Method and system in an IP network for using a network address translation (NAT) with any type of application

US 20060067342A1
Filed: 09/13/2005
Published: 03/30/2006
Est. Priority Date: 09/27/2004
Status: Active Grant

First Claim

Patent Images

1. A method to use in a first router connected on one hand to a first private Internet Protocol (IP) network and on another hand to a public IP network, for translating in a datagram a source private IP address into a public IP address so that said private IP address can be translated back into the same private IP address by a second router connected to a second private network, said method comprising the steps of:

receiving an IP datagram from a source within a first private IP network, comprising a header including;

a source private IP address;

an IP option field;

a source TCP/UDP port number;

replacing in the IP datagram header, the source private IP address by the public IP address of the first router;

replacing in the IP datagram header the source TCP/UDP port number by the two least significant bytes of the source private IP address;

copying in the IP option field, information related to the first and the second highest significant bytes of the source private IP address so that said first and the second highest significant bytes can be deduced from said information, forwarding the IP datagram on the public IP network.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention is based on a dual dynamic Network Address Translation (NAT) one Network Address Translation (NAT) is executed close to the client stations of customers (to NAT), and one Network Address Translation (NAT) is executed close to the application server (to un-NAT). The networks between the client stations and the application server, only see registered addresses (public IP addresses), while the application only sees the real private IP address. The present invention is based on a method for “NATting” and “un-NATting” the IP addresses without having to pre configure the “NATting” devices (the devices executing the operations of translating the network addresses).

29 Citations

View as Search Results

16 Claims

1. A method to use in a first router connected on one hand to a first private Internet Protocol (IP) network and on another hand to a public IP network, for translating in a datagram a source private IP address into a public IP address so that said private IP address can be translated back into the same private IP address by a second router connected to a second private network, said method comprising the steps of:
- receiving an IP datagram from a source within a first private IP network, comprising a header including;
  
  a source private IP address;
  
  an IP option field;
  
  a source TCP/UDP port number;
  
  replacing in the IP datagram header, the source private IP address by the public IP address of the first router;
  
  replacing in the IP datagram header the source TCP/UDP port number by the two least significant bytes of the source private IP address;
  
  copying in the IP option field, information related to the first and the second highest significant bytes of the source private IP address so that said first and the second highest significant bytes can be deduced from said information, forwarding the IP datagram on the public IP network.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method according to claim 1 comprising the further steps of:
    - indicating in the IP option field that the source IP address has been translated.
  - 3. The method according to claim 1 wherein the step of copying in the IP option field, information related to the first and the second highest significant bytes of the source private IP address, comprises the further step of:
    - identifying a class associated the source private IP address;
      
      a class corresponding to a predefined range of IP addresses;
      
      including in the IP option field, means for identifying said class.
  - 4. The method according to claim 1 wherein the step of copying in the IP option field;
    - information related to the first and the second highest significant bytes of the source private IP address, comprises the further step of;
      
      if the identified class corresponds to the range 192.168.0.0 to 192.168.255.255, including in the IP option field, means for identifying said class.
  - 5. The method according to claim 1 wherein the step of copying in the IP option field, information related to the first and the second highest significant bytes of the source private IP address, comprises the further step of:
    - if the identified class corresponds to the range 172.16.00 to 172.31.255.255, including in the IP option field, means for identifying said class, copying in the IP option field the second highest significant byte of the source private IP address.
  - 6. The method according to claim 1 wherein the step of copying in the IP option field, information related to the first and the second highest significant bytes of the source private IP address, comprises the further step of:
    - if the address starts with ‘
      
      10’
      
      ;
      
      including in the IP option field, means for identifying said class, copying in the IP option field the second highest significant byte of the source private IP address.
  - 7. A router comprising means adapted for carrying out the method according to claim 1.
  - 8. A computer program comprising instructions for carrying out the method according to claim 1 when executed on a computer system.

9. A method to use in a second router connected on one hand to a public Internet Protocol (IP) network and on another hand to a second private IP network, for translating in a datagram a source public IP address into a private IP address, said source private IP address having been previously translated into said source public IP address by a first router connected to a first private network, said method comprising the steps of:
- receiving from the public IP network, an IP datagram intended to be forwarded to a destination within the second private IP network, said datagram comprising a header including;
  
  a source public IP address;
  
  an IP option field;
  
  a source TCP/UDP port number;
  
  if the source public IP address has been previously translated by a first router;
  
  replacing in the IP datagram header, the two least significant bytes of the source public IP address into the source TCP (UDP) port number;
  
  replacing in the IP datagram header, the first and the second highest significant bytes of the source public IP address by the first and second bytes of a source IP private address deduced from information retrieved from the IP header option field;
  
  forwarding the IP datagram to its destination within the second private IP network.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
- - 10. The method according to claim 9 comprising the step of:
    - determining in the IP field whether or not the source public IP address has been previously translated.
  - 11. The method according to claim 9 wherein the step of replacing in the IP datagram header, the first and the second highest significant bytes of the source public IP address, comprises the further steps of:
    - identifying in the IP option field, a class associated with the source private IP address, a class corresponding to a predefined range of addresses;
      
      replacing the first highest significant byte by the range of addresses corresponding to identified class;
  - 12. The method according to claim 9 wherein the step of replacing in the IP datagram header, the first and the second highest significant bytes of the source public IP address, comprises the step of:
    - if the identified class corresponds to the range 192.168.0.0 to 192.168.255.255, replacing the first and the second highest significant byte of the source public IP address in the datagram header by ‘
      
      192.168’
      
      ,
  - 13. The method according to claim 9 wherein the step of replacing in the IP datagram header, the first and the second highest significant bytes of the source public IP address, comprises the steps of:
    - if the identified class corresponds to the range 172.16.00 to 172.31.255.255, replacing the first highest significant byte of the source public IP address in the datagram header by ‘
      
      172’
      
      . retrieving from the IP option field the second highest significant byte of the source private IP address, replacing the second highest significant byte of the source public private IP address by the retrieved byte.
  - 14. The method according to claim 9 wherein the step of replacing in the IP datagram header, the first and the second highest significant bytes of the source public IP address, comprises the steps of:
    - if the identified class corresponds to the range ‘
      
      10.’
      
      , instead of replacing the first highest significant byte by the byte found in the IP header option field. replacing the first highest significant byte of the source public IP address in the datagram header by ‘
      
      10’
      
      . retrieving from the IP option field the second highest significant byte of the source private IP address, replacing the second highest significant byte of the source public private IP address by the retrieved byte.
  - 15. A router comprising means adapted for carrying out the method according to claim 9.
  - 16. A computer program comprising instructions for carrying out the method according to claim 9 when executed on a computer system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
David Mims
Original Assignee
David Mims
Inventors
Dispensa, Jean Claude

Granted Patent

US 7,450,585 B2
Time in Patent Office

Days
Field of Search
US Class Current

370/401
CPC Class Codes

H04L 61/2557   Translation policies or rules

H04L 61/5038   for local use, e.g. in LAN ...

H04L 69/161   Implementation details of T...

Method and system in an IP network for using a network address translation (NAT) with any type of application

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

29 Citations

16 Claims

Specification

Solutions

Use Cases

Quick Links

Method and system in an IP network for using a network address translation (NAT) with any type of application

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

29 Citations

16 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links