×

Security system for network address translation systems

  • US 6,510,154 B1
  • Filed: 08/10/1998
  • Issued: 01/21/2003
  • Est. Priority Date: 11/03/1995
  • Status: Expired due to Term
First Claim
Patent Images

1. A method of passing a packet between a local network and nodes outside of the local network, the method comprising:

  • receiving the packet;

    identifying a first network layer address on the packet that matches a second network layer address in an address translation list specifying combinations of IP addresses of hosts on the local network with globally unique IP addresses from a pool of globally unique IP addresses available for use by the hosts on the local network;

    translating the matching first network layer address on the packet to a corresponding third network layer address specified in the translation list wherein a non-globally unique IP address of the host is translated to one of said globally unique IP addresses available from the pool when the packet is sent from the local network and one of said globally unique IP addresses identified as one from the pool is translated to said non-globally unique IP address of the host when the packet is directed to the local network; and

    matching the packet against at least one security criterion.

View all claims
  • 0 Assignments
Timeline View
Assignment View
    ×
    ×