Intercept device for providing content
First Claim
1. A computerized method for network virtualization, the computerized method comprising:
- receiving, via a first physical port of an intercept device coupled to a first communications network, a DNS response message from a DNS server on the first communications network, the DNS response including a domain name, a network address associated with the domain name, and a destination address of a first network device on a second communications network;
determining whether the domain name satisfies a DNS intercept criterion;
if the domain name satisfies the DNS intercept criterion, then updating a request intercept criterion to include the network address associated with the domain name;
transmitting, via a second physical port of the intercept device that is coupled to the second communications network, the DNS response message to the first network device;
determining whether the intercept device is in a bypass mode;
if the intercept device is in a bypass mode, then allowing one or more requests for service from the first network device that is addressed to a second network device on a third communications network to pass through to the second network device via a third physical port coupled to the third communications network;
if the intercept device is not in a bypass mode, then;
receiving, via the second physical port, a request for service from the first network device that is addressed to a second network device on a third communications network;
determining whether the request for service satisfies the request intercept criterion;
if the request for service satisfies the request intercept criterion, then;
(1) generating a response to the request for service, the generated response including data indicating that the generated response originated from the second network device; and
(2) transmitting the generated response to the first network device; and
if the request for service does not satisfy the request intercept criterion, then transmitting the request for service to the second network device via a third physical port coupled to the third communications network.
1 Assignment
0 Petitions
Accused Products
Abstract
Described are computerized methods and apparatuses, including computer program products, for network virtualization. An intercept device receives a DNS response message from a DNS server. The DNS response includes a domain name, a network address associated with the domain name, and a destination address of a first network device. The intercept device determines whether the domain name satisfies a DNS intercept criterion. If the domain name satisfies the DNS intercept criterion, then a request intercept criterion is updated to include the network address associated with the domain name. The DNS response message is transmitted on to the first network device by the intercept server.
-
Citations
21 Claims
-
1. A computerized method for network virtualization, the computerized method comprising:
-
receiving, via a first physical port of an intercept device coupled to a first communications network, a DNS response message from a DNS server on the first communications network, the DNS response including a domain name, a network address associated with the domain name, and a destination address of a first network device on a second communications network; determining whether the domain name satisfies a DNS intercept criterion; if the domain name satisfies the DNS intercept criterion, then updating a request intercept criterion to include the network address associated with the domain name; transmitting, via a second physical port of the intercept device that is coupled to the second communications network, the DNS response message to the first network device; determining whether the intercept device is in a bypass mode; if the intercept device is in a bypass mode, then allowing one or more requests for service from the first network device that is addressed to a second network device on a third communications network to pass through to the second network device via a third physical port coupled to the third communications network; if the intercept device is not in a bypass mode, then; receiving, via the second physical port, a request for service from the first network device that is addressed to a second network device on a third communications network; determining whether the request for service satisfies the request intercept criterion; if the request for service satisfies the request intercept criterion, then; (1) generating a response to the request for service, the generated response including data indicating that the generated response originated from the second network device; and (2) transmitting the generated response to the first network device; and if the request for service does not satisfy the request intercept criterion, then transmitting the request for service to the second network device via a third physical port coupled to the third communications network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 21)
-
-
19. A system for virtualizing a network, the system comprising:
-
a first physical port coupled to a first communications network; a second physical port coupled to a second communications network; a third physical port coupled to a third communications network; a control processor having; a computing means for receiving, via the first physical port, a DNS response message from a DNS server on the first communications network, the DNS response including a domain name, a network address associated with the domain name, and a destination address of a first network device on a second communications network; a computing means for determining whether the domain name satisfies a DNS intercept criterion; a computing means for updating a request intercept criterion to include the network address associated with the domain name, if the domain name satisfies the DNS intercept criterion; a computing means for transmitting, via the second physical port, the DNS response message to the first network device; a computing means for determining whether the intercept device is in a bypass mode; if the intercept device is in a bypass mode, then a computing means for allowing one or more requests for service from the first network device that is addressed to a second network device on a third communications network to pass through to the second network device via a third physical port coupled to the third communications network; if the intercept device is not in a bypass mode, then; a computing means for receiving, via the second physical port, a request for service from the first network device that is addressed to a second network device on a third communications network; a computing means for determining whether the request for service satisfies the request intercept criterion; a computing means for, if the request for service satisfies the request intercept criterion; (1) generating a response to the request for service, the generated response including data indicating that the generated response originated from the second network device; and (2) transmitting the generated response to the first network device; and a computing means for transmitting, via the third physical port, the request for service to the second network device, if the request for service does not satisfy the request intercept criterion.
-
-
20. A computer program product, tangibly embodied in a machine-readable storage device, the computer program product including instructions being operable to cause a data processing apparatus to:
-
receive, via a first physical port of an intercept device coupled to a first communications network, a DNS response message from a DNS server on the first communications network, the DNS response including a domain name, a network address associated with the domain name, and a destination address of a first network device on a second communications network; determine whether the domain name satisfies a DNS intercept criterion; if the domain name satisfies the DNS intercept criterion, then update a request intercept criterion to include the network address associated with the domain name; transmit, via a second physical port of the intercept device that is coupled to the second communications network, the DNS response message to the first network device; determine whether the intercept device is in a bypass mode; if the intercept device is in a bypass mode, then allow one or more requests for service from the first network device that is addressed to a second network device on a third communications network to pass through to the second network device via a third physical port coupled to the third communications network; if the intercept device is not in a bypass mode, then; receive, via the second physical port, a request for service from the first network device that is addressed to a second network device on a third communications network; determine whether the request for service satisfies the request intercept criterion; if the request for service satisfies the request intercept criterion, then; (1) generate a response to the request for service, the generated response including data indicating that the generated response originated from the second network device; and (2) transmit the generated response to the first network device; and if the request for service does not satisfy the request intercept criterion, then transmit the request for service to the second network device via a third physical port coupled to the third communications network.
-
Specification