Repeater and network system utilizing the same
First Claim
1. A repeater for connecting two networks respectively connected to at least one terminal, comprising:
- means for receiving a connection request packet designating a destination terminal from a transmission terminal;
means for identifying a user by referring to a user information field stored in said connection request packet;
means for controlling access depending on at least one attribute of said user in said connection request packet, and comprising;
an access control table for storing correspondence between at least one attribute of at least one user and accessible range of said networks; and
means for checking said at least one attribute of said user in said connection request packet with said accessible range of said networks according to said access control tablet;
means for transmitting said connection request packet to a next (stage) repeater provided to identify said user by referring to said user information field stored in said connection request packet;
a repeating route control table for storing at least one correspondence between a first address area designated by excluding specified address area and an address of another device provided to transfer the data to said first address area, and for storing correspondence between a second address area including said destination terminal and an address of another repeater provided to transfer the data to said second address area;
means for making a comparison between the destination terminal name field of said connection request packet and said destination terminal according to said repeating route control table; and
means for making a determination of the next (stage) repeater with reference to said repeating route control table based on said comparison.
1 Assignment
0 Petitions
Accused Products
Abstract
In view of providing a network system enabling communication having passed fire walls (repeaters) and assuring high security and operation flexibility through access control based on users and applications, a user-held table indicating correspondence between repeaters and passwords, a repeater-held table indicating correspondence between users and passwords and a table indicating access regions are defined respectively for users, departments of users and official positions of users and a route control information storing table indicating correspondence between networks and next transmitting destination is also provided to execute the access control for each user. Moreover, the repeater is provided with the repeating route control table so that a repeater located in the course of route to the transmitting destination computer and allowing communication from the transmitting side computer is selected from the data repeating control table and the process for requesting the repeating operation of communication with the destination is executed to the selected repeater.
-
Citations
32 Claims
-
1. A repeater for connecting two networks respectively connected to at least one terminal, comprising:
-
means for receiving a connection request packet designating a destination terminal from a transmission terminal; means for identifying a user by referring to a user information field stored in said connection request packet; means for controlling access depending on at least one attribute of said user in said connection request packet, and comprising; an access control table for storing correspondence between at least one attribute of at least one user and accessible range of said networks; and means for checking said at least one attribute of said user in said connection request packet with said accessible range of said networks according to said access control tablet; means for transmitting said connection request packet to a next (stage) repeater provided to identify said user by referring to said user information field stored in said connection request packet; a repeating route control table for storing at least one correspondence between a first address area designated by excluding specified address area and an address of another device provided to transfer the data to said first address area, and for storing correspondence between a second address area including said destination terminal and an address of another repeater provided to transfer the data to said second address area; means for making a comparison between the destination terminal name field of said connection request packet and said destination terminal according to said repeating route control table; and means for making a determination of the next (stage) repeater with reference to said repeating route control table based on said comparison. - View Dependent Claims (2, 3, 4)
-
-
5. A repeater for connecting two networks each being connected to at least one terminal, said repeater comprising:
-
a repeating route control table for storing at least one correspondence between a first address area designated by excluding a specified address area and an address of another repeater provided to transfer the data to said first address area, and for storing correspondence between a second address area including said destination terminal and an address of another repeater provided to transfer the data to said second address area; means for receiving a connection request packet designating a destination terminal from a transmission terminal; means for making a comparison between the destination terminal name field of said connection request packet and said destination terminal according to said repeating route control table; means for making a determination of a next (stage) repeater with reference to said repeating route control table based on said comparison; and means for transmitting said connection request packet to said next (stage) repeater based on said determination. - View Dependent Claims (6, 7)
-
-
8. A computer program stored on a storage medium, for repeating a communication, when said computer program is executed by a computer which connects two networks each being connected to at least one terminal, said computer program causes said computer to perform the steps of:
-
receiving a connection request packet designating a destination terminal of said at least one terminal from a transmission terminal of said at least one terminal; identifying a user by referring to a user information field stored in said connection request packet; controlling access depending on at least one attribute of said user in said connection request packet according to an access control table which stores correspondence between at least one attribute of at least one user and accessible range of said networks; and transmitting said connection request packet to a next (stage) repeater provided to identify said user by referring to said user information field stored in said connection request packet. - View Dependent Claims (9, 10, 11, 12, 13)
-
-
14. A computer program stored on a storage medium, for repeating a communication, when said computer program is executed by a computer which connects two networks each being connected to at least one terminal, said computer program causes said computer to perform the steps of:
-
receiving a connection request packet designating a destination terminal of said at least one terminal from a transmission terminal of said at least one terminal; making a comparison between the destination terminal name field of said connection request packet and a repeater name according to a repeating route control table which stores correspondence between an address of said destination terminal and an address of another repeater provided to transfer the data to the address; making a determination of a next (stage) repeater with reference to said repeating route control table based on said comparison; and transmitting a connection confirming packet to said destination terminal, a packet making said terminal transmit another connection request packet based on said determination. - View Dependent Claims (15, 16, 17, 18)
-
-
19. A method for connecting two networks each being connected to at least one terminal, comprising the steps of:
-
receiving a connection request packet designating a destination terminal from a transmission terminal; identifying a user by referring to a user information field stored in said connection request packet; controlling access depending on at least one attribute of said user in said connection request packet according to an access control table which stores correspondence between at least one attribute of at least one user and accessible range of said networks; and transmitting said connection request packet to a next (stage) repeater provided to identify said user by referring to said user information field stored in said connection request packet. - View Dependent Claims (20, 21, 22, 23, 24)
-
-
25. A method for connecting two networks each being connected to at least one terminal, comprising the steps of:
-
receiving a connection request packet designating a destination terminal from a transmission terminal; making a comparison between the destination terminal name field of said connection request packet and a repeater name according to a repeating route control table which stores correspondence between an address of said destination terminal and an address of another repeater provided to transfer the data to the address; making a determination of a next (stage) repeater with reference to said repeating route control table based on said comparison; and transmitting said connection request packet to said next (stage) repeater based on said determination. - View Dependent Claims (26, 27)
-
-
28. A network system having at least two networks each being connected to at least one terminal, said network system comprising:
-
a transmission terminal for transmitting a connection request packet designating a destination terminal and including at least one user attribute in a user information field; a repeater for connecting said networks to each other, said repeater comprising means for receiving said connection request packet, and means for identifying said user by referring to said user information field stored in said connection request packet; a destination terminal for transmitting a connection confirming packet as a response to said connection request packet, said destination terminal comprising;
means for receiving said connection request packet, and means for identifying said user by referring to said user information field stored in said connection request packet,said transmission terminal confirming that each of said repeater and said destination terminal identifies said user and a communication route between said transmission terminal and said destination terminal is established. - View Dependent Claims (29, 30, 31, 32)
-
Specification