Abstract: Techniques are disclosed for configuring a virtual machine instance accessed over a publically routable network address to host intranet applications. A virtual (or “dummy”) interface on the virtual machine instance is assigned an IP address that is inaccessible from the public interface. An application executed on the virtual machine instance is bound to a port on the network address assigned to this dummy interface. A virtual private network server assigns client's IP addresses that can be routed to the dummy interface. When a client computing system connects to the VPN server over the virtual machine instance's public interface, the client forwards traffic destined for the dummy interface's inaccessible network over the VPN connection.

Abstract: Techniques are disclosed for configuring a virtual machine instance accessed over a publically routable network address to host intranet applications. A virtual (or “dummy”) interface on the virtual machine instance is assigned an IP address that is inaccessible from the public interface. An application executed on the virtual machine instance is bound to a port on the network address assigned to this dummy interface. A virtual private network server assigns client's IP addresses that can be routed to the dummy interface. When a client computing system connects to the VPN server over the virtual machine instance's public interface, the client forwards traffic destined for the dummy interface's inaccessible network over the VPN connection.

Abstract: Techniques are disclosed for configuring a virtual machine instance accessed over a publically routable network address to host intranet applications. A virtual (or “dummy”) interface on the virtual machine instance is assigned an IP address that is inaccessible from the public interface. An application executed on the virtual machine instance is bound to a port on the network address assigned to this dummy interface. A virtual private network server assigns client's IP addresses that can be routed to the dummy interface. When a client computing system connects to the VPN server over the virtual machine instance's public interface, the client forwards traffic destined for the dummy interface's inaccessible network over the VPN connection.

Abstract: Embodiments of the invention provide a method of managing aliases on a server, including deleting unused aliases, while minimizing required administrator interaction. The server may include expirable alias records, containing an expiration value and an inactivity timer. An alias manager component may process the expirable records. If the alias manager component determines a particular record has expired, the alias manager component may delete that record.

Abstract: Systems, methods and articles of manufacture are disclosed for identifying and resolving port conflicts during application deployment. The port conflicts may be identified based on application documentation and active port information. The port conflicts may be resolved by identifying an available port and providing information about the available port to a conflicting application. The port conflicts may also be resolved by identifying an available IP address and providing a port on the available IP address to a conflicting application. Further, if conflicting applications allow port sharing, the port conflicts may be resolved by providing port sharing information to the conflicting applications.

Abstract: Systems, methods and articles of manufacture are disclosed for configuring a network device on a private network. A network device broadcasts a status message to the private network. The network device receives a request from a client and sends a response. The network device and the client establish a direct message route wherein one or more network configuration settings are exchanged between the client computer and the network device.

Abstract: In an embodiment, a guest operating system receives first host network information that identifies a host virtual network adapter. The first host network information uniquely identifies the host virtual network adapter. The guest operating system sends a first frame that comprises the first host network information to a guest virtual network adapter. The guest virtual network adapter sends the first frame to the host virtual network adapter. The guest operating system receives second host network information that identifies the host virtual network adapter. The second host network information uniquely identifies the host virtual network adapter. The guest operating system sends a second frame that comprises the second host network information to the guest virtual network adapter. The guest virtual network adapter sends the second frame to the host virtual network adapter identified by the second host network information in the second frame.

Abstract: Systems, methods and articles of manufacture are disclosed for updating IP addresses on a private network. A DNS server receives an updated IP address and stores both the updated IP address and an old IP address. The DNS server includes the updated IP address in responses to all DNS query requests, wherein the DNS query requests are to the old IP address. Further, the DNS server deletes the old IP address and updates the DNS server network settings with the updated IP address after every remote client on the private network has stored the updated IP address.

Abstract: Embodiments of the invention provide a method of managing aliases on a server, including deleting unused aliases, while minimizing required administrator interaction. The server may include expirable alias records, containing an expiration value and an inactivity timer. An alias manager component may process the expirable records. If the alias manager component determines a particular record has expired, the alias manager component may delete that record.

Abstract: In an embodiment, a guest operating system receives first host network information that identifies a host virtual network adapter. The first host network information uniquely identifies the host virtual network adapter. The guest operating system sends a first frame that comprises the first host network information to a guest virtual network adapter. The guest virtual network adapter sends the first frame to the host virtual network adapter. The guest operating system receives second host network information that identifies the host virtual network adapter. The second host network information uniquely identifies the host virtual network adapter. The guest operating system sends a second frame that comprises the second host network information to the guest virtual network adapter. The guest virtual network adapter sends the second frame to the host virtual network adapter identified by the second host network information in the second frame.

Abstract: Systems, methods and articles of manufacture are disclosed for resolving hostnames on a private network with a public Internet server. One embodiment of the invention provides for a public Internet server configured to generate a private network ID when a new private network is identified, wherein the private network ID is a unique reference to all nodes within a private network and wherein the private network is comprised of one or more private DNS servers. The public internet server stores the private network ID and an IP address for at least one or more private DNS servers on the private network and sends, upon request, the private network ID to at least one of the private DNS servers.

Abstract: Embodiments of the invention provide a method of managing aliases on a server, including deleting unused aliases, while minimizing required administrator interaction. The server may include expirable alias records, containing an expiration value and an inactivity timer. An alias manager component may process the expirable records. If the alias manager component determines a particular record has expired, the alias manager component may delete that record.

Abstract: Systems, methods and articles of manufacture are disclosed for resolving hostnames on a private network with a distributed DNS server configuration. One embodiment of the invention provides for a client resolver configured to communicate with a distributed network of servers. The client resolver receives a hostname query and determines if the hostname query is of the type single label hostname or fully qualified hostname. If the hostname query received is of the type fully qualified hostname, the client resolver routes the hostname query to a server with a longest matching domain suffix. If the hostname query received is of the type single label hostname the client resolver generates one or more new fully qualified hostnames and routes the hostname query to each server on the private network.

Abstract: Systems, methods and articles of manufacture are disclosed for resolving hostnames on a private network with a public Internet server. One embodiment of the invention provides for a public Internet server configured to generate a private network ID when a new private network is identified, wherein the private network ID is a unique reference to all nodes within a private network and wherein the private network is comprised of one or more private DNS servers. The public internet server stores the private network ID and an IP address for at least one or more private DNS servers on the private network and sends, upon request, the private network ID to at least one of the private DNS servers.

Abstract: Systems, methods and articles of manufacture are disclosed for updating IP addresses on a private network. A DNS server receives an updated IP address and stores both the updated IP address and an old IP address. The DNS server includes the updated IP address in responses to all DNS query requests, wherein the DNS query requests are to the old IP address. Further, the DNS server deletes the old IP address and updates the DNS server network settings with the updated IP address after every remote client on the private network has stored the updated IP address.

Abstract: Systems, methods and articles of manufacture are disclosed for resolving hostnames on a private network with a distributed DNS server configuration. One embodiment of the invention provides for a client resolver configured to communicate with a distributed network of servers. The client resolver receives a hostname query and determines if the hostname query is of the type single lablel hostname or fully qualified hostname. If the hostname query received is of the type fully qualified hostname, the client resolver routes the hostname query to a server with a longest matching domain suffix. If the hostname query received is of the type single label hostname the client resolver generates one or more new fully qualified hostnames and routes the hostname query to each server on the private network.

Abstract: Systems, methods and articles of manufacture are disclosed for configuring a network device on a private network. A network device broadcasts a status message to the private network. The network device receives a request from a client and sends a response. The network device and the client establish a direct message route wherein one or more network configuration settings are exchanged between the client computer and the network device.

Abstract: Systems, methods and articles of manufacture are disclosed for identifying and resolving port conflicts during application deployment. The port conflicts may be identified based on application documentation and active port information. The port conflicts may be resolved by identifying an available port and providing information about the available port to a conflicting application. The port conflicts may also be resolved by identifying an available IP address and providing a port on the available IP address to a conflicting application. Further, if conflicting applications allow port sharing, the port conflicts may be resolved by providing port sharing information to the conflicting applications.

Abstract: Methods, apparatus, and computer program products for variable dynamic throttling of network traffic for intrusion prevention are disclosed that include initializing, as throttling parameters, a predefined time interval, a packet count, a packet count threshold, a throttle rate, a keepers count, and a discards count; starting a timer, the timer remaining on no longer than the predefined time interval; maintaining, while the timer is on, statistics including the packet count, the keepers count, and the discards count; for each data communications packet received by the network host, determining, in dependence upon the statistics and the throttle rate, whether to discard the packet and determining whether the packet count exceeds the packet count threshold; and if the packet count exceeds the packet count threshold: resetting the statistics, incrementing the throttle rate, and restarting the timer.

Abstract: Methods, apparatus, and computer program products for variable dynamic throttling of network traffic for intrusion prevention are disclosed that include initializing, as throttling parameters, a predefined time interval, a packet count, a packet count threshold, a throttle rate, a keepers count, and a discards count; starting a timer, the timer remaining on no longer than the predefined time interval; maintaining, while the timer is on, statistics including the packet count, the keepers count, and the discards count; for each data communications packet received by the network host, determining, in dependence upon the statistics and the throttle rate, whether to discard the packet and determining whether the packet count exceeds the packet count threshold; and if the packet count exceeds the packet count threshold: resetting the statistics, incrementing the throttle rate, and restarting the timer.