On-premises data access and firewall tunneling
First Claim
1. A method comprising:
- receiving, by a notification server, an initialization request from a host device situated behind a network separation device;
transmitting a plurality of keep-alive packets between the host device and the notification server such that the plurality of keep-alive packets maintain an open communication channel between the notification server and the host device through the network separation device;
receiving, by the notification server, a first message including a host identifier identifying the host device, the first message received responsive to a client requesting access to data from the host device; and
sending, by the notification server, a second message through the open communication channel, which is maintained by the keep-alive packets, to the host device, the host device initiating a pass-through channel subsequent to receiving the second message, wherein the client may communicate with the host device via the pass-through channel.
5 Assignments
0 Petitions
Accused Products
Abstract
A system and method for tunneling through a network separation device such as a firewall or a Network Address Translator including a first server receiving an access request from a client device to communicate with a host device, where the host device is behind the network separation device. The first server sending a message to a second server in response to receiving the access request, the message including host data for the host device. The second server is configured to send a notification to the host device, and the notification includes instructions for the host device to initialize a pass-through channel with the first server. The first server receiving a pass-through initialization request from the host device and establishing the pass-through channel for communication between the client device and the host device in response to receiving the pass-through initialization request.
33 Citations
20 Claims
-
1. A method comprising:
-
receiving, by a notification server, an initialization request from a host device situated behind a network separation device; transmitting a plurality of keep-alive packets between the host device and the notification server such that the plurality of keep-alive packets maintain an open communication channel between the notification server and the host device through the network separation device; receiving, by the notification server, a first message including a host identifier identifying the host device, the first message received responsive to a client requesting access to data from the host device; and sending, by the notification server, a second message through the open communication channel, which is maintained by the keep-alive packets, to the host device, the host device initiating a pass-through channel subsequent to receiving the second message, wherein the client may communicate with the host device via the pass-through channel. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system comprising:
a notification server comprising a processor and a memory, wherein the notification server is configured to; receive an initialization request from a host device situated behind a network separation device; transmit a plurality of keep-alive packets between the host device and the notification server such that the plurality of keep-alive packets maintain an open communication channel between the notification server and the host device through the network separation device; receive a first message including a host identifier identifying the host device, the first message received responsive to a client requesting access to data from the host device; and send a second message through the open communication channel, which is maintained by the keep-alive packets, to the host device, the host device initiating a pass-through channel subsequent to receiving the second message, wherein the client may communicate with the host device via the pass-through channel. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
20. A method comprising:
-
receiving, by a notification server, an initialization request from a host device situated behind a network separation device, the initialization request including host data associated with the host device; registering, by the notification server, the host data associated with the host device; transmitting a plurality of keep-alive packets between the host device and the notification server such that the plurality of keep-alive packets maintain an open communication channel between the notification server and the host device through the network separation device responsive to receiving the initialization request; receiving, by the notification server, a first message including a host identifier identifying the host device, the first message received responsive to a client requesting access to data from the host device; determining, by the notification server, that the host device is registered by using the host identifier to identify the registered host data associated with the host device; determining, by the notification server, that the open communication channel between the notification server and the host device is maintained; and sending, by the notification server, a second message through the open communication channel, which is maintained by the keep-alive packets, to the host device, the host device initiating a pass-through channel subsequent to receiving the second message, wherein the client may communicate with the host device via the pass-through channel.
-
Specification