摘要 |
Client packets sent from a client machine traverse several network domains to arrive at a server. Prior to leaving the client's network domain, the client's source address field in the packet header is encrypted the client's network address and the domain network address is appended to the source address field. Each traversed domain also encrypts the source header address of each received packet and appends its own network address. Packets sent from a server in response to the client request must traverse the network domains in the reverse order to the path taken by the client packets. When the packets cannot follow the reverse path due to a break between domains, the packets are tunnelled via an alternative route via other domains before resuming the original return path.
|