CN111182657B

CN111182657B - Tunnel negotiation establishment method and device

Info

Publication number: CN111182657B
Application number: CN201811342188.2A
Authority: CN
Inventors: 陈刚; 詹徐周; 朱进磊
Original assignee: ZTE Corp
Current assignee: ZTE Corp
Priority date: 2018-11-09
Filing date: 2018-11-09
Publication date: 2023-09-22
Anticipated expiration: 2038-11-09
Also published as: CN111182657A; WO2020093790A1

Abstract

The invention provides a tunnel negotiation establishing method and device, wherein the method comprises the following steps: and completing the negotiation establishment of the second layer tunnel protocol L2TP tunnel between the control plane and the user plane through the control plane, or completing the negotiation establishment of the L2TP tunnel between the control plane and the user plane through the user plane. The invention can solve the problem that the mixed deployment of the C-plane network elements (PGW-C or SMF) and the U-plane network elements (PGW-U or UPF) of different manufacturers cannot apply the L2TP VPN in the related technology, achieves the effect that the butt joint of the C-plane network elements and the U-plane network elements of different manufacturers is not influenced, saves the interconnection and intercommunication cost of operators and improves the equipment competitiveness of equipment.

Description

Tunnel negotiation establishment method and device

Technical Field

The present invention relates to the field of communications, and in particular, to a tunnel negotiation establishment method and apparatus.

Background

Layer two tunnel protocol (L2 TP) virtual private network (Virtual Private Network, abbreviated as VPN) is a widely applied VPN solution, which is based on protocol number (Request for Comments, abbreviated as RFC) 2661 organized by the internet engineering task force (Internet Engineering Task Force, abbreviated as IETF), and there is a relatively complex negotiation flow for establishing an L2TP tunnel, and there are some special additional requirements for constructing an L2TP VPN in a mobile network, that is, 1) it is required to independently deploy and open an L2TP VPN based on an APN, establish different L2TP tunnels under different APNs, and share an L2TP tunnel for users under the same access point name (Access Point Name, abbreviated as APN). 2) The authentication step in the partial scenario L2TP tunnel negotiation procedure requires the use of PCO (Protocol Configuration Option) authentication parameters carried by the terminal.

Before the CU separation architecture is introduced, the control plane of the PGW is responsible for the negotiation flow of the L2TP tunnel, and the media plane of the PGW is responsible for the processing of the user message of the L2TP tunnel.

After the CU separation architecture is introduced, fig. 1 is a schematic diagram of a 4G mobile network cup architecture according to the related art, as shown in fig. 1, a 4G core network packet data network gateway (Packet DataNetwork Gateway, abbreviated as PGW) network element is split into a packet data network gateway control plane ((Packet Data Network Gateway-C, abbreviated as PGW-C) and a packet data network gateway user plane (Packet Data Network Gateway-U, abbreviated as PGW-U), which is a boundary between a 4G mobile network and a PDN, and fig. 2 is a schematic diagram of a 5G mobile network cup architecture according to the related art, as shown in fig. 2, a 5G core network architecture including a session management function (Session Management Function, abbreviated as SMF) and a network element user plane function (User Plane Function, abbreviated as UPF), where UPF is a boundary between a 5G mobile network and a DN.

Fig. 3 is a schematic diagram of negotiation establishment of an L2TP tunnel according to the related art, as shown in fig. 3, a control plane between an access concentrator (L2 TP Access Concentrator-L2TP, abbreviated as LAC) and an L2TP network server (L2 TP Network Server, abbreviated as LNS) is responsible for negotiation establishment and deletion of the L2TP tunnel, and a user plane is responsible for processing L2TP tunnel messages.

Fig. 4 is a flowchart of negotiation setup of an L2TP tunnel according to the related art, as shown in fig. 4, including:

step 1, LAC sends SCCRQ (Start-Control-Connection-Request, open Control Connection Request) message to LNS;

step 2, the LAC receives a SCCRP (Start-Control-Connection-Reply, open Control Connection response) message returned by the LNS;

step 3, the LAC sends an SCCCN (Start-Control-Connection-Connected) message to the LNS, and the opening Control Connection is completed;

step 4, the LAC receives a message Body (ZLB) with 0 Length returned by the LNS;

step 5, the LAC sends ICRQ (Incoming-Call-Request) message to LNS;

step 6, the LAC receives ICRP (Incoming-Call-Reply) information returned by the LNS;

step 7, the LAC sends ICCN (Incoming-Call-Connected) information to the LNS;

step 8, the LAC receives ZLB information returned by the LNS;

step 9, the lac sends a Point-to-Point Protocol (PPP) LCP (Link Control Protocol ) configuration request to the LNS;

step 10, the LAC receives PPP LCP configuration response returned by the LNS;

step 11, the LAC sends PPP authentication request to LNS;

Step 12, the LAC receives PPP authentication response returned by the LNS;

step 13, the LAC sends a PPP IPCP (IP Control Protocol ) configuration request to the LNS;

in step 14, the lac receives the IPCP configuration response returned by the LNS.

The current 3GPP standard does not consider the above-mentioned L2TP VPN deployment scenario, so that the C-plane network element and the U-plane network element of different manufacturers are in butt joint, and the problem exists in the L2TP VPN deployment scenario.

Aiming at the problem that the mixed deployment of C-plane network elements (PGW-C or SMF) and U-plane network elements (PGW-U or UPF) of different manufacturers cannot apply L2TP VPN in the related technology, no solution has been proposed yet.

Disclosure of Invention

The embodiment of the invention provides a tunnel negotiation establishing method and device, which at least solve the problem that the mixed deployment of C-plane network elements (PGW-C or SMF) and U-plane network elements (PGW-U or UPF) of different manufacturers cannot apply L2TP VPN in the related technology.

According to an embodiment of the present invention, there is provided a tunnel negotiation establishment method including:

and finishing negotiation establishment of an inter-layer two-tunnel protocol L2TP tunnel between the control plane and the user plane through the control plane, wherein the control plane comprises: a packet data network gateway control plane PGW-C or a session management function SMF, said user plane comprising a packet data network gateway user plane PGW-U or a user plane function UPF; or,

And completing the negotiation establishment of the L2TP tunnel between the control plane and the user plane through the user plane.

According to still another embodiment of the present invention, there is also provided a tunnel negotiation establishment method including:

and finishing negotiation establishment of an inter-layer two-tunnel protocol L2TP tunnel between the control plane and the user plane through the control plane, wherein the control plane comprises: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

and finishing the negotiation establishment of the L2TP tunnel between the control plane and the user plane.

According to another embodiment of the present invention, there is also provided a tunnel negotiation establishing apparatus applied to a control plane, including:

the first negotiation establishing module is configured to complete negotiation establishment of an inter-layer two-tunnel protocol L2TP tunnel between a control plane and a user plane through the control plane, where the control plane includes: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

and the second negotiation establishing module is used for completing the negotiation establishment of the L2TP tunnel between the control plane and the user plane through the user plane.

According to another embodiment of the present invention, there is also provided a tunnel negotiation setup apparatus applied to a user plane including:

A third negotiation establishing module, configured to complete negotiation establishment of an inter-layer two-tunnel protocol L2TP tunnel between a control plane and a user plane through the control plane, where the control plane includes: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

and a fourth negotiation establishing module, configured to complete negotiation establishment of the L2TP tunnel between the control plane and the user plane.

According to a further embodiment of the invention, there is also provided a storage medium having stored therein a computer program, wherein the computer program is arranged to perform the steps of any of the method embodiments described above when run.

According to a further embodiment of the invention, there is also provided an electronic device comprising a memory having stored therein a computer program and a processor arranged to run the computer program to perform the steps of any of the method embodiments described above.

According to the invention, the L2TP tunnel is established through negotiation between the C-plane network element and the U-plane network element, so that the problem that the L2TP VPN cannot be applied to the mixed deployment of the C-plane network element (PGW-C or SMF) and the U-plane network element (PGW-U or UPF) of different manufacturers in the related technology can be solved, the effect that the butt joint of the C-plane network element and the U-plane network element of different manufacturers is not influenced is achieved, the interconnection and interworking cost of operators is saved, and the equipment competitiveness of equipment of the operators is improved.

Drawings

The accompanying drawings, which are included to provide a further understanding of the application and are incorporated in and constitute a part of this specification, illustrate embodiments of the application and together with the description serve to explain the application and do not constitute a limitation on the application. In the drawings:

fig. 1 is a schematic diagram of a 4G mobile network cup architecture according to the related art;

fig. 2 is a schematic diagram of a 5G mobile network cup architecture according to the related art;

fig. 3 is a schematic diagram of negotiation setup of an L2TP tunnel according to the related art;

fig. 4 is a flowchart of negotiation setup of an L2TP tunnel according to the related art;

fig. 5 is a block diagram of a hardware structure of a mobile terminal of a tunnel negotiation setup method according to an embodiment of the present application;

fig. 6 is a flowchart of a tunnel negotiation setup method according to an embodiment of the present application;

fig. 7 is a flowchart two of a tunnel negotiation setup method according to an embodiment of the present application;

fig. 8 is a flow chart of interactions related to L2TP negotiation capability in a cup architecture according to an embodiment of the application;

fig. 9 is a flowchart one of an L2TP VPN establishment procedure under a 4G cpu architecture according to an embodiment of the present application;

fig. 10 is a flowchart one of an L2TP VPN establishment procedure under a 5G cpu architecture according to an embodiment of the present application;

Fig. 11 is a second flowchart of an L2TP VPN establishment procedure under the 4G cpu architecture according to an embodiment of the present application;

fig. 12 is a second flowchart of an L2TP VPN establishment procedure under a 5G cpu architecture according to an embodiment of the present application;

fig. 13 is a flowchart of a C-plane LAC proactively negotiating L2TP tunnel tear-down under a cut architecture in accordance with an embodiment of the present application;

fig. 14 is a flowchart of C-plane LAC passive negotiation L2TP tunnel tear-down under a cut architecture according to an embodiment of the present application;

fig. 15 is a flowchart of U-plane LAC proactively negotiating L2TP tunnel tear-down under a cut architecture in accordance with an embodiment of the present application;

fig. 16 is a flowchart of U-plane LAC passive negotiation L2TP tunnel tear-down under a cut architecture according to an embodiment of the present application;

fig. 17 is a block diagram one of a tunnel negotiation establishing apparatus according to an embodiment of the present application;

fig. 18 is a block diagram two of a tunnel negotiation establishing apparatus according to an embodiment of the present application.

Detailed Description

The application will be described in detail hereinafter with reference to the drawings in conjunction with embodiments. It should be noted that, without conflict, the embodiments of the present application and features of the embodiments may be combined with each other.

It should be noted that the terms "first," "second," and the like in the description and the claims of the present application and the above figures are used for distinguishing between similar objects and not necessarily for describing a particular sequential or chronological order.

Example 1

The method according to the first embodiment of the present application may be implemented in a mobile terminal, a computer terminal or a similar computing device. Taking a mobile terminal as an example, fig. 5 is a block diagram of a hardware structure of a mobile terminal according to an embodiment of the present application, where, as shown in fig. 5, the mobile terminal 10 may include one or more (only one is shown in fig. 5) processors 102 (the processors 102 may include, but are not limited to, a microprocessor MCU or a programmable logic device FPGA or the like) and a memory 104 for storing data, and optionally, a transmission device 106 for a communication function and an input/output device 108. It will be appreciated by those skilled in the art that the structure shown in fig. 5 is merely illustrative and not limiting of the structure of the mobile terminal described above. For example, the mobile terminal 10 may also include more or fewer components than shown in FIG. 5 or have a different configuration than shown in FIG. 5.

The memory 104 may be used to store a computer program, for example, a software program of application software and a module, such as a computer program corresponding to a message receiving method in an embodiment of the present application, and the processor 102 executes the computer program stored in the memory 104 to perform various functional applications and data processing, that is, implement the method described above. Memory 104 may include high-speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid-state memory. In some examples, the memory 104 may further include memory located remotely from the processor 102, which may be connected to the mobile terminal 10 via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.

The transmission means 106 is arranged to receive or transmit data via a network. The specific examples of networks described above may include wireless networks provided by the communication provider of the mobile terminal 10. In one example, the transmission device 106 includes a network adapter (Network INterface CoNtroller, simply referred to as NIC) that can connect to other network devices through a base station to communicate with the internet. In one example, the transmission device 106 may be a Radio FrequeNcy (RF) module, which is configured to communicate with the internet wirelessly.

Based on the above mobile terminal, this embodiment provides a tunnel negotiation establishing method, fig. 6 is a flowchart of a tunnel negotiation establishing method according to an embodiment of the present invention, as shown in fig. 6, and the flowchart includes the following steps:

step S602, completing, by a control plane, negotiation establishment of a layer two tunnel protocol L2TP tunnel between the control plane and a user plane, where the control plane includes: a packet data network gateway control plane PGW-C or a session management function SMF, said user plane comprising a packet data network gateway user plane PGW-U or a user plane function UPF; or,

step S604, completing the negotiation establishment of the L2TP tunnel between the control plane and the user plane through the user plane.

Optionally, completing, by the control plane, establishment of the L2TP tunnel between the control plane and the user plane includes:

the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane is completed through the control plane;

and completing the establishment of the L2TP tunnel between the user plane and the L2TP network server LNS through the control plane.

Optionally, the negotiating of the L2TP tunnel negotiating capability between the control plane and the user plane through the control plane includes:

under the condition that only the control plane has the L2TP tunnel negotiation capability, completing the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the control plane;

and under the condition that the control plane and the user plane have L2TP tunnel negotiation capability, determining to use the L2TP tunnel negotiation capability of the control plane, and completing negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the control plane.

Optionally, completing, by the control plane, negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane includes:

sending an association establishment request message to the user plane, wherein the association establishment request message carries the L2TP tunnel negotiation capability of the control plane;

And receiving an association establishment response message fed back by the user plane, wherein the association establishment response message carries the L2TP tunnel negotiation capability of the user plane.

Optionally, the association establishment request message indicates the L2TP tunnel negotiation capability of the control plane through a carried functional characteristic parameter field;

the association establishment response message indicates the L2TP tunnel negotiation capability of the user plane through the carried functional characteristic parameter field.

Optionally, completing, by the control plane, establishment of the L2TP tunnel between the user plane and the LNS includes:

receiving a session establishment request message of a forward network element, wherein the forward network element comprises a service gateway control plane SGW-C or an access and mobility function AMF;

selecting the user plane according to the session establishment request message;

negotiating L2TP tunnel establishment with the LNS through an L2TP access concentrator LAC, and storing tunnel IDs and session IDs of the LAC and the LNS, and IP addresses and Domain Name Server (DNS) address information distributed by the LNS;

a message forwarding control protocol (PFCP) session establishment request message for establishing a forwarding relation is sent to the user plane, wherein the PFCP session establishment request message carries tunnel IDs and session IDs of the LACs and the LNS;

Receiving PFCP (Packet Forwarding Control Protocol) session establishment response message returned by the user plane for notifying that the forwarding relation establishment is completed;

and returning a session establishment response message to the forward network element, wherein the session establishment response message carries the IP address and DNS (Domain Name Server) address information allocated by the LNS.

Optionally, the negotiating the L2TP tunnel establishment with the LNS through the LAC (L2 TP Access Concentrator) includes:

transmitting an L2TP VPN establishment request message to the LNS through a Sxb/N4 interface of the user plane;

and receiving an L2TP VPN establishment response message sent by the LNS through a Sxb/N4 interface of the user plane.

Optionally, after completing establishment of the L2TP tunnel between the user plane and the LNS through the control plane, the method further comprises:

and deleting the established L2TP tunnel.

Optionally, deleting the established L2TP tunnel includes:

receiving a session deletion request message sent by a forward network element, wherein the forward network element comprises a Serving Gateway control plane (SGW-C) or an access and mobility function AMF;

transmitting a point-to-point protocol PPP termination request message to the LNS through a Sxb/N4 interface of the user plane;

Receiving a PPP termination response message returned by the LNS through a Sxb/N4 interface of the user plane;

transmitting a session disconnection notification (CDN) message to the LNS through a Sxb/N4 interface of the user plane;

receiving a message Body (ZLB) with 0 Length returned by the LNS through a Sxb/N4 interface of the user plane;

sending a message forwarding control protocol (PFCP) session deletion request message to the user plane, wherein the PFCP session deletion request message is used for indicating the user plane to delete the forwarding relation of the current session;

receiving a PFCP session deletion response message returned by the user plane after deleting the forwarding relation of the current session;

and stopping service processing according to the PFCP session deletion response message, and returning a session deletion response message to the forward network element.

Optionally, deleting the established L2TP tunnel includes:

receiving a point-to-point protocol PPP termination request message sent by the LNS through a Sxb/N4 interface of the user plane;

releasing PPP session according to the PPP termination request message, and returning PPP termination response message to the LNS through Sxb/N4 interface of the user plane;

receiving a session tear-down notification CDN message sent by the LNS through a Sxb/N4 interface of the user plane;

Returning a 0-length message body ZLB message to the LNS through a Sxb/N4 interface of the user plane;

transmitting a session deletion notification message to a network element forwards, and transmitting a message forwarding control protocol (PFCP) session deletion request message to the user plane, wherein the PFCP session deletion request message is used for requesting the user plane to delete the forwarding relation of the current session, and the forward network element comprises a service gateway control plane (SGW-C) or an Access and Mobility Function (AMF);

receiving a PFCP session deletion response message returned by the user plane;

terminating service processing according to the PFCP session deletion response message;

and receiving a session deletion response message returned by the forward network element after deleting the session.

Optionally, completing, by the user plane, establishment of the L2TP tunnel between the control plane and the user plane includes:

the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane is completed through the user plane;

and completing the establishment of an L2TP tunnel between the user plane and an L2TP network server LNS through the user plane.

Optionally, the negotiating of the L2TP tunnel negotiating capability between the control plane and the user plane through the user plane includes:

And determining to use the L2TP tunnel negotiation capability of the user plane under the condition that only the user plane has the L2TP tunnel negotiation capability or both the control plane and the user plane have the L2TP tunnel negotiation capability, and completing the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the user plane.

receiving a PFCP association establishment request message sent by the user plane, wherein the association establishment request message carries L2TP tunnel negotiation capability of the user plane;

and returning a message forwarding control protocol (PFCP) association establishment response message to the user plane, wherein the association establishment response message carries the L2TP tunnel negotiation capability of the control plane.

Optionally, completing, by the user plane, establishment of the L2TP tunnel between the user plane and the LNS includes:

Receiving a session establishment request message sent by a forward network element, wherein the forward network element comprises a service gateway control plane SGW-C or an access and mobility function AMF;

sending a message forwarding control protocol (PFCP) session establishment request message to the user plane, wherein the PFCP session establishment request message is used for indicating the user plane to complete negotiation of L2TP tunnel establishment with the LNS through an L2TP access concentrator (LAC), and storing tunnel IDs and session IDs of the LAC and the LNS, and IP addresses and Domain Name Server (DNS) address information distributed by the LNS;

receiving a PFCP session establishment response message returned by the user plane after the establishment of the forwarding relation is completed, wherein the PFCP session establishment response message carries the IP address and DNS address information distributed by the LNS;

and returning a session establishment response message to the forward network element, wherein the session establishment response message carries the IP address and DNS address information distributed by the LNS.

Optionally, the PFCP session establishment request message carries at least one of the following information: protocol configuration options (Protocol Configuration Option, PCO) are abbreviated as username in, PAP password in PCO, challenge handshake authentication protocol (Challenge Handshake Authentication Protocol, abbreviated as CHAP) Challenge in PCO, CHAP Challenge response Challenge response in PCO.

Optionally, after the establishment of the L2TP tunnel between the user plane and the LNS is completed by the user plane, the method further includes:

and deleting the established L2TP tunnel.

Optionally, deleting the established L2TP tunnel includes:

receiving a session deletion message sent by the forward network element;

sending a PFCP session deletion request message to the user plane, wherein the PFCP session deletion request message is used for indicating the forwarding relation of the user plane to delete the current session;

receiving a PFCP session deletion response message returned by the user plane after deleting the forwarding relation of the current session, wherein the PFCP session deletion response message is returned after the user plane sends a PPP termination request message to the LNS according to the PFCP session deletion request message, receives the PPP termination response message returned by the LNS after releasing the PPP session, sends a session tear-down notification CDN message to the LNS, and receives a 0-length message body ZLB response message returned by the LNS;

Optionally, deleting the established L2TP tunnel includes:

Receiving a PFCP session report request message sent by the user plane, wherein the PFCP session report request message carries indication information of an L2TP tunnel which is established by LNS (network node) request disconnection or disconnection, and the PFCP session report request message is sent after the user plane receives a PPP termination request message for releasing PPP session from an LNS, returns a termination response message to the LNS after releasing the PPP session, receives a session disconnection notification CDN message sent by the LNS and returns a 0-length message body ZLB message to the LNS;

returning a PFCP session report response message to the user plane;

transmitting a session deletion request message to the forward network element, and simultaneously transmitting a PFCP session deletion request message for indicating the forwarding relation of the user plane deletion current session to the user plane;

receiving a PFCP session deletion response message returned by the user plane;

and returning a session deletion response message to the forward network element.

Example 2

Fig. 7 is a second flowchart of a tunnel negotiation establishing method according to an embodiment of the present invention, as shown in fig. 7, including:

step S702, completing, by a control plane, establishment of a second layer tunnel protocol L2TP tunnel between the control plane and a user plane, where the control plane includes: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

Step S704, completing the negotiation establishment of the L2TP tunnel between the control plane and the user plane.

and the control plane and the user plane are provided with L2TP tunnel negotiation capability, and the control plane completes the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane under the condition that the control plane determines to use the L2TP tunnel negotiation capability of the control plane.

Receiving an association establishment request message sent by the control plane, wherein the association establishment request message carries the L2TP tunnel negotiation capability of the control plane;

and an association establishment response message fed back to the control plane, wherein the association establishment response message carries the L2TP tunnel negotiation capability of the user plane.

receiving a PFCP session establishment request message sent by the control plane and used for establishing a forwarding relation, wherein the PFCP session establishment request message carries tunnel IDs and session IDs of the LAC and the LNS, the PFCP session establishment request message is a session establishment request message of the control plane for receiving a forward network element, negotiating L2TP tunnel establishment with the LNS through an L2TP access concentrator LAC, storing the tunnel IDs and session IDs of the LAC and the LNS, and sending after IP address and domain name server DNS address information distributed by the LNS, and the forward network element comprises a service gateway control plane SGW-C or an access and mobility function AMF;

And returning a PFCP session establishment response message for notifying the completion of forwarding relation establishment to the control plane, wherein the PFCP session establishment response message is used for indicating the control plane to return a session establishment response message to the forward network element, and the session establishment response message carries the IP address and DNS address information distributed by the LNS.

Optionally, the method further comprises:

in the process that the control plane completes the negotiation of L2TP tunnel establishment with the LNS through the LAC, an L2TP VPN establishment request message sent by the control plane is forwarded to the LNS through a Sxb/N4 interface;

and forwarding an L2TP VPN establishment response message sent by the LNS to the control surface through the Sxb/N4 interface.

deleting the established L2TP tunnel through the control plane; or alternatively

And deleting the established L2TP tunnel.

Optionally, deleting the established L2TP tunnel by the control plane includes:

forwarding a point-to-point protocol (PPP) termination request message sent by the control plane to the LNS through a Sxb/N4 interface, wherein the PPP termination request message is sent by the control plane after receiving a session deletion message sent by a forward network element, and the forward network element comprises a service gateway control plane SGW-C or an Access and Mobility Function (AMF);

Forwarding a PPP termination response message returned by the LNS to the control surface through the Sxb/N4 interface;

forwarding a session tear-down notification CDN message sent by the control plane to the LNS through the Sxb/N4 interface;

forwarding a 0-length message body ZLB message returned by the LNS to the control surface through the Sxb/N4 interface;

receiving a PFCP session deletion request message sent by the control plane;

deleting the forwarding relation of the current session according to the PFCP session deletion request message;

and returning a PFCP session deletion response message to the control plane, wherein the PFCP session deletion response message is used for indicating the control plane to terminate service processing and returning a session deletion response message to the forward network element.

Optionally, deleting the established L2TP tunnel includes:

forwarding a point-to-point protocol (PPP) termination request message sent by the LNS to the control plane through a Sxb/N4 interface, wherein the PPP termination request message is used for indicating the control plane to release a PPP session;

forwarding a PPP termination response message returned by the control plane to the LNS through the Sxb/N4 interface;

forwarding a session tear-down notification CDN message sent by the LNS to the control plane through the Sxb/N4 interface;

Forwarding a 0-length message body ZLB message returned by the control surface to the LNS through the Sxb/N4 interface;

receiving a PFCP session deletion request message sent by the control plane;

and returning a PFCP session deletion response message to the control surface, wherein the PFCP session deletion response message is used for indicating the control surface to terminate service processing.

Optionally, completing the negotiation establishment of the L2TP tunnel between the control plane and the user plane includes:

completing the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane;

and completing the establishment of the L2TP tunnel between the user plane and the L2TP network server LNS.

Optionally, completing the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane includes:

and completing negotiation of the L2TP tunnel negotiation capability between the control surface and the user surface under the condition that only the user surface has the L2TP tunnel negotiation capability or both the control surface and the user surface have the L2TP tunnel negotiation capability, and the control surface determines to use the L2TP tunnel negotiation capability of the user surface.

Sending a PFCP association establishment request message to the control plane, wherein the association establishment request message carries the L2TP tunnel negotiation capability of the user plane;

and receiving a PFCP association establishment response message returned by the control plane, wherein the association establishment response message carries the L2TP tunnel negotiation capability of the control plane.

Optionally, completing the establishment of the L2TP tunnel between the user plane and the LNS includes:

receiving a PFCP session establishment request message sent by the control plane, wherein the PFCP session establishment request message is sent by the control plane after receiving a session establishment request message sent by a forward network element, and the forward network element comprises a serving gateway control plane SGW-C or an access and mobility function AMF;

completing negotiation of L2TP tunnel establishment with the LNS through an L2TP access concentrator LAC according to the PFCP session establishment request message, and storing tunnel IDs and session IDs of the LAC and the LNS, and IP addresses and domain name server DNS address information distributed by the LNS;

And after the forwarding relation is established, returning a PFCP session establishment response message to the control plane, wherein the PFCP session establishment response message carries the IP address and DNS address information distributed by the LNS, and the PFCP session establishment response message is used for indicating the control plane to return the session establishment response message to the forward network element, and the session establishment response message carries the IP address and DNS address information distributed by the LNS.

Optionally, the PFCP session establishment request message carries at least one of the following information: the username in PCO, the PAP password in PCO, the CHAP challenge response challenge response in CHAP challenge Challenge, PCO in PCO.

Optionally, after completing the establishment of the L2TP tunnel between the user plane and the LNS, the method further comprises:

deleting the established L2TP tunnel through the control plane;

and deleting the established L2TP tunnel.

Optionally, deleting the established L2TP tunnel by the control plane includes:

receiving a PFCP session deletion request message sent by the control plane, wherein the PFCP session deletion request message is sent by the control plane after receiving a session deletion request message sent by a forward network element, and the forward network element comprises a service gateway control plane SGW-C or an access and mobility function AMF;

sending a PPP termination request message to the LNS according to the PFCP session deletion request message;

receiving a PPP termination response message returned by the LNS after releasing the PPP session;

sending a session tear-down notification CDN message to the LNS;

receiving a ZLB response message of a message body with 0 length returned by the LNS;

and after deleting the forwarding relation of the current session, returning a PFCP session deletion response message to the control plane, wherein the PFCP session deletion response message is used for indicating the control plane to terminate service processing and returning the session deletion response message to the forward network element.

Optionally, deleting the established L2TP tunnel includes:

receiving a PPP termination request message from the LNS for releasing a PPP session;

returning a termination response message to the LNS after releasing the PPP session;

receiving a session tear-down notification CDN message sent by the LNS;

returning a 0-length message body ZLB message to the LNS;

sending a PFCP session report request message to the control surface, wherein the PFCP session report request message carries indication information of an L2TP tunnel which is established by LNS requesting disconnection or disconnection;

Receiving a PFCP session report response message returned by the control surface;

transmitting a session deletion request message to the forward network element;

receiving a PFCP session deletion request message sent by the control plane;

The embodiment of the invention comprises two modes: the scheme is a control plane scheme (CP scheme for short in the following description), that is, negotiation of the L2TP tunnel is placed on the control plane; and secondly, a media plane scheme (hereinafter referred to as an UP scheme) is adopted, namely, negotiation of the L2TP tunnel is placed on the media plane.

Fig. 8 is a flowchart of interaction related to L2TP negotiation capability in a cup architecture according to an embodiment of the present invention, and as shown in fig. 8, the interaction of L2TP tunnel negotiation capability of a C-plane (PGW-C/SMF) and a U-plane (PGW-U/UPF) by normalizing the parameters related to L2TP tunnel negotiation through the Sxb and N4 interfaces includes the following steps:

step 1, when the C plane and the U plane establish association, notifying respective L2TP tunnel negotiation capability, if the C plane actively establishes association, then, in a packet forwarding control protocol (Packet Forwarding Control Protocol, abbreviated as PFCP) association establishment request Association Setup Request, carrying a CP parameter field new opening flag function characteristic Function Features to indicate the L2TP tunnel negotiation capability;

Step 2, the u-plane return PFCP association setup response Association Setup Response carries UP function feature Function Features to indicate the L2TP tunnel negotiation capability;

step 3, if the U-plane actively establishes an association, carrying UP Function Features to indicate the L2TP tunnel negotiation capability at PFCP Association Setup Request;

step 4, c-plane return PFCP Association Setup Response carries CP Function Features an indication of L2TP tunnel negotiation capability;

and 5, if the C surface selects the L2TP CP scheme, immediately initiating the tunnel establishment of Sx-U/N4-U, and indicating the tunnel establishment by the associated PDR/FAR to be used for transmitting the L2TP negotiation message.

And 6, returning a Sx-U/N4-U tunnel establishment response by the U face.

It should be noted that 1) if both the C plane and the U plane have the L2TP tunnel negotiation capability, the C plane makes a decision to use the L2TP tunnel negotiation capability of the C plane or the L2TP tunnel negotiation capability of the U plane; l2TP tunnel negotiation capability is indicated at CP Function Features/UP Function Features. 2) The C-plane indicates the U-plane to pass through the L2TP co-negotiation message to the control plane through the message detection rule (Packet Detection Rule, abbreviated as PDR)/forwarding activity rule (Forwarding Action Rule, abbreviated as FAR).

If the C-plane decision uses the L2TP negotiation capability of the C-plane, the C-plane (PGW-C/SMF) L2TP tunnel negotiation procedure, fig. 9 is a flowchart of a L2TP VPN establishment procedure under the 4G cpu architecture according to an embodiment of the present invention, and fig. 10 is a flowchart of a L2TP VPN establishment procedure under the 5G cpu architecture according to an embodiment of the present invention, as shown in fig. 9 and 10, including:

Step 1, a C-plane (PGW-C/SMF) receives a session establishment request of a forward network element (SGW-C/AMF), wherein the session establishment request carries relevant parameters (such as tunnel negotiation information, protocol configuration options (Protocol Configuration Option, abbreviated as PCO) and the like) of session establishment;

step 2, the c-plane indicates that the current user needs to establish the L2TP tunnel according to the local configuration (such as LNS address, tunnel name information, authentication mode, etc.) or other policy sources (such as AAA-Authentication, authorization, accounting, authorization LNS address, tunnel name, authentication mode, etc.). The C surface selects UPF/PGW-U, initiates L2TP tunnel negotiation establishment process to LNS through User Plane of interface Sxb/N4 of UPF/PGW-U, and negotiation response message of LNS passes through User Plane of Sxb/N4. Supporting the L2TP tunnel negotiation procedure through the User Plane of Sxb/N4 is the invention.

Step 3, the LAC and the LNS of the C surface complete the negotiation of the L2TP Tunnel, the C surface locally stores Tunnel ID and Session ID parameters of the local end and the LNS opposite end, and IP addresses and DNS parameters distributed to the terminal by the LNS;

in steps 2 and 3 of fig. 9, the LAC function forwards the negotiation message between PGW-C, LAC and LNS through Sxb User Plane; in steps 2,3 of fig. 10, the negotiation messages between the LAC function and the SMF, LAC and LNS are forwarded through the N4User Plane.

And 4, the C plane informs the U plane (PGW-U/UPF) to establish a forwarding relation for the current user, and sends PFCP Session Establishment Request a message, wherein the message carries the Tunnel ID and Session ID parameters of the home terminal and the opposite terminal. The invention is invented by PFCP Session Establishment Request carrying the Tunnel ID and Session ID parameters of the home terminal and the opposite terminal.

Step 5, u-plane return PFCP Session Establishment Response notifies the forwarding relationship establishment completion.

And 6, the C-oriented forward network element returns a session establishment response, wherein the session establishment response carries the IP address allocated by the LNS and Domain Name Server (DNS) address information.

What needs to be specified is: 4G session establishment messages between SGW-C and PGW-C (steps 1,6 of FIG. 9), 5G session establishment messages between AMF and SMF (steps 1,6 of FIG. 10), which are different in name in 3GPP protocol, function similarly, and use a merge description approach.

If the C-plane decision uses the L2TP negotiation capability of the U-plane, the U-plane (PGW-U/UPF) L2TP tunnel negotiation procedure, fig. 11 is a second flowchart of the L2TP VPN establishment procedure under the 4G cpu ps architecture according to an embodiment of the present invention, and fig. 12 is a second flowchart of the L2TP VPN establishment procedure under the 5G cpu ps architecture according to an embodiment of the present invention, as shown in fig. 11 and 12, including:

Step 1, a C surface receives a session establishment request of a forward network element (SGW-C/AMF), wherein the session establishment request carries related parameters of session establishment; and finishing relevant processing procedures such as strategy, charging and the like.

Step 2, the c-plane indicates to the current user that the L2TP tunnel needs to be established according to a local configuration or other policy source (e.g., AAA). After the C-plane completes UPF/PGW-U selection, a PFCP Session Establishment Request message is sent to the U-plane, carrying relevant parameters required by L2TP negotiation, including one or a combination of the following information: a Username in PCO (Protocol Configuration Optio), a PAP password in PCO (carried only in PAP scene), CHAP (Challenge Handshake Authentication Protocol) change in PCO (carried only in CHAP scene), CHAP Challenge response in PCO (carried only in CHAP scene). Here PFCP Session Establishment Request message carries the relevant parameters required for the L2TP negotiation.

And 3, immediately initiating a negotiation process of the L2TP tunnel by combining local configuration after the U-plane receives the message, wherein the basic process is shown in figure 4.

Step 4,U completes the negotiation process of the L2TP Tunnel, and locally stores Tunnel ID and Session ID information of the home terminal and the opposite terminal, and IP address and DNS (Domain Name Server) information allocated by the LNS to the terminal. At this time, the U-plane completes the establishment of the uplink and downlink forwarding relationship of the current user in the UPF/PGW-U.

In steps 3, 4 of fig. 11, part of the negotiation parameters of the LAC function between the PGW-U, LAC and LNS are passed through Sxb Control Plane; in steps 3, 4 of fig. 12, the LAC function's partial negotiation parameters between the UPF, LAC and LNS are passed through the N4Control Plane.

And 5, the U-plane return PFCP Session Establishment Response informs that the forwarding relation establishment is completed, and the message carries the terminal IP address and DNS information distributed by the LNS. PFCP Session Establishment Response carrying the IP address and DNS information assigned by the LNS is inventive.

And 6, after receiving the information, the C side informs the forward network element of the session establishment response information, wherein the information carries the terminal IP address and DNS information in the step.

What needs to be specified is: 4G session establishment messages between SGW-C and PGW-C (steps 1,6 of FIG. 11), 5G session establishment messages between AMF and SMF (steps 1,6 of FIG. 12), the two session establishment messages are named differently in the 3GPP protocol, but function similarly, with the manner of merge description employed.

C-plane (PGW-C/SMF) active negotiation L2TP tunnel tear-down procedure FIG. 13 is a flow chart of C-plane LAC active negotiation L2TP tunnel tear-down under CUPS architecture according to embodiments of the present invention, as shown in FIG. 13, comprising:

Step 1, the C-plane (PGW-C/SMF) receives the session deletion message from the forward network element.

In step 2, the c plane initiates a tear-down procedure of the L2TP, and first sends a PPP termination request Terminate Request to the LNS through Sxb or UserPlane of the N4 interface.

In step 3, the lns returns PPP Terminate Response to forward to the C-Plane via the User Plane of Sxb or N4 interface.

And 4, the C-plane continues to send a session disconnection-notification (CDN) message.

In step 5, the lns returns a ZLB response, which is forwarded to the C-Plane via Sxb or User Plane of the N4 interface.

Step 6, the C surface sends PFCP Session Deletion Request information to inform the U surface (PGW-U/UPF) to delete the forwarding relation of the current session;

and 7, the U-plane returns a PFCP session deletion response Session Deletion Response message to the C-plane, and the C-plane finishes service processing such as charging stop, policy termination and the like.

And 8, returning a session deletion response to the forward network element (SGW-C/AMF) by the C surface.

C-plane (PGW-C/SMF) passive response L2TP tunnel tear-down procedure FIG. 14 is a flow chart of C-plane LAC passive negotiation L2TP tunnel tear-down under CUPS architecture according to embodiments of the present invention, as shown in FIG. 14, comprising:

step 1, a C-Plane (PGW-C/SMF) receives PPP Terminate Request a session delete message from the LNS via Sxb or User Plane of the N4 interface.

Step 2, the c-Plane performs PPP session release and sends PPP Terminate Response to the LNS via Sxb or User Plane of the N4 interface.

Step 3, the c-Plane receives the CDN message from the LNS via Sxb or User Plane of the N4 interface.

In step 4, the c-Plane performs L2TP session release and sends the ZLB to the LNS via Sxb or User Plane of the N4 interface.

Step 5, C is directed to informing the network element (SGW-C/AMF) about the session deletion.

Step 6, the c-plane (PGW-U/UPF) sends PFCP Session Deletion Request notification to release media plane resources.

Step 7, the U face returns PFCP Session Deletion Response information to the C face, and the C face finishes business processes such as charging stop, policy termination and the like;

and 8, returning a session deletion response by the forward network element (SGW-C/AMF), and ending the L2TP tunnel link-down flow of the current user.

Fig. 15 is a flowchart of U-plane LAC actively negotiating L2TP tunnel tear-down procedure under a cut architecture according to an embodiment of the present invention, and as shown in fig. 15, includes:

step 1, the C-plane (PGW-C/SMF) receives the session deletion message from the forward network element (SGW-C/AMF).

Step 2, the c-plane send PFCP Session Deletion Request message informs the U-plane (PGW-U/UPF) to delete the forwarding resources of the current session,

Step 3, after receiving the message, the u-plane first sends a Point-to-Point Protocol (PPP) Terminate Request to the LNS.

In step 4, the lns returns to PPP Terminate Response and PPP session release is complete.

And 5, the U-plane continues to send CDN messages.

And 6, the LNS returns a ZLB response.

Step 7, the U-plane returns PFCP Session Deletion Response information to inform the C-plane that the forwarding resource of the current session is deleted;

and 8, after receiving the message, the C side completes business processes such as charging stop, policy termination and the like, and returns a session deletion response to a forward network element (SGW-C/AMF).

Fig. 16 is a flowchart of U-plane LAC passive negotiation L2TP tunnel tear-down under a cut architecture according to an embodiment of the present invention, as shown in fig. 16, including:

step 1, the U-plane (PGW-U/UPF) receives PPP Terminate Request the session delete message from the LNS.

In step 2, the u-plane performs PPP session release and sends PPP Terminate Response to the LNS.

And 3, the U-plane continues to receive CDN messages from the LNS.

Step 4,U performs L2TP session release and returns the ZLB to the LNS.

And 5, the U-oriented C-plane (PGW-C/SMF) sends PFCP Session Report Request information carrying the event type of 'LNS request L2TP tunnel tear down or L2TP tunnel tear down'. The invention is characterized in that the type of event of 'LNS request L2TP tunnel unbuckling or L2TP tunnel breaking' is carried in PFCP Session Report Request message.

And step 6, returning PFCP Session Report Response after the C surface receives the message, and triggering the current session release process.

Step 7, the C-plane forward network element (SGW-C/AMF) triggers a session delete message.

In step 8, the c-plane simultaneously sends PFCP Session Deletion Request notification to the media plane to release the media plane resources.

Step 9,U returns PFCP Session Deletion Response message to the C face, and the C face finishes the service processing such as charging stop and policy termination;

and step 10, the forward network element (SGW-C/AMF) returns a session deletion response, and the L2TP tunnel link-down flow of the current user is ended.

The embodiment of the invention also provides a device for supporting the L2TPVPN under the CU separated mobile network architecture, which comprises the following modules:

a control plane processing unit (PGW-C or SMF), a user plane processing unit (PGW-U or UPF), and interfaces Sxb between CUs (between PGW-C and PGW-U) and N4 (between SMF and UPF) interface protocols.

The CU interface protocol should support the carrying and standardization of L2TP related deployment parameters, whereas the current interface protocol is not defined.

The whole L2TP service flow requires simultaneous cooperation of the C plane and the U plane.

The LAC component of the L2TP VPN can be placed on the C-plane (PGW-C/SMF) or the U-plane (PGW-U/UPF). Whether placed on the C-plane or the U-plane, both sides need to be informed of the L2TP negotiation capability through Sxb and N4 interface CP Function Features/UP Function Features parameter fields.

The embodiment of the invention embeds the process of establishing and dismantling the L2TP tunnel in the current session activation and deactivation process. The control plane scheme implementation requires that before the C plane informs the U plane to establish the media plane forwarding resource, negotiation of the L2TP Tunnel must be completed, and PFCP Session Establishment Request information informing the C plane to establish the media plane must be capable of carrying Tunnel address information of the home terminal and the opposite terminal, and Tunnel ID and Session ID information of the home terminal and the opposite terminal. Meanwhile, before the action of deleting the media surface in the session deactivation flow, the link removal of the L2TP tunnel must be completed.

The embodiment of the invention embeds the process of establishing and dismantling the L2TP tunnel in the current session activation and deactivation process. Media plane implementation requires that after the C-plane informs the U-plane to establish media plane forwarding resources, the C-plane must be informed of the success of the media plane establishment after the negotiation of the L2TP tunnel is completed, and the PFCP Session Establishment Request message informing the C-plane to establish the media plane must be able to carry L2TP tunnel negotiation related parameters including, but not limited to, protocol configuration options (Protocol Configuration Option, abbreviated PCO), user name in PCO, PAP Password in PCO, challenge handshake authentication protocol (Challenge Handshake Authentication Protocol, abbreviated CHAP) change in PCO, CHAPChallenge Response in PCO. The terminal address and DNS information assigned by the LNS must be carried in the PFCP Session Establishment Response message. Meanwhile, when the LNS actively disconnects, the U-face sends PFCP Session Report Request a message C-face, and the message must support an event type carrying 'LNS actively requests to disconnect an L2TP tunnel or an L2TP tunnel'.

According to the embodiment of the invention, the progress of standardization of the L2TP negotiation parameters of the CU separation deployment scene Sxb and the N4 interface is obtained, the effect that the butt joint of the C-plane network element and the U-plane network element of different manufacturers is not influenced is achieved, the interconnection and intercommunication cost of operators is saved, and the equipment competitiveness of equipment providers is improved.

From the description of the above embodiments, it will be clear to a person skilled in the art that the method according to the above embodiments may be implemented by means of software plus the necessary general hardware platform, but of course also by means of hardware, but in many cases the former is a preferred embodiment. Based on such understanding, the technical solution of the present invention may be embodied essentially or in a part contributing to the prior art in the form of a software product stored in a storage medium (e.g. ROM/RAM, magnetic disk, optical disk) comprising instructions for causing a terminal device (which may be a mobile phone, a computer, a server, or a network device, etc.) to perform the method according to the embodiments of the present invention.

Example 3

The present embodiment also provides a tunnel negotiation establishing device, which is used to implement the foregoing embodiments and preferred embodiments, and will not be described in detail. As used below, the term "module" may be a combination of software and/or hardware that implements a predetermined function. While the means described in the following embodiments are preferably implemented in software, implementation in hardware, or a combination of software and hardware, is also possible and contemplated.

Fig. 17 is a block diagram one of a tunnel negotiation establishing apparatus according to an embodiment of the present invention, as shown in fig. 17, including:

a first negotiation establishing module 172, configured to complete negotiation establishment of an L2TP tunnel between the control plane and the user plane through the control plane, where the control plane includes: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

a second negotiation establishing module 174, configured to complete negotiation establishment of the L2TP tunnel between the control plane and the user plane through the user plane.

Optionally, the first negotiation establishing module 172 includes:

the first negotiation submodule is used for completing negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the control plane;

and the first establishment submodule is used for completing the establishment of the L2TP tunnel between the user plane and the L2TP network server LNS through the control plane.

Optionally, the first negotiation submodule includes:

a first negotiation unit, configured to complete negotiation of an L2TP tunnel negotiation capability between the control plane and the user plane through the control plane when only the control plane has the L2TP tunnel negotiation capability;

and the second negotiation unit is used for determining to use the L2TP tunnel negotiation capability of the control plane under the condition that the control plane and the user plane have the L2TP tunnel negotiation capability, and completing the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the control plane.

Optionally, the first negotiation submodule is further configured to

Alternatively, the process may be carried out in a single-stage,

the association establishment request message indicates the L2TP tunnel negotiation capability of the control plane through a carried functional characteristic parameter field;

Optionally, the first building sub-module is further configured to

receiving a PFCP session establishment response message returned by the user plane for notifying that the forwarding relation establishment is completed;

Optionally, the first establishment submodule is further configured to complete negotiation of L2TP tunnel establishment with the LNS through the LAC, including:

Optionally, the apparatus further comprises:

and the first deleting module is used for deleting the established L2TP tunnel.

Optionally, the first deleting module is further configured to

Receiving a session deletion request message sent by a forward network element, wherein the forward network element comprises a service gateway control plane SGW-C or an access and mobility function AMF;

transmitting a session tear-down notification CDN message to the LNS through a Sxb/N4 interface of the user plane;

receiving a 0-length message body ZLB message returned by the LNS through a Sxb/N4 interface of the user plane;

Optionally, the first deleting module is further configured to

receiving a PFCP session deletion response message returned by the user plane;

Optionally, the second negotiation establishing module includes:

the second negotiation submodule is used for completing negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the user plane;

and the second establishing submodule is used for completing the establishment of the L2TP tunnel between the user plane and the L2TP network server LNS through the user plane.

Optionally, the second negotiation submodule is further configured to

Alternatively, the process may be carried out in a single-stage,

Optionally, the second building sub-module is further configured to

Alternatively, the process may be carried out in a single-stage,

the PFCP session establishment request message carries at least one of the following information: the protocol configuration options username in PCO, PAP password in PCO, challenge handshake authentication protocol CHAP Challenge in PCO, CHAP Challenge response Challenge response in PCO.

Optionally, the apparatus further comprises:

And the second deleting module is used for deleting the established L2TP tunnel.

Optionally, the second deleting module is further configured to

Receiving a session deletion message sent by the forward network element;

Optionally, the second deleting module is further configured to

Returning a PFCP session report response message to the user plane;

receiving a PFCP session deletion response message returned by the user plane;

It should be noted that each of the above modules may be implemented by software or hardware, and for the latter, it may be implemented by, but not limited to: the modules are all located in the same processor; alternatively, the above modules may be located in different processors in any combination.

Example 4

Fig. 18 is a block diagram two of a tunnel negotiation establishing apparatus according to an embodiment of the present invention, as shown in fig. 18, including:

a third negotiation establishing module 182, configured to complete negotiation establishment of an L2TP tunnel of an layer two tunneling protocol between a control plane and a user plane through the control plane, where the control plane includes: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

a fourth negotiation establishing module 184, configured to complete negotiation establishment of the L2TP tunnel between the control plane and the user plane.

Optionally, the third negotiation establishing module includes:

a third negotiation submodule, configured to complete negotiation of an L2TP tunnel negotiation capability between the control plane and the user plane through the control plane;

and the third establishing submodule is used for completing the establishment of the L2TP tunnel between the user plane and the L2TP network server LNS through the control plane.

Optionally, the third negotiation sub-module is further configured to

Alternatively, the process may be carried out in a single-stage,

Optionally, the third negotiation sub-module is further configured to

Optionally, the apparatus further comprises:

a sending submodule, configured to forward, in a process that the control plane completes negotiation of L2TP tunnel establishment with the LNS through the LAC, an L2TPVPN establishment request message sent by the control plane to the LNS through a Sxb/N4 interface;

and the forwarding sub-module is used for forwarding the L2TP VPN establishment response message sent by the LNS to the control surface through the Sxb/N4 interface.

Optionally, the apparatus further comprises:

a third deleting module, configured to delete, through the control plane, the established L2TP tunnel; or alternatively

And a fourth deleting module, configured to delete the established L2TP tunnel.

Optionally, the third deleting module is further configured to

receiving a PFCP session deletion request message sent by the control plane;

Optionally, the fourth deleting module is further configured to

receiving a PFCP session deletion request message sent by the control plane;

Optionally, the fourth negotiation setup module is further configured to include:

a fourth negotiation sub-module, configured to complete negotiation of an L2TP tunnel negotiation capability between the control plane and the user plane;

and the fourth establishing sub-module is used for completing the establishment of the L2TP tunnel between the user plane and the L2TP network server LNS.

Optionally, the fourth negotiation submodule is further configured to

Alternatively, the process may be carried out in a single-stage,

Optionally, the fourth building sub-module is further configured to

Alternatively, the process may be carried out in a single-stage,

the PFCP session establishment request message carries at least one of the following information: the username in PCO, the PAP password in PCO, the CHAP challenge response challenge response in CHAP challenge Challenge, PCO in PCO.

Optionally, the apparatus further comprises:

a fifth deleting module, configured to delete, through the control plane, the established L2TP tunnel;

and a sixth deleting module, configured to delete the established L2TP tunnel.

Optionally, the fifth deleting module is further configured to

sending a session tear-down notification CDN message to the LNS;

Optionally, the sixth deleting module is further configured to

receiving a session tear-down notification CDN message sent by the LNS;

returning a 0-length message body ZLB message to the LNS;

transmitting a session deletion request message to the forward network element;

receiving a PFCP session deletion request message sent by the control plane;

Example 5

An embodiment of the invention also provides a storage medium having a computer program stored therein, wherein the computer program is arranged to perform the steps of any of the method embodiments described above when run.

Alternatively, in the present embodiment, the above-described storage medium may be configured to store a computer program for performing the steps of:

S11, finishing negotiation establishment of an L2TP tunnel between a control plane and a user plane through the control plane;

s12, the negotiation establishment of the L2TP tunnel between the control plane and the user plane is completed through the user plane.

Alternatively, in the present embodiment, the above-described storage medium may be further configured to store a computer program for performing the steps of:

s21, completing negotiation establishment of an L2TP tunnel between a control plane and a user plane through the control plane, wherein the control plane comprises: PGW-C or SMF, the user plane comprising PGW-U or UPF; or,

s22, the negotiation establishment of the L2TP tunnel between the control plane and the user plane is completed.

Alternatively, in the present embodiment, the storage medium may include, but is not limited to: a usb disk, a Read-ONly Memory (ROM), a random access Memory (RaNdom Access Memory, RAM), a removable hard disk, a magnetic disk, or an optical disk, or other various media capable of storing a computer program.

Example 6

An embodiment of the invention also provides an electronic device comprising a memory having stored therein a computer program and a processor arranged to run the computer program to perform the steps of any of the method embodiments described above.

Optionally, the electronic apparatus may further include a transmission device and an input/output device, where the transmission device is connected to the processor, and the input/output device is connected to the processor.

Alternatively, in the present embodiment, the above-described processor may be configured to execute the following steps by a computer program:

Optionally, in this embodiment, the above processor may be further configured to execute the following steps by a computer program:

Alternatively, specific examples in this embodiment may refer to examples described in the foregoing embodiments and optional implementations, and this embodiment is not described herein.

It will be appreciated by those skilled in the art that the modules or steps of the invention described above may be implemented in a general purpose computing device, they may be concentrated on a single computing device, or distributed across a network of computing devices, they may alternatively be implemented in program code executable by computing devices, so that they may be stored in a memory device for execution by computing devices, and in some cases, the steps shown or described may be performed in a different order than that shown or described, or they may be separately fabricated into individual integrated circuit modules, or multiple modules or steps within them may be fabricated into a single integrated circuit module for implementation. Thus, the present invention is not limited to any specific combination of hardware and software.

The above description is only of the preferred embodiments of the present invention and is not intended to limit the present invention, but various modifications and variations can be made to the present invention by those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the principle of the present invention should be included in the protection scope of the present invention.

Claims

1. A tunnel negotiation establishment method, comprising:

the negotiation establishment of the layer two tunnel protocol L2TP tunnel between the control plane and the user plane is completed through the control plane, which comprises the following steps: the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane is completed through the control plane, wherein the user plane carrying the L2TP tunnel negotiation capability is acquired in the negotiation process; and completing the establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS through the control plane, wherein the control plane comprises: a packet data network gateway control plane PGW-C or a session management function SMF, said user plane comprising a packet data network gateway user plane PGW-U or a user plane function UPF;

the step of completing the establishment of the L2TP tunnel and the session between the user plane and the LNS through the control plane comprises the following steps: receiving a session establishment request message of a forward network element; selecting the user plane according to the session establishment request message; negotiating L2TP tunnel establishment with the LNS through the built-in L2TP access concentrator LAC in the control plane or the PGW-C, and storing tunnel IDs and session IDs of the LAC and the LNS, IP addresses and Domain Name Server (DNS) address information distributed by the LNS, wherein the forward network element comprises a service gateway control plane SGW-C or an Access and Mobility Function (AMF);

Or,

the negotiation establishment of the L2TP tunnel between the control plane and the user plane is completed through the user plane, and the method comprises the following steps: the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane is completed through the user plane, wherein the user plane carrying the L2TP tunnel negotiation capability is determined in the negotiation process; and completing the establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS through the control plane, wherein the control plane comprises: a packet data network gateway control plane PGW-C or a session management function SMF, said user plane comprising a packet data network gateway user plane PGW-U or a user plane function UPF;

the step of completing the establishment of the L2TP tunnel and session between the user plane and the L2TP network server LNS through the user plane comprises the following steps: sending a message forwarding control protocol (PFCP) session establishment request message through the control plane; and receiving a PFCP session establishment response message fed back by the user plane in response to the PFCP session establishment request message to determine that the establishment of the tunnel and the session of the L2TP is completed, wherein the PFCP session establishment response message carries the IP address and the DNS address information distributed by the LNS.

2. The method of claim 1, wherein the negotiating of L2TP tunnel negotiations capability between the control plane and the user plane via the control plane comprises:

3. The method of claim 2, wherein the negotiating of L2TP tunnel negotiations capability between the control plane and the user plane via the control plane comprises:

4. The method of claim 3, wherein the step of,

5. The method of claim 1, wherein completing, by the control plane, establishment of an L2TP tunnel between the user plane and the LNS comprises:

6. The method of claim 5, wherein completing negotiation of L2TP tunnel establishment with the LNS by the LAC comprises:

7. The method of claim 1, wherein after completing establishment of an L2TP tunnel between the user plane and the LNS through the control plane, the method further comprises:

and deleting the established L2TP tunnel.

8. The method of claim 7, wherein the deleting the established L2TP tunnel comprises:

9. The method of claim 7, wherein the deleting the established L2TP tunnel comprises:

Receiving a PFCP session deletion response message returned by the user plane;

10. The method of claim 1, wherein the negotiating L2TP tunnel negotiations capability between the control plane and the user plane via the user plane comprises:

11. The method of claim 10, wherein the negotiating L2TP tunnel negotiations capability between the control plane and the user plane via the user plane comprises:

12. The method of claim 11, wherein the step of determining the position of the probe is performed,

13. The method of claim 1, wherein the step of determining the position of the substrate comprises,

14. The method of claim 1, wherein after completion of the establishment of the L2TP tunnel between the user plane and the LNS by the user plane, the method further comprises:

and deleting the established L2TP tunnel.

15. The method of claim 14, wherein the deleting the established L2TP tunnel comprises:

receiving a session deletion message sent by the forward network element;

16. The method of claim 14, wherein the deleting the established L2TP tunnel comprises:

Returning a PFCP session report response message to the user plane;

receiving a PFCP session deletion response message returned by the user plane;

17. A tunnel negotiation establishment method, comprising:

the negotiation establishment of the layer two tunnel protocol L2TP tunnel between the control plane and the user plane is completed through the control plane, which comprises the following steps: the negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane is completed through the control plane, wherein the user plane carrying the L2TP tunnel negotiation capability is determined in the negotiation process; the establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS is completed through the control plane; wherein the control surface comprises: PGW-C or SMF, the user plane comprising PGW-U or UPF;

the step of completing the establishment of the L2TP tunnel and session between the user plane and the L2TP network server LNS through the control plane comprises the following steps: under the condition that the control plane selects the user plane according to a session establishment request message received from a forward network element, completing negotiation of L2TP tunnel establishment with the LNS through an built-in L2TP access concentrator LAC in the control plane or the PGW-C, and saving tunnel IDs and session IDs of the LAC and the LNS, and IP address and Domain Name Server (DNS) address information distributed by the LNS, wherein the forward network element comprises a service gateway control plane SGW-C or an Access and Mobility Function (AMF);

Or,

the negotiation establishment of the L2TP tunnel between the control plane and the user plane is completed, which comprises the following steps: completing negotiation of L2TP tunnel negotiation capability between the control plane and the user plane, wherein the carried L2TP tunnel negotiation capability is sent to the control plane in the negotiation process; completing the establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS;

the completion of the establishment of the L2TP tunnel and session between the user plane and the LNS includes: receiving a PFCP session establishment request message sent by the control plane; and sending a PFCP session establishment response message to the control surface to determine that the establishment of the tunnel and the session of the L2TP is completed, wherein the PFCP session establishment response message carries the IP address and the DNS address information distributed by the LNS.

18. The method of claim 17, wherein the negotiating L2TP tunnel negotiations capability between the control plane and the user plane via the control plane comprises:

19. The method of claim 18, wherein performing, by the control plane, negotiation of L2TP tunnel negotiation capability between the control plane and the user plane comprises:

20. The method of claim 19, wherein the step of determining the position of the probe comprises,

21. The method of claim 17, wherein completing, by the control plane, establishment of an L2TP tunnel between the user plane and the LNS comprises:

22. The method of claim 21, wherein the method further comprises:

23. The method of claim 17, wherein after completing establishment of an L2TP tunnel between the user plane and the LNS through the control plane, the method further comprises:

And deleting the established L2TP tunnel.

24. The method of claim 23, wherein the deleting the established L2TP tunnel through the control plane comprises:

receiving a PFCP session deletion request message sent by the control plane;

25. The method of claim 23, wherein the deleting the established L2TP tunnel comprises:

receiving a PFCP session deletion request message sent by the control plane;

26. The method of claim 17, wherein said completing negotiation of L2TP tunnel negotiation capability between the control plane and the user plane comprises:

27. The method of claim 26, wherein said completing negotiation of L2TP tunnel negotiation capability between the control plane and the user plane comprises:

28. The method of claim 27, wherein the step of determining the position of the probe is performed,

29. The method of claim 17, wherein the step of determining the position of the probe is performed,

30. The method of claim 17, wherein after completing establishment of the L2TP tunnel between the user plane and the LNS, the method further comprises:

deleting the established L2TP tunnel through the control plane;

and deleting the established L2TP tunnel.

31. The method of claim 30, wherein the deleting the established L2TP tunnel through the control plane comprises:

sending a session tear-down notification CDN message to the LNS;

32. The method of claim 30, wherein the deleting the established L2TP tunnel comprises:

receiving a session tear-down notification CDN message sent by the LNS;

returning a 0-length message body ZLB message to the LNS;

transmitting a session deletion request message to the forward network element;

receiving a PFCP session deletion request message sent by the control plane;

33. A tunnel negotiation establishment apparatus, applied to a control plane, comprising:

the first negotiation establishing module is used for completing negotiation establishment of an L2TP tunnel of a layer two tunnel protocol between a control surface and a user surface through the control surface, and comprises a first negotiation submodule and a first establishment submodule, wherein the first negotiation submodule is used for completing negotiation of an L2TP tunnel negotiation capability between the control surface and the user surface through the control surface, and the user surface carrying the L2TP tunnel negotiation capability is obtained in the negotiation process; the first establishing submodule is configured to complete establishment of an L2TP tunnel between the user plane and an L2TP network server LNS through the control plane, where the control plane includes: PGW-C or SMF, the user plane comprising PGW-U or UPF;

The first establishing sub-module is further configured to receive a session establishment request message of a forward network element; selecting the user plane according to the session establishment request message; negotiating L2TP tunnel establishment with the LNS through the built-in L2TP access concentrator LAC in the control plane or the PGW-C, and storing tunnel IDs and session IDs of the LAC and the LNS, IP addresses and Domain Name Server (DNS) address information distributed by the LNS, wherein the forward network element comprises a service gateway control plane SGW-C or an Access and Mobility Function (AMF);

or,

the second negotiation establishing module is used for completing negotiation establishment of the L2TP tunnel between the control plane and the user plane through the user plane, and comprises a second negotiation submodule and a second establishment submodule, wherein the second negotiation submodule is used for completing negotiation of the L2TP tunnel negotiation capability between the control plane and the user plane through the user plane, and the user plane carrying the L2TP tunnel negotiation capability is determined in the negotiation process; the second establishing sub-module is configured to complete, through the control plane, establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS, where the control plane includes: a packet data network gateway control plane PGW-C or a session management function SMF, said user plane comprising a packet data network gateway user plane PGW-U or a user plane function UPF;

The second establishment sub-module is further configured to send a message forwarding control protocol PFCP session establishment request message through the control plane; and receiving a PFCP session establishment response message fed back by the user plane in response to the PFCP session establishment request message to determine that the establishment of the tunnel and the session of the L2TP is completed, wherein the PFCP session establishment response message carries the IP address and the DNS address information distributed by the LNS.

34. The apparatus of claim 33, wherein the first negotiation sub-module is further configured to

35. The apparatus of claim 33, wherein the first setup submodule is further configured to

36. The apparatus of claim 33, wherein the apparatus further comprises:

and the first deleting module is used for deleting the established L2TP tunnel.

37. The apparatus of claim 33, wherein the second negotiation sub-module is further configured to

38. The apparatus of claim 33, wherein the apparatus further comprises:

39. A tunnel negotiation establishment apparatus, applied to a user plane, comprising:

The third negotiation establishing module is used for completing negotiation establishment of an L2TP tunnel of a layer two tunnel protocol between a control plane and a user plane through the control plane, the third negotiation establishing module comprises a third negotiation submodule and a third establishment submodule, and the third negotiation submodule is used for completing negotiation of an L2TP tunnel negotiation capability between the control plane and the user plane through the control plane, wherein the user plane carrying the L2TP tunnel negotiation capability is determined in the negotiation process; the third establishing submodule is used for completing the establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS through the control plane; wherein the control surface comprises: PGW-C or SMF, the user plane comprising PGW-U or UPF;

the third building sub-module is further configured to: under the condition that the control plane selects the user plane according to a session establishment request message received from a forward network element, completing negotiation of L2TP tunnel establishment with the LNS through an built-in L2TP access concentrator LAC in the control plane or the PGW-C, and saving tunnel IDs and session IDs of the LAC and the LNS, and IP address and Domain Name Server (DNS) address information distributed by the LNS, wherein the forward network element comprises a service gateway control plane SGW-C or an Access and Mobility Function (AMF);

Or,

a fourth negotiation establishing module, configured to complete negotiation establishment of an L2TP tunnel between the control plane and the user plane, where the fourth negotiation establishing module includes a fourth negotiation submodule and a fourth establishment submodule, and the fourth negotiation submodule is configured to complete negotiation of an L2TP tunnel negotiation capability between the control plane and the user plane, where the carried L2TP tunnel negotiation capability is sent to the control plane in the negotiation process; the fourth establishment submodule is used for completing establishment of an L2TP tunnel and a session between the user plane and an L2TP network server LNS;

the fourth establishment sub-module is further configured to receive a PFCP session establishment request message sent by the control plane; and sending a PFCP session establishment response message to the control surface to determine that the establishment of the tunnel and the session of the L2TP is completed, wherein the PFCP session establishment response message carries the IP address and the DNS address information distributed by the LNS.

40. The apparatus of claim 39, wherein the third negotiation sub-module is further configured to

41. The apparatus of claim 39, wherein the third negotiation sub-module is further configured to

42. The apparatus of claim 39, wherein the apparatus further comprises:

And a fourth deleting module, configured to delete the established L2TP tunnel.

43. The apparatus of claim 39, wherein the fourth negotiation sub-module is further configured to

44. The apparatus of claim 39, wherein the apparatus further comprises:

and a sixth deleting module, configured to delete the established L2TP tunnel.

45. A storage medium having a computer program stored therein, wherein the computer program is arranged to perform the method of any of claims 1 to 17, 16 to 32 when run.

46. An electronic device comprising a memory and a processor, wherein the memory has stored therein a computer program, the processor being arranged to run the computer program to perform the method of any of claims 1 to 16, 17 to 32.