公开(公告)号：US09584523B2

公开(公告)日：2017-02-28

申请号：US13664211

申请日：2012-10-30

Applicant: HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.

Inventor： Soma Sundaram Santhiveeran ,  Jose Paulo Xavier Pires ,  Ricardo Bueno Moreira ,  Humberto Cardoso Marchezi ,  Paul Gerhard Schulze

IPC: H04L29/06 ,  G06F15/173 ,  G06F15/16

CPC classification number: H04L63/102 ,  H04L63/02 ,  H04L63/0272

Abstract: According to an example, a method for virtual private network (VPN) access control includes receiving a request from an application on a user device to access a remote computer network asset, and determining, by a processor, an authorization of the application to access the remote computer network asset based on a policy. In response to a determination that the application is authorized to access the remote computer network asset, the method includes setting a VPN connection between the user device and a remote computer network including the remote computer network asset, and routing traffic from the application to the remote computer network asset via the VPN. In response to a determination that the application is not authorized to access the remote computer network asset, the method includes routing traffic from the application to a network different than the remote computer network.

Abstract translation: 根据一个示例，用于虚拟专用网（VPN）访问控制的方法包括从用户设备上的应用接收请求以访问远程计算机网络资产，以及由处理器确定所述应用的访问权限 基于策略的远程计算机网络资产。 响应于确定应用被授权访问远程计算机网络资产，该方法包括在用户设备和包括远程计算机网络资产的远程计算机网络之间设置VPN连接，以及将路由流量从应用程序路由到远程 计算机网络资产通过VPN。 响应于确定应用程序未被授权访问远程计算机网络资产，该方法包括将流量从应用程序路由到与远程计算机网络不同的网络。