| 发明名称 |
NETWORKING FLOW LOGS FOR MULTI-TENANT ENVIRONMENTS |
| 摘要 |
Computing resource service providers may provide computing resources to customers in a multi-tenant environment. These computing resources may be behind a firewall or other security device such that certain information does not reach the computing resources provided to the customer. A logging entity may be implemented on computer server operated by the computing resource service provider. The logging entity may obtain log information from the firewall or other security device and store the log information such that it is accessible to the customer. Additionally, the log information may be provided to other services such as a metrics service or intrusion detection service. |
| 申请公布号 |
US2016294870(A1) |
申请公布日期 |
2016.10.06 |
| 申请号 |
US201514673516 |
申请日期 |
2015.03.30 |
| 申请人 |
Amazon Technologies, Inc. |
发明人 |
Banerjee Rajat;Miller Nathan Andrew;Divecha Aniket Deepak;Kerl John Robert;Zhao Mingxue;Ye Shuai;Miller Kevin Christopher |
| 分类号 |
H04L29/06;H04L12/26 |
主分类号 |
H04L29/06 |
| 代理机构 |
|
代理人 |
|
| 主权项 |
1. A computer-implemented method, comprising:
under the control of one or more computer systems configured with executable instructions,
receive a request from a customer of a computing resource service provider to enable logging for a virtual computer system instance, the virtual computer system instance hosted by the computing resources service provider;filter, by a firewall, network traffic directed to the virtual computer system instance based at least in part on one or more security policies maintained by the customer;obtain network traffic log information and firewall decisions from the firewall;retrieve network log information corresponding to the virtual computer system instance operated by the customer; andprovide the retrieved network log information to a destination, accessible to the customer, indicated by the customer in the received request. |
| 地址 |
Seattle WA US |
