Virtual dial-up protocol for network communication
First Claim
1. An apparatus comprising:
- a network processing device, residing outside of a local network, configured to identify virtual private connection headers encapsulating a point-to-point session; and
a network interface device configured to pass packets for the point-to-point session, established between the local network and a remote client, through an external Internet Protocol (IP) network in a virtual private connection based, at least in part, on the identification of the virtual private connection headers.
0 Assignments
0 Petitions
Accused Products
Abstract
A layer two forwarding protocol (L2F) provides virtual direct dial-up service into private networks through public internet service providers. An authorized remote client appears as a direct dial-up client to the home gateway, even through the client is accessing the home gateway remotely through the ISP. The new forwarding protocol allows the remote client to conduct point-to-point link protocols, such as point-to-point protocol (PPP) and serial line interface protocol (SLIP) directly with the local network home gateway. The network access server changes from a routing mode where a communication protocol is conducted with the client to a switching mode where the POP simply sends data from one port to a tunnel. The tunnel then transmits the data to another port, regardless of the header information on transmitted data packets. The remote client can then be managed through databases controlled by the local network and gain access to resources not typically accessible through the internet. The layer two forwarding protocol conducts an independent authorization session to prevent unauthorized access to the private network and provides point-to-point protocol transport over the internet independently of internet transport protocols.
51 Citations
17 Claims
-
1. An apparatus comprising:
-
a network processing device, residing outside of a local network, configured to identify virtual private connection headers encapsulating a point-to-point session; and a network interface device configured to pass packets for the point-to-point session, established between the local network and a remote client, through an external Internet Protocol (IP) network in a virtual private connection based, at least in part, on the identification of the virtual private connection headers. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A network processing device comprising:
-
a first interface configured to communicate with a remote client; a second interface configured to communicate with a local network; and a processor coupled between the first and second interface and operating in an Internet infrastructure external from the local network, the processor configured to pass packets through a virtual private point-to-point connection established in a portion of the Internet infrastructure between the remote client and the local network, wherein the packets for the virtual private point-to-point connection are encapsulated in a data link layer tunneling header and the processor is configured to pass the packets through the virtual private point-to-point connection according to information in the data link layer tunneling header. - View Dependent Claims (9, 10, 11)
-
-
12. An apparatus comprising:
-
a routing device configured to provide part of a virtual private connection for transporting a point-to-point session over an Internet Protocol (IP) network; and a network interface device configured to pass packets for the point-to-point session through the virtual private connection according to data link layer headers encapsulating the point-to-point session, wherein the routing device is configured to identify the virtual private connection, and to drop packets that do not have data link layer headers encapsulating the point-to-point session. - View Dependent Claims (13, 14)
-
-
15. A method comprising:
-
establishing a portion of a tunnel over an Internet Protocol (IP) network between a remote client and a local network; receiving packets that use a data link layer protocol to transport a virtual private point-to-point connection over the IP network, wherein the packets are encapsulated in data link layer headers; and passing the packets associated with the virtual private point-to-point connection through the established portion of the tunnel according to the data link layer protocol when the data link layer headers are associated with the virtual private point-to-point connection. - View Dependent Claims (16, 17)
-
Specification
-
- Resources
-
Current AssigneeCisco Technology, Inc. (Cisco Systems, Inc.)
-
Original AssigneeCisco Technology, Inc. (Cisco Systems, Inc.)
-
InventorsValencia, Andrew J.
-
Primary Examiner(s)Matar, Ahmad
-
Assistant Examiner(s)Gay, Sonia
-
Application NumberUS10/841,789Time in Patent Office2,952 DaysField of Search370/389, 370352-356, 370/420, 370/94.1, 713/153, 713/201, 709/218, 709/238, 709/229, 709/227, 711/147US Class Current370/389CPC Class CodesH04L 12/4633 Interconnection of networks...
