Systems for high-performance computing. A storage control architecture is implemented by a plurality of nodes, where a node comprises combinations of executable containers that execute in cooperation with virtual machines running above a hypervisor. The containers run in a virtual machine above a hypervisor, and/or can be integrated directly into the operating system of a host node. Sensitive information such as credit card information may be isolated from the containers in a separate virtual machine that is configured to be threat resistant, and which can be accessed through a threat resistant interface module. One of the virtual machines of the node may be a node-specific control virtual machine that is configured to operate as a dedicated storage controller for a node. One of the virtual machines of the node may be a node-specific container service machine that is configured to provide storage-related and other support to a hosted executable container.

The present disclosure provides a method and an apparatus for processing a service request. The method includes: sending a query request for querying a domain name of a server to a DNS; receiving a query response returned according to the query request, where the query response carries a first identifier of an IDGW; sending a service request to the IDGW according to the first identifier, where the service request is used for the IDGW to convert the first identifier into a second identifier of the server and forward the service request to the server according to the second identifier; and receiving a service response message returned from the server in response to the service request.

An internal route usage information from a set of internal route usage information is analyzed to determine an encoding structure used in the internal route usage information and an external route that is referenced in internal route usage information. Using the set of internal route usage information, a subset of external route change information is selected from a set of external route change information, where each changed external route represented in the subset is usable to reach a currently used destination on an external network. A first external route change information from the subset is encoded according to the encoding structure, forming a first encoded route change data. Using the first encoded route change data, an internal router in an internal network is caused to recognize a status change in a first external route.

Systems for high-performance computing. A storage control architecture is implemented by a plurality of nodes, where a node comprises combinations of executable containers that execute in cooperation with virtual machines running above a hypervisor. The containers run in a virtual machine above a hypervisor, and/or can be integrated directly into the operating system of a host node. Sensitive information such as credit card information may be isolated from the containers in a separate virtual machine that is configured to be threat resistant, and which can be accessed through a threat resistant interface module. One of the virtual machines of the node may be a node-specific control virtual machine that is configured to operate as a dedicated storage controller for a node. One of the virtual machines of the node may be a node-specific container service machine that is configured to provide storage-related and other support to a hosted executable container.

Included are embodiments for ReNAT communications address communications. Some embodiments include a network operations center (NOC) that includes a ReNAT twin NAT that translates between a customer-assigned private IP address and a unique private IP (UPIP) address. The NOC may additionally include a ReNAT VPN component coupled to the ReNAT twin NAT, where the ReNAT VPN provides a source IP address to the ReNat twin NAT. The NOC may include logic that when executed by a processor, causes the processor to facilitate communication between a user workstation on a private network and a remote computing device, wherein facilitating communication includes receiving the data from the user workstation via a traditional VPN portal, wherein address translation has been performed by a ReNAT twin NAT client on the user workstation.

This specification describes methods, systems, and computer-readable media for sidecar-backed services for a cloud computing platform. An application is bound to a service. A transformer component of the cloud computing platform transforms credential information for accessing the service by replacing an access address to the service with a localhost address to a sidecar program associated with the application. When the application uses the service, the application communicates with the sidecar program rather than with the service directly. The sidecar program then forwards the communication to the service.

Methods, systems, and devices for network selection and traffic routing are disclosed herein. User equipment (UE) is configured to store an access network selection and detection function (ANDSF) management object (MO). The ANDSF MO may include network selection rules indicating relative priority based on a specific radio access technology (RAT) types of different access networks. The UE is configured to identify one or more available access networks. The UE is configured to establish a connection with an access network of the one or more available access networks. The UE establishes the connection with an access network having a RAT with a highest relative priority of the one or more available access networks based on the network selection rules.

Certain embodiments described herein are generally directed to configuring a generic channel for exchanging information between a hypervisor and a virtual machine run by the hypervisor that resides on a host machine. In some embodiments, the generic channel represents a network or communication path enabled by a logical switch that connects a HyperBus running on the hypervisor and a node agent running on the virtual machine. In some embodiments, network traffic handled by the generic channel is isolated from incoming and outgoing network traffic between the virtual machine and one or more other virtual machines or hosts.

The method for a virtual machine to use a port and loopback IP addresses allocation scheme for full-mesh communications with transparent transport layer security tunnels is presented. In an embodiment, the method comprises detecting, at a redirect agent implemented in a first machine, a packet that is sent from a client application executing on the first machine toward a server application executing on a second machine; and determining, by the redirect agent, whether a first redirect rule matches the packet. In response to determining that the first redirect rule matches the packet, the redirect agent applies the first redirect rule to the packet to translate the packet into a translated packet, and provides the translated packet to a client agent implemented in the first machine to cause the client agent to transmit the translated packet to a server agent implemented in the second machine.

A wireless network adapter is connected to a computing device. A driver module of the wireless network adapter converts a wireless-protocol data packet received through the wireless network adapter into an Ethernet-protocol data packet. A network address translation (NAT) module determines a Socket associated with a source address and a destination address of the Ethernet-protocol data packet, and sends valid data of the Ethernet-protocol data packet through the Socket. Additionally or alternatively, the NAT module encapsulates data into the Ethernet-protocol data packet after receiving the data through the Socket, and the driver module converts the Ethernet-protocol data packet into the wireless-protocol data packet, and sends the wireless-protocol data packet through the wireless network adapter. The present disclosure can implement functions of a device hotspot and is not limited by an operating system framework.