Systems and Methods of Fine Grained Interception of Network Communications on a Virtual Private Network
First Claim
1. A method for intercepting a communication of a client to a destination on a virtual private network based on a network destination description of an application authorized to be accessed via the virtual private network, the method comprising the steps of:
- (a) intercepting, by an agent of the client, a network communication of the client, the agent establishing a virtual private network connection via an appliance from a first network to a second network;
(b) determining, by the agent, a destination of the network communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network; and
(c) transmitting, by the agent in response to the determination, the network communication via the virtual private network connection.
8 Assignments
0 Petitions
Accused Products
Abstract
A method for intercepting communication of a client to a destination on a virtual private network includes an agent executing on the client that intercepts a network communication of the client. The agent provides a virtual private network connection from a first network to a second network. The decision to intercept is based on a network destination description or an identification of an application authorized to be accessed via the virtual private network. In one case, the agent determines that a destination specified by the intercepted communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network. In response to this determination, the agent transmits the intercepted communication.
-
Citations
20 Claims
-
1. A method for intercepting a communication of a client to a destination on a virtual private network based on a network destination description of an application authorized to be accessed via the virtual private network, the method comprising the steps of:
-
(a) intercepting, by an agent of the client, a network communication of the client, the agent establishing a virtual private network connection via an appliance from a first network to a second network; (b) determining, by the agent, a destination of the network communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network; and (c) transmitting, by the agent in response to the determination, the network communication via the virtual private network connection. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system for intercepting a communication of a client to a destination on a virtual private network based on a network destination description of an application authorized to be accessed via the virtual private network, the system comprising:
-
a means for intercepting, by an agent of the client, a network communication of the client, the agent establishing a virtual private network connection via an appliance from a first network to a second network; a means for determining, by the agent, a destination of the network communication corresponds to a network identifier and a port of a network destination description of an application on the second network authorized for access via the virtual private network; and a means for transmitting, by the agent in response to the determination, the network communication via the virtual private network connection. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification