Personal server technology with firewall detection and penetration

US 20020078198A1
Filed: 02/15/2002
Published: 06/20/2002
Est. Priority Date: 02/25/2000
Status: Abandoned Application

First Claim

Patent Images

1. A method of interfacing a user computer with a network comprising one or more client computing devices coupled to a server computer, the method comprising:

transmitting a test command from the user computer to the server computer to cause the server computer to transmit a return signal to the user computer to determine whether a firewall exists between the user and server computers;

transmitting a series of messages between the user computer and the server computer using communication protocols of increasing complexity to identify the type of firewall that exists, if it is determined that a firewall exists between the user and server computers;

utilizing the communication protocol corresponding to the type of firewall identified for communications between the user computer and the server computer; and

registering a network address of the user computer with the server computer if the firewall causes the address of the user computer to change upon each new connection with the server computer.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A firewall penetration scheme is described for communication between two networked computers. A first computer within a firewall protected network initiates a connection to a second computer. The second computer is coupled to a network of remote clients that are configured to access the first computer. The first computer transmits a message to the second computer commanding the second computer to connect back to the first computer A series of tests using communication protocols of increasing complexity are executed until a communication protocol enabling communication between the first and second computers is determined. If the address of the first computer changes upon connection, the second computer registers the new address upon each change. If the connection between the first computer and second computer is unintentionally broken, the first computer re-establishes contact with the second computer and maintains the connection by transmitting periodic signals to the second computer.

156 Citations

25 Claims

1. A method of interfacing a user computer with a network comprising one or more client computing devices coupled to a server computer, the method comprising:
- transmitting a test command from the user computer to the server computer to cause the server computer to transmit a return signal to the user computer to determine whether a firewall exists between the user and server computers;
  
  transmitting a series of messages between the user computer and the server computer using communication protocols of increasing complexity to identify the type of firewall that exists, if it is determined that a firewall exists between the user and server computers;
  
  utilizing the communication protocol corresponding to the type of firewall identified for communications between the user computer and the server computer; and
  
  registering a network address of the user computer with the server computer if the firewall causes the address of the user computer to change upon each new connection with the server computer.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The method of claim 1 further comprising the steps of:
    - re-establishing communication from the user computer to the server computer by the user computer if the communication is unintentionally broken; and
      
      maintaining the communication between the user computer and server computer by transmitting periodic non-traffic related signals from the user computer to the server computer.
  - 3. The method of claim 2 wherein the communications protocols include, in order of increasing complexity:
    - fixed address firewall, dynamic address firewall, proxy server protection, network address translation firewall, and stateful firewall.
  - 4. The method of claim 3 wherein the network comprises a wireless network coupling one or more wireless client computing devices to the server computer.
  - 5. The method of claim 4 wherein the one or more wireless client computing devices comprises one of:
    - a personal computer, handheld personal digital assistant, and networkable cellular phone.
  - 6. The method of claim 5, wherein the network comprises a TCP/IP network and the data transmitted over the network comprises one of:
    - computer text data, audio data, and video data.
  - 7. The method of claim 6 wherein the user computer and server computer are coupled through a bidirectional communications network that comprises the Internet.
  - 8. The method of claim 7 wherein the server computer is coupled to the one or more wireless client computing devices over a remote control protocol.
  - 9. The method of claim 8 wherein the server computer provides control and monitoring functionality over the one or more wireless client computing devices using a protocol comprising one of:
    - TCP/IP protocol, X10 protocol, and Bluetooth protocol.

10. A system comprising:
- a first computer coupled to a network coupling one or more client computers;
  
  a second computer including a connection module for communicating with the first computer;
  
  a firewall protection mechanism disposed between the first computer and the second computer to prevent unwanted network access from the first computer to the second computer;
  
  wherein the connection module is configured to initiate transmission of a series of messages between the first computer and the second computer using communication protocols of increasing complexity to identify the type of firewall that exists, and further configured to register an address of the first computer with the second computer if the firewall causes the address of the first computer to change upon each new connection with the second computer.
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18, 20, 21, 22, 23, 24, 25)
- - 11. The system of claim 10 wherein the connection module is further configured to re-establish communication from the first computer to the second computer by the first computer if the communication is unintentionally broken, and maintain the communication between the first computer and second computer by transmitting periodic non-traffic related signals from the first computer to the second computer.
  - 12. The system of claim 11 wherein the communications protocols include, in order of increasing complexity:
    - fixed address firewall, dynamic address firewall, proxy server protection, network address translation firewall, and stateful firewall.
  - 13. The system of claim 12 wherein the network comprises a wireless network coupling the one or more wireless client computing devices to the first computer.
  - 14. The system of claim 13 wherein the one or more wireless client computing devices comprises one of:
    - a personal computer, a handheld personal digital assistant, and a networkable cellular phone.
  - 15. The system of claim 14, wherein the network comprises a TCP/IP network and the data transmitted over the network comprises one of:
    - computer text data, audio data, and video data.
  - 16. The system of claim 15 wherein first computer and second computer are coupled through a bi-directional communications network that comprises the Internet.
  - 17. The system of claim 16 wherein the second computer comprises a server computer coupled to the one or more wireless client computing devices and communicating over a remote control protocol.
  - 18. The system of claim 17 wherein the server computer provides control and monitoring functionality over the one or more wireless client computing devices using a protocol comprising one of:
    - TCP/IP protocol, X10 protocol, and Bluetooth protocol.
  - 20. The method of claim 19 wherein the firewall comprises one of:
    - an address filtering firewall, a dynamic address firewall, and a network address translation firewall that allows incoming connections to the second server computer.
  - 21. The method of claim 19, wherein if the connection between the first server computer and the second server computer is initiated by the second server computer, the method comprises the steps of:
    - causing the first server computer to listen for a connection to the second server computer over a secure port accessible by the first server computer;
      
      establishing a connection between the first server computer and the second server computer over the secure port;
      
      determining whether the connection has been broken;
      
      re-establishing the connection between the first server computer and the second server computer; and
      
      transmitting periodic non-data signals from the second server computer to the first server computer to maintain the connection.
  - 22. The method of claim 21 wherein the firewall comprises one of:
    - a proxy server firewall, a stateful firewall, and a network address translation firewall that refuses incoming connections to the second server computer.
  - 23. The method of claim 21 wherein the first server computer is coupled to one or more remote computing devices over a wireless network link, and wherein the first server computer is coupled to one or more user computers over a Local Area Network link.
  - 24. The method of claim 23 wherein the first server computer and second server computer are coupled through a bidirectional communications network that comprises the Internet.
  - 25. The method of claim 16 wherein the first server computer comprises is remotely coupled to the plurality of the one or more remote computing devices over a remote control protocol, and provides control and monitoring functionality over the one or more remote computing devices using a protocol comprising one of:
    - TCP/IP protocol, X10 protocol, and Bluetooth protocol.

19. A method for interfacing a first server computer to a second server computer through a network connection including a network firewall, the method comprising the steps of:
- determining if the connection between the first server computer and the second server computer is initiated by the first server computer or by the second server computer;
  
  causing the first server computer to listen for a connection to the second server computer over a secure port accessible by the first server computer;
  
  establishing a connection between the first server computer and the second server computer over the secure port;
  
  registering a network address of the second server computer with the first server computer, if the connection between the first server computer and the second server computer is initiated by the first server computer; and
  
  re-registering the network address of the second server computer with the first server computer if the connection established between the first server computer and the second server computer is broken.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Anywheremobile Incorporated
Original Assignee
Anywheremobile Incorporated
Inventors
Finke, Alan D., Buchbinder, John E., Buchbinder, Joshua E.

Application Number

US10/077,105
Publication Number

US 20020078198A1
Time in Patent Office

Days
Field of Search
US Class Current

709/224
CPC Class Codes

H04L 12/2805   Home Audio Video Interopera...

H04L 12/2809   indicating that an applianc...

H04L 12/2814   Exchanging control software...

H04L 2012/2841   Wireless

H04L 2012/2849   Audio/video appliances

H04L 2012/285   Generic home appliances, e....

H04L 41/00   Arrangements for maintenanc...

H04L 43/00   Arrangements for monitoring...

H04L 43/0817   by checking functioning

H04L 43/10   Active monitoring, e.g. hea...

H04L 43/106   using time related informat...

H04L 63/029   Firewall traversal, e.g. tu...

H04L 67/12   specially adapted for propr...

H04L 69/329   in the application layer [O...

Personal server technology with firewall detection and penetration

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

156 Citations

25 Claims

Specification

Use Cases

Quick Links

Others

Personal server technology with firewall detection and penetration

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

156 Citations

25 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others