System and method for managing dynamic network sessions
First Claim
1. A method operative at an Internet access gateway operative between an area network and a public network for processing a dynamic network session between said area network and said public network when a primary server of said public network in a primary session with a client of said area network initiates an additional session with an additional server of said public network and said client, said method comprising steps of:
- receiving an unexpected data packet at said gateway from said additional server; and
processing said packet provided i) said gateway received said packet at an input port exceeding 1023, ii) said additional session comprises a pre-defined Session Triggering Event, and iii) at least one internal network component of said area network indicates willingness to receive said packet.
3 Assignments
0 Petitions
Accused Products
Abstract
For an Internet Access Gateway operative between an area network and a public network, managing dynamic network sessions therebetween whereby a primary server on the public network in a primary session with a client of the area network initiates an additional session with an additional server on the public network, for which an unexpected data packet received at the gateway from the additional server is associated with the primary session, and accordingly allowed access to the area network through the gateway, provided the gateway received the data packet at an input port exceeding 1023, the additional session comprises a pre-defined Session Triggering Event, and at least one internal network component of the area network indicates willingness to receive the data packet. Wherefore, a preferred Application Level Gateway is thereby provided for firewall and NAT implementations to enhance network security.
-
Citations
24 Claims
-
1. A method operative at an Internet access gateway operative between an area network and a public network for processing a dynamic network session between said area network and said public network when a primary server of said public network in a primary session with a client of said area network initiates an additional session with an additional server of said public network and said client, said method comprising steps of:
-
receiving an unexpected data packet at said gateway from said additional server; and
processing said packet provided i) said gateway received said packet at an input port exceeding 1023, ii) said additional session comprises a pre-defined Session Triggering Event, and iii) at least one internal network component of said area network indicates willingness to receive said packet. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A computer-readable storage medium containing computer executable code for instructing an Internet access gateway operative between an area network and a public network to operate as follows when processing a dynamic network session between said area network and said public network when a primary server of said public network in a primary session with a client of said area network initiates an additional session with an additional server of said public network and said client:
-
receive an unexpected data packet at said gateway from said additional server; and
process said packet provided i) said gateway received said packet at an input port exceeding 1023, ii) said additional session comprises a pre-defined Session Triggering Event, and iii) at least one internal network component of said area network indicates willingness to receive said packet. - View Dependent Claims (20, 21, 22, 23, 24)
-
Specification