CN101730268B - Femto gateway and method and system for mobile terminal to access network resources - Google Patents
Femto gateway and method and system for mobile terminal to access network resources Download PDFInfo
- Publication number
- CN101730268B CN101730268B CN200910178397A CN200910178397A CN101730268B CN 101730268 B CN101730268 B CN 101730268B CN 200910178397 A CN200910178397 A CN 200910178397A CN 200910178397 A CN200910178397 A CN 200910178397A CN 101730268 B CN101730268 B CN 101730268B
- Authority
- CN
- China
- Prior art keywords
- portable terminal
- femto gateway
- address
- gateway
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention discloses a method for a mobile terminal to access network resources. In the method, the mobile terminal sends a PPP network connection request to a Femto gateway; the Femto gateway terminates the PPP connection of the mobile terminal and finishes the PPP connection with the mobile terminal; and the Femto gateway allocates a private network IP address to the mobile terminal. The method and the system for the mobile terminal to access the Internet by utilizing the broadband network, which are provided by the invention, enable the terminal to access the Internet through the Femto gateway by using the cable broadband network, thereby greatly improving the bandwidth and avoiding the problem of network congestion when the services are busy. Furthermore, the Femto gateway sets private network IP addresses of different domains and allocates the private network IP addresses of different domains according to the trust level of users, thus trusted users can securely access internal network resources of the gateway through the Femto gateway, and the security requirement of operators and users for accessing the internal resources of the gateway is met.
Description
Technical field
The present invention relates to communication technical field, relate in particular to the method and system of a kind of Femto gateway, mobile terminal to access network resources.
Background technology
Femtocell/Femto base station (FAP, Femto Access Point) also is known as Home eNodeB or 3G access point, is a kind of microminiature cellular base station equipment.The transmitting power of Femto base station is less, is generally the milliwatt level, so covering radius is also less, is generally 20 meters~50 meters.General maximum 4~6 mobile subscribers that support of the access device of a Femto base station, its air interface meets the 3GPP/3GPP2 standard, therefore is applicable to any existing portable terminal.In appearance, the Femto base station is similar with the access device of Wi-Fi, and size is similar, is applicable to family and small enterprise's working environment.If the Femto base station is set, behind the connection cable broadband, when the user uses the mobile phone dialing phone, can adopt more cheap wire communication mode in family.
Fig. 1 illustrates and utilizes the Femto gateway to provide portable terminal to pass through the structural representation of the system of 3G mobile core network access internet in the prior art.As shown in Figure 1, portable terminal mainly comprises portable terminal (MS, Mobile Station) 102, Femto gateway 104,3G mobile core network 106 and the Internet 108 through the system 100 of 3G mobile core network access internet; Wherein portable terminal can be a 3G mobile, and Femto gateway 104 can be enterprise gateway, home gateway or broadband router, and it includes the Femto base station.Portable terminal 102 inserts Femto gateway 104 through the Femto base station; Femto gateway 104 can be through standard interface (Iu-cs and the Iu-ps interface that provide like WCDMA) insert 3G mobile core network 106, and insert (like the DSL mode) the Internet 108 through the IP address that public network provides; Thereby realize the purpose of mobile phone users through 3G mobile core network access internet 108.
Along with the develop rapidly of mobile communication technology is universal with fast, portable terminal quantity is huge, and in addition, the 3G mobile core network is extremely complicated; Therefore, portable terminal is lower than cable broadband through the bandwidth of 3G mobile core network access internet.When the user is more, can cause network congestion, mobile phone users can't connect, or network speed is slow, user's satisfaction of surfing the Net is relatively poor, the problems referred to above become restriction mobile terminal accessing Internet technology development and popularization bottleneck and need to be resolved hurrily.In addition, the scheme of 3G portable terminal through Femto gateway access intra-gateway network still is not provided in the prior art.
Summary of the invention
The technical problem that the present invention will solve provides a kind of method and system of mobile terminal to access network resources, uses the cable broadband online through the Femto gateway, can use the bandwidth the same with cable broadband when being convenient to the mobile terminal accessing the Internet.
Another technical problem that the present invention will solve provides a kind of method and system of mobile terminal to access network resources, so that trust the user through Femto gateway access intra-gateway Internet resources.
Another technical problem that the present invention will solve is not do under the prerequisite of big modification in the grid side, alleviates the flow burden of mobile core network side.
One aspect of the present invention provides a kind of method of mobile terminal to access network resources, and this method comprises: portable terminal is initiated the PPP connection request of online to the Femto gateway; The PPP of Femto gateway termination portable terminal connects, and completion is connected with the PPP of portable terminal; The Femto gateway distributes private network IP address to portable terminal; The Femto gateway carries out network address transmission to obtain public network IP address to private network IP; Portable terminal is through the long-range connecting system access internet of public network IP address access band.
Among the embodiment of the method for mobile terminal to access network resources provided by the invention, this method also comprises: portable terminal and Femto gateway are accomplished the authentication in the 3G mobile system in advance.
Among the embodiment of the method for mobile terminal to access network resources provided by the invention, the Femto gateway is after portable terminal distributes private network IP address, and the Femto gateway is carried out route forwarding function, the mobile terminal accessing intra-gateway resource that the Femto gateway is trusted.
Among the embodiment of the method for mobile terminal to access network resources provided by the invention, this method also comprises: the information of mobile terminal of trusting through Femto gateway management system configuration Femto gateway in advance; Whether the Femto gateway is after portable terminal distributes private network IP address, and the Femto gateway is initiated query requests to Femto gateway management system, be to trust the user to judge portable terminal; If portable terminal is to trust the user, then the Femto gateway is carried out route forwarding function, so that the mobile terminal accessing intra-gateway resource of trusting.
Among the embodiment of the method for mobile terminal to access network resources provided by the invention, whether the Femto gateway is trusted user according to the user, distributes the not private network IP address of same area to portable terminal, trusts user and other users and adheres to not same area separately; For trusting the user, the Femto gateway is carried out route forwarding function, so that the portable terminal of trusting can the access gateway internal resource through private network IP address.
Another aspect of the present invention provides a kind of system of mobile terminal to access network resources; This system comprises: portable terminal; Be used for initiating the PPP connection request of online to the Femto gateway; Accomplish PPP with the Femto gateway and be connected, and obtain private network IP, and pass through the long-range connecting system access internet of public network IP access band that the conversion of Femto gateway obtains from the Femto gateway; The Femto gateway; Has the Femto base station; Be used for the online PPP connection request that mobile terminal receive sends, the PPP of termination portable terminal connects, and completion is connected with the PPP of portable terminal; And be portable terminal distribution private network IP address, and network address transmission is carried out to obtain public network IP address in private network IP address.
Among the embodiment of the system of mobile terminal to access network resources provided by the invention, this system also comprises: Femto gateway management system is used to dispose the information of mobile terminal that the Femto gateway is trusted.
Among the embodiment of the system of mobile terminal to access network resources provided by the invention; The Femto gateway also is used for after portable terminal distributes private network IP address; Whether initiate query requests to Femto gateway management system, be to trust the user to judge portable terminal, if portable terminal is to trust the user; Then carry out route forwarding function, so that the mobile terminal accessing intra-gateway resource of trusting.
Among the embodiment of the system of mobile terminal to access network resources provided by the invention, whether the Femto gateway also is used for according to the user is trusted user, distributes the not private network IP address of same area to portable terminal; For trusting the user, carry out route forwarding function, so that the portable terminal of trusting can the access gateway internal resource through private network IP address.
Another aspect of the present invention provides a kind of Femto gateway; This Femto gateway comprises: the PPP service module; Be used for the online PPP connection request that mobile terminal receive sends; The PPP of termination portable terminal connects, and completion is connected with the PPP of portable terminal, and is portable terminal distribution private network IP address; The vlan management module is used for to portable terminal the not private network IP address of same area being provided; Trust user and other users and adhere to not same area separately; Portable terminal has only through the ability access gateway internal network resource of the IP address in the territory under the trust user; FMS Remote configuration module, the function that is used to provide the FMS Remote configuration to trust user profile, operator or system manager can trust user profile through Femto gateway management system configuration, and will trust user profile and be stored in the FMS Remote configuration module; Routing Forward Module is used for according to the vlan management module to trusting the private network IP address execution route forwarding function that the user distributes, so that trust user's mobile terminal accessing intra-gateway resource; The Internet NAT module is used to carry out network address transmission, is public network IP address with private network IP address transition, thereby portable terminal is through the long-range connecting system access internet of public network IP access band.
The method and system of mobile terminal to access network resources provided by the invention, the cable broadband access internet is used through the Femto gateway in the terminal, so bandwidth improves the network congestion problem when having avoided heavy traffic greatly.Further, the mobile core network flow pressure significantly reduces, and wired bandwidth availability ratio improves greatly.In addition; Method and system through mobile terminal accessing intra-gateway resource provided by the invention; By the Femto gateway the not private network IP address of same area is set; Thereby trust the user through Femto gateway access gateway internal network resource safely, satisfied operator and user security requirement for the access gateway internal resource.
Description of drawings
Fig. 1 illustrates and utilizes the Femto gateway to provide portable terminal to pass through the structural representation of the system of 3G mobile core network access internet in the prior art;
Fig. 2 illustrates the flow chart of an embodiment of the method for mobile terminal to access network resources among the present invention;
Fig. 3 illustrates the flow chart of an embodiment of the method for mobile terminal to access network resources among the present invention;
Fig. 4 illustrates the structural representation of an embodiment of the system of mobile terminal to access network resources of the present invention;
Fig. 5 illustrates the flow chart of an embodiment of the method for mobile terminal to access network resources among the present invention;
Fig. 6 illustrates the flow chart of a specific embodiment of the method for mobile terminal to access network resources of the present invention;
Fig. 7 illustrates the structural representation of a specific embodiment of the system of mobile terminal to access network resources of the present invention;
Fig. 8 illustrates the structural representation of a specific embodiment of the system of mobile terminal to access network resources of the present invention.
Embodiment
With reference to the accompanying drawings the present invention is more comprehensively described, the various embodiment that the present invention is exemplary are described.
Fig. 2 illustrates the flow chart of an embodiment of the method for mobile terminal to access network resources among the present invention, and present embodiment specifies with the mobile terminal accessing the Internet.
As shown in Figure 2, in the method flow 200 of mobile terminal to access network resources, step 202, portable terminal is initiated the PPP connection request of online to the Femto gateway.For example, for realizing portable terminal (MS) access internet, Femto base station (FAP) and portable terminal need be accomplished the authentication (having obtained the interim authentication code of accessing to wide band network like the Femto base station) in the 3G mobile system in advance.Subsequently, when the user utilizes portable terminal to visit access internet, initiate the PPP connection request of online to the Femto gateway by portable terminal.
Step 204, the PPP of Femto gateway termination portable terminal connects, and completion is connected with the PPP of portable terminal.For example, the PPP of Femto base station (FAP) termination portable terminal (MS) connects, and completion is connected with the PPP of this portable terminal.
Step 206, the Femto gateway distributes private network IP address to portable terminal.For example; The Femto gateway can distribute private network IP address to this portable terminal according to the principle of Random assignment; Also can according to user's trusted degree or right assignment not same area private network IP address (for example; Adhere to the user of different rights separately different territory, thereby make the user of a certain degree of belief/authority can only be assigned with private network IP address listed in this territory).
Step 208, the Femto gateway carries out network address transmission to obtain public network IP address to private network IP address.For example; The Femto gateway is according to the purpose (as judging through the network address of user's input) of mobile terminal accessing the Internet; Carry out network address transmission (NAT by the Femto gateway; Network Address Translation), be public network IP address with private network IP address transition promptly through predetermined corresponding relation.
Step 210, portable terminal is through the long-range connecting system access internet of public network IP address access band.For example, after the Femto gateway was carried out network address transmission, portable terminal obtained the public network IP address of access internet from the Femto gateway, and portable terminal is through the long-range connecting system access internet of public network IP access band subsequently.
The method of mobile terminal to access network resources provided by the invention, through the PPP service function of Femto gateway, portable terminal uses the cable broadband online, has realized that portable terminal utilizes the broadband network access internet; Therefore, portable terminal can use the bandwidth the same with cable broadband to visit the Internet among the present invention, thus the network congestion problem that occurs when having solved the mobile terminal accessing the Internet.
Fig. 3 illustrates the flow chart of an embodiment of the method for mobile terminal to access network resources among the present invention, and present embodiment specifies with mobile terminal accessing intra-gateway resource.
As shown in Figure 3, in the method flow 300 of mobile terminal to access network resources, step 302 is through the portable terminal of Femto gateway management system configuration Femto gateway trust.For example, operator or system manager are through user's (can the number of mobile phone users and the device id or the port numbers of certain Femto gateway be bundled sign) of Femto gateway management system configuration Femto gateway trust.
Step 304, portable terminal are initiated the PPP connection request of online to the Femto gateway.For example, for realizing portable terminal (MS) access gateway internal resource, Femto base station (FAP) and portable terminal need be accomplished the authentication in the 3G mobile system in advance.Subsequently, when the user utilizes portable terminal to visit the intra-gateway resource, initiate the PPP connection request of online to the Femto gateway by portable terminal.
Step 306, the PPP of Femto gateway termination portable terminal connects, and completion is connected with the PPP of portable terminal.For example, the PPP of Femto base station (FAP) termination portable terminal (MS) connects, and completion is connected with the PPP of this portable terminal.
Step 308, the Femto gateway distributes private network IP address to portable terminal.For example; The Femto gateway can distribute private network IP address to this portable terminal according to the principle of Random assignment; Also can according to user's trusted degree or right assignment not same area private network IP address (for example; Adhere to the user of different rights separately different territory, thereby make the user of a certain degree of belief/authority can only be assigned with private network IP address listed in this territory).
Step 310, Femto gateway judge whether portable terminal is to trust the user.For example, whether the Femto gateway is initiated query requests to Femto gateway management system, be trusted user's information so that obtain this mobile phone users; After Femto gateway management system receives the query requests of Femto gateway transmission; Search the Femto gateway of storage in advance and the binding information of mobile phone users, the Femto gateway can judge whether this portable terminal is user trusty according to the binding information that obtains.If this portable terminal is user trusty, execution in step 312 so; Otherwise execution in step 314.
Step 312, the Femto gateway is carried out route forwarding function.For example, the Femto gateway is carried out route by the Femto gateway according to the private network IP that distributes, so that portable terminal is visited corresponding internal application server according to Femto gateway route according to the purpose of mobile terminal accessing intra-gateway resource.
Step 314, Femto gateway are refused non-trust terminal access intra-gateway resource (like the internal application server of route indication).
The method of mobile terminal to access network resources provided by the invention; By the Femto gateway the not private network IP address of same area is set; Distribute the not private network IP address of same area according to user's degree of belief; Thereby trust the user through Femto gateway access gateway internal network resource safely, satisfied operator and user security requirement for the access gateway internal resource.
Fig. 4 illustrates the structural representation of an embodiment of the system of mobile terminal to access network resources of the present invention.
As shown in Figure 4, the system 400 of mobile terminal to access network resources mainly comprises: portable terminal 402, Femto gateway 404, broad band remote connecting system 406, Femto gateway management system 408 and internal application server 410.
Wherein, Portable terminal 402; Be used for PPP connection request to the 404 initiation online of Femto gateway; Be connected with the PPP that sets up between the Femto gateway, and obtain private network IP address, and pass through the long-range connecting system access internet of public network IP address access band that 404 conversion of Femto gateway obtain from the Femto gateway.Portable terminal 402 can use existing 3G mobile or portable terminal among the present invention.
Femto gateway 404; Have the Femto base station, be used for the online PPP connection request that mobile terminal receive 402 sends, and the PPP of termination portable terminal connects; And completion is connected with the PPP of portable terminal; And be portable terminal distribution private network IP address, and network address transmission is carried out with the acquisition public network IP address in private network IP address, thus portable terminal 402 is through long-range connecting system 406 access internet of this public network IP address access band.Femto gateway 404 can be enterprise or a home gateway of supporting the Femto base station among the present invention.
Broad band remote connecting system 406 is used to receive the online request of Femto gateway 404, and to the Femto gateway access passage of access internet is provided.
The system of mobile terminal to access network resources provided by the invention, Femto gateway 404 also comprises accounting module, is used for carrying out charge on traffic during through long-range connecting system 406 access internet of public network IP access band at portable terminal 402.
The system of mobile terminal to access network resources provided by the invention; Femto gateway 404 also is used for after portable terminal 402 distributes private network IP address; Whether initiate query requests to Femto gateway management system 408, be to trust the user to judge said portable terminal, if said portable terminal is to trust the user; Then Femto gateway 404 is carried out route forwarding function, so that the mobile terminal accessing intra-gateway resource of trusting.
The system of mobile terminal to access network resources provided by the invention; PPP service function through the Femto gateway; Portable terminal uses the cable broadband online, has realized that portable terminal utilizes broadband network access internet ("----" as shown in Figure 4 is the online passage of mobile terminal accessing the Internet); And portable terminal can use the bandwidth the same with cable broadband to visit the Internet among the present invention, thus the network congestion problem that has occurred easily when having solved the mobile terminal accessing the Internet.In addition, the present invention provides the system of mobile terminal to access network resources can realize that portable terminal passes through the requirement of Femto gateway access intra-gateway resource ("---" as shown in Figure 4 is the online passage of mobile terminal accessing intra-gateway resource).
Fig. 5 illustrates the flow chart of an embodiment of the method for mobile terminal to access network resources among the present invention.
As shown in Figure 5, in the method flow 500 of mobile terminal to access network resources, step 502, portable terminal is initiated the PPP connection request of online to the Femto gateway.For example, for realizing portable terminal (MS) accessing network resources, Femto base station (FAP) and portable terminal need be accomplished the authentication (having obtained the interim authentication code of accessing to wide band network like the Femto base station) in the 3G mobile system in advance.Subsequently, when the user utilizes portable terminal to visit accessing network resources, initiate the PPP connection request of online to the Femto gateway by portable terminal.
Step 504, the PPP of Femto gateway termination portable terminal connects, and completion is connected with the PPP of portable terminal.For example, the PPP of Femto base station (FAP) termination portable terminal (MS) connects, and accomplishes then to be connected with the PPP of portable terminal.
Step 506, the Femto gateway distributes the not private network IP address of same area to portable terminal.For example, for example, whether the Femto gateway is trusted user according to the user, distributes the not private network IP address of same area to portable terminal, trusts user and other users and adheres to not same area separately; Specifically, the Femto gateway can provide different virtual LAN (VLAN, VirtualLocal Area Network) corresponding territory to portable terminal, and for example two vlan domains correspond respectively to two intra-gateway IP address bases; Trust the user in a vlan domain, the portable terminal of trusting the user can be assigned with private network IP address listed in this territory; Wait other users to be set at (so having only the portable terminal of trusted user to realize access gateway internal network resource) in the another one vlan domain but not trust the user through the IP address of trusting in the affiliated territory of user.
Step 508, Femto gateway judge whether portable terminal is to trust the user.For example; After Femto gateway management system receives the query requests of Femto gateway transmission; Search the Femto gateway of storage in advance and the binding information of mobile phone users, the Femto gateway can judge whether this portable terminal is user trusty according to the binding information that obtains.If this portable terminal is user trusty, execution in step 510 so; Otherwise execution in step 514.
Step 510, the Femto gateway is carried out route forwarding function.For example, the Femto gateway is carried out route by the Femto gateway according to the private network IP that distributes, so that portable terminal is visited corresponding internal application server according to Femto gateway route according to the purpose of mobile terminal accessing intra-gateway resource.
Step 512, the mobile terminal accessing intra-gateway resource that the Femto gateway is trusted (like the internal application server of route indication).
Step 514, Femto gateway are refused non-trust terminal access intra-gateway resource (like the internal application server of route indication).
Step 516, the user abandons the access gateway internal resource or initiates internet access again.For example, non-trust user can select to abandon the access gateway internal resource, also can initiate the visit to the Internet again; If the user initiates the visit to the Internet, then next correspondingly carry out correlation step embodiment illustrated in fig. 2, just repeated no more here.
The method of mobile terminal to access network resources provided by the invention; By the Femto gateway the not private network IP address of same area is set; Distribute the not private network IP address of same area according to user's degree of belief; Thereby trust the user through Femto gateway access gateway internal network resource safely, satisfied operator and user security requirement for the access gateway internal resource.
Fig. 6 illustrates the flow chart of a specific embodiment of the method for mobile terminal to access network resources of the present invention.
As shown in Figure 6, in the method flow 600 of mobile terminal to access network resources, step 602 is through the portable terminal of Femto gateway management system configuration Femto gateway trust.For example, operator or system manager are through user's (can the number of mobile phone users and the device id or the port numbers of certain Femto gateway be bundled sign) of Femto gateway management system configuration Femto gateway trust.
Step 604, portable terminal are initiated the PPP connection request of online to the Femto gateway.For example, for realizing portable terminal (MS) accessing network resources (like the Internet or intra-gateway resource), Femto base station (FAP) and portable terminal need be accomplished the authentication in the 3G mobile system in advance.Subsequently, when the user utilizes portable terminal to visit the Internet or intra-gateway resource, initiate the PPP connection request of online to the Femto gateway by portable terminal.
Step 606, the PPP of Femto gateway termination portable terminal connects, and completion is connected with the PPP of portable terminal.For example, the PPP of Femto base station (FAP) termination portable terminal (MS) connects, and accomplishes then to be connected with the PPP of this portable terminal.
Step 608, the Femto gateway is initiated query requests to Femto gateway management system.For example, after Femto gateway and certain portable terminal were set up PPP and be connected, whether the Femto gateway was initiated query requests to Femto gateway management system, be trusted user's information so that obtain this mobile phone users.
Step 610 judges whether portable terminal is to trust the user.For example, after Femto gateway management system receives the query requests of Femto gateway transmission, search the Femto gateway of storage in advance and the binding information of mobile phone users, judge whether this portable terminal is user trusty.If this portable terminal is user trusty, execution in step 612 so; Otherwise execution in step 614.
Step 612, the Femto gateway distributes private network IP to portable terminal.For example, after confirming that portable terminal is the trusted user, the Femto gateway distributes private network IP address according to user's trusted degree or authority to this portable terminal.
Step 614, this portable terminal trustless or lack of competence of Femto gateway refusal inserts the Internet or intra-gateway resource.
Step 616, Femto gateway are carried out network address transmission to private network IP and are obtained public network IP.For example; The Femto gateway is according to the purpose (as judging through the network address of user's input) of mobile terminal accessing the Internet; Carry out network address transmission (NAT by the Femto gateway; Network Address Translation), be public network IP address with private network IP address transition promptly through predetermined corresponding relation.
Step 618, portable terminal is through the long-range connecting system access internet of public network IP access band.For example, after the Femto gateway was carried out network address transmission, portable terminal obtained the public network IP address of access internet from the Femto gateway, and portable terminal is through the long-range connecting system access internet of public network IP access band subsequently.
Step 620, the Femto gateway is carried out route forwarding function.For example, the Femto gateway is carried out route by the Femto gateway, so that portable terminal is visited corresponding internal application server according to Femto gateway route according to the purpose of mobile terminal accessing intra-gateway resource.
Step 622, the mobile terminal accessing intra-gateway resource that the Femto gateway is trusted (like the internal application server of route indication).
Fig. 7 illustrates the structural representation of a specific embodiment of the system of mobile terminal to access network resources of the present invention.
As shown in Figure 7, the system 700 of mobile terminal to access network resources mainly comprises: portable terminal 702, Femto gateway 704, broad band remote connecting system 706, Femto gateway management system 708 and internal application server 710.
Wherein, Portable terminal 702 be used for the PPP connection request to the 704 initiation online of Femto gateway, and completion is connected with the PPP of Femto gateway; And from Femto gateway acquisition private network IP, and pass through the long-range connecting system access internet of public network IP access band that 704 conversion of Femto gateway obtain.Portable terminal 702 can use existing 3G mobile or portable terminal among the present invention.
Femto gateway 704 mainly comprises PPP service module 7042, vlan management module 7044, FMS Remote configuration module 7046, Routing Forward Module 7048 and the Internet NAT module 7050.Wherein, PPP service module 7042 is used for the online PPP connection request that mobile terminal receive 702 sends, and the PPP of termination portable terminal connects, and completion is connected with the PPP of portable terminal, and is portable terminal distribution private network IP address.Vlan management module 7044 is used for to portable terminal 702 not the private network IP address of same area (like two virtual LANs, corresponding respectively to two inner private network IP address bases) being provided; Trust user and other users and adhere to not same area (as trusting the user at a vlan domain, other users are at the another one vlan domain) separately; The vlan management block configuration can be by access rule: portable terminal has only could access gateway internal network resource through the IP address in the territory under the said trust user.FMS Remote configuration module 7046; Be used to provide the FMS Remote configuration to trust user's function; Operator or system manager can trust user profile through Femto gateway management system configuration, and will trust the corresponding information of user (like mobile terminal number) and be stored in this FMS Remote configuration module.Routing Forward Module 7048 is used for carrying out route forwarding function according to vlan management module 7044 to the private network IP address that said trust user distributes, so that said trust user's mobile terminal accessing intra-gateway resource.The Internet NAT module 7050; Be used for purpose (as judging) through the network address of user's input according to the mobile terminal accessing the Internet; Carry out network address transmission; They be public network IP address with private network IP address transition promptly, thereby portable terminal is through long-range connecting system 706 access internet of public network IP access band through predetermined corresponding relation.Femto gateway 704 can be enterprise or a home gateway of supporting the Femto base station among the present invention.
Broad band remote connecting system 706 is used to receive the online request of Femto gateway 704, and to the Femto gateway access passage of access internet is provided.
Femto gateway management system 708 is used to dispose the portable terminal that the Femto gateway is trusted.
The system of mobile terminal to access network resources provided by the invention; PPP service function through the Femto gateway; Portable terminal uses the cable broadband online, has realized that portable terminal utilizes broadband network access internet ("----" as shown in Figure 7 is the online passage of mobile terminal accessing the Internet); Therefore, portable terminal can use the bandwidth the same with cable broadband to visit the Internet among the present invention, thus the network congestion problem that has occurred easily when having solved the mobile terminal accessing the Internet.In addition; The present invention provides the system of mobile terminal to access network resources; Carry out route forwarding function after distributing private network IP address by the Femto gateway, thereby realize that portable terminal is through Femto gateway access intra-gateway resource ("---" as shown in Figure 7 is the online passage of mobile terminal accessing intra-gateway resource).
Fig. 8 illustrates the structural representation of a specific embodiment of the system of mobile terminal to access network resources of the present invention.As shown in Figure 8, the system 800 of mobile terminal to access network resources mainly comprises: portable terminal 802, Femto gateway 804, broad band remote connecting system 806, Femto gateway management system 808 and internal application server 810; Wherein portable terminal 802, broad band remote connecting system 806, Femto gateway management system 808 and internal application server 810 can be respectively to have same or analogous functional module with portable terminal shown in Figure 7 702, broad band remote connecting system 706, Femto gateway management system 708 and internal application server 710; For for purpose of brevity, repeat no more here.
As shown in Figure 8, Femto gateway 804 also comprises accounting module 8049, is used for carrying out charge on traffic during through long-range connecting system 806 access internet of public network IP access band at portable terminal 802.
The system of mobile terminal to access network resources provided by the invention; PPP service function through the Femto gateway; Portable terminal uses the cable broadband online, has realized that portable terminal utilizes broadband network access internet ("----" as shown in Figure 8 is the online passage of mobile terminal accessing the Internet); Therefore, portable terminal can use the bandwidth the same with cable broadband to visit the Internet among the present invention, thus the network congestion problem that has occurred easily when having solved the mobile terminal accessing the Internet.In addition; The present invention provides the system of mobile terminal to access network resources; Carry out route forwarding function after distributing private network IP address by the Femto gateway, thereby realize that portable terminal is through Femto gateway access intra-gateway resource ("---" as shown in Figure 8 is the online passage of mobile terminal accessing intra-gateway resource).
The method and system of mobile terminal to access network resources provided by the invention realize the PPP service function through the Femto base station, and the function of PPP serve side is provided, termination portable terminal PPP request, and completion is connected with the PPP of portable terminal; Solve the network congestion problem that mobile terminal accessing the Internet narrow bandwidth causes, satisfied the user and utilized portable terminal to pass through the demand that broadband network inserts the Internet.In addition, through the method and system of mobile terminal accessing intra-gateway resource provided by the invention, by carrying out route forwarding function behind the Femto gateway distribution private network IP address, can access gateway internal network resource thereby trust the user through the Femto gateway.With reference to the exemplary description of aforementioned the present invention, those skilled in the art can clearly know the present invention and have the following advantages:
1) method and system of mobile terminal to access network resources provided by the invention, through the PPP service function of Femto gateway, portable terminal uses the cable broadband online, has realized that portable terminal utilizes the broadband network access internet; And portable terminal can use the bandwidth the same with cable broadband to visit the Internet among the present invention, thus the network congestion problem that occurs when having solved the mobile terminal accessing the Internet, and user satisfaction improves greatly; Also help simultaneously The application of new technique and popularization.
2) method and system of mobile terminal to access network resources provided by the invention; Realize the PPP service function through the Femto base station; The function of PPP serve side is provided; The PPP of termination portable terminal connects, by carrying out route forwarding function behind the Femto gateway distribution private network IP address, and can access gateway internal network resource thereby realize trusting the user through the Femto gateway.In addition; By the Femto gateway the not private network IP address of same area is set; Distribute the not private network IP address of same area according to user's degree of belief; Thereby trust the user through Femto gateway access gateway internal network resource safely, satisfied operator and user security requirement for the access gateway internal resource.
3) through the method and system of mobile terminal to access network resources provided by the invention, Femto carries out network address translation or the route forwarding function of IP address after distributing private network IP address; Greatly reduced the operation pressure of operator's mobile core network.
Embodiments of the invention provide for example with for the purpose of describing, and are not the disclosed form that exhaustively perhaps limit the invention to.A lot of modifications and variation are conspicuous for those of ordinary skill in the art.Selecting and describing embodiment is for better explanation principle of the present invention and practical application, thereby and makes those of ordinary skill in the art can understand the various embodiment that have various modifications that the present invention's design is suitable for special-purpose.
Claims (10)
1. the method for a mobile terminal to access network resources is characterized in that, said method comprises:
Said portable terminal is initiated the PPP connection request of online to the Femto gateway;
The terminate PPP of said portable terminal of said Femto gateway connects, and completion is connected with the PPP of said portable terminal;
Said Femto gateway distributes private network IP address to said portable terminal;
Said Femto gateway carries out network address transmission to obtain public network IP address to said private network IP;
Said portable terminal is through the long-range connecting system access internet of said public network IP address access band.
2. method according to claim 1 is characterized in that, said method also comprises: said portable terminal and said Femto gateway are accomplished the authentication in the 3G mobile system in advance.
3. method according to claim 1 is characterized in that, whether said Femto gateway is trusted user according to the user, distributes the not private network IP address of same area to said portable terminal, trusts user and other users and adheres to not same area separately.
4. method according to claim 1 is characterized in that, said method also comprises: the information of mobile terminal of trusting through Femto gateway management system configuration Femto gateway in advance;
Said Femto gateway is after said portable terminal distributes private network IP address, and whether said Femto gateway is initiated query requests to said Femto gateway management system, be to trust the user to judge said portable terminal;
If said portable terminal is to trust the user, then said Femto gateway is carried out route forwarding function, so that the mobile terminal accessing intra-gateway resource of trusting.
5. method according to claim 3 is characterized in that, said Femto gateway is after said portable terminal distributes private network IP address, and said Femto gateway is carried out route forwarding function, the mobile terminal accessing intra-gateway resource that said Femto gateway is trusted.
6. the system of a mobile terminal to access network resources is characterized in that, said system comprises:
Said portable terminal; Be used for initiating the PPP connection request of online to the Femto gateway; Accomplish PPP with said Femto gateway and is connected, and obtain private network IP from said Femto gateway, and the long-range connecting system access internet of public network IP access band through said Femto gateway conversion acquisition;
Said Femto gateway; Has the Femto base station; Be used to receive the online PPP connection request that said portable terminal sends, the PPP of the said portable terminal that terminates connects, and completion is connected with the PPP of said portable terminal; And be that said portable terminal distributes private network IP address, and network address transmission is carried out to obtain said public network IP address in said private network IP address.
7. system according to claim 6 is characterized in that, said system also comprises: Femto gateway management system is used to dispose the information of mobile terminal that the Femto gateway is trusted.
8. system according to claim 6 is characterized in that, whether said Femto gateway also is used for according to the user is trusted user, distributes the not private network IP address of same area to said portable terminal.
9. system according to claim 8; It is characterized in that said Femto gateway also is used for after said portable terminal distributes private network IP address, initiating query requests to Femto gateway management system; To judge whether said portable terminal is to trust the user; If said portable terminal is to trust the user, then carry out route forwarding function, so that the mobile terminal accessing intra-gateway resource of trusting.
10. a Femto gateway is characterized in that, said Femto gateway comprises:
The PPP service module is used for the online PPP connection request that mobile terminal receive sends, and the PPP of the said portable terminal that terminates connects, and completion is connected with the PPP of said portable terminal, and is said portable terminal distribution private network IP address;
The vlan management module is used for to said portable terminal the not private network IP address of same area being provided; Trust user and other users and adhere to not same area separately; Said portable terminal has only through the IP address ability access gateway internal network resource in the territory under the said trust user;
FMS Remote configuration module; Be used to provide the FMS Remote configuration to trust the function of user profile; Operator or system manager can pass through the said trust user profile of Femto gateway management system configuration, and said trust user profile is stored in the said FMS Remote configuration module;
Routing Forward Module is used for carrying out route forwarding function according to said vlan management module to the private network IP address that said trust user distributes, so that said trust user's mobile terminal accessing intra-gateway resource;
The Internet NAT module is used to carry out network address transmission, is public network IP address with private network IP address transition, thereby portable terminal is through the long-range connecting system access internet of public network IP access band.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910178397A CN101730268B (en) | 2009-11-27 | 2009-11-27 | Femto gateway and method and system for mobile terminal to access network resources |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910178397A CN101730268B (en) | 2009-11-27 | 2009-11-27 | Femto gateway and method and system for mobile terminal to access network resources |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101730268A CN101730268A (en) | 2010-06-09 |
| CN101730268B true CN101730268B (en) | 2012-09-05 |
Family
ID=42450245
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910178397A Active CN101730268B (en) | 2009-11-27 | 2009-11-27 | Femto gateway and method and system for mobile terminal to access network resources |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101730268B (en) |
Families Citing this family (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102469093B (en) * | 2010-11-19 | 2015-02-18 | 中国电信股份有限公司 | System and method for controlling networking authorization on networking application |
| GB201113942D0 (en) | 2011-08-12 | 2011-09-28 | Nec Corp | Communication system |
| CN102611708B (en) * | 2012-03-26 | 2016-03-30 | 华为技术有限公司 | A kind of Internet access method and equipment |
| US9166952B2 (en) * | 2012-10-15 | 2015-10-20 | Thales Canada Inc | Security device bank and a system including the and SD security device bank |
| CN103259623A (en) * | 2013-04-16 | 2013-08-21 | 京信通信系统(广州)有限公司 | Data transmission method and data transmission device |
| CN104349499B (en) * | 2013-07-25 | 2018-05-11 | 上海携程商务有限公司 | The access system and method for session access, mobile terminal and call center's communication |
| CN103874008A (en) * | 2014-03-24 | 2014-06-18 | 中国科学院计算技术研究所 | Off-line Ad-Hoc network communication system, method and construction method under Femto cell architecture |
| CN104253744A (en) * | 2014-09-24 | 2014-12-31 | 京信通信系统(中国)有限公司 | Femto-based intelligent home gateway and application method thereof |
| CN104539346B (en) * | 2014-12-30 | 2018-11-06 | 京信通信系统(中国)有限公司 | A kind of data transmission method and device |
| CN106487940B (en) * | 2015-08-28 | 2019-05-31 | 国基电子(上海)有限公司 | Home eNodeB and the method for IP configuration |
| CN107295577B (en) * | 2016-03-31 | 2020-03-20 | 展讯通信(上海)有限公司 | Network connection method and device |
| CN106131234A (en) * | 2016-06-20 | 2016-11-16 | 杭州华三通信技术有限公司 | A kind of method and apparatus distributing address information |
| CN107682283B (en) * | 2016-08-01 | 2019-09-20 | 中国联合网络通信集团有限公司 | A kind of bandwidth management system and method |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101291464A (en) * | 2007-04-17 | 2008-10-22 | 阿尔卡特朗讯公司 | A method for interfacing a Femto-cell equipment with a mobile core network |
| CN101588580A (en) * | 2009-06-30 | 2009-11-25 | 华为技术有限公司 | User access control method, home base station gateway and system |
-
2009
- 2009-11-27 CN CN200910178397A patent/CN101730268B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101291464A (en) * | 2007-04-17 | 2008-10-22 | 阿尔卡特朗讯公司 | A method for interfacing a Femto-cell equipment with a mobile core network |
| CN101588580A (en) * | 2009-06-30 | 2009-11-25 | 华为技术有限公司 | User access control method, home base station gateway and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101730268A (en) | 2010-06-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101730268B (en) | Femto gateway and method and system for mobile terminal to access network resources | |
| US9277491B2 (en) | Access point, a server and a system for distributing an unlimited number of virtual IEEE 802.11 wireless networks through a heterogeneous infrastructure | |
| EP2643996B1 (en) | Automatic remote access to ieee 802.11 networks | |
| CN102148878B (en) | IP (internet protocol) address allocation method, system and device | |
| CN101674580B (en) | Method for accessing mobile core network by utilizing fixed network | |
| US10432632B2 (en) | Method for establishing network connection, gateway, and terminal | |
| CN103634794B (en) | By the WLAN terminal personal identification method for integrating Portal | |
| CN105307170B (en) | Connect control device, base station control method and communication means | |
| KR101426721B1 (en) | Method and equipment for authenticating subscriber terminal | |
| CN100370776C (en) | System and method for implementing multi-user access in LAN terminal | |
| CN103906055A (en) | Service data distribution method and service data distribution system | |
| CN103384365A (en) | Method and system for network access, method for processing business and equipment | |
| CN103139772A (en) | Method for processing terminal accessed to local area network and method and device for used data statistic | |
| CN107733764A (en) | Method for building up, system and the relevant device in virtual expansible LAN tunnel | |
| CN103200534A (en) | Method, device and system of trunking communication | |
| WO2011015091A1 (en) | Method, device, system and authentication authorization accounting (aaa) server for home node base station accessing | |
| KR20060101934A (en) | A portable wireless access device and a wireless internet connecting method using the device | |
| WO2013143265A1 (en) | Internet access method and device | |
| CN101179861A (en) | Method and device for position detection | |
| CN101729599B (en) | Method and system for user to access internet through mobile terminal by using broadband network | |
| WO2015135278A1 (en) | Authentication method and system, prose functional entity, and ue | |
| KR101504895B1 (en) | Separable charge system for byod service and separable charge method for data service | |
| CN101932083B (en) | Method for selecting tunnel establishment mode as well as terminal, server and system | |
| CN104955012A (en) | Wireless router management system and method | |
| CN103517341A (en) | Method, system and device for segmenting flow in wireless local area network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |