Abstract: Systems and methods provide for management of a gateway. In one embodiment, a method includes: in response to a request from a client device, establishing, by a computer system implementing a gateway to a private network, a network tunnel between the client device and the gateway; and starting a firewall service with a set of firewall rules on the computer system for selectively blocking and allowing network traffic between the client device and one or more network devices in the private network.

Abstract: Embodiments of the present disclosure help protect network devices from unauthorized access. Among other things, embodiments of the disclosure allow full access to application servers and other network devices that a client is allowed to access, while preventing all access (or even knowledge) of network devices the client is not allowed to access.

Abstract: Multiple virtual private network connections to be created without the need for administrative privileges, and network traffic to be routed using a single virtual adapter instead of a dedicated virtual adapter for each virtual network connection.

Abstract: In one embodiment, a computer implemented method provides a client computing device network access to a private network by a network traffic manager, and the method includes: obtaining context parameters related to a context of the client computing device; selecting as a function of the context parameters one or more policies as selected policies, wherein each policy is associated with one or more network entitlement rules defining network access rules to a networking device or an application in the private network according to the policy; retrieving the one or more network entitlement rules associated with the selected policies; and providing the network traffic manager with the one or more network entitlement rules, thereby providing the client computing device the network access.

Abstract: A method is provided, in one embodiment, which is performed on a client computing device, the method including: connecting a client computing device with a private network, wherein the private network comprises a plurality of name resolving servers, and each name resolving server is configured to resolve name requests for networking devices in a respective segment of a plurality of segments of the private network; receiving a first name request from a first application on the client computing device; in response to receiving the first name request, forwarding the first name request simultaneously to the plurality of name resolving servers; and selecting a name resolution that is first received from the plurality of name resolving servers in response to the first name request.

Abstract: A computer-implemented method, including: in response to a request from a client device, establishing a network tunnel between the client device and a gateway, the gateway implementing a firewall including firewall rules for selectively blocking and allowing network traffic between the client device and one or more network devices in a private network; in response to an update to a policy after establishing the network tunnel, receiving a first token; and in response to receiving the first token, updating at least one of the firewall rules while the network tunnel is active.

Abstract: Systems and methods provide for management of a gateway. In one embodiment, a method includes: in response to a request from a client device, establishing, by a computer system implementing a gateway to a private network, a network tunnel between the client device and the gateway; and starting a firewall service with a set of firewall rules on the computer system for selectively blocking and allowing network traffic between the client device and one or more network devices in the private network.

Abstract: Multiple virtual private network connections to be created without the need for administrative privileges, and network traffic to be routed using a single virtual adapter instead of a dedicated virtual adapter for each virtual network connection.

Abstract: A method is provided, in one embodiment, which is performed on a client computing device, the method including: connecting a client computing device with a private network, wherein the private network comprises a plurality of name resolving servers, and each name resolving server is configured to resolve name requests for networking devices in a respective segment of a plurality of segments of the private network; receiving a first name request from a first application on the client computing device; in response to receiving the first name request, forwarding the first name request simultaneously to the plurality of name resolving servers; and selecting a name resolution that is first received from the plurality of name resolving servers in response to the first name request.

Abstract: Embodiments of the present disclosure help protect network devices from unauthorized access. Among other things, embodiments of the disclosure allow full access to application servers and other network devices that a client is allowed to access, while preventing all access (or even knowledge) of network devices the client is not allowed to access.

Abstract: In one embodiment, a computer implemented method provides a client computing device network access to a private network by a network traffic manager, and the method includes: obtaining context parameters related to a context of the client computing device; selecting as a function of the context parameters one or more policies as selected policies, wherein each policy is associated with one or more network entitlement rules defining network access rules to a networking device or an application in the private network according to the policy; retrieving the one or more network entitlement rules associated with the selected policies; and providing the network traffic manager with the one or more network entitlement rules, thereby providing the client computing device the network access.

Abstract: Among other things, embodiments of the present disclosure allow multiple virtual private network connections to be created without the need for administrative privileges, and allow network traffic to be routed using a single virtual adapter instead of a dedicated virtual adapter for each virtual network connection.

Abstract: A method is provided, in one embodiment, which is performed on a client computing device, the method comprising: connecting the client with a plurality of segments of a private network, wherein the private network comprises a plurality of name resolving servers; registering the client as primary name resolving server for serving name requests for names in the private network received from applications on the client; and then forwarding the received name requests simultaneously to the plurality of name resolving servers.

Abstract: Embodiments of the present disclosure help protect network devices from unauthorized access. Among other things, embodiments of the disclosure allow full access to application servers and other network devices that a client is allowed to access, while preventing all access (or even knowledge) of network devices the client is not allowed to access.

Abstract: In one embodiment, a computer implemented method provides a client computing device network access to a private network by a network traffic manager, and the method includes: obtaining context parameters related to a context of the client computing device; selecting as a function of the context parameters one or more policies as selected policies, wherein each policy is associated with one or more network entitlement rules defining network access rules to a networking device or an application in the private network according to the policy; retrieving the one or more network entitlement rules associated with the selected policies; and providing the network traffic manager with the one or more network entitlement rules, thereby providing the client computing device the network access.

Abstract: Systems and methods provide for scaling and management of a gateway. In one embodiment, a method includes: in response to a request from a client device, establishing, by a computer system implementing a gateway to a private network, a network tunnel between the client device and the gateway; and after establishing the network tunnel, starting a separate firewall service with a separate set of firewall rules on the computer system for selectively blocking and allowing network traffic between the client device and one or more network devices in the private network.

Abstract: A computer-implemented method, including: upon a request from a client device, establishing, by a computer system implementing a gateway to a private network, a network tunnel between the client device and the gateway; the gateway further implementing a firewall including firewall rules for selectively blocking and allowing network traffic between the client device and one or more network devices in the private network; upon a triggering of a firewall rule by a request for access to the private network by the client device and before applying the firewall rule, checking, by the computer system, if a corresponding condition is met; and if the condition is not met, then, by the computer system, sending to the client device an action to be performed by the client device.

Abstract: Embodiments of the present disclosure help protect network devices from unauthorized access. Among other things, embodiments of the disclosure allow full access to application servers and other network devices that a client is allowed to access, while preventing all access (or even knowledge) of network devices the client is not allowed to access.