US 12,335,351 B1
Edge networks for surrogate browsing and direct traffic via proxy
Rumen Nikolov Telbizov, Burnaby (CA); Matthew Gordon Mercer, Rossland (CA); Christopher Turra, Port Coquitlam (CA); Omid Ehtemam-Haghighi, North Saanich (CA); and Hugo Marius Slabbert, Mission (CA)
Assigned to Menlo Security, Inc., Mountain View, CA (US)
Filed by Menlo Security, Inc., Mountain View, CA (US)
Filed on Dec. 4, 2024, as Appl. No. 18/968,906.
Claims priority of provisional application 63/626,318, filed on Jan. 29, 2024.
Claims priority of provisional application 63/606,540, filed on Dec. 5, 2023.
Int. Cl. H04L 67/56 (2022.01); H04L 12/46 (2006.01); H04L 45/302 (2022.01)
CPC H04L 67/56 (2022.05) [H04L 12/4633 (2013.01); H04L 45/306 (2013.01)] 21 Claims
OG exemplary drawing
 
1. A system, comprising:
a first server, comprising at least one processor and at least one memory, configured to:
process a received first IPv4 packet, including by:
inserting data into an IPV4 field of the first IPv4 packet to form an augmented IPv4 packet;
translating the augmented IPv4 packet to a first IPv6 packet, wherein the first IPv6 packet includes the inserted data; and
encapsulating the first IPv6 packet to form an encapsulation; and
transmit the encapsulation to a second server;
the second server, configured to:
receive the encapsulation from the first server; and
determine a third server to which the encapsulation should be routed and transmit the encapsulation to the third server; and
the third server, configured to:
receive the encapsulation from the second server;
process the encapsulation to form a second IPv6 packet;
translate the second IPv6 packet to a second IPv4 packet, including by stripping options data; and
select a public IP address and transmit the second IPv4 packet using the selected public IP address as a source address of the second IPv4 packet.