公开(公告)号：US08713305B2

公开(公告)日：2014-04-29

申请号：US13560511

申请日：2012-07-27

申请人： Bing Liu ,  Yejian Xu ,  Meng Xu ,  Chengjiao Nie

发明人： Bing Liu ,  Yejian Xu ,  Meng Xu ,  Chengjiao Nie

IPC分类号： H04L29/06

CPC分类号： H04L63/0272 ,  H04L63/029 ,  H04L63/166

摘要： Embodiment of the present invention provides a packet transmission method. The method includes: receiving an encrypted packet sent by a client by using a virtual private network (VPN) tunnel, wherein the encrypted packet is sent by the client after the client determines, according to a preset control policy, that the control policy comprises an Internet Protocol (IP) address and a port number that are the same as a destination IP address and a destination port number of a packet to be sent and encrypts the packet to be sent, and the control policy comprises information about an IP address and a port number of an intranet server that can exchange a packet with a security socket layer protocol (SSL) VPN server; decrypting the encrypted packet; and sending the decrypted packet to a corresponding intranet server, wherein a source IP address of the decrypted packet is an external network IP address.

摘要翻译： 本发明的实施例提供一种分组传输方法。 该方法包括：通过使用虚拟专用网（VPN）隧道来接收由客户端发送的加密分组，其中在客户端根据预设控制策略确定控制策略包括 互联网协议（IP）地址和与要发送的分组的目的地IP地址和目的地端口号相同的端口号，并对要发送的分组进行加密，并且控制策略包括关于IP地址和 可以与安全套接字层协议（SSL）VPN服务器交换数据包的内部网服务器的端口号; 解密加密分组; 并将解密的分组发送到对应的内联网服务器，其中解密的分组的源IP地址是外部网络IP地址。

公开(公告)号：US20120303949A1

公开(公告)日：2012-11-29

申请号：US13560511

申请日：2012-07-27

申请人： Bing Liu ,  Yejian Xu ,  Meng Xu ,  Chengjiao Nie

发明人： Bing Liu ,  Yejian Xu ,  Meng Xu ,  Chengjiao Nie

IPC分类号： H04L9/00

CPC分类号： H04L63/0272 ,  H04L63/029 ,  H04L63/166

摘要： Embodiment of the present invention provides a packet transmission method. The method includes: receiving an encrypted packet sent by a client by using a virtual private network (VPN) tunnel, wherein the encrypted packet is sent by the client after the client determines, according to a preset control policy, that the control policy comprises an Internet Protocol (IP) address and a port number that are the same as a destination IP address and a destination port number of a packet to be sent and encrypts the packet to be sent, and the control policy comprises information about an IP address and a port number of an intranet server that can exchange a packet with a security socket layer protocol (SSL) VPN server; decrypting the encrypted packet; and sending the decrypted packet to a corresponding intranet server, wherein a source IP address of the decrypted packet is an external network IP address.

摘要翻译： 本发明的实施例提供一种分组传输方法。 该方法包括：通过使用虚拟专用网（VPN）隧道来接收由客户端发送的加密分组，其中在客户端根据预设控制策略确定控制策略包括 互联网协议（IP）地址和与要发送的分组的目的地IP地址和目的地端口号相同的端口号，并对要发送的分组进行加密，并且控制策略包括关于IP地址和 可以与安全套接字层协议（SSL）VPN服务器交换数据包的内部网服务器的端口号; 解密加密分组; 并将解密的分组发送到对应的内联网服务器，其中解密的分组的源IP地址是外部网络IP地址。