CPC H04L 43/08 (2013.01) | 20 Claims |
1. A method, comprising:
performing, at one or more computing devices comprising one or more processors and memory:
determining that secure network connectivity is to be established between a first premise outside a provider network and a second premise outside the provider network using computing resources within the provider network;
establishing (a) a first secure network channel comprising a first plurality of tunnels for communications between the first premise and a first packet processing engine configured within the provider network, and (b) a second secure network channel comprising a second plurality of tunnels for communications between the second premise and a second packet processing engine configured within the provider network, wherein the first plurality of tunnels is separate from the second plurality of tunnels, and the first and second packet processing engines are implemented by virtual machine instances managed by hypervisors on instance hosts of the provider network; and
causing a network packet generated at the first premise to be routed through at least one of the first plurality of tunnels of the first packet processing engine to the second packet processing engine, wherein the network packet is routed via at least one of the second plurality of tunnels of the second packet processing engine to the second premise.
|