Systems and Methods of Fine Grained Interception of Network Communications on a Virtual Private Network
First Claim
1. A method for intercepting a communication of a client to a destination on a virtual private network based on a network destination description of an application authorized to be accessed via the virtual private network, the method comprising the steps of:
- (a) intercepting, by an agent of the client, a network communication of the client, the agent establishing a virtual private network connection via an appliance from a first network to a second network;
(b) determining, by the agent, a destination of the network communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network; and
(c) transmitting, by the agent in response to the determination, the network communication via the virtual private network connection.
7 Assignments
0 Petitions
Accused Products
Abstract
A method for intercepting communication of a client to a destination on a virtual private network includes an agent executing on the client that intercepts a network communication of the client. The agent provides a virtual private network connection from a first network to a second network. The decision to intercept is based on a network destination description or an identification of an application authorized to be accessed via the virtual private network. In one case, the agent determines that a destination specified by the intercepted communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network. In response to this determination, the agent transmits the intercepted communication.
135 Citations
20 Claims
-
1. A method for intercepting a communication of a client to a destination on a virtual private network based on a network destination description of an application authorized to be accessed via the virtual private network, the method comprising the steps of:
-
(a) intercepting, by an agent of the client, a network communication of the client, the agent establishing a virtual private network connection via an appliance from a first network to a second network; (b) determining, by the agent, a destination of the network communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network; and (c) transmitting, by the agent in response to the determination, the network communication via the virtual private network connection. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for intercepting a communication of a client to a destination on a virtual private network based on a network destination description of an application authorized to be accessed via the virtual private network, the system comprising:
-
a means for intercepting, by an agent of the client, a network communication of the client, the agent establishing a virtual private network connection via an appliance from a first network to a second network; a means for determining, by the agent, a destination of the network communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network; and a means for transmitting, by the agent in response to the determination, the network communication via the virtual private network connection. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification