Mimic support address resolution

US 8,554,911 B2
Filed: 06/21/2010
Issued: 10/08/2013
Est. Priority Date: 11/14/2002
Status: Active Grant

First Claim

Patent Images

1. A method for mimicking network devices, the method being performed in a computing device having first and second network interface cards, the first network interface card connecting the computing device to an external network and the second network interface card connecting the computing device to a local network, the method comprising the steps of:

accessing a list of port identifiers corresponding to ports that are to be blocked;

creating a gate rule for each port identifier in the accessed list, each gate rule for blocking an incoming message from the external network or the local network which contains the corresponding port identifier from being redirected to one of a plurality of applications hosted in the computing device;

tracking a port identifier of a port opened by one of the plurality of applications;

determining if the port identifier of the opened port is equal to a port identifier in a gate rule;

accessing, in the case that the port identifier of the opened port is equal to a port identifier of a gate rule, the gate rule and modifying the gate rule from a blocking rule to a redirect rule for redirecting an incoming message from the external network or the local network which contains the port identifier of the opened port to the application which opened the port;

monitoring for a closing of the port opened by the application; and

accessing, in the case that the port opened by the application is closed, the gate rule having a port identifier equal to the port identifier of the opened port, and modifying the gate rule back from a redirect rule to a blocking rule.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Mimicking network devices with a computing device having first and second network interface cards, the first network interface card connecting the computing device to an external network and the second network interface card connecting the computing device to a local network, including obtaining an IP address of a device on the local network, determining an IP address for the second network interface card based on the obtained IP address of the device on the local network, and assigning the determined IP address to the second network interface card.

38 Citations

View as Search Results

4 Claims

1. A method for mimicking network devices, the method being performed in a computing device having first and second network interface cards, the first network interface card connecting the computing device to an external network and the second network interface card connecting the computing device to a local network, the method comprising the steps of:
- accessing a list of port identifiers corresponding to ports that are to be blocked;
  
  creating a gate rule for each port identifier in the accessed list, each gate rule for blocking an incoming message from the external network or the local network which contains the corresponding port identifier from being redirected to one of a plurality of applications hosted in the computing device;
  
  tracking a port identifier of a port opened by one of the plurality of applications;
  
  determining if the port identifier of the opened port is equal to a port identifier in a gate rule;
  
  accessing, in the case that the port identifier of the opened port is equal to a port identifier of a gate rule, the gate rule and modifying the gate rule from a blocking rule to a redirect rule for redirecting an incoming message from the external network or the local network which contains the port identifier of the opened port to the application which opened the port;
  
  monitoring for a closing of the port opened by the application; and
  
  accessing, in the case that the port opened by the application is closed, the gate rule having a port identifier equal to the port identifier of the opened port, and modifying the gate rule back from a redirect rule to a blocking rule.
- View Dependent Claims (2)
- - 2. A method according to claim 1, further comprising the step of:
    - creating, in the case that the port identifier of the opened port is not equal to a port identifier of a gate rule, a redirect rule for redirecting an incoming message from the external network or the local network which contains the port identifier of the opened port to the application which opened the port.

3. An apparatus having first and second network interface cards, the first network interface card connecting the apparatus to an external network and the second network interface card connecting the apparatus to a local network, and comprising at least one processor executing steps stored in a memory to perform the steps of:
- accessing a list of port identifiers corresponding to ports that are to be blocked;
  
  creating a gate rule for each port identifier in the accessed list, each gate rule for blocking an incoming message from the external network or the local network which contains the corresponding port identifier from being redirected to one of a plurality of applications hosted in the apparatus;
  
  tracking a port identifier of a port opened by one of the plurality of applications;
  
  determining if the port identifier of the opened port is equal to a port identifier in a gate rule;
  
  accessing, in the case that the port identifier of the opened port is equal to a port identifier of a gate rule, the gate rule and modifying the gate rule from a blocking rule to a redirect rule for redirecting an incoming message from the external network or the local network which contains the port identifier of the opened port to the application which opened the port;
  
  monitoring for a closing of the port opened by the application; and
  
  accessing, in the case that the port opened by the application is closed, the gate rule having a port identifier equal to the port identifier of the opened port, and modifying the gate rule back from a redirect rule to a blocking rule.
- View Dependent Claims (4)
- - 4. An apparatus according to claim 3, wherein the at least one processor further performs the step of:
    - creating, in the case that the port identifier of the opened port is not equal to a port identifier of a gate rule, a redirect rule for redirecting an incoming message from the external network or the local network which contains the port identifier of the opened port to the application which opened the port.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Canon Development Americas, Inc. (Canon Inc.)
Original Assignee
Canon Development Americas, Inc. (Canon Inc.)
Inventors
Jean, Sebastien
Primary Examiner(s)
Patel, Chirag R

Application Number

US12/820,103
Publication Number

US 20100254398A1
Time in Patent Office

1,205 Days
Field of Search

709223-226, 726/11
US Class Current

709/225
CPC Class Codes

H04L 2101/663   Transport layer addresses, ...

H04L 61/25   of the same type

H04L 61/255   Maintenance or indexing of ...

H04L 61/2557   Translation policies or rules

H04L 61/4541   Directories for service dis...

H04L 61/4557   Directories for hybrid netw...

H04L 61/5014   using dynamic host configur...

H04L 61/5092   by self-assignment, e.g. pi...

H04L 67/563   Data redirection of data ne...

H04L 67/59   Providing operational suppo...

H04L 69/329   in the application layer [O...

Mimic support address resolution

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

38 Citations

4 Claims

Specification

Solutions

Use Cases

Quick Links

Mimic support address resolution

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

38 Citations

4 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links