System and method for establishing a virtual private network
First Claim
1. A system comprising:
- a program executing on a client establishing a connection with a device intermediary to the client and a server;
a driver of the client intercepting a packet transmitted by an application of the client to the server and providing the intercepted packet to the program; and
wherein the program performs additional processing of the intercepted packet, comprising encapsulating payload from the intercepted packet, before transmitting the encapsulated payload of the intercepted packet via the connection.
11 Assignments
0 Petitions
Accused Products
Abstract
A system and method for establishing a virtual private network (VPN) between a client and a private data communication network. An encrypted data communication session, such as a Secure Sockets Layer (SSL) data communication session, is established between a gateway and the client over a public data communication network. The gateway then sends a programming component to the client for automatic installation and execution thereon. The programming component operates to intercept communications from client applications destined for resources on the private data communication network and to send the intercepted communications to the gateway via the encrypted data communication session instead of to the resources on the private data communication network.
-
Citations
20 Claims
-
1. A system comprising:
-
a program executing on a client establishing a connection with a device intermediary to the client and a server; a driver of the client intercepting a packet transmitted by an application of the client to the server and providing the intercepted packet to the program; and wherein the program performs additional processing of the intercepted packet, comprising encapsulating payload from the intercepted packet, before transmitting the encapsulated payload of the intercepted packet via the connection. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system comprising:
-
a device intermediary to a client and a server, the device establishing a first connection with a program executing on the client, the program encapsulating payload from a packet intercepted by a driver from a transmission by an application of the client of the packet to the server, encrypting the encapsulated payload and transmitting communications comprising the encrypted encapsulated payload; wherein the device decrypts the communications received from the program and destined for the server; and wherein the device performs additional processing of the decrypted communications before transmitting to the server via a second connection between the device and the server. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification