Systems and Methods of Providing An Intranet Internet Protocol Address to a Client on a Virtual Private Network
First Claim
1. A method for responding to a request of an application for a client'"'"'s network identifier with an intranet network identifier of the client on a secure socket layer virtual private network (SSL VPN) connection to a network, the method comprising the steps of:
- (a) requesting, by an application on a client, a network identifier of the client, the client connected from a first network to a second network by a SSL VPN connection established via an appliance, the appliance assigning to the client an intranet network identifier on the second network;
(b) intercepting, by a hooking mechanism of an agent on the client, the request; and
(c) providing, by the hooking mechanism, to the application the intranet network identifier of the client on the second network in response to the request.
8 Assignments
0 Petitions
Accused Products
Abstract
The intranet IP address management solution of the appliance and/or client described herein provides an environment for efficiently assigning, managing and querying virtual private network addresses, referred to as intranet IP (IIP) addresses of virtual private network users, such as a multitude of SSL VPN users on an enterprise network. The appliance provides techniques and policies for assigning previously assigned virtual private network addresses of a user to subsequent sessions of the user as the user logs in multiple times or roams between access points. This technique is referred to IIP stickiness as the appliance attempts to provide the same IIP address to a roaming VPN user. The appliance also provides a configurable user domain naming policy so that one can ping or query the virtual private network address of a user by an easily referenceable host name identifying the user. The appliance and/or client agent also provide techniques to allow applications to seamlessly and transparently communicate on the virtual private network using the virtual private network address of the user or client on the private network.
-
Citations
26 Claims
-
1. A method for responding to a request of an application for a client'"'"'s network identifier with an intranet network identifier of the client on a secure socket layer virtual private network (SSL VPN) connection to a network, the method comprising the steps of:
-
(a) requesting, by an application on a client, a network identifier of the client, the client connected from a first network to a second network by a SSL VPN connection established via an appliance, the appliance assigning to the client an intranet network identifier on the second network; (b) intercepting, by a hooking mechanism of an agent on the client, the request; and (c) providing, by the hooking mechanism, to the application the intranet network identifier of the client on the second network in response to the request. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
-
-
14. A system for responding to a request of an application for a client'"'"'s network identifier with an intranet network identifier of the client on a secure socket layer virtual private network (SSL VPN) connection to a network, the system comprising:
-
means for requesting, by an application on a client, a network identifier of the client, the client connected from a first network to a second network by a SSL VPN connection established via an appliance, the appliance assigning to the client an intranet network identifier on the second network; mean for intercepting, by a hooking mechanism of an agent on the client, the request; and means for providing, by the hooking mechanism, to the application the intranet network identifier of the client on the second network in response to the request. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
Specification