Identifying an egress point to a network location
First Claim
1. A method of identifying an egress point to a network location, the method comprising:
- receiving a client connection containing packets of data from an external network;
retrieving an egress point identifier from an egress data source for the received client connection, the egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork;
binding the client connection to a pre-selected egress point corresponding to the retrieved egress point identifier, the pre-selected egress point different from another egress point naturally selected by a default network routing protocol;
encapsulating the packets of data received from the client connection;
instantiating a network tunnel to an intermediate egress point located a threshold distance from the bound pre-selected egress point;
sending the encapsulated data packets through the instantiated network tunnel to the intermediate egress point;
decapsulating the encapsulated data packets at the intermediate egress point; and
after decapsulating the encapsulated data packets, routing the decapsulated packets from the intermediate egress point to the bound pre-selected egress point using the default network routing protocol.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of identifying an egress point to a network location includes receiving a client connection from an external network (e.g., the internet) and retrieving an egress point identifier from an egress data source (e.g., a database, look-up table, hash table, data object etc.) for the received client connection. The egress data source stores egress point identifiers associated with at least one of an internet protocol address and a subnetwork. The method further includes binding the client connection to an egress point corresponding to the retrieved egress point identifier, encapsulating packets of data received from the client connection, and sending the encapsulated data packets through an instantiated network tunnel to the bound egress point. The method includes decapsulating the encapsulated data packets at least near the bound egress point. A default routing policy may then guide the data packets to the egress point.
20 Citations
29 Claims
-
1. A method of identifying an egress point to a network location, the method comprising:
-
receiving a client connection containing packets of data from an external network; retrieving an egress point identifier from an egress data source for the received client connection, the egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork; binding the client connection to a pre-selected egress point corresponding to the retrieved egress point identifier, the pre-selected egress point different from another egress point naturally selected by a default network routing protocol; encapsulating the packets of data received from the client connection; instantiating a network tunnel to an intermediate egress point located a threshold distance from the bound pre-selected egress point; sending the encapsulated data packets through the instantiated network tunnel to the intermediate egress point; decapsulating the encapsulated data packets at the intermediate egress point; and after decapsulating the encapsulated data packets, routing the decapsulated packets from the intermediate egress point to the bound pre-selected egress point using the default network routing protocol. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A network system comprising:
-
an egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork; a tunnel manager instantiating network tunnels of a provider network for each pre-selected egress point having a corresponding egress point identifier stored by the egress data source; a connection manager in communication with the egress data source and the tunnel manager, the connection manager; receiving a client connection containing packets of data from an external network; retrieving an egress point identifier from the egress data source for the received client connection; binding the client connection to a pre-selected egress point corresponding to the retrieved egress point identifier, the pre-selected egress point different from another egress point naturally selected by a default network routing protocol; encapsulating the packets of data received from the client connection; instantiating a network tunnel to an intermediate egress point located a threshold distance from the bound pre-selected egress point; and sending the encapsulated data packets through an instantiated network tunnel to the intermediate egress point; and a decapsulator decapsulating the encapsulated data packets at the intermediate egress point; wherein after decapsulating the encapsulated data packets at the decapsulator, the connection manager routes the decapsulated data packets from the decapsulator to the bound pre-selected egress point using the default network routing protocol. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
-
20. A computer program product encoded on a non-transitory computer readable storage medium comprising instructions that when executed by a data processing apparatus cause the data processing apparatus to perform operations comprising:
-
receiving a client connection containing packets of data from an external network; retrieving an egress point identifier from an egress data source for the received client connection, the egress data source storing egress point identifiers associated with at least one of an internet protocol address and a subnetwork; binding the client connection to a pre-selected egress point corresponding to the retrieved egress point identifier, the pre-selected egress point different from another egress point naturally selected by a default network routing protocol; encapsulating the packets of data received from the client connection; instantiating a network tunnel to an intermediate egress point located a threshold distance from the bound pre-selected egress point; sending the encapsulated data packets through the instantiated network tunnel to the intermediate egress point; decapsulating the encapsulated data packets at the intermediate egress point; and after decapsulating the encapsulated data packets, routing the decapsulated packets from the intermediate egress point to the bound pre-selected egress point using the default network routing protocol. - View Dependent Claims (21, 22, 23, 24, 25, 26, 27, 28, 29)
-
Specification