Methods and apparatus for virtual private network based mobility
First Claim
1. A VPN server, comprising:
- an interface operable to receive a first message and a second message from a VPN client, the first message having a first address associated with a first subnetwork as a source address and an enterprise address as an encapsulated address, the second message having a second address associated with a second subnetwork as the source address and the enterprise address as the encapsulated address;
a processor operable to maintain an association between the enterprise address and the VPN client when the VPN client moves from the first subnetwork to the second subnetwork.
0 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus for enabling VPN based mobility are provided. A VPN client having a client subnetwork address corresponding to a particular subnetwork can create a VPN tunnel using an enterprise address from a VPN server. Using the VPN tunnel, the VPN client can establish sessions with a variety of destination nodes including destination nodes on a private or enterprise network associated with the VPN server. When the client moves, the VPN client can acquire a new address that may correspond to a new subnetwork, but the VPN server provides the VPN client with the same enterprise address. Accordingly, the VPN client can maintain existing sessions with destination nodes using the same enterprise address.
97 Citations
20 Claims
-
1. A VPN server, comprising:
-
an interface operable to receive a first message and a second message from a VPN client, the first message having a first address associated with a first subnetwork as a source address and an enterprise address as an encapsulated address, the second message having a second address associated with a second subnetwork as the source address and the enterprise address as the encapsulated address; a processor operable to maintain an association between the enterprise address and the VPN client when the VPN client moves from the first subnetwork to the second subnetwork. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A method for allowing VPN based mobility, the method comprising:
-
maintaining an association between a plurality of VPN client identifiers and enterprise addresses, wherein a first VPN client identifier is associated with a first enterprise address; receiving a registration request from a VPN client, the registration request associated with a first VPN client identifier and a first VPN subnetwork identifier; determining that the first enterprise address correspond to the first VPN client identifier; sending the first enterprise address to the VPN client to allow the VPN client to access a VPN server using the first enterprise address when the VPN client moves from a first subnetwork associated with the first VPN subnetwork identifier to a second subnetwork associated with a second VPN subnetwork identifier. - View Dependent Claims (12, 13, 14, 15, 16, 17)
-
-
18. A server, comprising:
-
means for maintaining an association between a plurality of VPN client identifiers and enterprise addresses, wherein a first VPN client identifier is associated with a first enterprise address; means for receiving a registration request from a VPN client, the registration request associated with a first VPN client identifier and a first VPN subnetwork identifier; means for determining that the first enterprise address corresponds to the first VPN client identifier; means for sending the first enterprise address to the VPN client to allow the VPN client to access a VPN server using the first enterprise address when the VPN client moves from a first subnetwork associated with the first VPN subnetwork identifier to a second subnetwork associated with a second VPN subnetwork identifier.
-
-
19. An enterprise network, comprising:
-
a plurality of VPN clients; a VPN server operable to receive a registration request from a VPN client, the registration request associated with a first VPN client identifier and a first VPN subnetwork identifier, determine that a first enterprise address corresponds to the first VPN client identifier, and send the first enterprise address to the VPN client to allow the VPN client to access a VPN server using the first same enterprise address when the VPN client moves from a first subnetwork associated with the first VPN subnetwork identifier to a second subnetwork associated with a second VPN subnetwork identifier. - View Dependent Claims (20)
-
Specification