US 11,736,558 B2
Transparent mounting of external endpoints between private networks
Lucas Michael Kreger-Stickles, Seattle, WA (US); Abhiman Yashpala Karkera, San Jose, CA (US); Dhwanish Pramthesh Shah, Sunnyvale, CA (US); Guanhong Pei, Everett, WA (US); Clayton Matthew Magouyrk, Seattle, WA (US); and Paul James Cainkar, Seattle, WA (US)
Assigned to ORACLE INTERNATIONAL CORPORATION, Redwood Shores, CA (US)
Filed by Oracle International Corporation, Redwood Shores, CA (US)
Filed on Oct. 29, 2021, as Appl. No. 17/515,087.
Prior Publication US 2023/0133380 A1, May 4, 2023
Int. Cl. H04L 67/10 (2022.01); H04L 41/08 (2022.01)
CPC H04L 67/10 (2013.01) [H04L 41/08 (2013.01)] 20 Claims
OG exemplary drawing
 
1. A method comprising:
executing, by a secure network connectivity system implemented in a cloud service provider, a secure network connectivity service for enabling secure private network connectivity between an on-premise network associated with a customer of the cloud service provider and a virtual cloud network (VCN) hosted by the cloud service provider for the customer, the secure network connectivity system comprising a virtual overlay network comprising a set of one or more computing nodes;
registering, by the secure network connectivity system, an external resource residing in the on-premise network as an external endpoint in the virtual cloud network, the external endpoint identified by an Internet Protocol (IP) address in the virtual cloud network;
creating, by a computing node in the set of one or more computing nodes in the secure network connectivity system, an external resource representation for the external endpoint in the virtual cloud network, creating the external resource representation comprising:
creating, by the computing node in the set of one or more computing nodes in the secure network connectivity system, a virtual network interface card (VNIC); and
assigning, by the computing node in the set of one or more computing nodes in the secure network connectivity system, the Internet Protocol (IP) address associated with the external endpoint to the virtual network interface card (VNIC);
receiving, by the computing node in the secure network connectivity system, a request for querying information, wherein the information is stored in the external resource residing in the on-premise network associated with the customer;
establishing, by the computing node in the secure network connectivity system, a connection between the external resource residing in the on-premise network and the virtual network interface card created for the external resource representation in the virtual cloud network;
transmitting, by the computing node in the secure network connectivity system, the request to the external resource residing in the on-premise network via the virtual network interface card (VNIC) created for the external resource representation in the virtual cloud network using the established connection; and
obtaining, by the computing node in the secure network connectivity system, a result corresponding to the request via the established connection; and
transmitting, by the computing node in the secure network connectivity system, the result to the external resource representation in the virtual cloud network using the established connection.