Abstract: A request is received to establish a VPN session with a server-side system from at least one client computer out of a plurality of client computers coupled to a modem within a client-side system. The request contains login details for a user of the at least one client computer. A network address, such as an IP (Internet Protocol) or MAC (Media Access Control) address of the at least one client computer is then determined. The user is authenticated based on the user login details, and a VPN tunnel is established over the modem between the at least one client computer having the network address and the server-side system. The same method is then used for the remainder of the plurality of client computers coupled to the modem within the client-side system.

Abstract: The system for content filtering includes at least one content server that stores content. The system also includes at least one client computer configured to transmit a request for the content to the at least one content server. The request contains an address of the content server and a port number associated with such a request for the content. A gateway is coupled to the at least one client computer. The gateway is configured to receive and renumber the request with a new rarely used port number associated with a filter privilege of a user of the at least one client computer. The system also includes a content filtering server, configured to block restricted content based on the filter privilege. Finally, a switch is coupled to the gateway, the content filtering server, and the content server. The switch is configured to listen for the request on the rarely used port number and to redirect the request to the content filtering server.

Abstract: The system for content filtering includes at least one content server that stores content. The system also includes at least one client computer configured to transmit a request for the content to the at least one content server. The request contains an address of the content server and a port number associated with such a request for the content. A gateway is coupled to the at least one client computer. The gateway is configured to receive and renumber the request with a new rarely used port number associated with a filter privilege of a user of the at least one client computer. The system also includes a content filtering server, configured to block restricted content based on the filter privilege. Finally, a switch is coupled to the gateway, the content filtering server, and the content server. The switch is configured to listen for the request on the rarely used port number and to redirect the request to the content filtering server.

Abstract: Data is received by a service provider that is indicative of a selected server-side system and a selected client-side system between which a VPN is to be established. Security settings are then automatically determined for the client-side system based at least partially on the data. The security settings are preferably public and private keys and/or a Digital Certificate. VPN configuration details, including the security settings, are then automatically transmitted to the client-side system. The client side system then uses the configuration details to automatically configure itself to establish a secure VPN tunnel between the server-side system and itself. VPN configuration details may also be automatically transmitted to a VPN concentrator within the server-side system. A Virtual Private Network tunnel is subsequently established between the client-side system and the server-side system, and the tunnel's operation verified. A computer program product for configuring a VPN system is also provided.

Abstract: A modem that includes a list of the multiple domain names is firstly provided. Each of the domain names is associated with a different Broadband Service Node (BSN). A PPPoE session is established, and an authentication request, containing the identifier and a generic password, is transmitted from a modem to multiple domain names over the PPPoE network. Subsequently, authorization is received from at least one of the domain names. The authorization preferably comprises at least one static Internet Protocol (IP) address. The modem then obtains full configuration details from an Internet Service Provider (ISP). The invention also provides a system and a computer program product for provisioning broadband service in a Point-to-Point Protocol Over Ethernet (PPPoE) network.

Abstract: A host name query is received by a modem from a client computer. The host name query is simultaneously transmitted from the modem to a plurality of Domain Name System (DNS) servers. A response is returned to the client computer from the modem, where the response is based on the host name query and any responses received from the DNS servers. In a preferred embodiment at least one address associated with the host name query is acquired from the DNS servers. The client computer then sends a request for content to the address. If more than one address is returned, all but one of the addresses is eliminated. This can be done by rejecting all but the most recent address, or rejecting all addresses not provided by a service provider DNS server.

Abstract: According to the invention there is provided a computer implemented method for provisioning broadband service in a Point-to-Point Protocol over Ethernet (PPPoE) network. A PPPoE session is established, and a username is randomly chosen from a list of usernames stored on a modem. An authentication request is then transmitted from the modem to a Broadband Remote Access Server (BRAS) over a PPPoE network. The BRAS subsequently load balances the authentication request between the multiple Broadband Service Nodes (BSNs) and transmits the authentication request to one of the multiple BSNs determined by the load balancing. The modem then receives authorization from at least one of the multiple BSNs. The authorization preferably comprises a temporary dynamic Internet Protocol (IP) address. Full configuration details, including a static IP address, are then obtained from an Internet Service Provider (ISP). The invention also provides a system and computer program product for performing the above.

Abstract: A request is received to establish a VPN session with a server-side system from at least one client computer out of a plurality of client computers coupled to a modem within a client-side system. The request contains login details for a user of the at least one client computer. A network address, such as an IP (Internet Protocol) or MAC (Media Access Control) address of the at least one client computer is then determined. The user is authenticated based on the user login details, and a VPN tunnel is established over the modem between the at least one client computer having the network address and the server-side system. The same method is then used for the remainder of the plurality of client computers coupled to the modem within the client-side system.

Abstract: Data is received by a service provider that is indicative of a selected server-side system and a selected client-side system between which a VPN is to be established. Security settings are then automatically determined for the client-side system based at least partially on the data. The security settings are preferably public and private keys and/or a Digital Certificate. VPN configuration details, including the security settings, are then automatically transmitted to the client-side system. The client side system then uses the configuration details to automatically configure itself to establish a secure VPN tunnel between the server-side system and itself. VPN configuration details may also be automatically transmitted to a VPN concentrator within the server-side system. A Virtual Private Network tunnel is subsequently established between the client-side system and the server-side system, and the tunnel's operation verified. A computer program product for configuring a VPN system is also provided.

Abstract: A host name query is received by a modem from a client computer. The host name query is simultaneously transmitted from the modem to a plurality of Domain Name System (DNS) servers. A response is returned to the client computer from the modem, where the response is based on the host name query and any responses received from the DNS servers. In a preferred embodiment at least one address associated with the host name query is acquired from the DNS servers. The client computer then sends a request for content to the address. If more than one address is returned, all but one of the addresses is eliminated. This can be done by rejecting all but the most recent address, or rejecting all addresses not provided by a service provider DNS server.

Abstract: A modem that includes a list of the multiple domain names is firstly provided. Each of the domain names is associated with a different Broadband Service Node (BSN). A PPPoE session is established, and an authentication request, containing the identifier and a generic password, is transmitted from a modem to multiple domain names over the PPPoE network. Subsequently, authorization is received from at least one of the domain names. The authorization preferably comprises at least one static Internet Protocol (IP) address. The modem then obtains full configuration details from an Internet Service Provider (ISP). The invention also provides a system and a computer program product for provisioning broadband service in a Point-to-Point Protocol Over Ethernet (PPPoE) network.

Abstract: According to the invention there is provided a computer implemented method for provisioning broadband service in a Point-to-Point Protocol over Ethernet (PPPoE) network. A PPPoE session is established, and a username is randomly chosen from a list of usernames stored on a modem. An authentication request is then transmitted from the modem to a Broadband Remote Access Server (BRAS) over a PPPoE network. The BRAS subsequently load balances the authentication request between the multiple Broadband Service Nodes (BSNs) and transmits the authentication request to one of the multiple BSNs determined by the load balancing. The modem then receives authorization from at least one of the multiple BSNs. The authorization preferably comprises a temporary dynamic Internet Protocol (IP) address. Full configuration details, including a static IP address, are then obtained from an Internet Service Provider (ISP). The invention also provides a system and computer program product for performing the above.