APPARATUS AND METHOD FOR MULTI-USER NAT SESSION IDENTIFICATION AND TRACKING
First Claim
1. A method for identifying and tracking multiple computer user sessions associated with a network address translation (NAT) device coupled to a computer network, the method comprising:
- receiving one or more data packets originating from the NAT device, the one or more data packets containing a request to a destination server coupled to the computer network;
determining a client source address associated with the one or more data packets, the source address associated with the NAT device;
determining one or more session entries associated with the client source address, wherein the session entries are stored in system state information;
determining a session signature based one or more characteristics defined by the data packet header information and/or request header information in the one or more data packets, the session signature uniquely identifying one of the multiple computer user sessions coupled to the NAT device; and
storing a new session entry in the system state information if the session signature is not associated with the one of the one or more sessions entries in the system state information.
6 Assignments
0 Petitions
Accused Products
Abstract
A method and apparatus are provided for identifying and tracking multiple computer user sessions associated with a network address translation (NAT) device coupled to a computer network. Data packets originating from the NAT device containing a request to a destination server coupled to the computer network are received. A client source address associated with the data packets is determined where the source address associated with the NAT device. One or more session entries associated with the client source address can then be determined, wherein the session entries are stored in system state information. A session signature can then be determined based one or more characteristics defined by the data packet header information and/or request header information in the one or more data packets, the session signature uniquely identifying one of the multiple computer user sessions coupled to the NAT device.
-
Citations
20 Claims
-
1. A method for identifying and tracking multiple computer user sessions associated with a network address translation (NAT) device coupled to a computer network, the method comprising:
-
receiving one or more data packets originating from the NAT device, the one or more data packets containing a request to a destination server coupled to the computer network; determining a client source address associated with the one or more data packets, the source address associated with the NAT device; determining one or more session entries associated with the client source address, wherein the session entries are stored in system state information; determining a session signature based one or more characteristics defined by the data packet header information and/or request header information in the one or more data packets, the session signature uniquely identifying one of the multiple computer user sessions coupled to the NAT device; and storing a new session entry in the system state information if the session signature is not associated with the one of the one or more sessions entries in the system state information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An apparatus for identifying and tracking multiple computer user sessions associated with a network address translation (NAT) device coupled to a computer network, the system comprising:
-
a processor; a memory for storing instructions for execution by the processor, the instructions comprising; a system state information repository for storing a plurality of session entries associated identifying sessions associated with NAT devices; a session detection module for; receiving one or more data packets originating from the NAT device, the one or more data packets containing a request to a destination server coupled to the computer network; determining a client source address associated with the one or more data packets, the source address associated with the NAT device; determining one or more session entries associated with the client source address, wherein the session entries are stored in the system state information; determining a session signature based one or more characteristics defined by the data packet header information and/or request header information in the one or more data packets, the session signature uniquely identifying one of the multiple computer user sessions coupled to the NAT device; and storing a new session entry in the system state information repository if the session signature is not associated with the one of the one or more sessions entries in the system state information; and a session declaration module for providing session identifying information, including an HTTP header summary and an associated session identifier, to one or more external systems for their use. - View Dependent Claims (19, 20)
-
Specification