Network abstraction and isolation layer for masquerading machine identity of a computer
First Claim
1. A non-transitory computer-readable storage medium encoded with a virtual network abstraction and isolation layer which instructs a processor to masquerade the machine identity of a computer in a local network to enable the computer to communicate in the local network with a different machine identity, comprising:
- a first set of interface instructions, encoded on the computer-readable storage medium, which instructs the processor to configure a virtual isolated network interface for communicating with the computer;
a second set of interface instructions, encoded on the computer-readable storage medium, which instructs the processor to configure an abstraction network interface for communicating with a network device coupled to the local network; and
control instructions, encoded on the computer-readable storage medium, which instruct the processor to translate an IP address and a Media Access Control (MAC) address to a different IP address and a different MAC address, respectively, in a packet header of a communication packet transmitted between said virtual isolated and abstraction network interfaces, and to instruct the processor to translate at least one of a machine name and a system identifier to a different machine name and a different system identifier, respectively, in a packet payload of the communication packet.
26 Assignments
0 Petitions
Accused Products
Abstract
A network abstraction and isolation layer (NAIL) for masquerading the machine identity of a computer in a network to enable the computer to communicate in the network with a different machine identity including an isolated network interface for communicating with the computer, an abstraction network interface for communicating with a network device coupled to the network, and control instructions or device. The control instructions or device performs machine identity translation to masquerade machine identity of the computer relative to the network. Machine identity masquerading includes selectively translating any one or more of an IP address, a MAC address, a machine name, a system identifier, and a DNS Name in the header or payload of communication packets.
109 Citations
18 Claims
-
1. A non-transitory computer-readable storage medium encoded with a virtual network abstraction and isolation layer which instructs a processor to masquerade the machine identity of a computer in a local network to enable the computer to communicate in the local network with a different machine identity, comprising:
-
a first set of interface instructions, encoded on the computer-readable storage medium, which instructs the processor to configure a virtual isolated network interface for communicating with the computer; a second set of interface instructions, encoded on the computer-readable storage medium, which instructs the processor to configure an abstraction network interface for communicating with a network device coupled to the local network; and control instructions, encoded on the computer-readable storage medium, which instruct the processor to translate an IP address and a Media Access Control (MAC) address to a different IP address and a different MAC address, respectively, in a packet header of a communication packet transmitted between said virtual isolated and abstraction network interfaces, and to instruct the processor to translate at least one of a machine name and a system identifier to a different machine name and a different system identifier, respectively, in a packet payload of the communication packet. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A network abstraction and isolation layer (NAIL) apparatus for masquerading the machine identity of a computer in a local network to enable the computer to communicate in the local network with a different machine identity, comprising:
-
a physical isolated network interface port which is configured to communicate with the computer; a physical abstraction network interface port which is configured to communicate with a network device coupled to the local network; and a control device, coupled between said isolated and abstraction network ports, which is configured to perform machine identity translation to masquerade machine identity of the computer within the local network; wherein said control device is configured to translate an IP address and a Media Access Control (MAC) address to a different IP address and a different MAC address, respectively, in a packet header of a communication packet transmitted between said isolated and abstraction network ports, and wherein said control logic is further configured to translate at least one of a machine name and a system identifier to a different machine name and a different system identifier, respectively, in a packet payload of the communication packet. - View Dependent Claims (8, 9, 10, 11, 12)
-
-
13. A system to masquerade the machine identity of a computer in a local network to enable the computer to communicate in the local network with a different machine identity, the system comprising:
-
computer hardware including at least one computer processor; and computer-readable storage comprising computer-readable instructions that, when executed by the computer processor, cause the computer hardware to perform operations defined by the computer-executable instructions including; configuring a virtual isolated network interface for communicating with a computer in a local network; configuring an abstraction network interface for communicating with a network device coupled to the local network; translating an IP address and a Media Access Control (MAC) address to a different IP address and a different MAC address, respectively, in a packet header of a communication packet transmitted between the virtual isolated network interface and the abstraction network interface; and translating at least one of a machine name and a system identifier to a different machine name and a different system identifier, respectively, in a packet payload of the communication packet. - View Dependent Claims (14, 15, 16, 17, 18)
-
Specification