Method and systems for routing packets from a gateway to an endpoint
First Claim
Patent Images
1. A method for routing packets by a device intermediary to a client and a server, the method comprising:
- (a) establishing, by a device intermediary to a client on a public network and a server on a private network, for the client a private internet protocol (IP) address on the private network, the client having a public IP address on the public network, the device not providing the private IP address to the client;
(b) receiving, by a management process executing in user mode memory space of the device from a driver operating in kernel mode of the device, a packet originating from the server and addressed to the private IP address of the client; and
(c) applying, by a policy engine executing on the device responsive to the management process, a policy to the packet to determine whether to transmit the packet to the client based on source of the packet.
7 Assignments
0 Petitions
Accused Products
Abstract
A method for routing packets from a gateway to an endpoint includes the step of associating a private internet protocol (IP) address with an endpoint having a public IP address. A packet addressed to the private IP address of the endpoint is captured. A policy is applied to the packet. The packet is transmitted to the public IP address of the endpoint, responsive to the application of the policy to the packet.
776 Citations
20 Claims
-
1. A method for routing packets by a device intermediary to a client and a server, the method comprising:
-
(a) establishing, by a device intermediary to a client on a public network and a server on a private network, for the client a private internet protocol (IP) address on the private network, the client having a public IP address on the public network, the device not providing the private IP address to the client; (b) receiving, by a management process executing in user mode memory space of the device from a driver operating in kernel mode of the device, a packet originating from the server and addressed to the private IP address of the client; and (c) applying, by a policy engine executing on the device responsive to the management process, a policy to the packet to determine whether to transmit the packet to the client based on source of the packet. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A system intermediary to a client and a server for routing packet, the system comprising:
-
a device intermediary to a client on a public network and a server on a private network, the device to establish for the client a private internet protocol (IP) address on the private network, the client having a public IP address on the public network, the device not providing the private IP address to the client; a management process executable in user mode memory space of the device to receive from a driver operating in kernel mode of the device a packet originating from the server and addressed to the private IP address of the client; and a policy engine executable on the device to apply, responsive to the management process, a policy to the packet to determine whether to transmit the packet to the client based on source of the packet. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
-
Specification