×

Wireless Network Security Mechanism Including Reverse Network Address Translation

  • US 20090172805A1
  • Filed: 03/04/2009
  • Published: 07/02/2009
  • Est. Priority Date: 11/02/2004
  • Status: Active Grant
First Claim
Patent Images

1. A wireless network system, comprisinga wireless access point operative toestablish wireless connections with a plurality of mobile stations, wherein each mobile station includes a unique link layer address;

  • a network address configuration server operative to provide unique network addresses to the mobile stations;

    a network address configuration proxy operative toproxy transactions between a first mobile station in the plurality of mobile stations and the network address configuration server;

    intercept an address assignment message from the network address configuration server to the first mobile station, wherein the address assignment message contains an internal network address for the first mobile station;

    replace the internal network address in the address assignment message with a virtual network address; and

    forward the modified address assignment message to the first mobile station;

    a VPN server operative toestablish a VPN session with the first mobile station, wherein the mobile station uses the virtual network address as the outer network address during the VPN session; and

    assign the internal network address generated by the network address configuration server as the inner network address used by the first mobile station during the VPN session; and

    a reverse address translation layer operative tointermediate the VPN session between the VPN server and the first mobile station; and

    replace, as to packets sourced from the first mobile station, the virtual network address used by the mobile station as the outer network address with the internal network address corresponding to the first mobile station.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×