Patent attributes
The present invention provides a tunnel access server facilitating communications between a user element and protected network resources, wherein a tunneling session is established between the tunnel access server and the user element. To allow the user element to send packets to a protected network resource, the tunnel access server will send a target network address to the user element, and the user element will use the target network address for sending packets to the protected network resource. The packets intended for the protected network resource are initially sent to the tunnel access server via the existing tunneling session. When the user element moves from one access network to another, the tunnel access server will reserve the target network address previously assigned to the user element and reassign the target network address to the user element over a second tunneling session established over the new access network.
