Method and apparatus for transparently proxying a connection
First Claim
1. A method for transparently proxying a connection, comprising:
- receiving a communication packet at a proxy device, the communication packet being sent from a source device and destined for a protected device, the source device not necessarily being aware that the communication packet is received at the proxy device;
determining whether the communication packet is associated with a proxied connection between the source device and the protected device;
forwarding the communication packet to the protected device in response to the communication packet being associated with a proxied connection;
determining whether the communication packet is an initial connection packet generated by the source device in response to the communication packet not being associated with a proxied connection.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method are disclosed for transparently proxying a connection to a protected machine. The method includes monitoring a communication packet on a network at a proxy machine. The communication packet has a communication packet source address, source port number, destination address, and destination port number. The proxy determines whether to intercept the communication packet based on whether the communication packet destination address and the communication packet destination port number correspond to a protected destination address and a protected destination port number stored in a proxy list. The proxy machine then determines whether to proxy a proxied connection associated with the communication packet based on the communication packet source address and the communication packet source port number. A protected connection is terminated from the proxy machine to a protected machine. The protected machine corresponds to the communication packet destination address and the communication packet destination port number.
-
Citations
20 Claims
-
1. A method for transparently proxying a connection, comprising:
-
receiving a communication packet at a proxy device, the communication packet being sent from a source device and destined for a protected device, the source device not necessarily being aware that the communication packet is received at the proxy device; determining whether the communication packet is associated with a proxied connection between the source device and the protected device; forwarding the communication packet to the protected device in response to the communication packet being associated with a proxied connection; determining whether the communication packet is an initial connection packet generated by the source device in response to the communication packet not being associated with a proxied connection. - View Dependent Claims (2, 3, 4)
-
-
5. A system for transparently proxying a connection, comprising:
-
means for receiving a communication packet at a proxy device, the communication packet being sent from a source device and destined for a protected device, the source device not necessarily being aware that the communication packet is received at the proxy device; means for determining whether the communication packet is associated with a proxied connection between the source device and the protected device; means for forwarding the communication packet to the protected device in response to the communication packet being associated with a proxied connection; means for determining whether the communication packet is an initial connection packet generated by the source device in response to the communication packet not being associated with a proxied connection. - View Dependent Claims (6, 7, 8)
-
-
9. Logic encoded in a media for transparently proxying a connection, the logic operable to:
-
receive a communication packet at a proxy device, the communication packet being sent from a source device and destined for a protected device, the source device not necessarily being aware that the communication packet is received at the proxy device; determine whether the communication packet is associated with a proxied connection between the source device and the protected device; forward the communication packet to the protected device in response to the communication packet being associated with a proxied connection; determine whether the communication packet is an initial connection packet generated by the source device in response to the communication packet not being associated with a proxied connection. - View Dependent Claims (10, 11, 12)
-
-
13. An apparatus for transparently proxying a connection, comprising:
-
a proxy device operable to receive a communication packet, the communication packet being sent from a source device and destined for a protected device, the source device not necessarily being aware that the communication packet is received at the proxy device, the proxy device operable to determine whether the communication packet is associated with a proxied connection between the source device and the protected device, the proxy device operable to forward the communication packet to the protected device in response to the communication packet being associated with a proxied connection; wherein the proxy device is operable to determine whether the communication packet is an initial connection packet generated by the source device in response to the communication packet not being associated with a proxied connection. - View Dependent Claims (14, 15, 16)
-
-
17. A system for transparently proxying a connection, comprising:
-
a source device operable to generate a communication packet; a protected device destined to process the communication packet; a proxy device operable to intercept the communication packet, the source device not necessarily being aware that the communication packet destined for the protected device is to be intercepted by the proxy device, the proxy device operable to determine whether the communication packet is associated with a proxied connection between the source device and the protected device, the proxy device operable to forward the communication packet to the protected device in response to the communication packet being associated with a proxied connection; wherein the proxy device is operable to determine whether the communication packet is an initial connection packet generated by the source device in response to the communication packet not being associated with a proxied connection. - View Dependent Claims (18, 19, 20)
-
Specification