CN114040470A - Terminal route control method, device, equipment and storage medium - Google Patents

Terminal route control method, device, equipment and storage medium Download PDF

Info

Publication number
CN114040470A
CN114040470A CN202111452387.0A CN202111452387A CN114040470A CN 114040470 A CN114040470 A CN 114040470A CN 202111452387 A CN202111452387 A CN 202111452387A CN 114040470 A CN114040470 A CN 114040470A
Authority
CN
China
Prior art keywords
route
network element
target terminal
routing
policy
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111452387.0A
Other languages
Chinese (zh)
Inventor
谢沛荣
陈洁
吴敏清
张岚
王庆扬
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Telecom Corp Ltd
Original Assignee
China Telecom Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Telecom Corp Ltd filed Critical China Telecom Corp Ltd
Priority to CN202111452387.0A priority Critical patent/CN114040470A/en
Publication of CN114040470A publication Critical patent/CN114040470A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W40/00Communication routing or communication path finding
    • H04W40/02Communication route or path selection, e.g. power-based or shortest path routing
    • H04W40/023Limited or focused flooding to selected areas of a network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/147Signalling methods or messages providing extensions to protocols defined by standardisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W76/00Connection management
    • H04W76/10Connection setup
    • H04W76/11Allocation or use of connection identifiers

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The disclosure provides a terminal routing control method, device, equipment and storage medium, and relates to the technical field of communication. The method comprises the following steps: sending a query request to a Policy Control Function (PCF) network element, wherein the query request carries a permanent identifier (SUPI) of a signed user; receiving routing strategy URSP information returned by the PCF network element based on the query request, wherein the URSP information is URSP information of a target terminal corresponding to the SUPI; according to the URSP information, a route limiting strategy of the target terminal is constructed, and the route limiting strategy is used for controlling the route of the target terminal; and sending the route restriction strategy to a User Plane Function (UPF) network element so that the UPF network element controls the route of the target terminal based on the route restriction strategy.

Description

Terminal route control method, device, equipment and storage medium
Technical Field
The present disclosure relates to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a storage medium for managing and controlling a terminal route.
Background
In the 5G system, the network side may issue a URSP (UE Routing Selection Policy) to control which slice and DNN a user accesses under what circumstances, that is, to control the Routing of the user.
However, in the current 3GPP standard, after the network side issues the URSP to the terminal, the terminal cannot be guaranteed to execute strictly according to the URSP. That is to say, the 5G network has limited control power on the terminal behavior, and the network side cannot check whether the terminal strictly executes the URSP, so that there is a risk that the user abuses the network resources.
It is to be noted that the information disclosed in the above background section is only for enhancement of understanding of the background of the present disclosure, and thus may include information that does not constitute prior art known to those of ordinary skill in the art.
Disclosure of Invention
The invention provides a method, a device, equipment and a storage medium for managing and controlling a terminal route, which can reversely generate a route restriction policy of a user according to URSP information of the user and issue and execute the route restriction policy, thereby realizing the check of a network side on the execution behavior of the UE route policy, enhancing the network control capability and overcoming the problems that the network side cannot check whether the terminal strictly executes the URSP or not and the control capability of a 5G network on the terminal behavior is poor in the related technology at least to a certain extent.
Additional features and advantages of the disclosure will be set forth in the detailed description which follows, or in part will be obvious from the description, or may be learned by practice of the disclosure.
According to one aspect of the present disclosure, a terminal routing management and control method is provided, which is applied to a session management function SMF network element, and the method includes:
sending a query request to a Policy Control Function (PCF) network element, wherein the query request carries a permanent identifier (SUPI) of a signed user;
receiving routing strategy URSP information returned by the PCF network element based on the query request, wherein the URSP information is URSP information of a target terminal corresponding to the SUPI;
according to the URSP information, a route limiting strategy of the target terminal is constructed, and the route limiting strategy is used for controlling the route of the target terminal;
and sending the route restriction strategy to a User Plane Function (UPF) network element so that the UPF network element controls the route of the target terminal based on the route restriction strategy.
In an embodiment of the present disclosure, the URSP information includes N sub-policies, each sub-policy includes application description information and a routing policy corresponding to the application description information;
and the application description information is used for determining the routing strategy of the target terminal service by the target terminal based on the application description information.
In one embodiment of the present disclosure, the route of the target terminal includes a plurality of protocol data unit, PDU, sessions established for the target terminal based on the URSP information; the routing restriction policy is recorded with service information that is allowed to be executed in the slice or data network name DNN corresponding to the current session.
In an embodiment of the present disclosure, constructing a routing restriction policy of a target terminal according to the URSP information includes:
reversely collecting service information which is allowed to be executed by the current session corresponding to the slice and/or the DNN according to the URSP information;
and constructing a routing restriction strategy of the target terminal based on the collected service information.
In one embodiment of the present disclosure, the URSP information is also used for the target terminal to establish a PDU session;
sending a query request to a Policy Control Function (PCF) network element, wherein the query request comprises the following steps:
in the process of establishing PDU session by target terminal, sending inquiry request to policy control function PCF network element,
or after the target terminal establishes the PDU session process, sending a query request to the PCF network element.
According to another aspect of the present disclosure, a method for managing and controlling a terminal route is provided, where the method is applied to a policy control function PCF network element, and the method includes:
receiving a query request from a Session Management Function (SMF) network element, wherein the query request carries a permanent identifier (SUPI) of a signed user;
determining URSP information of a target terminal corresponding to the SUPI based on the SUPI;
and sending URSP information of the target terminal to the SMF network element so that the UPF network element controls the route of the target terminal based on a route restriction strategy, wherein the route restriction strategy is constructed by the SMF network element according to the URSP information.
According to another aspect of the present disclosure, a method for managing and controlling a terminal route is provided, which is applied to a user plane function UPF network element, and the method includes:
receiving a routing restriction strategy from a Session Management Function (SMF) network element, wherein the routing restriction strategy is constructed by the SMF network element according to URSP information;
and managing and controlling the route of the target terminal based on the route limiting strategy.
In an embodiment of the present disclosure, managing and controlling a route of a target terminal based on a route restriction policy includes:
and allowing the target service recorded in the routing restriction policy to execute, and restricting the execution of the non-target service, wherein the target service is the service which is recorded in the routing restriction policy and allowed to execute in the slice or the data network name DNN corresponding to the current session.
According to another aspect of the present disclosure, there is provided a terminal routing management and control apparatus, applied to a session management function SMF network element, the apparatus including:
the system comprises a first sending module, a second sending module and a policy control function PCF network element, wherein the first sending module is used for sending a query request to the PCF network element, and the query request carries a permanent mark SUPI of a signed user;
a first receiving module, configured to receive a routing policy URSP information returned by the PCF network element based on the query request, where the URSP information is a URSP information of a target terminal corresponding to the SUPI;
the construction module is used for constructing a route restriction strategy of the target terminal according to the URSP information, and the route restriction strategy is used for controlling the route of the target terminal;
and the second sending module is used for sending the route restriction policy to the UPF network element so that the UPF network element controls the route of the target terminal based on the route restriction policy.
According to another aspect of the present disclosure, a terminal routing management and control apparatus is provided, which is applied to a policy control function PCF network element, and the apparatus includes:
a second receiving module, configured to receive a query request from a SMF network element, where the query request carries a persistent subscriber identity SUPI;
the determining module is used for determining URSP information of a target terminal corresponding to the SUPI based on the SUPI;
and the third sending module is used for sending the URSP information of the target terminal to the SMF network element so that the UPF network element controls the route of the target terminal based on a route limiting strategy, and the route limiting strategy is constructed by the SMF network element according to the URSP information.
According to another aspect of the present disclosure, there is provided a terminal routing control apparatus, applied to a user plane function UPF network element, the apparatus including:
a third receiving module, configured to receive a routing restriction policy from the SMF network element, where the routing restriction policy is constructed by the SMF network element according to the URSP information;
and the management and control module is used for managing and controlling the route of the target terminal based on the route restriction strategy.
According to still another aspect of the present disclosure, there is provided an electronic device including: a processor; and a memory for storing executable instructions of the processor; wherein the processor is configured to execute the above-described terminal route management and control method via execution of the executable instructions.
According to still another aspect of the present disclosure, there is provided a computer-readable storage medium having stored thereon a computer program which, when executed by a processor, implements the terminal route management method described above.
According to the terminal routing control method provided by the embodiment of the disclosure, an SMF network element inquires URSP information of a target terminal from a PCF network element, and a routing restriction strategy of the target terminal is constructed according to the URSP information; then, the route restriction policy is sent to the user plane function UPF network element, and the UPF network element can control the route of the target terminal based on the route restriction policy, so that the network side can check the execution behavior of the route policy of the target terminal, the network control capability is greatly enhanced, and the abuse of relevant network resources by the user is avoided.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the disclosure.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present disclosure and together with the description, serve to explain the principles of the disclosure. It is to be understood that the drawings in the following description are merely exemplary of the disclosure, and that other drawings may be derived from those drawings by one of ordinary skill in the art without the exercise of inventive faculty.
Fig. 1 illustrates a network architecture diagram in an embodiment of the disclosure;
fig. 2 is a schematic flowchart illustrating a method for managing and controlling a terminal route according to an embodiment of the present disclosure;
fig. 3 shows a schematic diagram of a 5G communication terminal routing management and control flow in the embodiment of the present disclosure;
fig. 4 shows a schematic flow chart of a terminal route management and control method applied to SMF in the present disclosure;
fig. 5 is a schematic flow chart of a terminal route control method applied to PCF in the present disclosure;
fig. 6 is a schematic flow chart of a terminal route management and control method applied to UPF according to the present disclosure;
fig. 7 shows one of schematic diagrams of a terminal routing management and control apparatus in an embodiment of the present disclosure;
fig. 8 is a second schematic diagram of a terminal routing control apparatus according to the embodiment of the present disclosure;
fig. 9 is a third schematic diagram of a terminal routing control apparatus according to an embodiment of the present disclosure;
fig. 10 shows a block diagram of a computer device in an embodiment of the present disclosure.
Detailed Description
Example embodiments will now be described more fully with reference to the accompanying drawings. Example embodiments may, however, be embodied in many different forms and should not be construed as limited to the examples set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the concept of example embodiments to those skilled in the art. The described features, structures, or characteristics may be combined in any suitable manner in one or more embodiments.
Furthermore, the drawings are merely schematic illustrations of the present disclosure and are not necessarily drawn to scale. The same reference numerals in the drawings denote the same or similar parts, and thus their repetitive description will be omitted. Some of the block diagrams shown in the figures are functional entities and do not necessarily correspond to physically or logically separate entities. These functional entities may be implemented in the form of software, or in one or more hardware modules or integrated circuits, or in different networks and/or processor devices and/or microcontroller devices.
To facilitate understanding of the disclosed embodiments, an application scenario of the disclosed embodiments is first described in detail with reference to fig. 1.
Fig. 1 is a schematic diagram of a network architecture suitable for use in the methods provided by embodiments of the present disclosure. As shown in fig. 1, the network architecture may be, for example, a non-roaming (non-roaming) architecture. The network architecture may specifically include the following network elements:
1. terminal equipment (UE): may be referred to as user equipment, a terminal, an access terminal, a subscriber unit, a subscriber station, a mobile station, a remote terminal, a mobile device, a user terminal, a wireless communication device, a user agent, or user equipment.
The UE may also be a cellular phone, a cordless phone, a Session Initiation Protocol (SIP) phone, a Wireless Local Loop (WLL) station, a Personal Digital Assistant (PDA), a handheld device with wireless communication function, a computing device or other processing device connected to a wireless modem, a vehicle-mounted device, a wearable device, a terminal device in a 5G network or a terminal device in a Public Land Mobile Network (PLMN) for future evolution, and the like, and may also be an end device, a logic entity, an intelligent device, a terminal device such as a mobile phone, an intelligent terminal, and the like, or a communication device such as a server, a gateway, a base station, a controller, and the like, or an Internet of things device such as a sensor, an electric meter, a water meter, and the like (Internet of things, IoT) device. The disclosed embodiments are not limited thereto.
2. Access Network (AN): the method provides a network access function for authorized users in a specific area, and can use transmission tunnels with different qualities according to the level of the users, the requirements of services and the like. The access network may be an access network employing different access technologies. There are two types of current radio access technologies: third Generation Partnership Project (3 GPP) access technologies such as the radio access technologies employed in 3G, 4G or 5G systems and non-third Generation Partnership Project (non-3GPP) access technologies. The 3GPP Access technology refers to an Access technology meeting 3GPP standard specifications, and an Access Network adopting the 3GPP Access technology is referred to as a Radio Access Network (RAN), where an Access Network device in a 5G system is referred to as a next generation Base station (gNB). The non-3GPP access technology refers to an access technology that does not conform to the 3GPP standard specification, for example, an air interface technology represented by an Access Point (AP) in wifi.
An access network that implements an access network function based on a wireless communication technology may be referred to as a Radio Access Network (RAN). The radio access network can manage radio resources, provide access service for the terminal, and further complete the forwarding of control signals and user data between the terminal and the core network.
3. Access and mobility management function (AMF) entity: the method is mainly used for mobility management, access management, and the like, and can be used for implementing functions other than session management in Mobility Management Entity (MME) functions, such as functions of lawful interception, or access authorization (or authentication), and the like. In the embodiment of the disclosure, the method can be used for realizing the functions of the access and mobility management network element.
4. Session Management Function (SMF) entity: the method is mainly used for session management, Internet Protocol (IP) address allocation and management of the UE, selection of a termination point of an interface capable of managing a user plane function, policy control or charging function, downlink data notification, and the like. In the embodiment of the present disclosure, the method may be used to implement a function of a session management network element.
5. User Plane Function (UPF) entity: i.e. a data plane gateway. The method can be used for packet routing and forwarding, or quality of service (QoS) processing of user plane data, and the like. The user data can be accessed to a Data Network (DN) through the network element. In the embodiment of the disclosure, the method can be used for realizing the function of the user plane gateway.
6. Data Network (DN): for providing a network for transmitting data. Such as a network of carrier services, an Internet network, a third party's service network, etc.
7. Authentication server function (AUSF) entity: the method is mainly used for user authentication and the like.
8. Policy Control Function (PCF) entity: the unified policy framework is used for guiding network behaviors, providing policy rule information for control plane function network elements (such as AMF and SMF network elements) and the like.
9. Unified Data Management (UDM) entity: for handling subscriber identification, access authentication, registration, or mobility management, etc.
It should be understood that the network architecture applied to the embodiments of the present disclosure is only an exemplary network architecture described from the perspective of a traditional point-to-point architecture and a service architecture, and the network architecture to which the embodiments of the present disclosure are applied is not limited thereto, and any network architecture capable of implementing the functions of the above network elements is applicable to the embodiments of the present disclosure.
It should also be understood that the AMF entity, SMF entity, UPF entity, NSSF entity, NEF entity, AUSF entity, NRF entity, PCF entity, UDM entity shown in fig. 1 may be understood as network elements in the core network for implementing different functions, e.g. may be combined into network slices as needed. These core network elements may be independent devices, or may be integrated in the same device to implement different functions, which is not limited in this disclosure.
Hereinafter, for convenience of description, an entity for implementing AMF will be referred to as an AMF network element, and an entity for implementing PCF will be referred to as a PCF network element. It should be understood that the above-mentioned names are only used for distinguishing different functions, and do not represent that these network elements are respectively independent physical devices, and the present disclosure does not limit the specific form of the above-mentioned network elements, for example, the network elements may be integrated into the same physical device, or may be different physical devices. Furthermore, the above nomenclature is only used to distinguish between different functions, and should not constitute any limitation on the present disclosure, which does not preclude the possibility of employing other nomenclature in 5G networks as well as in other networks in the future. For example, in a 6G network, some or all of the above network elements may follow the terminology in 5G, and may also adopt other names, etc. The description is unified here, and will not be repeated below.
In the 5G system, the network side may issue a URSP (UE Routing Selection Policy) to control which slice and DNN a user accesses under what circumstances, that is, to control the Routing of the user.
However, in the current 3GPP standard, after the network side issues the URSP to the terminal, the terminal cannot be guaranteed to execute strictly according to the URSP. That is, the network side cannot check whether the terminal strictly executes the URSP, which results in limited control of the 5G network on the terminal behavior and also makes it possible for the user to abuse the network resources.
Aiming at the problem that the current network side can not verify whether the terminal strictly executes the routing strategy according to the URSP issued by the network, the invention provides a method, a device, equipment and a storage medium for managing and controlling the terminal routing.
The present exemplary embodiment will be described in detail below with reference to the drawings and examples.
As shown in fig. 2, the method for managing and controlling a terminal route provided in the embodiment of the present disclosure includes the following steps:
step S202, SMF network element sends query request to PCF network element, the query request carries permanent mark SUPI of signed user;
step S204, the PCF network element determines the URSP information of the target terminal corresponding to the SUPI based on the SUPI;
step S206, the SMF network element constructs a route limiting strategy of the target terminal according to the URSP information, and the route limiting strategy is used for controlling the route of the target terminal;
and step S208, the UPF network element controls the route of the target terminal based on the route restriction strategy.
The above steps are described in detail below, specifically as follows:
for ease of understanding, the URSP information in the above steps will be described first.
The PCF provides the URSP information to the terminal device that it needs to follow, so that the terminal device will route the data to be sent by the Application (APP) according to one or more rules in the URSP information, including routing to an already established Protocol Data Unit (PDU) session, or triggering the establishment of a new PDU session, or whether it can be offloaded to a non-3GPP access outside the PDU session. The URSP information may include the following contents:
"flow filtration (traffic filter): application identification (app ID) ": indicating which applications apply to the rule;
seamless unloading (non-seamless offload): indicating whether the corresponding PDU session can be offloaded (offloaded) to a Wireless Local Area Network (WLAN);
slice information (slice info): a single or multiple slices (S-NSSAI) for indicating that a corresponding PDU session is supported by an application;
continuity Types (CT): a session and service continuity mode (SSC mode) for indicating a session and service continuity mode (SSC mode) that can be used for applying a corresponding PDU session;
data Network Name (DNN): the PDU conversation corresponding to the application supports the name information of the data network;
access Type (AT): indicating the access type of the PDU session corresponding to the application.
The name of the parameter information in the URSP information is different but the meaning of the parameter information is the same as the network architecture evolves and a new service scenario appears. The name may be modified in the subsequent new service scenario, but the same parameter is indicated as long as the meaning is not changed.
For example, the flow filtration becomes: a traffic description (traffic descriptor);
the seamless unloading becomes: a non-seamless download indication (non-seamless download indication);
the slice information becomes: network slice selection (network slice selection);
the continuity type becomes: session continuity mode selection (SSC mode selection);
the data network name becomes: data network name selection (DNN selection);
the access type becomes: an access type (access type preference) is preferred.
Meanwhile, the new service scene is also added with: a route selection description (route selection descriptor) for describing components of the route selection.
The routing description includes parameters such as seamless download indication, network slice selection, session continuity mode selection, data network name selection and preferred access type.
In addition, the new service scene is added with: the priority (rule precedence) of the URSP rule and the route selection description priority (route selection description precedence) are used to describe the priority of the URSP rule and the priority of the route selection description, respectively.
Wherein the URSP rule includes a priority of the rule, a traffic description, one or more routing descriptions; the routing description also includes the parameters of the priority of the routing description, the indication of seamless downloading, the selection of network slice, the selection of session continuity mode, the selection of data network name and the preferred access type.
The network slice selection, the session continuity mode selection, the data network name selection and the preferred access type are PDU session parameters and are used for matching with the existing PDU session or building a new PDU session.
And, if the seamless download indication is included in the routing description, the routing description will not include network slice selection, session continuity mode selection, data network name selection and preferred access type.
In the above steps, the network side issues the URSP, specifically, the PCF configures the URSP of the user, then the PCF issues the URSP to the terminal UE via the AMF, and the UE receives the URSP issued by the network side and then installs and executes the URSP.
In some embodiments, on the basis of the above steps, a step of the UE establishing a PDU session may be further included. Specifically, the UE establishes a PDU session on demand according to the installed URSP.
Before step S206, SMF queries PCF to obtain URSP information of the user. The SMF sends a URSP query request carrying the user's SUPI (Subscriber Permanent Identifier) to the PCF, and the PCF then returns a URSP query response carrying the user's complete URSP information to the SMF.
It should be noted that, the SMF querying the PCF to acquire the URSP information of the user may be performed together during the PDU session, or may be performed after the session is established.
In the above steps S206 to S208, the SMF network element constructs a route restriction policy of the target terminal according to the URSP information, and the UPF network element controls the route of the target terminal based on the route restriction policy.
The route restriction policy is used for managing and controlling the route of the target terminal.
In a scenario without a routing restriction policy, the PCF may first send the URSP information to the AMF, and then the AMF sends the URSP information to the access network device (e.g., the gNB), and the access network device sends the URSP information to the terminal device.
The URSP information includes at least one URSP rule, each URSP rule corresponds to at least one APP, that is, when any one of the at least one APP is started, the URSP rule can be searched according to the URSP parameter of the application, and the data to be sent by the APP is routed according to the URSP rule.
The terminal device may use the URSP rules to determine how to route outgoing traffic. The end device may route traffic to an established PDU session, may offload traffic to a non-3GPP access outside of the PDU session, or may trigger establishment of a new PDU session.
By way of example, the URSP parameters may include one or more of a traffic description, a seamless download indication, a network slice selection, a session continuity mode selection, a data network name, an access type, and a routing description, among others.
In step S206, the SMF generates a route restriction policy for the current session-corresponding slice and the DNN from the URSP. The URSP is composed of one or more specific strategies, each strategy comprises two parts of application description and corresponding routing strategy, when UE carries out routing selection, the service to be initiated is used for matching the application description in the URSP, and the corresponding routing strategy is applied when the service is matched. And the SMF reversely collects the service information allowed by the current slice/DNN according to the information in the URSP, thereby further generating a user routing restriction strategy.
In step S208, the SMF issues the route restriction policy to the UPF for execution. After receiving the route restriction policy issued by the SMF, the UPF installs and executes the policy, thereby restricting unauthorized services from passing, that is, only services specified in the URSP to be executable on the current slice/DNN can be passed.
The technical scheme of the embodiment of the present disclosure can be applied to various communication systems, for example: a 5th Generation (5G) communication system or a New Radio Access Technology (NR) in the future, etc.
For convenience of understanding, the following description will be made in detail by taking an example in which the scheme is applied to a 5G communication system. Referring to fig. 3, a schematic flow chart of a 5G user initiating a service is shown.
Firstly, configuring URSP information of a user in PCF; PCF sends UPSP of user to user through configuration updating flow; the UE installs and executes URSP; and the UE establishes the PDU session according to the URSP strategy. Then SMF sends URSP inquiry request to PCF, wherein carrying SUPI of user, PCF returns URSP inquiry response to SMF, wherein carrying complete URSP information; and the SMF generates a user route limiting strategy of the current slice/DNN according to the URSP information of the user. And finally, the SMF issues the user routing restriction policy to the UPF for execution.
Based on the same inventive concept, the embodiment of the present disclosure further provides a terminal routing control method, which is applied to a session management function SMF network element, and as shown in fig. 4, the terminal routing control method includes:
step S402, sending a query request to a policy control function PCF network element, wherein the query request carries a permanent identifier SUPI of a signed user;
step S404, receiving the routing strategy URSP information returned by the PCF network element based on the query request, wherein the URSP information is the URSP information of the target terminal corresponding to the SUPI;
step S406, according to the URSP information, a route limiting strategy of the target terminal is constructed, and the route limiting strategy is used for controlling the route of the target terminal;
step S408, sending the route restriction policy to a user plane function UPF network element, so that the UPF network element controls the route of the target terminal based on the route restriction policy.
In the terminal routing control method provided by this embodiment, an SMF network element obtains, from a PCF network element, URSP information of a target terminal, and constructs a routing restriction policy of the target terminal according to the URSP information; then, the route restriction policy is sent to the user plane function UPF network element, and the UPF network element can control the route of the target terminal based on the route restriction policy, so that the network side can check the execution behavior of the route policy of the target terminal, the network control capability is greatly enhanced, and the abuse of relevant network resources by the user is avoided.
In some embodiments, the URSP information includes N sub-policies, each sub-policy including application description information and a routing policy corresponding to the application description information;
and the application description information is used for determining the routing strategy of the target terminal service by the target terminal based on the application description information.
In some embodiments, the route of the target terminal includes a plurality of protocol data unit, PDU, sessions established for the target terminal based on the URSP information; the routing restriction policy is recorded with service information that is allowed to be executed in the slice or data network name DNN corresponding to the current session.
In some embodiments, constructing the routing restriction policy of the target terminal according to the URSP information includes:
reversely collecting service information which is allowed to be executed by the current session corresponding to the slice and/or the DNN according to the URSP information;
and constructing a routing restriction strategy of the target terminal based on the collected service information.
In some embodiments, the URSP information is also used for the target terminal to establish a PDU session;
sending a query request to a Policy Control Function (PCF) network element, wherein the query request comprises the following steps:
in the process of establishing PDU session by target terminal, sending inquiry request to policy control function PCF network element,
or after the target terminal establishes the PDU session process, sending a query request to the PCF network element.
Based on the same inventive concept, the embodiment of the present disclosure further provides a terminal routing control method, which is applied to a policy control function PCF network element, and as shown in fig. 5, the terminal routing control method includes:
step S502, receiving a query request from a Session Management Function (SMF) network element, wherein the query request carries a permanent identifier (SUPI) of a signed user;
step S504, based on SUPI, determining URSP information of the target terminal corresponding to SUPI;
step S506, sends the URSP information of the target terminal to the SMF network element, so that the user plane function UPF network element controls the route of the target terminal based on the route restriction policy, where the route restriction policy is established by the SMF network element according to the URSP information.
Based on the same inventive concept, the embodiment of the present disclosure further provides a terminal routing control method, which is applied to a user plane function UPF network element, and as shown in fig. 6, the terminal routing control method includes:
step S602, receiving a routing restriction policy from a Session Management Function (SMF) network element, wherein the routing restriction policy is constructed by the SMF network element according to URSP information;
step S604, based on the route restriction policy, managing and controlling the route of the target terminal.
In some embodiments, the step S604 of controlling the route of the target terminal based on the route restriction policy may specifically include:
and allowing the target service recorded in the routing restriction policy to execute, and restricting the execution of the non-target service, wherein the target service is the service which is recorded in the routing restriction policy and allowed to execute in the slice or the data network name DNN corresponding to the current session.
Based on the same inventive concept, the embodiment of the present disclosure further provides a terminal routing control device, as described in the following embodiments. Because the principle of the embodiment of the apparatus for solving the problem is similar to that of the embodiment of the method, the embodiment of the apparatus can be implemented by referring to the implementation of the embodiment of the method, and repeated details are not described again.
Fig. 7 shows a terminal routing control apparatus in an embodiment of the present disclosure, which is applied to a session management function SMF network element, and as shown in fig. 7, the terminal routing control apparatus 700 includes:
a first sending module 702, configured to send a query request to a policy control function PCF network element, where the query request carries a persistent subscriber identity SUPI;
a first receiving module 704, configured to receive a routing policy, URSP, information returned by the PCF network element based on the query request, where the URSP information is a URSP information of a target terminal corresponding to the SUPI;
a building module 706, configured to build a route restriction policy of the target terminal according to the URSP information, where the route restriction policy is used to manage and control a route of the target terminal;
the second sending module 708 is configured to send the route restriction policy to the user plane function UPF network element, so that the UPF network element controls the route of the target terminal based on the route restriction policy.
In some embodiments, the URSP information includes N sub-policies, each sub-policy including application description information and a routing policy corresponding to the application description information;
and the application description information is used for determining the routing strategy of the target terminal service by the target terminal based on the application description information.
In some embodiments, the route of the target terminal includes a plurality of protocol data unit, PDU, sessions established for the target terminal based on the URSP information; the routing restriction policy is recorded with service information that is allowed to be executed in the slice or data network name DNN corresponding to the current session.
In some embodiments, the building module 706 is specifically configured to:
reversely collecting service information which is allowed to be executed by the current session corresponding to the slice and/or the DNN according to the URSP information;
and constructing a routing restriction strategy of the target terminal based on the collected service information.
In some embodiments, the URSP information is also used for the target terminal to establish a PDU session;
accordingly, the first sending module 702 is specifically configured to:
in the process of establishing PDU session by target terminal, sending inquiry request to policy control function PCF network element,
or after the target terminal establishes the PDU session process, sending a query request to the PCF network element.
The terminal routing control apparatus provided in the embodiment of the present application may be configured to execute the terminal routing control method provided in each of the above method embodiments, and the implementation principle and the technical effect are similar, and for the sake of brevity, no further description is given here.
Based on the same inventive concept, a terminal routing control apparatus is further provided in the embodiments of the present disclosure, and is applied to a policy control function PCF network element, as shown in fig. 8, the terminal routing control apparatus 800 includes:
a second receiving module 802, configured to receive a query request from a SMF network element, where the query request carries a persistent subscriber identity SUPI;
a determining module 804, configured to determine, based on the SUPI, URSP information of the target terminal corresponding to the SUPI;
a third sending module 806, configured to send the URSP information of the target terminal to the SMF network element, so that the UPF network element controls the route of the target terminal based on a route restriction policy, where the route restriction policy is established by the SMF network element according to the URSP information.
The terminal routing control apparatus provided in the embodiment of the present application may be configured to execute the terminal routing control method provided in each of the above method embodiments, and the implementation principle and the technical effect are similar, and for the sake of brevity, no further description is given here.
Based on the same inventive concept, an embodiment of the present disclosure further provides a terminal routing control apparatus, which is applied to a user plane function UPF network element, and as shown in fig. 9, the terminal routing control apparatus 900 includes:
a third receiving module 902, configured to receive a routing restriction policy from a session management function SMF network element, where the routing restriction policy is constructed by the SMF network element according to the URSP information;
and a control module 904, configured to control the route of the target terminal based on the route restriction policy.
In some embodiments, the management module 904 is specifically configured to:
and allowing the target service recorded in the routing restriction policy to execute, and restricting the execution of the non-target service, wherein the target service is the service which is recorded in the routing restriction policy and allowed to execute in the slice or the data network name DNN corresponding to the current session.
The terminal routing control apparatus provided in the embodiment of the present application may be configured to execute the terminal routing control method provided in each of the above method embodiments, and the implementation principle and the technical effect are similar, and for the sake of brevity, no further description is given here.
As will be appreciated by one skilled in the art, aspects of the present disclosure may be embodied as a system, method or program product. Accordingly, various aspects of the present disclosure may be embodied in the form of: an entirely hardware embodiment, an entirely software embodiment (including firmware, microcode, etc.) or an embodiment combining hardware and software aspects that may all generally be referred to herein as a "circuit," module "or" system.
An electronic device 1000 according to this embodiment of the disclosure is described below with reference to fig. 10. The electronic device 1000 shown in fig. 10 is only an example and should not bring any limitation to the functions and the scope of use of the embodiments of the present disclosure.
As shown in fig. 10, the electronic device 1000 is embodied in the form of a general purpose computing device. The components of the electronic device 1000 may include, but are not limited to: the at least one processing unit 1010, the at least one memory unit 1020, and a bus 1030 that couples various system components including the memory unit 1020 and the processing unit 1010.
Wherein the storage unit stores program code that is executable by the processing unit 1010 to cause the processing unit 1010 to perform steps according to various exemplary embodiments of the present disclosure described in the above section "exemplary methods" of the present specification. For example, the processing unit 1010 may perform the steps of the above-described method embodiments.
The storage unit 1020 may include readable media in the form of volatile memory units, such as a random access memory unit (RAM)10201 and/or a cache memory unit 10202, and may further include a read-only memory unit (ROM) 10203.
The memory unit 1020 may also include a program/utility 10204 having a set (at least one) of program modules 10205, such program modules 10205 including, but not limited to: an operating system, one or more application programs, other program modules, and program data, each of which, or some combination thereof, may comprise an implementation of a network environment.
Bus 1030 may be any one or more of several types of bus structures including a memory unit bus or memory unit controller, a peripheral bus, an accelerated graphics port, a processing unit, and a local bus using any of a variety of bus architectures.
The electronic device 1000 may also communicate with one or more external devices 1040 (e.g., keyboard, pointing device, bluetooth device, etc.), with one or more devices that enable a user to interact with the electronic device 1000, and/or with any devices (e.g., router, modem, etc.) that enable the electronic device 1000 to communicate with one or more other computing devices. Such communication may occur through input/output (I/O) interfaces 1050. Also, the electronic device 1000 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network such as the internet) via the network adapter 1060. As shown, the network adapter 1060 communicates with the other modules of the electronic device 1000 over the bus 1030. It should be appreciated that although not shown, other hardware and/or software modules may be used in conjunction with the electronic device 1000, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
Through the above description of the embodiments, those skilled in the art will readily understand that the exemplary embodiments described herein may be implemented by software, or by software in combination with necessary hardware. Therefore, the technical solution according to the embodiments of the present disclosure may be embodied in the form of a software product, which may be stored in a non-volatile storage medium (which may be a CD-ROM, a usb disk, a removable hard disk, etc.) or on a network, and includes several instructions to enable a computing device (which may be a personal computer, a server, a terminal device, or a network device, etc.) to execute the method according to the embodiments of the present disclosure.
In an exemplary embodiment of the present disclosure, there is also provided a computer-readable storage medium, which may be a readable signal medium or a readable storage medium. On which a program product capable of implementing the above-described method of the present disclosure is stored. In some possible embodiments, various aspects of the disclosure may also be implemented in the form of a program product comprising program code for causing a terminal device to perform the steps according to various exemplary embodiments of the disclosure described in the "exemplary methods" section above of this specification, when the program product is run on the terminal device.
More specific examples of the computer-readable storage medium in the present disclosure may include, but are not limited to: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
In the present disclosure, a computer readable storage medium may include a propagated data signal with readable program code embodied therein, either in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A readable signal medium may also be any readable medium that is not a readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device.
Alternatively, program code embodied on a computer readable storage medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
In particular implementations, program code for carrying out operations of the present disclosure may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, C + +, or the like, as well as conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computing device, partly on the user's device, as a stand-alone software package, partly on the user's computing device and partly on a remote computing device, or entirely on the remote computing device or server. In the case of a remote computing device, the remote computing device may be connected to the user computing device through any kind of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or may be connected to an external computing device (e.g., through the internet using an internet service provider).
It should be noted that although in the above detailed description several modules or units of the device for action execution are mentioned, such a division is not mandatory. Indeed, the features and functionality of two or more modules or units described above may be embodied in one module or unit, according to embodiments of the present disclosure. Conversely, the features and functions of one module or unit described above may be further divided into embodiments by a plurality of modules or units.
Moreover, although the steps of the methods of the present disclosure are depicted in the drawings in a particular order, this does not require or imply that the steps must be performed in this particular order, or that all of the depicted steps must be performed, to achieve desirable results. Additionally or alternatively, certain steps may be omitted, multiple steps combined into one step execution, and/or one step broken down into multiple step executions, etc.
Through the above description of the embodiments, those skilled in the art will readily understand that the exemplary embodiments described herein may be implemented by software, or by software in combination with necessary hardware. Therefore, the technical solution according to the embodiments of the present disclosure may be embodied in the form of a software product, which may be stored in a non-volatile storage medium (which may be a CD-ROM, a usb disk, a removable hard disk, etc.) or on a network, and includes several instructions to enable a computing device (which may be a personal computer, a server, a mobile terminal, or a network device, etc.) to execute the method according to the embodiments of the present disclosure.
Other embodiments of the disclosure will be apparent to those skilled in the art from consideration of the specification and practice of the disclosure disclosed herein. This disclosure is intended to cover any variations, uses, or adaptations of the disclosure following, in general, the principles of the disclosure and including such departures from the present disclosure as come within known or customary practice within the art to which the disclosure pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the disclosure being indicated by the following claims.

Claims (13)

1. A terminal routing control method is applied to a Session Management Function (SMF) network element, and comprises the following steps:
sending a query request to a Policy Control Function (PCF) network element, wherein the query request carries a permanent identifier (SUPI) of a signed user;
receiving routing policy URSP information returned by the PCF network element based on the query request, wherein the URSP information is URSP information of a target terminal corresponding to the SUPI;
according to the URSP information, a route limiting strategy of the target terminal is constructed, and the route limiting strategy is used for controlling the route of the target terminal;
and sending the route restriction strategy to a User Plane Function (UPF) network element so that the UPF network element controls the route of the target terminal based on the route restriction strategy.
2. The method of claim 1, wherein the URSP information comprises N sub-policies, each of which comprises application description information and a routing policy corresponding to the application description information;
the application description information is used for the target terminal to determine the routing strategy of the target terminal service based on the application description information.
3. The method of claim 1, wherein the route for the target terminal includes a plurality of Protocol Data Unit (PDU) sessions established for the target terminal based on the URSP information; the routing restriction policy is recorded with service information allowed to be executed in a slice or data network name DNN corresponding to the current session.
4. The method of claim 3, wherein the constructing a routing restriction policy for the target terminal according to the URSP information comprises:
reversely collecting service information which is allowed to be executed by the current session corresponding to the slice and/or the DNN according to the URSP information;
and constructing a route restriction strategy of the target terminal based on the collected service information.
5. The method of any of claims 1-4 wherein the URSP information is also used for the target terminal to establish a PDU session;
the sending of the query request to the policy control function PCF network element includes:
in the process of establishing PDU session by the target terminal, sending inquiry request to the policy control function PCF network element,
or, after the target terminal establishes the PDU session process, sending a query request to a policy control function PCF network element.
6. A terminal route control method is applied to a Policy Control Function (PCF) network element, and comprises the following steps:
receiving a query request from a Session Management Function (SMF) network element, wherein the query request carries a permanent identifier (SUPI) of a signed user;
determining URSP information of a target terminal corresponding to the SUPI based on the SUPI;
and sending URSP information of the target terminal to the SMF network element so that a User Plane Function (UPF) network element controls the route of the target terminal based on a route restriction policy, wherein the route restriction policy is constructed by the SMF network element according to the URSP information.
7. A terminal routing control method is applied to a User Plane Function (UPF) network element, and comprises the following steps:
receiving a routing restriction policy from a Session Management Function (SMF) network element, wherein the routing restriction policy is constructed by the SMF network element according to the URSP information;
and managing and controlling the route of the target terminal based on the route limiting strategy.
8. The method of claim 7, wherein the governing the route of the target terminal based on the route restriction policy comprises:
and allowing the target service recorded in the routing restriction policy to be executed, and restricting the non-target service from being executed, wherein the target service is the service which is recorded in the routing restriction policy and allowed to be executed in the slice or the data network name DNN corresponding to the current session.
9. A terminal routing control device is applied to a Session Management Function (SMF) network element, and comprises:
a first sending module, configured to send a query request to a policy control function PCF network element, where the query request carries a persistent subscriber identity SUPI;
a first receiving module, configured to receive a routing policy URSP information returned by the PCF network element based on the query request, where the URSP information is a URSP information of a target terminal corresponding to the SUPI;
a building module, configured to build a route restriction policy of the target terminal according to the URSP information, where the route restriction policy is used to manage and control a route of the target terminal;
and the second sending module is used for sending the routing restriction policy to a User Plane Function (UPF) network element so that the UPF network element controls the routing of the target terminal based on the routing restriction policy.
10. A terminal route management and control device is applied to a Policy Control Function (PCF) network element, and comprises the following components:
a second receiving module, configured to receive a query request from a SMF network element, where the query request carries a persistent subscriber identity (SUPI);
a determining module, configured to determine, based on the SUPI, URSP information of a target terminal corresponding to the SUPI;
a third sending module, configured to send the URSP information of the target terminal to the SMF network element, so that a user plane function UPF network element controls a route of the target terminal based on a route restriction policy, where the route restriction policy is established by the SMF network element according to the URSP information.
11. A terminal routing control device is applied to a User Plane Function (UPF) network element, and comprises:
a third receiving module, configured to receive a routing restriction policy from a session management function SMF network element, where the routing restriction policy is constructed by the SMF network element according to the URSP information;
and the management and control module is used for managing and controlling the route of the target terminal based on the route restriction strategy.
12. An electronic device, comprising:
a processor; and
a memory for storing executable instructions of the processor;
wherein the processor is configured to perform the terminal route management method of any one of claims 1-8 via execution of the executable instructions.
13. A computer-readable storage medium on which a computer program is stored, the computer program, when being executed by a processor, implementing the terminal route management method according to any one of claims 1 to 8.
CN202111452387.0A 2021-12-01 2021-12-01 Terminal route control method, device, equipment and storage medium Pending CN114040470A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111452387.0A CN114040470A (en) 2021-12-01 2021-12-01 Terminal route control method, device, equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111452387.0A CN114040470A (en) 2021-12-01 2021-12-01 Terminal route control method, device, equipment and storage medium

Publications (1)

Publication Number Publication Date
CN114040470A true CN114040470A (en) 2022-02-11

Family

ID=80139435

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111452387.0A Pending CN114040470A (en) 2021-12-01 2021-12-01 Terminal route control method, device, equipment and storage medium

Country Status (1)

Country Link
CN (1) CN114040470A (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190109721A1 (en) * 2017-10-09 2019-04-11 Comcast Cable Communications, Llc Ethernet type packet data unit session communications
US20210120596A1 (en) * 2018-03-29 2021-04-22 Lg Electronics Inc. Method, user equipment, and network node for performing pdu session establishment procedure for ladn
WO2021141348A1 (en) * 2020-01-06 2021-07-15 삼성전자 주식회사 Method and apparatus for providing plurality of virtual networks for single application in mobile communication network
WO2021163901A1 (en) * 2020-02-18 2021-08-26 华为技术有限公司 Session processing method and apparatus therefor
WO2021197185A1 (en) * 2020-04-03 2021-10-07 华为技术有限公司 Communication method and communication device
WO2021223335A1 (en) * 2020-05-08 2021-11-11 北京紫光展锐通信技术有限公司 Route selection method for application program, and related device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190109721A1 (en) * 2017-10-09 2019-04-11 Comcast Cable Communications, Llc Ethernet type packet data unit session communications
US20210120596A1 (en) * 2018-03-29 2021-04-22 Lg Electronics Inc. Method, user equipment, and network node for performing pdu session establishment procedure for ladn
WO2021141348A1 (en) * 2020-01-06 2021-07-15 삼성전자 주식회사 Method and apparatus for providing plurality of virtual networks for single application in mobile communication network
WO2021163901A1 (en) * 2020-02-18 2021-08-26 华为技术有限公司 Session processing method and apparatus therefor
WO2021197185A1 (en) * 2020-04-03 2021-10-07 华为技术有限公司 Communication method and communication device
WO2021223335A1 (en) * 2020-05-08 2021-11-11 北京紫光展锐通信技术有限公司 Route selection method for application program, and related device

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
CHINA TELECOMMUNICATIONS: "S2-2107213 "Discussion on NWDAF assisted URSP"", 3GPP TSG_SA\\WG2_ARCH, no. 2021, 8 October 2021 (2021-10-08) *
NOKIA, ALCATEL-LUCENT SHANGHAI BELL, VERIZON: "C3-174047 "Policy Control related Network Function Service Procedures"", 3GPP TSG_CN\\WG3_INTERWORKING_EX-CN3, no. 3, 14 August 2017 (2017-08-14) *

Similar Documents

Publication Publication Date Title
US11844142B2 (en) Communications method and apparatus
JP7236538B2 (en) Method for obtaining route selection policy, method for requesting route selection policy, method for executing route selection policy rule, apparatus, equipment and computer program
CN108323245B (en) Registration and session establishment method, terminal and AMF entity
US20200128614A1 (en) Session processing method and device
US20220418038A1 (en) Selection of ip version
US20210168151A1 (en) Method for implementing user plane security policy, apparatus, and system
CN102917356B (en) Subscriber equipment is accessed the method, apparatus and system of the packet core network of evolution
CN114125808A (en) Discovery method and device of edge application server
WO2021042742A1 (en) Communication method, apparatus, and system
US8023484B1 (en) Method for obtaining a mobile internet protocol address
CN113498217A (en) Communication method and communication device
US9807819B1 (en) Cross-technology session continuity
CN112492592A (en) Authorization method under multiple NRF scenes
US10959097B1 (en) Method and system for accessing private network services
US9204483B1 (en) Methods for obtaining a mobile internet protocol address
US20230018378A1 (en) Parameter configuration method, apparatus and system, device and storage medium
KR101809239B1 (en) Apn changing apparatus and method, wireless terminal for apn change and record medium
CN115175117A (en) Data redundancy transmission method under multi-access and related equipment thereof
CN114040470A (en) Terminal route control method, device, equipment and storage medium
CN116261137A (en) Network element security authentication method and device, electronic equipment and storage medium
CN115484582A (en) Communication method and communication device
WO2023082668A1 (en) Emergency communication method and apparatus for snpn, and device and storage medium
CN112153647B (en) Communication method and related equipment
CN115996444A (en) Method, device, equipment and medium for controlling access of diffuse access user to visited network
EP4346258A1 (en) Secure user equipment policy data in a communication network environment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination