公开(公告)号：US20170063803A1

公开(公告)日：2017-03-02

申请号：US15334971

申请日：2016-10-26

申请人： Fortinet, Inc.

发明人： Michael Xie

IPC分类号： H04L29/06 ,  H04L29/12

CPC分类号： H04L63/0281 ,  H04L29/06027 ,  H04L29/12094 ,  H04L61/1529 ,  H04L61/2521 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/029 ,  H04L65/1006 ,  H04L65/1009 ,  H04L65/1043 ,  H04L65/1066 ,  H04L69/22

摘要： Methods and systems for an intelligent network protection gateway (NPG) and network architecture are provided. According to one embodiment, a firewall provides network-layer protection to hosts of a private network against unauthorized access by hosts of an external network by performing network address translation (NAT) processing of Internet Protocol (IP) addresses. The firewall also provides application-layer protection on behalf of the hosts and supports Voice over IP (VoIP) services by processing signaling protocols associated with VoIP sessions. An external VoIP interface of the firewall receives incoming VoIP packets each associated with a VoIP port of the external interface. The packets are directed to an appropriate host by the firewall performing port address forwarding based on a mapping of VoIP ports to private addresses of the hosts.

摘要翻译： 提供了智能网络保护网关（NPG）和网络架构的方法和系统。 根据一个实施例，防火墙通过执行因特网协议（IP）地址的网络地址转换（NAT）处理，为专用网络的主机提供对外部网络的主机的未经授权的访问的网络层保护。 防火墙还通过处理与VoIP会话相关联的信令协议，代表主机提供应用层保护，并支持IP语音（VoIP）业务。 防火墙的外部VoIP接口接收到与外部接口的VoIP端口相关联的传入VoIP数据包。 防火墙根据VoIP端口映射到主机的私有地址，通过防火墙将数据包导向适当的主机。

公开(公告)号：US20160301659A1

公开(公告)日：2016-10-13

申请号：US15189397

申请日：2016-06-22

申请人： Unify GmbH & Co. KG

发明人： Michael Tietsch ,  Christian Correll ,  Heinrich Haager

IPC分类号： H04L29/12

CPC分类号： H04L61/251 ,  H04L29/12094 ,  H04L29/12358 ,  H04L29/12443 ,  H04L29/12971 ,  H04L61/1529 ,  H04L61/2542 ,  H04L61/6086

摘要： In a method for addressing messages in a computer network in which two different types of address are used, wherein at least one first network element (4, 5, 6, 7, 8) uses exclusively a first type of address, at least one second network element (14, 15, 16, 17, 18) uses exclusively a second type of address and at least one third network element (9, 10, 11, 12, 13, 14) uses both types of address, at least one third network element (9) is a communication terminal which, besides its function as a communication terminal, also performs a function as an address converter for messages for which said communication terminal is neither the original sender nor an ultimate recipient.

公开(公告)号：US20140146713A1

公开(公告)日：2014-05-29

申请号：US14110015

申请日：2012-04-04

申请人： Jose Luis Merino Gonzalez ,  Jonathan Myers

发明人： Jose Luis Merino Gonzalez ,  Jonathan Myers

IPC分类号： H04M3/42

CPC分类号： H04W52/0264 ,  H04L29/12094 ,  H04L61/1529 ,  H04L65/1006 ,  H04L67/26 ,  H04M1/2535 ,  H04M3/42348 ,  H04M7/006 ,  H04W4/02 ,  H04W68/00 ,  H04W88/02 ,  Y02D70/1224 ,  Y02D70/1226 ,  Y02D70/1242 ,  Y02D70/126 ,  Y02D70/142 ,  Y02D70/144 ,  Y02D70/146 ,  Y02D70/23

摘要： A system for determining dynamically any given registered wireless device VoIP location, whereby the dynamic method reports the VoIP address return path as being the VoIP Location into a database. Applications of the system can access the database to contact each individual, specific, fixed or wireless device by VoIP for any data exchange.

摘要翻译： 一种用于动态地确定任何给定的注册无线设备VoIP位置的系统，由此动态方法将VoIP地址返回路径报告为数据库中的VoIP位置。 系统的应用可以访问数据库，通过VoIP联系每个个人，特定的，固定的或无线设备进行任何数据交换。

公开(公告)号：US08706888B2

公开(公告)日：2014-04-22

申请号：US12836938

申请日：2010-07-15

申请人： Alan Edward Baratz ,  Anthony Frank Bartolo ,  Jayesh Govindarajan ,  Anwar A. Siddiqui ,  John F. Buford ,  Vyankatesh Balaji Deshpande

发明人： Alan Edward Baratz ,  Anthony Frank Bartolo ,  Jayesh Govindarajan ,  Anwar A. Siddiqui ,  John F. Buford ,  Vyankatesh Balaji Deshpande

IPC分类号： G06F15/16

CPC分类号： H04L67/104 ,  H04L29/12094 ,  H04L29/12122 ,  H04L61/1529 ,  H04L61/1547 ,  H04L65/104 ,  H04L65/1069 ,  H04L65/1096 ,  H04L67/306 ,  H04M3/42042 ,  H04M7/0063

摘要： A method of operating a communication system comprises registering a plurality of communication devices with a peer-to-peer network as a plurality of enterprise nodes using a plurality of network handles that identify positions in an enterprise hierarchy. The method further comprises receiving a request to establish a session with a participant node and an enterprise node of the plurality of enterprise nodes using a first network handle of the plurality of network handles that identifies a first position in the enterprise hierarchy. In response to the request, the method provides identifying a routing identifier associated with the enterprise node and exchanging user communications for the session with a communication device of the plurality of communication devices registered as the enterprise node using the routing identifier.

摘要翻译： 操作通信系统的方法包括使用识别企业层级中的位置的多个网络句柄将多个通信设备与对等网络注册为多个企业节点。 该方法还包括使用识别企业层级中的第一位置的多个网络句柄中的第一网络句柄来接收与多个企业节点中的参与者节点和企业节点建立会话的请求。 响应于该请求，该方法提供识别与企业节点相关联的路由标识符，并且使用路由标识符与注册为企业节点的多个通信设备的通信设备交换与会话的用户通信。

公开(公告)号：US08412829B2

公开(公告)日：2013-04-02

申请号：US12046251

申请日：2008-03-11

申请人： Matthew Keller ,  Ross J. Lillie ,  James E. Mathis ,  Donald G. Newberg

发明人： Matthew Keller ,  Ross J. Lillie ,  James E. Mathis ,  Donald G. Newberg

IPC分类号： G06F15/16

CPC分类号： H04L65/608 ,  H04L29/06 ,  H04L29/06027 ,  H04L29/12094 ,  H04L29/12292 ,  H04L61/1529 ,  H04L61/2069 ,  H04L65/1006 ,  H04L65/1069 ,  H04L67/14 ,  H04L67/327 ,  H04L69/329 ,  Y02E60/324 ,  Y02E60/36

摘要： In a communications system having at least one service entity and a plurality of endpoints each including a logical entity and a terminal, a method facilitates a session between at least two of the endpoints in the system. The method includes: receiving a first message having information that includes a request for a session between a first endpoint that includes a non-dispatch terminal and at least one other endpoint; detecting that the first endpoint includes a non-dispatch terminal as a function of the first endpoint being unable to perform at least one function; and causing the at least one function to be performed on behalf of the first endpoint by the at least one service entity to facilitate the session between the first endpoint and the at least one other endpoint.

摘要翻译： 在具有至少一个服务实体和多个端点的通信系统中，每个端点包括逻辑实体和终端，所述方法有助于系统中至少两个端点之间的会话。 该方法包括：接收具有包括在包括非调度终端的第一端点与至少一个其它端点之间的会话请求的信息的第一消息; 检测到所述第一端点包括作为所述第一端点的功能的非调度终端不能执行至少一个功能; 以及使所述至少一个功能由所述至少一个服务实体代表所述第一端点执行，以促进所述第一端点与所述至少一个其他端点之间的会话。

公开(公告)号：US08335852B2

公开(公告)日：2012-12-18

申请号：US11982920

申请日：2007-11-06

申请人： Akihiro Hokimoto

发明人： Akihiro Hokimoto

IPC分类号： G06F15/16

CPC分类号： H04L63/12 ,  H04L29/12094 ,  H04L61/1529 ,  H04L65/1006 ,  H04L67/104 ,  H04L67/1065

摘要： Disclosed herein is a contact destination information registration method employed in a network system including nodes and employing a distributed hash table. When registering contact destination information corresponding to a predetermined node address in the table, the node first performs a first operation of looking up a value associated with a key corresponding to the node address in the table, and, if no such value is found, registering provisional contact destination information in the table so as to be associated with the key and acquiring a registration time of the provisional information, but, if any such value is found, acquiring a registration time of that value, and then performs a second operation of registering the true contact destination information in the table, if the registration time of the value associated with the key in the table coincides with the registration time acquired by the first operation.

摘要翻译： 这里公开了一种在包括节点并采用分布式哈希表的网络系统中采用的联系目的地信息登记方法。 当登记与表中的预定节点地址相对应的接触目的地信息时，节点首先执行查找与表中的节点地址对应的密钥相关联的值的第一操作，并且如果没有找到该值，则注册 临时接触目的地信息，以便与密钥相关联并获取临时信息的注册时间，但是如果发现任何这样的值，则获取该值的注册时间，然后执行注册的第二操作 如果与表中的键相关联的值的注册时间与通过第一操作获取的注册时间一致，则表中的真实的联系目的地信息。

公开(公告)号：US20120246712A1

公开(公告)日：2012-09-27

申请号：US13491346

申请日：2012-06-07

申请人： Michael Xie

发明人： Michael Xie

IPC分类号： G06F21/00

CPC分类号： H04L63/0281 ,  H04L29/06027 ,  H04L29/12094 ,  H04L61/1529 ,  H04L61/2521 ,  H04L63/0236 ,  H04L63/0245 ,  H04L63/029 ,  H04L65/1006 ,  H04L65/1009 ,  H04L65/1043 ,  H04L65/1066 ,  H04L69/22

摘要： Methods and systems for an intelligent network protection gateway (NPG) and network architecture are provided. According to one embodiment, a firewall provides network-layer protection to internal hosts against unauthorized access by hosts of an external network by performing network address translation (NAT) processing of Internet Protocol (IP) addresses. The firewall changes data in headers of VoIP packets and corresponding data contents of the VoIP packets, to enable bi-directional VoIP communications. An external VoIP interface of the firewall receives incoming VoIP packets having a user alias (e.g., an email address) and an indication regarding a VoIP port of external interface. The packets are directed to an appropriate internal host by the firewall performing port address forwarding based on the port indication to a Media Gateway Control Protocol (MGCP) media gateway within the internal network that maintains a mapping of user aliases to private addresses of the internal hosts.

摘要翻译： 提供了智能网络保护网关（NPG）和网络架构的方法和系统。 根据一个实施例，防火墙通过执行因特网协议（IP）地址的网络地址转换（NAT）处理，为内部主机提供网络层保护，防止外部网络的主机的未经授权的访问。 防火墙改变VoIP报文头部的数据和VoIP数据包的相应数据内容，实现双向VoIP通信。 防火墙的外部VoIP接口接收具有用户别名（例如，电子邮件地址）的传入VoIP分组以及关于外部接口的VoIP端口的指示。 数据包被防火墙根据端口指示执行端口地址转发指向适当的内部主机，内部网络中的媒体网关控制协议（MGCP）媒体网关将用户别名映射到内部主机的私有地址 。

公开(公告)号：US20120246043A1

公开(公告)日：2012-09-27

申请号：US13490734

申请日：2012-06-07

申请人： Walter J. Leskuski

发明人： Walter J. Leskuski

IPC分类号： G06Q30/00

CPC分类号： H04M15/06 ,  G06Q20/102 ,  G06Q30/04 ,  G06Q40/00 ,  H04L12/14 ,  H04L12/1403 ,  H04L12/1446 ,  H04L29/06 ,  H04L29/06027 ,  H04L29/12009 ,  H04L29/12094 ,  H04L29/1216 ,  H04L41/00 ,  H04L43/00 ,  H04L43/06 ,  H04L43/0817 ,  H04L43/16 ,  H04L47/10 ,  H04L47/125 ,  H04L47/19 ,  H04L47/2408 ,  H04L47/2433 ,  H04L47/2441 ,  H04L61/1523 ,  H04L61/1529 ,  H04L61/157 ,  H04L63/0272 ,  H04L63/102 ,  H04L63/1408 ,  H04L63/1416 ,  H04L63/1458 ,  H04L65/1006 ,  H04L65/103 ,  H04L65/104 ,  H04L65/1043 ,  H04L65/1069 ,  H04L65/1096 ,  H04L65/4007 ,  H04L65/4084 ,  H04L65/602 ,  H04L67/06 ,  H04L67/14 ,  H04L67/16 ,  H04L67/18 ,  H04L67/2814 ,  H04L67/303 ,  H04L67/306 ,  H04L67/322 ,  H04L67/34 ,  H04L69/08 ,  H04L69/329 ,  H04M3/2218 ,  H04M3/42229 ,  H04M3/46 ,  H04M3/465 ,  H04M7/006 ,  H04M7/0075 ,  H04M7/0078 ,  H04M7/1205 ,  H04M7/128 ,  H04M15/00 ,  H04M15/41 ,  H04M15/43 ,  H04M15/44 ,  H04M15/47 ,  H04M15/49 ,  H04M15/51 ,  H04M15/52 ,  H04M15/53 ,  H04M15/55 ,  H04M15/56 ,  H04M15/58 ,  H04M15/63 ,  H04M15/745 ,  H04M15/80 ,  H04M15/8207 ,  H04M15/8214 ,  H04M15/8292 ,  H04M2207/203 ,  H04M2215/0104 ,  H04M2215/0108 ,  H04M2215/0148 ,  H04M2215/0152 ,  H04M2215/0164 ,  H04M2215/0168 ,  H04M2215/0172 ,  H04M2215/0176 ,  H04M2215/0188 ,  H04M2215/2013 ,  H04M2215/202 ,  H04M2215/2046 ,  H04M2215/22 ,  H04M2215/44 ,  H04M2215/46 ,  H04M2215/54 ,  H04M2215/7813 ,  H04M2215/782 ,  H04Q3/0029 ,  H04W4/02 ,  H04W4/20

摘要： An operational support system includes a data collection unit and a number of network devices that are associated with various telecommunications services. The data collection unit retrieves raw data records from the network elements and identifies information in the raw data records that is relevant for billing purposes. The data collection unit normalizes the raw data records to create a billable record. The billable record may then be passed to a rating or billing unit that determines the charges associated with a customer's use of the telecommunications services.

摘要翻译： 操作支持系统包括与各种电信服务相关联的数据收集单元和多个网络设备。 数据收集单元从网络元件检索原始数据记录，并且识别与计费目的相关的原始数据记录中的信息。 数据收集单元将原始数据记录归一化以创建可计费记录。 然后，可结算记录可以被传递到评估或计费单元，其确定与客户使用电信服务相关联的费用。

公开(公告)号：US08230079B2

公开(公告)日：2012-07-24

申请号：US12979811

申请日：2010-12-28

申请人： Aron Rosenberg ,  Jeffrey Wilson

发明人： Aron Rosenberg ,  Jeffrey Wilson

IPC分类号： G06F15/16 ,  G06F3/00 ,  H04L12/28

CPC分类号： H04L63/0236 ,  H04L29/06027 ,  H04L29/12094 ,  H04L29/12367 ,  H04L61/1529 ,  H04L61/2514 ,  H04L65/1069

摘要： A method for communicating video data between at least a first host and a second host comprises: identifying, at a server, an address of the first host, to which the second host may communicate video data, and a sequence number expected by a network security system coupled between the first host and the server; and communicating, from the second host to the first host, video data using the address of the first host and the sequence number expected. The method may further comprise: identifying, at the server, an address of the second host, to which the first host may communicate video data, and a second sequence number expected by a network security system coupled between the second host and the server; and communicating, from the first host to the second host, video data using the address of the second host and the second expected sequence number. The second host may be adapted to perform the act of communicating without use of an intermediate server. The method may also further comprise communicating periodically, from the first host to the server, through the network security system, so as to maintain an open communication channel through the network security system to the first host at the address of the first host. The address of the first host may include address information and port information.

摘要翻译： 一种用于在至少第一主机和第二主机之间传送视频数据的方法包括：在服务器处识别第二主机可以传送视频数据的第一主机的地址以及由网络安全性预期的序列号 系统耦合在第一主机和服务器之间; 以及使用第一主机的地址和所期望的序列号从第二主机向第一主机传送视频数据。 该方法还可以包括：在服务器处识别第一主机可以传送视频数据的第二主机的地址，以及耦合在第二主机和服务器之间的网络安全系统预期的第二序列号; 以及使用第二主机的地址和第二预期序列号从第一主机向第二主机传送视频数据。 第二主机可以适于在不使用中间服务器的情况下执行通信动作。 该方法还可以进一步包括通过网络安全系统从第一主机到服务器周期性地通信，以便在第一主机的地址处通过网络安全系统将开放的通信信道维持到第一主机。 第一主机的地址可以包括地址信息和端口信息。

公开(公告)号：US20120072501A1

公开(公告)日：2012-03-22

申请号：US12885159

申请日：2010-09-17

申请人： Shaoul Amar

发明人： Shaoul Amar

IPC分类号： G06F15/16 ,  G06F17/30

CPC分类号： H04L29/12094 ,  H04L61/1529 ,  H04L65/1073

摘要： A system, method and computer program product providing a universal naming system.

摘要翻译： 提供通用命名系统的系统，方法和计算机程序产品。