Abstract
A method for secure communication between a local area network (32) and a wide area network (10) comprises integrating a NAT functionality (29) in a firewall (28) associated with the local area network, wherein the NAT functionality is suitable to translate the source port of outgoing data packets with a NAT port value obtained by adding to a NAT offset value the value of the session ID used in a session database. When reply data packets coming from the wide area network are received by the firewall, the session ID is extracted from the NAT port value and is used for directly pointing to the session database, thus reducing the time required to recognize the session.
Original language | English |
---|---|
Patent number | WO2007076883 |
IPC | H04L 29/ 06 A I |
Priority date | 30/12/05 |
State | Published - 12 Jul 2007 |