Network abstraction and isolation layer for masquerading machine identity of a computer
First Claim
1. A local network, comprising:
- a local network device;
a first computer having a first machine identity; and
a network abstraction and isolation layer (NAIL), interfaced between said local network device and said first computer, wherein said NAIL masquerades said first machine identity into a second machine identity to isolate and abstract said first computer into a first isolated network layer while enabling said first computer to communicate with said local network device within the local network using said second machine identity;
wherein said NAIL translates an IP address and a Media Access Control (MAC) address to a different IP address and a different MAC address, respectively, in a packet header of a communication packet between the isolated and abstraction network interfaces, and wherein said NAIL further translates at least one of a machine name and a system identifier to a different machine name and a different system identifier, respectively, in a packet payload of said communication packet.
31 Assignments
0 Petitions
Accused Products
Abstract
A network abstraction and isolation layer (NAIL) for masquerading the machine identity of a computer in a network to enable the computer to communicate in the network with a different machine identity including an isolated network interface for communicating with the computer, an abstraction network interface for communicating with a network device coupled to the network, and control logic. The control logic is coupled to the isolated and abstraction network interfaces and performs machine identity translation to masquerade machine identity of the computer relative to the network. Machine identity masquerading includes selectively translating any one or more of an IP address, a MAC address, a machine name, a system identifier, and a DNS Name in the header or payload of communication packets.
65 Citations
20 Claims
-
1. A local network, comprising:
-
a local network device; a first computer having a first machine identity; and a network abstraction and isolation layer (NAIL), interfaced between said local network device and said first computer, wherein said NAIL masquerades said first machine identity into a second machine identity to isolate and abstract said first computer into a first isolated network layer while enabling said first computer to communicate with said local network device within the local network using said second machine identity; wherein said NAIL translates an IP address and a Media Access Control (MAC) address to a different IP address and a different MAC address, respectively, in a packet header of a communication packet between the isolated and abstraction network interfaces, and wherein said NAIL further translates at least one of a machine name and a system identifier to a different machine name and a different system identifier, respectively, in a packet payload of said communication packet. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A method of isolating and abstracting a computer in a local network while enabling the computer to communicate with the local network, comprising:
-
interfacing the computer to the local network via isolated and abstracted communication interfaces; monitoring communication packets between the computer and the local network; and selectively translating the communication packets to masquerade the machine identity of the computer from the local network, wherein said selectively translating comprises; changing an IP address in a packet header of a communication packet to a different IP address; changing a Media Access Control (MAC) address in the packet header to a different MAC address; and changing at least one of a machine name and a system identifier in a packet payload of the communication packet to a different machine name and system identifier, respectively. - View Dependent Claims (17, 18, 19, 20)
-
Specification