MANAGING DYNAMIC IP ADDRESS ASSIGNMENTS
First Claim
1. A computer-readable storage medium having computer-executable instructions stored thereupon that, when executed by a computer system, cause the computer system to:
- receive, via a graphical user interface, a selection of an identifier for a web service by a customer of a service provider network, the service provider network having server computers hosting one or more virtual machines for the customer web service;
determine one or more public IP addresses for the web service;
identify virtual machines of the customer in the service provider network that are allowed to communicate with the web service;
generate IP address lists for the identified virtual machines, the IP address lists including the one or more public IP addresses for the web service; and
update security tables for the identified virtual machines with the generated IP address lists at server computers hosting the identified virtual machines.
1 Assignment
0 Petitions
Accused Products
Abstract
Various systems and processes may be used to manage Internet Protocol (IP) addresses that are dynamically assigned. In particular implementations, systems and processes for managing IP addresses that are dynamically assigned may include the ability to determine whether an identifier for a web service has been received from a customer having one or more virtual machines in a service provider network, the web service being accessible by the customer'"'"'s virtual machines over an external communication network. The systems and processes may also include the ability to determine a number of IP addresses for the web service, identify virtual machines of the customer that are allowed to communicate with the web service, generate one or more IP address lists for the identified virtual machines, and update security tables for the identified virtual machines with the IP address lists at server computers hosting the identified virtual machines.
-
Citations
24 Claims
-
1. A computer-readable storage medium having computer-executable instructions stored thereupon that, when executed by a computer system, cause the computer system to:
-
receive, via a graphical user interface, a selection of an identifier for a web service by a customer of a service provider network, the service provider network having server computers hosting one or more virtual machines for the customer web service; determine one or more public IP addresses for the web service; identify virtual machines of the customer in the service provider network that are allowed to communicate with the web service; generate IP address lists for the identified virtual machines, the IP address lists including the one or more public IP addresses for the web service; and update security tables for the identified virtual machines with the generated IP address lists at server computers hosting the identified virtual machines. - View Dependent Claims (2, 3, 4)
-
-
5. A method for managing Internet Protocol (IP) address assignment, the method comprising:
-
receiving, from a user, a specification of an identifier for a web service and an indication of one or more virtual machines of the user, the identifier associated with network addresses for the web service; generating one or more network address lists for the one or more virtual machines based at least in part on the specification of the identifier, the network address lists including the network addresses for the web service; and updating security tables for the one or more virtual machines with the address lists at server computers hosting the one or more virtual machines, the security tables used by the server computers to at least determine whether to allow communications addressed to or from the network addresses for the service. - View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A system, comprising:
-
one or more computing devices comprising processing units and memory; the one or more computing devices configured to; receiving, from a user, a specification of an identifier for a web service and an indication of one or more virtual machines of the user, the identifier associated with network addresses for the web service; generate one or more network address lists for the one or more virtual machine based at least in part of the specification of the identifier, the network address lists including the network addresses for the web service; and update security tables for the one or more virtual machines with the address lists at server computers hosting the one or more virtual machines, the security tables used by the server computers to at least determine whether to allow communication addressed to or from the network addresses for the service. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24)
-
Specification