WO2002103981A3 - Providing telephony services to terminals behind a firewall and/or network address translator - Google Patents

Providing telephony services to terminals behind a firewall and/or network address translator Download PDF

Info

Publication number
WO2002103981A3
WO2002103981A3 PCT/IB2002/003102 IB0203102W WO02103981A3 WO 2002103981 A3 WO2002103981 A3 WO 2002103981A3 IB 0203102 W IB0203102 W IB 0203102W WO 02103981 A3 WO02103981 A3 WO 02103981A3
Authority
WO
WIPO (PCT)
Prior art keywords
firewall
network address
protocol
napt
module
Prior art date
Application number
PCT/IB2002/003102
Other languages
French (fr)
Other versions
WO2002103981A2 (en
Inventor
Patrick N Sollee
Original Assignee
Nortel Networks Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nortel Networks Ltd filed Critical Nortel Networks Ltd
Priority to EP02753172A priority Critical patent/EP1446929A2/en
Publication of WO2002103981A2 publication Critical patent/WO2002103981A2/en
Publication of WO2002103981A3 publication Critical patent/WO2002103981A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2517Translation of Internet protocol [IP] addresses using port numbers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2539Hiding addresses; Keeping addresses anonymous
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/255Maintenance or indexing of mapping tables
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/255Maintenance or indexing of mapping tables
    • H04L61/2553Binding renewal aspects, e.g. using keep-alive messages
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/256NAT traversal
    • H04L61/2564NAT traversal for a higher-layer protocol, e.g. for session initiation protocol [SIP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/256NAT traversal
    • H04L61/2578NAT traversal without involvement of the NAT server
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0236Filtering by address, protocol, port number or service, e.g. IP-address or URL
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0227Filtering policies
    • H04L63/0254Stateful filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/029Firewall traversal, e.g. tunnelling or, creating pinholes
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1441Countermeasures against malicious traffic
    • H04L63/1458Denial of Service
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/10Architectures or entities
    • H04L65/102Gateways
    • H04L65/1043Gateway controllers, e.g. media gateway control protocol [MGCP] controllers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1069Session establishment or de-establishment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1101Session protocols
    • H04L65/1104Session initiation protocol [SIP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/60Network streaming of media packets
    • H04L65/65Network streaming protocols, e.g. real-time transport protocol [RTP] or real-time control protocol [RTCP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/40Network security protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M7/00Arrangements for interconnection between switching centres
    • H04M7/006Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M7/00Arrangements for interconnection between switching centres
    • H04M7/006Networks other than PSTN/ISDN providing telephone service, e.g. Voice over Internet Protocol (VoIP), including next generation networks with a packet-switched transport layer
    • H04M7/0078Security; Fraud detection; Fraud prevention
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/1066Session management
    • H04L65/1101Session protocols

Abstract

A method and apparatus is provided to allow telephony or other types of media communications and services to be provided for a device (24) having a private network address that resides behind a firewall and network address and port translation (NAPT) module (which is not aware of the underlying protocol for the communications and services). Examples of the underlying protocol includes the Session Initiation Protocol (SIP) and Real-Time Protocol (RTP). A path through the firewall and NAPT module is defined by use of keep-alive messages communicated through the firewall and NAPT module. Addresses that are allocated by the firewall and NAPT module are associated with the device (24) for both signaling and media communications. A feature of the firewall that enables the provision of telephony and media communications through the firewall that is protocol-unaware is that the firewall allows responses to messages initiated by the device back through the firewall.
PCT/IB2002/003102 2001-06-14 2002-06-10 Providing telephony services to terminals behind a firewall and/or network address translator WO2002103981A2 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP02753172A EP1446929A2 (en) 2001-06-14 2002-06-10 Providing telephony services to terminals behind a firewall and/or network address translator

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US09/881,594 US20030009561A1 (en) 2001-06-14 2001-06-14 Providing telephony services to terminals behind a firewall and /or network address translator
US09/881,594 2001-06-14

Publications (2)

Publication Number Publication Date
WO2002103981A2 WO2002103981A2 (en) 2002-12-27
WO2002103981A3 true WO2002103981A3 (en) 2004-06-10

Family

ID=25378782

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/IB2002/003102 WO2002103981A2 (en) 2001-06-14 2002-06-10 Providing telephony services to terminals behind a firewall and/or network address translator

Country Status (3)

Country Link
US (6) US20030009561A1 (en)
EP (2) EP1446929A2 (en)
WO (1) WO2002103981A2 (en)

Families Citing this family (115)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6957346B1 (en) * 1999-06-15 2005-10-18 Ssh Communications Security Ltd. Method and arrangement for providing security through network address translations using tunneling and compensations
GB2362482A (en) * 2000-05-15 2001-11-21 Ridgeway Systems & Software Lt Direct slave addressing to indirect slave addressing
GB2365256A (en) 2000-07-28 2002-02-13 Ridgeway Systems & Software Lt Audio-video telephony with port address translation
GB2369746A (en) * 2000-11-30 2002-06-05 Ridgeway Systems & Software Lt Communications system with network address translation
US7127524B1 (en) * 2000-12-29 2006-10-24 Vernier Networks, Inc. System and method for providing access to a network with selective network address translation
US7272650B2 (en) * 2001-04-17 2007-09-18 Intel Corporation Communication protocols operable through network address translation (NAT) type devices
US7684317B2 (en) * 2001-06-14 2010-03-23 Nortel Networks Limited Protecting a network from unauthorized access
US20030009561A1 (en) * 2001-06-14 2003-01-09 Sollee Patrick N. Providing telephony services to terminals behind a firewall and /or network address translator
US7586940B1 (en) * 2001-07-24 2009-09-08 Cisco Technology, Inc. Forwarding packets in a gateway performing network address translation (NAT)
US7788381B2 (en) * 2001-09-17 2010-08-31 Foundry Networks, Inc. System and method for router keep-alive control
US7769865B1 (en) * 2001-10-16 2010-08-03 Sprint Communications Company L.P. Configuring computer network communications in response to detected firewalls
US7984110B1 (en) * 2001-11-02 2011-07-19 Hewlett-Packard Company Method and system for load balancing
US8095668B2 (en) * 2001-11-09 2012-01-10 Rockstar Bidco Lp Middlebox control
US7334049B1 (en) * 2001-12-21 2008-02-19 Cisco Technology, Inc. Apparatus and methods for performing network address translation (NAT) in a fully connected mesh with NAT virtual interface (NVI)
US7408928B2 (en) * 2001-12-21 2008-08-05 Nortel Networks Limited Methods and apparatus for setting up telephony connections between two address domains having overlapping address ranges
US7584262B1 (en) 2002-02-11 2009-09-01 Extreme Networks Method of and system for allocating resources to resource requests based on application of persistence policies
US7321926B1 (en) 2002-02-11 2008-01-22 Extreme Networks Method of and system for allocating resources to resource requests
US7298746B1 (en) 2002-02-11 2007-11-20 Extreme Networks Method and system for reassembling and parsing packets in a network environment
US7814204B1 (en) 2002-02-11 2010-10-12 Extreme Networks, Inc. Method of and system for analyzing the content of resource requests
US7447777B1 (en) 2002-02-11 2008-11-04 Extreme Networks Switching system
US20030208524A1 (en) * 2002-05-02 2003-11-06 Morman Daniel N. System for routing data in a communication network
EP1504577A4 (en) * 2002-05-06 2010-02-17 Qualcomm Inc System and method for registering ip address of wireless communication device
US7676579B2 (en) * 2002-05-13 2010-03-09 Sony Computer Entertainment America Inc. Peer to peer network communication
US6674758B2 (en) * 2002-06-06 2004-01-06 Clinton Watson Mechanism for implementing voice over IP telephony behind network firewalls
US7152111B2 (en) * 2002-08-15 2006-12-19 Digi International Inc. Method and apparatus for a client connection manager
US7302496B1 (en) * 2002-11-12 2007-11-27 Cisco Technology, Inc. Arrangement for discovering a localized IP address realm between two endpoints
TWI222811B (en) * 2002-11-19 2004-10-21 Inst Information Industry NAPT gateway system and method to expand the number of connections
JP3873891B2 (en) * 2003-01-22 2007-01-31 株式会社日立製作所 Packet communication device
US9110853B2 (en) * 2003-03-10 2015-08-18 Oracle America, Inc. Computer system with multiple classes of device IDs
US7340771B2 (en) 2003-06-13 2008-03-04 Nokia Corporation System and method for dynamically creating at least one pinhole in a firewall
US6985920B2 (en) * 2003-06-23 2006-01-10 Protego Networks Inc. Method and system for determining intra-session event correlation across network address translation devices
US7526556B2 (en) * 2003-06-26 2009-04-28 International Business Machines Corporation Method and apparatus for managing keepalive transmissions
US7522594B2 (en) * 2003-08-19 2009-04-21 Eye Ball Networks, Inc. Method and apparatus to permit data transmission to traverse firewalls
US20050053063A1 (en) * 2003-09-04 2005-03-10 Sajeev Madhavan Automatic provisioning of network address translation data
US7769004B2 (en) * 2003-09-26 2010-08-03 Surgient, Inc. Network abstraction and isolation layer for masquerading machine identity of a computer
US7886348B2 (en) 2003-10-03 2011-02-08 Verizon Services Corp. Security management system for monitoring firewall operation
TWI257217B (en) * 2003-11-10 2006-06-21 Inst Information Industry Method to detect the form of network address translation
DE10353925B4 (en) * 2003-11-18 2009-12-24 Nec Europe Ltd. Procedure for exchanging data between two hosts
US7760744B1 (en) * 2003-11-20 2010-07-20 Juniper Networks, Inc. Media path optimization for multimedia over internet protocol
US7372840B2 (en) * 2003-11-25 2008-05-13 Nokia Corporation Filtering of dynamic flows
WO2005062233A2 (en) * 2003-12-16 2005-07-07 Applied Identity Computer security system
FR2865335A1 (en) * 2004-01-16 2005-07-22 France Telecom Internal and external internet protocol terminals communication system, has control server that is provided in public IP network and that controls mediation system via communication channel passing via firewall
US8554876B2 (en) * 2004-01-23 2013-10-08 Hewlett-Packard Development Company, L.P. User profile service
US7821940B2 (en) * 2004-04-05 2010-10-26 Alcatel-Lucent Usa Inc. Transmission of maintenance information of an active packet connection through employment of packets communicated over the active packet connection
US8634537B2 (en) * 2004-08-16 2014-01-21 Aspect Software, Inc. Method of routing calls from a contact center
US7408926B1 (en) * 2004-09-02 2008-08-05 Microsoft Corporation Method and apparatus for accessing voice over internet protocol connection
US7594259B1 (en) * 2004-09-15 2009-09-22 Nortel Networks Limited Method and system for enabling firewall traversal
US7826602B1 (en) * 2004-10-22 2010-11-02 Juniper Networks, Inc. Enabling incoming VoIP calls behind a network firewall
GB2421156A (en) * 2004-12-10 2006-06-14 Ericsson Telefon Ab L M Maintaining session across network address/port translation firewall in the event of an address change with a session manager
US20060173997A1 (en) * 2005-01-10 2006-08-03 Axis Ab. Method and apparatus for remote management of a monitoring system over the internet
FI20050067A (en) * 2005-01-20 2006-07-21 Pekka Rehtijaervi Methods and devices controlled by push communications
US7436814B2 (en) * 2005-04-22 2008-10-14 Cisco Technology, Inc. Selecting transport addresses to route streams between endpoints
US8396062B2 (en) * 2005-05-24 2013-03-12 Nec Corporation System for switching between communication devices, switching method, and switching program
US20060268890A1 (en) * 2005-05-31 2006-11-30 Audiocodes Ltd. Method circuit and system for remotely updating a network appliance
US7639668B2 (en) * 2005-05-31 2009-12-29 Alcatel-Lucent Usa Inc. Method for securing RTS communications across middleboxes
US8005204B2 (en) * 2005-06-03 2011-08-23 At&T Intellectual Property I, L.P. Call routing system and method of using the same
US7617525B1 (en) * 2005-06-21 2009-11-10 Alto Ventures, Inc. System and method for connectionless client-server communications
CN100454849C (en) 2005-08-05 2009-01-21 华为技术有限公司 Fault detecting method in next generation network
US8630299B1 (en) * 2005-09-30 2014-01-14 At&T Intellectual Property Ii, L.P. Customer premises equipment border element for voice over internet protocol services
US9374342B2 (en) 2005-11-08 2016-06-21 Verizon Patent And Licensing Inc. System and method for testing network firewall using fine granularity measurements
US8027251B2 (en) * 2005-11-08 2011-09-27 Verizon Services Corp. Systems and methods for implementing protocol-aware network firewall
FI119312B (en) * 2006-01-20 2008-09-30 Teliasonera Ab A method of maintaining a connection in a communication system and a communication system
KR100810759B1 (en) * 2006-02-17 2008-03-07 엔에이치엔(주) P2P File Transmission System and Method
WO2007095726A1 (en) * 2006-02-21 2007-08-30 Borderware Technologies Inc. System and method for providing security for sip-based communications
US8464329B2 (en) 2006-02-21 2013-06-11 Watchguard Technologies, Inc. System and method for providing security for SIP-based communications
US20070239893A1 (en) * 2006-04-10 2007-10-11 Sbc Knowledge Ventures, L.P. Method for allocating ports in a communication network
CN101461214B (en) * 2006-06-07 2012-02-01 高通股份有限公司 Efficient address methods, computer readable medium and apparatus for wireless communication
US20090141705A1 (en) * 2006-06-21 2009-06-04 Siemens Home and Office Comunication Devices GmbH & Co., KG Device and method for address-mapping
US9749296B1 (en) * 2006-06-30 2017-08-29 Avaya Inc. Method and apparatus for modifying address information in signaling messages to ensure in-path devices remain in signaling path between endpoints
CN101119299A (en) * 2006-08-02 2008-02-06 华为技术有限公司 Method for conducting media stream, conduction detecting method and system
US8332925B2 (en) 2006-08-08 2012-12-11 A10 Networks, Inc. System and method for distributed multi-processing security gateway
US8079077B2 (en) 2006-08-08 2011-12-13 A10 Networks, Inc. System and method for distributed multi-processing security gateway
CN1946062A (en) 2006-10-10 2007-04-11 华为数字技术有限公司 Method and system for keep-alive conversation table in NAT device
GB2443238A (en) * 2006-10-16 2008-04-30 Maintaining accessibility for SIP clients behind NAT firewalls using intermediary proxy, UDP/TCP conversion and keep alive messages
US8705374B1 (en) * 2006-10-31 2014-04-22 At&T Intellectual Property Ii, L.P. Method and apparatus for isolating label-switched path impairments
US9473529B2 (en) 2006-11-08 2016-10-18 Verizon Patent And Licensing Inc. Prevention of denial of service (DoS) attacks on session initiation protocol (SIP)-based systems using method vulnerability filtering
US8966619B2 (en) * 2006-11-08 2015-02-24 Verizon Patent And Licensing Inc. Prevention of denial of service (DoS) attacks on session initiation protocol (SIP)-based systems using return routability check filtering
US9762861B2 (en) * 2006-12-05 2017-09-12 Excalibur Ip, Llc Telepresence via wireless streaming multicast
US8023432B2 (en) 2007-03-12 2011-09-20 Microsoft Corporation Cost reduction of NAT connection state keep-alive
US8302186B2 (en) 2007-06-29 2012-10-30 Verizon Patent And Licensing Inc. System and method for testing network firewall for denial-of-service (DOS) detection and prevention in signaling channel
US8520687B2 (en) * 2007-07-06 2013-08-27 Alcatel Lucent Method and apparatus for internet protocol multimedia bearer path optimization through a succession of border gateways
WO2009012612A1 (en) * 2007-07-20 2009-01-29 Alcatel Shanghai Bell Co., Ltd. Method for processing register request, network element, and communication system
US7933273B2 (en) * 2007-07-27 2011-04-26 Sony Computer Entertainment Inc. Cooperative NAT behavior discovery
US8755370B1 (en) * 2007-09-28 2014-06-17 Cisco Technology, Inc. Mechanisms for session border control of VOIP communication from non-symmetric port address translation device
TWI382717B (en) * 2007-11-12 2013-01-11 D Link Corp A method of sharing resources by interconnecting a network terminal device of two private networks by a user agent
WO2009063555A1 (en) * 2007-11-13 2009-05-22 Fujitsu Limited Control proxy device, control proxy method and control proxy program
US8218459B1 (en) * 2007-12-20 2012-07-10 Genbrand US LLC Topology hiding of a network for an administrative interface between networks
US20090205038A1 (en) * 2008-02-08 2009-08-13 Microsoft Corporation Enabling Wake on LAN Behind NATs and Firewalls
US8073959B2 (en) * 2008-03-28 2011-12-06 Microsoft Corporation Automatically detecting whether a computer is connected to a public or private network
US7890657B2 (en) * 2008-06-12 2011-02-15 Genband Us Llc System and method for correct routing and enforcement policy in a network having address or port translation
EP2169903A1 (en) * 2008-09-30 2010-03-31 France Telecom Apparatus and method for routing allowing the translation of addresses in cascade in a network
US9392437B2 (en) * 2008-10-17 2016-07-12 Alcatel Lucent Method and system for IP multimedia bearer path optimization through a succession of border gateways
WO2010068949A2 (en) * 2008-12-12 2010-06-17 Tekelec Methods, systems, and computer readable media for regulating network address translator (nat) and firewall pinhole preservation traffic in a session initiation protocol (sip) network
CN102395959A (en) * 2009-02-14 2012-03-28 必可视股份公司 Method and system for videoconferencing or data transfer between clients behind different network address translators
US8699515B2 (en) * 2009-07-21 2014-04-15 Cisco Technology, Inc. Limiting of network device resources responsive to IPv6 originating entity identification
US9219637B2 (en) * 2010-01-30 2015-12-22 Oleg Boulanov Facilitating rapid establishment of human/machine communication links with private SIP-based IP networks using pre-distributed static network address translation maps
US9380078B2 (en) * 2010-05-21 2016-06-28 Polycom, Inc. Method and system to add video capability to any voice over internet protocol (Vo/IP) session initiation protocol (SIP) phone
US8761160B2 (en) * 2010-06-25 2014-06-24 Acme Packet, Inc. Service path routing between session border controllers
FR2962281A1 (en) * 2010-06-30 2012-01-06 France Telecom Method for configuring terminal to emit or receive data stream in telecommunication network, involves inserting timeout value in signaling message, and sending modified signaling message to destination of terminal
CN102014176B (en) * 2010-12-13 2013-09-04 迈普通信技术股份有限公司 Network address translator (NAT) mapping keep-alive method and system based on session initiation protocol (SIP)
US8954542B2 (en) * 2011-06-14 2015-02-10 Avaya Inc. Method and system for transmitting and receiving configuration and registration information for session initiation protocol devices
US9185073B2 (en) * 2011-10-06 2015-11-10 Qualcomm Incorporated Systems and methods for data packet processing
US9118618B2 (en) 2012-03-29 2015-08-25 A10 Networks, Inc. Hardware-based packet editor
US9116567B2 (en) * 2012-04-25 2015-08-25 Google Technology Holdings LLC Systems and methods for managing the display of content on an electronic device
US9596286B2 (en) 2012-05-25 2017-03-14 A10 Networks, Inc. Method to process HTTP header with hardware assistance
US10021174B2 (en) 2012-09-25 2018-07-10 A10 Networks, Inc. Distributing service sessions
US9705800B2 (en) 2012-09-25 2017-07-11 A10 Networks, Inc. Load distribution in data networks
US9621495B1 (en) * 2012-12-10 2017-04-11 Jeffrey Brian Shumate Anonymous messaging proxy
US20140294006A1 (en) * 2013-03-29 2014-10-02 Alcaltel-Lucent Canada Inc. Direct service mapping for nat and pnat
US10027761B2 (en) 2013-05-03 2018-07-17 A10 Networks, Inc. Facilitating a secure 3 party network session by a network device
US10020979B1 (en) 2014-03-25 2018-07-10 A10 Networks, Inc. Allocating resources in multi-core computing environments
CN105049541B (en) * 2014-04-17 2018-06-22 财团法人资讯工业策进会 For the network address conversion penetrating system and method for real-time Communication for Power
US9806943B2 (en) 2014-04-24 2017-10-31 A10 Networks, Inc. Enabling planned upgrade/downgrade of network devices without impacting network sessions
US10757144B2 (en) 2018-06-19 2020-08-25 T-Mobile Usa, Inc. Session control logic with internet protocol (IP)-based routing
CN111131315B (en) * 2019-12-31 2023-04-07 西安抱朴通信科技有限公司 Session connection method, device and medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1997040610A2 (en) * 1996-04-24 1997-10-30 Northern Telecom Limited Internet protocol filter
WO2000078008A1 (en) * 1999-06-15 2000-12-21 Ssh Communications Security Ltd A method and arrangement for providing security through network address translations using tunneling and compensations
WO2002003217A1 (en) * 2000-06-30 2002-01-10 Net2Phone System, method, and computer program product for resolving addressing in a network including a network address translator
WO2002011400A1 (en) * 2000-07-28 2002-02-07 Ridgeway Systems And Software Limited Audio-video telephony with firewalls and network address translation

Family Cites Families (62)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH08320847A (en) * 1995-05-26 1996-12-03 Hitachi Ltd Password management system
US5793763A (en) * 1995-11-03 1998-08-11 Cisco Technology, Inc. Security system for network address translation systems
US5727146A (en) * 1996-06-04 1998-03-10 Hewlett-Packard Company Source address security for both training and non-training packets
US6233245B1 (en) * 1997-12-24 2001-05-15 Nortel Networks Limited Method and apparatus for management of bandwidth in a data communication network
US6307845B1 (en) * 1998-02-23 2001-10-23 Telefonaktiebolaget Lm Ericsson Processing packet-switched voice calls directed to a mobile unit operating in circuit-switched mode
US6353614B1 (en) * 1998-03-05 2002-03-05 3Com Corporation Method and protocol for distributed network address translation
US6058431A (en) * 1998-04-23 2000-05-02 Lucent Technologies Remote Access Business Unit System and method for network address translation as an external service in the access server of a service provider
US6189035B1 (en) 1998-05-08 2001-02-13 Motorola Method for protecting a network from data packet overload
US6331984B1 (en) * 1998-08-21 2001-12-18 Nortel Networks Limited Method for synchronizing network address translator (NAT) tables using the server cache synchronization protocol
US6219706B1 (en) * 1998-10-16 2001-04-17 Cisco Technology, Inc. Access control for networks
US6381646B2 (en) * 1998-11-03 2002-04-30 Cisco Technology, Inc. Multiple network connections from a single PPP link with partial network address translation
US6427174B1 (en) * 1998-11-12 2002-07-30 Cisco Technology, Inc. Dynamic IP addressing and quality of service assurance
US6396833B1 (en) * 1998-12-02 2002-05-28 Cisco Technology, Inc. Per user and network routing tables
US6389462B1 (en) * 1998-12-16 2002-05-14 Lucent Technologies Inc. Method and apparatus for transparently directing requests for web objects to proxy caches
US6771674B1 (en) * 1998-12-28 2004-08-03 3Com Corporation Method and system for forward error correction based on parallel streams
US6608830B1 (en) * 1999-01-12 2003-08-19 Yamaha Corporation Router
US6636898B1 (en) * 1999-01-29 2003-10-21 International Business Machines Corporation System and method for central management of connections in a virtual private network
US6449251B1 (en) 1999-04-02 2002-09-10 Nortel Networks Limited Packet mapper for dynamic data packet prioritization
US6563824B1 (en) * 1999-04-20 2003-05-13 3Com Corporation Apparatus and methods for determining the correct workstation within a LAN for a LAN modem to route a packet
US6731642B1 (en) * 1999-05-03 2004-05-04 3Com Corporation Internet telephony using network address translation
US6650641B1 (en) * 1999-07-02 2003-11-18 Cisco Technology, Inc. Network address translation using a forwarding agent
US7107347B1 (en) 1999-11-15 2006-09-12 Fred Cohen Method and apparatus for network deception/emulation
US7171473B1 (en) 1999-11-17 2007-01-30 Planet Exchange, Inc. System using HTTP protocol for maintaining and updating on-line presence information of new user in user table and group table
US6744767B1 (en) * 1999-12-30 2004-06-01 At&T Corp. Method and apparatus for provisioning and monitoring internet protocol quality of service
US20020078198A1 (en) * 2000-02-25 2002-06-20 Buchbinder John E. Personal server technology with firewall detection and penetration
US7058973B1 (en) 2000-03-03 2006-06-06 Symantec Corporation Network address translation gateway for local area networks using local IP addresses and non-translatable port addresses
US6779035B1 (en) * 2000-03-06 2004-08-17 Microsoft Corporation Application programming interface and generalized network address translator for translation of transport-layer sessions
US6880089B1 (en) * 2000-03-31 2005-04-12 Avaya Technology Corp. Firewall clustering for multiple network servers
US7814208B2 (en) * 2000-04-11 2010-10-12 Science Applications International Corporation System and method for projecting content beyond firewalls
US20020120760A1 (en) * 2000-05-26 2002-08-29 Gur Kimchi Communications protocol
US7146410B1 (en) * 2000-06-07 2006-12-05 Nortel Networks Limited System and method for executing control protocols among nodes in separate IP networks
US20020037723A1 (en) * 2000-06-08 2002-03-28 Adam Roach Refreshing service profile information using third-party SIP register messages
US20020042832A1 (en) * 2000-08-14 2002-04-11 Fallentine Mark D. System and method for interoperability of H.323 video conferences with network address translation
WO2002017594A2 (en) * 2000-08-18 2002-02-28 Invicta Networks, Inc. Systems and methods for distributed network protection
US6944673B2 (en) * 2000-09-08 2005-09-13 The Regents Of The University Of Michigan Method and system for profiling network flows at a measurement point within a computer network
US7042876B1 (en) * 2000-09-12 2006-05-09 Cisco Technology, Inc. Stateful network address translation protocol implemented over a data network
US6892245B1 (en) * 2000-09-22 2005-05-10 Nortel Networks Limited Management information base for a multi-domain network address translator
US6697377B1 (en) * 2000-10-21 2004-02-24 Innomedia Pte Ltd. Method for communicating audio data in a packet switched network
US7133923B2 (en) * 2000-12-11 2006-11-07 Acme Packet, Inc. System and method for assisting in controlling real-time transport protocol flow through multiple networks via screening
US6928082B2 (en) * 2001-03-28 2005-08-09 Innomedia Pte Ltd System and method for determining a connectionless communication path for communicating audio data through an address and port translation device
WO2002073923A2 (en) * 2001-02-20 2002-09-19 Innomedia Pte Ltd. Device and system for sending datagrams in a real time streaming media communication system
JP3917076B2 (en) * 2001-02-20 2007-05-23 アイボール ネットワークス インコーポレイテッド Method and apparatus for enabling data transmission through a firewall
US6993012B2 (en) * 2001-02-20 2006-01-31 Innomedia Pte, Ltd Method for communicating audio data in a packet switched network
WO2002076003A2 (en) * 2001-03-19 2002-09-26 Imesh Ltd. System and method for peer-to-peer file exchange mechanism from multiple sources
US7143190B2 (en) * 2001-04-02 2006-11-28 Irving S. Rappaport Method and system for remotely facilitating the integration of a plurality of dissimilar systems
US7272650B2 (en) * 2001-04-17 2007-09-18 Intel Corporation Communication protocols operable through network address translation (NAT) type devices
US20020184316A1 (en) * 2001-04-17 2002-12-05 Thomas Huw K. System and method for MAPI client server communication
US7085267B2 (en) * 2001-04-27 2006-08-01 International Business Machines Corporation Methods, systems and computer program products for translating internet protocol (IP) addresses located in a payload of a packet
WO2002098075A1 (en) * 2001-05-25 2002-12-05 Mitsubishi Denki Kabushiki Kaisha Internet communication system, internet communication method, session control server, communication adapter, communication relay server and program
US20030009561A1 (en) * 2001-06-14 2003-01-09 Sollee Patrick N. Providing telephony services to terminals behind a firewall and /or network address translator
US7068655B2 (en) * 2001-06-14 2006-06-27 Nortel Networks Limited Network address and/or port translation
US7684317B2 (en) * 2001-06-14 2010-03-23 Nortel Networks Limited Protecting a network from unauthorized access
JP2003018523A (en) * 2001-07-03 2003-01-17 Canon Inc Information management system and method of managing information, imaging device and method of controlling the same, program, and storage medium
US6654882B1 (en) * 2002-05-24 2003-11-25 Rackspace, Ltd Network security system protecting against disclosure of information to unauthorized agents
US9497168B2 (en) * 2002-07-30 2016-11-15 Avaya Inc. Method and apparatus for supporting communications between a computing device within a network and an external computing device
TWI234969B (en) * 2002-11-26 2005-06-21 Ind Tech Res Inst Dynamic network address translation system and method of transparent private network device
TWI263425B (en) * 2003-01-14 2006-10-01 Admtek Inc Router and packet transmission method
TWI235572B (en) * 2003-12-19 2005-07-01 Inst Information Industry Method of IPsec packet routing, NAPT device and storage medium using the same
JP2007526689A (en) * 2004-02-19 2007-09-13 コーニンクレッカ フィリップス エレクトロニクス エヌ ヴィ Initiating a communication session from a first computer network to a second computer network
KR100603562B1 (en) * 2004-05-14 2006-07-24 삼성전자주식회사 Apparatus and method for voice processing of voice over internet protocol
US20060288411A1 (en) * 2005-06-21 2006-12-21 Avaya, Inc. System and method for mitigating denial of service attacks on communication appliances
JP2008085470A (en) * 2006-09-26 2008-04-10 Fujitsu Ltd Ip application service provision system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1997040610A2 (en) * 1996-04-24 1997-10-30 Northern Telecom Limited Internet protocol filter
WO2000078008A1 (en) * 1999-06-15 2000-12-21 Ssh Communications Security Ltd A method and arrangement for providing security through network address translations using tunneling and compensations
WO2002003217A1 (en) * 2000-06-30 2002-01-10 Net2Phone System, method, and computer program product for resolving addressing in a network including a network address translator
WO2002011400A1 (en) * 2000-07-28 2002-02-07 Ridgeway Systems And Software Limited Audio-video telephony with firewalls and network address translation

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
ROSENBERG J, SCHULZRINNE H: "SIP Traversal through Residential and Enterprise NATs and Firewalls", INTERNET DRAFT, 2 March 2001 (2001-03-02), XP002245049, Retrieved from the Internet <URL:http://www.watersprings.org/pub/id/draft-davies-fw-nat-traversal-00.txt> [retrieved on 20030619] *
SCHULZRINNE H ET AL: "THE SESSION INITIATION PROTOCOL: INTERNET-CENTRIC SIGNALING", IEEE COMMUNICATIONS MAGAZINE, IEEE SERVICE CENTER. PISCATAWAY, N.J, US, vol. 38, no. 10, October 2000 (2000-10-01), pages 134 - 141, XP000969736, ISSN: 0163-6804 *

Also Published As

Publication number Publication date
US20140013412A1 (en) 2014-01-09
US20130297809A1 (en) 2013-11-07
US8484359B2 (en) 2013-07-09
US20070192508A1 (en) 2007-08-16
US20030009561A1 (en) 2003-01-09
EP1921823A1 (en) 2008-05-14
US20120311163A1 (en) 2012-12-06
WO2002103981A2 (en) 2002-12-27
US8108553B2 (en) 2012-01-31
EP1446929A2 (en) 2004-08-18
US8244876B2 (en) 2012-08-14
US20070094412A1 (en) 2007-04-26

Similar Documents

Publication Publication Date Title
WO2002103981A3 (en) Providing telephony services to terminals behind a firewall and/or network address translator
AU2005201075B2 (en) Apparatus and method for voice processing of voice over internet protocol (VOIP)
KR100511479B1 (en) SIP service method in network with NAT
CA2422764A1 (en) Communications system using a proxy interface agent
US9203688B2 (en) VoIP service system using NAT and method of processing packet therein
WO2004063849A3 (en) Routing calls through a network
WO2002082763A3 (en) System and method for establishing channels for a real time media streaming communication
CA2435699A1 (en) Methods for discovering network address and port translators
CA2401103A1 (en) Network address translation gateway for local area networks using local ip addresses and non-translatable port addresses
AU2003247787A1 (en) System and method for dynamic simultaneous connection to multiple service providers
JP2001358778A (en) Communication system, communication gateway and communicating method
AU7569701A (en) Audio-video telephony with firewalls and network address translation
TW200637263A (en) Method and system in an IP network for using a network address translation (NAT) with any type of application
MXPA02001026A (en) Address definition for ip telephony services.
US20060193308A1 (en) Providing packet communication service
GB2411789B (en) Processing session initiation protocol signalling in voice/data integrated switching system
FR2905812B1 (en) TRAVERSSEE OF NAT NAT ADDRESS TRANSLATION EQUIPMENT FOR SIP PROTOCOL SIGNALING MESSAGES
WO2003094366A3 (en) System and method for registering ip address of wireless communication device
KR20040066117A (en) Virtual gateway
AU2004282932A1 (en) Method and apparatus for enhanced internet telephony
US20080285485A1 (en) System and method for recording voip in a network address/port translation environment
WO2006119683A1 (en) Implementing method for mms nat traversing
WO2002071717A3 (en) Traversing firewalls and nats
TW200516923A (en) Method of media relay passing through Network Address Translation equipments to be decreased
GB2386502B (en) Apparatus and method for compulsively receiving multi-calls over internet protocol phones in internet protocol telephony system

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NO NZ OM PH PL PT RO RU SD SE SG SI SK SL TJ TM TN TR TT TZ UA UG UZ VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
DFPE Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed before 20040101)
WWE Wipo information: entry into national phase

Ref document number: 2002753172

Country of ref document: EP

REG Reference to national code

Ref country code: DE

Ref legal event code: 8642

WWP Wipo information: published in national office

Ref document number: 2002753172

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: JP

WWW Wipo information: withdrawn in national office

Country of ref document: JP