Systems and methods for proxying cookies for SSL VPN clientless sessions
First Claim
1. A method for configuration driven proxying of cookies by an intermediary between one or more servers and one or more clients, the intermediary establishing SSL VPN sessions between the one or more servers and the one or more clients, the method comprising:
- (a) receiving, by an intermediary, a response from a server to a request of a client via a clientless SSL VPN session established by the intermediary between the server and the client, the response comprising one or more cookies;
(b) identifying, by the intermediary, via the request or the response based on identification of a type of resource, an access profile for the clientless SSL VPN session, the access profile identifying one or more policies for proxying cookies; and
(c) determining, by the intermediary responsive to the one or more policies of the access profile, whether to proxy the one or more cookies, comprising handling the one or more cookies on behalf of the client, or to bypass proxying for the client by forwarding the response with the one or more cookies from the server to the client without modifying the one or more cookies.
7 Assignments
0 Petitions
Accused Products
Abstract
The present application enables the enterprise to configure various policies to address various subsets of the traffic based on various information relating the client, the server, or the details and nature of the interactions between the client and the server. An intermediary deployed between clients and servers may establish an SSL VPN session between a client and a server. The intermediary may receiving a response from a server to a request of a client via the clientless SSL VPN session. The response may comprise one or more cookies. The intermediary may identify an access profile for the clientless SSL VPN session. The access profile may identify one or more policies for proxying cookies. The intermediary may determine, responsive to the one or more policies of the access profile, whether to proxy or bypass proxying for the client the one or more cookies.
399 Citations
20 Claims
-
1. A method for configuration driven proxying of cookies by an intermediary between one or more servers and one or more clients, the intermediary establishing SSL VPN sessions between the one or more servers and the one or more clients, the method comprising:
-
(a) receiving, by an intermediary, a response from a server to a request of a client via a clientless SSL VPN session established by the intermediary between the server and the client, the response comprising one or more cookies; (b) identifying, by the intermediary, via the request or the response based on identification of a type of resource, an access profile for the clientless SSL VPN session, the access profile identifying one or more policies for proxying cookies; and (c) determining, by the intermediary responsive to the one or more policies of the access profile, whether to proxy the one or more cookies, comprising handling the one or more cookies on behalf of the client, or to bypass proxying for the client by forwarding the response with the one or more cookies from the server to the client without modifying the one or more cookies. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. An intermediary device for configuration driven proxying of cookies between one or more servers and one or more clients, the intermediary device establishing SSL VPN sessions between the one or more servers and the one or more clients, the intermediary device comprising:
-
a packet engine executing on a device of the intermediary device, for receiving a response from a server to a request of a client via a clientless SSL VPN session established by the intermediary device between the server and the client, the response comprising one or more cookies, a policy engine for identifying, via the request or the response based on identification of a type of resource, an access profile for the clientless SSL VPN session, the access profile identifying one or more policies for proxying cookies; and wherein the intermediary device determines responsive to the one or more policies of the access profile whether to proxy the one or more cookies, comprising handling the one or more cookies on behalf of the client, or to bypass proxying for the client by forwarding the response with the one or more cookies from the server to the client without modifying the one or more cookies. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification