Client compliancy in a NAT environment
First Claim
Patent Images
1. A method for enforcing client compliance in a network address translation (NAT) environment on a network, comprising:
- storing non-compliance data in a NAT device, the non-compliance data including identifiers of non-compliant devices within the NAT environment behind the NAT device;
receiving a query at the NAT device as to a compliance status of a target device within the NAT environment, the query including an identifier of the target device;
determining compliance status of the target device within the NAT environment based on the non-compliance data and the identifier of the target device; and
responsive to determining a status of non-compliance for the target device within the NAT environment, reporting an identifier of the NAT device to an upstream client compliancy system indicating non-compliance of the NAT device.
2 Assignments
0 Petitions
Accused Products
Abstract
Techniques for implementing client compliancy in a network address translation (NAT) environment are disclosed. Network appliances (e.g., NAT hubs, routers, switches, and other NAT devices) actively cooperate with client compliance strategies by engaging in the compliance evaluation of the hosts connected to it, and interact with the up-stream compliance mechanism. As such, devices normally hidden behind a NAT device from the upstream network can participate in the compliance scheme in a more meaningful way.
-
Citations
20 Claims
-
1. A method for enforcing client compliance in a network address translation (NAT) environment on a network, comprising:
-
storing non-compliance data in a NAT device, the non-compliance data including identifiers of non-compliant devices within the NAT environment behind the NAT device; receiving a query at the NAT device as to a compliance status of a target device within the NAT environment, the query including an identifier of the target device; determining compliance status of the target device within the NAT environment based on the non-compliance data and the identifier of the target device; and responsive to determining a status of non-compliance for the target device within the NAT environment, reporting an identifier of the NAT device to an upstream client compliancy system indicating non-compliance of the NAT device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A machine-readable medium encoded with instructions, that when executed by a processor, cause the processor to carry out a process for enforcing client compliance in a network address translation (NAT) environment on a network, the process comprising:
-
storing non-compliance data in a NAT device, the non-compliance data including identifiers of non-compliant devices within the NAT environment behind the NAT device; receiving a query at the NAT device as to a compliance status of a target device within the NAT environment, the query including an identifier of the target device; determining compliance status of the target device within the NAT environment based on the non-compliance data and the identifier of the target device; and responsive to determining a status of non-compliance for the target device within the NAT environment, reporting an identifier of the NAT device to an upstream client compliancy system indicating non-compliance of the NAT device. - View Dependent Claims (13, 14, 15)
-
-
16. A network address translation (NAT) device for enforcing client compliance on a network, comprising:
-
a processor; a memory comprising a database for storing non-compliance data, the non-compliance data including identifiers of non-compliant devices within the NAT environment behind the NAT device; and a computer readable storage medium storing program code executable by the processor, the program code including a compliance verification component that when executed causes the processor to perform steps including; receiving a query as to a compliance status of a target device within the NAT environment, the query including an identifier of the target device; determining compliance status of the target device within the NAT environment based on the non-compliance data stored in the database and the identifier of the target device; and responsive to determining a status of non-compliance for the target device within the NAT environment, reporting an identifier of the NAT device to an upstream client compliancy system indicating non-compliance of the NAT device. - View Dependent Claims (17, 18, 19, 20)
-
Specification