公开(公告)号：US20230097099A1

公开(公告)日：2023-03-30

申请号：US17488663

申请日：2021-09-29

Applicant: Citrix Systems, Inc.

Inventor： Vinay Kumar Kothiyal ,  Kevin Brock ,  Manoj Kumar Andol

IPC: H04L29/06 ,  H04L29/08

Abstract: Described embodiments provide system and methods for selecting a device via which a client is to connect with a server. A client may identify a server and a plurality of devices intermediary to the client and the server via one of which the client is authenticated to connect to access the server using a certificate. The client may detect that the server is unreachable from the client authenticated to use a first connection via a first device of the plurality of devices using the certificate. The client may select, responsive to detecting that the server is unreachable, a second device of the plurality of devices via which the client is to access the server. The client may authenticate, using the certificate used to authenticate with the first device, the client to establish a second connection with the second device to access the server.

公开(公告)号：US12224998B2

公开(公告)日：2025-02-11

申请号：US17488663

申请日：2021-09-29

Applicant: Citrix Systems, Inc.

Inventor： Vinay Kumar Kothiyal ,  Kevin Brock ,  Manoj Kumar Andol

IPC: H04L9/40 ,  H04L67/01 ,  H04L67/1008

Abstract: Described embodiments provide system and methods for selecting a device via which a client is to connect with a server. A client may identify a server and a plurality of devices intermediary to the client and the server via one of which the client is authenticated to connect to access the server using a certificate. The client may detect that the server is unreachable from the client authenticated to use a first connection via a first device of the plurality of devices using the certificate. The client may select, responsive to detecting that the server is unreachable, a second device of the plurality of devices via which the client is to access the server. The client may authenticate, using the certificate used to authenticate with the first device, the client to establish a second connection with the second device to access the server.

公开(公告)号：US20230421538A1

公开(公告)日：2023-12-28

申请号：US17850259

申请日：2022-06-27

Applicant: Citrix Systems, Inc.

Inventor： Vishnu Prateek Ponaka ,  Pradeep Gaikwad ,  Jateen Mittal ,  Vinay Kumar Kothiyal

IPC: H04L9/40 ,  H04L61/4511

CPC classification number: H04L63/0272 ,  H04L63/029 ,  H04L61/4511

Abstract: The present solution provides systems and methods for establishing and implementing a hostname-based split tunneling of client-side network traffic. A driver on a client can receive a first packet of an application that includes a hostname of a destination. The driver can receive from an agent of the client a real IP address and a spoofed IP address corresponding to the hostname, when the hostname matches one of a plurality of hostnames to exclude packet traffic from a VPN tunnel of the agent. The driver can receive from the agent a domain name service (DNS) response that includes the spoofed IP address and send the DNS response to cause the application to include the spoofed IP address in a second packet for the destination.