Split-tunneling for clientless SSL-VPN sessions with zero-configuration
US10812448B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jan 26, 2018 |
| Grant date | Oct 20, 2020 |
| Priority date | — |
| Expiry date | Jan 7, 2039 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L2101/35
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
Described embodiments provide systems and methods for rewriting an URL in a message transmitted via a clientless SSL VPN session. An intermediary device may identify, in a HTTP response transmitted via the session, an absolute URL that includes a hostname of the server. The device may determine that the absolute URL includes an intranet domain name. The device may generate, responsive to the determination, a URL segment by combining a unique string corresponding to the hostname of the server, with a hostname of the device. The device may rewrite, responsive to the determination, the absolute URL by replacing the server hostname in the absolute URL with the generated URL segment. A DNS server for the client may be configured with a DNS entry comprising a wildcard combined with the device hostname, to cause the DNS server to resolve the rewritten absolute URL to an IP address of the device.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.