Routable network subnet relocation systems and methods
First Claim
Patent Images
1. A method for communicating with a plurality of devices behind the private side of a NAT, each through a different publicly routable network address, comprising:
- issuing a request from a client behind the private side of the NAT to a server on the public side of the NAT for the publicly routable network addresses;
delivering the request from the client to the server through the NAT;
receiving the publicly routable network addresses at the client from the server through NAT;
configuring a router behind the private side of the NAT, named herein a tether router, to associate each of the devices behind the private side of the NAT with at least one of the publicly routable network addresses;
configuring a tunnel through the NAT between the tether router and a router on the public side of the NAT, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the NAT;
receiving packets at the tether router from the anchor router encapsulated within the tunnel through the NAT addressed to at least one of the publicly routable network addresses; and
forwarding the received packets from the tether router to the device that is associated within the tether router to the at least one publicly routable network address to which the packets are addressed,whereby communications to the plurality of devices behind the private side of the NAT are effectuated using publicly routable network address.
2 Assignments
0 Petitions
Accused Products
Abstract
A system and method for relocating a subnet to a remote location includes a tether router coupled to an anchor router via a link. The tether router is coupled to a plurality of nodes, each node corresponding to a network address of a plurality of network addresses allocated to a user. The plurality of network addresses is allocated to the user by a lease broker. The link may include a private tunnel for traversing a mechanism that otherwise hinders communication from the tether router to the anchor router, such as a network address translation (NAT) mechanism.
46 Citations
12 Claims
-
1. A method for communicating with a plurality of devices behind the private side of a NAT, each through a different publicly routable network address, comprising:
-
issuing a request from a client behind the private side of the NAT to a server on the public side of the NAT for the publicly routable network addresses; delivering the request from the client to the server through the NAT; receiving the publicly routable network addresses at the client from the server through NAT; configuring a router behind the private side of the NAT, named herein a tether router, to associate each of the devices behind the private side of the NAT with at least one of the publicly routable network addresses; configuring a tunnel through the NAT between the tether router and a router on the public side of the NAT, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the NAT; receiving packets at the tether router from the anchor router encapsulated within the tunnel through the NAT addressed to at least one of the publicly routable network addresses; and forwarding the received packets from the tether router to the device that is associated within the tether router to the at least one publicly routable network address to which the packets are addressed, whereby communications to the plurality of devices behind the private side of the NAT are effectuated using publicly routable network address. - View Dependent Claims (2, 3, 4)
-
-
5. A method for communicating with a plurality of devices behind the protected side of a firewall, each through a different unprotected network address, comprising:
-
issuing a request from a client behind the protected side of the firewall to a server on the unprotected side of the firewall for the unprotected network addresses; delivering the request from the client to the server through the firewall; receiving the unprotected network addresses at the client from the server through firewall; configuring a router behind the protected side of the firewall, named herein a tether router, to associate each of the devices behind the protected side of the firewall with at least one of the unprotected network addresses; configuring a tunnel through the firewall between the tether router and a router on the unprotected side of the firewall, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the firewall; receiving packets at the tether router from the anchor router encapsulated within the tunnel through the firewall addressed to at least one of the unprotected network addresses; and forwarding the received packets from the tether router to the device that is associated within the tether router to the at least one unprotected network address to which the packets are addressed, whereby communications to the plurality of devices behind the protected side of the firewall are effectuated using unprotected network address. - View Dependent Claims (6, 7, 8)
-
-
9. A system for communicating with a plurality of devices behind the private side of a NAT, each through a different publicly routable network address, comprising:
-
a NAT a client configured to; issue a request behind the private side of the NAT to a server on the public side of the NAT for the publicly routable network addresses; deliver the request from the client to the server through the NAT; receive the publicly routable network addresses at the client from the server through NAT; a router behind the private side of the NAT, named herein a tether router, configured to; associate each of the devices behind the private side of the NAT with at least one of the publicly routable network addresses; configure a tunnel through the NAT to a router on the public side of the NAT, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the NAT; receive packets from the anchor router encapsulated within the tunnel through the NAT addressed to at least one of the publicly routable network addresses and forward the received packets to the device that is associated to the at least one publicly routable network address to which the packets are addressed, whereby the NAT, client, and tether router are configured such that communications to the plurality of devices behind the private side of the NAT are effectuated using publicly routable network address. - View Dependent Claims (10)
-
-
11. A system for communicating with a plurality of devices behind the protected side of a firewall, each through a different unprotected network address, comprising:
-
a firewall; a client configured to; issue a request behind the protected side of the firewall to a server on the unprotected side of the firewall for the unprotected network addresses; deliver the request from the client to the server through the firewall; receive the unprotected network addresses at the client from the server through firewall; a router behind the protected side of the firewall, named herein a tether router, configured to; associate each of the devices behind the protected side of the firewall with at least one of the unprotected network addresses; configure a tunnel through the firewall to a router on the unprotected side of the firewall, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the firewall; receive packets from the anchor router encapsulated within the tunnel through the firewall addressed to at least one of the unprotected network addresses; and forward the received packets to the device that is associated to the at least one unprotected network address to which the packets are addressed, whereby the firewall, client, and tether router are configured such that communications to the plurality of devices behind the protected side of the firewall are effectuated using unprotected network address. - View Dependent Claims (12)
-
Specification