Method and system for network identification via DNS
First Claim
1. A method of operating a client to identify a private network, the method comprising:
- storing a pair of a name and an IP address on the client, wherein the IP address is assigned to the name by an administrator of a predetermined network;
transmitting the name to a DNS server in a request for the DNS server to lookup a corresponding IP address;
receiving a response to the request from the DNS server;
comparing the request to the response, wherein a policy of the client is set for a known network when the corresponding IP address received from the DNS server matches the IP address stored on the client, and wherein the policy of the client is set for an unknown network when the DNS server does not return a matching IP address.
9 Assignments
0 Petitions
Accused Products
Abstract
In embodiments of the present invention improved capabilities are described for accessing a DNS server, where the DNS server may be a DNS server within the control of a administrator. A pair of name and IP address may be stored on the DNS server. A client may then transmit the name to a DNS server to request the DNS server to lookup the IP address related to the client transmitted name. This client to DNS server communication may be performed as part of a network request from the client. The IP address may then be returned to the client in response to the connection request, which may allow the client to interpret the return of the security IP address as an indication of a known DNS server and therefore a known network. As a result, the client may then be able to set its security rules according to known network rules. Further, the identifying of a known network may be associated with location information associated with the DNS server, and thus the client, where the location information may be associated with multiple DNS IP address entries.
35 Citations
18 Claims
-
1. A method of operating a client to identify a private network, the method comprising:
-
storing a pair of a name and an IP address on the client, wherein the IP address is assigned to the name by an administrator of a predetermined network; transmitting the name to a DNS server in a request for the DNS server to lookup a corresponding IP address; receiving a response to the request from the DNS server; comparing the request to the response, wherein a policy of the client is set for a known network when the corresponding IP address received from the DNS server matches the IP address stored on the client, and wherein the policy of the client is set for an unknown network when the DNS server does not return a matching IP address. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A system, comprising:
-
a DNS server, wherein a pair of a name and an IP address are stored in a memory on the DNS server, the name and the IP address specified by an administrator of a known network, the known network being a predetermined network associated with the DNS server; a client, wherein the pair of the name and the IP address are stored in a client memory, the client configured to transmit to the DNS server a request to lookup a corresponding IP address for a requested name in the memory of the DNS server; the memory of the DNS server returning the corresponding IP address to the client in response to the request; the client interpreting the return of the corresponding IP address as an indication of a connection to the predetermined network when the corresponding IP address matches the IP address; and the client setting a policy based on the connection to the predetermined network. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
Specification