Firewall gateway for voice over internet telephony communications

US 20020186683A1
Filed: 04/02/2001
Published: 12/12/2002
Est. Priority Date: 04/02/2001
Status: Abandoned Application

First Claim

Patent Images

1. A method for directing voice data transmissions between at least one internal computer system of at least one registered user, said internal computer system protected by a firewall security system, and at least one external device connected to the external network comprising the steps of:

a) accepting transmission of registration information from said internal computer system by at least one gateway server connected to said external network;

b) processing and storing transmitted registration information in a database connected to said gateway server, together with at least one identifier of said internal computer system;

c) accepting a request from said internal computer system by said gateway server to initiate exchange of voice data with at least one external device connected to the external network;

d) determining whether said external device is active;

e) determining whether said internal computer system is able to receive data packets containing voice data using a connectionless packet-oriented transfer protocol;

f) determining whether said external device is able to receive voice data packets using a connectionless packet-oriented communication protocol over said external network. g) receiving by said gateway server the voice data packets transmitted from said external device;

h) re-packaging said data packets to the packet type allowed to be transmitted to said internal computer system by the firewall security system; and

i) sending said re-packaged voice data packets that originated at said external device from said gateway server to said internal computer system.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method and computerized system for directing voice data transmissions by a gateway server of an Internet telephony service provider between an internal computer system of a registered user and an external device connected to the external network, such as Internet, where the internal computer system is protected by a firewall security system that does not allow transmissions of voice data packets to the internal computer system. The gateway server accepts a request from the internal computer system to initiate exchange of voice data with at least one external device, identifies the user and verifies that sender and recipient are registered with the provider and are currently active and able to exchange voice data. The gateway server also determines whether the internal computer system is allowed to receive voice data packets using a connectionless packet-oriented communication protocol, such as for example UDP, and re-routes all voice data transmissions from the external device through the gateway server, which re-packages voice data transmissions in accordance with a packet and transmission protocol (and format) that is allowed to be sent to the internal computer system, such as for example TCP/IP.

Citations

89 Claims

1. A method for directing voice data transmissions between at least one internal computer system of at least one registered user, said internal computer system protected by a firewall security system, and at least one external device connected to the external network comprising the steps of:
- a) accepting transmission of registration information from said internal computer system by at least one gateway server connected to said external network;
  
  b) processing and storing transmitted registration information in a database connected to said gateway server, together with at least one identifier of said internal computer system;
  
  c) accepting a request from said internal computer system by said gateway server to initiate exchange of voice data with at least one external device connected to the external network;
  
  d) determining whether said external device is active;
  
  e) determining whether said internal computer system is able to receive data packets containing voice data using a connectionless packet-oriented transfer protocol;
  
  f) determining whether said external device is able to receive voice data packets using a connectionless packet-oriented communication protocol over said external network. g) receiving by said gateway server the voice data packets transmitted from said external device;
  
  h) re-packaging said data packets to the packet type allowed to be transmitted to said internal computer system by the firewall security system; and
  
  i) sending said re-packaged voice data packets that originated at said external device from said gateway server to said internal computer system.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 62, 63, 64, 87, 89)
- - 2. The method according to claim 1, further comprising a step of determining whether said internal computer system is active.
  - 3. The method according to claim 2, further comprising a step of determining whether said internal computer system is able to transmit voice data packets using a connectionless packet-oriented communication protocol over said external network.
  - 4. The method according to claim 1, further comprising a step of determining whether said external device is able to transmit voice data packets using a connectionless packet-oriented communication protocol over said external network.
  - 5. The method according to claim 1, wherein said external device is a telephone connected to said external network through at least one IP voice gateway for transmitting at least one voice signal from the telephone as an IP packet over said external network to said internal computer system.
  - 6. The method according to claim 1, wherein said connectionless packet-oriented communication protocol utilized to transmit voice data packets is User Datagram Protocol (UDP).
  - 7. The method according to claim 1, wherein the step of re-packaging voice data packets as data packets of the type allowed to be transmitted to said internal computer system comprises converting UDP data packets to TCP/IP data packets.
  - 8. The method according to claim 1, wherein said firewall security system of said registered user utilizes NAT (network address translation).
  - 9. The method according to claim 1, wherein said external network is the Internet.
  - 10. The method according to claim 9, wherein said internal computer system is part of an internal computer network connected to the Internet through at least one network server.
  - 11. The method according to claim 9, wherein said external device is a computer system connected to the Internet.
  - 12. The method according to claim 9, wherein said external computer system is part of a computer network connected to the Internet through at least one network server.
  - 13. The method according to claim 9, wherein at least one identifier of said internal computer system is its IP address.
  - 14. The method according to claim 9, wherein said external device is connected to the Internet through an Internet Service Provider (ISP).
  - 15. The method according to claim 9, wherein said internal computer system is connected to the Internet through an Internet Service Provider (ISP).
  - 16. The method according to claim 1, wherein the step of accepting transmission of registration information from said internal computer system by at least one gateway server comprises accepting an HTML page containing user information.
  - 17. The method according to claim 1, wherein the step of accepting a request from said internal computer system to initiate exchange of voice data comprises accepting an HTML page containing security information of said user of said internal computer system.
  - 18. The method according to claim 17, wherein said security information comprises a password assigned to said user of said internal computer system.
  - 19. The method according to claim 17, wherein said security information is encrypted.
  - 20. The method according to claim 17, wherein said security information is stored in computer memory of said internal computer system.
  - 21. The method according to claim 1, wherein the step of determining whether said external device is active comprises receiving a transmission by said gateway server from said external device containing data that identifies said user of said external device.
  - 22. The method according to claim 1, further comprising the step of receiving analog voice data through a microphone of said internal computer system of said user and converting said analog voice data to digital format.
  - 23. The method according to claim 22, further comprising the step of compressing said converted digital data representing said analog voice data for transmission to said external device.
  - 24. The method according to claim 23, further comprising the step of combining said compressed digital data representing said analog voice data with additional digital computer data for transmission to said gateway server.
  - 25. The method according to claim 24, wherein said additional digital computer data comprises digital images.
  - 26. The method according to claim 24, wherein said additional digital computer data comprises digital text data.
  - 27. The method according to claim 24, further comprising the step of receiving said combined digital data by said gateway server from said internal computer system.
  - 28. The method according to claim 1, further comprising the step of receiving said re-packaged voice data packets from said gateway server at the internal computer system of said user.
  - 29. The method according to claim 28, wherein said re-packaged voice data packets comprise the analog voice data originated at said external device and a digital text data.
  - 30. The method according to claim 28, wherein said re-packaged voice data packets comprise the analog voice data originated at said external device and a digital image.
  - 31. The method according to claim 28, wherein said re-packaged voice data packets are compressed.
  - 32. The method according to claim 31, further comprising the step of de-compressing said voice data packets and converting them to an analog voice transmission.
  - 33. The method according to claim 1, wherein the step of determining whether said internal computer system is able to receive data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a data packet from said gateway server to said internal computer system using a connectionless packet-oriented protocol and waiting for an acknowledgement of the receipt of said transmission for a predetermined time period.
  - 34. The method according to claim 3, wherein the step of determining whether said internal computer system is able to transmit data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a request from said gateway server to said internal computer system to send back a reply using a connectionless packet-oriented transfer protocol.
  - 35. The method according to claim 1, wherein the step of determining whether said external device is able to receive data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a data packet from said gateway server to said external device using a connectionless packet-oriented protocol and waiting for an acknowledgement of the receipt of said transmission for a predetermined time period.
  - 36. The method according to claim 4, wherein the step of determining whether said external device is able to transmit data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a request from said gateway server to said external device to send back a reply using a connectionless packet-oriented transfer protocol.
  - 38. The device according to claim 37, wherein said computer program of said gateway server is also operable to determine whether said internal computer system and said external device are able to transmit voice data packets using a connectionless packet-oriented communication protocol over said external network.
  - 39. The device according to claim 37, wherein said external device is a telephone connected to said external network through at least one IP voice gateway for transmitting at least one voice signal from the telephone as an IP packet over said external network to said internal computer system.
  - 40. The device according to claim 37, wherein said connectionless packet-oriented communication protocol utilized to transmit voice data packets is User Datagram Protocol (UDP).
  - 41. The device according to claim 37, wherein said gateway server re-packages voice data packets as data packets of the type allowed to be transmitted to said internal computer system by converting them from UDP data packets to TCP/IP data packets.
  - 42. The device according to claim 37, wherein said external network is the Internet.
  - 43. The device according to claim 42, wherein said internal computer system is part of an internal computer network connected to the Internet through at least one network server.
  - 44. The device according to claim 42, wherein said external device is a computer system connected to the Internet.
  - 45. The device according to claim 42, wherein said external computer system is part of a computer network connected to the Internet through at least one network server.
  - 46. The device according to claim 42, wherein at least one identifier of said internal computer system is its IP address.
  - 47. The device according to claim 42, wherein said internal computer system and said external device are connected to the Internet through an Internet Service Provider (ISP).
  - 48. The device according to claim 37, wherein said request from said internal computer system to initiate exchange of voice data is an HTML page containing security information of said user of said internal computer system.
  - 49. The device according to claim 48, wherein said security information comprises a password assigned to said user of said internal computer system.
  - 50. The device according to claim 49, wherein said security information is encrypted.
  - 51. The device according to claim 49, wherein said security information is stored in a computer memory of said internal computer system.
  - 52. The device according to claim 37, wherein said computer program of said gateway server determine whether said internal computer system and said external device are active by receiving at least one transmission from each, each said transmission containing data that identifies the respective user.
  - 53. The device according to claim 37, wherein said re-packaged data packets comprise the analog voice data that originated at said external device and a digital image.
  - 54. The device according to claim 37, wherein said re-packaged data packets comprise the analog voice data that originated at said external device and a digital text data.
  - 55. The device according to claim 37, wherein said re-packaged data packets are compressed.
  - 56. The device according to claim 37, wherein said gateway server determines whether said internal computer system is able to receive data packets using a connectionless packet-oriented transfer protocol by transmitting a data packet from said gateway server to said internal computer system using a connectionless packet-oriented protocol and waiting for an acknowledgement of the receipt of said transmission for a predetermined time period.
  - 57. The device according to claim 37, wherein said gateway server determines whether said external device is able to receive data packets using a connectionless packet-oriented transfer protocol by transmitting a data packet from said gateway server to said external device using a connectionless packet-oriented protocol and waiting for an acknowledgement of the receipt of said transmission for a predetermined time period.
  - 58. The device according to claim 37, wherein said gateway server determines whether said internal computer system is able to transmit data packets using a connectionless packet-oriented transfer protocol by transmitting a request from said gateway server to said internal computer system to send back a reply using a connectionless packet-oriented transfer protocol.
  - 59. The device according to claim 37, wherein said gateway server determines whether said external device is able to transmit data packets using a connectionless packet-oriented transfer protocol by transmitting a request from said gateway server to said external device to send back a reply using a connectionless packet-oriented transfer protocol.
  - 60. The device according to claim 37, wherein said firewall security system is implemented using one or more packet-filtering routers for screening the incoming and outgoing data transmissions between said internal computer system and said external computer network.
  - 62. The method according to claim 60, further comprising a step of determining whether said internal computer system is active.
  - 63. The method according to claim 62, further comprising a step of determining whether said internal computer system is able to transmit voice data packets using a connectionless packet-oriented communication protocol over said external network.
  - 64. The method according to claim 63, further comprising a step of determining whether said external device is able to transmit voice data packets using a connectionless packet-oriented communication protocol over said external network.
  - 87. The method according to claim 63, wherein the step of determining whether said internal computer system is able to transmit data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a request from said gateway server to said internal computer system to send back a reply using a connectionless packet-oriented transfer protocol.
  - 89. The method according to claim 64, wherein the step of determining whether said external device is able to transmit data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a request from said gateway server to said external device to send back a reply using a connectionless packet-oriented transfer protocol.

37. A computer based gateway server for directing voice data transmissions between at least one internal computer system protected by a firewall security system and at least one external device connected to the external network, wherein said gateway server device executes a computer program that accepts, processes and stores registration information transmitted from said internal computer system in a database connected to said gateway server, together with at least one identifier of said internal computer system;
- said computer program of said gateway server being operable to determine whether said internal computer system and said external device are active and whether said internal computer system and said external device are able to receive data packets containing voice data using a connectionless packet-oriented transfer protocol; and
  
  wherein said gateway server device receives voice data packets from said external device, re-packages said data packets to the packet type allowed to be transmitted to said internal computer system by the firewall security system and sends said re-packaged voice data packets to the internal computer system.

61. A method for directing voice data transmissions between at least one internal computer system of at least one registered user that is protected by a firewall security system and at least one external device connected to the external network, said method comprising the steps of:
- a) transmitting a registration information from said internal computer system to at least one gateway server connected to said external network;
  
  b) transmitting a request from said internal computer system to said gateway server to initiate exchange of voice data with at least one external device connected to the external network;
  
  c) determining whether said external device is active;
  
  d) determining whether said internal computer system is able to receive data packets containing voice data using a connectionless packet-oriented transfer protocol;
  
  e) determining whether said external device is able to receive voice data packets using a connectionless packet-oriented communication protocol over said external network. f) transmitting voice data packets from said external device to said gateway server;
  
  g) re-packaging said data packets to the packet type allowed to be transmitted to said internal computer system; and
  
  h) sending said re-packaged voice data packets that originated at said external device from said gateway server to said internal computer system.
- View Dependent Claims (65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85, 86, 88)
- - 65. The method according to claim 61, wherein said external device is a telephone connected to said external network through at least one IP voice gateway for transmitting at least one voice signal from the telephone as an IP packet over said external network to said internal computer system.
  - 66. The method according to claim 61, wherein said connectionless packet-oriented communication protocol utilized to transmit voice data packets is User Datagram Protocol (UDP).
  - 67. The method according to claim 66, wherein the step of re-packaging voice data packets as data packets of the type allowed to be transmitted to said internal computer system comprises converting UDP data packets to TCP/IP data packets.
  - 68. The method according to claim 61, wherein said external network is the Internet.
  - 69. The method according to claim 68, wherein said internal computer system is part of an internal computer network connected to the Internet through at least one network server.
  - 70. The method according to claim 68, wherein said external computer system is part of a computer network connected to the Internet through at least one network server.
  - 71. The method according to claim 68, wherein at least one identifier of said internal computer system is its IP address.
  - 72. The method according to claim 68, wherein said external device and internal computer system are connected to the Internet through at least one Internet Service Provider (ISP).
  - 73. The method according to claim 61, wherein the step of transmitting a registration information from said internal computer system to said at least one gateway server comprises transmitting an HTML page containing user information.
  - 74. The method according to claim 61, wherein the step of transmitting a request from said internal computer system to said gateway server to initiate exchange of voice data with at least one external device comprises transmitting an HTML page containing security information of said user of said internal computer system.
  - 75. The method according to claim 74, wherein said security information comprises a password assigned to said user of said internal computer system.
  - 76. The method according to claim 61, wherein the step of determining whether said external device is active comprises receiving a transmission by said gateway server from said external device containing data that identifies said user of said external device.
  - 77. The method according to claim 61, further comprising the step of receiving analog voice data through a microphone of said internal computer system of said user and converting said analog voice data to digital format.
  - 78. The method according to claim 77, further comprising the step of compressing said converted digital data representing said analog voice data for transmission to said external device.
  - 79. The method according to claim 78, further comprising the step of combining said compressed digital data representing said analog voice data with additional digital computer data for transmission to said gateway server.
  - 80. The method according to claim 79, wherein said additional digital computer data comprises digital images.
  - 81. The method according to claim 79, wherein said additional digital computer data comprises digital text data.
  - 82. The method according to claim 79, further comprising the step of transmitting said combined digital data from said internal computer system to said gateway server.
  - 83. The method according to claim 61, further comprising the step of receiving the re-packaged voice data packets from said gateway server at said internal computer system of said user.
  - 84. The method according to claim 83, wherein said re-packaged voice data packets are compressed.
  - 85. The method according to claim 84, further comprising the step of de-compressing said voice data packets and converting them to analog format.
  - 86. The method according to claim 61, wherein the step of determining whether said internal computer system is able to receive data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a data packet from said gateway server to said internal computer system using a connectionless packet-oriented protocol and waiting for an acknowledgement of the receipt of said transmission for a predetermined time period.
  - 88. The method according to claim 61, wherein the step of determining whether said external device is able to receive data packets using a connectionless packet-oriented transfer protocol is accomplished by transmitting a data packet from said gateway server to said external device using a connectionless packet-oriented protocol and waiting for an acknowledgement of the receipt of said transmission for a predetermined time period.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Alan Buck, Richard St-Pierre
Original Assignee
Alan Buck, Richard St-Pierre
Inventors
St. Pierre, Richard, Buck, Alan

Application Number

US09/825,568
Publication Number

US 20020186683A1
Time in Patent Office

Days
Field of Search
US Class Current

370/352
CPC Class Codes

H04L 63/029   Firewall traversal, e.g. tu...

H04L 69/16   Implementation or adaptatio...

H04L 69/164   Adaptation or special uses ...

H04L 69/329   in the application layer [O...

Firewall gateway for voice over internet telephony communications

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

89 Claims

Specification

Solutions

Use Cases

Quick Links

Firewall gateway for voice over internet telephony communications

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

89 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links