	US 7,617,527 B2
	Architecture for virtual private networks
Henk J. Bots, Hollister, Calif. (US); William E. Hunt, Saratoga, Calif. (US); Derek Palma, Union City, Calif. (US); and John Lawler, Sunnyvale, Calif. (US)
Assigned to Avaya Inc., Basking Ridge, N.J. (US)
Filed on Dec. 30, 2005, as Appl. No. 11/320,955.
Application 11/320955 is a continuation of application No. 09/710691, filed on Nov. 09, 2000, granted, now 7,010,702, filed on Mar. 07, 2006.
Application 09/710691 is a continuation of application No. 08/874090, filed on Jun. 12, 1997, granted, now 6,226,748, filed on May 01, 2001.
Prior Publication US 2006/0129792 A1, Jun. 15, 2006
This patent is subject to a terminal disclaimer.
Int. Cl. G06F 21/00 (2006.01); H04L 9/28 (2006.01); H04K 1/00 (2006.01)

U.S. Cl. 726—15 [726/1; 713/153; 713/168; 708/203]

30 Claims

1. A method for sending a data packet from a source in a local area network (LAN) to a destination outside the LAN comprising the steps of:

receiving a data packet enroute from the source in the LAN to the destination;

determining if the source in the LAN and the destination are members of a virtual private network, and if so:

determining an encryption algorithm for messages sent between members of the virtual private network by accessing a portion of a memory that maintains information identifying various encryption algorithms to be utilized for data packets sent between members of various virtual private networks;

determining a compression algorithm for messages sent between members of the virtual private network by accessing a portion of the memory that maintains information identifying various compression algorithms to be utilized for data packets sent between members of the various virtual private networks;

executing the determined encryption algorithm on at least a payload portion of the data packet;

executing the determined compression algorithm on at least the payload portion of the data packet; and

forwarding the encrypted and compressed data packet to the destination outside the LAN.