Methods and apparatus to enhance security in residential networks
First Claim
1. A method for use in delivering bundled services to a customer premises, comprising:
- determining, with a processor, whether an Internet protocol packet received at a gateway is addressed to a first packet processing module of the gateway assigned a protected Internet protocol address associated with a first one of the bundled services,wherein determining whether the Internet protocol packet is addressed to the first packet processing module comprises examining a field of the received Internet protocol packet to identify a destination Internet protocol address of the received Internet protocol packet;
determining, with the processor, whether the Internet protocol packet originated at a trusted source;
routing, with the processor, the Internet protocol packet to the first packet processing module of the gateway when the Internet protocol packet is addressed to the protected Internet protocol address and originated from the trusted source; and
routing, with the processor, the Internet protocol packet to a second packet processing module of the gateway assigned a public Internet protocol address associated with a second one of the bundled services when the Internet protocol packet is not addressed to the protected Internet protocol address.
1 Assignment
0 Petitions
Accused Products
Abstract
Example methods and apparatus to enhance security in residential networks and residential gateways are disclosed. A disclosed example apparatus includes a transceiver to receive an Internet protocol (IP) packet, a first packet processing module associated with a protected IP address, the first packet processing module to be communicatively coupled to a first network device, a second packet processing module associated with a public IP address, the second packet processing module to be communicatively coupled to a second network device, and a packet diverter to route the received IP packet to the first packet processing module when the IP packet contains the protected IP address and to route the IP packet to the second packet processing module when the IP packet does not contain the protected IP address.
25 Citations
19 Claims
-
1. A method for use in delivering bundled services to a customer premises, comprising:
-
determining, with a processor, whether an Internet protocol packet received at a gateway is addressed to a first packet processing module of the gateway assigned a protected Internet protocol address associated with a first one of the bundled services, wherein determining whether the Internet protocol packet is addressed to the first packet processing module comprises examining a field of the received Internet protocol packet to identify a destination Internet protocol address of the received Internet protocol packet; determining, with the processor, whether the Internet protocol packet originated at a trusted source; routing, with the processor, the Internet protocol packet to the first packet processing module of the gateway when the Internet protocol packet is addressed to the protected Internet protocol address and originated from the trusted source; and routing, with the processor, the Internet protocol packet to a second packet processing module of the gateway assigned a public Internet protocol address associated with a second one of the bundled services when the Internet protocol packet is not addressed to the protected Internet protocol address. - View Dependent Claims (2, 3)
-
-
4. A tangible machine readable storage device comprising instructions that, when executed, cause a machine to perform operations comprising:
-
determining whether an Internet protocol packet is addressed to a first packet processing module of a gateway assigned a protected Internet protocol address associated with a first one of bundled services, wherein determining whether the Internet protocol packet is addressed to the first packet processing module comprises examining a field of the Internet protocol packet to identify a destination Internet protocol address of the Internet protocol packet; determining whether the Internet protocol packet originated from a trusted source; routing the Internet protocol packet to the first packet processing module of the gateway when the Internet protocol packet is addressed to the protected Internet protocol address and originated from the trusted source; and routing the Internet protocol packet to a second packet processing module of the gateway assigned a public Internet protocol address associated with a second one of the bundled services when the Internet protocol packet is not addressed to the protected Internet protocol address. - View Dependent Claims (5, 6)
-
-
7. A gateway, comprising:
-
a first packet processing module assigned a protected Internet protocol address associated with a first bundled service; a second packet processing module assigned a public Internet protocol address associated with a second bundled service; a memory comprising machine readable instructions; and a processor to execute the instructions to perform operations comprising; determining whether an Internet protocol packet is addressed to the first packet processing module, wherein determining whether the Internet protocol packet is addressed to the first packet processing module comprises examining a field of the Internet protocol packet to identify a destination Internet protocol address of the Internet protocol packet; determining whether the Internet protocol packet originated at a trusted source; routing the Internet protocol packet to the first packet processing module when the Internet protocol packet is addressed to the protected Internet protocol address and originated from the trusted source; and routing the Internet protocol packet to the second packet processing module when the Internet protocol packet is not addressed to the protected Internet protocol address. - View Dependent Claims (8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19)
-
Specification