Methods, systems and computer program products for translating internet protocol (IP) addresses located in a payload of a packet
First Claim
Patent Images
1. A method of processing a packet, comprising:
- receiving a packet at a network address translator (NAT) device;
determining if at least one of a source address and a destination address located in a packet header has been previously translated to a normalized Internet Protocol (IP) address;
searching a payload of the packet for IP addresses if it is determined that at least one of the source address and the destination address located in the packet header has been previously translated; and
translating IP addresses located in the pavload of the packet if at least one of the source address and the destination address located in the packet header has been previously translated by replacing at least one occurrence of an IP address located in the payload of the packet,wherein determining if at least one of the source address and the destination address located in the packet header has been previously translated comprises;
identifying the source address and the destination address in the packet header; and
determining if at least one of the source address and the destination address is present in a set of translation rules;
wherein at least one of the source address and the destination address has been previously translated if it is determined that at least one of the source address and the destination address is present in a set of translation rules; and
wherein determining if at least one of the source address and the destination address located in the packet has been previously translated further comprises;
determining if at least one of the source address and the destination address is present in a header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in the set of translation rules;
wherein at least one of the source address and the destination address has been previously translated if it is determined that the source address and the destination address are not present in the header translation set of translation miles.
1 Assignment
0 Petitions
Accused Products
Abstract
Methods, systems and computer program products are discussed for processing a packet. Internet Protocol (IP) addresses located in a payload of the packet are translated if a source address and/or a destination address located in a packet header has been previously translated.
50 Citations
44 Claims
-
1. A method of processing a packet, comprising:
-
receiving a packet at a network address translator (NAT) device; determining if at least one of a source address and a destination address located in a packet header has been previously translated to a normalized Internet Protocol (IP) address; searching a payload of the packet for IP addresses if it is determined that at least one of the source address and the destination address located in the packet header has been previously translated; and translating IP addresses located in the pavload of the packet if at least one of the source address and the destination address located in the packet header has been previously translated by replacing at least one occurrence of an IP address located in the payload of the packet, wherein determining if at least one of the source address and the destination address located in the packet header has been previously translated comprises; identifying the source address and the destination address in the packet header; and determining if at least one of the source address and the destination address is present in a set of translation rules; wherein at least one of the source address and the destination address has been previously translated if it is determined that at least one of the source address and the destination address is present in a set of translation rules; and wherein determining if at least one of the source address and the destination address located in the packet has been previously translated further comprises; determining if at least one of the source address and the destination address is present in a header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in the set of translation rules; wherein at least one of the source address and the destination address has been previously translated if it is determined that the source address and the destination address are not present in the header translation set of translation miles. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of processing a packet comprising:
-
receiving a packet at a network address translator (NAT) device; determining if at least one of a source address and a destination address located in a packet header has been previously translated to a normalized Internet Protocol (IP) address; searching a payload of the packet for IP addresses if it is determined that at least one of the source address and the destination address located in the packet header has been previously translated; and translating IP addresses located in the payload of the packet if at least one of the source address and the destination address located in the packet header has been previously translated by replacing at least one occurrence of an IP address located in the payload of the packet, wherein determining if at least one of the source address and the destination address located in the packet header has been previously translated comprises; identifying the source address and the destination address in the packet header; and determining if at least one of the source address and the destination address is present in a set of translation rules; wherein at least one of the source address and the destination address has been previously translated if it is determined that at least one of the source address and the destination address is present in a set of translation rules; and wherein determining if at least one of the source address and the destination address is present in a set of translation rules further comprises; determining if at least one of the source address and the destination address is present in a plurality of sets of translation rules; and discarding the packet if it is determined that at least one of the source address and the destination address is present in a plurality of sets of translation rules. - View Dependent Claims (11, 12, 13, 14)
-
-
15. A method of processing a packet, comprising:
-
determining if at least one of a source address and a destination address located in a packet header is present in a set of translation rules; searching a payload of the packet far IP addresses if it is determined that at least one of a source address and a destination address is present in the set of translation rules; and translating the IP addresses in the payload of the packet using the set of translation rules, wherein determining if at least one of the source address and the destination address located in the packet header is present in a set of translation rules comprises; identifying the source address and the destination address in the packet header; scanning the set of translation rules to determine if at least one of the source address and the destination address is present in the set of translation rules; and determining if at least one of the source address and the destination address is present in a header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in the set of translation rules; wherein at least one of the source address and the destination address has been previously translated if it is determined that at least one of the source address and the destination address is present in a set of translation rules and that the source address and the destination address are not present in the header translation set of translation rules. - View Dependent Claims (16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
-
29. A method of processing a packet, comprising:
-
determining if at least one of a source address and a destination address located in a packet header is present in a set of translation rules; searching a payload of the packet for IP addresses if it is determined that at least one of a source address and a destination address is present in the set of translation rules; and translating the IP addresses in the payload of the packet using the set of translation rules, wherein determining if at least one of the source address and the destination address is present in a set of translation rules further comprises; determining if at least one of the source address and the destination address is present in a plurality of sets of translation rules; determining if one of the plurality of sets of translation rules is the header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in a plurality of sets of translation rules; and discarding the packet if it is determined that at least one of the source address and the destination address is present in a plurality of sets of translation rules and that one of the plurality of sets of translation rules is not the header translation set of translation rules.
-
-
30. A system for processing a packet, comprising:
-
a first network address translator (NAT) device that translates at least one of a source address and a destination address located in a packet header; and a second NAT device that translates Internet Protocol (IP) addresses located in a pavload of the packet if at least one of the source address and the destination address has been previously translated by the first NAT device, wherein the second NAT device comprises; a detector circuit configured to determine if at least one of the source address and the destination address located in the packet header has been previously translated to a normalized ID address; a scanner circuit configured to search the payload of the packet for IP addresses if it is determined that at least one of the source address and the destination address located in the packet header has been previously translated; and a payload translator circuit configured to translate IP addresses by replacing at least one occurrence of an IP address located in the payload of the packet; and wherein the detector circuit is further configured to; identify the source address and the destination address in the packet header; determine if at least one of the source address and the destination address is present in a set of translation rules; and determine if at least one of the source address and the destination address is present in a header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in the set of translation rules; wherein at least one of the source address and the destination address has been translated if it is determined tat at least one of the source address and the destination address is present in a set of translation rules and that the source address and the destination address are not present in the header translation set of translation rules. - View Dependent Claims (31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42)
-
-
43. A system for processing a packet, comprising:
-
means for determining if at least one of a source address and a destination address located in a packet header has been previously translated and is present in a set of translation rules; means for searching a payload of the packet for IP addresses if it is determined that at least one of a source address and a destination address has been previously translated and is present in the set of translation rules; and means for translating the IP addresses in the payload of the packet using the set of translation rules, wherein the means for determining if at least one of the source address and the destination address located in the packet header is present in a set of translation rules comprises; means for identifying the source address and the destination address in the packet header; means for scanning the set of translation rules to determine if at least one of the source address and the destination address is present in the set of translation rules; and means for determining if at least one of the source address and the destination address is present in a header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in the set of translation rules; wherein at least one of the source address and the destination address has been previously translated if it is determined that at least one of the source address and the destination address is present a set of translation rules and that the source address and the destination address are not present in the header translation set of translation rules.
-
-
44. A computer program product for processing a packet, comprising:
-
a computer readable program medium having computer readable program code embodied therein, the computer readable program code comprising; computer readable program code which determines if at least one of a source address and a destination address located in a packet header has been previously translated and is present in a set of translation rides; computer readable program code which searches a payload of the packet for IP addresses if it is determined that at least one of a source address and a destination address has been previously translated and is present in the set of translation rules; and computer readable program code that translates the IP addresses in the payload of the packet using the set of translation rules, wherein the computer readable program code configured to determine if at least one of the source address and the destination address located in the packet header is present in a set of translation rules comprises; computer readable program code configured to identify the source address and the destination address in the packet header; computer readable program code configured to scan the set of translation rules to determine if at least one of the source address and the destination address is present in the set of translation rules; and computer readable program code configured to determine if at least one of the source address and the destination address is present in a header translation set of translation rules if it is determined that at least one of the source address and the destination address is present in the set of translation rules; wherein at least one of the source address and the destination address has been previously translated if it is determined that at least one of the source address and the destination address is present in a set of translation rules and that the source address and the destination address are not present in the header translation set of translation rules.
-
Specification