Security gateway communication

摘要

A gateway device and methods performed therein to prevent unauthorized client devices from connecting to the host network of the gateway device is described. The gateway device does not respond right away to an individual client message sent to the gateway device. Instead, the gateway device only responds to a predetermined sequence of the client messages, which is only known to the gateway device and authorized client devices. Because the gateway device will not respond to random client messages and the likelihood that an unauthorized client device can correctly guess the predetermined sequence of the client messages is low, the risk of a malicious party being able to hack into the host network, for example, by using port scanning techniques, can be mitigated.

主权项

1. A method for establishing a communication channel between a client device communicatively coupled to a client interface of the gateway device and a server communicatively coupled to a host interface of the gateway device, the method comprising;
sending, by the client device, a predetermined sequence of client synchronize messages to a plurality of client ports on the client interface of the gateway device in a predetermined client port order; receiving a client response message from the gateway device only after the predetermined sequence of client synchronize messages has been sent the client response message being received on a port of the client device that did not send any of the client synchronize messages; and establishing a communication channel to communicate user messages between the client device and the server, the communication channel being established only after the gateway device has received a server response message on the host interface in response to the gateway device sending a predetermined sequence of server synchronize messages to the server.