System and method for providing network and computer firewall protection with dynamic address isolation to a device
First Claim
1. A computer comprising:
- one or more processors;
an application;
a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network;
a network address translation engine implemented with the one or more processors, the network address translation engine configured to dynamically assign an address to the application from a range of IP addresses utilizing dynamic host configuration protocol (DHCP), the network address translation engine further configured to translate between the dynamically assigned address and a public address; and
a driver configured to automatically forward the outgoing data packets to the network address translation engine to translate the dynamically assigned address to the public address, and to automatically forward the incoming data packets to the network address translation engine to dynamically assign the address to the application and translate the public address to the dynamically assigned address.
2 Assignments
0 Petitions
Accused Products
Abstract
A computer performs dynamic address isolation. The computer comprises an application associated with an application address, a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network, a network address translation engine configured to translate between the application address and a public address, and a driver for automatically forwarding the outgoing data packets to the network address translation engine to translate the application address to the public address, and for automatically forwarding the incoming data packets to the network address translation engine to translate the public address to the application address. The computer may communicate with a firewall configured to handle both network-level security and application-level security.
114 Citations
6 Claims
-
1. A computer comprising:
-
one or more processors; an application; a network interface coupled to receive incoming data packets from and transmit outgoing data packets to an external network; a network address translation engine implemented with the one or more processors, the network address translation engine configured to dynamically assign an address to the application from a range of IP addresses utilizing dynamic host configuration protocol (DHCP), the network address translation engine further configured to translate between the dynamically assigned address and a public address; and a driver configured to automatically forward the outgoing data packets to the network address translation engine to translate the dynamically assigned address to the public address, and to automatically forward the incoming data packets to the network address translation engine to dynamically assign the address to the application and translate the public address to the dynamically assigned address. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
-
Current AssigneeCUPP Computing AS
-
Original AssigneeCUPP Computing AS
-
InventorsTouboul, Shlomo
-
Primary Examiner(s)Hailu, Teshome
-
Application NumberUS13/745,591Publication NumberTime in Patent Office1,271 DaysField of Search726/13US Class Current1/1CPC Class CodesH04L 61/25 of the same typeH04L 63/02 for separating internal fro...H04L 63/0236 Filtering by address, proto...H04L 63/0245 Filtering by information in...H04L 63/20 for managing network securi...
