WO2013174190A1 - Routing selection method and functional network element - Google Patents

Routing selection method and functional network element Download PDF

Info

Publication number
WO2013174190A1
WO2013174190A1 PCT/CN2013/074627 CN2013074627W WO2013174190A1 WO 2013174190 A1 WO2013174190 A1 WO 2013174190A1 CN 2013074627 W CN2013074627 W CN 2013074627W WO 2013174190 A1 WO2013174190 A1 WO 2013174190A1
Authority
WO
WIPO (PCT)
Prior art keywords
access network
aaa
network
wlan access
wlan
Prior art date
Application number
PCT/CN2013/074627
Other languages
French (fr)
Chinese (zh)
Inventor
刘国燕
尤建洁
朱春晖
吴瑟
王霞
余跃
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2013174190A1 publication Critical patent/WO2013174190A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/037Protecting confidentiality, e.g. by encryption of the control plane, e.g. signalling traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation

Definitions

  • the present invention relates to a routing technology, and in particular, to a routing method and a functional network element. Background technique
  • Evolved Universal Terrestrial Radio Access Network Evolved Universal Terrestrial Radio Access Network
  • Mobile Administration Evolved Universal Terrestrial Radio Access Network
  • E-UTRAN Mobile Administration
  • 3rd Generation Partnership Project 3rd Generation Partnership Project
  • MME Mobility Management Entity
  • S-GW Serving Gateway
  • P-GW Packet Data Network Gateway
  • HSS Home Subscriber Server
  • FIG. 1 is a schematic structural diagram of interworking between a 3GPP network and a non-3GPP network in the prior art.
  • the EPS supports interworking with a non-3GPP system, wherein interworking with a non-3GPP system is implemented through an S2a/b/c interface.
  • the P-GW acts as an anchor between the 3GPP and the non-3GPP system.
  • non-3GPP system access is divided into untrusted non-3GPP access and trusted non-3GPP access; wherein untrusted non-3GPP access requires evolved packet data gateway (ePDG, Evolved Packet)
  • ePDG evolved packet data gateway
  • Evolved Packet evolved packet data gateway
  • the Data Gateway is connected to the P-GW.
  • the interface between the ePDG and the P-GW is S2b.
  • the trusted non-3GPP access can be directly connected to the P-GW through the S2a interface.
  • the S2a interface uses the PMIP protocol for information exchange.
  • the S2c interface Provides user plane-related control and mobility support between the user set UE, User Equipment and the P-GW.
  • the supported mobility management protocol is dual-stack mobile IPv6 (DSMIPv6, Moblie IPv6 Support for Dual Stack). Hosts and Routers), which can be used for untrusted non-3GPP and trusted non-3GPP access.
  • FIG. 2 is a schematic diagram of the architecture of the UE accessing the EPC through the WLAN in the prior art. As shown in FIG.
  • one logical network element of the WLAN communicates with the P-GW of the 3GPP through the S2a interface, and the S2a interface supports the GTP (Generic Tunneling Protocol) / The PMIP (Proxy Mobile IP) protocol, but how the specific logical network elements inside the WLAN network support the interworking process with the P-GW, there is no clear technical solution.
  • GTP Generic Tunneling Protocol
  • PMIP Proxy Mobile IP
  • the main purpose of the present invention is to provide a routing method and a function network element, which can implement routing for an accessed 3GPP UE in a trusted WLAN and a 3GPP network convergence network, thereby reducing access of the 3GPP network. pressure.
  • the function network element grants authentication The right charging AAA forwards the authentication request message sent by the UE, and forwards the authentication response message sent by the AAA to the access network element of the WLAN access network; and/or, the function network element receives the WLAN An IP address request message sent by the access network element of the access network.
  • the functional network element is located in the WLAN access network or the 3GPP core network.
  • the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
  • a universal routing encapsulated GRE tunnel or a multi-protocol label switching MPLS tunnel is established between the functional network element and the access network element of the WLAN access network.
  • the method further includes:
  • the access network element of the WLAN access network determines whether the UE is a 3GPP UE according to an authentication type and/or a domain name of the UE, and determines a packet route.
  • the method further includes:
  • the access network element of the WLAN access network determines, according to the service type associated with the UE, whether to locally allocate an IP address for the UE.
  • the method further includes:
  • the access network element of the WLAN access network obtains the information of the service type of the decision from the AAA server or the AAA proxy of the 3GPP core network by using the authentication of the extended authentication protocol EAP.
  • the service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
  • the access network element of the WLAN access network includes a border network node BNG/access controller AC.
  • the IP address request message is a DHCP message or a route request message.
  • the function entity When the function entity is connected to the AAA server or the AAA proxy of the WLAN access network, the function entity supports the collection of the charging information, and reports the AAA charging message to the AAA server of the WLAN access network or AAA agent.
  • the AAA charging message includes a Radius charging message or a Diameter charging message.
  • the WLAN access network includes an architecture network defined by a fixed broadband forum BBF.
  • a routing method is applied to a network in which a WLAN access network and a 3GPP core network are integrated; a functional network element is configured in the fused network; and the method includes:
  • the function network element receives the authentication response message sent by the AAA, obtains the service type of the decision, and determines whether to allocate the local IP to the UE according to the service type information associated with the UE, and implements routing to the UE.
  • the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server of the 3GPP core network.
  • the functional network element is located in the WLAN access network or the 3GPP core network.
  • the service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
  • the function network element allocates a local IP to the UE after receiving the IP address request message.
  • the IP address request message is a DHCP message or a route request message.
  • a functional network element is applied to a network in which a WLAN access network and a 3GPP core network are integrated; the functional network element includes: a receiving unit, a forwarding unit, and/or a sending unit, where:
  • a receiving unit configured to receive an authentication request message sent by the UE when accessing the WLAN access network; and receiving an authentication response message sent by the AAA; and/or receiving the access network element of the WLAN access network IP address request message; and/or, receiving an AAA charging response message sent by an AAA server or an AAA proxy of the WLAN access network;
  • a forwarding unit configured to forward the authentication request message to the AAA; and forward the authentication response message to an access network element of the WLAN access network;
  • the sending unit is configured to send an AAA charging request message to the AAA server or the AAA proxy of the WLAN access network.
  • the WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
  • the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
  • a GRE tunnel or an MPLS tunnel is established between the WLAN access network access gateway and the access network element of the WLAN access network.
  • the access network element of the WLAN access network includes a BNG/AC.
  • the AAA charging message includes a Radius charging message or a Diameter charging message.
  • a functional network element is applied to a network in which a WLAN access network and a 3GPP core network are integrated;
  • the WLAN access network access gateway includes: a receiving unit, an obtaining unit, and a determining unit, where: the receiving unit is configured to receive the AAA The authentication response message sent;
  • a determining unit configured to determine, according to the service type information associated with the UE, whether to allocate a local IP to the UE, and implement routing to the UE.
  • the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
  • the WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
  • the service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
  • the WLAN access network access gateway further includes:
  • the allocating unit is configured to allocate a local IP to the UE after the receiving unit receives the IP address request message, when the receiving unit receives the IP address request message.
  • active power is set between a network where a trusted WLAN and a 3GPP network are fused.
  • the function network element forwards the authentication request message sent by the UE to the AAA server, and forwards the authentication sent by the AAA server to the access network element of the trusted WLAN. a response message; and/or, the function network element receives an IP address request message sent by the access network element of the trusted WLAN, and notifies the access network of the trusted WLAN by the IP address allocated by the 3GPP network for the UE
  • the access network element of the WLAN performs routing according to the type of the UE.
  • the invention can perform routing for the 3GPP UE according to the type and service type of the accessed UE, thereby alleviating the access pressure of the 3GPP network.
  • FIG. 1 is a schematic structural diagram of interworking between a 3GPP network and a non-3GPP network in the prior art
  • FIG. 2 is a schematic diagram of a structure in which a UE accesses an EPC through a WLAN in the prior art
  • FIG. 3 is a schematic diagram of a UE passing through a WLAN after introducing TWAG′ in the present invention
  • FIG. 4 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to an embodiment of the present invention
  • FIG. 5 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to an embodiment of the present invention
  • FIG. 6 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to an embodiment of the present invention
  • FIG. 7 is a schematic diagram of the architecture 2 of the UE accessing the EPC through the WLAN S2a interface after the introduction of the TWAG′ in the present invention
  • FIG. 8 is a flowchart of a UE based on architecture 2 accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention
  • FIG. 9 is a flowchart of a UE based on architecture 2 accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention.
  • FIG. 10 is a schematic diagram of a UE based on architecture 2 accessing through a WLAN S2a interface according to an embodiment of the present invention. EPC flow chart;
  • FIG. 11 is a flowchart of a UE accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention
  • FIG. 12 is a flowchart of a UE accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention
  • FIG. 13 is a functional network according to an embodiment of the present invention. Schematic diagram of the composition of the element;
  • FIG. 14 is a schematic structural diagram of another functional network element according to an embodiment of the present invention. detailed description
  • the architecture of the entire network when the UE accesses the EPC through the trusted WLAN is mainly described.
  • the central idea of the architecture is to add a WLAN access gateway within the WLAN network to communicate with the control plane and user plane messages between the WLAN network and the EPC network.
  • FIG. 3 is a schematic diagram of the architecture 1 of the UE accessing the EPC through the WLAN S2a interface after the introduction of the TWAG′ in the present invention.
  • the key interfaces involved in the network architecture are as follows: Interface C: Interface between TWAG' and BBF AAA. The interface is used to forward the authentication message sent by the BNG or BBF AAA, and the authentication success message sent by the BBF AAA can be used to trigger the establishment of a GTP/PMIP tunnel between the TWAG' and the P-GW of the EPC.
  • Interface D is the interface between TWAG' and BNG. This interface is used to forward authentication messages, or DHCP messages, and user data sent by the BNG.
  • the main logical network of the above architecture is for the BBF access architecture. Similarly, the above architecture is also applicable to the WLAN access network.
  • the RG is replaced by an AP and the BNG is replaced by an AC.
  • the process of accessing the 3GPP EPC by the 3GPP UE through the WLAN is mainly described.
  • the EAP authentication process needs to be forwarded to the WLAN AAA through the TWAG, and the AP/RG is used as the EAP Authenticator, AC/BNG and TWAG as the AAA proxy.
  • This embodiment is executed when the traffic type that the AC/BNG receives the 3GPP AAA decision is to allow access to the EPC.
  • 4 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to a first embodiment of the present invention.
  • the process for a UE to access an EPC through a WLAN S2a interface includes the following steps:
  • Step 401 The UE performs a non-3GPP-specific process with the WLAN network element, for example, establishing a link, and the like;
  • Step 402 The UE may send an EAPOL-START message to the AP/RG to request authentication.
  • Step 403-Step 404 The AP/RG acts as an EAP Authenticator and triggers an EAP authentication process to the UE.
  • the UE carries the NAI in the EAP-RES/Identity message.
  • the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed.
  • the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the message is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header, and then acts as an AAA proxy, forwards the decapsulated packet to WLAN AAA, and forwards it to 3GPP AAA via WLAN AAA.
  • GRE tunnels can be replaced by other types of tunnels, such as MPLS.
  • EAP authentication messages are directly transmitted through the tunnel and are not transmitted through the tunnel.
  • Step 405 - Step 407 Perform a subsequent EAP process.
  • step 406 is performed.
  • TWAG' functions as step 403-step 404 as an AAA proxy or AAA relay.
  • AC/BNG obtains the service type authorized by 3GPP AAA.
  • the service type includes: Allow access to EPC, and/or slotted services. Divert, or deny access.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC.
  • the AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports.
  • the type is to allow access to the EPC.
  • step 408-411 is performed, and then the process proceeds to step 412. Otherwise, go directly to step 412 for execution.
  • Step 408-Step 413 After receiving the EAP authentication success message, the TWAG' requests the establishment of the GTP/PMIP tunnel to the P-GW, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
  • Step 414 - Step 415 If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (which may be a DHCPv4 or DHCPv6 message) sent by the UE, and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message.
  • the DHCP request message which may be a DHCPv4 or DHCPv6 message
  • step 408-411 are performed, and then the process proceeds to step 416. Otherwise, go directly to step 416 for execution.
  • Step 416 - Step 417 Perform another DHCP process between the UE and the TWAG to allocate an IP address to the UE. At this time, you can also bind the IP address to the MAC address.
  • Step 418 If the UE sends a route request message, after receiving the route request message sent by the UE, the AC/BNG finds that the associated service type is allowed to access the EPC according to the UE MAC, and then finds the associated GRE tunnel through the GRE.
  • the tunnel encapsulates the message to TWAG';TWAG' After receiving the GRE packet, the encapsulation of the GRE header is removed, and then the routing request message is processed.
  • step 408-411 is performed, and then go to step 420 to continue execution. Otherwise, go directly to step 420 to continue.
  • Step 420 - Step 421 Perform the remaining process of the route confirmation message to allocate an IP address to the UE. At this time, you can also bind the IP address to the MAC address.
  • the BNG/AC supports the collection of the charging information based on the UE and reports it to the WLAN AAA for charging.
  • the TWAG can also support the collection of the charging information and report it to the WLAN.
  • AAA performs billing. Therefore, when the TWAG' allocates an IP address to the UE (for example, in the case of TWAG, while performing step 417 or step 420), a charging request (start) message is sent to the WLAN AAA, and then the WLAN AAA replies to the charging response (start). Message.
  • start charging request
  • the TWAG the calculated charging information is the charging information of the related service data that the 3GPP UE accesses the EPC.
  • the billing information is the total billing information or the independent billing information of the service data of the 3GPP UE accessing the EPC and the direct service offload.
  • the charging request (start message) sent to the WLAN is sent when the TWAG' receives the first request for the IP address, for example: TWAG, receives the first A message requesting an IP address indicating its direct traffic offload, then the TWAG sends a charging request (start message) to the WLAN, and subsequently, the TWAG receives a message requesting an IP address, instructing it to allocate an IP from the PDN GW. Address, TWAG at this time, will not send a charging request (start message) to the WLAN; vice versa.
  • the charging request (start message) is sent independently. These billing information can be used as a reference for billing bills between operators.
  • Step 422 When the BNG/AC receives the uplink data, it also finds the associated service type as EPC access according to the UE MAC or the UE IP address, and then finds the associated GRE tunnel, and then encapsulates the message through the GRE tunnel.
  • TWAG After TWAG, TWAG' receives the GRE header, removes the encapsulation of the GRE header, encapsulates it through GTP or PMIP tunnel, and forwards it to the P-GW.
  • the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
  • the TWAG when the TWAG receives the detachment related message of the UE leaving the network, it sends a charging request (termination) message to the WLAN AAA, and then the WLAN AAA replies with the charging response (terminating) message.
  • TWAG can also support the Diameter charging protocol, and the related message replaces the related charging message of the above Radius.
  • the process is similar to that in the second embodiment.
  • the difference is that the AP/RG is not used as the EAP Authenticator, but the AC/BNG is used as the EAP Authenticator.
  • the AP/RG cannot sense the related EAP authentication process.
  • Other processes refer to the related description of Embodiment 2. For details, refer to the process shown in Figure 5. The details are as follows:
  • Step 501 The UE performs a non-3GPP-specific process with the WLAN network element, for example, establishing a link, and the like;
  • Step 502 The UE may send an EAPOL-START message to the AC/BNG to request authentication.
  • Step 503-Step 504 The AC/BNG acts as an EAP authenticator, and triggers an EAP authentication process to the UE.
  • the UE carries the NAI in the EAP-RES/Identity message.
  • the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed.
  • the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the packet is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header, and as an AAA proxy, it will be decapsulated. The message is forwarded to WLAN AAA and forwarded to 3GPP AAA via WLAN AAA.
  • GRE tunnels can be replaced by other types of tunnels, such as MPLS.
  • EAP authentication messages are directly transmitted through the tunnel and are not transmitted through the tunnel.
  • Step 505 - Step 507 Perform a subsequent EAP process.
  • step 506 is performed.
  • TWAG' functions as step 503-step 504, acting as an AAA proxy.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA.
  • the service type includes: allowing access to the EPC, and/or slotted service offload, or denying access.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC.
  • the AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports.
  • the type is to allow access to the EPC.
  • step 508-511 is performed, and then the process proceeds to step 512. Otherwise, go directly to step 512 for execution.
  • Step 508 - Step 513 After receiving the EAP authentication success message, the TWAG' requests the establishment of the GTP/PMIP tunnel to the P-GW, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
  • Step 514 - Step 515 If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (which may be a DHCPv4 or DHCPv6 message) sent by the UE, and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message. If the GTP/PMIP tunnel establishment is triggered by the DHCP message, then steps 508-511 are performed, and then the process proceeds to step 516. Otherwise, go directly to step 516 for execution.
  • the DHCP request message which may be a DHCPv4 or DHCPv6 message
  • Step 516 - Step 517 Perform another DHCP process between the UE and the TWAG to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 518 - Step 519 If the UE sends a route request message, the AC/BNG receives
  • the UE After the routing request message sent by the UE, the UE is found to be connected to the EPC according to the service type of the UE, and then the associated GRE tunnel is found, and the message is encapsulated into the TWAG by the GRE tunnel; the TWAG' receives the GRE message. After that, the encapsulation of the GRE header is removed, and then the routing request message is processed. If the GTP/PMIP tunnel establishment is triggered by the route request message, then step 408-511 is performed, and then go to step 520 to continue execution. Otherwise, go directly to step 520 to continue.
  • Step 520 - Step 521 Perform the remaining process of the route confirmation message to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 522 When the BNG/AC receives the uplink data, it also finds the associated service type as EPC access according to the UE MAC or the UE IP address, and then finds the associated GRE tunnel, and then encapsulates the message through the GRE tunnel.
  • TWAG After TWAG, TWAG' receives the GRE header, removes the encapsulation of the GRE header, encapsulates it through GTP or PMIP tunnel, and forwards it to the P-GW.
  • the BNG/AC When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
  • the TWAG can also support the collection of charging information.
  • the TWAG can also support the collection of charging information.
  • the process of directly performing slotted service offloading by the 3GPP UE through WLAN access is mainly described.
  • the EAP authentication process needs to be forwarded to WLAN AAA through TWAG, AP/RG as EAP Authenticator, and AC/BNG and TWAG' as AAA agents.
  • the AC/BNG receives the service type authorized by the 3GPP AAA as a slotted service offloading operation, the implementation is performed. example. For details, refer to the process shown in Figure 6.
  • the process includes the following steps:
  • Step 601 - Step 613 It is identical to Step 401 - Step 413.
  • the AC/BNG as an AAA proxy, obtains the service type authorized by the 3GPP AAA.
  • the service type includes: EPC access, and/or slotted service offload, or denial of access.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is a split service, the slotted service offload information is bound to the UE MAC address, and the association relationship is saved locally.
  • Step 614 Step 616: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message sent by the UE, and then determines to locally allocate the IP address allocation to the UE according to the slotted service offload information associated with the UE MAC address. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 617 Step 618: If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, and determines to locally allocate the IP address to the UE according to the slotted service offload information associated with the UE MAC address. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
  • Step 619 When the BNG/AC receives the uplink data, it also finds the associated service type as a slotted service offload according to the UE MAC or the source IP address, and then performs specific data forwarding.
  • the BNG/AC When the BNG/AC receives downlink data, it forwards the packet directly to the UE.
  • step 601-step 613 is replaced by step 501-step 513.
  • the processing of the other steps is the same as that of this embodiment.
  • the BNG/AC sends the charging information to the WLAN AAA
  • the adopted protocol is an AAA charging protocol, including: a Radius charging protocol, or a Diameter charging protocol.
  • Example 5 the difference from the flow of Embodiment 1 is that a TWAG' is added in the WLAN network: TWAG' has no interface interaction with the BBF AAA, and there is no STa interface between the BBF AAA and the 3GPP AAA, TWAG' and There is interface interaction between 3GPP AAA. Other functions refer to the related description of Embodiment 1. See Figure 7 for details.
  • Interface C is the interface between TWAG' and 3GPPAAA.
  • the interface is used to forward the authentication message sent by the BNG or BBF AAA, and the authentication success message sent by the BBF AAA can be used to trigger the establishment of a GTP/PMIP tunnel between the TWAG' and the P-GW of the EPC.
  • Interface D is the interface between TWAG' and BNG. This interface is used to forward authentication messages, or DHCP messages, and user data sent by the BNG.
  • the 3GPP UE's authentication is through BNG to TWAG, and then TWAG, forwarded to 3GPP AAA for the interaction of the authentication process.
  • the charging information is collected by the BNG, and then reported to the BBF AAA for local charging information statistics, and used for reconciliation with the charging information of the 3GPP core network;
  • a Radius or Diameter billing protocol can be used between BNG and BBF AAA.
  • the main logical network of the above architecture is for the BBF access architecture. Similarly, the above architecture is also applicable to the WLAN access network.
  • the RG is replaced by an AP and the BNG is replaced by an AC.
  • the procedure of the embodiment 2 is similar, except that the EAP authentication process between the TWAG and the 3GPP AAA does not need to be transited by the WLAN AAA, but directly communicates with each other.
  • Other processes refer to the related description of Embodiment 2. For details, see the process shown in Figure 8. The details are as follows:
  • Step 801 The UE and the WLAN network element perform a non-3GPP-specific process, such as: link establishment, and the like;
  • Step 802 The UE may send an EAPOL-START message to the AP/RG to request authentication.
  • Step 803 - Step 804 The AP/RG acts as the ⁇ Authenticator and triggers the ⁇ authentication process to the UE.
  • the UE carries the NAI in the EAP-RES/Identity message.
  • the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed.
  • the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the message is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header and then forwards the decapsulated message to 3GPPAAA as an AAA proxy.
  • GRE tunnels can be replaced by other types of tunnels, such as MPLS.
  • EAP authentication messages are directly transmitted through the tunnel and are not transmitted through the tunnel.
  • Step 805 - Step 807 Perform a subsequent EAP process.
  • step 806 is performed.
  • TWAG' acts as step 803-step 804 as an AAA proxy.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA.
  • the service type includes: allowing access to the EPC, and/or slotted service offload, or denying access.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC.
  • the AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports.
  • the type is to allow access to the EPC.
  • Step 808 - step 811 After receiving the EAP authentication success message, the TWAG' requests the establishment of the GTP/PMIP tunnel to the P-GW, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
  • Step 814 - Step 815 If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (specifically, it may be a DHCPv4 or a DHCPv6 message), and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message.
  • the DHCP request message specifically, it may be a DHCPv4 or a DHCPv6 message
  • steps 808-811 are performed, and then go to step 816 for execution. Otherwise, go directly to step 816 for execution.
  • Step 816-Step 817 Perform another DHCP process between the UE and the TWAG to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 818-Step 819 If the UE sends a route request message, after receiving the route request message sent by the UE, the AC/BNG finds that the associated service type is allowed to access the EPC according to the UE MAC, and then finds the associated GRE tunnel. The packet is encapsulated by the GRE tunnel to the TWAG'; after receiving the GRE packet, the TWAG' removes the encapsulation of the GRE header and then processes the routing request message.
  • step 808 - step 811 is performed, and then go to step 820 to continue execution. Otherwise, go directly to step 820 to continue.
  • Step 820 - Step 821 Perform the remaining process of the route confirmation message to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 822 When the BNG/AC receives the uplink data, it also according to the UE MAC or the UE IP. Address, find the associated service type as EPC access, and then find the associated GRE tunnel, and then encapsulate the message to TWAG through the GRE tunnel; after receiving the GRE message, TWAG' removes the encapsulation of the GRE header and passes The GTP or PMIP tunnel is encapsulated and forwarded to the P-GW.
  • the BNG/AC When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
  • the process is similar to that in Embodiment 6.
  • the difference is that the AP/RG is not used as the EAP Authenticator, but the AC/BNG is used as the EAP Authenticator.
  • the AP/RG cannot sense the related EAP authentication process.
  • Other processes refer to the related description of Embodiment 6. For details, see the process shown in Figure 9, including the following steps:
  • Step 901 The UE and the WLAN network element perform a non-3GPP specific process, such as: link establishment, etc.;
  • Step 902 The UE may send an EAPOL-START message to the AC/BNG to request authentication.
  • Step 903-Step 904 The AC/BNG acts as an EAP authenticator, and triggers an EAP authentication process to the UE.
  • the UE carries the NAI in the EAP-RES/Identity message.
  • the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed.
  • the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the packet is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header and then forwards the decapsulated message to 3GPPAAA as an AAA proxy.
  • Step 905 Step 907: Perform a subsequent EAP process.
  • step 906 is performed.
  • TWAG' acts as step 903-step 904 as an AAA proxy.
  • the AC/BNG obtains the service type authorized by the 3GPP AAA.
  • the service type includes: allowing access to the EPC, and/or slotted service offload, or denying access.
  • the AC/BNG After the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved.
  • the type of service is to allow access to the EPC.
  • the AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports.
  • the type is to allow access to the EPC.
  • step 908-step 911 is performed, and then the process proceeds to step 912. Otherwise, go directly to step 912 for execution.
  • Step 908 Step 913: After receiving the EAP authentication success message, the TWAG' requests the P-GW to establish a GTP/PMIP tunnel, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
  • Step 914 - Step 915 If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (specifically, it may be a DHCPv4 or a DHCPv6 message), and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message.
  • the DHCP request message specifically, it may be a DHCPv4 or a DHCPv6 message
  • Step 916 - Step 917 Perform another process of DHCP between the UE and the TWAG, and allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 918 Step 919: If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, and then finds the associated service type according to the UE MAC to allow access to the EPC, and then finds the associated GRE tunnel. The packet is encapsulated by the GRE tunnel to the TWAG'; after receiving the GRE packet, the TWAG' removes the encapsulation of the GRE header and then processes the routing request message.
  • step 908-step 911 is performed, and then go to step 920 to continue execution. Otherwise, go directly to step 920 to continue.
  • Step 920 - Step 921 Perform the remaining process of the route confirmation message to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 922 When the BNG/AC receives the uplink data, it also finds the associated service type as EPC access according to the UE MAC or the UE IP address, and then finds the associated GRE tunnel, and then encapsulates the message through the GRE tunnel.
  • TWAG After TWAG, TWAG' receives the GRE header, removes the encapsulation of the GRE header, encapsulates it through GTP or PMIP tunnel, and forwards it to the P-GW.
  • the BNG/AC When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
  • the procedure is the same as that in the fourth embodiment.
  • the difference is that the EAP authentication process between the TWAG and the 3GPP AAA does not need to be transited by the WLAN AAA, but directly communicates with each other.
  • Other processes refer to the related description of Embodiment 4.
  • Step 1001 - Step 1013 The same as Step 401 - Step 413.
  • the AC/BNG as an AAA proxy, obtains the service type authorized by the 3GPP AAA.
  • the service type includes: EPC access, and/or slotted service offload, or denial of access.
  • Step 1014 Step 1016: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message sent by the UE, and then determines to locally allocate the IP address to the UE according to the slotted service offload information associated with the UE MAC address. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
  • Step 1017 Step 1018: If the UE sends a route request message, after receiving the route request message sent by the UE, the AC/BNG decides to allocate the IP address allocation to the UE locally according to the slotted service offload information associated with the UE MAC address. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
  • Step 1019 When the BNG/AC receives the uplink data, it also finds the associated service type as a slotted service offload according to the UE MAC or the source IP address, and then performs specific data forwarding.
  • the BNG/AC When the BNG/AC receives downlink data, it forwards the packet directly to the UE.
  • Step 1001 - Step 1013 is replaced by Step 501 - Step 513.
  • the processing of the other steps is the same as that of this embodiment.
  • the embodiment is based on the architecture of the embodiment 1.
  • the TWAG supports assigning a local IP address to the UE. For details, see the process shown in Figure 11. The process includes the following steps:
  • Step 1101 - Step 1113 It is identical to the foregoing steps 601 - 613.
  • Step 1114 - Step 1115 It is identical to the foregoing Step 614 - Step 615.
  • Step 1116 - Step 1117 If the UE sends a DHCP request message, the AC/BNG root The associated GRE tunnel is found according to the UE MAC address, and the message is sent to the TWAG' through the GRE tunnel. After receiving the GRE message, the TWAG' decapsulates and obtains the DHCP request message sent by the UE, and the slot is associated according to the UE MAC address. The service offload information determines that the IP address allocation is assigned to the UE locally. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. At this time, TWAG can bind the IP address to the MAC address.
  • Step 1118 - Step 1121 If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, finds the associated GRE tunnel according to the UE MAC address, and sends a message to the TWAG' through the GRE tunnel.
  • the packet is a Layer 2 packet that encapsulates the routing message.
  • the TWAG' After receiving the GRE packet, the TWAG' obtains the Layer 2 packet and obtains the UE MAC address from the Layer 2 protocol header of the packet, and then associates the MAC address according to the UE.
  • the slotted service offload information determines that the UE is assigned an IP address assignment. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
  • the BNG/AC supports the collection of the charging information based on the UE and reports it to the WLAN AAA for charging.
  • the TWAG can also support the collection of the charging information and report it to the WLAN.
  • AAA performs billing. Therefore, when TWAG' assigns an IP address to the UE (for example, at the same time as TWAG, when step 1116 or 1120 is performed), a charging request (start) message is sent to the WLAN AAA, and then the WLAN AAA replies to the charging response (start) message.
  • the TWAG performs specific service offloading, and the TWAG, the calculated charging information is the total charging information or the independent charging information of the service data of the 3GPP UE accessing the EPC and the direct service offload. For details, refer to the related description of Embodiment 2. These billing information can be used as a billing reference between operators.
  • Step 1122 When the BNG/AC receives the uplink data, the associated GRE tunnel is found according to the UE MAC or the source IP address, and the packet is sent to the TWAG' through the GRE tunnel.
  • the data packet can be the encapsulated Layer 2 datagram.
  • the TWAG obtains the GRE message, decapsulates the data packet, and then finds the data according to the UE MAC address or the UE IP address.
  • the business type to which it is associated is a split traffic, and then specific data forwarding is performed.
  • the TWAG When the TWAG receives the downlink data, it follows the reverse process of the uplink data forwarding path and forwards it to the UE.
  • step 1101 - step 1113 is replaced by step 501-513.
  • the processing of the other steps is the same as that of this embodiment.
  • the TWAG' when the TWAG' receives the detachment related message of the UE leaving the network, it sends a charging request (termination) message to the WLAN AAA, and then the WLAN AAA replies to the charging response (terminating) message.
  • TWAG can also support the Diameter charging protocol, and the related message replaces the related charging message of the above Radius.
  • the embodiment is based on the architecture of the embodiment 2.
  • the TWAG supports assigning a local IP address to the UE.
  • the process shown in Figure 12. the process is similar to that of the embodiment 9, except that the EAP authentication process between the TWAG' and the 3GPP AAA does not need to be transited by the WLAN AAA, but directly communicates with each other.
  • the related description of Embodiment 9. refer to the process shown in Figure 12.
  • the process includes the following steps: Step 1201 - Step 1213: The same as Step 1001 - Step 1013, refer to the foregoing Step 1001 - Step 1013.
  • Step 1214 - Step 1215 The same as the foregoing Step 1014 - Step 10115, see Step 1014 - Step 1015.
  • Step 1216 - Step 1217 If the UE sends a DHCP request message, the AC/BNG finds the associated GRE tunnel according to the UE MAC address, and sends the message to the TWAG' through the GRE tunnel. After receiving the GRE message, the TWAG' decapsulates the packet. After the DHCP request message sent by the UE, according to the slotted service offload information associated with the UE MAC address, the local UE is determined to be With IP address allocation. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. At this time, TWAG can bind the IP address to the MAC address.
  • Step 1218 - Step 1221 If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, finds the associated GRE tunnel according to the UE MAC address, and sends a message to the TWAG' through the GRE tunnel.
  • the packet is a Layer 2 packet that encapsulates the routing message.
  • the TWAG' After receiving the GRE packet, the TWAG' obtains the Layer 2 packet and obtains the UE MAC address from the Layer 2 protocol header of the packet, and then associates the MAC address according to the UE.
  • the slotted service offload information determines that the UE is assigned an IP address assignment. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
  • Step 1222 When the BNG/AC receives the uplink data, the associated GRE tunnel is found according to the UE MAC or the source IP address, and the packet is sent to the TWAG' through the GRE tunnel.
  • the data packet can be the encapsulated Layer 2 datagram.
  • the TWAG after receiving the GRE packet, decapsulates and obtains the data packet, and then finds the associated service type as a slotted service traffic according to the UE MAC address or the UE IP address, and then executes the specific service. Data forwarding.
  • the TWAG When the TWAG receives the downlink data, it follows the reverse process of the uplink data forwarding path and forwards it to the UE.
  • the above embodiment is for the AP/RG as the EAP authenticator. If the AC/BNG is the EAP authenticator, then the step 1201 - step 1213 is replaced by the step 501 - step 513. The processing of the other steps is the same as that of this embodiment.
  • FIG. 13 is a schematic structural diagram of a functional network element according to an embodiment of the present invention.
  • the functional network element in the embodiment of the present invention is applied to a trusted WLAN access network and a 3GPP core network.
  • the receiving unit 130 and the forwarding unit 131 and/or the transmitting unit are optional functional units), where:
  • the receiving unit 130 is configured to receive an authentication request message sent by the UE when accessing the WLAN access network, and receive an authentication response message sent by the AAA, and/or receive the access network element of the WLAN access network. Sending an IP address request message; and/or receiving an AAA charging response message sent by an AAA server or an AAA proxy of the WLAN access network;
  • the forwarding unit 131 is configured to forward the authentication request message to the AAA, and forward the authentication response message to an access network element of the WLAN access network;
  • the sending unit is configured to send an AAA charging request message to the AAA of the WLAN access network when the receiving unit 130 receives the AAA charging response message sent by the AAA server or the AAA proxy of the WLAN access network.
  • the WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
  • the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
  • a GRE tunnel or an MPLS tunnel is established between the WLAN access network access gateway and the access network element of the WLAN access network.
  • the access network element of the WLAN access network includes a BNG/AC.
  • FIG. 14 is a schematic structural diagram of another functional network element according to an embodiment of the present invention.
  • the functional network element in the embodiment of the present invention is applied to a network in which a trusted WLAN access network and a 3GPP core network are integrated.
  • the method includes: a receiving unit 140, an obtaining unit 141, and a determining unit 142, among them:
  • the receiving unit 140 is configured to receive an authentication response message sent by the AAA.
  • An obtaining unit 141 configured to obtain a business type of the decision
  • the determining unit 142 is configured to determine, according to the service type information associated with the UE, whether to allocate a local IP to the UE, and implement routing to the UE.
  • the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
  • the WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
  • the service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
  • the example function network element further includes: an allocating unit (not shown in FIG. 14);
  • the allocating unit allocates a local IP to the UE.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Disclosed is a routing selection method, which is applied to a converged network of a WLAN access network and a 3GPP core network. A functional network element is arranged between the WLAN access network and the 3GPP core network. The method comprises: when UE accesses through a WLAN access network, a functional network element forwarding to an AAA an authentication request message sent by the UE, and forwarding to an access network element of the WLAN access network the authentication response message sent by the AAA; and/or the functional network element receiving an IP address request message sent by the access network element of the WLAN access network. Also disclosed at the same time is a functional network element. The present invention can conduct routing selection for 3GPP UE according to the type of the accessing UE and the service type, thereby reducing the access pressure of a 3GPP network.

Description

路由选择方法及功能网元 技术领域  Routing method and function network element
本发明涉及路由选择技术, 尤其涉及一种路由选择方法及功能网元。 背景技术  The present invention relates to a routing technology, and in particular, to a routing method and a functional network element. Background technique
第三代合作伙伴计划 (3GPP, 3rd Generation Partnership Project ) 的演 进的分组系统(EPS, Evolved Packet System ) 由演进的通用地面无线接入 网 ( E-UTRAN, Evolved Universal Terrestrial Radio Access Network )、 移动 管理单元(MME, Mobility Management Entity ),服务网关(S-GW, Serving Gateway ), 分组数据网络网关 (P-GW, Packet Data Network Gateway )和 归属用户服务器( HSS, Home Subscriber Server )组成。  Evolved Universal Terrestrial Radio Access Network (E-UTRAN), Mobile Administration, Evolved Universal Terrestrial Radio Access Network (E-UTRAN), 3rd Generation Partnership Project (3GPP, 3rd Generation Partnership Project) The unit (MME, Mobility Management Entity), the Serving Gateway (S-GW), the Packet Data Network Gateway (P-GW), and the Home Subscriber Server (HSS).
图 1为现有技术中 3GPP网络与非 3GPP网络实现互通的结构示意图, 如图 1所示, EPS支持与非 3GPP系统的互通, 其中, 与非 3GPP系统的互 通通过 S2a/b/c接口实现, P-GW作为 3GPP与非 3GPP系统间的锚点。 在 EPS的系统架构图中,非 3GPP系统接入被分为不可信任非 3GPP接入和可 信任非 3GPP接入; 其中, 不可信任非 3GPP接入需经过演进的分组数据网 关(ePDG, Evolved Packet Data Gateway ) 与 P-GW相连, ePDG与 P-GW 间的接口为 S2b; 可信任非 3GPP接入可直接通过 S2a接口与 P-GW连接, S2a接口采用 PMIP协议进行信息交互;另外, S2c接口提供了用户设^ UE , User Equipment )与 P-GW之间的用户面相关的控制和移动性支持, 其支持 的移动性管理协议为支持双栈的移动 IPv6 ( DSMIPv6, Moblie IPv6 Support for Dual Stack Hosts and Routers), 其可用于不可信任非 3GPP和可信任非 3GPP接入。  1 is a schematic structural diagram of interworking between a 3GPP network and a non-3GPP network in the prior art. As shown in FIG. 1, the EPS supports interworking with a non-3GPP system, wherein interworking with a non-3GPP system is implemented through an S2a/b/c interface. The P-GW acts as an anchor between the 3GPP and the non-3GPP system. In the system architecture diagram of EPS, non-3GPP system access is divided into untrusted non-3GPP access and trusted non-3GPP access; wherein untrusted non-3GPP access requires evolved packet data gateway (ePDG, Evolved Packet) The Data Gateway is connected to the P-GW. The interface between the ePDG and the P-GW is S2b. The trusted non-3GPP access can be directly connected to the P-GW through the S2a interface. The S2a interface uses the PMIP protocol for information exchange. In addition, the S2c interface Provides user plane-related control and mobility support between the user set UE, User Equipment and the P-GW. The supported mobility management protocol is dual-stack mobile IPv6 (DSMIPv6, Moblie IPv6 Support for Dual Stack). Hosts and Routers), which can be used for untrusted non-3GPP and trusted non-3GPP access.
目前, 许多运营商认为, 无线局域网络(WLAN, Wireless Local Area Network )可以作为可信任的非 3GPP系统, 因此, UE通过可信任的 WLAN 接入 EPS的互联互通问题逐渐被重视并开始研究, 并且现有技术已有相关 的架构产生。 图 2为现有技术中 UE通过 WLAN接入 EPC的架构示意图, 如图 2所示, WLAN的一个逻辑网元与 3GPP 的 P-GW通过 S2a接口互通, S2a接口支持 GTP ( Generic Tunneling Protocol ) /PMIP ( Proxy Mobile IP ) 协议 , 但 WLAN网络内部的具体逻辑网元如何支持与 P-GW的互通流程 , 并没有明确的技术方案。 Currently, many operators believe that wireless local area networks (WLAN, Wireless Local Area) Network can be used as a trusted non-3GPP system. Therefore, the problem of interworking between UEs accessing EPS through trusted WLANs has gradually been taken seriously and research has begun, and related architectures have been generated in the prior art. 2 is a schematic diagram of the architecture of the UE accessing the EPC through the WLAN in the prior art. As shown in FIG. 2, one logical network element of the WLAN communicates with the P-GW of the 3GPP through the S2a interface, and the S2a interface supports the GTP (Generic Tunneling Protocol) / The PMIP (Proxy Mobile IP) protocol, but how the specific logical network elements inside the WLAN network support the interworking process with the P-GW, there is no clear technical solution.
在相关技术中, 如果要使 AC ( Access Controller ) /BNG ( Boundary Network Node ) 支持 S2a接口的话, 需要对所有 AC/BNG设备进行升级, 这样会对现网影响较大。 为了解决该问题, 引入了 WLAN接入网关(例如, 可信任的 WLAN接入网关( TWAG,, Trusted WLAN Access Gateway ) ), 不需要对 AC/BNG设备进行大规模升级即可实现到 3GPP网络的接入, 从 而减少了对现网的升级改造。 另外, 在 WLAN UE和 3GPP UE同时存在的 情况下, 如何保证其对 WLAN UE的相关流程不影响, 目前尚没有相关的 研 。 发明内容  In the related art, if the AC (Access Controller) / BNG (Boundary Network Node) supports the S2a interface, all AC/BNG devices need to be upgraded, which will have a greater impact on the live network. In order to solve this problem, a WLAN access gateway (for example, a Trusted WLAN Access Gateway (TWAG)) is introduced, and the 3GPP network can be implemented without a large-scale upgrade of the AC/BNG equipment. Access, which reduces the upgrade of the existing network. In addition, in the case where both the WLAN UE and the 3GPP UE exist simultaneously, how to ensure that it does not affect the related processes of the WLAN UE, there is no relevant research at present. Summary of the invention
有鉴于此, 本发明的主要目的在于提供一种路由选择方法及功能网元, 能在可信任的 WLAN与 3GPP网络融合网络中为接入的 3GPP UE实现路由 选择, 从而减轻 3GPP网络的接入压力。  In view of this, the main purpose of the present invention is to provide a routing method and a function network element, which can implement routing for an accessed 3GPP UE in a trusted WLAN and a 3GPP network convergence network, thereby reducing access of the 3GPP network. pressure.
为达到上述目的, 本发明的技术方案是这样实现的: 一种路由选择方法, 应用于无线局域网 WLAN接入网和第三代合作伙 伴计划 3GPP核心网融合的网络; 在所述 WLAN接入网和所述 3GPP核心 网之间设置有功能网元; 所述方法包括:  In order to achieve the above object, the technical solution of the present invention is implemented as follows: a routing method applied to a wireless local area network WLAN access network and a network of a third generation partnership project 3GPP core network convergence; in the WLAN access network And a functional network element is disposed between the 3GPP core network; and the method includes:
用户设备 UE通过所述 WLAN接入网接入时, 所述功能网元向认证授 权计费 AAA转发所述 UE发送的认证请求消息, 并向所述 WLAN接入网 的接入网元转发所述 AAA发送的认证响应消息; 和 /或, 所述功能网元接 收所述 WLAN接入网的接入网元发送的 IP地址请求消息。 When the user equipment UE accesses the WLAN access network, the function network element grants authentication The right charging AAA forwards the authentication request message sent by the UE, and forwards the authentication response message sent by the AAA to the access network element of the WLAN access network; and/or, the function network element receives the WLAN An IP address request message sent by the access network element of the access network.
其中, 所述功能网元位于所述 WLAN接入网或 3GPP核心网中。  The functional network element is located in the WLAN access network or the 3GPP core network.
其中, 所述 AAA为所述 WLAN接入网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器或 AAA代理。  The AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
其中, 所述功能网元与所述 WLAN接入网的接入网元之间建立有通用 路由封装 GRE隧道或多协议标签交换 MPLS隧道。  A universal routing encapsulated GRE tunnel or a multi-protocol label switching MPLS tunnel is established between the functional network element and the access network element of the WLAN access network.
其中, 所述方法还包括:  The method further includes:
所述 WLAN接入网的接入网元根据认证类型和 /或所述 UE的域名,确 定所述 UE是否为 3GPP UE, 并确定报文路由。  The access network element of the WLAN access network determines whether the UE is a 3GPP UE according to an authentication type and/or a domain name of the UE, and determines a packet route.
其中, 所述方法还包括:  The method further includes:
所述 WLAN接入网的接入网元根据所述 UE关联的业务类型, 确定是 否本地为所述 UE分配 IP地址。  The access network element of the WLAN access network determines, according to the service type associated with the UE, whether to locally allocate an IP address for the UE.
其中, 所述方法还包括:  The method further includes:
所述 WLAN接入网的接入网元通过扩展认证协议 EAP的认证 ,从所述 3GPP核心网的 AAA服务器或 AAA代理获取决策的所述业务类型的信息。  The access network element of the WLAN access network obtains the information of the service type of the decision from the AAA server or the AAA proxy of the 3GPP core network by using the authentication of the extended authentication protocol EAP.
其中, 所述业务类型包括: 允许接入所述 3GPP核心网, 和 /或有缝的 业务分流, 或拒绝接入。  The service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
其中, 所述 WLAN接入网的接入网元包括边界网络节点 BNG/接入控 制器 AC。  The access network element of the WLAN access network includes a border network node BNG/access controller AC.
其中, 所述 IP地址请求消息为 DHCP消息或路由请求消息。  The IP address request message is a DHCP message or a route request message.
其中, 所述功能实体与 WLAN接入网的 AAA服务器或 AAA代理连 接时, 由所述功能实体支持计费信息的收集, 并通过 AAA计费消息上报给 所述 WLAN接入网的 AAA服务器或 AAA代理。 其中,所述 AAA计费消息包括 Radius计费消息或 Diameter计费消息。 其中, 所述 WLAN接入网包含固定宽带论坛 BBF定义的架构网络。 一种路由选择方法,应用于 WLAN接入网和 3GPP核心网融合的网络; 所述融合的网络中设置有功能网元; 所述方法包括: When the function entity is connected to the AAA server or the AAA proxy of the WLAN access network, the function entity supports the collection of the charging information, and reports the AAA charging message to the AAA server of the WLAN access network or AAA agent. The AAA charging message includes a Radius charging message or a Diameter charging message. The WLAN access network includes an architecture network defined by a fixed broadband forum BBF. A routing method is applied to a network in which a WLAN access network and a 3GPP core network are integrated; a functional network element is configured in the fused network; and the method includes:
所述功能网元接收 AAA发送的认证响应消息, 获取决策的业务类型, 并根据 UE关联的业务类型信息,确定是否为所述 UE分配本地 IP, 实现对 所述 UE的路由选择。  The function network element receives the authentication response message sent by the AAA, obtains the service type of the decision, and determines whether to allocate the local IP to the UE according to the service type information associated with the UE, and implements routing to the UE.
其中, 所述 AAA为所述 WLAN接入网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器。  The AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server of the 3GPP core network.
其中, 所述功能网元位于所述 WLAN接入网或所述 3GPP核心网中。 其中, 所述业务类型包括: 允许接入所述 3GPP核心网, 和 /或有缝的 业务分流, 或拒绝接入。  The functional network element is located in the WLAN access network or the 3GPP core network. The service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
其中, 所述业务类型为有缝的业务分流时, 所述功能网元接收到 IP地 址请求消息后, 为所述 UE分配本地 IP。  When the service type is a slotted service offload, the function network element allocates a local IP to the UE after receiving the IP address request message.
其中, 所述 IP地址请求消息为 DHCP消息或路由请求消息。  The IP address request message is a DHCP message or a route request message.
一种功能网元, 应用于 WLAN接入网和 3GPP核心网融合的网络中; 所述功能网元包括: 接收单元、 转发单元和 /或发送单元, 其中:  A functional network element is applied to a network in which a WLAN access network and a 3GPP core network are integrated; the functional network element includes: a receiving unit, a forwarding unit, and/or a sending unit, where:
接收单元, 设置为接收 UE通过所述 WLAN接入网接入时发送的认证 请求消息; 以及,接收 AAA发送的认证响应消息; 和 /或,接收所述 WLAN 接入网的接入网元发送的 IP地址请求消息; 和 /或 , 接收 WLAN接入网的 AAA服务器或 AAA代理发送的 AAA计费响应消息;  a receiving unit, configured to receive an authentication request message sent by the UE when accessing the WLAN access network; and receiving an authentication response message sent by the AAA; and/or receiving the access network element of the WLAN access network IP address request message; and/or, receiving an AAA charging response message sent by an AAA server or an AAA proxy of the WLAN access network;
转发单元, 设置为向所述 AAA转发所述认证请求消息; 以及, 向所述 WLAN接入网的接入网元转发所述认证响应消息;  a forwarding unit, configured to forward the authentication request message to the AAA; and forward the authentication response message to an access network element of the WLAN access network;
发送单元,设置为向所述 WLAN接入网的 AAA服务器或 AAA代理发 送 AAA计费请求消息。 其中, 所述 WLAN接入网接入网关位于所述 WLAN接入网或 3GPP 核心网中。 The sending unit is configured to send an AAA charging request message to the AAA server or the AAA proxy of the WLAN access network. The WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
其中, 所述 AAA为所述 WLAN接入网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器或 AAA代理。  The AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
其中 , 所述 WLAN接入网接入网关与所述 WLAN接入网的接入网元 之间建立有 GRE隧道或 MPLS隧道。  A GRE tunnel or an MPLS tunnel is established between the WLAN access network access gateway and the access network element of the WLAN access network.
其中, 所述 WLAN接入网的接入网元包括 BNG/ AC。  The access network element of the WLAN access network includes a BNG/AC.
其中, 所述 AAA计费消息包括 Radius计费消息, 或者 Diameter计费 消息。  The AAA charging message includes a Radius charging message or a Diameter charging message.
一种功能网元, 应用于 WLAN接入网和 3GPP核心网融合的网络中; 所述 WLAN接入网接入网关包括: 接收单元、获取单元和确定单元,其中: 接收单元, 设置为接收 AAA发送的认证响应消息;  A functional network element is applied to a network in which a WLAN access network and a 3GPP core network are integrated; the WLAN access network access gateway includes: a receiving unit, an obtaining unit, and a determining unit, where: the receiving unit is configured to receive the AAA The authentication response message sent;
获取单元, 设置为获取决策的业务类型;  Get the unit, set to get the business type of the decision;
确定单元, 设置为根据 UE关联的业务类型信息, 确定是否为所述 UE 分配本地 IP, 实现对所述 UE的路由选择。  And a determining unit, configured to determine, according to the service type information associated with the UE, whether to allocate a local IP to the UE, and implement routing to the UE.
其中, 所述 AAA为所述 WLAN接入网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器或者 AAA代理。  The AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
其中, 所述 WLAN接入网接入网关位于所述 WLAN接入网或 3GPP 核心网中。  The WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
其中, 所述业务类型包括: 允许接入所述 3GPP核心网, 和 /或有缝的 业务分流, 或拒绝接入。  The service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
其中, 所述 WLAN接入网接入网关还包括:  The WLAN access network access gateway further includes:
分配单元, 设置为在业务类型为有缝的业务分流时, 所述接收单元接 收到 IP地址请求消息后 , 所述分配单元为所述 UE分配本地 IP。  The allocating unit is configured to allocate a local IP to the UE after the receiving unit receives the IP address request message, when the receiving unit receives the IP address request message.
本发明中, 在可信任的 WLAN和 3GPP网络融合的网络之间设置有功 能网元; 当 UE通过所述可信任的 WLAN接入时 , 功能网元向 AAA服务 器转发 UE发送的认证请求消息, 并向可信任的 WLAN的接入网元转发所 述 AAA服务器发送的认证响应消息; 和 /或, 功能网元接收所述可信任的 WLAN的接入网元发送的 IP地址请求消息 , 并将 3GPP网络为 UE分配的 IP地址通知所述可信任的 WLAN的接入网元; WLAN的接入网元根据所 述 UE的类型进行路由选择。 本发明能根据接入的 UE类型及业务类型为 3GPP UE进行路由选择, 从而减轻 3GPP网络的接入压力。 附图说明 In the present invention, active power is set between a network where a trusted WLAN and a 3GPP network are fused. When the UE accesses the trusted WLAN, the function network element forwards the authentication request message sent by the UE to the AAA server, and forwards the authentication sent by the AAA server to the access network element of the trusted WLAN. a response message; and/or, the function network element receives an IP address request message sent by the access network element of the trusted WLAN, and notifies the access network of the trusted WLAN by the IP address allocated by the 3GPP network for the UE The access network element of the WLAN performs routing according to the type of the UE. The invention can perform routing for the 3GPP UE according to the type and service type of the accessed UE, thereby alleviating the access pressure of the 3GPP network. DRAWINGS
图 1为现有技术中 3GPP网络与非 3GPP网络实现互通的结构示意图; 图 2为现有技术中 UE通过 WLAN接入 EPC的架构示意图; 图 3为本发明中引入 TWAG' 后, UE通过 WLAN S2a接口接入 EPC 的架构 1的示意图;  1 is a schematic structural diagram of interworking between a 3GPP network and a non-3GPP network in the prior art; FIG. 2 is a schematic diagram of a structure in which a UE accesses an EPC through a WLAN in the prior art; FIG. 3 is a schematic diagram of a UE passing through a WLAN after introducing TWAG′ in the present invention; Schematic diagram of the architecture 1 of the S2a interface accessing the EPC;
图 4为本发明实施例的基于架构 1的 UE通过 WLAN S2a接口接入 EPC 的流程图;  4 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to an embodiment of the present invention;
图 5为本发明实施例的基于架构 1的 UE通过 WLAN S2a接口接入 EPC 的流程图;  FIG. 5 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to an embodiment of the present invention;
图 6为本发明实施例的基于架构 1的 UE通过 WLAN S2a接口接入 EPC 的流程图;  6 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to an embodiment of the present invention;
图 7为本发明中引入 TWAG' 后, UE通过 WLAN S2a接口接入 EPC 的架构 2的示意图;  FIG. 7 is a schematic diagram of the architecture 2 of the UE accessing the EPC through the WLAN S2a interface after the introduction of the TWAG′ in the present invention;
图 8为本发明实施例的基于架构 2的 UE通过 WLAN S2a接口接入 EPC 的流程图;  FIG. 8 is a flowchart of a UE based on architecture 2 accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention;
图 9为本发明实施例的基于架构 2的 UE通过 WLAN S2a接口接入 EPC 的流程图;  FIG. 9 is a flowchart of a UE based on architecture 2 accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention;
图 10为本发明实施例的基于架构 2的 UE通过 WLAN S2a接口接入 EPC的流程图; FIG. 10 is a schematic diagram of a UE based on architecture 2 accessing through a WLAN S2a interface according to an embodiment of the present invention; EPC flow chart;
图 11为本发明实施例的 UE通过 WLAN S2a接口接入 EPC的流程图; 图 12为本发明实施例的 UE通过 WLAN S2a接口接入 EPC的流程图; 图 13为本发明实施例的功能网元的组成结构示意图;  FIG. 11 is a flowchart of a UE accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention; FIG. 12 is a flowchart of a UE accessing an EPC through a WLAN S2a interface according to an embodiment of the present invention; FIG. 13 is a functional network according to an embodiment of the present invention; Schematic diagram of the composition of the element;
图 14为本发明实施例的另一功能网元的组成结构示意图。 具体实施方式  FIG. 14 is a schematic structural diagram of another functional network element according to an embodiment of the present invention. detailed description
实施例 1  Example 1
在该实施例中,主要是描述 UE通过可信任的 WLAN接入 EPC时的整 个网络的架构图。该架构的中心思想是:在 WLAN网络内,增加一个 WLAN 接入网关,负责与 WLAN网络和 EPC网络之间的控制面和用户面消息互通。  In this embodiment, the architecture of the entire network when the UE accesses the EPC through the trusted WLAN is mainly described. The central idea of the architecture is to add a WLAN access gateway within the WLAN network to communicate with the control plane and user plane messages between the WLAN network and the EPC network.
该架构涉及的网元与现有的接入网络接入现有的 3GPP 网络所涉及的 网元的不同之处在于 , 在 WLAN网络内添加了一个 TWAG': TWAG' 负 责 WLAN 网络和 EPC 网络之间的控制面消息和用户面数据的互通。 图 3 为本发明中引入 TWAG' 后, UE通过 WLAN S2a接口接入 EPC的架构 1 的示意图, 如图 3所示, 在该网络架构下, 所涉及到的关键接口的如下: 接口 C: 为 TWAG' 和 BBF AAA之间的接口。 该接口用来转发 BNG 或者 BBF AAA发送的认证消息, 且可以通过 BBF AAA发送的认证成功消 息, 来触发 TWAG' 与 EPC的 P-GW之间建立 GTP/PMIP隧道;  The network element involved in the architecture differs from the network element involved in the existing access network accessing the existing 3GPP network in that a TWAG' is added to the WLAN network: TWAG' is responsible for the WLAN network and the EPC network. Interworking between control plane messages and user plane data. FIG. 3 is a schematic diagram of the architecture 1 of the UE accessing the EPC through the WLAN S2a interface after the introduction of the TWAG′ in the present invention. As shown in FIG. 3, the key interfaces involved in the network architecture are as follows: Interface C: Interface between TWAG' and BBF AAA. The interface is used to forward the authentication message sent by the BNG or BBF AAA, and the authentication success message sent by the BBF AAA can be used to trigger the establishment of a GTP/PMIP tunnel between the TWAG' and the P-GW of the EPC.
接口 D: 为 TWAG' 和 BNG之间的接口。 该接口用来转发 BNG发送 的认证消息, 或者 DHCP消息, 以及用户数据等。  Interface D: is the interface between TWAG' and BNG. This interface is used to forward authentication messages, or DHCP messages, and user data sent by the BNG.
说明: 上述架构主要逻辑网络是针对 BBF接入架构来说的, 同样, 上 述的架构也适用于 WLAN接入网络, 其中, RG用 AP代替, BNG用 AC 代替。  NOTE: The main logical network of the above architecture is for the BBF access architecture. Similarly, the above architecture is also applicable to the WLAN access network. The RG is replaced by an AP and the BNG is replaced by an AC.
实施例 2  Example 2
该实施例中,主要是描述 3GPP UE通过 WLAN接入 3GPP EPC的流程。 其中, EAP认证流程需要经过 TWAG, 转发到 WLAN AAA, AP/RG作为 EAP认证者, AC/BNG和 TWAG, 作为 AAA代理。 当 AC/BNG收到 3GPP AAA决策的业务类型为允许接入 EPC时, 则执行该实施例。 图 4为本发明 实施例一的基于架构 1的 UE通过 WLAN S2a接口接入 EPC的流程图, UE 通过 WLAN S2a接口接入 EPC的流程包括以下步驟: In this embodiment, the process of accessing the 3GPP EPC by the 3GPP UE through the WLAN is mainly described. The EAP authentication process needs to be forwarded to the WLAN AAA through the TWAG, and the AP/RG is used as the EAP Authenticator, AC/BNG and TWAG as the AAA proxy. This embodiment is executed when the traffic type that the AC/BNG receives the 3GPP AAA decision is to allow access to the EPC. 4 is a flowchart of a UE connected to an EPC through a WLAN S2a interface according to a first embodiment of the present invention. The process for a UE to access an EPC through a WLAN S2a interface includes the following steps:
步驟 401 : UE与 WLAN网元执行非 3GPP特有的流程, 比如: 链路建 立等;  Step 401: The UE performs a non-3GPP-specific process with the WLAN network element, for example, establishing a link, and the like;
步驟 402: UE可能向 AP/RG发送 EAPOL-START消息, 请求认证; 步驟 403-步驟 404: AP/RG作为 EAP认证者, 会向 UE触发 EAP认证 流程。其中, UE在 EAP-RES/Identity消息中携带 NAI。 AC/BNG收到 AAA 封装的 EAP-RES/Identity消息之后,可以先根据认证类型,判断是否为 3GPP UE, 如果认证类型不为 EAP认证的话, 则认为其为 WLAN UE, 则执行 WLAN UE接入 WLAN网络的现有技术中的流程; 否则, 再通过解析消息 获取 NAI中的域名信息, 判断其为 3GPP UE; 或者, 也可以只通过域名来 判断其为 3GPP UE。 如果为 3GPP UE的话, 则将 UE MAC地址、域名信息 关联到相应的 GRE 隧道中, 且本地保存这种关联关系; 然后, 通过 GRE 隧道封装该报文到 TWAG,, 或者根据路由转发到 TWAG,; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然作为 AAA代理, 将解封装的报文 转发到 WLAN AAA, 再经 WLAN AAA转发到 3GPP AAA。  Step 402: The UE may send an EAPOL-START message to the AP/RG to request authentication. Step 403-Step 404: The AP/RG acts as an EAP Authenticator and triggers an EAP authentication process to the UE. The UE carries the NAI in the EAP-RES/Identity message. After receiving the AAA-encapsulated EAP-RES/Identity message, the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed. The process in the prior art of the WLAN network; otherwise, the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the message is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header, and then acts as an AAA proxy, forwards the decapsulated packet to WLAN AAA, and forwards it to 3GPP AAA via WLAN AAA.
说明: 上述的 GRE隧道也可以采用其他类型的隧道代替, 比如: MPLS 等; 或者, EAP认证消息直接通过路由方式传递, 不通过隧道传输。  NOTE: The above GRE tunnels can be replaced by other types of tunnels, such as MPLS. EAP authentication messages are directly transmitted through the tunnel and are not transmitted through the tunnel.
步驟 405-步驟 407: 执行后续的 EAP流程, 当 TWAG, 收到 EAP认证 成功消息, 则执行步驟 406。 其中, TWAG' 的作用同步驟 403-步驟 404, 作为 AAA代理或 AAA中继。 在认证过程中, AC/BNG会获取 3GPP AAA 授权的业务类型, 该业务类型具体包括: 允许接入 EPC, 和 /或有缝的业务 分流, 或者拒绝接入。 在 AC/BNG获取 3GPPAAA授权的业务类型后, 如 果该业务类型为允许接入 EPC的话, 可以将该信息和 UE MAC地址绑定, 且本地保存这种关联关系。 在该实施例中, 业务类型即为允许接入 EPC。 AC/BNG可能会本地保存业务类型和 UE MAC地址的关联关系, 以显式说 明其支持的业务类型为允许接入 EPC, 或者也可以不在本地保存这个关联 关系, 以隐式说明其支持的业务类型为允许接入 EPC。 Step 405 - Step 407: Perform a subsequent EAP process. When the TWAG receives the EAP authentication success message, step 406 is performed. Wherein, TWAG' functions as step 403-step 404 as an AAA proxy or AAA relay. During the authentication process, AC/BNG obtains the service type authorized by 3GPP AAA. The service type includes: Allow access to EPC, and/or slotted services. Divert, or deny access. After the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC. The AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports. The type is to allow access to the EPC.
如果是由 EAP认证成功消息触发 GTP/PMIP隧道建立的话, 则执行步 驟 408-步驟 411 , 再转到步驟 412执行。 否则, 直接转到步驟 412执行。  If the GTP/PMIP tunnel establishment is triggered by the EAP authentication success message, step 408-411 is performed, and then the process proceeds to step 412. Otherwise, go directly to step 412 for execution.
步驟 408-步驟 413: TWAG' 收到 EAP认证成功消息之后, 则向 P-GW 请求 GTP/PMIP隧道的建立 , 同时, 也会和 PCRF之间建立 IP-CAN会话 , 和 HSS之间进行 P-GW标识更新。 在 TWAG, 收到创建会话响应消息或者 代理绑定确认消息之后, 则通过 AC/BNG、 AP/RG向 UE发送 EAP认证成 功消息。  Step 408-Step 413: After receiving the EAP authentication success message, the TWAG' requests the establishment of the GTP/PMIP tunnel to the P-GW, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
步驟 414-步驟 415:如果 UE发送 DHCP请求消息的话, AC/BNG收到 UE发送的 DHCP请求消息(具体可以为 DHCPv4或者 DHCPv6消息)后, 则根据 UE MAC找到其关联的业务类型为允许接入 EPC, 然后找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG,; TWAG' 收到 GRE报文 之后, 去掉 GRE头的封装, 然后处理 DHCP请求消息。  Step 414 - Step 415: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (which may be a DHCPv4 or DHCPv6 message) sent by the UE, and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message.
如果是由 DHCP 消息触发 GTP/PMIP 隧道建立的话, 则执行步驟 408-411 , 再转到步驟 416执行。 否则, 直接转到步驟 416执行。  If the GTP/PMIP tunnel establishment is triggered by the DHCP message, then steps 408-411 are performed, and then the process proceeds to step 416. Otherwise, go directly to step 416 for execution.
步驟 416-步驟 417: UE和 TWAG, 之间执行 DHCP的其他流程, 为 UE分配 IP地址。 这个时 , 也可以将 IP地址与 MAC地址绑定。  Step 416 - Step 417: Perform another DHCP process between the UE and the TWAG to allocate an IP address to the UE. At this time, you can also bind the IP address to the MAC address.
步驟 418: 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的 路由请求消息后,则根据 UE MAC找到其关联的业务类型为允许接入 EPC, 然后,找到关联的 GRE隧道,通过 GRE隧道封装该报文到 TWAG'; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然后处理路由请求消息。 Step 418: If the UE sends a route request message, after receiving the route request message sent by the UE, the AC/BNG finds that the associated service type is allowed to access the EPC according to the UE MAC, and then finds the associated GRE tunnel through the GRE. The tunnel encapsulates the message to TWAG';TWAG' After receiving the GRE packet, the encapsulation of the GRE header is removed, and then the routing request message is processed.
如果是由路由请求消息触发 GTP/PMIP隧道建立的话,则执行步驟 408- 步驟 411 , 再转到步驟 420继续执行。 否则, 直接转到步驟 420继续执行。  If the GTP/PMIP tunnel establishment is triggered by the route request message, step 408-411 is performed, and then go to step 420 to continue execution. Otherwise, go directly to step 420 to continue.
步驟 420-步驟 421 : 执行路由确认消息的剩余流程, 为 UE分配 IP地 址。 这个时, 也可以将 IP地址与 MAC地址绑定。  Step 420 - Step 421: Perform the remaining process of the route confirmation message to allocate an IP address to the UE. At this time, you can also bind the IP address to the MAC address.
通常情况是 BNG/AC支持基于该 UE的计费信息收集,并上报给 WLAN AAA进行计费; 在该实施例中, 可选的, TWAG,也可以支持计费信息的收 集 , 并上报给 WLAN AAA进行计费。 因此, 待 TWAG'为 UE分配完 IP地 址(比如:在 TWAG,执行步驟 417或者步驟 420的同时)时,向 WLAN AAA 发送计费请求(开始 )消息, 然后 WLAN AAA回复计费响应(开始 )消息。 当 BNG/AC执行具体的业务分流时, TWAG,所统计的计费信息为 3GPP UE 接入 EPC的相关业务数据的计费信息。 当 TWAG,执行具体的业务分流时, 贝' J TWAG,所统计的计费信息为 3GPP UE接入 EPC和直接业务分流的业务 数据的总计费信息或者独立计费信息。 如果是发送总计费信息的话, 则 TWAG,向 WLAN发送的计费请求(开始消息 )是在 TWAG'收到的第一个 请求 IP地址的消息时发送的, 比如: TWAG,收到第一个请求 IP地址的消 息, 指示其直接业务分流, 则这个时 TWAG,向 WLAN发送计费请求(开 始消息),后续, TWAG,再收到一个请求 IP地址的消息,指示其从 PDN GW 分配 IP地址, 这个时 TWAG,不会向 WLAN发送计费请求(开始消息); 反 之, 亦然。 如果发送独立的计费信息的话, 则独立发送计费请求(开始消 息)。 这些计费信息可以作为运营商间的计费账单参考。  Generally, the BNG/AC supports the collection of the charging information based on the UE and reports it to the WLAN AAA for charging. In this embodiment, the TWAG can also support the collection of the charging information and report it to the WLAN. AAA performs billing. Therefore, when the TWAG' allocates an IP address to the UE (for example, in the case of TWAG, while performing step 417 or step 420), a charging request (start) message is sent to the WLAN AAA, and then the WLAN AAA replies to the charging response (start). Message. When the BNG/AC performs specific service offloading, the TWAG, the calculated charging information is the charging information of the related service data that the 3GPP UE accesses the EPC. When TWAG performs specific traffic offloading, the billing information is the total billing information or the independent billing information of the service data of the 3GPP UE accessing the EPC and the direct service offload. If the total charging information is sent, the TWAG, the charging request (start message) sent to the WLAN is sent when the TWAG' receives the first request for the IP address, for example: TWAG, receives the first A message requesting an IP address indicating its direct traffic offload, then the TWAG sends a charging request (start message) to the WLAN, and subsequently, the TWAG receives a message requesting an IP address, instructing it to allocate an IP from the PDN GW. Address, TWAG at this time, will not send a charging request (start message) to the WLAN; vice versa. If independent charging information is sent, the charging request (start message) is sent independently. These billing information can be used as a reference for billing bills between operators.
步驟 422: 当 BNG/AC收到上行数据时,也会根据 UE MAC或者 UE IP 地址, 找到其关联的业务类型为 EPC接入, 然后, 找到关联的 GRE隧道, 然后通过 GRE隧道封装该艮文到 TWAG,; TWAG' 收到 GRE 艮文之后, 去掉 GRE头的封装, 并通过 GTP或者 PMIP隧道封装, 且转发到 P-GW。 当 BNG/AC收到下行数据时, 直接去掉 GRE头的封装,将报文转发给Step 422: When the BNG/AC receives the uplink data, it also finds the associated service type as EPC access according to the UE MAC or the UE IP address, and then finds the associated GRE tunnel, and then encapsulates the message through the GRE tunnel. After TWAG, TWAG' receives the GRE header, removes the encapsulation of the GRE header, encapsulates it through GTP or PMIP tunnel, and forwards it to the P-GW. When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
UE。 UE.
本发明中, 在 TWAG,收到 UE离开该网络的去连接相关消息时, 会向 WLAN AAA发送计费请求(终止 )消息 , 然后 WLAN AAA回复计费响应 (终止) 消息。  In the present invention, when the TWAG receives the detachment related message of the UE leaving the network, it sends a charging request (termination) message to the WLAN AAA, and then the WLAN AAA replies with the charging response (terminating) message.
除了 Radius计费协议外, TWAG,也可以支持 Diameter计费协议, 则相 关的消息代替上述 Radius的相关计费消息。  In addition to the Radius charging protocol, TWAG can also support the Diameter charging protocol, and the related message replaces the related charging message of the above Radius.
实施例 3  Example 3
该实施例中, 与实施例 2的流程类似, 区别在于, AP/RG不作为 EAP 认证者, 而是 AC/BNG作为 EAP认证者, AP/RG不能感知相关的 EAP认 证流程。 其他流程参考实施例 2的相关描述。 具体可参见图 5所示流程, 具体描述如下:  In this embodiment, the process is similar to that in the second embodiment. The difference is that the AP/RG is not used as the EAP Authenticator, but the AC/BNG is used as the EAP Authenticator. The AP/RG cannot sense the related EAP authentication process. Other processes refer to the related description of Embodiment 2. For details, refer to the process shown in Figure 5. The details are as follows:
步驟 501 : UE与 WLAN网元执行非 3GPP特有的流程, 比如: 链路建 立等;  Step 501: The UE performs a non-3GPP-specific process with the WLAN network element, for example, establishing a link, and the like;
步驟 502: UE可能向 AC/BNG发送 EAPOL-START消息, 请求认证; 步驟 503-步驟 504: AC/BNG作为 EAP认证者, 会向 UE触发 EAP认 证流程。 其中, UE在 EAP-RES/Identity消息中携带 NAI。 AC/BNG收到 AAA封装的 EAP-RES/Identity消息之后, 可以先根据认证类型, 判断是否 为 3GPP UE, 如果认证类型不为 EAP认证的话, 则认为其为 WLAN UE, 则执行 WLAN UE接入 WLAN网络的现有技术中的流程; 否则, 再通过解 析消息获取 NAI中的域名信息, 判断其为 3GPP UE; 或者, 也可以只通过 域名来判断其为 3GPP UE。 如果为 3GPP UE的话, 则将 UE MAC地址、 域 名信息关联到相应的 GRE隧道中, 且本地保存这种关联关系; 然后, 通过 GRE隧道封装该报文到 TWAG,, 或者根据路由转发到 TWAG,; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然作为 AAA代理, 将解封装的 才艮文转发到 WLANAAA, 再经 WLAN AAA转发到 3GPP AAA。 Step 502: The UE may send an EAPOL-START message to the AC/BNG to request authentication. Step 503-Step 504: The AC/BNG acts as an EAP authenticator, and triggers an EAP authentication process to the UE. The UE carries the NAI in the EAP-RES/Identity message. After receiving the AAA-encapsulated EAP-RES/Identity message, the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed. The process in the prior art of the WLAN network; otherwise, the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the packet is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header, and as an AAA proxy, it will be decapsulated. The message is forwarded to WLAN AAA and forwarded to 3GPP AAA via WLAN AAA.
说明: 上述的 GRE隧道也可以采用其他类型的隧道代替, 比如: MPLS 等; 或者, EAP认证消息直接通过路由方式传递, 不通过隧道传输。  NOTE: The above GRE tunnels can be replaced by other types of tunnels, such as MPLS. EAP authentication messages are directly transmitted through the tunnel and are not transmitted through the tunnel.
步驟 505-步驟 507: 执行后续的 EAP流程, 当 TWAG, 收到 EAP认证 成功消息, 则执行步驟 506。 其中, TWAG' 的作用同步驟 503-步驟 504, 作为 AAA代理。在认证过程中, AC/BNG会获取 3GPPAAA授权的业务类 型, 该业务类型具体包括: 允许接入 EPC, 和 /或有缝的业务分流, 或者拒 绝接入。 在 AC/BNG获取 3GPP AAA授权的业务类型后, 如果该业务类型 为允许接入 EPC的话, 可以将该信息和 UE MAC地址绑定, 且本地保存这 种关联关系。 在该实施例中, 业务类型即为允许接入 EPC。 AC/BNG可能 会本地保存业务类型和 UE MAC地址的关联关系, 以显式说明其支持的业 务类型为允许接入 EPC, 或者也可以不在本地保存这个关联关系, 以隐式 说明其支持的业务类型为允许接入 EPC。  Step 505 - Step 507: Perform a subsequent EAP process. When the TWAG receives the EAP authentication success message, step 506 is performed. Among them, TWAG' functions as step 503-step 504, acting as an AAA proxy. During the authentication process, the AC/BNG obtains the service type authorized by the 3GPP AAA. The service type includes: allowing access to the EPC, and/or slotted service offload, or denying access. After the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC. The AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports. The type is to allow access to the EPC.
如果是由 EAP认证成功消息触发 GTP/PMIP隧道建立的话, 则执行步 驟 508-步驟 511 , 再转到步驟 512执行。 否则, 直接转到步驟 512执行。  If the GTP/PMIP tunnel establishment is triggered by the EAP authentication success message, step 508-511 is performed, and then the process proceeds to step 512. Otherwise, go directly to step 512 for execution.
步驟 508-步驟 513: TWAG' 收到 EAP认证成功消息之后, 则向 P-GW 请求 GTP/PMIP隧道的建立 , 同时, 也会和 PCRF之间建立 IP-CAN会话 , 和 HSS之间进行 P-GW标识更新。 在 TWAG, 收到创建会话响应消息或者 代理绑定确认消息之后, 则通过 AC/BNG、 AP/RG向 UE发送 EAP认证成 功消息。  Step 508 - Step 513: After receiving the EAP authentication success message, the TWAG' requests the establishment of the GTP/PMIP tunnel to the P-GW, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
步驟 514-步驟 515:如果 UE发送 DHCP请求消息的话, AC/BNG收到 UE发送的 DHCP请求消息(具体可以为 DHCPv4或者 DHCPv6消息)后, 则根据 UE MAC找到其关联的业务类型为允许接入 EPC, 然后找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG,; TWAG' 收到 GRE报文 之后, 去掉 GRE头的封装, 然后处理 DHCP请求消息。 如果是由 DHCP消息触发 GTP/PMIP隧道建立的话, 则执行步驟 508- 步驟 511 , 再转到步驟 516执行。 否则, 直接转到步驟 516执行。 Step 514 - Step 515: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (which may be a DHCPv4 or DHCPv6 message) sent by the UE, and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message. If the GTP/PMIP tunnel establishment is triggered by the DHCP message, then steps 508-511 are performed, and then the process proceeds to step 516. Otherwise, go directly to step 516 for execution.
步驟 516-步驟 517: UE和 TWAG, 之间执行 DHCP的其他流程, 为 UE分配 IP地址。 这时 , 也可以将 IP地址与 MAC地址绑定。  Step 516 - Step 517: Perform another DHCP process between the UE and the TWAG to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 518-步驟 519: 如果 UE发送路由请求消息的话, AC/BNG收到 Step 518 - Step 519: If the UE sends a route request message, the AC/BNG receives
UE发送的路由请求消息后, 则根据 UE MAC找到其关联的业务类型为允 许接入 EPC, 然后, 找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG'; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然后处理路 由请求消息。 如果是由路由请求消息触发 GTP/PMIP隧道建立的话,则执行步驟 408- 步驟 511 , 再转到步驟 520继续执行。 否则, 直接转到步驟 520继续执行。 After the routing request message sent by the UE, the UE is found to be connected to the EPC according to the service type of the UE, and then the associated GRE tunnel is found, and the message is encapsulated into the TWAG by the GRE tunnel; the TWAG' receives the GRE message. After that, the encapsulation of the GRE header is removed, and then the routing request message is processed. If the GTP/PMIP tunnel establishment is triggered by the route request message, then step 408-511 is performed, and then go to step 520 to continue execution. Otherwise, go directly to step 520 to continue.
步驟 520-步驟 521 : 执行路由确认消息的剩余流程, 为 UE分配 IP地 址。 这时, 也可以将 IP地址与 MAC地址绑定。  Step 520 - Step 521: Perform the remaining process of the route confirmation message to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 522: 当 BNG/AC收到上行数据时,也会根据 UE MAC或者 UE IP 地址, 找到其关联的业务类型为 EPC接入, 然后, 找到关联的 GRE隧道, 然后通过 GRE隧道封装该艮文到 TWAG,; TWAG' 收到 GRE 艮文之后, 去掉 GRE头的封装, 并通过 GTP或者 PMIP隧道封装, 且转发到 P-GW。  Step 522: When the BNG/AC receives the uplink data, it also finds the associated service type as EPC access according to the UE MAC or the UE IP address, and then finds the associated GRE tunnel, and then encapsulates the message through the GRE tunnel. After TWAG, TWAG' receives the GRE header, removes the encapsulation of the GRE header, encapsulates it through GTP or PMIP tunnel, and forwards it to the P-GW.
当 BNG/AC收到下行数据时, 直接去掉 GRE头的封装,将报文转发给 When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
UE。 UE.
本发明中, TWAG,也可以支持计费信息的收集, 具体参见前述实施例 In the present invention, the TWAG can also support the collection of charging information. For details, refer to the foregoing embodiment.
2的相关描述。 2 related description.
实施例 4  Example 4
该实施例中,主要是描述 3GPP UE通过 WLAN接入直接进行有缝的业 务分流的流程。其中, EAP认证流程需要经过 TWAG'转发到 WLANAAA, AP/RG作为 EAP认证者, AC/BNG和 TWAG'作为 AAA代理。当 AC/BNG 收到 3GPP AAA授权的业务类型为有缝的业务分流操作时, 则执行该实施 例。 具体可参见图 6所示流程, 该流程包括以下步驟: In this embodiment, the process of directly performing slotted service offloading by the 3GPP UE through WLAN access is mainly described. The EAP authentication process needs to be forwarded to WLAN AAA through TWAG, AP/RG as EAP Authenticator, and AC/BNG and TWAG' as AAA agents. When the AC/BNG receives the service type authorized by the 3GPP AAA as a slotted service offloading operation, the implementation is performed. example. For details, refer to the process shown in Figure 6. The process includes the following steps:
步驟 601-步驟 613: 与步驟 401-步驟 413完全相同。 其中, AC/BNG 作为 AAA代理,会获取 3GPP AAA授权的业务类型,该业务类型具体包括: EPC接入, 和 /或有缝的业务分流, 或者拒绝接入。 在 AC/BNG获取 3GPP AAA授权的业务类型后, 如果该业务类型为有缝的业务分流的话, 则会将 有缝的业务分流信息和 UE MAC地址绑定, 且本地保存这种关联关系。  Step 601 - Step 613: It is identical to Step 401 - Step 413. The AC/BNG, as an AAA proxy, obtains the service type authorized by the 3GPP AAA. The service type includes: EPC access, and/or slotted service offload, or denial of access. After the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is a split service, the slotted service offload information is bound to the UE MAC address, and the association relationship is saved locally.
步驟 614-步驟 616:如果 UE发送 DHCP请求消息的话, AC/BNG收到 UE发送的 DHCP请求消息后, 根据 UE MAC地址关联的有缝的业务分流 信息, 决定本地为 UE分配 IP地址分配。 然后, 执行 DHCP流程的剩余步 驟, 完成为 UE分配 IP地址的流程。 这时, 也可以将 IP地址与 MAC地址 绑定。  Step 614: Step 616: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message sent by the UE, and then determines to locally allocate the IP address allocation to the UE according to the slotted service offload information associated with the UE MAC address. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 617-步驟 618: 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的路由请求消息后, 根据 UE MAC地址关联的有缝的业务分流信 息, 决定本地为 UE分配 IP地址分配。 然后, 向 UE发送确认消息, 完成 为 UE分配 IP地址的流程。 这时 , 也可以将 IP地址与 MAC地址绑定。  Step 617: Step 618: If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, and determines to locally allocate the IP address to the UE according to the slotted service offload information associated with the UE MAC address. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
步驟 619: 当 BNG/AC收到上行数据时, 也会根据 UE MAC或者源 IP 地址, 找到其关联的业务类型为有缝的业务分流, 然后执行具体的数据转 发。  Step 619: When the BNG/AC receives the uplink data, it also finds the associated service type as a slotted service offload according to the UE MAC or the source IP address, and then performs specific data forwarding.
当 BNG/AC收到下行数据时, 直接将报文转发给 UE。  When the BNG/AC receives downlink data, it forwards the packet directly to the UE.
上述实施例是针对 AP/RG作为 EAP认证者, 如果 AC/BNG作为 EAP 认证者的话, 则步驟 601-步驟 613被步驟 501-步驟 513代替。 其他步驟的 处理与该实施例相同。  The above embodiment is for the AP/RG as the EAP authenticator. If the AC/BNG is the EAP authenticator, then step 601-step 613 is replaced by step 501-step 513. The processing of the other steps is the same as that of this embodiment.
本实施例中, BNG/AC向 WLAN AAA发送计费信息, 采用的协议为 AAA计费协议, 包括: Radius计费协议, 或者 Diameter计费协议。  In this embodiment, the BNG/AC sends the charging information to the WLAN AAA, and the adopted protocol is an AAA charging protocol, including: a Radius charging protocol, or a Diameter charging protocol.
实施例 5 该实施例中, 与实施例 1的流程区别在于, 在 WLAN网络内添加了一 个 TWAG': TWAG' 与 BBF AAA没有接口交互, 并且 BBF AAA和 3GPP AAA之间也不存在 STa接口 , TWAG' 和 3GPP AAA之间存在接口交互。 其他功能参照实施例 1的相关描述。 具体可参见图 7。 Example 5 In this embodiment, the difference from the flow of Embodiment 1 is that a TWAG' is added in the WLAN network: TWAG' has no interface interaction with the BBF AAA, and there is no STa interface between the BBF AAA and the 3GPP AAA, TWAG' and There is interface interaction between 3GPP AAA. Other functions refer to the related description of Embodiment 1. See Figure 7 for details.
在该网络架构下, 所涉及到的关键接口的如下:  Under the network architecture, the key interfaces involved are as follows:
接口 C: 为 TWAG' 和 3GPPAAA之间的接口。 该接口用来转发 BNG 或者 BBF AAA发送的认证消息, 且可以通过 BBF AAA发送的认证成功消 息, 来触发 TWAG' 与 EPC的 P-GW之间建立 GTP/PMIP隧道;  Interface C: is the interface between TWAG' and 3GPPAAA. The interface is used to forward the authentication message sent by the BNG or BBF AAA, and the authentication success message sent by the BBF AAA can be used to trigger the establishment of a GTP/PMIP tunnel between the TWAG' and the P-GW of the EPC.
接口 D: 为 TWAG' 和 BNG之间的接口。 该接口用来转发 BNG发送 的认证消息, 或者 DHCP消息, 以及用户数据等。  Interface D: is the interface between TWAG' and BNG. This interface is used to forward authentication messages, or DHCP messages, and user data sent by the BNG.
该架构下, 3GPP UE的认证是通过 BNG到 TWAG,, 然后 TWAG,转发 给 3GPP AAA, 进行认证流程的交互。 但对于 3GPP UE在 BBF接入网络中 的计费, 是通过 BNG收集计费信息, 然后上报给 BBF AAA, 进行本地计 费信息统计的, 用来与 3GPP核心网络的计费信息进行对账; BNG和 BBF AAA之间可以采用 Radius或者 Diameter计费协议。  Under this architecture, the 3GPP UE's authentication is through BNG to TWAG, and then TWAG, forwarded to 3GPP AAA for the interaction of the authentication process. However, for the charging of the 3GPP UE in the BBF access network, the charging information is collected by the BNG, and then reported to the BBF AAA for local charging information statistics, and used for reconciliation with the charging information of the 3GPP core network; A Radius or Diameter billing protocol can be used between BNG and BBF AAA.
说明: 上述架构主要逻辑网络是针对 BBF接入架构来说的, 同样, 上 述的架构也适用于 WLAN接入网络, 其中, RG用 AP代替, BNG用 AC 代替。  NOTE: The main logical network of the above architecture is for the BBF access architecture. Similarly, the above architecture is also applicable to the WLAN access network. The RG is replaced by an AP and the BNG is replaced by an AC.
实施例 6  Example 6
该实施例中,与实施例 2的流程类似,区别在于, TWAG,和 3GPPAAA 之间的 EAP认证流程不需要经过 WLAN AAA进行中转, 而是直接互通交 互。 其他流程参考实施例 2的相关描述。 具体可参见图 8所示流程, 具体 描述如下:  In this embodiment, the procedure of the embodiment 2 is similar, except that the EAP authentication process between the TWAG and the 3GPP AAA does not need to be transited by the WLAN AAA, but directly communicates with each other. Other processes refer to the related description of Embodiment 2. For details, see the process shown in Figure 8. The details are as follows:
步驟 801 : UE与 WLAN网元执行非 3GPP特有的流程, 比如: 链路建 立等; 步驟 802: UE可能向 AP/RG发送 EAPOL-START消息 , 请求认证; 步驟 803-步驟 804: AP/RG作为 ΕΑΡ认证者, 会向 UE触发 ΕΑΡ认证 流程。其中, UE在 EAP-RES/Identity消息中携带 NAI。 AC/BNG收到 AAA 封装的 EAP-RES/Identity消息之后,可以先根据认证类型,判断是否为 3GPP UE, 如果认证类型不为 EAP认证的话, 则认为其为 WLAN UE, 则执行 WLAN UE接入 WLAN网络的现有技术中的流程; 否则, 再通过解析消息 获取 NAI中的域名信息, 判断其为 3GPP UE; 或者, 也可以只通过域名来 判断其为 3GPP UE。 如果为 3GPP UE的话, 则将 UE MAC地址、域名信息 关联到相应的 GRE 隧道中, 且本地保存这种关联关系; 然后, 通过 GRE 隧道封装该报文到 TWAG,, 或者根据路由转发到 TWAG,; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然后作为 AAA代理, 将解封装的报 文转发到 3GPPAAA。 Step 801: The UE and the WLAN network element perform a non-3GPP-specific process, such as: link establishment, and the like; Step 802: The UE may send an EAPOL-START message to the AP/RG to request authentication. Step 803 - Step 804: The AP/RG acts as the ΕΑΡ Authenticator and triggers the ΕΑΡ authentication process to the UE. The UE carries the NAI in the EAP-RES/Identity message. After receiving the AAA-encapsulated EAP-RES/Identity message, the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed. The process in the prior art of the WLAN network; otherwise, the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the message is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header and then forwards the decapsulated message to 3GPPAAA as an AAA proxy.
说明: 上述的 GRE隧道也可以采用其他类型的隧道代替, 比如: MPLS 等; 或者, EAP认证消息直接通过路由方式传递, 不通过隧道传输。  NOTE: The above GRE tunnels can be replaced by other types of tunnels, such as MPLS. EAP authentication messages are directly transmitted through the tunnel and are not transmitted through the tunnel.
步驟 805-步驟 807: 执行后续的 EAP流程, 当 TWAG' 收到 EAP认证 成功消息, 则执行步驟 806。 其中, TWAG' 的作用同步驟 803-步驟 804, 作为 AAA代理。在认证过程中, AC/BNG会获取 3GPPAAA授权的业务类 型, 该业务类型具体包括: 允许接入 EPC, 和 /或有缝的业务分流, 或者拒 绝接入。 在 AC/BNG获取 3GPP AAA授权的业务类型后, 如果该业务类型 为允许接入 EPC的话, 可以将该信息和 UE MAC地址绑定, 且本地保存这 种关联关系。 在该实施例中, 业务类型即为允许接入 EPC。 AC/BNG可能 会本地保存业务类型和 UE MAC地址的关联关系, 以显式说明其支持的业 务类型为允许接入 EPC, 或者也可以不在本地保存这个关联关系, 以隐式 说明其支持的业务类型为允许接入 EPC。  Step 805 - Step 807: Perform a subsequent EAP process. When the TWAG' receives the EAP authentication success message, step 806 is performed. Among them, TWAG' acts as step 803-step 804 as an AAA proxy. During the authentication process, the AC/BNG obtains the service type authorized by the 3GPP AAA. The service type includes: allowing access to the EPC, and/or slotted service offload, or denying access. After the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC. The AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports. The type is to allow access to the EPC.
如果是由 EAP认证成功消息触发 GTP/PMIP隧道建立的话, 则执行步 驟 808-步驟 811 , 再转到步驟 812执行。 否则, 直接转到步驟 812执行。 步驟 808-步驟 813: TWAG' 收到 EAP认证成功消息之后, 则向 P-GW 请求 GTP/PMIP隧道的建立 , 同时, 也会和 PCRF之间建立 IP-CAN会话 , 和 HSS之间进行 P-GW标识更新。 在 TWAG, 收到创建会话响应消息或者 代理绑定确认消息之后, 则通过 AC/BNG、 AP/RG向 UE发送 EAP认证成 功消息。 If the GTP/PMIP tunnel is triggered by the EAP authentication success message, the step is executed. Step 808 - step 811, and then go to step 812 to perform. Otherwise, go directly to step 812 for execution. Step 808 - Step 813: After receiving the EAP authentication success message, the TWAG' requests the establishment of the GTP/PMIP tunnel to the P-GW, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
步驟 814-步驟 815:如果 UE发送 DHCP请求消息的话, AC/BNG收到 UE发送的 DHCP请求消息(具体可以为 DHCPv4或者 DHCPv6消息)后, 则根据 UE MAC找到其关联的业务类型为允许接入 EPC, 然后找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG,; TWAG' 收到 GRE报文 之后, 去掉 GRE头的封装, 然后处理 DHCP请求消息。  Step 814 - Step 815: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (specifically, it may be a DHCPv4 or a DHCPv6 message), and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message.
如果是由 DHCP 消息触发 GTP/PMIP 隧道建立的话, 则执行步驟 808-811 , 再转到步驟 816执行。 否则, 直接转到步驟 816执行。  If the GTP/PMIP tunnel establishment is triggered by the DHCP message, then steps 808-811 are performed, and then go to step 816 for execution. Otherwise, go directly to step 816 for execution.
步驟 816-步驟 817: UE和 TWAG, 之间执行 DHCP的其他流程, 为 UE分配 IP地址。 这时, 也可以将 IP地址与 MAC地址绑定。  Step 816-Step 817: Perform another DHCP process between the UE and the TWAG to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 818-步驟 819: 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的路由请求消息后, 则根据 UE MAC找到其关联的业务类型为允 许接入 EPC, 然后, 找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG'; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然后处理路 由请求消息。  Step 818-Step 819: If the UE sends a route request message, after receiving the route request message sent by the UE, the AC/BNG finds that the associated service type is allowed to access the EPC according to the UE MAC, and then finds the associated GRE tunnel. The packet is encapsulated by the GRE tunnel to the TWAG'; after receiving the GRE packet, the TWAG' removes the encapsulation of the GRE header and then processes the routing request message.
如果是由路由请求消息触发 GTP/PMIP隧道建立的话,则执行步驟 808- 步驟 811 , 再转到步驟 820继续执行。 否则, 直接转到步驟 820继续执行。  If the GTP/PMIP tunnel establishment is triggered by the route request message, then step 808 - step 811 is performed, and then go to step 820 to continue execution. Otherwise, go directly to step 820 to continue.
步驟 820-步驟 821 : 执行路由确认消息的剩余流程, 为 UE分配 IP地 址。 这时, 也可以将 IP地址与 MAC地址绑定。  Step 820 - Step 821: Perform the remaining process of the route confirmation message to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 822: 当 BNG/AC收到上行数据时,也会根据 UE MAC或者 UE IP 地址, 找到其关联的业务类型为 EPC接入, 然后, 找到关联的 GRE隧道, 然后通过 GRE隧道封装该艮文到 TWAG,; TWAG' 收到 GRE 艮文之后, 去掉 GRE头的封装, 并通过 GTP或者 PMIP隧道封装, 且转发到 P-GW。 Step 822: When the BNG/AC receives the uplink data, it also according to the UE MAC or the UE IP. Address, find the associated service type as EPC access, and then find the associated GRE tunnel, and then encapsulate the message to TWAG through the GRE tunnel; after receiving the GRE message, TWAG' removes the encapsulation of the GRE header and passes The GTP or PMIP tunnel is encapsulated and forwarded to the P-GW.
当 BNG/AC收到下行数据时, 直接去掉 GRE头的封装,将报文转发给 When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
UE。 UE.
实施例 7  Example 7
该实施例中, 与实施例 6的流程类似, 区别在于, AP/RG不作为 EAP 认证者, 而是 AC/BNG作为 EAP认证者, AP/RG不能感知相关的 EAP认 证流程。 其他流程参考实施例 6的相关描述。 具体可参见图 9所示流程, 包括以下步驟:  In this embodiment, the process is similar to that in Embodiment 6. The difference is that the AP/RG is not used as the EAP Authenticator, but the AC/BNG is used as the EAP Authenticator. The AP/RG cannot sense the related EAP authentication process. Other processes refer to the related description of Embodiment 6. For details, see the process shown in Figure 9, including the following steps:
步驟 901 : UE与 WLAN网元执行非 3GPP特有的流程, 比如: 链路建 立等;  Step 901: The UE and the WLAN network element perform a non-3GPP specific process, such as: link establishment, etc.;
步驟 902: UE可能向 AC/BNG发送 EAPOL-START消息, 请求认证; 步驟 903-步驟 904: AC/BNG作为 EAP认证者, 会向 UE触发 EAP认 证流程。 其中, UE在 EAP-RES/Identity消息中携带 NAI。 AC/BNG收到 AAA封装的 EAP-RES/Identity消息之后, 可以先根据认证类型, 判断是否 为 3GPP UE, 如果认证类型不为 EAP认证的话, 则认为其为 WLAN UE, 则执行 WLAN UE接入 WLAN网络的现有技术中的流程; 否则, 再通过解 析消息获取 NAI中的域名信息, 判断其为 3GPP UE; 或者, 也可以只通过 域名来判断其为 3GPP UE。 如果为 3GPP UE的话, 则将 UE MAC地址、域 名信息关联到相应的 GRE隧道中, 且本地保存这种关联关系; 然后, 通过 GRE隧道封装该报文到 TWAG,, 或者根据路由转发到 TWAG,; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然后作为 AAA代理, 将解封装 的报文转发到 3GPPAAA。  Step 902: The UE may send an EAPOL-START message to the AC/BNG to request authentication. Step 903-Step 904: The AC/BNG acts as an EAP authenticator, and triggers an EAP authentication process to the UE. The UE carries the NAI in the EAP-RES/Identity message. After receiving the AAA-encapsulated EAP-RES/Identity message, the AC/BNG can determine whether it is a 3GPP UE according to the authentication type. If the authentication type is not EAP authentication, it is considered as a WLAN UE, and the WLAN UE access is performed. The process in the prior art of the WLAN network; otherwise, the domain name information in the NAI is obtained by parsing the message, and it is determined to be a 3GPP UE; or, the domain name can be used to determine that it is a 3GPP UE. If it is a 3GPP UE, the UE MAC address and the domain name information are associated with the corresponding GRE tunnel, and the association relationship is locally saved. Then, the packet is encapsulated into the TWAG through the GRE tunnel, or forwarded to the TWAG according to the route. After receiving the GRE message, TWAG' removes the encapsulation of the GRE header and then forwards the decapsulated message to 3GPPAAA as an AAA proxy.
本发明中, 上述的 GRE隧道也可以采用其他类型的隧道代替, 比如: MPLS等; 或者, EAP认证消息直接通过路由方式传递, 不通过隧道传输。 步驟 905-步驟 907: 执行后续的 EAP流程, 当 TWAG, 收到 EAP认证 成功消息, 则执行步驟 906。 其中, TWAG' 的作用同步驟 903-步驟 904, 作为 AAA代理。在认证过程中, AC/BNG会获取 3GPPAAA授权的业务类 型, 该业务类型具体包括: 允许接入 EPC, 和 /或有缝的业务分流, 或者拒 绝接入。 在 AC/BNG获取 3GPP AAA授权的业务类型后, 如果该业务类型 为允许接入 EPC的话, 可以将该信息和 UE MAC地址绑定, 且本地保存这 种关联关系。 在该实施例中, 业务类型即为允许接入 EPC。 AC/BNG可能 会本地保存业务类型和 UE MAC地址的关联关系, 以显式说明其支持的业 务类型为允许接入 EPC, 或者也可以不在本地保存这个关联关系, 以隐式 说明其支持的业务类型为允许接入 EPC。 In the present invention, the above GRE tunnel can also be replaced by other types of tunnels, such as: MPLS, etc.; or, the EAP authentication message is directly transmitted through the routing mode and is not transmitted through the tunnel. Step 905: Step 907: Perform a subsequent EAP process. When the TWAG receives the EAP authentication success message, step 906 is performed. Among them, TWAG' acts as step 903-step 904 as an AAA proxy. During the authentication process, the AC/BNG obtains the service type authorized by the 3GPP AAA. The service type includes: allowing access to the EPC, and/or slotted service offload, or denying access. After the AC/BNG obtains the service type authorized by the 3GPP AAA, if the service type is allowed to access the EPC, the information may be bound to the UE MAC address, and the association relationship is locally saved. In this embodiment, the type of service is to allow access to the EPC. The AC/BNG may locally store the association between the service type and the UE MAC address to explicitly indicate that the type of service it supports is to allow access to the EPC, or may not save the association locally to implicitly describe the services it supports. The type is to allow access to the EPC.
如果是由 EAP认证成功消息触发 GTP/PMIP隧道建立的话, 则执行步 驟 908-步驟 911 , 再转到步驟 912执行。 否则, 直接转到步驟 912执行。  If the GTP/PMIP tunnel establishment is triggered by the EAP authentication success message, then step 908-step 911 is performed, and then the process proceeds to step 912. Otherwise, go directly to step 912 for execution.
步驟 908-步驟 913: TWAG' 收到 EAP认证成功消息之后, 则向 P-GW 请求 GTP/PMIP隧道的建立 , 同时, 也会和 PCRF之间建立 IP-CAN会话 , 和 HSS之间进行 P-GW标识更新。 在 TWAG, 收到创建会话响应消息或者 代理绑定确认消息之后, 则通过 AC/BNG、 AP/RG向 UE发送 EAP认证成 功消息。  Step 908: Step 913: After receiving the EAP authentication success message, the TWAG' requests the P-GW to establish a GTP/PMIP tunnel, and also establishes an IP-CAN session with the PCRF, and performs P- between the HSS and the HSS. GW identification update. After receiving the create session response message or the proxy binding acknowledgement message, the TWAG sends an EAP authentication success message to the UE through the AC/BNG and the AP/RG.
步驟 914-步驟 915:如果 UE发送 DHCP请求消息的话, AC/BNG收到 UE发送的 DHCP请求消息(具体可以为 DHCPv4或者 DHCPv6消息)后, 则根据 UE MAC找到其关联的业务类型为允许接入 EPC, 然后找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG,; TWAG' 收到 GRE报文 之后, 去掉 GRE头的封装, 然后处理 DHCP请求消息。  Step 914 - Step 915: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message (specifically, it may be a DHCPv4 or a DHCPv6 message), and then finds the associated service type as the allowed access according to the UE MAC. The EPC then finds the associated GRE tunnel and encapsulates the message to the TWAG through the GRE tunnel. After receiving the GRE message, the TWAG' removes the encapsulation of the GRE header and then processes the DHCP request message.
如果是由 DHCP消息触发 GTP/PMIP隧道建立的话, 则执行步驟 908- 步驟 911 , 再转到步驟 916执行。 否则, 直接转到步驟 916执行。 步驟 916-步驟 917: UE和 TWAG, 之间执行 DHCP的其他流程, 为 UE分配 IP地址。 这时 , 也可以将 IP地址与 MAC地址绑定。 If the GTP/PMIP tunnel establishment is triggered by the DHCP message, then steps 908-911 are performed, and then go to step 916 for execution. Otherwise, go directly to step 916 for execution. Step 916 - Step 917: Perform another process of DHCP between the UE and the TWAG, and allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 918-步驟 919: 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的路由请求消息后, 则根据 UE MAC找到其关联的业务类型为允 许接入 EPC, 然后, 找到关联的 GRE隧道, 通过 GRE隧道封装该报文到 TWAG'; TWAG' 收到 GRE报文之后, 去掉 GRE头的封装, 然后处理路 由请求消息。  Step 918: Step 919: If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, and then finds the associated service type according to the UE MAC to allow access to the EPC, and then finds the associated GRE tunnel. The packet is encapsulated by the GRE tunnel to the TWAG'; after receiving the GRE packet, the TWAG' removes the encapsulation of the GRE header and then processes the routing request message.
如果是由路由请求消息触发 GTP/PMIP隧道建立的话,则执行步驟 908- 步驟 911 , 再转到步驟 920继续执行。 否则, 直接转到步驟 920继续执行。  If the GTP/PMIP tunnel establishment is triggered by the route request message, then step 908-step 911 is performed, and then go to step 920 to continue execution. Otherwise, go directly to step 920 to continue.
步驟 920-步驟 921 : 执行路由确认消息的剩余流程, 为 UE分配 IP地 址。 这时, 也可以将 IP地址与 MAC地址绑定。  Step 920 - Step 921: Perform the remaining process of the route confirmation message to allocate an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 922: 当 BNG/AC收到上行数据时,也会根据 UE MAC或者 UE IP 地址, 找到其关联的业务类型为 EPC接入, 然后, 找到关联的 GRE隧道, 然后通过 GRE隧道封装该艮文到 TWAG,; TWAG' 收到 GRE 艮文之后, 去掉 GRE头的封装, 并通过 GTP或者 PMIP隧道封装, 且转发到 P-GW。  Step 922: When the BNG/AC receives the uplink data, it also finds the associated service type as EPC access according to the UE MAC or the UE IP address, and then finds the associated GRE tunnel, and then encapsulates the message through the GRE tunnel. After TWAG, TWAG' receives the GRE header, removes the encapsulation of the GRE header, encapsulates it through GTP or PMIP tunnel, and forwards it to the P-GW.
当 BNG/AC收到下行数据时, 直接去掉 GRE头的封装,将报文转发给 When the BNG/AC receives the downlink data, it directly removes the encapsulation of the GRE header and forwards the packet to the packet.
UE。 UE.
实施例 8  Example 8
该实施例中,与实施例 4的流程类似, 区别在于 TWAG, 和 3GPPAAA 之间的 EAP认证流程不需要经过 WLAN AAA进行中转, 而是直接互通交 互。 其他流程参考实施例 4的相关描述。 具体可参见图 10所示流程, 该流 程包括以下步驟:  In this embodiment, the procedure is the same as that in the fourth embodiment. The difference is that the EAP authentication process between the TWAG and the 3GPP AAA does not need to be transited by the WLAN AAA, but directly communicates with each other. Other processes refer to the related description of Embodiment 4. For details, refer to the process shown in Figure 10. The process includes the following steps:
步驟 1001-步驟 1013: 与步驟 401-步驟 413完全相同。 其中, AC/BNG 作为 AAA代理,会获取 3GPP AAA授权的业务类型,该业务类型具体包括: EPC接入, 和 /或有缝的业务分流, 或者拒绝接入。 在 AC/BNG获取 3GPP AAA授权的业务类型后, 如果该业务类型为有缝的业务分流的话, 则会将 有缝的业务分流信息和 UE MAC地址绑定, 且本地保存这种关联关系。 Step 1001 - Step 1013: The same as Step 401 - Step 413. The AC/BNG, as an AAA proxy, obtains the service type authorized by the 3GPP AAA. The service type includes: EPC access, and/or slotted service offload, or denial of access. Obtain 3GPP in AC/BNG After the AAA authorized service type, if the service type is a split service, the slotted service offload information is bound to the UE MAC address, and the association relationship is saved locally.
步驟 1014-步驟 1016:如果 UE发送 DHCP请求消息的话, AC/BNG收 到 UE发送的 DHCP请求消息后, 根据 UE MAC地址关联的有缝的业务分 流信息 , 决定本地为 UE分配 IP地址分配。 然后 , 执行 DHCP流程的剩余 步驟, 完成为 UE分配 IP地址的流程。 这时, 也可以将 IP地址与 MAC地 址绑定。  Step 1014: Step 1016: If the UE sends a DHCP request message, the AC/BNG receives the DHCP request message sent by the UE, and then determines to locally allocate the IP address to the UE according to the slotted service offload information associated with the UE MAC address. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. In this case, you can also bind the IP address to the MAC address.
步驟 1017-步驟 1018: 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的路由请求消息后, 根据 UE MAC地址关联的有缝的业务分流信 息, 决定本地为 UE分配 IP地址分配。 然后, 向 UE发送确认消息, 完成 为 UE分配 IP地址的流程。 这时 , 也可以将 IP地址与 MAC地址绑定。  Step 1017: Step 1018: If the UE sends a route request message, after receiving the route request message sent by the UE, the AC/BNG decides to allocate the IP address allocation to the UE locally according to the slotted service offload information associated with the UE MAC address. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
步驟 1019: 当 BNG/AC收到上行数据时, 也会根据 UE MAC或者源 IP地址, 找到其关联的业务类型为有缝的业务分流, 然后执行具体的数据 转发。  Step 1019: When the BNG/AC receives the uplink data, it also finds the associated service type as a slotted service offload according to the UE MAC or the source IP address, and then performs specific data forwarding.
当 BNG/AC收到下行数据时, 直接将报文转发给 UE。  When the BNG/AC receives downlink data, it forwards the packet directly to the UE.
上述实施例是针对 AP/RG作为 EAP认证者, 如果 AC/BNG作为 EAP 认证者的话, 则步驟 1001-步驟 1013被步驟 501-步驟 513代替。 其他步驟 的处理与该实施例相同。  The foregoing embodiment is directed to the AP/RG as an EAP Authenticator. If the AC/BNG is an EAP Authenticator, then Step 1001 - Step 1013 is replaced by Step 501 - Step 513. The processing of the other steps is the same as that of this embodiment.
实施例 9  Example 9
该实施例是基于实施例 1的架构, 在有缝的业务分流场景下, TWAG, 支持为 UE分配本地 IP地址。 具体可参见图 11所示流程, 该流程包括以下 步驟:  The embodiment is based on the architecture of the embodiment 1. In the slotted service offload scenario, the TWAG supports assigning a local IP address to the UE. For details, see the process shown in Figure 11. The process includes the following steps:
步驟 1101-步驟 1113: 与前述步驟 601-步驟 613完全相同。  Step 1101 - Step 1113: It is identical to the foregoing steps 601 - 613.
步驟 1114-步驟 1115: 与前述步驟 614-步驟 615完全相同。  Step 1114 - Step 1115: It is identical to the foregoing Step 614 - Step 615.
步驟 1116-步驟 1117: 如果 UE发送 DHCP请求消息的话, AC/BNG根 据 UE MAC地址找到关联的 GRE 隧道, 并通过 GRE 隧道发送艮文给 TWAG' , TWAG' 收到 GRE报文后, 解封装获取 UE发送的 DHCP请求消 息后, 根据 UE MAC地址关联的有缝的业务分流信息, 决定本地为 UE分 配 IP地址分配。 然后, 执行 DHCP流程的剩余步驟, 完成为 UE分配 IP地 址的流程。 这时, TWAG, 可以将 IP地址与 MAC地址绑定。 Step 1116 - Step 1117: If the UE sends a DHCP request message, the AC/BNG root The associated GRE tunnel is found according to the UE MAC address, and the message is sent to the TWAG' through the GRE tunnel. After receiving the GRE message, the TWAG' decapsulates and obtains the DHCP request message sent by the UE, and the slot is associated according to the UE MAC address. The service offload information determines that the IP address allocation is assigned to the UE locally. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. At this time, TWAG can bind the IP address to the MAC address.
步驟 1118-步驟 1121 : 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的路由请求消息后, 根据 UE MAC地址找到关联的 GRE隧道, 并 通过 GRE隧道发送报文给 TWAG' , 该报文为封装路由消息的二层报文; TWAG' 收到 GRE报文后, 解封装获取该二层报文后, 从报文的二层协议 头中获取 UE MAC地址,然后根据 UE MAC地址关联的有缝的业务分流信 息, 决定本地为 UE分配 IP地址分配。 然后, 向 UE发送确认消息, 完成 为 UE分配 IP地址的流程。 这时 , 也可以将 IP地址与 MAC地址绑定。  Step 1118 - Step 1121: If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, finds the associated GRE tunnel according to the UE MAC address, and sends a message to the TWAG' through the GRE tunnel. The packet is a Layer 2 packet that encapsulates the routing message. After receiving the GRE packet, the TWAG' obtains the Layer 2 packet and obtains the UE MAC address from the Layer 2 protocol header of the packet, and then associates the MAC address according to the UE. The slotted service offload information determines that the UE is assigned an IP address assignment. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
通常情况下, BNG/AC 支持基于该 UE 的计费信息收集, 并上报给 WLANAAA进行计费; 在该实施例中, 可选的, TWAG,也可以支持计费信 息的收集, 并上报给 WLAN AAA进行计费。 因此, 待 TWAG'为 UE分配 完 IP地址(比如:在 TWAG,执行步驟 1116或者 1120的同时)时,向 WLAN AAA发送计费请求(开始 )消息, 然后 WLANAAA回复计费响应(开始 ) 消息。 该实施中是 TWAG,执行具体的业务分流, 则 TWAG,所统计的计费 信息为 3GPP UE接入 EPC和直接业务分流的业务数据的总计费信息或者独 立计费信息。 具体处理参见实施例 2 的相关描述。 这些计费信息可以作为 运营商间的计费账单参考。  Generally, the BNG/AC supports the collection of the charging information based on the UE and reports it to the WLAN AAA for charging. In this embodiment, the TWAG can also support the collection of the charging information and report it to the WLAN. AAA performs billing. Therefore, when TWAG' assigns an IP address to the UE (for example, at the same time as TWAG, when step 1116 or 1120 is performed), a charging request (start) message is sent to the WLAN AAA, and then the WLAN AAA replies to the charging response (start) message. In this implementation, the TWAG performs specific service offloading, and the TWAG, the calculated charging information is the total charging information or the independent charging information of the service data of the 3GPP UE accessing the EPC and the direct service offload. For details, refer to the related description of Embodiment 2. These billing information can be used as a billing reference between operators.
步驟 1122: 当 BNG/AC收到上行数据时, 会根据 UE MAC或者源 IP 地址找到关联的 GRE隧道, 并通过 GRE隧道发送报文给 TWAG' , 该数据 报文可以为封装的二层数据报文或者三层数据报文; TWAG, 收到 GRE报 文后, 解封装获取数据报文, 然后根据 UE MAC地址或者 UE IP地址, 找 到其关联的业务类型为有缝的业务分流, 然后执行具体的数据转发。 Step 1122: When the BNG/AC receives the uplink data, the associated GRE tunnel is found according to the UE MAC or the source IP address, and the packet is sent to the TWAG' through the GRE tunnel. The data packet can be the encapsulated Layer 2 datagram. After the GRE message is received, the TWAG obtains the GRE message, decapsulates the data packet, and then finds the data according to the UE MAC address or the UE IP address. The business type to which it is associated is a split traffic, and then specific data forwarding is performed.
当 TWAG, 收到下行数据时, 遵循上行数据转发路径的逆过程, 转发 给 UE。  When the TWAG receives the downlink data, it follows the reverse process of the uplink data forwarding path and forwards it to the UE.
上述实施例是针对 AP/RG作为 EAP认证者, 如果 AC/BNG作为 EAP 认证者的话, 则步驟 1101-步驟 1113被步驟 501-513代替。其他步驟的处理 与该实施例相同。  The foregoing embodiment is directed to the AP/RG as an EAP authenticator. If the AC/BNG is an EAP authenticator, then step 1101 - step 1113 is replaced by step 501-513. The processing of the other steps is the same as that of this embodiment.
本实施例中, 在 TWAG'收到 UE离开该网络的去连接相关消息时, 会 向 WLAN AAA发送计费请求(终止 )消息, 然后 WLAN AAA回复计费响 应 (终止) 消息。  In this embodiment, when the TWAG' receives the detachment related message of the UE leaving the network, it sends a charging request (termination) message to the WLAN AAA, and then the WLAN AAA replies to the charging response (terminating) message.
除了 Radius计费协议外, TWAG,也可以支持 Diameter计费协议, 则相 关的消息代替上述 Radius的相关计费消息。  In addition to the Radius charging protocol, TWAG can also support the Diameter charging protocol, and the related message replaces the related charging message of the above Radius.
实施例 10  Example 10
该实施例是基于实施例 2的架构, 在有缝的业务分流场景下, TWAG, 支持为 UE分配本地 IP地址。 具体可参见图 12所示流程。 该实施例中, 与 实施例 9的流程类似 , 区别在于 TWAG' 和 3GPP AAA之间的 EAP认证流 程不需要经过 WLAN AAA进行中转, 而是直接互通交互。其他流程参考实 施例 9的相关描述。 具体可参见图 12所示流程, 该流程包括以下步驟: 步驟 1201-步驟 1213: 与前述步驟 1001-步驟 1013完全相同, 参见前 述步驟 1001-步驟 1013。  The embodiment is based on the architecture of the embodiment 2. In the slotted service offload scenario, the TWAG supports assigning a local IP address to the UE. For details, see the process shown in Figure 12. In this embodiment, the process is similar to that of the embodiment 9, except that the EAP authentication process between the TWAG' and the 3GPP AAA does not need to be transited by the WLAN AAA, but directly communicates with each other. For other procedures, refer to the related description of Embodiment 9. For details, refer to the process shown in Figure 12. The process includes the following steps: Step 1201 - Step 1213: The same as Step 1001 - Step 1013, refer to the foregoing Step 1001 - Step 1013.
步驟 1214-步驟 1215: 与前述步驟 1014-步驟 10115完全相同, 参见步 驟 1014-步驟 1015。  Step 1214 - Step 1215: The same as the foregoing Step 1014 - Step 10115, see Step 1014 - Step 1015.
步驟 1216-步驟 1217: 如果 UE发送 DHCP请求消息的话, AC/BNG根 据 UE MAC 地址找到关联的 GRE 隧道, 并通过 GRE 隧道发送艮文给 TWAG' , TWAG' 收到 GRE报文后, 解封装获取 UE发送的 DHCP请求消 息后, 根据 UE MAC地址关联的有缝的业务分流信息, 决定本地为 UE分 配 IP地址分配。 然后, 执行 DHCP流程的剩余步驟, 完成为 UE分配 IP地 址的流程。 这个时, TWAG, 可以将 IP地址与 MAC地址绑定。 Step 1216 - Step 1217: If the UE sends a DHCP request message, the AC/BNG finds the associated GRE tunnel according to the UE MAC address, and sends the message to the TWAG' through the GRE tunnel. After receiving the GRE message, the TWAG' decapsulates the packet. After the DHCP request message sent by the UE, according to the slotted service offload information associated with the UE MAC address, the local UE is determined to be With IP address allocation. Then, the remaining steps of the DHCP process are performed to complete the process of assigning an IP address to the UE. At this time, TWAG can bind the IP address to the MAC address.
步驟 1218-步驟 1221 : 如果 UE发送路由请求消息的话, AC/BNG收到 UE发送的路由请求消息后, 根据 UE MAC地址找到关联的 GRE隧道, 并 通过 GRE隧道发送报文给 TWAG' , 该报文为封装路由消息的二层报文; TWAG' 收到 GRE报文后, 解封装获取该二层报文后, 从报文的二层协议 头中获取 UE MAC地址,然后根据 UE MAC地址关联的有缝的业务分流信 息, 决定本地为 UE分配 IP地址分配。 然后, 向 UE发送确认消息, 完成 为 UE分配 IP地址的流程。 这时 , 也可以将 IP地址与 MAC地址绑定。  Step 1218 - Step 1221: If the UE sends a route request message, the AC/BNG receives the route request message sent by the UE, finds the associated GRE tunnel according to the UE MAC address, and sends a message to the TWAG' through the GRE tunnel. The packet is a Layer 2 packet that encapsulates the routing message. After receiving the GRE packet, the TWAG' obtains the Layer 2 packet and obtains the UE MAC address from the Layer 2 protocol header of the packet, and then associates the MAC address according to the UE. The slotted service offload information determines that the UE is assigned an IP address assignment. Then, an acknowledgment message is sent to the UE, and the process of allocating an IP address to the UE is completed. In this case, you can also bind the IP address to the MAC address.
步驟 1222: 当 BNG/AC收到上行数据时, 会根据 UE MAC或者源 IP 地址找到关联的 GRE隧道, 并通过 GRE隧道发送报文给 TWAG' , 该数据 报文可以为封装的二层数据报文或者三层数据报文; TWAG, 收到 GRE报 文后, 解封装获取数据报文, 然后根据 UE MAC地址或者 UE IP地址, 找 到其关联的业务类型为有缝的业务分流, 然后执行具体的数据转发。  Step 1222: When the BNG/AC receives the uplink data, the associated GRE tunnel is found according to the UE MAC or the source IP address, and the packet is sent to the TWAG' through the GRE tunnel. The data packet can be the encapsulated Layer 2 datagram. The TWAG, after receiving the GRE packet, decapsulates and obtains the data packet, and then finds the associated service type as a slotted service traffic according to the UE MAC address or the UE IP address, and then executes the specific service. Data forwarding.
当 TWAG, 收到下行数据时, 遵循上行数据转发路径的逆过程, 转发 给 UE。  When the TWAG receives the downlink data, it follows the reverse process of the uplink data forwarding path and forwards it to the UE.
上述实施例是针对 AP/RG作为 EAP认证者, 如果 AC/BNG作为 EAP 认证者的话, 则步驟 1201-步驟 1213被步驟 501-步驟 513代替。 其他步驟 的处理与该实施例相同。  The above embodiment is for the AP/RG as the EAP authenticator. If the AC/BNG is the EAP authenticator, then the step 1201 - step 1213 is replaced by the step 501 - step 513. The processing of the other steps is the same as that of this embodiment.
说明: 上述实施例 2、 3、 6、 7仅说明了业务类型为 EPC接入的场景, 实施例 4、 8、 9、 10仅说明了业务类型为有缝的业务分流的场景。 当 AAA 授权为两者都可以的话, 则 AC/BNG支持上述实施例 2、 3、 6、 7和实施例 4、 8、 9、 10的组合操作。  NOTE: The foregoing embodiment 2, 3, 6, and 7 only describe the scenario in which the service type is EPC access. The embodiments 4, 8, 9, and 10 only describe the scenario in which the service type is slotted. When the AAA authorization is both, the AC/BNG supports the combined operations of the above embodiments 2, 3, 6, 7 and the embodiments 4, 8, 9, 10.
图 13为本发明实施例的功能网元的组成结构示意图, 如图 13所示, 本发明实施例的功能网元应用于可信任的 WLAN接入网和 3GPP核心网融 合的网络中; 具体包括接收单元 130和转发单元 131和 /或发送单元(图 13 中未示出, 计费专用, 属可选功能单元), 其中: FIG. 13 is a schematic structural diagram of a functional network element according to an embodiment of the present invention. As shown in FIG. 13, the functional network element in the embodiment of the present invention is applied to a trusted WLAN access network and a 3GPP core network. Specifically, the receiving unit 130 and the forwarding unit 131 and/or the transmitting unit (not shown in FIG. 13, dedicated to charging, are optional functional units), where:
接收单元 130, 设置为接收 UE通过所述 WLAN接入网接入时发送的 认证请求消息; 以及, 接收 AAA发送的认证响应消息; 和 /或, 接收所述 WLAN接入网的接入网元发送的 IP地址请求消息; 和 /或 , 接收 WLAN接 入网的 AAA服务器或 AAA代理发送的 AAA计费响应消息;  The receiving unit 130 is configured to receive an authentication request message sent by the UE when accessing the WLAN access network, and receive an authentication response message sent by the AAA, and/or receive the access network element of the WLAN access network. Sending an IP address request message; and/or receiving an AAA charging response message sent by an AAA server or an AAA proxy of the WLAN access network;
转发单元 131 , 设置为向所述 AAA转发所述认证请求消息; 以及, 向 所述 WLAN接入网的接入网元转发所述认证响应消息;  The forwarding unit 131 is configured to forward the authentication request message to the AAA, and forward the authentication response message to an access network element of the WLAN access network;
发送单元,当接收单元 130接收到 WLAN接入网的 AAA服务器或 AAA 代理发送的 AAA计费响应消息时,设置为向所述 WLAN接入网的 AAA发 送 AAA计费请求消息。  The sending unit is configured to send an AAA charging request message to the AAA of the WLAN access network when the receiving unit 130 receives the AAA charging response message sent by the AAA server or the AAA proxy of the WLAN access network.
其中, 所述 WLAN接入网接入网关位于所述 WLAN接入网或 3GPP 核心网中。  The WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
其中, 所述 AAA为所述 WLAN接入网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器或 AAA代理。  The AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
其中 , 所述 WLAN接入网接入网关与所述 WLAN接入网的接入网元 之间建立有 GRE隧道或 MPLS隧道。  A GRE tunnel or an MPLS tunnel is established between the WLAN access network access gateway and the access network element of the WLAN access network.
其中, 所述 WLAN接入网的接入网元包括 BNG/ AC。  The access network element of the WLAN access network includes a BNG/AC.
本领域技术人员应当理解, 图 13中所示的功能网元中的各处理单元的 实现功能可参照前述路由选择方法的相关描述而理解。 本领域技术人员应 当理解, 图 13所示的功能网元中各处理单元的功能可通过运行于处理器上 的程序而实现, 也可通过具体的逻辑电路而实现。  Those skilled in the art will appreciate that the implementation functions of the various processing units in the functional network elements shown in Figure 13 can be understood with reference to the related description of the foregoing routing methods. Those skilled in the art should understand that the functions of the processing units in the functional network element shown in FIG. 13 can be implemented by a program running on the processor, or can be implemented by a specific logic circuit.
图 14 为本发明实施例的另一种功能网元的组成结构示意图, 如图 14 所示, 本发明实施例的功能网元应用于可信任的 WLAN接入网和 3GPP核 心网融合的网络中; 包括: 接收单元 140、 获取单元 141和确定单元 142, 其中: FIG. 14 is a schematic structural diagram of another functional network element according to an embodiment of the present invention. As shown in FIG. 14, the functional network element in the embodiment of the present invention is applied to a network in which a trusted WLAN access network and a 3GPP core network are integrated. The method includes: a receiving unit 140, an obtaining unit 141, and a determining unit 142, among them:
接收单元 140, 设置为接收 AAA发送的认证响应消息;  The receiving unit 140 is configured to receive an authentication response message sent by the AAA.
获取单元 141 , 设置为获取决策的业务类型;  An obtaining unit 141, configured to obtain a business type of the decision;
确定单元 142, 设置为根据 UE关联的业务类型信息, 确定是否为所述 UE分配本地 IP, 实现对所述 UE的路由选择。  The determining unit 142 is configured to determine, according to the service type information associated with the UE, whether to allocate a local IP to the UE, and implement routing to the UE.
其中, 所述 AAA为所述 WLAN接入网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器或 AAA代理。  The AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
其中, 所述 WLAN接入网接入网关位于所述 WLAN接入网或 3GPP 核心网中。  The WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
其中, 所述业务类型包括: 允许接入所述 3GPP核心网, 和 /或有缝的 业务分流, 或拒绝接入。  The service type includes: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
在图 14所示的功能网元的基础上, 本示例功能网元还包括: 分配单元 (图 14中未示出);  Based on the function network element shown in FIG. 14, the example function network element further includes: an allocating unit (not shown in FIG. 14);
在业务类型为有缝的业务分流时, 所述接收单元 140接收到 IP地址请 求消息后, 所述分配单元为所述 UE分配本地 IP。  When the service type is a slotted service offload, after the receiving unit 140 receives the IP address request message, the allocating unit allocates a local IP to the UE.
本领域技术人员应当理解, 图 14中所示的功能网元中的各处理单元的 实现功能可参照前述路由选择的方法的相关描述而理解。 本领域技术人员 应当理解, 图 14所示的功能网元中各处理单元的功能可通过运行于处理器 上的程序而实现, 也可通过具体的逻辑电路而实现。  Those skilled in the art will appreciate that the implementation functions of the various processing units in the functional network elements shown in Figure 14 can be understood with reference to the related description of the methods of routing described above. Those skilled in the art should understand that the functions of the processing units in the functional network element shown in FIG. 14 can be implemented by a program running on the processor, or can be implemented by a specific logic circuit.
以上所述, 仅为本发明的较佳实施例而已, 并非用于限定本发明的保 护范围。  The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims

权利要求书 Claim
1、 一种路由选择方法, 应用于无线局域网 WLAN接入网和第三代合 作伙伴计划 3GPP核心网融合的网络; 在所述 WLAN接入网和所述 3GPP 核心网之间设置有功能网元; 所述方法包括:  A routing method, which is applied to a wireless local area network WLAN access network and a third generation partnership project 3GPP core network convergence network; a functional network element is disposed between the WLAN access network and the 3GPP core network The method includes:
用户设备 UE通过所述 WLAN接入网接入时, 所述功能网元向认证授 权计费 AAA转发所述 UE发送的认证请求消息 , 并向所述 WLAN接入网 的接入网元转发所述 AAA发送的认证响应消息; 和 /或, 所述功能网元接 收所述 WLAN接入网的接入网元发送的 IP地址请求消息。  When the user equipment UE is accessed by the WLAN access network, the function network element forwards the authentication request message sent by the UE to the authentication and authorization charging AAA, and forwards the message to the access network element of the WLAN access network. An authentication response message sent by the AAA; and/or, the function network element receives an IP address request message sent by the access network element of the WLAN access network.
2、 根据权利要求 1所述的方法, 其中, 所述功能网元位于所述 WLAN 接入网或 3GPP核心网中。  2. The method according to claim 1, wherein the functional network element is located in the WLAN access network or a 3GPP core network.
3、 根据权利要求 1所述的方法, 其中, 所述 AAA为所述 WLAN接入 网的 AAA服务器或 AAA代理, 或为所述 3GPP核心网的 AAA服务器或 AAA代理。  3. The method according to claim 1, wherein the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
4、 根据权利要求 1 所述的方法, 其中, 所述功能网元与所述 WLAN 接入网的接入网元之间建立有通用路由封装 GRE 隧道或多协议标签交换 MPLS隧道。  The method according to claim 1, wherein the function network element and the access network element of the WLAN access network establish a general route encapsulation GRE tunnel or a multi-protocol label switching MPLS tunnel.
5、 根据权利要求 1所述的方法, 其中, 所述方法还包括:  5. The method according to claim 1, wherein the method further comprises:
所述 WLAN接入网的接入网元根据认证类型和 /或所述 UE的域名,确 定所述 UE是否为 3GPP UE, 并确定报文路由。  The access network element of the WLAN access network determines whether the UE is a 3GPP UE according to an authentication type and/or a domain name of the UE, and determines a packet route.
6、 根据权利要求 1所述的方法, 其中, 所述方法还包括:  6. The method according to claim 1, wherein the method further comprises:
所述 WLAN接入网的接入网元根据所述 UE关联的业务类型, 确定是 否本地为所述 UE分配 IP地址。  The access network element of the WLAN access network determines, according to the service type associated with the UE, whether to locally allocate an IP address for the UE.
7、 根据权利要求 6所述的方法, 其中, 所述方法还包括:  7. The method according to claim 6, wherein the method further comprises:
所述 WLAN接入网的接入网元通过扩展认证协议 EAP的认证,从所述 3GPP核心网的 AAA服务器或 AAA代理获取决策的所述业务类型的信息。 The access network element of the WLAN access network obtains the information of the service type of the decision from the AAA server or the AAA proxy of the 3GPP core network by using the authentication of the extended authentication protocol EAP.
8、 根据权利要求 6或 7所述的方法, 其中, 所述业务类型包括: 允许 接入所述 3GPP核心网, 和 /或有缝的业务分流, 或拒绝接入。 The method according to claim 6 or 7, wherein the service type comprises: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
9、 根据权利要求 1至 8任一项所述的方法, 其中, 所述 WLAN接入 网的接入网元包括边界网络节点 BNG/接入控制器 AC。  The method according to any one of claims 1 to 8, wherein the access network element of the WLAN access network comprises a border network node BNG/access controller AC.
10、根据权利要求 9所述的方法,其中,所述 IP地址请求消息为 DHCP 消息或路由请求消息。  10. The method of claim 9, wherein the IP address request message is a DHCP message or a route request message.
11、 根据权利要求 9所述的方法, 其中, 所述功能实体与 WLAN接入 网的 AAA服务器或 AAA代理连接时, 由所述功能实体支持计费信息的收 集,并通过 AAA计费消息上报给所述 WLAN接入网的 AAA服务器或 AAA 代理。  The method according to claim 9, wherein, when the functional entity is connected to the AAA server or the AAA proxy of the WLAN access network, the function entity supports the collection of the charging information and reports the AAA charging message. An AAA server or AAA proxy to the WLAN access network.
12、根据权利要求 11所述的方法,其中,所述 AAA计费消息包括 Radius 计费消息或 Diameter计费消息。  The method of claim 11, wherein the AAA charging message comprises a Radius charging message or a Diameter charging message.
13、 根据权利要求 9所述的方法, 其中, 所述 WLAN接入网包含固定 宽带论坛 BBF定义的架构网络。  13. The method according to claim 9, wherein the WLAN access network comprises an architecture network defined by a fixed broadband forum BBF.
14、 一种路由选择方法, 应用于 WLAN接入网和 3GPP核心网融合的 网络; 所述融合的网络中设置有功能网元; 所述方法包括:  A routing method is applied to a network in which a WLAN access network and a 3GPP core network are integrated; a functional network element is disposed in the fused network; the method includes:
所述功能网元接收 AAA发送的认证响应消息, 获取决策的业务类型, 并根据 UE关联的业务类型信息,确定是否为所述 UE分配本地 IP, 实现对 所述 UE的路由选择。  The function network element receives the authentication response message sent by the AAA, obtains the service type of the decision, and determines whether to allocate the local IP to the UE according to the service type information associated with the UE, and implements routing to the UE.
15、 根据权利要求 14所述的方法, 其中, 所述 AAA为所述 WLAN接 入网的 AAA服务器或 AAA代理, 或为所述 3 GPP核心网的 AAA服务器。  The method according to claim 14, wherein the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server of the 3GPP core network.
16、根据权利要求 15所述的方法,其中,所述功能网元位于所述 WLAN 接入网或所述 3GPP核心网中。  16. The method of claim 15, wherein the functional network element is located in the WLAN access network or the 3GPP core network.
17、 根据权利要求 16所述的方法, 其中, 所述业务类型包括: 允许接 入所述 3GPP核心网, 和 /或有缝的业务分流, 或拒绝接入。 17. The method according to claim 16, wherein the service type comprises: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
18、 根据权利要求 17所述的方法, 其中, 所述业务类型为有缝的业务 分流时,所述功能网元接收到 IP地址请求消息后, 为所述 UE分配本地 IP。 The method according to claim 17, wherein, when the service type is a slotted service, the function network element allocates a local IP to the UE after receiving the IP address request message.
19、根据权利要求 18所述的方法,其中,所述 IP地址请求消息为 DHCP 消息或路由请求消息。  The method of claim 18, wherein the IP address request message is a DHCP message or a route request message.
20、 一种功能网元, 应用于 WLAN接入网和 3GPP核心网融合的网络 中; 所述功能网元包括: 接收单元、 转发单元和 /或发送单元, 其中:  A functional network element, which is applied to a network in which a WLAN access network and a 3GPP core network are integrated; the function network element includes: a receiving unit, a forwarding unit, and/or a sending unit, where:
接收单元, 设置为接收 UE通过所述 WLAN接入网接入时发送的认证 请求消息; 以及,接收 AAA发送的认证响应消息; 和 /或,接收所述 WLAN 接入网的接入网元发送的 IP地址请求消息; 和 /或 , 接收 WLAN接入网的 AAA服务器或 AAA代理发送的 AAA计费响应消息;  a receiving unit, configured to receive an authentication request message sent by the UE when accessing the WLAN access network; and receiving an authentication response message sent by the AAA; and/or receiving the access network element of the WLAN access network IP address request message; and/or, receiving an AAA charging response message sent by an AAA server or an AAA proxy of the WLAN access network;
转发单元, 设置为向所述 AAA转发所述认证请求消息; 以及, 向所述 WLAN接入网的接入网元转发所述认证响应消息;  a forwarding unit, configured to forward the authentication request message to the AAA; and forward the authentication response message to an access network element of the WLAN access network;
发送单元,设置为向所述 WLAN接入网的 AAA服务器或 AAA代理发 送 AAA计费请求消息。  And a sending unit, configured to send an AAA charging request message to an AAA server or an AAA proxy of the WLAN access network.
21、根据权利要求 20所述的 WLAN接入网接入网关,其中,所述 WLAN 接入网接入网关位于所述 WLAN接入网或 3GPP核心网中。  The WLAN access network access gateway according to claim 20, wherein the WLAN access network access gateway is located in the WLAN access network or a 3GPP core network.
22、根据权利要求 20所述的 WLAN接入网接入网关,其中,所述 AAA 为所述 WLAN接入网的 AAA服务器或 AAA代理,或为所述 3GPP核心网 的 AAA服务器或 AAA代理。  The WLAN access network access gateway according to claim 20, wherein the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
23、根据权利要求 20所述的 WLAN接入网接入网关,其中,所述 WLAN 接入网接入网关与所述 WLAN接入网的接入网元之间建立有 GRE隧道或 MPLS隧道。  The WLAN access network access gateway according to claim 20, wherein a GRE tunnel or an MPLS tunnel is established between the WLAN access network access gateway and the access network element of the WLAN access network.
24、 根据权利要求 20至 23任一项所述的 WLAN接入网接入网关, 其 中 , 所述 WLAN接入网的接入网元包括 BNG/ AC。  The WLAN access network access gateway according to any one of claims 20 to 23, wherein the access network element of the WLAN access network comprises a BNG/AC.
25、根据权利要求 20所述的方法,其中,所述 AAA计费消息包括 Radius 计费消息, 或者 Diameter计费消息。 25. The method of claim 20 wherein the AAA charging message comprises Radius Billing message, or Diameter billing message.
26、 一种功能网元, 应用于 WLAN接入网和 3GPP核心网融合的网络 中; 所述 WLAN接入网接入网关包括: 接收单元、 获取单元和确定单元, 其中:  A functional network element, which is applied to a network in which a WLAN access network and a 3GPP core network are integrated; the WLAN access network access gateway includes: a receiving unit, an obtaining unit, and a determining unit, where:
接收单元, 设置为接收 AAA发送的认证响应消息;  a receiving unit, configured to receive an authentication response message sent by the AAA;
获取单元, 设置为获取决策的业务类型;  Get the unit, set to get the business type of the decision;
确定单元, 设置为根据 UE关联的业务类型信息, 确定是否为所述 UE 分配本地 IP, 实现对所述 UE的路由选择。  And a determining unit, configured to determine, according to the service type information associated with the UE, whether to allocate a local IP to the UE, and implement routing to the UE.
27、根据权利要求 26所述的 WLAN接入网接入网关,其中,所述 AAA 为所述 WLAN接入网的 AAA服务器或 AAA代理,或为所述 3GPP核心网 的 AAA服务器或者 AAA代理。  The WLAN access network access gateway according to claim 26, wherein the AAA is an AAA server or an AAA proxy of the WLAN access network, or an AAA server or an AAA proxy of the 3GPP core network.
28、根据权利要求 26所述的 WLAN接入网接入网关,其中,所述 WLAN 接入网接入网关位于所述 WLAN接入网或 3GPP核心网中。  The WLAN access network access gateway according to claim 26, wherein the WLAN access network access gateway is located in the WLAN access network or the 3GPP core network.
29、 根据权利要求 26所述的 WLAN接入网接入网关, 其中, 所述业 务类型包括: 允许接入所述 3GPP核心网, 和 /或有缝的业务分流, 或拒绝 接入。  The WLAN access network access gateway according to claim 26, wherein the service type comprises: allowing access to the 3GPP core network, and/or slotted service offloading, or denying access.
30、根据权利要求 26所述的 WLAN接入网接入网关,其中,所述 WLAN 接入网接入网关还包括:  The WLAN access network access gateway according to claim 26, wherein the WLAN access network access gateway further comprises:
分配单元, 设置为在业务类型为有缝的业务分流时, 所述接收单元接 收到 IP地址请求消息后, 所述分配单元为所述 UE分配本地 IP。  The allocating unit is configured to allocate a local IP to the UE after the receiving unit receives the IP address request message, when the receiving unit receives the IP address request message.
PCT/CN2013/074627 2012-05-23 2013-04-24 Routing selection method and functional network element WO2013174190A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201210162285.X 2012-05-23
CN201210162285XA CN103428800A (en) 2012-05-23 2012-05-23 Route selection method and functional network element

Publications (1)

Publication Number Publication Date
WO2013174190A1 true WO2013174190A1 (en) 2013-11-28

Family

ID=49623088

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2013/074627 WO2013174190A1 (en) 2012-05-23 2013-04-24 Routing selection method and functional network element

Country Status (2)

Country Link
CN (1) CN103428800A (en)
WO (1) WO2013174190A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115333883A (en) * 2017-08-10 2022-11-11 华为技术有限公司 Interaction between broadband network service gateway and fifth generation core network

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105101337B (en) * 2014-05-22 2019-01-01 中国电信股份有限公司 Method for sending information and system
CN105338125B (en) 2014-06-25 2019-11-05 华为技术有限公司 Message processing method and device
CN108377497B (en) * 2016-11-21 2020-03-10 华为技术有限公司 Connection establishment method, device and system
CN108377493B (en) * 2016-11-21 2021-01-29 华为技术有限公司 Connection establishment method, device and system
CN110474875B (en) * 2017-08-31 2020-10-16 华为技术有限公司 Discovery method and device based on service architecture
CN111726319B (en) * 2019-03-18 2022-06-28 华为技术有限公司 Communication method, device and system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050130659A1 (en) * 2003-06-30 2005-06-16 Nokia Corporation Method for optimizing handover between communication networks
CN1674497A (en) * 2004-03-26 2005-09-28 华为技术有限公司 Certification method for WLAN terminal switching in mobile network
CN101753635A (en) * 2008-12-17 2010-06-23 华为技术有限公司 Method and system of collocating IPV6 (internet protocol version 6) addresses
CN101867625A (en) * 2010-07-19 2010-10-20 中国电信股份有限公司 Method for allocating IPv6 address and home gateway

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050130659A1 (en) * 2003-06-30 2005-06-16 Nokia Corporation Method for optimizing handover between communication networks
CN1674497A (en) * 2004-03-26 2005-09-28 华为技术有限公司 Certification method for WLAN terminal switching in mobile network
CN101753635A (en) * 2008-12-17 2010-06-23 华为技术有限公司 Method and system of collocating IPV6 (internet protocol version 6) addresses
CN101867625A (en) * 2010-07-19 2010-10-20 中国电信股份有限公司 Method for allocating IPv6 address and home gateway

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115333883A (en) * 2017-08-10 2022-11-11 华为技术有限公司 Interaction between broadband network service gateway and fifth generation core network
US11722434B2 (en) 2017-08-10 2023-08-08 Futurewei Technologies, Inc. Interactions between a broadband network gateway and a fifth generation core
CN115333883B (en) * 2017-08-10 2023-12-08 华为技术有限公司 Interaction between broadband network service gateway and fifth generation core network

Also Published As

Publication number Publication date
CN103428800A (en) 2013-12-04

Similar Documents

Publication Publication Date Title
US20210250767A1 (en) Systems and methods for accessing a network
US9167430B2 (en) Access method and system, and mobile intelligent access point
WO2013174190A1 (en) Routing selection method and functional network element
US9113436B2 (en) Method and system for information transmission
US10484910B2 (en) Traffic flow splitting method and apparatus
US9544832B2 (en) Method, apparatus and system for policy control
WO2013017098A1 (en) Method, device, and system for ue access to evolved packet core network
WO2012126291A1 (en) Data routing method and system
WO2013131487A1 (en) Converged core network and access method therefor
WO2014067420A1 (en) Packet data network type management method, device, and system
WO2012130133A1 (en) Access point and terminal access method
JP5872066B2 (en) Method, apparatus and system for accessing core network by non-3GPP
EP2741530A1 (en) Access method, system and mobile intelligent access point
WO2012100611A1 (en) Method and system for accessing evolved packet system
WO2013086917A1 (en) Method and device for session handling
WO2013107243A1 (en) Session establishing method and device
WO2013097614A1 (en) Method and system for allocating ip address to ue, and tnan and ue
WO2012022212A1 (en) Method, apparatus and system for user equipment access
WO2013041063A1 (en) Method and system for accessing core network and for network side to initiate detachment
WO2014032542A1 (en) Method and system for setting up multiple connections
WO2012106984A1 (en) Method and system for accessing mobile core network through trustworthy fixed network
WO2011054145A1 (en) Method, system and equipment for notifying internet protocol address

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 13793727

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 13793727

Country of ref document: EP

Kind code of ref document: A1