CN112583693B - Virtual local area network communication method, equipment and storage medium - Google Patents

Virtual local area network communication method, equipment and storage medium Download PDF

Info

Publication number
CN112583693B
CN112583693B CN202011471735.4A CN202011471735A CN112583693B CN 112583693 B CN112583693 B CN 112583693B CN 202011471735 A CN202011471735 A CN 202011471735A CN 112583693 B CN112583693 B CN 112583693B
Authority
CN
China
Prior art keywords
group
inter
entity
information
message
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202011471735.4A
Other languages
Chinese (zh)
Other versions
CN112583693A (en
Inventor
冯江平
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Ailing Network Co ltd
Original Assignee
Shenzhen Ailing Network Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Ailing Network Co ltd filed Critical Shenzhen Ailing Network Co ltd
Priority to CN202011471735.4A priority Critical patent/CN112583693B/en
Publication of CN112583693A publication Critical patent/CN112583693A/en
Application granted granted Critical
Publication of CN112583693B publication Critical patent/CN112583693B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/02Topology update or discovery

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The method comprises the steps that an Application Function (AF) entity sends a UE group creation request message to a control plane network element to create a UE group, wherein the UE group creation request message comprises intra-group information and inter-group information; the control plane network element generates a message matching rule and a forwarding rule according to the intra-group information and the inter-group information, and sends the message matching rule and the forwarding rule to a user plane network element; and the user plane network element matches and forwards the inter-group access message sent by the user equipment UE according to the message matching rule and the forwarding rule. By adopting the technical scheme provided by the embodiment of the application, the UE in different groups can communicate with each other. In addition, a virtual network external interface is introduced into the UPF entity, and the inter-group communication is associated with the interface, so that the influence on the existing intra-group communication flow is eliminated, and the method is easy to realize.

Description

Virtual local area network communication method, equipment and storage medium
Technical Field
The present application relates to the field of communications technologies, and in particular, to a virtual local area network communication method, device, and storage medium.
Background
A Local Area Network (LAN) may interconnect a plurality of user equipments UE in a region into one network. LAN has been applied to various scenes such as enterprises, homes, and industries as a basic network facility. When the size of the LAN is large, in order to facilitate management and implement isolation, a Virtual Local Area Network (VLAN) technology is usually adopted in the industry to divide the LAN into a plurality of different VLANs.
The fifth generation (5th generation, 5G) LAN service is a service provided by the current 5G network, and is mainly applied to home communications, enterprise offices, factory manufacturing, car networking, power grid transformation, public security organs and the like. The service can provide private communication of an Internet Protocol (IP) type or a non-IP type (e.g., ethernet type) for two or more terminal devices in a group of terminal devices. For example, devices in a factory may form a group, and the devices in the group may send ethernet packets to each other; alternatively, office equipment (e.g., mobile phones, computers, or laptops, etc.) of employees in a department of an enterprise may form a group and send IP packets to each other.
The 5G LAN technology introduces the concept of terminal group management in a mobile network for the first time, and supports direct communication of UE in a group. Fig. 1 is a schematic diagram of a communication scenario of UEs in a group in the related art. And the industry client can open an interface through the capacity of the control surface of the core network to manage the creation, modification, deletion and the like of the virtual network group. Data mutually transmitted by UEs in a group may be directly forwarded through a 5G User Plane Function (UPF), and does not need to be transmitted to a data network through an N6 interface, for example, UE1 and UE2 may directly forward through UPF 1. When the UE in one group is accessed to a plurality of UPFs, direct connection tunnels are constructed among the UPFs, and direct communication is guaranteed. For example, the UE2 accesses the UPF1, the UE3 accesses the UPF2, and a direct tunnel N19 is constructed between the UPF1 and the UPF2, so that the UE2 and the UE3 are ensured to communicate directly. The design enables the UPF to have a direct forwarding function similar to a switch or a router, so that the intervention of a router or an application server on an N6 port is not needed, and a data forwarding path is shortened.
However, current virtual local area networks only support intercommunication between UEs within one group. In practical applications, there is also a need for intercommunication between different members, such as two departments in an enterprise.
Disclosure of Invention
In view of this, the present application provides a method, a device, and a storage medium for virtual local area network communication, so as to solve the problem that in the prior art, a virtual local area network only supports intercommunication between UEs in one group, and cannot meet the intercommunication requirements of UEs in different groups.
In a first aspect, an embodiment of the present application provides a virtual local area network communication method, where the method includes:
an Application Function (AF) entity sends a UE group creation request message to a control plane network element to create a UE group, wherein the UE group creation request message comprises group-in information and group-between information;
the control plane network element generates a message matching rule and a forwarding rule according to the intra-group information and the inter-group information, and sends the message matching rule and the forwarding rule to a user plane network element;
and the user plane network element matches and forwards the inter-group access message sent by the user equipment UE according to the message matching rule and the forwarding rule.
Preferably, the sending, by the AF entity, a UE group creation request message to a control plane network element to create a UE group includes:
an Application Function (AF) entity sends a User Equipment (UE) group creation request message to a network capability opening function (NEF) entity, wherein the UE group creation request message comprises intra-group information and inter-group information, the intra-group information is used for representing UE information in the same UE group and the group information of the UE group, and the inter-group information is used for representing association information between different UE groups;
the NEF entity creates a UE group according to the intra-group information and the inter-group information and sends the UE group information to a unified data management function (UDM) entity, wherein the UE group information comprises the intra-group information and the inter-group information;
and the UDM entity sends the UE group information to a Unified Data Repository (UDR) entity and stores the UE group information in the UDR entity.
Preferably, the intra-group information includes a group identifier, a group member identifier, a packet data unit PDU session type, a data network name DNN, and/or a slice identifier;
the inter-group information includes a group gateway IP address, a group gateway MAC address, and/or an inter-group access control list.
Preferably, the generating, by the control plane network element, a packet matching rule and a forwarding rule according to the intra-group information and the inter-group information includes:
a Session Management Function (SMF) entity receives a Protocol Data Unit (PDU) session establishment flow initiated by first User Equipment (UE), and establishes a PDU session with the first UE, wherein the first UE belongs to a first UE group;
the SMF entity sends a user signing request message to the UDM entity, wherein the user signing request message is used for indicating the UDM entity to feed back user signing information of the first UE;
the UDM entity acquires user subscription information of the first UE in the UDR entity, wherein the user subscription information comprises intra-group information and inter-group information corresponding to the first UE;
the UDM entity sends the user subscription information to the SMF entity;
the SMF entity determines inter-group access authority information of the first UE according to the user subscription information;
and the SMF entity generates a message matching rule and a forwarding rule corresponding to the first UE according to the inter-group access right information.
Preferably, the matching and forwarding, by the user plane network element, the inter-group access packet sent by the user equipment UE according to the packet matching rule and the forwarding rule includes:
the UPF entity matches the inter-group access packet sent by the first UE according to a first packet matching rule, wherein the first packet matching rule is as follows: a tunnel identifier carried in a tunnel header of the inter-group access packet is matched with a tunnel identifier allocated to the PDU session, and a receiving interface of the inter-group access packet is an access side or a core network side;
if the UPF entity judges that the inter-group access packet conforms to the first packet matching rule, forwarding the inter-group access packet to a virtual network internal interface, and setting a group identifier of the virtual network internal interface as a group identifier corresponding to the first UE;
the UPF entity matches the inter-group access messages sent by the virtual network internal interface according to a second message matching rule, wherein the second message matching rule is as follows: the source interface is the internal interface of the virtual network, the group identifier is the group identifier corresponding to the first UE, and the destination address is the MAC address of the group gateway corresponding to the first UE;
if the UPF entity judges that the inter-group access packet conforms to the second packet matching rule, forwarding the inter-group access packet to a virtual network external interface, and setting a group identifier of the virtual network external interface as a group identifier corresponding to the first UE;
the UPF entity matches the inter-group access messages sent by the virtual network external interface according to a third message matching rule, wherein the third message matching rule is as follows: the source interface is the external interface of the virtual network, the group identifier is the group identifier corresponding to the first UE, and the destination address is the IP address of the destination UE which allows the first UE to access;
if the UPF entity judges that the inter-group access packet conforms to the third packet matching rule, replacing the source MAC address of the inter-group access packet with the gateway MAC address of the destination virtual network;
and the UPF entity forwards the inter-group access packet to a second UE or a UPF entity corresponding to the second UE, wherein the second UE belongs to a second UE group.
Preferably, the group identifier corresponding to the first UE is determined according to a combination of a data network name DNN and a slice identifier of the PDU session; and/or the presence of a gas in the gas,
and determining according to the tunnel identifier carried in the tunnel header of the inter-group access packet.
Preferably, the control plane network element generates a packet matching rule and a forwarding rule according to the intra-group information and the inter-group information, and sends the packet matching rule and the forwarding rule to the user plane network element, including:
a user plane network element receives a Protocol Data Unit (PDU) session establishment flow initiated by first UE, and establishes a PDU session with the first UE, wherein the first UE belongs to a first UE group;
the user plane network element receives an inter-group access message sent by the first UE, wherein the inter-group access message is used for being sent to a second UE in a second UE group;
if the user plane network element judges that the message matching rule and the forwarding rule corresponding to the inter-group access message do not exist, the inter-group access message is sent to the control plane network element;
the control plane network element generates a message matching rule and a forwarding rule corresponding to the first UE, and sends the message matching rule and the forwarding rule to the user plane network element
Preferably, the generating, by the control plane network element, a packet matching rule and a forwarding rule corresponding to the first UE includes:
the control plane network element judges whether the first UE is allowed to access the second UE according to the inter-group access information;
and if the SMF entity judges that the first UE is allowed to access the second UE, generating a message matching rule and a forwarding rule corresponding to the first UE.
Preferably, after the receiving, by the user plane network element, the inter-group access packet sent by the first UE, the method further includes:
and if the user plane network element judges that a message matching rule corresponding to the inter-group access message exists, matching and forwarding the inter-group access message sent by the first UE according to the message matching rule and the forwarding rule.
Preferably, the user plane network element is a user plane function UPF entity, and if the user plane network element determines that there is no packet matching rule corresponding to the inter-group access packet, the sending of the inter-group access packet to the control plane network element includes:
and if the UPF entity judges that the message matching rule corresponding to the inter-group access message does not exist, sending the inter-group access message to a Session Management Function (SMF) entity.
Preferably, the generating, by the control plane network element, a packet matching rule and a forwarding rule corresponding to the first UE includes:
the SMF entity sends a user signing request message to the UDM entity, wherein the user signing request message is used for indicating the UDM entity to feed back user signing information of the first UE;
the UDM entity acquires user subscription information of the first UE in the UDR entity, wherein the user subscription information comprises intra-group information and inter-group information corresponding to the first UE;
the UDM entity sends the user subscription information to the SMF entity;
the SMF entity determines inter-group access authority information of the first UE according to the user subscription information;
and the SMF entity generates a message matching rule and a forwarding rule corresponding to the first UE according to the inter-group access right information.
In a second aspect, an embodiment of the present application provides a network device, including:
one or more processors;
a memory;
and one or more computer programs, wherein the one or more computer programs are stored in the memory, the one or more computer programs comprising instructions which, when executed by the network device, cause the network device to perform the method of any of the above first aspects.
In a third aspect, an embodiment of the present application provides a computer-readable storage medium, where the computer-readable storage medium includes a stored program, and when the program runs, the computer-readable storage medium controls an apparatus in which the computer-readable storage medium is located, according to any one of the methods in the first aspect.
By adopting the technical scheme provided by the embodiment of the application, the mutual communication of the UE in different groups can be realized. In addition, a virtual network external interface is introduced into the UPF entity, and the inter-group communication is associated with the interface, so that the influence on the existing intra-group communication flow is eliminated, and the method is easy to realize.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings needed to be used in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present application, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without inventive labor.
Fig. 1 is a diagram illustrating a communication scenario of a UE in a group in the related art;
fig. 2 is a diagram illustrating a possible architecture of a communication system according to an embodiment of the present application;
fig. 3 is a schematic flowchart of a virtual local area network communication method according to an embodiment of the present application;
fig. 4 is a flowchart illustrating a method for creating a UE group according to an embodiment of the present application;
fig. 5 is a reference diagram of a UE group according to an embodiment of the present application;
fig. 6 is a schematic flow chart of a method for generating a message matching rule and a forwarding rule according to an embodiment of the present application;
fig. 7 is a schematic diagram of a packet matching and forwarding process provided in an embodiment of the present application;
fig. 8 is a flowchart illustrating another method for generating a packet matching rule and a forwarding rule according to an embodiment of the present application.
Detailed Description
For better understanding of the technical solutions of the present application, the following detailed descriptions of the embodiments of the present application are provided with reference to the accompanying drawings.
It should be understood that the embodiments described are only a few embodiments of the present application, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
The terminology used in the embodiments of the present application is for the purpose of describing particular embodiments only and is not intended to be limiting of the application. As used in the examples of this application and the appended claims, the singular forms "a", "an", and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise.
It should be understood that the term "and/or" as used herein is merely one type of associative relationship that describes an associated object, meaning that three types of relationships may exist, e.g., A and/or B, may mean: a exists alone, A and B exist simultaneously, and B exists alone. In addition, the character "/" herein generally indicates that the former and latter associated objects are in an "or" relationship.
In order to facilitate a better understanding of the present technical solution for those skilled in the art, some terms in the present application are explained below.
A terminal device, which may also be referred to as a User Equipment (UE), a Mobile Station (MS), a Mobile Terminal (MT), etc., is a device that provides voice and/or data connectivity to a user. For example, the terminal device includes a handheld device, an in-vehicle device, and the like having a wireless connection function. Currently, the terminal device may be: a mobile phone (mobile phone), a tablet computer, a notebook computer, a palm top computer, a Mobile Internet Device (MID), a wearable device, a Virtual Reality (VR) device, an Augmented Reality (AR) device, a wireless terminal in industrial control (industrial control), a wireless terminal in self driving (self driving), a wireless terminal in remote surgery (remote medical supply), a wireless terminal in smart grid (smart grid), a wireless terminal in transportation safety (smart security), a wireless terminal in city (smart city), a wireless terminal in smart home (smart home), and the like.
The embodiment of the present application does not limit the system of the communication system, and the system may be a fifth generation (5th generation, 5G) communication system, or a future communication system, or a communication system evolved based on any generation of communication system. The communication system is divided into an access network and a core network. The access network is used to tandem the terminal device into the core network. The core network is used for accessing the terminal equipment to different data networks. In addition, according to the logical function division, the core network can be divided into a control plane and a user plane.
The control plane network element, which may also be referred to as a Control Plane Function (CPF) entity, is responsible for the logical function of the control plane in the core network. According to the division for implementing the control plane function, the control plane function entity may include a Session Management Function (SMF) entity, an access and mobility management function (AMF) entity, a unified data management function (UDM) entity, a Policy Control Function (PCF) entity, a network capability open function (NEF) entity, a Unified Data Repository (UDR) entity, and an Application Function (AF) entity.
The User plane network element, which may also be referred to as a User Plane Function (UPF) entity, is configured to forward User plane data (including an ethernet broadcast frame) of a terminal device.
And the Data Network (DN) provides service for the terminal equipment by carrying out data transmission with the terminal equipment. The data networks involved in the embodiments of the present application are all of the ethernet type (i.e., the data networks involved in the embodiments of the present application are ethernet networks). Accordingly, the session of the terminal device enabling the terminal device to access the data network is also of the ethernet type.
It should be noted that the data network according to the embodiment of the present application may be an ethernet network deployed outside the communication network, or may be an ethernet network deployed inside the communication system. Wherein, when the data network is an ethernet network within the communication system, the ethernet network is composed of at least one terminal device accessing the ethernet network through the communication system.
Referring to fig. 2, a diagram of a possible communication system architecture is provided according to an embodiment of the present application. In the communication system shown in fig. 2, the Access Network (AN) and the Core Network (CN) are divided into two parts.
The access network includes a base station, which is understood as AN device for accessing a terminal device to a wireless network in the communication system. AN device may also be referred to as AN Access Network (AN) node as a node of AN access network. Currently, some examples of AN devices are: a gbb, a Transmission Reception Point (TRP), an evolved Node B (eNB), a Radio Network Controller (RNC), a Node B (NB), a Base Station Controller (BSC), a Base Transceiver Station (BTS), a home base station (e.g., home evolved Node B, or home Node B, HNB), a Base Band Unit (BBU), and the like.
The network element in the core network comprises: control plane functional entities such as an AMF entity, an SMF entity, a UDM entity, a UDR entity, a NEF entity, a PCF entity and an AF entity, and a UPF entity.
The core network is used for accessing the terminal equipment into a DN capable of realizing the service of the terminal equipment. The functions of each network element in the core network are described below.
The AMF entity may be responsible for registration, mobility management, tracking area update procedures, and the like of the terminal device.
The SMF entity may be configured to be responsible for session management (including session establishment, modification, and release) of the terminal device, selection and reselection of a UPF entity, IP address allocation of the terminal device, QoS control, and the like.
The PCF entity can be used for taking charge of functions such as strategy control decision and the like.
The NEF entity may open some capability information of the communication system to a network outside the communication system and pass information between network element devices (e.g., VMF entity, AF entity).
The UDM entity can be used for managing subscription data of the terminal equipment, registration information related to the terminal equipment and the like.
And the AF entity is responsible for communicating with the DN outside the communication system and controlling and managing the DN outside the communication system.
The UPF entity can be used for forwarding user plane data (including Ethernet broadcast frames) of the terminal equipment.
In order to implement inter-group communication of UEs in different groups, an embodiment of the present application provides a virtual local area network communication method. It can be understood that before inter-group communication is performed, UE group creation, namely, UE group division and inter-group communication rule configuration are performed first, and the following detailed description is made with reference to the accompanying drawings.
Referring to fig. 3, a schematic flow chart of a virtual local area network communication method provided in the embodiment of the present application is shown. The method can be applied to the communication system shown in fig. 2, and the method is adopted to create the UE group, as shown in fig. 3, and mainly includes the following steps.
Step S301: and the Application Function (AF) entity sends a UE group creation request message to a control plane network element to create the UE group, wherein the UE group creation request message comprises the intra-group information and the inter-group information.
Specifically, the intra-group information includes a group identifier, a group member identifier, a packet data unit PDU session type, a data network name DNN, and/or a slice identifier; the inter-group information includes a group gateway IP address, a group gateway MAC address, and/or an inter-group access control list.
Step S302: and the control plane network element generates a message matching rule and a forwarding rule according to the intra-group information and the inter-group information, and sends the message matching rule and the forwarding rule to the user plane network element.
Specifically, after the control plane network element establishes a protocol data unit PDU session with the first UE, the control plane network element generates a packet matching rule and a forwarding rule corresponding to the first UE according to the intra-group information and the inter-group information.
Step S303: and the user plane network element matches and forwards the inter-group access message sent by the user equipment UE according to the message matching rule and the forwarding rule.
Specifically, the inter-group access packet is configured to be sent to a second UE, where the first UE and the second UE belong to different UE groups.
By adopting the technical scheme provided by the embodiment of the application, the mutual communication of the UE in different UE groups can be realized. The details will be described below.
Referring to fig. 4, a flowchart of a method for creating a UE group according to an embodiment of the present disclosure is shown. As shown in fig. 4, the above step S301 may include the following steps.
Step S401: and the Application Function (AF) entity sends a User Equipment (UE) group creation request message to a network capability opening function (NEF) entity.
Specifically, the UE group creation request message includes intra-group information and inter-group information, where the intra-group information is used to represent UE information in the same UE group and group information of the UE group, and the inter-group information is used to represent association information between different UE groups. Since it is necessary to implement inter-group communication of different groups, the UE group creation request message in the embodiment of the present application needs to include inter-group information.
In specific implementation, the information in the group includes a group identifier, a group member identifier, a session type of a packet data unit PDU, a data network name DNN, and/or a slice identifier; the inter-group information includes a group gateway IP address, a group gateway MAC address, and/or an inter-group access control list for controlling access rights of the UE.
Step S402: and the NEF entity creates a UE group according to the intra-group information and the inter-group information and sends the UE group information to a unified data management function (UDM) entity.
It is understood that, for inter-group communication, the UE group created by the NEF entity includes two or more UE groups, and the UE group information should also include intra-group information and inter-group information.
Referring to fig. 5, a reference diagram of a UE group according to an embodiment of the present application is provided. In fig. 5, a first UE group including UE1, UE2, UE3, and UE4, and a second UE group including UE5, UE6, UE7, and UE8 are shown. It is understood that the intra-group information includes intra-group information of the first UE group and intra-group information of the second UE group, and specifically includes a group identifier, a group member identifier, a packet data unit PDU session type, a data network name DNN and/or a slice identifier of the first UE group, and a group identifier, a group member identifier, a packet data unit PDU session type, a data network name DNN and/or a slice identifier of the second UE group. The inter-group information is the inter-group information of the first UE group and the second UE group, and specifically includes the gateway IP addresses, the gateway MAC addresses and/or the inter-group access control lists of the first UE group and the second UE group. In fig. 5, a connection line between a first UE group and a second UE group is used to represent an inter-group access control relationship, as shown in fig. 5, a UE1 in the first UE group may access a UE6 and a UE7 in the second UE group, a UE2 in the first UE group does not have an access right of the second UE group, a UE3 in the first UE group may access a UE5 in the second UE group, and a UE4 in the first UE group may access a UE7 in the second UE group. It is understood that fig. 5 is only an exemplary illustration, and a person skilled in the art may configure access rights of UEs between different groups according to actual needs, and may include a third UE group, a fourth UE group, and the like in addition to the first UE group and the second UE group, which is not limited in this application.
Step S403: and the UDM entity sends the UE group information to a Unified Data Repository (UDR) entity and stores the UE group information in the UDR entity.
And after the creation of the UE group is completed, the UDM entity sends the created UE group information to the UDR entity, and the UE group information is stored in the UDR entity to be called from the UDR entity when in use.
Step S404: the UDR entity sends a first reply message to the UDM entity.
And after the UDR entity finishes storing the UE group information, sending a first response message to the UDM entity to inform the UDM entity of finishing related operations.
Step S405: the UDM entity sends a second reply message to the NEF entity.
And after receiving the first response message, the UDM entity sends a second response message to the NEF entity to inform the NEF entity of finishing the related operation.
Step S406: and the NEF entity sends a third response message to the AF entity.
And after receiving the second response message, the NEF entity sends a third response message to the AF entity so as to inform the AF entity of finishing the related operation.
In the present embodiment, since the created UE group includes the inter-group information, it is possible to control mutual communication of UEs of different groups based on the inter-group information.
Referring to fig. 6, a schematic flow chart of a method for generating a message matching rule and a forwarding rule according to an embodiment of the present application is shown. As shown in fig. 6, the above step S302 may include the following steps.
Step S601: the first UE establishes a PDU session with the SMF entity.
Specifically, the first UE initiates a PDU session establishment procedure with the SMF entity, and the first UE establishes a PDU session with the SMF entity.
Step S602: and the SMF entity sends a user subscription request message to the UDM entity.
It should be understood that the UEs in the UE group created in the embodiment shown in fig. 4 are UEs that have completed a user subscription. The user subscription request message should include identification information of the first UE, so as to request the UDM entity to feed back the user subscription information of the first UE according to the user subscription request message.
Step S603: and the UDM entity acquires the user subscription information of the first UE in the UDR entity.
If the first UE is a UE in the UE group in the embodiment shown in fig. 4, since the UE group information is stored in the UDR entity in the embodiment shown in fig. 4, the user subscription information of the first UE may be acquired in the UDR entity.
The user subscription information includes intra-group information and inter-group information of a UE group to which the first UE belongs.
Step S604: and the UDM entity sends the user subscription information to the SMF entity.
And after acquiring the user subscription information, the UDM entity sends the user subscription information to the SMF entity.
Step S605: and the SMF entity determines the inter-group access authority information of the first UE according to the user subscription information.
Since the user subscription information includes intra-group information and inter-group information of the UE group to which the first UE belongs, the inter-group access right information of the first UE may be determined through the intra-group information and the inter-group information.
For example, the inter-group information includes an inter-group access control list, and the inter-group access control list includes information of UE members in other UE groups that the first UE can access. For example, in the embodiment shown in fig. 5, a UE1 within a first UE group may access a UE6 and a UE7 within a second UE group.
Step S606: and the SMF entity generates a message matching rule and a forwarding rule according to the intergroup access authority information.
The message matching rule and the forwarding rule are used for matching and forwarding the user plane message.
Step S607: and the SMF entity sends the message matching rule and the forwarding rule to the UDF entity.
And after the SMF entity generates a message matching rule and a forwarding rule, the SMF entity sends the message matching rule and the forwarding rule to the UDF entity.
In the embodiment of the present application, the generation of the message matching rule and the forwarding rule is completed according to the steps described in fig. 6, so that in the subsequent steps, the UDF entity forwards the received user plane message according to the message matching rule and the forwarding rule.
Referring to fig. 7, a schematic diagram of a packet matching and forwarding process provided in the embodiment of the present application is shown. As shown in fig. 7, it mainly includes the following steps.
Step S701: the first message is matched.
Specifically, for an inter-group access packet from a first UE, first, the inter-group access packet sent by the first UE is matched according to a first packet matching rule, where the first packet matching rule is: and the tunnel identifier carried in the tunnel header of the inter-group access packet is matched with the tunnel identifier distributed by the PDU session, and a receiving interface of the inter-group access packet is an access side or a core network side. It can be understood that the message is from the UE as the access side, and from other UPFs as the core network side.
Step S702: and forwarding the first message.
Specifically, if it is determined that the inter-group access packet conforms to the first packet matching rule, the inter-group access packet is forwarded to a virtual network internal interface, and a group identifier of the virtual network internal interface is set as a group identifier corresponding to the first UE. The group identifier corresponding to the first UE is determined according to a combination of a data network name DNN and a slice identifier of the PDU session, or is determined according to a tunnel identifier carried in a tunnel header of the inter-group access packet.
Step S703: and matching the second message.
Specifically, the inter-group access packet sent by the virtual network internal interface is matched according to a second packet matching rule, where the second packet matching rule is: the source interface is the internal interface of the virtual network, the group identifier is the group identifier corresponding to the first UE, and the destination address is the MAC address of the group gateway corresponding to the first UE.
Step S704: and forwarding the second message.
Specifically, if it is determined that the inter-group access packet conforms to the second packet matching rule, the inter-group access packet is forwarded to a virtual network external interface, and a group identifier of the virtual network external interface is set as a group identifier corresponding to the first UE. The group identifier corresponding to the first UE may also be determined according to a combination of a data network name DNN of the PDU session and a slice identifier, or according to a tunnel identifier carried in a tunnel header of the inter-group access packet.
Step S705: and matching the third message.
Specifically, the inter-group access packet sent by the virtual network external interface is matched according to a third packet matching rule, where the third packet matching rule is: the source interface is the external interface of the virtual network, the group identifier is the group identifier corresponding to the first UE, and the destination address is the IP address of the destination UE which allows the first UE to access.
Step S706: and forwarding the third message.
Specifically, if it is determined that the inter-group access packet conforms to the third packet matching rule, the source MAC address of the inter-group access packet is replaced with the gateway MAC address of the destination virtual network.
And forwarding the inter-group access packet to a second UE or a UPF entity corresponding to the second UE, wherein the second UE belongs to a second UE group. For example, if the second UE and the first UE belong to the same UPF entity, the UPF entity directly sends the inter-group access packet to the second UE, and if the second UE and the first UE belong to different UPF entities, the UPF entity needs to send the inter-group access packet to a UPF entity corresponding to the second UE, and forwards the inter-group access packet to the second UE through the UPF entity.
By adopting the technical scheme provided by the embodiment of the application, the UE in different groups can communicate with each other. In addition, a virtual network external interface is introduced into the UPF entity, and the inter-group communication is associated with the interface, so that the influence on the existing intra-group communication flow is eliminated, and the method is easy to realize.
Referring to fig. 8, a schematic flow chart of another method for generating a packet matching rule and a forwarding rule according to the embodiment of the present application is shown. The method does not generate the message matching rule and the forwarding rule immediately after the PDU session is established, but generates the message matching rule and the forwarding rule according to the message condition sent by the UE after the message sent by the UE is received, which is described in detail below.
Step S801: the first UE establishes a PDU session with the SMF entity.
It is understood that the SMF entity is a control plane network element. Specifically, the first UE initiates a PDU session establishment procedure with the SMF entity, and the first UE establishes a PDU session with the SMF entity.
Step S802: and the first UE sends the inter-group access message to the UPF entity.
It is understood that the UPF entity is a user plane network element. Specifically, after the PDU session is established between the first UE and the SMF entity, the first UE sends an inter-group access packet to the UPF entity, where the inter-group access packet is used to be sent to a second UE in the second UE group.
Step S803: and if the UPF entity judges that the message matching rule and the forwarding rule corresponding to the inter-group access message do not exist, the UPF entity sends the inter-group access message to the SMF entity.
In the embodiment of the present application, since the configuration of the packet matching rule and the forwarding rule is not performed before the inter-group access packet sent by the UE is received, when the packet is forwarded and matched after the first inter-group access packet is received, it is found that the packet matching rule corresponding to the inter-group access packet does not exist, and at this time, the inter-group access packet is sent to the SMF entity.
It can be understood that, if the UPF entity determines that the packet matching rule and the forwarding rule corresponding to the inter-group access packet exist, the UPF entity directly matches and forwards the inter-group access packet sent by the first UE according to the packet matching rule and the forwarding rule.
Step S804: and the SMF entity generates a message matching rule and a forwarding rule corresponding to the first UE.
For a generation manner of the message matching rule and the forwarding rule, reference may be made to the embodiment shown in fig. 6, and details are not described herein for brevity of description.
In addition, in one possible implementation manner, step S804: the SMF entity, in generating the packet matching rule and forwarding rule corresponding to the first UE, specifically includes the following steps:
step S8041: and the SMF entity judges whether to allow the first UE to access a second UE in the second UE group according to the inter-group access information.
The inter-group access information includes intra-group information and inter-group information of the first UE, and the SMF entity may determine whether to allow the first UE to access a second UE in the second UE group according to the inter-group access information.
For example, the inter-group information includes an inter-group access control list, and the inter-group access control list includes information of UE members in other UE groups that the first UE can access. For example, in the embodiment shown in fig. 5, the UE1 within the first UE group may access the UE6 and the UE7 within the second UE group, and may not access the UE5 and the UE8 within the second UE group.
Step S8042: and if the SMF entity judges that the first UE is allowed to access the second UE in the second UE group, generating a message matching rule and a forwarding rule corresponding to the first UE.
Step S8043: and if the SMF entity judges that the first UE is not allowed to access the second UE in the second UE group, the UDF entity discards the received inter-group access message.
Step S805: and the SMF entity sends the message matching rule and the forwarding rule corresponding to the first UE to the UPF entity.
After receiving the message matching rule and the forwarding rule corresponding to the first UE, the UPF entity may match and forward the inter-group access message sent by the first UE according to the message matching rule and the forwarding rule. For brevity, reference may be made to the description of the embodiment shown in FIG. 7, which is not repeated herein.
In the embodiment of the application, after the inter-group access message is received, the access authority of the UE is judged, and the steps of message matching rule generation and forwarding rule generation are executed when the requirement is met, so that the system performance overhead is saved.
In a specific implementation, an embodiment of the present application further provides a network device, where the network device includes one or more processors; a memory; and one or more computer programs, where the one or more computer programs are stored in the memory, and the one or more computer programs include instructions that, when executed by the user equipment, cause the network to perform some or all of the steps in the above method embodiments, and for brevity of description, the description of the steps is not repeated here.
In specific implementation, the present application further provides a computer storage medium, where the computer storage medium may store a program, and the program may include some or all of the steps in the embodiments provided in the present application when executed. The storage medium may be a magnetic disk, an optical disk, a read-only memory (ROM) or a Random Access Memory (RAM).
In a specific implementation, an embodiment of the present application further provides a computer program product, where the computer program product includes executable instructions, and when the executable instructions are executed on a computer, the computer is caused to perform some or all of the steps in the foregoing method embodiments.
In the embodiments of the present application, "at least one" means one or more, "a plurality" means two or more. "and/or" describes the association relationship of the associated objects, and means that there may be three relationships, for example, a and/or B, and may mean that a exists alone, a and B exist simultaneously, and B exists alone. Wherein A and B can be singular or plural. The character "/" generally indicates that the former and latter associated objects are in an "or" relationship. "at least one of the following" and similar expressions refer to any combination of these items, including any combination of singular or plural items. For example, at least one of a, b, and c may represent: a, b, c, a-b, a-c, b-c, or a-b-c, wherein a, b, c may be single or multiple.
Those of ordinary skill in the art will appreciate that the various elements and algorithm steps described in connection with the embodiments disclosed herein can be implemented as electronic hardware, computer software, or combinations of electronic hardware. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the several embodiments provided by the present invention, any function, if implemented in the form of a software functional unit and sold or used as a separate product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a read-only memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
The above description is only an embodiment of the present invention, and any person skilled in the art can easily conceive of changes or substitutions within the technical scope of the present invention, and all the changes or substitutions should be covered within the protection scope of the present invention. The protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (12)

1. A virtual local area network communication method, comprising:
an Application Function (AF) entity sends a UE group creation request message to a control plane network element to create a UE group, wherein the UE group creation request message comprises group-in information and group-between information;
the control plane network element generates a message matching rule and a forwarding rule according to the intra-group information and the inter-group information, and sends the message matching rule and the forwarding rule to a user plane network element;
the user plane network element matches and forwards the inter-group access message sent by the user equipment UE according to the message matching rule and the forwarding rule;
wherein, the said user plane network element matches and transmits the intergroup access message sent by the user equipment UE according to the said message matching rule and forwarding rule, including:
the UPF entity matches the inter-group access message sent by the first UE according to a first message matching rule, wherein the first message matching rule is as follows: a tunnel identifier carried in a tunnel header of the inter-group access packet is matched with a tunnel identifier allocated to the PDU session of the first UE, a receiving interface of the inter-group access packet is an access side or a core network side, and the first UE belongs to a first UE group;
if the UPF entity judges that the inter-group access packet conforms to the first packet matching rule, forwarding the inter-group access packet to a virtual network internal interface, and setting a group identifier of the virtual network internal interface as a group identifier corresponding to the first UE;
the UPF entity matches the inter-group access messages sent by the virtual network internal interface according to a second message matching rule, wherein the second message matching rule is as follows: the source interface is the internal interface of the virtual network, the group identifier is the group identifier corresponding to the first UE, and the destination address is the MAC address of the group gateway corresponding to the first UE;
if the UPF entity judges that the inter-group access packet conforms to the second packet matching rule, forwarding the inter-group access packet to a virtual network external interface, and setting a group identifier of the virtual network external interface as a group identifier corresponding to the first UE;
the UPF entity matches the inter-group access messages sent by the virtual network external interface according to a third message matching rule, wherein the third message matching rule is as follows: the source interface is the external interface of the virtual network, the group identifier is the group identifier corresponding to the first UE, and the destination address is the IP address of the destination UE which allows the first UE to access;
if the UPF entity judges that the inter-group access packet conforms to the third packet matching rule, replacing the source MAC address of the inter-group access packet with the gateway MAC address of the destination virtual network;
and the UPF entity forwards the inter-group access packet to a second UE or a UPF entity corresponding to the second UE, wherein the second UE belongs to a second UE group.
2. The method of claim 1, wherein the sending, by the AF entity, the UE group creation request message to the control plane network element to create the UE group, comprises:
an Application Function (AF) entity sends a User Equipment (UE) group creation request message to a network capability opening function (NEF) entity, wherein the UE group creation request message comprises intra-group information and inter-group information, the intra-group information is used for representing UE information in the same UE group and the group information of the UE group, and the inter-group information is used for representing association information between different UE groups;
the NEF entity creates a UE group according to the intra-group information and the inter-group information and sends the UE group information to a unified data management function (UDM) entity, wherein the UE group information comprises the intra-group information and the inter-group information;
and the UDM entity sends the UE group information to a Unified Data Repository (UDR) entity and stores the UE group information in the UDR entity.
3. The method of claim 2, wherein the intra-group information comprises a group identification, a group member identification, a packet data unit, PDU, session type, a data network name, DNN, and/or a slice identification;
the inter-group information includes a group gateway IP address, a group gateway MAC address, and/or an inter-group access control list.
4. The method of claim 2, wherein the control plane network element generates a packet matching rule and a forwarding rule according to the intra-group information and the inter-group information, and comprises:
a Session Management Function (SMF) entity receives a Protocol Data Unit (PDU) session establishment flow initiated by first User Equipment (UE), and establishes a PDU session with the first UE, wherein the first UE belongs to a first UE group;
the SMF entity sends a user signing request message to the UDM entity, wherein the user signing request message is used for indicating the UDM entity to feed back user signing information of the first UE;
the UDM entity acquires user subscription information of the first UE in the UDR entity, wherein the user subscription information comprises intra-group information and inter-group information corresponding to the first UE;
the UDM entity sends the user subscription information to the SMF entity;
the SMF entity determines inter-group access authority information of the first UE according to the user subscription information;
and the SMF entity generates a message matching rule and a forwarding rule corresponding to the first UE according to the inter-group access right information.
5. The method of claim 1, wherein the group identity corresponding to the first UE is determined according to a combination of a data network name, DNN, and a slice identity of the PDU session; and/or the presence of a gas in the gas,
and determining according to the tunnel identifier carried in the tunnel header of the inter-group access packet.
6. The method of claim 4, wherein the control plane network element generates a packet matching rule and a forwarding rule according to the intra-group information and the inter-group information, and sends the packet matching rule and the forwarding rule to a user plane network element, and the method comprises:
a user plane network element receives a Protocol Data Unit (PDU) session establishment flow initiated by first UE, and establishes a PDU session with the first UE, wherein the first UE belongs to a first UE group;
the user plane network element receives an inter-group access message sent by the first UE, wherein the inter-group access message is used for being sent to a second UE in a second UE group;
if the user plane network element judges that the message matching rule and the forwarding rule corresponding to the inter-group access message do not exist, the inter-group access message is sent to the control plane network element;
and the control plane network element generates a message matching rule and a forwarding rule corresponding to the first UE, and sends the message matching rule and the forwarding rule to the user plane network element.
7. The method of claim 6, wherein the generating, by the control plane network element, the packet matching rule and the forwarding rule corresponding to the first UE comprises:
the control plane network element judges whether the first UE is allowed to access the second UE according to the inter-group access information;
and if the SMF entity judges that the first UE is allowed to access the second UE, generating a message matching rule and a forwarding rule corresponding to the first UE.
8. The method of claim 6, wherein after the receiving, by the user plane network element, the inter-group access packet sent by the first UE, the method further comprises:
and if the user plane network element judges that a message matching rule corresponding to the inter-group access message exists, matching and forwarding the inter-group access message sent by the first UE according to the message matching rule and the forwarding rule.
9. The method of claim 6, wherein the user plane network element is a User Plane Function (UPF) entity, and if the user plane network element determines that there is no packet matching rule corresponding to the inter-group access packet, the sending the inter-group access packet to the control plane network element comprises:
and if the UPF entity judges that no message matching rule corresponding to the inter-group access message exists, sending the inter-group access message to a Session Management Function (SMF) entity.
10. The method of claim 9, wherein the generating, by the control plane network element, the packet matching rule and the forwarding rule corresponding to the first UE comprises:
the SMF entity sends a user signing request message to the UDM entity, wherein the user signing request message is used for indicating the UDM entity to feed back user signing information of the first UE;
the UDM entity acquires user subscription information of the first UE in the UDR entity, wherein the user subscription information comprises intra-group information and inter-group information corresponding to the first UE;
the UDM entity sends the user subscription information to the SMF entity;
the SMF entity determines inter-group access authority information of the first UE according to the user subscription information;
and the SMF entity generates a message matching rule and a forwarding rule corresponding to the first UE according to the inter-group access right information.
11. A network device, comprising:
one or more processors;
a memory;
and one or more computer programs, wherein the one or more computer programs are stored in the memory, the one or more computer programs comprising instructions which, when executed by the network device, cause the network device to perform the method of any of claims 1-10.
12. A computer-readable storage medium, comprising a stored program, wherein the program, when executed, controls an apparatus in which the computer-readable storage medium is located to perform the method of any one of claims 1-10.
CN202011471735.4A 2020-12-14 2020-12-14 Virtual local area network communication method, equipment and storage medium Active CN112583693B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011471735.4A CN112583693B (en) 2020-12-14 2020-12-14 Virtual local area network communication method, equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011471735.4A CN112583693B (en) 2020-12-14 2020-12-14 Virtual local area network communication method, equipment and storage medium

Publications (2)

Publication Number Publication Date
CN112583693A CN112583693A (en) 2021-03-30
CN112583693B true CN112583693B (en) 2022-06-21

Family

ID=75136182

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011471735.4A Active CN112583693B (en) 2020-12-14 2020-12-14 Virtual local area network communication method, equipment and storage medium

Country Status (1)

Country Link
CN (1) CN112583693B (en)

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115412946A (en) * 2021-05-28 2022-11-29 展讯半导体(南京)有限公司 Method and device for establishing mobile communication local area network
CN115567440A (en) * 2021-07-02 2023-01-03 中国移动通信有限公司研究院 Method and device for realizing communication between local area networks
CN113225697B (en) * 2021-07-07 2021-11-09 中兴通讯股份有限公司 Group user communication method, device, network equipment and storage medium
CN115776665B (en) * 2021-09-06 2024-04-19 中国联合网络通信集团有限公司 VN group configuration method, device, equipment and storage medium
CN113938872B (en) * 2021-09-22 2023-10-20 中国联合网络通信集团有限公司 Communication method, device, system and computer storage medium
CN114143795B (en) * 2021-12-14 2024-01-30 天翼物联科技有限公司 Local area network networking method and system based on 5G network
CN114268975B (en) * 2021-12-30 2024-08-09 华为技术有限公司 Communication method and device
CN114827908B (en) * 2022-04-06 2023-06-30 中国联合网络通信集团有限公司 VN group communication method, device, equipment and storage medium
CN115776678B (en) * 2022-11-14 2024-04-02 中国联合网络通信集团有限公司 Networking method, server and medium based on 5G local area network
CN118055061A (en) * 2022-11-15 2024-05-17 中移(成都)信息通信科技有限公司 Message forwarding method, device, equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110417633A (en) * 2018-04-28 2019-11-05 华为技术有限公司 A kind of communication means and equipment
CN110830925A (en) * 2018-08-14 2020-02-21 华为技术有限公司 Session management method and device for user group
WO2020233532A1 (en) * 2019-05-17 2020-11-26 华为技术有限公司 Virtual network communication method, device and system

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111031080B (en) * 2018-10-09 2021-06-29 华为技术有限公司 Message transmission method and device
CN116346604A (en) * 2019-05-07 2023-06-27 华为技术有限公司 Configuration method of routing rule and communication device
CN110535744B (en) * 2019-08-29 2021-12-24 新华三信息安全技术有限公司 Message processing method and device and Leaf equipment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110417633A (en) * 2018-04-28 2019-11-05 华为技术有限公司 A kind of communication means and equipment
CN110830925A (en) * 2018-08-14 2020-02-21 华为技术有限公司 Session management method and device for user group
WO2020233532A1 (en) * 2019-05-17 2020-11-26 华为技术有限公司 Virtual network communication method, device and system

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
Huawei.R3-161759 "RAN Support for Core Network Slicing".《3GPP tsg_ran\WG3_Iu》.2016, *
Nokia等.S2-1903311 "5G LAN group communication with UPF autonomous traffic forwarding".《3GPP tsg_sa\wg2_arch》.2019, *

Also Published As

Publication number Publication date
CN112583693A (en) 2021-03-30

Similar Documents

Publication Publication Date Title
CN112583693B (en) Virtual local area network communication method, equipment and storage medium
JP7274582B2 (en) Method and apparatus for supporting local area networks (LANs)
CN113114617B (en) Communication method, system and storage medium
EP3879879B1 (en) Time sensitive networking communication method and apparatus thereof
US11463280B2 (en) Communication method and device
CN109842906B (en) Communication method, device and system
CN112153098B (en) Application migration method and device
US9736672B2 (en) Targeted group-based discovery for wireless communication devices
WO2020224556A1 (en) Method for managing routing rule and communication device
CN107438981B (en) Wireless client traffic continuity across controller failover and load balancing
WO2023011217A1 (en) Communication method and apparatus
WO2019042321A1 (en) Method and apparatus for separating management data of network section sub-network instances
CN114980243B (en) Data forwarding method, device and storage medium
KR20210143563A (en) Apparatus and method for providing deterministic communication in mobile network
CN112631753B (en) Task unloading method, device and storage medium
CN113595911B (en) Data forwarding method and device, electronic equipment and storage medium
CN103973570B (en) A kind of method of message transmissions, AP and system
CN112511403A (en) Virtual local area network communication method, equipment and storage medium
CN117676916A (en) Communication resource management method, device, system and storage medium
CN114980074A (en) Data communication method, device, equipment and medium based on virtual local area network
WO2024169468A1 (en) Communication method and communication apparatus
WO2023169473A1 (en) Service processing method, apparatus, communication device and readable storage medium
CN113438641B (en) Group processing method, equipment and storage medium
WO2023077948A1 (en) Communication method and apparatus
JP2024531263A (en) COMMUNICATION TUNNEL MANAGEMENT METHOD, APPARATUS, AND SYSTEM

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant