CN107770067A - Message method and device - Google Patents
Message method and device Download PDFInfo
- Publication number
- CN107770067A CN107770067A CN201610708954.7A CN201610708954A CN107770067A CN 107770067 A CN107770067 A CN 107770067A CN 201610708954 A CN201610708954 A CN 201610708954A CN 107770067 A CN107770067 A CN 107770067A
- Authority
- CN
- China
- Prior art keywords
- message
- modules
- dep
- communication message
- identification information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L45/00—Routing or path finding of packets in data switching networks
- H04L45/302—Route determination based on requested QoS
- H04L45/304—Route determination for signalling traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L51/00—User-to-user messaging in packet-switching networks, transmitted according to store-and-forward or real-time protocols, e.g. e-mail
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a kind of message method and device.Wherein, this method includes:When VNF is in elastic capacity reducing, if receiving the communication message of network element, the type of message of communication message is obtained;Type of message based on communication message determines the target DEP modules for handling communication message;Communication message is sent to target DEP modules.The present invention is solved in correlation technique due to the technical problem that message forwarding can not be correctly carried out caused by VNF elastic capacity reducing characteristic.
Description
Technical field
The present invention relates to the communications field, in particular to a kind of message method and device.
Background technology
According to RFC3588 (Request For Comments, referred to as RFC, be it is a series of to number the file that is ranked,
The relevant Internet relevant information of file collection, and UNIX and the software document of the Internet community) description Diameter bases
Plinth protocol function, and related application agreement is extended, Diameter systems are 3GPP (3rd Generation
Partnership Project, 3GPP target are to realize seamlessly transitting by 2G networks to 3G network, ensure WeiLai Technology
Backwards compatibility, the roaming between light networking and system and compatibility are supported, the version such as including R5, R6, R7, R8, R9) IMS (IP
Multimedia Subsystem, IP multimedia subsystem) HSS (Home Subscriber Server, ownership signing in system
Client server), SLF (Super Low Frequency, ultralow frequency), SPR (Subscription Profile
Repository, user property memory), the related network elements such as EPC (Evolved Packet Core, 4G core network) provide
Diameter message is received and dispatched, the function services such as relaying.
System (i.e. TCP/SCTP layers, Transmission Control Protocol, passes transport control protocol using transport layer
View, Stream Control Transmission Protocol, SCTP) data transport service that provides is to right
Deng Diameter entities send Diameter message, the Diameter message received is sent to operation layer, there is provided link pipe
The mechanism such as reason and transaction layer re-transmission, ensure the reliability of Signaling Layer.
According to Diameter, main function of system includes connection management function, transaction management function, session management work(
Energy.According to the functional requirement of system, system can be made to following functional hierarchy division:
(1) DAP modules (Diameter Access Point), the Access Control of abutment points in Diameter networks is completed,
Bearer management function;
(2) DEP modules (Diameter Executive Point), defined in Diameter and business is completed
Related logic perform function, including transaction management, session management, Relay/Redirect (relaying redirects) etc..
Connection management module of the DAP modules as Diameter stack, it is main to be responsible for completing Diameter abutment points
Access Control and bearer management function.DAP modules receive the message from SCTP/TCP layers, if request message is then according to one
Fixed distribution policy is sent to corresponding DEP modules, if response message is then sent directly to the DEP where its request message
Module.
After planization introduces VNF (Virtual Network Feature, virtual network function) elastic telescopic characteristic, when
During Diameter business execution module capacity reducings in VNF, because the state of DEP modules changes, cause DAP modules can not be just
Really carry out the distribution of message.
For in correlation technique because the technology that message forwarding can not be correctly carried out caused by VNF elastic capacity reducing characteristic is asked
Topic, not yet proposes effective solution at present.
The content of the invention
The embodiments of the invention provide a kind of message method and device, at least to solve in correlation technique due to VNF
Elastic capacity reducing characteristic caused by can not correctly carry out the technical problem of message forwarding.
One side according to embodiments of the present invention, there is provided a kind of message method, this method include:At VNF
When elastic capacity reducing, if receiving the communication message of network element, the type of message of communication message is obtained;Disappearing based on communication message
Breath type determines the target DEP modules for handling communication message;Communication message is sent to target DEP modules.
Further, obtaining the type of message of communication message includes:Obtain the identification information carried in communication message;Pass through
Identification information determines the type of message of communication message.
Further, obtaining the identification information carried in communication message includes:Payload fields in communication message are obtained to take
The identification information of band.
Further, the type of message for determining communication message by identification information includes:Judge whether to believe with mark
Session connection corresponding to breath, wherein, the session connection corresponding with identification information is the session connection belonging to communication message;If in the presence of
The session connection corresponding with identification information, it is determined that the type of message of communication message is non-originating information;If it is not present and mark
Session connection corresponding to information, it is determined that the type of message of communication message is originating information.
Further, the type of message based on communication message determines to include for handling the target DEP modules of communication message:
In the case where the type of message of communication message is non-originating information, it is determined that the DEP modules for being associated with session connection are target DEP
Module;In the case where the type of message of communication message is originating information, it is target DEP to choose one in multiple DEP modules
Module, wherein, multiple DEP modules are that the DEP modules of capacity reducing are not allowed in preset time period.
Further, identification information is data message, and one chosen in multiple DEP modules includes for target DEP modules:
Determine the number of modules of multiple DEP modules;Complementation is carried out to identification information using number of modules, obtains mark data;Obtain more
The target DEP modules of order and identification data matches in individual DEP modules, and associated objects DEP modules and session connection.
Further, network element includes 3GPP AAA SERVER network elements.
Other side according to embodiments of the present invention, there is provided a kind of message dispensing device, the device include:Obtain single
Member, for when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtaining the type of message of communication message;Really
Order member, the target DEP modules for handling communication message are determined for the type of message based on communication message;Transmitting element,
For sending communication message to target DEP modules.
Further, acquiring unit includes:Acquisition module, for obtaining the identification information carried in communication message;First
Determining module, for determining the type of message of communication message by identification information.
Further, acquisition module is additionally operable to obtain the identification information that Payload fields carry in communication message.
Further, the first determining module includes:Judging submodule, it is corresponding with identification information for judging whether
Session connection, wherein, the session connection corresponding with identification information is the session connection belonging to communication message;First determines submodule
Block, if in the presence of the session connection corresponding with identification information, it is determined that the type of message of communication message is non-originating information;The
Two determination sub-modules, if in the absence of the session connection corresponding with identification information, it is determined that the type of message of communication message is
Originating information.
Further, it is determined that unit includes:Second determining module, disappear for the type of message in communication message for non-originate
In the case of breath, it is determined that the DEP modules for being associated with session connection are target DEP modules;Module is chosen, in communication message
In the case that type of message is originating information, it is target DEP modules to choose one in multiple DEP modules, wherein, multiple DEP
Module is that the DEP modules of capacity reducing are not allowed in preset time period.
Further, identification information is data message, and choosing module includes:3rd determination sub-module, it is multiple for determining
The number of modules of DEP modules;Computing submodule, for carrying out complementation to identification information using number of modules, obtain mark data;
Acquisition submodule, for obtaining the target DEP modules of order and identification data matches in multiple DEP modules, and associated objects DEP
Module and session connection.
Further, network element includes 3GPP AAA SERVER network elements.
According to another embodiment of the invention, there is provided a kind of storage medium, storage medium can be configured to store
For performing the program code of following steps:When VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain
The type of message of communication message;Type of message based on communication message determines the target DEP modules for handling communication message;Hair
Communication message is sent to target DEP modules.
In embodiments of the present invention, when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain logical
Interrogate the type of message of message;Type of message based on communication message determines the target DEP modules for handling communication message;Send
Communication message is to target DEP modules, so as to solve in correlation technique due to can not be correct caused by VNF elastic capacity reducing characteristic
The technical problem of message forwarding is carried out, realizes and the correct technique effect for carrying out message forwarding still is able in elastic capacity reducing.
Brief description of the drawings
Accompanying drawing described herein is used for providing a further understanding of the present invention, forms the part of the application, this hair
Bright schematic description and description is used to explain the present invention, does not form inappropriate limitation of the present invention.In the accompanying drawings:
Fig. 1 is the schematic diagram of terminal according to embodiments of the present invention;
Fig. 2 is the flow chart of message forwarding according to embodiments of the present invention;
Fig. 3 is the flow chart of message method according to embodiments of the present invention;
Fig. 4 is the schematic diagram of Diameter logical architectures according to embodiments of the present invention;
Fig. 5 is the schematic diagram of message dispensing device according to embodiments of the present invention.
Embodiment
Describe the present invention in detail below with reference to accompanying drawing and in conjunction with the embodiments.It should be noted that do not conflicting
In the case of, the feature in embodiment and embodiment in the application can be mutually combined.
It should be noted that term " first " in description and claims of this specification and above-mentioned accompanying drawing, "
Two " etc. be for distinguishing similar object, without for describing specific order or precedence.
Embodiment 1
The embodiment of the method that the embodiment of the present application one is provided can be in mobile terminal, terminal or similar fortune
Calculate and performed in device.Exemplified by running on computer terminals, as shown in figure 1, terminal can include one or more
(processor 101 can include but is not limited to Micro-processor MCV or programmable logic device to (one is only shown in figure) processor 101
Part FPGA etc. processing unit), the memory 103 for data storage and the transmitting device 105 for communication function.This
Field those of ordinary skill is appreciated that the structure shown in Fig. 1 is only to illustrate, and it is not caused to the structure of above-mentioned electronic installation
Limit.
Memory 103 can be used for the software program and module of storage application software, such as the equipment in the embodiment of the present invention
Control method corresponding to programmed instruction/module, processor 101 by operation be stored in software program in memory 103 with
And module, so as to perform various function application and data processing, that is, realize above-mentioned method.Memory may include random at a high speed
Memory, nonvolatile memory is may also include, such as one or more magnetic storage device, flash memory or other are non-volatile
Property solid-state memory.In some instances, memory can further comprise relative to the remotely located memory of processor, these
Remote memory can pass through network connection to terminal.The example of above-mentioned network includes but is not limited to internet, enterprise
In-house network, LAN, mobile radio communication and combinations thereof.
For example, memory can store the program code of following steps:When VNF is in elastic capacity reducing, if receiving net
The communication message of member, then obtain the type of message of communication message;Type of message based on communication message determines to be used to handle communication
The target DEP modules of message;Communication message is sent to target DEP modules.
Transmitting device is used to data are received or sent via a network.Above-mentioned network instantiation may include to calculate
The wireless network that the communication providerses of machine terminal provide.In an example, transmitting device includes a network adapter
(Network Interface Controller, NIC), its can be connected by base station with other network equipments so as to interconnection
Net is communicated.In an example, transmitting device can be radio frequency (Radio Frequency, RF) module, and it is used to pass through
Wireless mode is communicated with internet.
Whether trusted is not network characteristic to Non-3GPP access networks, if dynamic decides whether trusted then in access authentication
When handle.Instruction is handed down to access network, DER (Diameter-EAP-Request) flow chart such as Fig. 2 by AAA Server
It is shown:
After step S201, UE associate with credit Non-3GPP access gatewaies (access) foundation, UE connects to Non-3GPP
Function Access Gateway sends EAPoL-Start, initiates authentication request.
Step S202, Non-3GPP access gateway send EAP-Request/Identity message to UE.
Step S203, UE return to EAP-Response/Identity message, and its User Identity letter is sent to network
Breath, identity can be pseudorandom NAI or permanent NAI (local without available pseudorandom NAI).
Step S204, Non-3GPP access gateway uses EAP messages the EAP-payload of DIAMETER DER message
AVP is encapsulated and Identity is placed in the User-Name AVP of DIAMETER DER message, is sent to 3GPP AAA
Server。
Step S205,3GPP AAA Server need to do following processing after receiving DEA message:
(1) conducted a compulsory examination under non-roaming situation the validity of ANID (adjacent net network identifier) (as defined in the range of 3GPP)
And decide whether to allow the ANID to access according to being locally configured;Basis, which is locally configured, under roaming condition decides whether to check
ANID, if necessary to check ANID, then basis, which is locally configured, decides whether to allow the ANID to access.
(2) trusted or untrusted is judged.
(3) selection of authentication arithmetic.EAP-AKA ' algorithms are used if DIAMETER DER carry ANID, are otherwise made
With EAP-AKA algorithms.
Step S206,3GPP AAA Server send DIAMETER DER message request permanent subscribers ID to access network.
Step S207, access network forward DER message to UE.
Step S208, UE carry permanent NAI (Network Access Identifiers using EAP-Response/AKA-Identity message
Symbol) responded.
Step S209, credit Non-3GPP access gateway forwarding EAP-Response/AKA-Identity message carry forever
Long NAI to 3GPP AAA Server, EAP messages are encapsulated in the EAP-payload AVP of DER message.
Step S210,3GPP AAA Server check locally whether cache available authentication vector according to NAI, if do not had
Have and then send MAR (Multimedia Auth Request) requests to HSS, (n can configure acquisition request n groups authentication vector, take
It is worth scope 1~5).
Step S211, the information process between AAA and HSS is referring to the description of Related Art of SWx interfaces, herein only work done
Energy property description, HSS response 3GPP AAA Server authentication requests, issue n groups authentication five-tuple.
Step S212,3GPP AAA Server check the local signing information that whether there is user.If it is not, AAA
SAR requests (AAA_USER_DATA_REQUEST), which are initiated, to HSS obtains user signing contract information.
Step S213, the processing between AAA and HSS refer to SWx interfaces, only make functional descriptions herein, and HSS is to 3GPP
AAA Server return to SAA responses.
Step S214, AAA server need to do following processing:
(1) judge whether that needs regenerate random assumed name;
(2) TEKs (master key MK, authentication password k_encr, encapsulation key k_aut, master session key are generated according to algorithm
MSK, extended master session key EMSK) and MAC;
(3) the EAP playload parameters that 3GPP AAA Server are sent include ANID, RAND, AUTN (ANID, RAND,
AUTN is the part in authentication four-tuple), a message authentication code (MAC) and 2 users identify and connect to credit Non-3GPP
Function Access Gateway, EAP messages are encapsulated in DIAMETER DEA message.If necessary to dynamically determine that IP Move Modes or configuration are supported
Notification message then carries AT_RESULT_IND attributes in EAP-Payload AVP, and step S205 is determined
AT_TRUST_IND property values (TRUSTED) are handed down to UE.
Step S215, credit Non-3GPP access gateway send out EAP-Request/AKA-Challenge message to UE.
UMTS (Universal Mobile Telecommunications System) algorithm in step S216, UE operation USIM (Global Subscriber identification card).USIM
Verify AUTN and accordingly certification network.If AUTN authentication errors, terminal then refuses authentication (not showing in this example).If
Sequence number authentication failed, terminal initiate synchronizing process.
Step S217, credit Non-3GPP access gateway send EAP-Response/AKA-Challenge messages to 3GPP
AAA Server, EAP messages are encapsulated in DIAMETER DER message.
(MAC, MAC are the keys according to secret to the message authentication code that step S218,3GPP AAA Server inspections receive
With the data of transmission calculate to prevent message to be destroyed), compare XRES (Expected user Response, it is contemplated that
User response) and receive RES (actual user's response).If all inspections are all successful, and the DER requests received are with result guarantor
Finger shield shows that then 3GPP AAA Server must send EAP-Request/AKA- before EAP Success message is sent
Notification message, if dynamic determines that IP Move Modes then need to issue down AT_IPMS_RES attributes.EAP
Message is encapsulated in DIAMETER DEA message and protected with MAC.
Step S219, credit Non-3GPP access gateway forward EAP message to UE.
Step S220, UE send EAP-Response/AKA-Notification.
Step S221, credit Non-3GPP access gateway send EAP-Response/AKA-Notification message to
3GPP AAA Server, EAP messages are encapsulated in DIAMETER DER message.3GPP AAA Server must ignore the message
Content.
Step S222, it is necessary to update the key changed in authentication process after authenticating successfully.AAA business modules store to AAA
Module initiates LDAP (Lightweight Directory Access Protocol, Light Directory Access Protocol) write request, more
New MSK, MSK-Timeout, discrimination weight ID and discrimination weight ID counters, random assumed name (if regenerating) and pseudo- mark ID meters
Number device (if changing), will also update EMSK.
After step S223, AAA memory module updates the data, LDAP responses are returned to AAA business modules.
Step S224,3GPP AAA Server check whether user is allowed to use Non-3GPP accesses, whether allows to make
With APN5591055910s, RAT-Type of signing whether in user contracts the RAT lists that allow, check whether user contracts
The APN5591055910 of institute band in DER requests, check and connect by then transmission EAP Success message to credit Non-3GPP
Function Access Gateway (may being described before EAP-Notification is sent referring to the 23rd step) is authorized.
Step S225, credit Non-3GPP access gatewaies are authenticated successfully by EAP Success message informings UE.So far,
EAP-AKA ' interactions are successfully completed.
Step S226, AAA server carry NAI (IMSI) and service distribution type (REGISTRATION) is sent out to HSS
Play registration request.
Step S227, it is REGISTERED that HSS, which sets User Status, then carries user related data to AAA server
Initiate SAA underthrust data.
In above-mentioned steps, DER message (i.e. Diameter-EAP-Request Command) mainly includes following field,
The implication of each field is as shown in table 1:
{Auth-Request-Type}
{EAP-Payload}
[User-Name]
*[AVP]
Table 1
It should be noted that for Diameter upstream messages, when DAP modules are to DEP module dispatch messages, according to
DEP module status judges whether to give this DEP module dispatch messages.After planization introduces VNF elastic telescopic characteristics, when in VNF
Diameter business execution module capacity reducings when, in order to not allow the business newly initiated of DEP resume modules opposite end for preparing capacity reducing to disappear
Breath, can shift to an earlier date this DEP modular filtration to fall when DAP modules are to DEP module dispatch messages.
And it is according to the sess ion (reply connection) carried in message during DAP module dispatch messages and is currently running
DEP modules select suitable DEP modules.The DER message (i.e. communication message) of 3GPP AAA SERVER network elements has one
The scene of multiple interacting message under session, if according to the distribution plan of DAP modules above during DEP modules offline (i.e. capacity reducing)
Slightly, can cause DAP modules will not again remaining DER message distributions under the session to the DEP modules for originally handling the message,
Cause the call loss of DER message.
In order to overcome above mentioned problem, according to embodiments of the present invention, there is provided a kind of embodiment of the method for message method,
It should be noted that can be in the department of computer science of such as one group computer executable instructions the flow of accompanying drawing illustrates the step of
Performed in system, although also, show logical order in flow charts, in some cases, can be with different from herein
Order perform shown or described step.
Fig. 3 is the flow chart of message method according to embodiments of the present invention, as shown in figure 3, this method is including as follows
Step:
Step S301, when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain communication message
Type of message.
Step S302, the type of message based on communication message determine the target DEP modules for handling communication message.
Step S303, communication message is sent to target DEP modules.
By above-described embodiment, when VNF is in elastic capacity reducing, if receiving the communication message of network element, communication is obtained
The type of message of message;Type of message based on communication message determines the target DEP modules for handling communication message;Send logical
Message is interrogated to target DEP modules, so as to solve in correlation technique due to can not correctly enter caused by VNF elastic capacity reducing characteristic
The technical problem of row message forwarding, realize and the correct technique effect for carrying out message forwarding still is able in elastic capacity reducing.
The framework of the running environment of the application method mainly includes as shown in figure 4, in Diameter logical architecture figures
DEP modules (session and transaction management module and its main backup module), DAP modules (connection management module and its main backup module), DIM
Data transmission module (Diameter Data Transport Point, referred to as DIP modules), platform adaption module, public mould
Block/PARSER modules, OAM service modules (Operation Administration and Maintenance, namely
Diameter operation management maintainances module).
Above-mentioned DIP modules include LREG modules, and (Diameter Local Registry, namely Diameter are locally noted
Volume node) and its preparation module, DTP modules, GREG modules (Diameter Global Registry, namely Diameter are complete
Office's register node) and its main backup module.
Alternatively, the executive agent of above-mentioned steps can be to carry adaptation module DAP etc., but not limited to this.Above-mentioned net
Member includes 3GPP AAA SERVER network elements;Above-mentioned communication message can be the DER message of 3GPP AAA SERVER network elements
(Diameter-EAP-Request)。
In the above-described embodiments, in step S301, obtaining the type of message of communication message includes:Obtain in communication message
The identification information of carrying;The type of message of communication message is determined by identification information.
Specifically, obtaining the identification information carried in communication message includes:Payload fields in communication message are obtained to carry
Identification information;The type of message for determining communication message by identification information includes:Judge whether corresponding with identification information
Session connection, wherein, the session connection corresponding with identification information be communication message belonging to session connection;If in the presence of with mark
Session connection corresponding to information, it is determined that the type of message of communication message is that (i.e. the n-th message of session, N are big for non-originating information
In 1);If in the absence of the session connection corresponding with identification information, it is determined that the type of message of communication message is originating information (session
First time message).
Alternatively, in step s 302, the type of message based on communication message determines the target for handling communication message
DEP modules include:In the case where the type of message of communication message is non-originating information, it is determined that being associated with the DEP of session connection
Module is target DEP modules;In the case where the type of message of communication message is originating information, choose in multiple DEP modules
One is target DEP modules, wherein, multiple DEP modules are that the DEP modules of capacity reducing are not allowed in preset time period.
It should be noted that identification information is data message, it is target DEP modules to choose one in multiple DEP modules
Including:Determine the number of modules of multiple DEP modules;Complementation is carried out to identification information using number of modules, obtains mark data;Obtain
Take the target DEP modules of order and identification data matches in multiple DEP modules, and associated objects DEP modules and session connection.
Specifically, when the present processes can be applicable to 3GPP AAA SERVER network element VNF elastic telescopics under virtualization,
During Diameter business execution module capacity reducings, the unbroken message distribution strategy of DER message.Its flow is specific as follows:
DAP modules decode to DER message when handling DER message, determine the Eap-payload in DER message
(Extensible Authentication Protocol, abbreviation Eap) either with or without band eap-identity (i.e. response),
Its distribution policy is as follows:
1, DAP is considered to answer if the Eap-payload in DER message is without band eap-identity (response)
With the DER message (message i.e. in already-existing session connection) handled, DAP (is included and prepared offline according to old DEP modules
DEP modules) distribution dispatch messages.
2, if the Eap-payload in DER message, with eap-identity (response), DAP is considered eventually
The new service message initiated is held, DAP (removes the DEP modules for preparing capacity reducing) dispatch messages according to new DEP module distributions.
In the above-described embodiments, DER message is decoded by DAP modules, according to the Eap- in DER message
Payload is either with or without determining whether right DER message is with eap-identity (i.e. Payload fields carry identification information)
The originating information at end.If with eap-identity (response), then it is assumed that be originating information, according to new DEP modules
Dispatch messages are distributed, are distributed after the DEP modules for preparing capacity reducing are removed.If not band eap-identity
(response), then it is assumed that be DER intermediary message, according to old DEP module distribution dispatch messages, retain and prepare capacity reducing
DEP modules are distributed, and can make the complete DER residues message of DEP resume modules of preparation capacity reducing, and are not handled opposite end network element and newly initiated
DER message, meet service message unbroken requirement during DEP module capacity reducings.Solve to carry in 3GPP AAA SERVER network elements
Diameter layers in DEP module capacity reducings when, call loss during the DER message of DAP resume modules be present, cause UE attachment flows to be lost
Lose, the problem of user can not access 3GPP networks.
Whether Eap-payload of the DAP modules of Diameter systems in DER message carries eap- in the application
Identity (response) is as shown in Figure 2 to determine the message distribution strategic process of DAP modules;
In step S202, the Diameter subsystems of 3GPP AAA Server carryings receive DER message, Diameter
DAP modules when handling DER message, DER message is decoded, determines the Eap-payload in DER message either with or without band
Eap-identity (response), its distribution policy are as follows:
1, DAP is considered to answer if the Eap-payload in DER message is without band eap-identity (response)
With the DER message (message i.e. in already-existing session connection) handled, DAP (is included and prepared offline according to old DEP modules
DEP modules) distribution dispatch messages.
2, if the Eap-payload in DER message, with eap-identity (response), DAP is considered eventually
The new service message initiated is held, DAP (removes the DEP modules for preparing capacity reducing) dispatch messages according to new DEP module distributions.
Through the above description of the embodiments, those skilled in the art can be understood that according to above-mentioned implementation
The method of example can add the mode of required general hardware platform to realize by software, naturally it is also possible to by hardware, but a lot
In the case of the former be more preferably embodiment.Based on such understanding, technical scheme is substantially in other words to existing
The part that technology contributes can be embodied in the form of software product, and the computer software product is stored in a storage
In medium (such as ROM/RAM, magnetic disc, CD), including some instructions to cause a station terminal equipment (can be mobile phone, calculate
Machine, server, or network equipment etc.) perform method described in each embodiment of the present invention.
Embodiment 2
A kind of message dispensing device is additionally provided in the embodiment of the present invention.The device be used for realize above-described embodiment and preferably
Embodiment, repeating no more for explanation was carried out.As used below, term " module " can realize predetermined function
The combination of software and/or hardware.Although device described by following examples is preferably realized with software, hardware, or
The realization of the combination of person's software and hardware is also what may and be contemplated.
Fig. 5 is the schematic diagram of message dispensing device according to embodiments of the present invention.As shown in figure 5, the device can include:
Acquiring unit 51, determining unit 52 and transmitting element 53.
Acquiring unit 51, for when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtaining communication
The type of message of message.
Determining unit 52, the target DEP moulds for handling communication message are determined for the type of message based on communication message
Block.
Transmitting element 53, for sending communication message to target DEP modules.
By above-described embodiment, acquiring unit is when VNF is in elastic capacity reducing, if receiving the communication message of network element,
Obtain the type of message of communication message;Type of message of the determining unit based on communication message determines the mesh for handling communication message
Mark DEP modules;Transmitting element sends communication message to target DEP modules., so as to solve in correlation technique due to VNF bullet
The technical problem of message forwarding can not be correctly carried out caused by property capacity reducing characteristic, realizes and still is able to correctly enter in elastic capacity reducing
The technique effect of row message forwarding.
Above-mentioned network element includes 3GPP AAA SERVER network elements;Above-mentioned communication message can be 3GPP AAA SERVER
The DER message (Diameter-EAP-Request) of network element.
In the above-described embodiments, acquiring unit includes:Acquisition module, for obtaining the mark carried in communication message letter
Breath;First determining module, for determining the type of message of communication message by identification information.
Specifically, acquisition module is additionally operable to obtain the identification information that Payload fields carry in communication message.First determines
Module includes:Judging submodule, for judging whether the session connection corresponding with identification information, wherein, with identification information
Corresponding session connection is the session connection belonging to communication message;First determination sub-module, if in the presence of with identification information pair
The session connection answered, it is determined that the type of message of communication message is non-originating information;Second determination sub-module, if for being not present
The session connection corresponding with identification information, it is determined that the type of message of communication message is originating information.
Optionally it is determined that unit includes:Second determining module, for being non-originating information in the type of message of communication message
In the case of, it is determined that the DEP modules for being associated with session connection are target DEP modules;Module is chosen, for disappearing in communication message
In the case of ceasing type for originating information, it is target DEP modules to choose one in multiple DEP modules, wherein, multiple DEP moulds
Block is the DEP modules that capacity reducing is not allowed in preset time period.
It should be noted that identification information is data message, choosing module includes:3rd determination sub-module, for determining
The number of modules of multiple DEP modules;Computing submodule, for carrying out complementation to identification information using number of modules, identified
Data;Acquisition submodule, for obtaining the target DEP modules of order and identification data matches in multiple DEP modules, and associate mesh
Mark DEP modules and session connection.
It should be noted that above-mentioned modules can be realized by software or hardware, for the latter, Ke Yitong
Cross in the following manner realization, but not limited to this:Above-mentioned module is respectively positioned in same processor;Or above-mentioned modules are with any
The form of combination is located in different processors respectively.
Embodiment 3
Embodiments of the invention additionally provide a kind of storage medium.Alternatively, in the present embodiment, above-mentioned storage medium can
The program code for performing following steps to be arranged to storage to be used for:
S1, when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtain the message class of communication message
Type;
S2, the type of message based on communication message determine the target DEP modules for handling communication message;
S3, communication message is sent to target DEP modules.
Alternatively, in the present embodiment, above-mentioned storage medium can include but is not limited to:USB flash disk, read-only storage (ROM,
Read-Only Memory), random access memory (RAM, Random Access Memory), mobile hard disk, magnetic disc or
CD etc. is various can be with the medium of store program codes.
Alternatively, in the present embodiment, processor performs according to the program code stored in storage medium:At VNF
When elastic capacity reducing, if receiving the communication message of network element, the type of message of communication message is obtained;Disappearing based on communication message
Breath type determines the target DEP modules for handling communication message;Communication message is sent to target DEP modules.
Alternatively, the specific example in the present embodiment may be referred to described in above-described embodiment and optional embodiment
Example, the present embodiment will not be repeated here.
Obviously, those skilled in the art should be understood that above-mentioned each module of the invention or each step can be with general
Computing device realize that they can be concentrated on single computing device, or be distributed in multiple computing devices and formed
Network on, alternatively, they can be realized with the program code that computing device can perform, it is thus possible to they are stored
Performed in the storage device by computing device, and in some cases, can be with different from shown in order execution herein
The step of going out or describing, they are either fabricated to each integrated circuit modules respectively or by multiple modules in them or
Step is fabricated to single integrated circuit module to realize.So, the present invention is not restricted to any specific hardware and software combination.
The preferred embodiments of the present invention are the foregoing is only, are not intended to limit the invention, for the skill of this area
For art personnel, the present invention can have various modifications and variations.Within the spirit and principles of the invention, that is made any repaiies
Change, equivalent substitution, improvement etc., should be included in the scope of the protection.
Claims (14)
- A kind of 1. message method, it is characterised in that including:When VNF is in elastic capacity reducing, if receiving the communication message of network element, the type of message of the communication message is obtained;Type of message based on the communication message determines the target DEP modules for handling the communication message;The communication message is sent to the target DEP modules.
- 2. according to the method for claim 1, it is characterised in that obtaining the type of message of the communication message includes:Obtain the identification information carried in the communication message;The type of message of the communication message is determined by the identification information.
- 3. according to the method for claim 2, it is characterised in that obtain the identification information bag carried in the communication message Include:Obtain the identification information that Payload fields carry in the communication message.
- 4. according to the method for claim 2, it is characterised in that disappearing for the communication message is determined by the identification information Breath type includes:The session connection corresponding with the identification information is judged whether, wherein, the session corresponding with the identification information connects It is connected in the session connection belonging to the communication message;If in the presence of the session connection corresponding with the identification information, it is determined that the type of message of the communication message is that non-originate disappears Breath;If in the absence of the session connection corresponding with the identification information, it is determined that the type of message of the communication message disappears to originate Breath.
- 5. according to the method for claim 4, it is characterised in that the type of message based on the communication message determines to be used to locate Managing the target DEP modules of the communication message includes:In the case where the type of message of the communication message is non-originating information, it is determined that being associated with the DEP of the session connection Module is the target DEP modules;In the case where the type of message of the communication message is originating information, one chosen in multiple DEP modules is described Target DEP modules, wherein, the multiple DEP modules are that the DEP modules of capacity reducing are not allowed in preset time period.
- 6. according to the method for claim 5, it is characterised in that the identification information is data message, chooses multiple DEP moulds One in block includes for the target DEP modules:Determine the number of modules of the multiple DEP modules;Complementation is carried out to the identification information using the number of modules, obtains mark data;The target DEP modules of order and the identification data matches in the multiple DEP modules are obtained, and associate the mesh Mark DEP modules and the session connection.
- 7. according to the method for claim 1, it is characterised in that the network element includes 3GPP AAA SERVER network elements.
- A kind of 8. message dispensing device, it is characterised in that including:Acquiring unit, for when VNF is in elastic capacity reducing, if receiving the communication message of network element, obtaining the communication and disappearing The type of message of breath;Determining unit, the target DEP for handling the communication message is determined for the type of message based on the communication message Module;Transmitting element, for sending the communication message to the target DEP modules.
- 9. device according to claim 8, it is characterised in that the acquiring unit includes:Acquisition module, for obtaining the identification information carried in the communication message;First determining module, for determining the type of message of the communication message by the identification information.
- 10. device according to claim 9, it is characterised in that the acquisition module is additionally operable to obtain the communication message The identification information that middle Payload fields carry.
- 11. device according to claim 9, it is characterised in that first determining module includes:Judging submodule, for judging whether the session connection corresponding with the identification information, wherein, believe with the mark Session connection corresponding to breath is the session connection belonging to the communication message;First determination sub-module, if in the presence of the session connection corresponding with the identification information, it is determined that the communication message Type of message be non-originating information;Second determination sub-module, if in the absence of the session connection corresponding with the identification information, it is determined that the communication disappears The type of message of breath is originating information.
- 12. device according to claim 11, it is characterised in that the determining unit includes:Second determining module, in the case of being non-originating information in the type of message of the communication message, it is determined that being associated with The DEP modules of the session connection are the target DEP modules;Module is chosen, in the case of being originating information in the type of message of the communication message, is chosen in multiple DEP modules One be the target DEP modules, wherein, the multiple DEP modules are that the DEP of capacity reducing is not allowed in preset time period Module.
- 13. device according to claim 12, it is characterised in that the identification information is data message, the selection mould Block includes:3rd determination sub-module, for determining the number of modules of the multiple DEP modules;Computing submodule, for carrying out complementation to the identification information using the number of modules, obtain mark data;Acquisition submodule, for obtaining the target DEP moulds of order and the identification data matches in the multiple DEP modules Block, and associate the target DEP modules and the session connection.
- 14. device according to claim 8, it is characterised in that the network element includes 3GPP AAA SERVER network elements.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610708954.7A CN107770067B (en) | 2016-08-23 | 2016-08-23 | Message sending method and device |
PCT/CN2017/098628 WO2018036514A1 (en) | 2016-08-23 | 2017-08-23 | Method and device for sending message |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610708954.7A CN107770067B (en) | 2016-08-23 | 2016-08-23 | Message sending method and device |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107770067A true CN107770067A (en) | 2018-03-06 |
CN107770067B CN107770067B (en) | 2021-05-11 |
Family
ID=61246438
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610708954.7A Active CN107770067B (en) | 2016-08-23 | 2016-08-23 | Message sending method and device |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN107770067B (en) |
WO (1) | WO2018036514A1 (en) |
Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104980297A (en) * | 2014-04-14 | 2015-10-14 | 中兴通讯股份有限公司 | Virtual machine resource changing method and device, and virtualized network function device |
CN105099789A (en) * | 2015-09-02 | 2015-11-25 | 华为技术有限公司 | Network element uploading method and equipment |
CN105577414A (en) * | 2014-10-17 | 2016-05-11 | 中兴通讯股份有限公司 | Elastically telescopic processing method, device and system for VM (Virtual Machine) resources |
CN105634782A (en) * | 2014-11-06 | 2016-06-01 | 华为技术有限公司 | Method of instancing virtual network function (VNF) and network element management device |
WO2016082143A1 (en) * | 2014-11-27 | 2016-06-02 | 华为技术有限公司 | Virtual network policy configuration method and system, as well as virtual network element and network management system thereof |
US20160173329A1 (en) * | 2014-12-12 | 2016-06-16 | Oracle International Corporation | Methods, systems, and computer readable media for configuring a flow interface on a network routing element |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8245039B2 (en) * | 2008-07-18 | 2012-08-14 | Bridgewater Systems Corp. | Extensible authentication protocol authentication and key agreement (EAP-AKA) optimization |
CN105634780B (en) * | 2014-11-04 | 2020-04-07 | 中兴通讯股份有限公司 | Method and device for realizing VNF elastic expansion |
CN105681060B (en) * | 2014-11-17 | 2020-01-31 | 中兴通讯股份有限公司 | virtualized network function management upgrading method, device and server |
CN105634956B (en) * | 2015-12-31 | 2018-11-16 | 华为技术有限公司 | A kind of message forwarding method, device and system |
CN105847330A (en) * | 2016-03-16 | 2016-08-10 | 中国联合网络通信集团有限公司 | Content distribution method and system |
-
2016
- 2016-08-23 CN CN201610708954.7A patent/CN107770067B/en active Active
-
2017
- 2017-08-23 WO PCT/CN2017/098628 patent/WO2018036514A1/en active Application Filing
Patent Citations (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104980297A (en) * | 2014-04-14 | 2015-10-14 | 中兴通讯股份有限公司 | Virtual machine resource changing method and device, and virtualized network function device |
CN105577414A (en) * | 2014-10-17 | 2016-05-11 | 中兴通讯股份有限公司 | Elastically telescopic processing method, device and system for VM (Virtual Machine) resources |
CN105634782A (en) * | 2014-11-06 | 2016-06-01 | 华为技术有限公司 | Method of instancing virtual network function (VNF) and network element management device |
WO2016082143A1 (en) * | 2014-11-27 | 2016-06-02 | 华为技术有限公司 | Virtual network policy configuration method and system, as well as virtual network element and network management system thereof |
US20160173329A1 (en) * | 2014-12-12 | 2016-06-16 | Oracle International Corporation | Methods, systems, and computer readable media for configuring a flow interface on a network routing element |
CN105099789A (en) * | 2015-09-02 | 2015-11-25 | 华为技术有限公司 | Network element uploading method and equipment |
Non-Patent Citations (3)
Title |
---|
ERONEN,P.ED等: ""Diameter Extensible Authentication Protocol(EAP)Application,Network Working Group Request for Comments:4072"", 《3GPP》 * |
H.HAVERINEN,ED: ""Extensible Authentication Protocol Method for Global system for Mobile communications Subscriber Identity Modules(EAP-SIM)"", 《3GPP》 * |
刘露等: ""NFV弹性技术"", 《电信科学》 * |
Also Published As
Publication number | Publication date |
---|---|
WO2018036514A1 (en) | 2018-03-01 |
CN107770067B (en) | 2021-05-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
JP6371644B2 (en) | Secure registration of a group of clients using a single registration procedure | |
US11115918B2 (en) | Devices, systems and methods for accessing and providing network slices in a mobile communication network | |
FI110651B (en) | A method for checking the amount of data transferred | |
RU2372734C2 (en) | Method and device for reauthentication in cellular communication system | |
EP4264984A1 (en) | Methods, systems, and computer readable media for message validation in fifth generation (5g) communications networks | |
JP2023547123A (en) | Methods, systems, and computer-readable media for validating session management facility (SMF) registration requests | |
CN115699840A (en) | Methods, systems, and computer readable media for mitigating 5G roaming security attacks using a Secure Edge Protection Proxy (SEPP) | |
EP3906652A1 (en) | Protecting a telecommunications network using network components as blockchain nodes | |
US8914867B2 (en) | Method and apparatus for redirecting data traffic | |
CN102396203A (en) | Emergency call handling in accordance with authentication procedure in communication network | |
US20160381019A1 (en) | Diameter Redirect Between Client and Server | |
Behrad et al. | Securing authentication for mobile networks, a survey on 4G issues and 5G answers | |
Behrad et al. | A survey on authentication and access control for mobile networks: from 4G to 5G | |
US20220279471A1 (en) | Wireless communication method for registration procedure | |
US20070099597A1 (en) | Authentication in a communication network | |
US20230292131A1 (en) | Rogue network function re-authorization in a communication network | |
CN112136301A (en) | Error handling framework for security management in a communication system | |
CN107770067A (en) | Message method and device | |
CN116471590A (en) | Terminal access method, device and authentication service function network element | |
Zhang et al. | Mitigating Signaling Storms in 5G with Blockchain-assisted 5GAKA | |
WO2023187536A1 (en) | System and method for facilitating machine to machine communication | |
EP4348926A1 (en) | Network supported authentication | |
CN116491140A (en) | Method, system and computer readable medium for ingress message rate limiting | |
CN116458121A (en) | Methods, systems, and computer readable media for mitigating 5G roaming spoofing attacks | |
CN116889004A (en) | Authentication indication for edge data network relocation |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |