Personal remote firewall
First Claim
1. A method of a virtual private network (VPN) gateway server (10) providing rules for wireless access over a secure tunnel connection to a corporate network (20), the method including:
- configuring a user database (15, 25) of the server to provide user specific rules for the access over the secure tunnel connection, the configuring including associating different specific users with respective sets of allowed TCP server ports;
authenticating a user connecting to the secure tunnel connection; and
limiting the authenticated user'"'"'s access to the corporate network (20) by forwarding only user data received in the secure tunnel that as destination has a port that is included by the set of allowed TCP server ports associated with the user in the user database (15, 25).
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention relates to a method and a virtual private network (VPN) gateway server 10 providing rules for wireless access over a secure tunnel connection to a corporate network 20. The corporate network 20 is protected by firewall functionality, with different access configurations for different remote users. The VPN gateway server 10 includes a user database 15 which provides rules specific for each user for the access to the corporate network 20 using the secure tunnel. The rules include specific sets of TCP ports associated with respective specific users. The gateway server 10 limits an authenticated user'"'"'s access to the corporate network 20, which access is performed by means of the tunnel connection provided by the gateway server 10, to the associated allowed TCP server ports.
76 Citations
24 Claims
-
1. A method of a virtual private network (VPN) gateway server (10) providing rules for wireless access over a secure tunnel connection to a corporate network (20), the method including:
-
configuring a user database (15, 25) of the server to provide user specific rules for the access over the secure tunnel connection, the configuring including associating different specific users with respective sets of allowed TCP server ports;
authenticating a user connecting to the secure tunnel connection; and
limiting the authenticated user'"'"'s access to the corporate network (20) by forwarding only user data received in the secure tunnel that as destination has a port that is included by the set of allowed TCP server ports associated with the user in the user database (15, 25). - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A virtual private network (VPN) gateway server (10) providing rules for wireless access over a secure tunnel connection to a corporate network (20), the server (10) including:
-
a user database (15, 25) providing user specific rules for the access over the secure tunnel connection by storing associations between different specific users and respective sets of allowed TCP server ports;
authenticating means (11) for authenticating a user connecting to the secure tunnel connection; and
port filtering means (12) for limiting the authenticated user'"'"'s access to the corporate network (20) by forwarding only user data received in the secure tunnel that as destination has a port that is included by the set of allowed TCP server ports associated with the user in the user database (15, 25). - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24)
-
Specification