A system is configured to perform operations that include determining an exception event corresponding to a transmission of a plurality of network packets over an electronic network. The electronic network may cause network address translation to be performed on the plurality of network packets. The operations may also include identifying, based on a log of the plurality of network packets, a first network packet associated with the exception event and calculating, based on a payload portion of the first network packet, a packet signature corresponding to the first network packet. The operations may further include determining, based on a comparison between a first data structure and a second data structure using the packet signature, original source address information that corresponds to the first network packet prior to the network address translation being performed on the first network packet.

Techniques for managing a critical phase of a virtual machine migration are described herein. During the critical phase, which must be kept as short as possible, a virtual machine instance is paused, network packets are rerouted to a temporary packet queue, and messages associated with managing synchronization of block storage devices are dispatched to an entity configured to manage those connections. After the block storage devices are synchronized, the network packets are released from the temporary packet queue to the new location of the virtual machine instance.

A computer performs dynamic address isolation. The computer comprises an application associated with an application address, a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network, a network address translation engine configured to translate between the application address and a public address, and a driver for automatically forwarding the outgoing data packets to the network address translation engine to translate the application address to the public address, and for automatically forwarding the incoming data packets to the network address translation engine to translate the public address to the application address. The computer may communicate with a firewall configured to handle both network-level security and application-level security.

Apparatuses, systems and methods for routing requests and responses targeting a shared resource. A queue in a communication fabric is located in a path between the requesters and a shared resource. In some embodiments, the shared resource is a shared address translation cache stored in an endpoint. The physical channel between the queue and the shared resource supports multiple virtual channels. The queue assigns at least one entry to each virtual channel of a group of virtual channels where the group includes a virtual channel for each address translation request type from a single requester of the multiple requesters. When the at least one entry for a given requester is de-allocated, the queue allocates this entry only with requests from the assigned virtual channel even if the empty entry is the only available entry of the queue.

Apparatuses, systems and methods for routing requests and responses targeting a shared resource. A queue in a communication fabric is located in a path between the requesters and a shared resource. In some embodiments, the shared resource is a shared address translation cache stored in an endpoint. The physical channel between the queue and the shared resource supports multiple virtual channels. The queue assigns at least one entry to each virtual channel of a group of virtual channels where the group includes a virtual channel for each address translation request type from a single requester of the multiple requesters. When the at least one entry for a given requester is de-allocated, the queue allocates this entry only with requests from the assigned virtual channel even if the empty entry is the only available entry of the queue.

The subject matter of the present disclosure can be implemented by, among other things, a remote control application executed by a mobile device to identify media player devices connected to a network, present the media player devices for selection in a user interface (UI), receive a selection of multiple media player devices via the UI, and receive a unique group identifier associated with the multiple media player devices from a network service. By transmitting a message containing the unique group identifier and control information to the network service, a media playback by the multiple media player devices is controlled by the remote control application.

The subject matter of the present disclosure can be implemented by, among other things, a remote control application executed by a mobile device to identify media player devices connected to a network, present the media player devices for selection in a user interface (UI), receive a selection of multiple media player devices via the UI, and receive a unique group identifier associated with the multiple media player devices from a network service. By transmitting a message containing the unique group identifier and control information to the network service, a media playback by the multiple media player devices is controlled by the remote control application.

The subject matter of the present disclosure can be implemented by, among other things, a network service server system configured to receive a request from a remote control application to authorize the application to be associated with a user account, determine that the user account includes permissions for media player devices, and transmit a unique group identifier associated with multiple of the media player devices to the application. The network service server system is further configured to receive a media playback command from the application that includes the unique group identifier and control information useable by a media player device to control media playback. In response, the network service server system controls a concurrent media playback on the multiple media player devices by transmitting the control information to the multiple media player devices.

The subject matter of the present disclosure can be implemented by, among other things, a network service server system configured to receive a request from a remote control application to authorize the application to be associated with a user account, determine that the user account includes permissions for media player devices, and transmit a unique group identifier associated with multiple of the media player devices to the application. The network service server system is further configured to receive a media playback command from the application that includes the unique group identifier and control information useable by a media player device to control media playback. In response, the network service server system controls a concurrent media playback on the multiple media player devices by transmitting the control information to the multiple media player devices.

The subject matter of the present disclosure can be implemented by, among other things, a network service server system configured to receive authorizations from a remote control application to associate media player devices that are connected to different local area networks with a user account, receive a request from the application to group multiple of the media player devices, and transmit a unique group identifier associated with the multiple media player devices to the application in response. In response to receiving a media playback command that includes the unique group identifier and control information usable by a media player device to control media playback, the network services transmits the control information to the multiple media player devices to control a media playback by the multiple media player devices.