Routable network subnet relocation systems and methods

US 7,653,746 B2
Filed: 08/01/2003
Issued: 01/26/2010
Est. Priority Date: 08/02/2002
Status: Active Grant

First Claim

Patent Images

1. A method for communicating with a plurality of devices behind the private side of a NAT, each through a different publicly routable network address, comprising:

issuing a request from a client behind the private side of the NAT to a server on the public side of the NAT for the publicly routable network addresses;

delivering the request from the client to the server through the NAT;

receiving the publicly routable network addresses at the client from the server through NAT;

configuring a router behind the private side of the NAT, named herein a tether router, to associate each of the devices behind the private side of the NAT with at least one of the publicly routable network addresses;

configuring a tunnel through the NAT between the tether router and a router on the public side of the NAT, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the NAT;

receiving packets at the tether router from the anchor router encapsulated within the tunnel through the NAT addressed to at least one of the publicly routable network addresses; and

forwarding the received packets from the tether router to the device that is associated within the tether router to the at least one publicly routable network address to which the packets are addressed,whereby communications to the plurality of devices behind the private side of the NAT are effectuated using publicly routable network address.

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for relocating a subnet to a remote location includes a tether router coupled to an anchor router via a link. The tether router is coupled to a plurality of nodes, each node corresponding to a network address of a plurality of network addresses allocated to a user. The plurality of network addresses is allocated to the user by a lease broker. The link may include a private tunnel for traversing a mechanism that otherwise hinders communication from the tether router to the anchor router, such as a network address translation (NAT) mechanism.

46 Citations

View as Search Results

12 Claims

1. A method for communicating with a plurality of devices behind the private side of a NAT, each through a different publicly routable network address, comprising:
- issuing a request from a client behind the private side of the NAT to a server on the public side of the NAT for the publicly routable network addresses;
  
  delivering the request from the client to the server through the NAT;
  
  receiving the publicly routable network addresses at the client from the server through NAT;
  
  configuring a router behind the private side of the NAT, named herein a tether router, to associate each of the devices behind the private side of the NAT with at least one of the publicly routable network addresses;
  
  configuring a tunnel through the NAT between the tether router and a router on the public side of the NAT, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the NAT;
  
  receiving packets at the tether router from the anchor router encapsulated within the tunnel through the NAT addressed to at least one of the publicly routable network addresses; and
  
  forwarding the received packets from the tether router to the device that is associated within the tether router to the at least one publicly routable network address to which the packets are addressed,whereby communications to the plurality of devices behind the private side of the NAT are effectuated using publicly routable network address.
- View Dependent Claims (2, 3, 4)
- - 2. The method of claim 1 wherein the publicly routable network addresses are contiguous.
  - 3. The method of claim 1 where the publicly of routable network addresses are leased.
  - 4. The method of claim 1 wherein the tunnel is configured to automatically reconnect in response to a change in an address associated with one of the components of the tunnel.

5. A method for communicating with a plurality of devices behind the protected side of a firewall, each through a different unprotected network address, comprising:
- issuing a request from a client behind the protected side of the firewall to a server on the unprotected side of the firewall for the unprotected network addresses;
  
  delivering the request from the client to the server through the firewall;
  
  receiving the unprotected network addresses at the client from the server through firewall;
  
  configuring a router behind the protected side of the firewall, named herein a tether router, to associate each of the devices behind the protected side of the firewall with at least one of the unprotected network addresses;
  
  configuring a tunnel through the firewall between the tether router and a router on the unprotected side of the firewall, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the firewall;
  
  receiving packets at the tether router from the anchor router encapsulated within the tunnel through the firewall addressed to at least one of the unprotected network addresses; and
  
  forwarding the received packets from the tether router to the device that is associated within the tether router to the at least one unprotected network address to which the packets are addressed,whereby communications to the plurality of devices behind the protected side of the firewall are effectuated using unprotected network address.
- View Dependent Claims (6, 7, 8)
- - 6. The method of claim 5 wherein the unprotected network addresses are contiguous.
  - 7. The method of claim 5 where the unprotected network addresses are leased.
  - 8. The method of claim 5 wherein the tunnel is configured to automatically reconnect in response to a change in an address associated with one of the components of the tunnel.

9. A system for communicating with a plurality of devices behind the private side of a NAT, each through a different publicly routable network address, comprising:
- a NATa client configured to;
  
  issue a request behind the private side of the NAT to a server on the public side of the NAT for the publicly routable network addresses;
  
  deliver the request from the client to the server through the NAT;
  
  receive the publicly routable network addresses at the client from the server through NAT;
  
  a router behind the private side of the NAT, named herein a tether router, configured to;
  
  associate each of the devices behind the private side of the NAT with at least one of the publicly routable network addresses;
  
  configure a tunnel through the NAT to a router on the public side of the NAT, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the NAT;
  
  receive packets from the anchor router encapsulated within the tunnel through the NAT addressed to at least one of the publicly routable network addresses andforward the received packets to the device that is associated to the at least one publicly routable network address to which the packets are addressed,whereby the NAT, client, and tether router are configured such that communications to the plurality of devices behind the private side of the NAT are effectuated using publicly routable network address.
- View Dependent Claims (10)
- - 10. The system of claim 9 wherein the tether router is configured to automatically reconnect in response to a change in an address associated with one of the components of the tunnel.

11. A system for communicating with a plurality of devices behind the protected side of a firewall, each through a different unprotected network address, comprising:
- a firewall;
  
  a client configured to;
  
  issue a request behind the protected side of the firewall to a server on the unprotected side of the firewall for the unprotected network addresses;
  
  deliver the request from the client to the server through the firewall;
  
  receive the unprotected network addresses at the client from the server through firewall;
  
  a router behind the protected side of the firewall, named herein a tether router, configured to;
  
  associate each of the devices behind the protected side of the firewall with at least one of the unprotected network addresses;
  
  configure a tunnel through the firewall to a router on the unprotected side of the firewall, named herein an anchor router, through which packets can be exchanged between the tether router and the anchor router without being translated by the firewall;
  
  receive packets from the anchor router encapsulated within the tunnel through the firewall addressed to at least one of the unprotected network addresses; and
  
  forward the received packets to the device that is associated to the at least one unprotected network address to which the packets are addressed,whereby the firewall, client, and tether router are configured such that communications to the plurality of devices behind the protected side of the firewall are effectuated using unprotected network address.
- View Dependent Claims (12)
- - 12. The system of claim 11 wherein the tether router is configured to automatically reconnect in response to a change in an address associated with one of the components of the tunnel.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
University of Southern California
Original Assignee
University of Southern California
Inventors
Touch, Joseph Dean, Eggert, Lars, Wang, Yu-Shun
Primary Examiner(s)
Srivastava; Vivek
Assistant Examiner(s)
Pollack; Melvin H

Application Number

US10/632,249
Publication Number

US 20040034695A1
Time in Patent Office

2,370 Days
Field of Search

709225-229, 709/236, 709/239, 709/245, 726 11- 15, 370/397, 370/399, 370/395.53, 370/409
US Class Current

709/245
CPC Class Codes

H04L 61/256   NAT traversal

H04L 61/2592   using tunnelling or encapsu...

H04L 61/5061   Pools of addresses

H04L 67/10   in which an application is ...

H04L 67/133   Protocols for remote proced...

H04L 69/329   in the application layer [O...

Routable network subnet relocation systems and methods

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

46 Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Routable network subnet relocation systems and methods

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

46 Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links