| 摘要 |
A computer communication system including a client computer with an installed virtual private network (VPN) client and located in a public network, a server computer located in a corporate network, a web server remote from the client computer, a gateway computer located in the corporate network, and a VPN server computer located in the corporate network. The computer communication system is adapted to run following steps of providing a safe VPN communication connection between the client and the server computers: the client computer, using a WEB browser, downloads an application from the VPN server computer, and the downloaded application automatically configures the VPN client installed on the client computer and establishes a tunnelled connection from the client computer to the corporate network. All packets generated by the installed VPN client are forwarded through the tunnelled connection via the gateway computer to the VPN server in the corporate network. |
| 主权项 |
1. A computer communication system, comprising:
a client computer running an operating system with an integrated PPP daemon that has a built in virtual private network (VPN) client and located in a public network; at least one server computer located in a corporate network; a web server remote from said client computer; a SSL or IPSec gateway computer located in said corporate network, said SSL or IPSec gateway comprising a packet filter configured to limit access to and from the client computer to resources in the corporate network; and a VPN server computer located in said corporate network, wherein the computer communication system is configured to provide a safe VPN communication connection between said client and at least one of said server computers, wherein said client computer, using a WEB browser, downloads a configuration file having parameters for configuring the built-in VPN client and a second downloaded VPN client application that is stored on a non-transitory computer readable medium to be run on the client computer, from said web server over the Internet, the executable program/applet type application being executable within the client computer's WEB browser, wherein said downloaded VPN client application is programmed to perform the following functions: automatically configuring the PPP daemon that is used as the VPN client of the operating system installed on said client computer, establishing an SSL or IPSec encrypted tunnel connection from said client computer to said SSL or IPSec gateway computer which is part of said corporate network, and obtaining PPP packets from the PPP daemon, containing payload data of applications running locally on the client computer using a Pty-pseudo terminal, wherein all the PPP packets containing the payload data generated by the PPP daemon are encrypted at the client computer by the downloaded VPN client application and sent through said tunnel connection to the SSL or IPSec gateway computer and are further forwarded via the SSL or IPSec gateway computer to the VPN server in said corporate network, in order to set a fully transparent VPN tunnel between the client computer and the corporate network. |
