Patent US10666613

Establishing and using a tunnel from an origin server in a distributed edge compute and routing service
[+] Show Details

US10666613

1. A method for establishing and using a tunnel in a distributed edge compute and routing service, the method comprising: (5) (5)

assigning a first IP address for a first tunnel between a first one of a plurality of edge servers of the distributed edge compute and routing service and a first tunnel client residing on a first origin server;

causing a Domain Name System (DNS) record to be added or changed that associates a hostname to be tunneled with the assigned first IP address for the first tunnel;

installing routing rules in the plurality of edge servers to reach the first one of the plurality of edge servers for the tunneled hostname;

receiving, at the first one of the plurality of edge servers, a request for an action to be performed on a resource of the tunneled hostname handled by the first origin server, wherein the first one of the plurality of edge servers receives the request from a second one of the plurality of edge servers that received the request from a client network application, and wherein the second one of the plurality of edge servers is not connected to the first origin server for the tunneled hostname; and

transmitting the request from the first one of the plurality of edge servers to the first origin server over the first tunnel.

2. The method of claim 1, wherein prior to transmitting the request over the first tunnel, converting the request to an HTTP/2 request. (0)

3. The method of claim 1, further comprising: (1) (1)

5. The method of claim 1, further comprising: (0) (2)

6. The method of claim 1, further comprising: (0) (1)

7. The method of claim 1, further comprising: (1) (5)

receiving, at a third one of the plurality of edge servers from a second tunnel client residing on a second origin server, a second tunnel connection request that requests a second tunnel be established between the third one of the plurality of edge servers and the second tunnel client, wherein the second tunnel connection request identifies the hostname that is to be tunneled;

determining that the first tunnel for the hostname exists that connects the first one of the plurality of edge servers to the first origin server;

assigning a second IP address for the second tunnel;

causing a Domain Name System (DNS) record to be added or changed that associates the hostname with the assigned second IP address for the second tunnel; and

creating a load balancer to balance traffic across the first tunnel and the second tunnel.

8. The method of claim 7, further comprising: (0) (1)

9. A non-transitory machine-readable storage medium that provides instructions that, when executed by a processor, cause said processor to perform operations comprising: (5) (5)

assigning a first IP address for a first tunnel between a first one of a plurality of edge servers of a distributed edge compute and routing service and a first tunnel client residing on a first origin server;

causing a Domain Name System (DNS) record to be added or changed that associates a hostname to be tunneled with the assigned first IP address for the first tunnel;

causing routing rules to be installed in the plurality of edge servers to reach the first one of the plurality of edge servers for the tunneled hostname;

transmitting the request from the first one of the plurality of edge servers to the first origin server over the first tunnel.

10. The non-transitory machine-readable storage medium of claim 9, wherein prior to transmitting the request over the first tunnel, converting the request to an HTTP/2 request. (0)

11. The non-transitory machine-readable storage medium of claim 9, further comprising: (1) (1)

13. The non-transitory machine-readable storage medium of claim 9, further comprising: (0) (2)

14. The non-transitory machine-readable storage medium of claim 9 that further provides instructions that, when executed by the processor, cause said processor to further perform operations comprising: (0) (1)

15. The non-transitory machine-readable storage medium of claim 9 that further provides instructions that, when executed by the processor, cause said processor to further perform operations comprising: (1) (5)

determining that the first tunnel for the hostname exists that connects the first one of the plurality of edge servers to the first origin server;

assigning a second IP address for the second tunnel;

causing a Domain Name System (DNS) record to be added or changed that associates the hostname with the assigned second IP address for the second tunnel; and

creating a load balancer to balance traffic across the first tunnel and the second tunnel.

16. The non-transitory machine-readable storage medium of claim 15 that further provides instructions that, when executed by the processor, cause said processor to further perform operations comprising: (0) (1)

17. An apparatus, comprising: (5) (2)

a set of one or more processors;

a non-transitory machine-readable storage medium that stores instructions that, when executed by the set of processors, is to perform operations including: assign a first IP address for a first tunnel between a first one of a plurality of edge servers of a distributed edge compute and routing service and a first tunnel client residing on a first origin server;

cause a Domain Name System (DNS) record to be added or changed that associates a hostname to be tunneled with the assigned first IP address for the first tunnel;

cause routing rules to be installed in the plurality of edge servers to reach the first one of the plurality of edge servers for the tunneled hostname;

receive, at the first one of the plurality of edge servers, a request for an action to be performed on a resource of the tunneled hostname handled by the first origin server, wherein the first one of the plurality of edge servers is to receive the request from a second one of the plurality of edge servers that received the request from a client network application, and wherein the second one of the plurality of edge servers is not to be connected to the first origin server for the tunneled hostname; and

transmit the request from the first one of the plurality of edge servers to the first origin server over the first tunnel.

18. The apparatus of claim 17, wherein the non-transitory machine-readable storage medium further stores instructions that, when executed by the set of processors, cause the set of processors to further to convert the request to an HTTP/2 request prior to transmission of the request over the first tunnel. (0)

19. The apparatus of claim 17, wherein the non-transitory machine-readable storage medium further stores instructions that, when executed by the set of processors, cause the set of processors to: (1) (1)

21. The apparatus of claim 17, wherein the non-transitory machine-readable storage medium further stores instructions that, when executed by the set of processors, cause the set of processors to: (0) (2)

22. The apparatus of claim 17, wherein the non-transitory machine-readable storage medium further stores instructions that, when executed by the set of processors, cause the set of processors to: (0) (1)

23. The apparatus of claim 17, wherein the non-transitory machine-readable storage medium further stores instructions that, when executed by the set of processors, cause the set of processors to: (1) (5)

receive, at a third one of the plurality of edge servers from a second tunnel client residing on a second origin server, a second tunnel connection request that requests a second tunnel be established between the third one of the plurality of edge servers and the second tunnel client, wherein the second tunnel connection request is to identify the hostname that is to be tunneled;

determine that the first tunnel for the hostname exists that connects the first one of the plurality of edge servers to the first origin server;

assign a second IP address for the second tunnel;

cause a Domain Name System (DNS) record to be added or changed that associates the hostname with the assigned second IP address for the second tunnel; and

create load balancer to balance traffic across the first tunnel and the second tunnel.

24. The apparatus of claim 23, wherein the non-transitory machine-readable storage medium further stores instructions that, when executed by the set of processors, cause the set of processors to: (0) (1)

View Abstract and Specification Size

PDF with Images and Document Face >

Full Text Publication >

Patent US10666613

Establishing and using a tunnel from an origin server in a distributed edge compute and routing service

Patent Matrix® Search