公开(公告)号：US20210021565A1

公开(公告)日：2021-01-21

申请号：US16574128

申请日：2019-09-18

Applicant: VMWARE, INC.

Inventor： PURAN CHAND ,  CRAIG FARLEY NEWELL ,  AMIT KUMAR YADAV

IPC: H04L29/12 ,  H04L29/08 ,  H04L12/46

Abstract: Disclosed are various embodiments for providing split-tunneled network connectivity on a per-application basis. A DNS query is received from a locally hosted DNS resolver. A first recursive DNS query is sent to an external DNS server and a second recursive DNS query is sent to an internal DNS server. A first recursive DNS response is then received from the external DNS server and a second recursive DNS response is received from the external DNS server. A response is then provided to the DNS query.

公开(公告)号：US20190230065A1

公开(公告)日：2019-07-25

申请号：US15913942

申请日：2018-03-07

Applicant: VMWARE, INC.

Inventor： RAMANI PANCHAPAKESAN ,  SUMAN ALUVALA ,  NIRANJAN PARAMASHIVAIAH ,  MAHESH KAVATAGE ,  PAVAN RAJKUMAR RANGAIN ,  CRAIG FARLEY NEWELL

IPC: H04L29/06 ,  H04L9/08

Abstract: Disclosed are various examples for establishing encrypted channels or tunnels within a TCP or other communication session between a tunnel endpoint and tunnel client, on a client device. A tunnel endpoint on the client device can determine an encryption key based upon whether a client device is in compliance with encryption policies of the enterprise.

公开(公告)号：US20230421565A1

公开(公告)日：2023-12-28

申请号：US18464106

申请日：2023-09-08

Applicant: VMware, Inc.

Inventor： SANJAY PATIL ,  CRAIG FARLEY NEWELL ,  LEUNG TAO KWOK ,  AMIT KUMAR YADAV

IPC: H04L9/40 ,  G06F21/31

CPC classification number: H04L63/102 ,  H04L63/0272 ,  H04L63/166 ,  G06F21/31 ,  H04L63/029 ,  H04L63/104 ,  H04L63/101

Abstract: Disclosed are various approaches for verifying the compliance of a TLS session with TLs policies. Traffic between an application and a destination server can be routed through a TLS gateway. The TLS gateway can inspect TLS handshake messages for compliance with TLS policies.

公开(公告)号：US20210021564A1

公开(公告)日：2021-01-21

申请号：US16574116

申请日：2019-09-18

Applicant: VMWARE,INC.

Inventor： PURAN CHAND ,  CRAIG FARLEY NEWELL ,  AMIT KUMAR YADAV

IPC: H04L29/12 ,  H04L29/06

Abstract: Disclosed are various embodiments for providing split-tunneled network connectivity on a per-application basis. A request to make a universal datagram protocol (UDP) connection to a remote host specified by an internet protocol (IP) address in the request is received from a network driver. A hostname lookup table is queried to determine a hostname associated with the IP address for the remote host. A policy is identified based on the hostname associated with the IP address for the remote host. Then, the UDP connection is routed based on the policy.

公开(公告)号：US20200236114A1

公开(公告)日：2020-07-23

申请号：US16384968

申请日：2019-04-16

Applicant: VMWARE, INC.

Inventor： SANJAY PATIL ,  CRAIG FARLEY NEWELL ,  LEUNG TAO KWOK ,  AMIT KUMAR YADAV

IPC: H04L29/06 ,  G06F21/31

Abstract: Disclosed are various approaches for verifying the compliance of a TLS session with TLs policies. Traffic between an application and a destination server can be routed through a TLS gateway. The TLS gateway can inspect TLS handshake messages for compliance with TLS policies.

公开(公告)号：US20220229920A1

公开(公告)日：2022-07-21

申请号：US17712708

申请日：2022-04-04

Applicant: VMware, Inc.

Inventor： ROHIT PRADEEP SHETTY ,  SHARUN VARGHESE SAMUEL ,  ERICH PETER STUNTEBECK ,  RAMANI PANCHAPAKESAN ,  CRAIG FARLEY NEWELL

IPC: G06F21/62 ,  H04L9/40 ,  G06F3/0482 ,  H04L67/02 ,  G06F9/445

Abstract: Disclosed are various approaches for sharing uniform resource locators (URLs) and enforcing browser restrictions along with a shared URL. Browser restrictions can be identified by appending commands to the shared URL that instruct the receiving browser to activate certain browser restrictions. Browser restrictions can also be enforced using a URL restriction validator, which is a server process that can facilitate enforcement of browser restrictions along with a shared URL.

公开(公告)号：US20220166858A1

公开(公告)日：2022-05-26

申请号：US17667188

申请日：2022-02-08

Applicant: VMWARE, INC.

Inventor： SUMAN ALUVALA ,  CRAIG FARLEY NEWELL ,  AMIT KUMAR YADAV ,  PAVAN RAJKUMAR RANGAIN ,  ROHIT PRADEEP SHETTY

IPC: H04L69/22 ,  H04L69/16 ,  H04L69/326 ,  H04L12/46 ,  H04L9/40 ,  H04W88/18

Abstract: The technology disclosed herein enables packet handling based on user information included in packet headers. In a particular embodiment, a method provides, in a gateway to a network environment, establishing a first connection with a first connection endpoint outside of the network environment. The first connection is established based on authentication of user information received from the first connection endpoint. The method further provides adding the user information to a packet header of one or more first packets carrying a request to establish a second connection between the gateway and a second connection endpoint within the network environment. Also, the method provides transferring the one or more first packets towards the second connection endpoint.

公开(公告)号：US20220086121A1

公开(公告)日：2022-03-17

申请号：US17533960

申请日：2021-11-23

Applicant: VMware, Inc.

Inventor： PURAN CHAND ,  CRAIG FARLEY NEWELL ,  AMIT KUMAR YADAV

IPC: H04L29/12 ,  H04L12/46 ,  H04L29/08

Abstract: Disclosed are various embodiments for providing split-tunneled network connectivity on a per-application basis. A DNS query is received from a locally hosted DNS resolver. A first recursive DNS query is sent to an external DNS server and a second recursive DNS query is sent to an internal DNS server. A first recursive DNS response is then received from the external DNS server and a second recursive DNS response is received from the external DNS server. A response is then provided to the DNS query.