Mobile IP over VPN communication protocol
First Claim
1. A method for communicating with a correspondence node of a virtual private network associated with a home network, from a mobile node associated with a foreign network, the method comprising:
- receiving an information packet from the mobile node via the foreign network at a security gateway of the virtual private network without using an external home agent, wherein the information packet has been encapsulated with an inner tunnel address corresponding to the security gateway and representative of a source address of at least a first portion of the information packet;
forwarding the at least a first portion of the information packet from the security gateway to a home agent of the virtual private network;
decapsulating, at the home agent, the at least a first portion of the information packet; and
transmitting the decapsulated at least a first portion of the information packet from the home agent to the correspondence node.
0 Assignments
0 Petitions
Accused Products
Abstract
The present invention supports a communication protocol for transmission of information packets between a mobile node and a virtual private network. Information packets are encapsulated and decapsulated along the route as the information packet is forwarded among the various networks on its path to the destination address; either the mobile node on a foreign network or a correspondence node on a virtual private network. A home agent on the virtual private network supports transmitting the information packets, and the information packets are transmitted from the virtual private network from the home agent or a virtual private network gateway.
11 Citations
17 Claims
-
1. A method for communicating with a correspondence node of a virtual private network associated with a home network, from a mobile node associated with a foreign network, the method comprising:
-
receiving an information packet from the mobile node via the foreign network at a security gateway of the virtual private network without using an external home agent, wherein the information packet has been encapsulated with an inner tunnel address corresponding to the security gateway and representative of a source address of at least a first portion of the information packet; forwarding the at least a first portion of the information packet from the security gateway to a home agent of the virtual private network; decapsulating, at the home agent, the at least a first portion of the information packet; and transmitting the decapsulated at least a first portion of the information packet from the home agent to the correspondence node. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A home network comprising for communicating with a mobile node in a foreign network, wherein the home network comprises:
-
a home agent; a correspondence node; and a security gateway configured to; receive an information packet from the mobile node via the foreign network without using an external home agent, wherein the information packet has been encapsulated with a tunnel address corresponding to the security gateway and representative of a source address of at least a first portion of the information packet; and forward the at least a first portion of the information packet from the security gateway to the home agent; wherein the home agent is configured to; decapsulate the at least a first portion of the information packet; and transmit the decapsulated at least a first portion of the information packet to the correspondence node. - View Dependent Claims (7, 8, 9, 10, 11, 12)
-
-
13. A method for maintaining a secure communication link between a correspondence node on a VPN (virtual private network) and a mobile node, using a public foreign network, the method comprising:
-
generating, by the mobile node, an encapsulated information packet comprising an inner tunnel address corresponding to a security gateway of the VPN and representative of a source address of at least a first portion of the information packet; receiving the encapsulated information packet at the security gateway via the foreign network; forwarding the at least a first portion of the information packet from the security gateway to a home agent of the VPN; decapsulating, at the home agent, the at least a first portion of the information packet; and transmitting the decapsulated at least a first portion of the information packet from the home agent to a correspondence node of the VPN. - View Dependent Claims (14, 15, 16, 17)
-
Specification