	US 11,722,390 B2
	Establishing secured connections between premises outside a provider network
Upendra Bhalchandra Shevade, Herndon, VA (US); Daniel Massaguer, Herndon, VA (US); Kyle Benjamin Schultheiss, Centreville, VA (US); and Gregory Rustin Rogers, Reston, VA (US)
Assigned to Amazon Technologies, Inc., Seattle, WA (US)
Filed by Amazon Technologies, Inc., Seattle, WA (US)
Filed on Apr. 10, 2020, as Appl. No. 16/846,112.
Application 16/846,112 is a continuation of application No. 14/274,477, filed on May 9, 2014, granted, now 10,623,285.
Prior Publication US 2020/0244556 A1, Jul. 30, 2020
Int. Cl. H04L 43/08 (2022.01)

CPC H04L 43/08 (2013.01)

20 Claims

1. A method, comprising:

performing, at one or more computing devices comprising one or more processors and memory:

determining that secure network connectivity is to be established between a first premise outside a provider network and a second premise outside the provider network using computing resources within the provider network;

establishing (a) a first secure network channel comprising a first plurality of tunnels for communications between the first premise and a first packet processing engine configured within the provider network, and (b) a second secure network channel comprising a second plurality of tunnels for communications between the second premise and a second packet processing engine configured within the provider network, wherein the first plurality of tunnels is separate from the second plurality of tunnels, and the first and second packet processing engines are implemented by virtual machine instances managed by hypervisors on instance hosts of the provider network; and

causing a network packet generated at the first premise to be routed through at least one of the first plurality of tunnels of the first packet processing engine to the second packet processing engine, wherein the network packet is routed via at least one of the second plurality of tunnels of the second packet processing engine to the second premise.