CA2136150A1 - Apparatus and method for providing a secure gateway for communication and data exchanges between networks - Google Patents
Apparatus and method for providing a secure gateway for communication and data exchanges between networksInfo
- Publication number
- CA2136150A1 CA2136150A1 CA002136150A CA2136150A CA2136150A1 CA 2136150 A1 CA2136150 A1 CA 2136150A1 CA 002136150 A CA002136150 A CA 002136150A CA 2136150 A CA2136150 A CA 2136150A CA 2136150 A1 CA2136150 A1 CA 2136150A1
- Authority
- CA
- Canada
- Prior art keywords
- network
- communications
- session
- data
- gateway station
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0227—Filtering policies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/08—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters
- H04L43/0805—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability
- H04L43/0811—Monitoring or testing based on specific metrics, e.g. QoS, energy consumption or environmental parameters by checking availability by checking connectivity
Abstract
An apparatus and method for providing a secure firewall between a private network and a public network are disclosed. The apparatus is a gateway station having an operating system that is modified to disable communications packet forwarding, and further modified to process any communications packet having a network encapsulation address which matches the device address of the gateway station. The method includes enabling the gateway station to transparently initiate a first communications session with a client on a first network requesting a network service from a host on a second network, and a second independent communications session with the network host to which the client request was addressed. The data portion of communications packets from the first session are passed to the second session, and vice versa, by application level proxies which are passed the communications packets by the modified operating system. Data sensitivity screening is preferably performed on the data to ensure security. Only communications enabled by a security administrator are permitted. The advantage is a transparent firewall with application level security and data screening capability.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CA002136150A CA2136150C (en) | 1994-11-18 | 1994-11-18 | Apparatus and method for providing a secure gateway for communication and data exchanges between networks |
| US08/342,772 US5623601A (en) | 1994-11-18 | 1994-11-21 | Apparatus and method for providing a secure gateway for communication and data exchanges between networks |
| EP95308261A EP0713311A1 (en) | 1994-11-18 | 1995-11-17 | Secure gateway and method for communication between networks |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CA002136150A CA2136150C (en) | 1994-11-18 | 1994-11-18 | Apparatus and method for providing a secure gateway for communication and data exchanges between networks |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CA2136150A1 true CA2136150A1 (en) | 1996-05-19 |
| CA2136150C CA2136150C (en) | 2007-01-30 |
Family
ID=4154697
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CA002136150A Expired - Fee Related CA2136150C (en) | 1994-11-18 | 1994-11-18 | Apparatus and method for providing a secure gateway for communication and data exchanges between networks |
Country Status (1)
| Country | Link |
|---|---|
| CA (1) | CA2136150C (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7788404B2 (en) | 1999-12-02 | 2010-08-31 | Western Digital Technologies, Inc. | Access and control system for network-enabled devices |
| US7917628B2 (en) | 1999-12-02 | 2011-03-29 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US7934251B2 (en) | 1999-12-02 | 2011-04-26 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US8793374B2 (en) | 1999-12-02 | 2014-07-29 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US9191443B2 (en) | 1999-12-02 | 2015-11-17 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US9807147B1 (en) | 1999-12-02 | 2017-10-31 | Western Digital Technologies, Inc. | Program recording webification |
| CN114928660A (en) * | 2022-05-16 | 2022-08-19 | 北京计算机技术及应用研究所 | Method for transparent interprocess communication of embedded operating system |
| CN115118509A (en) * | 2022-06-29 | 2022-09-27 | 国网河南省电力公司电力科学研究院 | Substation secondary equipment debugging file permission detection method and security control device |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8688797B2 (en) | 1999-12-02 | 2014-04-01 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
-
1994
- 1994-11-18 CA CA002136150A patent/CA2136150C/en not_active Expired - Fee Related
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9071574B1 (en) | 1999-12-02 | 2015-06-30 | Western Digital Technologies, Inc. | Access and control system for network-enabled devices |
| US9807147B1 (en) | 1999-12-02 | 2017-10-31 | Western Digital Technologies, Inc. | Program recording webification |
| US7934251B2 (en) | 1999-12-02 | 2011-04-26 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US8341275B1 (en) | 1999-12-02 | 2012-12-25 | Western Digital Technologies, Inc. | Access and control system for network-enabled devices |
| US8661507B1 (en) | 1999-12-02 | 2014-02-25 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US8793374B2 (en) | 1999-12-02 | 2014-07-29 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US7917628B2 (en) | 1999-12-02 | 2011-03-29 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US9191443B2 (en) | 1999-12-02 | 2015-11-17 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US7788404B2 (en) | 1999-12-02 | 2010-08-31 | Western Digital Technologies, Inc. | Access and control system for network-enabled devices |
| US9894141B2 (en) | 1999-12-02 | 2018-02-13 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US10291686B2 (en) | 1999-12-02 | 2019-05-14 | Western Digital Technologies, Inc. | Managed peer-to-peer applications, systems and methods for distributed data access and storage |
| US10382526B2 (en) | 1999-12-02 | 2019-08-13 | Western Digital Technologies, Inc. | Program recording webification |
| CN114928660A (en) * | 2022-05-16 | 2022-08-19 | 北京计算机技术及应用研究所 | Method for transparent interprocess communication of embedded operating system |
| CN114928660B (en) * | 2022-05-16 | 2023-10-31 | 北京计算机技术及应用研究所 | Method for communication between transparent processes of embedded operating system |
| CN115118509A (en) * | 2022-06-29 | 2022-09-27 | 国网河南省电力公司电力科学研究院 | Substation secondary equipment debugging file permission detection method and security control device |
Also Published As
| Publication number | Publication date |
|---|---|
| CA2136150C (en) | 2007-01-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA2314268C (en) | Use of transmission control protocol proxy within packet data service transmissions in a mobile network | |
| US7028337B2 (en) | Method of virtual private network communication in security gateway apparatus and security gateway apparatus using the same | |
| US7058059B1 (en) | Layer-2 IP networking method and apparatus for mobile hosts | |
| US7305546B1 (en) | Splicing of TCP/UDP sessions in a firewalled network environment | |
| EP1757069B1 (en) | Data transmission | |
| CA2403625A1 (en) | Method and apparatus for coordinating a change in service provider between a client and a server | |
| AU1879599A (en) | A method for packet authentication in the presence of network address translations and protocol conversions | |
| CA2419853A1 (en) | Location-independent packet routing and secure access in a short-range wireless networking environment | |
| TWI265688B (en) | Method, system and apparatus for monitoring and controlling data transfer in communication networks | |
| CA2414216A1 (en) | A secure ip access protocol framework and supporting network architecture | |
| CN1478232A (en) | System and method for secure network mobility | |
| EP1858217A1 (en) | Shared Internet access | |
| WO2005048106A2 (en) | Virtual private network with pseudo server | |
| GB2366163A (en) | Inter-network connection through intermediary server | |
| CA2415527C (en) | Ipsec through l2tp | |
| US7680134B2 (en) | Tunneling Ethernet | |
| CA2414044A1 (en) | A secure ip access protocol framework and supporting network architecture | |
| EP1168718B1 (en) | Method and device to communicate with a device not belonging to the same virtual private network | |
| CA2136150A1 (en) | Apparatus and method for providing a secure gateway for communication and data exchanges between networks | |
| JP2004328029A (en) | Network access system | |
| JP3296514B2 (en) | Encryption communication terminal | |
| US8146144B2 (en) | Method and system for the transparent transmission of data traffic between data processing devices, corresponding computer program product, and corresponding computer-readable storage medium | |
| US20230319111A1 (en) | Ipsec load balancing in a session-aware load balanced cluster (slbc) network device | |
| KR20040004724A (en) | Wireless LAN service system providing proxy gateway and method thereof | |
| WO2003045034A1 (en) | Security of data through wireless access points supporting roaming |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| EEER | Examination request | ||
| MKLA | Lapsed |
Effective date: 20141118 |