	US 12,034,707 B2
	Randomizing server-side addresses
David A. Maluf, Mountain View, CA (US); Srinath Gundavelli, San Jose, CA (US); Pascal Thubert, Roquefort les Pins (FR); Pradeep Kumar Kathail, Los Altos, CA (US); Eric Levy-Abegnoli, Valbonne (FR); Eric Voit, Bethesda, MD (US); and Ali Sajassi, Alamo, CA (US)
Assigned to Cisco Technology, Inc., San Jose, CA (US)
Filed by Cisco Technology, Inc., San Jose, CA (US)
Filed on Feb. 1, 2023, as Appl. No. 18/104,603.
Application 18/104,603 is a continuation in part of application No. 17/530,244, filed on Nov. 18, 2021, granted, now 11,683,286.
Claims priority of provisional application 63/333,641, filed on Apr. 22, 2022.
Prior Publication US 2023/0179579 A1, Jun. 8, 2023
This patent is subject to a terminal disclaimer.
Int. Cl. H04L 9/40 (2022.01); H04L 61/2521 (2022.01); H04L 61/2539 (2022.01); H04L 61/4511 (2022.01)

CPC H04L 63/0421 (2013.01) [H04L 61/2525 (2013.01); H04L 61/2539 (2013.01); H04L 61/4511 (2022.05)]

20 Claims

1. A method performed at least partly by an agent that communicates with a Domain Name System (DNS) service to anonymize Internet Protocol (IP) addresses of endpoints using random IP addresses, the method comprising:

receiving a DNS request to resolve a domain name on behalf of a client device;

providing the DNS request to a DNS resolver of the DNS service;

receiving, from the DNS service, an indication of an actual IP address that corresponds to the domain name and is usable to communicate with an endpoint;

generating a random IP address by:

populating a first set of bits of the random IP address with a gateway IP address of the gateway; and

populating a second set of bits of the random IP address with randomly generated IP address bits;

creating a mapping between the random IP address to the actual IP address of the endpoint; and

providing the mapping to a gateway that manages connections to the endpoint.