Providing virtual networking functionality for managed computer networks

US 10,530,657 B2
Filed: 01/29/2016
Issued: 01/07/2020
Est. Priority Date: 06/25/2009
Status: Active Grant

First Claim

Patent Images

1. A computer-implemented method, comprising:

providing, by one or more computing systems of a network service provider, functionality for a virtual local area network of multiple computing nodes overlaid on an underlying computer network, including maintaining information by the network service provider for the virtual local area network that indicates, for individual ones of the multiple computing nodes, a substrate network address used by the underlying computer network for that computing node and identifies one or more computing nodes of the multiple computing nodes that use an identifier for the virtual local area network in communications to and from the one or more computing nodes for the virtual local area network and one or more other computing nodes of the multiple computing nodes that do not use the identifier for the virtual local area network in communications sent to and from the one or more other computing nodes for the virtual local area network;

managing, by the one or more computing systems and based on the maintained information, a communication for the virtual local area network that is sent to a destination computing node that is one of the one or more computing nodes, the managing including;

forwarding, without using any information in the communication about the virtual local area network, a communication for the destination computing node over the underlying computer network on which the virtual local area network is overlaid;

determining, based at least in part on the maintained information and in response to identifying that the communication does not include the identifier, to add the identifier to communication; and

after the forwarding of the communication, providing the communication with the identifier to the destination computing node; and

managing, by the one or more computing systems, an additional communication for the virtual local area network that is sent to an additional destination computing node that is one of the one or more other computing nodes, the managing of the additional communication including;

forwarding, based on the maintained information and without using any information in the additional communication about the virtual local area network, the additional communication to another location of the additional destination computing node over the underlying computer network;

determining, based at least in part on the maintained information and in response to identifying that the additional communication does not include the identifier for the virtual local area network, to not add the identifier to the additional communication; and

after the forwarding of the additional communication, providing the additional communication without the identifier for the virtual local area network to the additional destination computing node.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Techniques are described for providing virtual networking functionality for managed computer networks. In some situations, a user may configure or otherwise specify one or more virtual local area networks (“VLANs”) for a managed computer network being provided for the user, such as with each VLAN including multiple computing nodes of the managed computer network. Networking functionality corresponding to the specified VLAN(s) may then be provided in various manners, such as if the managed computer network itself is a distinct virtual computer network overlaid on one or more other computer networks, and communications between computing nodes of the managed virtual computer network are handled in accordance with the specified VLAN(s) of the managed virtual computer network by emulating functionality that would be provided by networking devices of the managed virtual computer network if they were physically present and configured to support the specified VLAN(s).

34 Citations

View as Search Results

19 Claims

1. A computer-implemented method, comprising:
- providing, by one or more computing systems of a network service provider, functionality for a virtual local area network of multiple computing nodes overlaid on an underlying computer network, including maintaining information by the network service provider for the virtual local area network that indicates, for individual ones of the multiple computing nodes, a substrate network address used by the underlying computer network for that computing node and identifies one or more computing nodes of the multiple computing nodes that use an identifier for the virtual local area network in communications to and from the one or more computing nodes for the virtual local area network and one or more other computing nodes of the multiple computing nodes that do not use the identifier for the virtual local area network in communications sent to and from the one or more other computing nodes for the virtual local area network;
  
  managing, by the one or more computing systems and based on the maintained information, a communication for the virtual local area network that is sent to a destination computing node that is one of the one or more computing nodes, the managing including;
  
  forwarding, without using any information in the communication about the virtual local area network, a communication for the destination computing node over the underlying computer network on which the virtual local area network is overlaid;
  
  determining, based at least in part on the maintained information and in response to identifying that the communication does not include the identifier, to add the identifier to communication; and
  
  after the forwarding of the communication, providing the communication with the identifier to the destination computing node; and
  
  managing, by the one or more computing systems, an additional communication for the virtual local area network that is sent to an additional destination computing node that is one of the one or more other computing nodes, the managing of the additional communication including;
  
  forwarding, based on the maintained information and without using any information in the additional communication about the virtual local area network, the additional communication to another location of the additional destination computing node over the underlying computer network;
  
  determining, based at least in part on the maintained information and in response to identifying that the additional communication does not include the identifier for the virtual local area network, to not add the identifier to the additional communication; and
  
  after the forwarding of the additional communication, providing the additional communication without the identifier for the virtual local area network to the additional destination computing node.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The computer-implemented method of claim 1 wherein the maintained information includes information about a location in the underlying computer network of each of the multiple computing nodes, and wherein the forwarding of the communication to the destination computing node includes using the maintained information to send the communication to the location in the underlying computer network of the destination computing node.
  - 3. The computer-implemented method of claim 1, wherein the forwarding of the communication to the destination computing node includes using the maintained information to route the communication over the underlying computer network to the destination computing node based on the substrate network address for the destination computing node used by the underlying computer network for the destination computing node.
  - 4. The computer-implemented method of claim 1 wherein virtual local area network is provided by the network service provider for a client of the network service provider, wherein the maintained information is based at least in part on configuration information from the client, and wherein the forwarding of the communication includes forwarding the communication without using any information about the identifier.
  - 5. The computer-implemented method of claim 1, wherein the managing of the communications further includes:
    - identifying, by the one or more computing systems, that the communication does not include the identifier;
      
      adding, by the one or more computing systems and based on the identifying and on the maintained information, the identifier to the communication after the communication is forwarded and before the providing of the communication to the destination computing node.
  - 6. The computer-implemented method of claim 1, wherein the managing of the communications further includes forwarding the communication to a second destination computing node that does not use the identifier to be included in provided communications, and providing a copy of the communication that does not include the identifier to the second destination computing node.
  - 7. The computer-implemented method of claim 1 wherein the managing of the communications further includes:
    - identifying, by the one or more computing systems, that the communication does include the identifier; and
      
      determining, by the one or more computing systems and based on the identifying and on the maintained information, to not add the identifier to the communication before the providing of the communication to the destination computing node.
  - 8. The computer-implemented method of claim 1 wherein the maintained information further identifies that the destination computing node is associated with a trunk link configured to carry communications for multiple virtual local area networks, and wherein the managing of the communication further includes emulating functionality of the trunk link for the forwarded communication without physically implementing the trunk link in the underlying computer network.
  - 9. The computer-implemented method of claim 1, wherein the identifier for the virtual local area network is a label specified for a multi-protocol label switching (MPLS) protocol.
  - 10. The computer-implemented method of claim 1, wherein the managing of the communications further includes:
    - identifying, by the one or more computing systems, that another communication for another destination computing node does include the identifier; and
      
      removing, by the one or more computing systems and based on the maintained information, the identifier from the other communication before the providing of the other communication to the other destination computing node.
  - 11. The computer-implemented method of claim 1, wherein the maintained information is stored at a system manager of the network service provider, the communication is provided to the destination computing node by a communication manager of the network service provider hosted on a host physical computing system that is also hosting the destination computing node, and the communication manager is configured to obtain the maintained information from the system manager.
  - 12. The computer-implemented method of claim 1, wherein the maintained information further identifies that the destination computing node is associated with a native access link configured to carry communications for only the virtual local area network, and wherein the managing of the communications further includes emulating functionality of the native access link for the forwarded communication without physically implementing the native access link in the underlying computer network.
  - 13. The computer-implemented method of claim 1, wherein the multiple computing nodes are each a virtual machine hosted on one of multiple host physical computing systems, wherein the one or more computing systems include one of the multiple host physical computing systems, and wherein the method is performed by virtual machine manager software that executes on the one host physical computing system to manage communications of the virtual machines hosted on the one host physical computing system.

14. A non-transitory computer-readable medium having stored contents that cause one or more computing systems to at least:
- provide, by the one or more computing systems and for a client of a network service provider, a virtual local area network of multiple computing nodes overlaid over an underlying computer network, and maintain information for the virtual local area network, wherein the maintained information indicates, for individual ones of the multiple computing nodes, an underlying computer network address used by the underlying computer network for that computing node and identifies one or more computing nodes of the multiple computing nodes that use an identifier for the virtual local area network in communications to and from the one or more computing nodes for the virtual local area network and one or more other computing nodes of the multiple computing nodes that do not use the identifier for the virtual local area network in communications sent to and from the one or more other computing nodes for the virtual local area network;
  
  manage, by the one or more computing systems and based on the maintained information, a communication for the virtual local area network that is sent to a destination computing node that is one of the one or more computing nodes, the managing including;
  
  forwarding, without using any information in the communication about the virtual local area network, and over the underlying computer network on which the virtual local area network is overlaid, the communication to a location of the destination computing node;
  
  determining, based at least in part on the maintained information and in response to identifying that the communication does not include the identifier, to add the identifier to the communication; and
  
  after the forwarding of the communication, providing the communication with the identifier to the destination computing node; and
  
  manage, by the one or more computing systems, an additional communication for the virtual local area network that is sent to an additional destination computing node that is one of the one or more other computing nodes, the managing of the additional communication including;
  
  forwarding, based on the maintained information and without using any information in the additional communication about the virtual local area network, the additional communication to another location of the additional destination computing node over the underlying computer network;
  
  determining, based on the maintained information and in response to identifying that the additional communication does not include the identifier for the virtual local area network, to not add the identifier to the additional communication; and
  
  after the forwarding of the additional communication, providing the additional communication without the identifier for the virtual local area network to the additional destination computing node.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The non-transitory computer-readable medium of claim 14, wherein the stored contents include software instructions that, when executed, further cause the one or more computing systems to perform the adding of the identifier to the communication after the communication is forwarded to the location of the destination computing node and before the providing of the communication with the identifier to the destination computing node.
  - 16. The non-transitory computer-readable medium of claim 14, wherein the identifier for the virtual local area network is a label specified for a multi-protocol label switching (MPLS) protocol.
  - 17. The non-transitory computer-readable medium of claim 14, wherein the maintained information further identifies one or more other computing nodes of the multiple computing nodes that do not use the identifier for the virtual local area network in communications sent to and from the one or more other computing nodes for the virtual local area network, and wherein the stored contents include software instructions that, when executed, further cause the one or more computing systems to perform:
    - forwarding, without using any information in an additional communication about the virtual local area network, the additional communication for an additional destination computing node over the underlying computer network;
      
      determining that the additional communication includes the identifier for the virtual local area network, and removing, based on the maintained information, the identifier from the additional communication; and
      
      after the forwarding of the additional communication, providing the additional communication without the identifier for the virtual local area network to the additional destination computing node.
  - 18. The non-transitory computer-readable medium of claim 14, wherein the maintained information is stored at a system manager in the network service provider, and the stored contents include software instructions that, when executed, further cause the one or more computing systems to obtain the maintained information from the system manager.

19. A system, comprising:
- one or more hardware processors of one or more computing systems; and
  
  one or more memories with stored instructions that, when executed by at least one of the one or more hardware processors, cause the one or more computing systems to;
  
  provide, for a client of a network service provider, a virtual local area network of multiple computing nodes overlaid over an underlying computer network in accordance with configuration information specified by the client, including maintaining information for the virtual local area network that indicates, for individual ones of the multiple computing nodes, an underlying computer network address used by the underlying computer network for that computing node and identifies one or more computing nodes of the multiple computing nodes that uses an identifier for the virtual local area network in communications to and from the one or more computing node for the virtual local area network and one or more other computing nodes of the multiple computing nodes that do not use the identifier for the virtual local area network in communications sent to and from the one or more other computing nodes for the virtual local area network;
  
  manage, based on the maintained information, a communication for the virtual local area network that is sent to a destination computing node that is one of the one or more computing nodes, to;
  
  forward, without using any information in the communication about the virtual local area network, and over the underlying computer network on which the virtual local area network is overlaid, the communication to a location of the destination computing node;
  
  determine, based at least in part on the maintained information and in response to identifying that the communication does not include the identifier, to add the identifier to the communication; and
  
  after the forwarding of the communication, provide the communication with the identifier to the destination computing node; and
  
  manage an additional communication for the virtual local area network that is sent to an additional destination computing node that is one of the one or more other computing nodes, to;
  
  forward, based on the maintained information and without using any information in the additional communication about the virtual local area network, the additional communication to another location of the additional destination computing node over the underlying computer network;
  
  determine, based on the maintained information and in response to identifying that the additional communication does not include the identifier for the virtual local area network, to not add the identifier to the additional communication; and
  
  after the forwarding of the additional communication, provide the additional communication without the identifier for the virtual local area network to the additional destination computing node.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Original Assignee
Amazon Technologies, Inc. (Amazon.com, Inc.)
Inventors
Brandwine, Eric Jason, Hill, Peter J.
Primary Examiner(s)
Sam, Phirin
Assistant Examiner(s)
Hampton, Tarell A

Application Number

US15/011,302
Publication Number

US 20160149764A1
Time in Patent Office

1,439 Days
Field of Search

None
US Class Current
CPC Class Codes

G06F 2009/45595   Network integration; Enabli...

G06F 9/45558   Hypervisor-specific managem...

G06F 9/5077   Logical partitioning of res...

H04L 12/4641   Virtual LANs, VLANs, e.g. v...

H04L 12/4645   Details on frame tagging ro...

H04L 12/4666   Operational details on the ...

H04L 41/0803   Configuration setting

H04L 41/12   Discovery or management of ...

H04L 45/00   Routing or path finding of ...

H04L 45/76   Routing in software-defined...

H04L 49/354   for supporting virtual loca...

Providing virtual networking functionality for managed computer networks

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

34 Citations

19 Claims

Specification

Use Cases

Quick Links

Others

Providing virtual networking functionality for managed computer networks

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

34 Citations

19 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others