A method, apparatus and computer program product manage a plurality of vpn tunnels between a first cloud and a second cloud in a hybrid cloud environment is described. A method in a first vpn agent manages a first vpn tunnel in a plurality of vpn tunnels between a first cloud and a second cloud in a hybrid cloud environment. The ...

Aggregating traffic over multiple vpn connections is described. A first virtual private network (vpn) connection is established between a client device and a first vpn server via a a first access network of the client device. A second virtual private network (vpn) connection is established between the client device and a second vpn server via a second access network of ...

A streaming one time pad cipher using rotating ports for data encryption uses a one time pad (otp) to establish multiple secure point-to-point connections. This can be used to implement a streaming otp point-to-point firewall, virtual private network or other communications facility for communicating secure information across one or more insecure networks.

A first customer edge network device receives an encapsulated packet that includes inner headers comprising source address information for a first service running on a first computing apparatus in a first home cloud and destination address information for a second service running on a second computing apparatus in a second home cloud. The customer edge network device inserts a predetermined ...

A method is implemented by a network device functioning as a provider edge (pe) device to determine a designated forwarder (df) for sending broadcast, unknown unicast or multicast (bum) traffic to a customer edge (ce) device, which is connected to a plurality of pe devices in an ethernet virtual private network (evpn) instance on a given ethernet segment. The method ...

This invention relates to innovative method and system based on device dna to determine geographic region properties of a media user which will not be masked through proxy or virtual private network (vpn) for media content delivery through internet.

Systems and methods for independently secured storage are described. In one embodiment, a storage device includes a network adapter to discover a remote storage device and a virtual private network (vpn) client to establish a secure connection between the storage device and the remote storage device. In some cases, the secure connection includes a point-to-point connection between the storage device ...

The present disclosure is directed towards systems and methods for validation of a secure socket layer (ssl) certificate of a server for clientless ssl virtual private network (vpn) access. An intermediary device can receive a first request from a client for a clientless ssl vpn connection to a first server. The intermediary device can determine, using a preconfigured policy, that ...

A scalable access filter that is used together with others like it in a virtual private network to control access by users at clients in the network to information resources provided by servers in the network. Each access filter uses a local copy of an access control data base to determine whether an access request is made by a user. ...

Aspects of the subject disclosure may include, for example, a method comprising transmitting, by a controller comprising a processor, a request to a server to enable initiation of a virtual private network session on behalf of devices other than the controller. The controller transmits authentication information to enable the server to validate the request, and receives a first list of ...

Methods and apparatus to route traffic in a virtual private network are disclosed herein. Example methods include replacing, by executing an instruction with a processor at a first provider router, a first next hop address included in first route information with a second next hop address. The first next hop address identifies a first edge router of a plurality of ...

The present invention discloses methods and systems carried out at a network device for reducing network congestion by establishing an aggregated connection, wherein the aggregated connection comprise a plurality of virtual private network (vpn) tunnels. The system further comprises assigning default weights to the plurality of vpn tunnels along with transmitting and receiving data packets of a data session through ...

Various embodiments establish a virtual private network (vpn) between a remote network and a private network. In one embodiment, a first system in the remote network establishes a connection with a central system through a public network. The central system is situated between the first system and a second system in the private network. The first system receives, from the ...

Disclosed are various approaches for providing on-demand virtual private network (vpn) connectivity on a per-application basis. First, an application is determined to have begun execution on a computing device. The application is then identified. A determination that the application is authorized to access a vpn connection is made. Subsequently, the vpn connection is initiated.

Various aspects of the disclosure relate to providing a per-application policy-controlled virtual private network (vpn) tunnel. In some embodiments, tickets may be used to provide access to an enterprise resource without separate authentication of the application and, in some instances, can be used in such a manner as to provide a seamless experience to the user when reestablishing a per-application ...

Various embodiments establish a virtual private network (vpn) between a remote network and a private network. In one embodiment, a first system in the remote network establishes a connection with a central system through a public network. The central system is situated between the first system and a second system in the private network. The first system receives, from the ...

System and method for providing secure connections between a point of sale (pos) system and a datacenter. Upon initiation of a support event associated with the pos system, a gateway device may determine an available block of internet protocol (ip) addresses for the merchant location, e. G., by accessing information stored in a shared storage location. The gateway device may ...

High-level network policies that represent a virtual private network (vpn) as a high-level policy model are received. The vpn is to provide secure connectivity between connection sites of the vpn based on the high-level network policies. The high-level network policies are translated into low-level device configuration information represented in a network overlay and used for configuring a network underlay that ...

A computer device may include logic configured to generate a virtualized environment for a customer; receive a request to provide a route reflector service for the customer; and generate a virtual route reflector on the generated virtualized environment, in response to receiving the request to provide the route reflector service for the customer. The logic may further be configured to ...

System and method for providing secure machine to machine, m2m, communications comprising a device management, dm, server configured to obtain credentials of one or more m2m devices and provision the one or more m2m devices with credentials of a virtual private network, vpn. An application programming interface, api. A vpn server comprising a first communications interface configured ...

Examples of authorizing application access to a virtual private network are disclosed. In one example implementation according to aspects of the present disclosure, a method may include connecting, by a computing system, electronically to a virtual private network (vpn) by sending authentication credentials, and receiving, by the computing system, a set of application policies from an application policy database in ...