| CPC H04L 63/0272 (2013.01) [H04L 9/0869 (2013.01); H04L 9/32 (2013.01); H04L 63/0435 (2013.01); H04L 63/08 (2013.01); H04L 63/123 (2013.01)] | 20 Claims |
|
1. A method in a virtual private network (VPN) environment, comprising:
configuring a first server to receive, from a second server, an encrypted authentication packet to enable the first server and the second server to conduct an authentication process to authenticate a client device communicating with the second server to allow the client device to receive VPN services from the second server, wherein
the first server and the second server communicate utilizing a remote authentication dial-in user service (RADIUS) protocol, and
the encrypted authentication packet, encrypted utilizing a predetermined encryption algorithm, includes (i) a crypted code field indicating that a portion of the encrypted authentication packet is encrypted, and (ii) a crypted payload including an encrypted initial authentication packet, which comprises (a) a code field indicating a type, from a plurality of types, associated with the encrypted initial authentication packet, and (b) a payload field that indicates client information associated with authenticating the client device; and
configuring the first server to transmit, to the second server, a response based at least in part on determining that the portion of the encrypted authentication packet is encrypted and on decrypting, utilizing a predetermined decryption algorithm, the encrypted initial authentication packet, the response indicating successful authentication of the client device, unsuccessful authentication of the client device, or a request for additional information from the second server.
|