METHOD FOR ALLOWING AND BLOCKING A USER PC WHICH CAN USE INTERNET AT THE SAME TIME IN A PRIVATE NETWORK THEROF A METHOD FOR ANALYZING AND DETECTING A JUDGEMENT ABOUT WHETHER NAT(NETWORK ADDRESS TRANSLATION) CAN BE USED OR NOT USING A TRAFFIC DATA, AND THE NUMBER OF TERMINALS SHARING NAT

US 20110185060A1
Filed: 10/28/2008
Published: 07/28/2011
Est. Priority Date: 10/10/2008
Status: Active Grant

First Claim

Patent Images

1. A method for analyzing and detecting a judgement about whether NAT can be used or not by analyzing a traffic under a circumstance monitoring the traffic, and the number of sharing terminals comprising,a step for extracting a user agent value of a packet header message by analyzing the traffic;

a step for analyzing a user agent value based on a key, that is, an identification value or an IP, and executing a unique management by comparing it with a user-agent pool (UAPool);

a step for storing collected user agents uniquely at a constant time interval;

a step for collecting the stored user agents at a constant time interval for a constant time or for a constant period according to a key, that is, an identification value or an IP, and for counting the number of sharing terminals;

a step for making amendments by applying an amendment rule on the number of sharing terminals; and

a step for storing results obtained by amendment in a database according to a key, that is, an identification value or an IP.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The present invention provides a method consisting of a step for analyzing a traffic receiving mirroring, a step for judging whether NAT (Network Address Translation) use of a client configuring and using a private network as well as a provided authorized IP (an Internet IP) is allowed or not, for analyzing and detecting the number of sharing terminals, a step for creating a database using data, and a step for formulating a policy by using information in database, so that when the users of a private network connect to Internet at the same time, permission or blocking of Internet use can be executed selectively.

Citations

5 Claims

1. A method for analyzing and detecting a judgement about whether NAT can be used or not by analyzing a traffic under a circumstance monitoring the traffic, and the number of sharing terminals comprising,a step for extracting a user agent value of a packet header message by analyzing the traffic;
- a step for analyzing a user agent value based on a key, that is, an identification value or an IP, and executing a unique management by comparing it with a user-agent pool (UAPool);
  
  a step for storing collected user agents uniquely at a constant time interval;
  
  a step for collecting the stored user agents at a constant time interval for a constant time or for a constant period according to a key, that is, an identification value or an IP, and for counting the number of sharing terminals;
  
  a step for making amendments by applying an amendment rule on the number of sharing terminals; and
  
  a step for storing results obtained by amendment in a database according to a key, that is, an identification value or an IP.
- View Dependent Claims (2)
- - 2. The method for analyzing and detecting a judgement about whether NAT can be used or not by analyzing a traffic under a circumstance monitoring the traffic, and the number of sharing terminals, which is set forth in the claim 1, whereina step for judging and analyzing whether a user traffic is a valid user agent value or an invalid user agent value based on a packet of the packet header message, and for collecting user agents;
    - a step for analyzing the collected user agents, allocating a user code which is a unique identification value to each of them, and for storing and managing them; and
      
      a step for managing data of pool of the collected user agents and for analyzing the collected user agents according to a key, that is, an identification value or an IP.

3. A method for allowing or blocking a user PC selectively which can use Internet at the same time by analyzing and detecting a judgement about whether NAT can be used or not and the number of sharing terminals comprising,a step for analyzing a user agent value in a packet when a target user on which allowance or blocking of Internet is applied by monitoring a traffic uses Internet;
- a step for storing a user code which is a unique identification value of a user agent in a memory or a database table, in a policy pool;
  
  a step for storing a user code which is a unique identification value in the policy pool in a real-time manner according to users, and maintaining latest information;
  
  a step for managing the policy pool according to a policy number of allowed PCs by a comparison algorithm of PMT when users using NAT connect to Internet simultaneously; and
  
  a step for allowing one PC which is subscribed by an Internet service businessman to use Internet without fail by transmitting a virtual packet according to a TCP hijacking manner if PCs of the users using NAT exceeds the policy number of allowed PCs, and Internet use is allowed or blocked for the other PCs according to the policy number of allowed PCs of PMT.
- View Dependent Claims (4, 5)
- - 4. The method for allowing or blocking a user PC selectively which can use Internet at the same time by analyzing and detecting a judgement about whether NAT can be used or not and the number of sharing terminals, which is set forth in the claim 3, wherein in case of an Internet blocking, if a button for changing a allowed PC in a blocked page is pressed, one PC of a user code list of a concerned user in a policy pool is randomly blocked and a PC of the concerned user is allowed to use Internet;
    - and a user code list which is not used for a constant time in the stored policy pool is deleted.
  - 5. The method for allowing or blocking a user PC selectively which can use Internet at the same time by analyzing and detecting a judgement about whether NAT can be used or not and the number of sharing terminals, which is set forth in the claim 3, wherein when inputting a domain when entering an address on the URL window of an Internet web browser, or inputting an address having parameters described after a domain, or moving to other Internet sites in a search browser, selective allowance or blocking is executed with respect moving to the other site.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Plustech, Inc.
Original Assignee
Plustech, Inc.
Inventors
Lee, Yun-Seok, Kong, Kyoung-Pil, Park, Hyoung-Bae, You, Pil-Sang, Kim, Sung-Goo, Choi, Kyu-Min

Granted Patent

US 8,661,133 B2
Time in Patent Office

Days
Field of Search
US Class Current

709/224
CPC Class Codes

H04L 61/2514 between local and global IP...

H04L 63/0227 Filtering policies mail mes...

METHOD FOR ALLOWING AND BLOCKING A USER PC WHICH CAN USE INTERNET AT THE SAME TIME IN A PRIVATE NETWORK THEROF A METHOD FOR ANALYZING AND DETECTING A JUDGEMENT ABOUT WHETHER NAT(NETWORK ADDRESS TRANSLATION) CAN BE USED OR NOT USING A TRAFFIC DATA, AND THE NUMBER OF TERMINALS SHARING NAT

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

5 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR ALLOWING AND BLOCKING A USER PC WHICH CAN USE INTERNET AT THE SAME TIME IN A PRIVATE NETWORK THEROF A METHOD FOR ANALYZING AND DETECTING A JUDGEMENT ABOUT WHETHER NAT(NETWORK ADDRESS TRANSLATION) CAN BE USED OR NOT USING A TRAFFIC DATA, AND THE NUMBER OF TERMINALS SHARING NAT

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

5 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links