunnel over a public network between a first cloud gateway in a private cloud and a second cloud gateway in a public cloud, the secure transport layer tunnel configured to provide a link layer network extension between the private cloud and the public cloud; intercepting a first address resolution protocol request sent from a first virtual machine in the public cloud; fabricating a first address resolution protocol response including a MAC address of a router in the public cloud; and sending the first address resolution protocol response to the first virtual machine. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A non-transitory computer-readable medium having computer readable instructions stored on the computer readable medium that, when executed are effective to cause a computer to:
-
establish a tunnel over a public network between the public cloud and a private cloud to provide a link layer network extension between the public cloud and the private cloud; detect a presence and a function of a local router; intercept an address resolution protocol request sent from a first virtual machine in the public cloud, and return the local router address when the local router is present and detected to be functioning. - View Dependent Claims (9, 10, 11)
-
-
12. A system comprising:
-
a first cloud gateway in a first cloud; a second cloud gateway in a second cloud; a secure transport layer tunnel over a public network between the first cloud gateway in the first cloud and the second cloud gateway in the second cloud, the secure transport layer tunnel configured to provide a link layer network extension between the first cloud and the second cloud; a private application virtual machine in the second cloud connected to the second cloud gateway that is configured to switch inter-virtual machine traffic between the second cloud and the private application virtual machine; a default gateway extension in the second cloud configured to intercept an address resolution protocol request for resolving a default gateway MAC address that is sent from the private application virtual machine; and return a local router'"'"'s MAC address address in an address resolution protocol response to the private application virtual machine. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
Specification