DYNAMIC, USER-CONFIGURABLE VIRTUAL PRIVATE NETWORK
First Claim
1. A non-transitory processor-readable medium storing code to be executed by a processor, the code comprising code representing instructions to:
- receive, from an origin, packets identifying a destination;
define a first virtual private network (VPN) that defines first data path from the origin to the destination at a first time, the first VPN including a first plurality of logical switches including a first egress switch;
send each packet identifying the destination that is received from the origin during a first time period to the destination via the first data path;
define a second VPN that defines a second data path from the origin to the destination at a second time, the second VPN including a second plurality of logical switches including a second egress switch, the second egress switch being different from the first egress switch; and
send each packet identifying the destination that is received from the origin during a second time period to the destination via the second data path without disrupting communications between the origin and the destination between the first time period and the second time period, the first time period and the second time period being mutually exclusive.
5 Assignments
0 Petitions
Accused Products
Abstract
Some embodiments described herein relate managing communications between an origin and a destination using end-user and/or administrator configurable virtual private network(s) (VPN(s)). A first VPN that defines a first data path between an origin and a destination can be defined at a first time. A second VPN that defines a second, different data path between the origin and the destination can defined at a second time. Each packet sent across the first VPN and each packet sent across the second VPN can follow the same data path for that VPN, such each packet can be sent across the first VPN or the second VPN in the order it was received, and the transition between the first VPN and the second VPN can be “seamless,” and communications between the origin and the destination are not disrupted between the first time period and the second time period.
-
Citations
32 Claims
-
1. A non-transitory processor-readable medium storing code to be executed by a processor, the code comprising code representing instructions to:
-
receive, from an origin, packets identifying a destination; define a first virtual private network (VPN) that defines first data path from the origin to the destination at a first time, the first VPN including a first plurality of logical switches including a first egress switch; send each packet identifying the destination that is received from the origin during a first time period to the destination via the first data path; define a second VPN that defines a second data path from the origin to the destination at a second time, the second VPN including a second plurality of logical switches including a second egress switch, the second egress switch being different from the first egress switch; and send each packet identifying the destination that is received from the origin during a second time period to the destination via the second data path without disrupting communications between the origin and the destination between the first time period and the second time period, the first time period and the second time period being mutually exclusive. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An access server, comprising a processor and a memory, the access server configured to:
-
receive a plurality of packets from an origin; define a route from the access server to an egress node, the route including a plurality of logical switches, the route traversing a commercial cloud, an administrator of the access server not being an administrator of physical hardware of the commercial cloud; and send each packet from the plurality of packets to the egress node via the route in an order received such that the plurality of packets arrive at the egress node sequentially. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21-24. -24. (canceled)
-
25. A non-transitory processor-readable medium storing code to be executed by a processor of an access server, the code comprising code representing instructions to:
-
receive a plurality of packets from an origin; define a route from the access server to an egress node, the route including a plurality of logical switches, the route traversing a commercial cloud, an administrator of the access server not being an administrator of physical hardware of the commercial cloud; and send each packet from the plurality of packets to the egress node via the route in an order received such that the plurality of packets arrive at the egress node sequentially. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32, 32)
-
Specification