Secure unidirectional network access using consumer-configured limited-access endpoints

Abstract

A virtual gateway for transmission of packets from a service provider virtual network to a service consumer virtual network of a user is established at a cloud computing environment. A limited-access endpoint is created in the service consumer virtual network, with security settings provided by the user which enable transmission of packets from a service implemented at the service provider virtual network to resources within the service consumer virtual network. A packet directed to a resource in the service consumer virtual network is received at the gateway from the service. If the security settings permit delivery of packets via the endpoint to the resource, the packet is transmitted to the resource.

CPC Classifications