Integrated wireline and wireless end-to-end virtual private networking
First Claim
1. An end-to-end virtual private networking system for transporting network packets securely through a public data network, comprising:
- a mobile device comprising an application client and a wireless roaming client managing data transfer from said mobile device to said public data network via one of a plurality of predetermined wireless links;
a roaming gateway located in a data center and coupled to said public data network for tracking said plurality of predetermined wireless links and for managing data transfer from said public data network to said mobile device via one of said plurality of predetermined wireless links;
an enterprise server in a private network for exchanging network packets with said application client in said mobile device;
a CPE-VPN router in said private network coupled to said enterprise server and to said public data network;
a VPN router located in said data center coupled to said roaming gateway and to said public data network, wherein said VPN router and said CPE-VPN router establish a VPN tunnel therebetween via said public data network;
wherein said CPE-VPN router transports said network packets between said enterprise server and said VPN tunnel, and wherein said VPN router transports said network packets between said roaming gateway and said VPN tunnel.
6 Assignments
0 Petitions
Accused Products
Abstract
An end-to-end virtual private networking system transports network packets securely through a public data network. A mobile device comprises an application client and a wireless roaming client managing data transfer from the mobile device to the public data network via one of a plurality of predetermined wireless links. A roaming gateway is located in a data center and is coupled to the public data network for tracking the plurality of predetermined wireless links and for managing data transfer from the public data network to the mobile device via one of the plurality of predetermined wireless links. An enterprise server is provided in a private enterprise for exchanging network packets with the application client in the mobile device. A CPE-VPN router in the private enterprise network is coupled to the enterprise server and to the public data network. A VPN router located in the data center is coupled to the roaming gateway and to the public data network, wherein the VPN router and the CPE-VPN router establish a VPN tunnel therebetween via the public data network. The CPE-VPN router transports the network packets between the enterprise server and the VPN tunnel. The VPN router transports the network packets between the roaming gateway and the VPN tunnel.
34 Citations
23 Claims
-
1. An end-to-end virtual private networking system for transporting network packets securely through a public data network, comprising:
-
a mobile device comprising an application client and a wireless roaming client managing data transfer from said mobile device to said public data network via one of a plurality of predetermined wireless links;
a roaming gateway located in a data center and coupled to said public data network for tracking said plurality of predetermined wireless links and for managing data transfer from said public data network to said mobile device via one of said plurality of predetermined wireless links;
an enterprise server in a private network for exchanging network packets with said application client in said mobile device;
a CPE-VPN router in said private network coupled to said enterprise server and to said public data network;
a VPN router located in said data center coupled to said roaming gateway and to said public data network, wherein said VPN router and said CPE-VPN router establish a VPN tunnel therebetween via said public data network;
wherein said CPE-VPN router transports said network packets between said enterprise server and said VPN tunnel, and wherein said VPN router transports said network packets between said roaming gateway and said VPN tunnel. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A data center for providing an end-to-end virtual private networking system for transporting network packets between a mobile device and an enterprise server securely through a public data network, wherein said mobile device comprises an application client and a wireless roaming client managing data transfer from said mobile device to said public data network via one of a plurality of predetermined wireless links, wherein said enterprise server is located in a private network, and wherein a CPE-VPN router is located in said private network for coupling said enterprise server and to said public data network, said data center comprising:
-
a roaming gateway located in a data center and coupled to said public data network for tracking said plurality of predetermined wireless links and for managing data transfer from said public data network to said mobile device via one of said plurality of predetermined wireless links; and
a VPN router located in said data center coupled to said roaming gateway and to said public data network, wherein said VPN router and said CPE-VPN router establish a VPN tunnel therebetween via said public data network, wherein said VPN router transports said network packets between said roaming gateway and said VPN tunnel. - View Dependent Claims (8)
-
-
9. A method of transporting network packets from a mobile wireless device to an enterprise server in a private enterprise network via a wireless data network and a public wireline data network, said wireless data network and said public wireline data network each being coupled to a data center, said method comprising the steps of:
-
generating a network packet in said mobile device, said network packet having an original destination address of said enterprise server and an original source address of said mobile wireless device;
encapsulating said network packet with a public destination address and a public source address associated with said wireless data network;
transporting said network packet via said wireless data network to said data center;
removing said public destination and public source addresses from said network packet;
processing said network packet via a gateway to an entry router for a virtual private network (VPN) tunnel so that said original destination and said original source addresses are hidden;
transporting said network packet via said public wireline data network to an exit router for said VPN tunnel;
restoring said original destination and said original source addresses in said network packet; and
transporting said network packet from said exit router to said enterprise server via said private enterprise network. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A method of transporting network packets from an enterprise server in a private enterprise network to a remote application in a mobile wireless device via a public wireline data network and a wireless data network, said wireless data network and said public wireline data network each being coupled to a data center, said method comprising the steps of:
- generating a network packet in said enterprise server, said network packet having an original destination address of said mobile wireless device and an original source address of said enterprise server;
processing said network packet in an entry router for a virtual private network (VPN) tunnel so that said original destination and said original source addresses are hidden;
transporting said network packet via said public wireline data network to an exit router for said VPN tunnel;
forwarding said network packet from said exit router to a wireless gateway;
encapsulating said network packet with a public destination address and a public source address associated with said wireless data network;
transporting said network packet via said wireless data network to a mobile wireless client in said mobile wireless device;
removing said public destination and public source addresses from said network packet;
restoring said original destination and said original source addresses in said network packet; and
transporting said network packet from said mobile wireless client to said remote application. - View Dependent Claims (18, 19, 20, 21, 22, 23)
- generating a network packet in said enterprise server, said network packet having an original destination address of said mobile wireless device and an original source address of said enterprise server;
Specification