Distributed and scalable network address translation
First Claim
1. A method of enabling an electronic privately addressable source to be publicly addressable comprising:
- receiving packets from a tenant virtual machine at a policy routing component;
determining if the packets are destined for Internet;
determining if the packets contain a private address as a source;
if the packets are destined for the Internet and contain the private address as the source, communicating the packets through a network address translation device wherein the network address translation device is identified by a first virtual IP address;
encapsulating the packets with the first virtual IP address as the destination address;
communicating the packets to a first server or load balancer that handles packets addressed to the first virtual IP address, at the first server or load balancer, receiving the packets;
determining if the packets are destined for the first virtual IP address of the network address translation device;
if the packets are destined for the first virtual IP address;
selecting the network address translation device,communicating an inner packet to the network address translation device, at the network translation device,using the source address and the destination address and the source port and the destination port to select a public address and a public port,translating the source address and source port to those selected at the network address translation device, andcommunicating the packet out on the Internet;
if the packets are destined for the public IP address chosen above;
selecting the network translation device,communicating the packet to the network address translation device,at the network address translation device, using the source address and destination address and source port and destination port to select a private address and private port,translating the destination address and destination port to those selected at the network address translation device, andcommunicating the packet to the private address sender.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of enabling an electronic privately addressable source to be publicly addressable starts at a receiver where an electronic message is received. It is communicated from a sender with a private address outside a subnet of the receiver through a translator. The translator retrieves a lease to at least one of a public address or a port from a lease manager, translates the private address and the private port into a public address and a public port and communicates identifying data such as the public address and the public port to the receiver. If a response is communicated to the private sender, the response may be communicated to the private sender through the network. The public address and the public port on the message may be translated to the private address and the port of the private sender and the private address and the private port may be used to properly route the response to the private sender.
-
Citations
4 Claims
-
1. A method of enabling an electronic privately addressable source to be publicly addressable comprising:
-
receiving packets from a tenant virtual machine at a policy routing component; determining if the packets are destined for Internet; determining if the packets contain a private address as a source; if the packets are destined for the Internet and contain the private address as the source, communicating the packets through a network address translation device wherein the network address translation device is identified by a first virtual IP address; encapsulating the packets with the first virtual IP address as the destination address; communicating the packets to a first server or load balancer that handles packets addressed to the first virtual IP address, at the first server or load balancer, receiving the packets; determining if the packets are destined for the first virtual IP address of the network address translation device; if the packets are destined for the first virtual IP address; selecting the network address translation device, communicating an inner packet to the network address translation device, at the network translation device, using the source address and the destination address and the source port and the destination port to select a public address and a public port, translating the source address and source port to those selected at the network address translation device, and communicating the packet out on the Internet; if the packets are destined for the public IP address chosen above; selecting the network translation device, communicating the packet to the network address translation device, at the network address translation device, using the source address and destination address and source port and destination port to select a private address and private port, translating the destination address and destination port to those selected at the network address translation device, and communicating the packet to the private address sender. - View Dependent Claims (2, 3, 4)
-
Specification