CN102148878B - IP (internet protocol) address allocation method, system and device - Google Patents
IP (internet protocol) address allocation method, system and device Download PDFInfo
- Publication number
- CN102148878B CN102148878B CN 201010108116 CN201010108116A CN102148878B CN 102148878 B CN102148878 B CN 102148878B CN 201010108116 CN201010108116 CN 201010108116 CN 201010108116 A CN201010108116 A CN 201010108116A CN 102148878 B CN102148878 B CN 102148878B
- Authority
- CN
- China
- Prior art keywords
- address
- authentication
- terminal
- equipment
- gateway device
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses an IP (internet protocol) address allocation method, which comprises the steps as follows: a private network IP address is allocated to a terminal accessing to a wireless local area network; when a service is launched by the terminal, if the launched service belongs to a first service, then the terminal uses the allocated private network IP address to access the launched service, and conversion between the private network IP and an external public network IP address is realized through a network address converter; if the launched service belongs to a second service, then authentication is implemented on the terminal; moreover, when the authentication is passed, a public network IP address is allocated to the terminal, and is informed to a gateway device; and the terminal uses the allocated public network IP address to access the launched service through the gateway device. The invention simultaneously discloses a terminal, a network system, a gateway device and a server. The method, system and the device can be used for not only guaranteeing the normal running of the service, but also can be used for better saving the public network IP address resource.
Description
Technical field
The present invention relates to wireless communication technology, particularly a kind of Internet protocol (IP, InternetProtocol) address distribution method, system and equipment.
Background technology
WLAN (wireless local area network) (WLAN, Wireless Local Area Network) is a kind of with the wireless access wide band technology of wireless channel as transmission medium, can realize wirelessly that terminal arrives the high-speed data access of local area network (LAN).
Fig. 1 is the configuration diagram of existing wlan network.As shown in Figure 1, access point (AP wherein, Access Point) is the terminal access device, support institute of electrical and electronic engineers (IEEE, Institute ofElectrical and Electronics Engineers) 802.11 correlation technique standard, access control point (AC, Access Control) is access control equipment, only allows the data flow of authorization terminal to pass through.AP or AC equipment can be used as the authentication points that terminal inserts, authentication, authentication, accounting server (AAA Server with the backstage, Authentication, Authorization, Accounting Server) link to each other, finish the authentication to terminal, have only through the terminal of authentication and could visit external network or application server etc. by wlan network.
Wlan network is when being terminal distribution IP address, usually adopt dynamic host allocation protocol (DHCP, Dynamic Host Configuration Protocol) carrying out dynamic IP addressing distributes, specifically, terminal is when connecting wlan network, and meeting is the corresponding AP equipment of association at first, and sends the DHCP request, Dynamic Host Configuration Protocol server then can be terminal distribution IP address, and this IP address is generally public network IP address.Dynamic Host Configuration Protocol server can be integrated in AC equipment or the AP equipment, also can arrange separately, is integrated in usually in the AC equipment in the wlan network.
Wlan network is mainly used in to terminal provides Internet service, and in the mobile network, each mobile operator has released many packet switchinges (PS, Packet Switching) territory business again, and terminal can be visited these PS territory business by the mobile network.In order to give full play to the advantages such as high bandwidth of wlan network, propose terminal in the prior art and also can visit these PS territory business by wlan network, correspondingly, just need to introduce new gateway device.Fig. 2 is the network architecture schematic diagram behind the existing introducing gateway device.As shown in Figure 2, after terminal is obtained public network IP address, when needs visit PS territory is professional, its public network IP address and relevant information are sent to gateway device by the mobile network, gateway device is to aaa server request authentication, and after authentication was passed through, terminal just can be visited PS territory business by gateway device.
But can there be certain problem in aforesaid way in actual applications, because:
Based on before introduction as can be known, when terminal inserts wlan network, for terminal distribution all be public network IP address usually, disconnect before wlan network connects, terminal will take this public network IP address always, like this, if terminal quantity is more, will cause the consumption of public network IP address very big, if and terminal is not initiated any business, so more can cause the unnecessary waste of public network IP address, and as well known to those skilled in the art, public network IP address resources such as existing IPV4 are very nervous.
For saving public network IP address resources, propose again in the prior art, can be earlier for being connected to the terminal distribution private network IP address in the wlan network, if terminal originating service, such as initiating PS territory business, terminal at first sends to gateway device with its private network IP address and relevant information by the mobile network so, afterwards, gateway device is to aaa server request authentication, after authentication is passed through, be the terminal distribution public network IP address again, terminal can utilize the public network IP address that distributes by gateway device visit PS territory business then.Follow-up, terminal also can be utilized the public network IP address visit Internet service of distributing.Though this mode can solve the problem of public network IP address resources waste to a certain extent, but, also brought new problem: be the private network IP address of terminal because gateway device preserves, and terminal access PS territory professional employed be public network IP address, that is to say, employed IP address is inconsistent when the IP address of the terminal of preserving in the gateway device and terminal carrying out service visit, so, it is which terminal is being carried out Operational Visit that gateway device will be determined to the end, thereby causes follow-up work such as charging normally to carry out.
Perhaps, after distributing private network IP address, if terminal is at first initiated Internet service, after authentication is passed through, be the terminal distribution public network IP address so, the public network IP address visit Internet service that the terminal utilization distributes.Follow-up, if terminal is further initiated PS territory business, terminal can send to gateway device by the mobile network with public network IP and the relevant information of distributing, and after authentication is passed through, by gateway device visit PS territory business.The inconsistent problem in employed IP address when though this mode can not cause the IP address of the terminal of preserving in the gateway device and terminal carrying out service visit, but Internet service is the more business of using at present, if use public network IP address to carry out the visit of Internet service, still can take a large amount of public network IP address resources, cause the anxiety of public network IP address resources.
Summary of the invention
In view of this, the present invention proposes a kind of IP address assignment method, terminal, network system, gateway device and server, not only can guarantee professional normally carrying out, and can save public network IP address resources preferably.
For achieving the above object, technical scheme of the present invention is achieved in that
A kind of IP address assignment method, for inserting the terminal distribution private network IP address of WLAN (wireless local area network) WLAN, when terminal originating service, this method comprises:
If the business of initiating is first kind business, the business initiated of the private network IP address visit that distributes of described terminal utilization then, and realize conversion between described private network IP address and the outside public network IP address by network address translation device;
If the business of initiating is the second class business, then described terminal is carried out authentication, and after authentication is passed through, be described terminal distribution public network IP address, and the public network IP address that distributes is notified to described gateway device; The public network IP address that described terminal utilization distributes is visited the business of initiating by described gateway device.
Preferably, described terminal is carried out authentication, and after authentication is passed through, is described terminal distribution public network IP address, and the public network IP address that distributes is notified to described gateway device comprises:
Described terminal is with the private network IP address distributed, the international mobile subscriber identity IMSI of self, the IP address of self place access control point AC equipment, and the service identification of the business of initiating sends to described gateway device; Described gateway device obtains the cell-phone number of described IMSI correspondence, and shines upon the corresponding relation between each information that receives;
Described gateway device sends to authentication, authentication, charging aaa server with the IP address of described cell-phone number, described private network IP address, described AC equipment, the request authentication;
Described aaa server utilizes described cell-phone number to obtain the CAMEL-Subscription-Information of described terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, and according to the IP address of described AC equipment, described private network IP address and authentication is sent to the AC equipment at described terminal place by the result;
The AC equipment at described terminal place is described terminal distribution public network IP address, and notifies described aaa server, simultaneously, and for described terminal is opened the IP address of the described gateway device of visit and the authority of port;
Described aaa server sends to described gateway device with private network IP address, public network IP address and the authentication of described terminal by the result.
Preferably, this method further comprises:
If authentication is not passed through, then described aaa server does not send to described gateway device by the result with described cell-phone number and authentication; Described gateway device is not given described terminal by result notification according to described cell-phone number with described authentication;
Perhaps, described aaa server is according to the IP address of described terminal place AC equipment, described private network IP address and authentication do not sent to the AC equipment at described terminal place by the result; The AC equipment at described terminal place is not given described terminal by result notification according to described private network IP address with described authentication.
Preferably, described first kind business is Internet service, and described second class is professional to be packet switching PS territory business.
A kind of terminal comprises:
Determining unit be used for to be determined the type of the business that described terminal is initiated, and will determine that result notification gives addressed location;
Described addressed location is used for working as the business of initiating and is the first kind when professional, the business of utilizing the visit of pre-assigned private network IP address to initiate, and realize conversion between described private network IP address and the outside public network IP address by network address translation device; When the business of initiating is second class business, utilize the public network IP address that distributes, visit the business of initiating by the gateway device of preserving the described public network IP address that distributes.
A kind of network system comprises:
Gateway device, be used for the information that receiving terminal reports, comprise private network IP address, the international mobile subscriber identity IMSI of terminal, the IP address of place access control point AC equipment, and the service identification of the business of initiating, determine the cell-phone number of described IMSI correspondence, and the corresponding relation between each information of receiving of mapping, the IP address of described cell-phone number, described private network IP address and described AC equipment is sent to authentication, authentication, charging aaa server, the request authentication;
Described aaa server, be used for utilizing described cell-phone number to obtain the CAMEL-Subscription-Information of described terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, according to the IP address of described AC equipment, described private network IP address and authentication are sent to the AC equipment at described terminal place by the result;
The AC equipment at described terminal place is used to described terminal distribution public network IP address, and is notified to described aaa server, simultaneously, and for described terminal is opened the IP address of the described gateway device of visit and the authority of port;
Described aaa server is further used for, and described private network IP address, described public network IP address and authentication are sent to described gateway device by the result.
Preferably, described aaa server is further used for, if authentication is not passed through, described cell-phone number and authentication is not sent to described gateway device by the result; Described gateway device is further used for, and according to described cell-phone number, does not give described terminal by result notification with described authentication;
Perhaps, described aaa server is further used for, if authentication is not passed through, according to the IP address of described terminal place AC equipment, described private network IP address and authentication is not sent to the AC equipment at described terminal place by the result; The AC equipment at described terminal place is further used for, and according to described private network IP address, does not give described terminal by result notification with described authentication.
A kind of gateway device comprises:
Map unit, be used for the information that receiving terminal reports, comprise private network IP address, the international mobile subscriber identity IMSI of terminal, the IP address of place access control point AC equipment, and the service identification of the business of initiating, determine the cell-phone number of described IMSI correspondence, and shine upon the corresponding relation between each information that receives;
Request unit, be used for the IP address of described cell-phone number, described private network IP address and described AC equipment is sent to authentication, authentication, charging aaa server, the request authentication, and receive the private network IP address of the described terminal that described aaa server returns, pass through the result for the public network IP address of described terminal distribution and authentication.
A kind of server, described server are authentication, authentication, charging aaa server, comprising:
Authenticating unit, be used for to receive cell-phone number, the private network IP address of terminal and the IP address of terminal place access control point AC equipment of the terminal that gateway device sends, utilize described cell-phone number to obtain the CAMEL-Subscription-Information of described terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, according to the IP address of described terminal place AC equipment, described private network IP address and authentication are sent to the AC equipment at described terminal place by the result;
Transmitting element be used for to receive private network IP address and the public network IP address of the described terminal that the AC equipment at described terminal place sends, and sends to described gateway device together with authentication by the result.
Preferably, described authenticating unit is further used for, and is obstructed out-of-date when authentication, and described cell-phone number and authentication are not sent to described gateway device by the result; Perhaps, according to the IP address of described terminal place AC equipment, described private network IP address and authentication are not sent to the AC equipment at described terminal place by the result.
As seen, adopt technical scheme of the present invention, when terminal inserts wlan network, is terminal distribution private network IP address earlier, afterwards, the difference of the type of service of initiating according to terminal, carry out different processing, specifically, if the terminal initiation is first kind business, as Internet service, then directly utilize this private network IP address to visit Internet service, and realize mapping between private network IP address and the outside public network IP address by NAT device, if be the second class business, as PS territory business, it then is the terminal distribution public network IP address, and be notified to gateway device, like this, follow-up terminal can be utilized the public network IP address visit PS territory business of distributing.Compared with prior art, scheme of the present invention is for using more Internet service to adopt private network IP address, thereby effectively reduces terminal to the taking of public network IP address, and saved public network IP address resources; And, because gateway device can be known the public network IP address of distributing to terminal in advance, so the inconsistent problem in employed IP address has been guaranteed normally carrying out of follow-up business when having avoided the IP address of the terminal of preserving in the gateway device and terminal carrying out service visit.
Description of drawings
Fig. 1 is the configuration diagram of existing wlan network.
Fig. 2 is the network architecture schematic diagram behind the existing introducing gateway device.
Fig. 3 is the flow chart of IP address assignment method embodiment of the present invention.
Fig. 4 is the composition structural representation of terminal embodiment of the present invention.
Fig. 5 is the composition structural representation of network system embodiment of the present invention.
Fig. 6 is the composition structural representation of gateway device embodiment of the present invention.
Fig. 7 is the composition structural representation of server example of the present invention.
Embodiment
At problems of the prior art, the present invention proposes a kind of improved IP address assignment scheme, when terminal is connected to wlan network, be terminal distribution private network IP address earlier, afterwards, the difference of the type of service of initiating according to terminal, adopt different processing modes, specifically: if the business of initiating is first kind business, the business initiated of the private network IP address visit that distributes of terminal utilization then, and by the conversion between network address translation (NAT, Network Address Translator) equipment realization private network IP address and the outside public network IP address; If the business of initiating is the second class business, then terminal is carried out authentication, and after authentication is passed through, be the terminal distribution public network IP address, and the public network IP address that distributes is notified to gateway device, the public network IP address that the terminal utilization distributes, the business of initiating by the gateway device visit.
For making purpose of the present invention, technical scheme and advantage clearer, below with reference to the accompanying drawing embodiment that develops simultaneously, the present invention is described in further detail.
Fig. 3 is the flow chart of IP address assignment method embodiment of the present invention.Suppose that the first kind business in the present embodiment is Internet service, second class business is PS territory business.As shown in Figure 3, may further comprise the steps:
Step 31~32: terminal is established to the connection of wlan network, at first with wlan network in certain AP equipment carry out relatedly, and send DHCP request; The AC equipment at terminal place is this terminal distribution private network IP address.
According to introduction before as can be known, in wlan network, Dynamic Host Configuration Protocol server is integrated in the AC equipment usually, so in this step, be terminal distribution private network IP address by AC equipment.
Follow-up, if terminal originating service, difference according to the type of service of initiating, can adopt different processing modes, such as, if the business of initiating is Internet service, terminal can directly utilize the private network IP address of distributing to conduct interviews so, and realize conversion between private network IP address and the outside public network IP address by NAT device, and for PS territory business, then can handle according to mode shown in step 33~step 38.
Here the NAT device of mentioning can be an independent equipment, also can be integrated in the miscellaneous equipment, and specific implementation is not limit.How to realize the prior art that is converted between private network IP address and the outside public network IP address, repeat no more.
Step 33: terminal is by packet data protocol (PDP, Packet Data Protocol) bag, with the private network IP address distributed, self IMSI number, the IP address of place AC equipment, and the information such as service identification of the business of initiating are sent to gateway device by the mobile network; Gateway device is determined the cell-phone number of described IMSI correspondence, and shines upon the corresponding relation between each information that receives.
What wherein, service identification was mainly used in that the notification gateway equipment self initiates specifically is any business.
Step 34: gateway device sends to aaa server with the private network IP address of described cell-phone number, terminal and the IP address of terminal place AC equipment, the request authentication.
The cell-phone number that step 35:AAA server by utilizing receives obtains the CAMEL-Subscription-Information of terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, according to the IP address of terminal place AC equipment, and private network IP address and the authentication of terminal sent to the terminal place by the result AC equipment.
How to determine in the step 33 that how carrying out authentication in the cell-phone number of IMSI correspondence and the step 35 is prior art, repeats no more.
If authentication is not passed through, can handle by following dual mode:
Aaa server does not send to gateway device by the result with cell-phone number and the authentication that receives; Gateway device by result notification is not given terminal by the mobile network with authentication according to the cell-phone number that receives.
Perhaps, aaa server is according to the IP address of terminal place AC equipment, private network IP address and the authentication of terminal do not sent to the terminal place by the result AC equipment; The AC equipment at terminal place is not given terminal by result notification according to the private network IP address of terminal with authentication.
Step 36: the AC equipment at terminal place is the terminal distribution public network IP address, and is notified to aaa server, simultaneously, and for terminal is opened the IP address of visit gateway device and the authority of port.
Step 37:AAA server sends to gateway device with private network IP address, public network IP address and the authentication of the terminal that receives by the result.
Simultaneously, also can be further the IP address of the AC equipment at terminal place and cell-phone number of terminal etc. be sent to gateway device.
In actual applications, might different AC equipment be that the private network IP address that different terminals distributes is the same, think and distinguish that aaa server can further send to the cell-phone number of terminal etc. gateway device.
Step 38: terminal is carried out business and is used and charging by gateway device visit PS territory business.
The specific implementation of this step is similarly prior art, repeats no more.
So far, namely finished flow process shown in the inventive method embodiment.
Based on said method, the present invention has proposed a kind of terminal, network system, gateway device and server simultaneously.Wherein, Fig. 4 is the composition structural representation of terminal embodiment of the present invention.As shown in Figure 4, comprising:
Determining unit 41 be used for to be determined the type of the business that terminal is initiated, and will determine that result notification gives addressed location 42;
Addressed location 42 is used for working as the business of initiating and is the first kind when professional, the business of utilizing the visit of pre-assigned private network IP address to initiate, and realize conversion between private network IP address and the outside public network IP address by NAT device; When the business of initiating is second class business, utilize the public network IP address that distributes, visit the business of initiating by the gateway device of preserving the described public network IP address that distributes.
Fig. 5 is the composition structural representation of network system embodiment of the present invention.As shown in Figure 5, comprising:
Gateway device 51, be used for the information that receiving terminal reports, comprise private network IP address, the IMSI of terminal, the IP address of place AC equipment 52, and the service identification of the business of initiating, determine the cell-phone number of IMSI correspondence, and the corresponding relation between each information of receiving of mapping, the IP address of described cell-phone number, private network IP address and AC equipment 52 is sent to aaa server 53, the request authentication;
The AC equipment 52 at terminal place is used to the terminal distribution public network IP address, and notice aaa server 53, simultaneously, and for terminal is opened the IP address of visit gateway device 51 and the authority of port;
In addition, aaa server 53 also can be further used for, if authentication is not passed through, cell-phone number and the authentication of terminal is not sent to gateway device 51 by the result; Gateway device 51 is further used for, and according to the cell-phone number that receives, does not give terminal by result notification with authentication;
Perhaps, aaa server 53 is further used for, if authentication do not pass through, according to the IP address of terminal place AC equipment 52, private network IP address and the authentication of terminal do not sent to the terminal place by the result AC equipment 52; The AC equipment 52 at terminal place is further used for, and according to the private network IP address of terminal, does not give terminal by result notification with authentication.
Fig. 6 is the composition structural representation of gateway device embodiment of the present invention.As shown in Figure 6, comprising:
Fig. 7 is the composition structural representation of server example of the present invention.This server is the aaa server 53 shown in Fig. 5.As shown in Figure 7, comprising:
Authenticating unit 71, be used for to receive cell-phone number, the private network IP address of terminal and the IP address of terminal place AC equipment of the terminal that gateway device sends, utilize described cell-phone number to obtain the CAMEL-Subscription-Information of terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, according to the IP address of AC equipment, private network IP address and the authentication of terminal sent to the terminal place by the result AC equipment;
Transmitting element 72 is used for private network IP address and the public network IP address of the terminal that the AC equipment at receiving terminal place sends, and sends to gateway device together with authentication by the result.
In addition, authenticating unit 71 also can be further used for, and is obstructed out-of-date when authentication, and cell-phone number and the authentication of terminal do not sent to gateway device by the result; Perhaps, according to the IP address of terminal place AC equipment, private network IP address and the authentication of terminal do not sent to the terminal place by the result AC equipment.
The concrete workflow of Fig. 4~7 apparatus shown and system embodiment please refer to the respective description among the method embodiment shown in Figure 3, repeats no more herein.
Need to prove, in the various embodiments described above, only be that example describes with the wlan network, under other network environment, equipment that may be concrete, title difference such as AC equipment or AP equipment etc. also may be integrated into the function of AC equipment and AP equipment in the equipment in addition, has again, possible Dynamic Host Configuration Protocol server is not to be integrated in the AC equipment, which kind of situation no matter, as long as exist and similar problem that background technology of the present invention is mentioned in partly, scheme of the present invention will be suitable equally all.
In a word, adopt technical scheme of the present invention, for using more Internet service to adopt private network IP address, thereby effectively reduce terminal taking public network IP address, saved public network IP address resources, and, because gateway device can be known the public network IP address of distributing to terminal in advance, therefore the inconsistent problem in employed IP address has been guaranteed normally carrying out of follow-up business when having avoided the IP address of the terminal of preserving in the gateway device to visit with terminal carrying out service.
In sum, more than be preferred embodiment of the present invention only, be not for limiting protection scope of the present invention.Within the spirit and principles in the present invention all, any modification of doing, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (6)
1. an IP address assignment method is characterized in that, for inserting the terminal distribution private network IP address of WLAN (wireless local area network) WLAN, when terminal originating service, this method comprises:
If the business of initiating is first kind business, the business initiated of the private network IP address visit that distributes of described terminal utilization then, and realize conversion between described private network IP address and the outside public network IP address by network address translation device;
If the business of initiating is the second class business, then described terminal is carried out authentication, and after authentication is passed through, be described terminal distribution public network IP address, and the public network IP address that distributes is notified to gateway device; The public network IP address that described terminal utilization distributes is visited the business of initiating by described gateway device;
Wherein, described terminal is carried out authentication, and after authentication is passed through, is described terminal distribution public network IP address, and the public network IP address that distributes is notified to gateway device comprises:
Described terminal is with the private network IP address distributed, the IP address of access control point AC equipment at international mobile subscriber identity IMSI, self place of self, and the service identification of the business of initiating sends to described gateway device; Described gateway device obtains the cell-phone number of described IMSI correspondence, and shines upon the corresponding relation between each information that receives;
Described gateway device sends to authentication, authentication, charging aaa server with the IP address of described cell-phone number, described private network IP address and described AC equipment, the request authentication;
Described aaa server utilizes described cell-phone number to obtain the CAMEL-Subscription-Information of described terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, and according to the IP address of described AC equipment, described private network IP address and authentication is sent to the AC equipment at described terminal place by the result;
The AC equipment at described terminal place is described terminal distribution public network IP address, and notifies described aaa server, simultaneously, and for described terminal is opened the IP address of the described gateway device of visit and the authority of port;
Described aaa server sends to described gateway device with private network IP address, public network IP address and the authentication of described terminal by the result;
Wherein, described first kind business is Internet service, and described second class is professional to be packet switching PS territory business.
2. method according to claim 1 is characterized in that, this method further comprises:
If authentication is not passed through, then described aaa server does not send to described gateway device by the result with described cell-phone number and authentication; Described gateway device is not given described terminal by result notification according to described cell-phone number with described authentication;
Perhaps, described aaa server is according to the IP address of the AC equipment at described terminal place, described private network IP address and authentication do not sent to the AC equipment at described terminal place by the result; The AC equipment at described terminal place is not given described terminal by result notification according to described private network IP address with described authentication.
3. a network system is characterized in that, comprising:
Gateway device, be used for the information that receiving terminal reports, comprise private network IP address, the international mobile subscriber identity IMSI of terminal, the IP address of place access control point AC equipment, and the service identification of the business of initiating, determine the cell-phone number of described IMSI correspondence, and the corresponding relation between each information of receiving of mapping, the IP address of described cell-phone number, described private network IP address and described AC equipment is sent to authentication, authentication, charging aaa server, the request authentication;
Described aaa server, be used for utilizing described cell-phone number to obtain the CAMEL-Subscription-Information of described terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, according to the IP address of described AC equipment, described private network IP address and authentication are sent to the AC equipment at described terminal place by the result;
The AC equipment at described terminal place is used to described terminal distribution public network IP address, and is notified to described aaa server, simultaneously, and for described terminal is opened the IP address of the described gateway device of visit and the authority of port;
Described aaa server is further used for, and described private network IP address, described public network IP address and authentication are sent to described gateway device by the result.
4. network system according to claim 3 is characterized in that,
Described aaa server is further used for, if authentication is not passed through, described cell-phone number and authentication is not sent to described gateway device by the result; Described gateway device is further used for, and according to described cell-phone number, does not give described terminal by result notification with described authentication;
Perhaps, described aaa server is further used for, if authentication is not passed through, according to the IP address of described terminal place AC equipment, described private network IP address and authentication is not sent to the AC equipment at described terminal place by the result; The AC equipment at described terminal place is further used for, and according to described private network IP address, does not give described terminal by result notification with described authentication.
5. server, described server is authentication, authentication, charging aaa server, it is characterized in that, comprising:
Authenticating unit, be used for to receive cell-phone number, the private network IP address of terminal and the IP address of terminal place access control point AC equipment of the terminal that gateway device sends, utilize described cell-phone number to obtain the CAMEL-Subscription-Information of described terminal, and carry out authentication according to the CAMEL-Subscription-Information that gets access to, authentication is passed through, according to the IP address of described terminal place AC equipment, described private network IP address and authentication are sent to the AC equipment at described terminal place by the result;
Transmitting element be used for to receive private network IP address and the public network IP address of the described terminal that the AC equipment at described terminal place sends, and sends to described gateway device together with authentication by the result.
6. server according to claim 5 is characterized in that, described authenticating unit is further used for, and is obstructed out-of-date when authentication, and described cell-phone number and authentication are not sent to described gateway device by the result; Perhaps, according to the IP address of described terminal place AC equipment, described private network IP address and authentication are not sent to the AC equipment at described terminal place by the result.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010108116 CN102148878B (en) | 2010-02-05 | 2010-02-05 | IP (internet protocol) address allocation method, system and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 201010108116 CN102148878B (en) | 2010-02-05 | 2010-02-05 | IP (internet protocol) address allocation method, system and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102148878A CN102148878A (en) | 2011-08-10 |
| CN102148878B true CN102148878B (en) | 2013-08-14 |
Family
ID=44422864
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 201010108116 Active CN102148878B (en) | 2010-02-05 | 2010-02-05 | IP (internet protocol) address allocation method, system and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102148878B (en) |
Families Citing this family (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9185073B2 (en) * | 2011-10-06 | 2015-11-10 | Qualcomm Incorporated | Systems and methods for data packet processing |
| CN102387223A (en) * | 2011-10-20 | 2012-03-21 | 北京科美特信息技术有限公司 | Management and distribution method of public network IP (Internet Protocol) address resource of hotel public network |
| CN102572005A (en) * | 2011-11-23 | 2012-07-11 | 杭州华三通信技术有限公司 | IP address allocation method and equipment |
| CN103179222B (en) * | 2011-12-21 | 2017-02-08 | 中国移动通信集团公司 | Method and device for distributing double-stack addresses |
| CN102594939B (en) * | 2012-02-16 | 2014-11-12 | 杭州华三通信技术有限公司 | Secondary address allocation method and device |
| CN103313317B (en) * | 2012-03-07 | 2016-09-28 | 华为技术有限公司 | A kind of method of WiFi terminal accessing group data PS business domains and trusted gateway |
| CN103905573B (en) * | 2012-12-26 | 2017-11-21 | 中国移动通信集团广西有限公司 | A kind of method and apparatus being managed to IP resources |
| CN103929726B (en) * | 2013-01-14 | 2019-06-14 | 中兴通讯股份有限公司 | Wireless LAN accesses control correlation technique and system in interacting with fixed network |
| CN104144225B (en) * | 2013-05-10 | 2017-10-13 | 中国电信股份有限公司 | Control method, system and the PDSN of IPv4 addresses distribution |
| CN103634421A (en) * | 2013-11-26 | 2014-03-12 | 中国联合网络通信集团有限公司 | Address distribution method and server |
| CN105812497B (en) * | 2014-12-30 | 2019-04-26 | 北京华为数字技术有限公司 | Network address assignment method, equipment and system |
| CN105610779B (en) * | 2015-10-20 | 2019-03-22 | 宇龙计算机通信科技(深圳)有限公司 | Networking control method and device for access point and equipment end |
| CN106302857B (en) * | 2016-08-18 | 2020-01-31 | 中国联合网络通信集团有限公司 | IP address allocation method and server |
| CN106358174A (en) * | 2016-09-23 | 2017-01-25 | 上海众人网络安全技术有限公司 | Wireless roaming hotspot access method, system and wireless terminal |
| CN114422473B (en) * | 2017-04-19 | 2023-10-17 | 中兴通讯股份有限公司 | IP address allocation method and device |
| WO2019037156A1 (en) * | 2017-08-23 | 2019-02-28 | 华为技术有限公司 | Method for creating statistics of traffic and device therefor |
| CN110474922B (en) * | 2019-09-02 | 2022-02-22 | 锐捷网络股份有限公司 | Communication method, PC system and access control router |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1567871A (en) * | 2003-07-04 | 2005-01-19 | 华为技术有限公司 | A method for sending information to user terminal by network |
| CN1610319A (en) * | 2003-10-22 | 2005-04-27 | 华为技术有限公司 | Analytic switch-in processing method for selecting business in radio local area network |
-
2010
- 2010-02-05 CN CN 201010108116 patent/CN102148878B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1567871A (en) * | 2003-07-04 | 2005-01-19 | 华为技术有限公司 | A method for sending information to user terminal by network |
| CN1610319A (en) * | 2003-10-22 | 2005-04-27 | 华为技术有限公司 | Analytic switch-in processing method for selecting business in radio local area network |
Non-Patent Citations (1)
| Title |
|---|
| 3GPP.3GPP TS 23.234 V9.0.0,3GPP system to Wireless Local Area Network (WLAN) interworking(Release 9).《3GPP TS 23.234 V9.0.0,3GPP system to Wireless Local Area Network (WLAN) interworking(Release 9)》.2009,29-40页. * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102148878A (en) | 2011-08-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102148878B (en) | IP (internet protocol) address allocation method, system and device | |
| CN101141420B (en) | Method and system for performing data communication between private network and public network | |
| US9807603B2 (en) | Method and system for WiBro network interworking in wireless terminal | |
| CN101730268B (en) | Femto gateway and method and system for mobile terminal to access network resources | |
| US20070091859A1 (en) | System and method for association of mobile units with an access point | |
| US20150237007A1 (en) | Method, device, and system for automatically selecting ipv6 address transmission mode | |
| CN102413199B (en) | System and method for creating and reporting address mapping relations by broadband remote access server | |
| US20060153211A1 (en) | Local network connecting system local network connecting method and mobile terminal | |
| CN102014039B (en) | Data transmission method and access point | |
| US20100002663A1 (en) | Base Station and Data Transferring Method | |
| CN102404293A (en) | Dual-stack user managing method and broadband access server | |
| CN101997934A (en) | Method and system for accessing addresses, mobile terminal and application method thereof | |
| CN110752975A (en) | Network sharing method and device | |
| CN100372330C (en) | Method for selecting access service network gateway of base station | |
| CN101304610A (en) | Method, system and microminiature gateway for communication between microminiature honeycomb network and macro network | |
| CN1691668B (en) | A system and method for providing IPv6 service | |
| CN101841790B (en) | Address allocating method and device for emergency call | |
| KR100695400B1 (en) | Method and System for Allocating Internet Protocol Address by Using Network Access Identifier for Use in Portable Internet Network | |
| KR20020096256A (en) | Dynamic mobile address management apparatus and its method and wireless packet service method using them | |
| CN102299871B (en) | Communication method and gateway equipment | |
| CN102083173B (en) | Network access control method, equipment and gateway GPRS support node | |
| KR20040049189A (en) | Internet Protocol Allocating Method in Inter-working Systems of Wireless Local Area Network and Universal Mobile Telecommunication | |
| KR20030058267A (en) | An IP Automatic Assignment's Method in the way of Central IP Management thorugh Intermediate DHCP Server | |
| CN102546845A (en) | Business access method, device and system | |
| CN101754173B (en) | Home address allocation, method and system for transmitting message by using same |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |