CN115529342A - Service access processing method, device, equipment and storage medium - Google Patents
Service access processing method, device, equipment and storage medium Download PDFInfo
- Publication number
- CN115529342A CN115529342A CN202210449285.1A CN202210449285A CN115529342A CN 115529342 A CN115529342 A CN 115529342A CN 202210449285 A CN202210449285 A CN 202210449285A CN 115529342 A CN115529342 A CN 115529342A
- Authority
- CN
- China
- Prior art keywords
- session
- private network
- user
- network
- user plane
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000003672 processing method Methods 0.000 title claims abstract description 36
- 238000003860 storage Methods 0.000 title claims abstract description 12
- 238000000034 method Methods 0.000 claims abstract description 161
- 230000008569 process Effects 0.000 claims description 100
- 238000013475 authorization Methods 0.000 claims description 51
- 230000000977 initiatory effect Effects 0.000 claims description 36
- 238000009826 distribution Methods 0.000 claims description 19
- 238000012545 processing Methods 0.000 claims description 17
- 230000004044 response Effects 0.000 claims description 17
- 238000010295 mobile communication Methods 0.000 claims description 15
- 230000004913 activation Effects 0.000 claims description 11
- 101150102131 smf-1 gene Proteins 0.000 description 154
- 101000579423 Homo sapiens Regulator of nonsense transcripts 1 Proteins 0.000 description 101
- 102100028287 Regulator of nonsense transcripts 1 Human genes 0.000 description 101
- 230000006870 function Effects 0.000 description 58
- 101100477784 Saccharomyces cerevisiae (strain ATCC 204508 / S288c) SMF2 gene Proteins 0.000 description 48
- 102100021087 Regulator of nonsense transcripts 2 Human genes 0.000 description 28
- 101710028540 UPF2 Proteins 0.000 description 28
- 238000010586 diagram Methods 0.000 description 19
- 238000007726 management method Methods 0.000 description 19
- 101100055418 Saccharomyces cerevisiae (strain ATCC 204508 / S288c) AMF1 gene Proteins 0.000 description 13
- 101150114331 MME1 gene Proteins 0.000 description 12
- 230000003993 interaction Effects 0.000 description 8
- 238000004891 communication Methods 0.000 description 7
- 238000004590 computer program Methods 0.000 description 7
- 101100240980 Caenorhabditis elegans smf-2 gene Proteins 0.000 description 6
- 230000002776 aggregation Effects 0.000 description 5
- 238000004220 aggregation Methods 0.000 description 5
- 238000012986 modification Methods 0.000 description 5
- 230000004048 modification Effects 0.000 description 5
- 238000013523 data management Methods 0.000 description 4
- 238000004458 analytical method Methods 0.000 description 3
- 238000013507 mapping Methods 0.000 description 3
- 230000005540 biological transmission Effects 0.000 description 2
- 238000012790 confirmation Methods 0.000 description 2
- 238000013500 data storage Methods 0.000 description 2
- 230000007774 longterm Effects 0.000 description 2
- 230000008447 perception Effects 0.000 description 2
- 101000757159 Manduca sexta Aminopeptidase N Proteins 0.000 description 1
- 101000889620 Plutella xylostella Aminopeptidase N Proteins 0.000 description 1
- 230000004075 alteration Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000011144 upstream manufacturing Methods 0.000 description 1
- 238000012559 user support system Methods 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/14—Session management
- H04L67/148—Migration or transfer of sessions
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/06—Notations for structuring of protocol data, e.g. abstract syntax notation one [ASN.1]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a service access processing method, a device, equipment and a storage medium, wherein the method comprises the following steps: when the session user plane network element identifies the private network service in the public network service, sending a private network service access event to the session control plane network element; the session control plane network element starts a private network session establishment flow and controls the session user plane network element to establish a private network session channel user plane for the user; the session user plane network element replaces the first user address in the uplink data messages of all private network services with a second user address allocated to the user terminal, and transmits the replaced uplink data messages to the private network through the private network session channel user plane; and the session user plane network element replaces the second user address in the downlink data message sent to the user terminal by the private network with the first user address, and sends the replaced downlink data message to the user terminal through the public network session channel user plane and the base station. The invention can provide public network service and private network service for the user using the user terminal which does not support multiple DNN functions.
Description
Technical Field
The present invention relates to the field of communications technologies, and in particular, to a method, an apparatus, a device, and a storage medium for processing service access.
Background
The technical scheme of the multi-DNN (Data Network Name) is that a general DNN (for example, DNN 1) for public Network services and a special DNN (for example, DNN 2) for private Network services are respectively signed for users. When a user needs to use public network service, the user uses a universal DNN to initiate a PDU session establishment request through a user terminal, and a 5G network establishes a PDU session dredging public network service of the universal DNN1 for the user terminal; when a user needs to use the private network service, the user uses the special DNN to initiate a PDU session establishment request through the user terminal, and the 5G network establishes the PDU session dredging private network service of the special DNN for the user terminal. As described above, when a user uses a public network service, if a private network service needs to be accessed, a corresponding operation needs to be manually performed on a user terminal, for example, the user manually activates a corresponding APP on an interface of the user terminal, and invokes the user terminal to activate a private DNN through the APP, so as to implement access to the private network service. Therefore, in the existing multi-DNN technical scheme, for a user with the requirement of public network service and private network service, on one hand, a user terminal supporting multi-DNN function must be used; the other side needs to install and configure APP for calling the private network DNN on the user terminal, manually activates the private network service APP when using the private network service, and cannot use the private network service by clicking related links on a public network service interface; therefore, the type selection of the user to the user terminal is limited, and the user needs to perform more complicated operation on the user terminal for the private network service.
Disclosure of Invention
Embodiments of the present invention provide a service access processing method, apparatus, device, and storage medium, which aim to solve the technical problems that a user terminal carries a public network service and a private network service through a single session channel, and a network can separately perform charging and service management and control on the private network service and the public network service of the user terminal, so as to solve the technical problem that the existing DNN technical solution requires the user terminal to support multiple DNN functions and requires relatively complex configuration and service use operations on the private network service on the user terminal supporting the multiple DNN functions.
The embodiment of the invention provides a service access processing method, which is applied to packet domain equipment of a mobile communication network and comprises the following steps:
based on public network service initiated by a user terminal, when a first session user plane network element identifies that public network service transmitted by a public network session channel user plane comprises private network service, sending an access event of the private network service to a first session control plane network element of the public network service;
the first session control plane network element starts a flow for establishing a private network session for a user according to the access event, and controls the first session user plane network element to execute a flow for establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user;
the first session user plane network element replaces the first user IP address in the UL uplink data message of all the private network services transmitted by the public network session channel user plane with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data message to the private network through the private network session channel user plane; and the number of the first and second groups,
and the first session user plane network element replaces the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address, and sends the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
In an embodiment, when the first session user plane network element recognizes that the public network service transmitted by the public network session channel user plane includes a private network service, the method further includes, while sending an access event of the private network service to the first session control plane network element of the public network service:
the first session user plane network element caches UL uplink data messages of all the private network services in the public network session channel user plane; and the number of the first and second groups,
the public network session channel user plane forwards an UL uplink data message and a DL downlink data message of the public network service; the public network service forwarded by the public network session channel user plane does not include the private network service, and the public network service forwarded by the public network session channel user plane does not trigger a process of establishing a private network session for a user.
In an embodiment, the replacing, by the first session user plane network element, the first user IP address in the UL uplink data packet of all the private network services transmitted by the public network session channel user plane by the second user IP address allocated to the user terminal by the network, and transmitting the replaced UL uplink data packet to the private network through the private network session channel user plane includes:
after the private network session channel user plane is established, the first session user plane network element replaces the first user IP address in the UL uplink data messages of all the private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replaces the first user IP address in the UL uplink data messages of all the private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages of all the private network services cached before the private network session channel user plane is established and the replaced UL uplink data messages of all the private network services received after the private network session channel user plane is established to the private network sequentially through the private network session channel user plane.
In an embodiment, the service access processing method further includes:
the first session user plane network element acquires destination address information in the UL uplink data message sent by the user terminal, and determines that the UL uplink data message is a private network service when the destination address information is identified to be the same as preset destination address information of the private network service;
the preset destination address information of the private network service is obtained by at least one of the following modes:
the preset destination address information of the private network service is acquired by the first session user plane network element from the local configuration of the first session user plane network element;
the preset destination address information of the private network service is obtained by the first session user plane network element from the preset private network service rule related information sent to the first session control plane network element by the first session user plane network element;
the related information of the preset private network service rule is obtained by the first session control plane network element in a PCC mode and/or in local configuration of the first session control plane network element, and is sent to the first session user plane network element in the process of establishing the public network session channel user plane for the user terminal;
the obtaining, by the first session control plane network element, the relevant information of the preset private network service rule in a PCC manner includes at least one of the following manners:
in the process of establishing public network session for the user terminal, the policy control network element issues the whole amount of relevant information of the preset private network service rule to the first session control plane network element;
in the process of establishing a public network session for the user terminal, the policy control network element issues a PCC predefined rule to the first session control plane network element, the first session control plane network element configures a PCC predefined policy from its own local according to the PCC predefined rule to obtain relevant information of the preset private network service rule, where the relevant information of the preset private network service rule at least includes a PCC policy identifier, relevant information of a public network name, preset destination address information of the private network service, relevant information of a private network name required for establishing a private network session, and user identifier information.
In an embodiment, the service access processing method further includes:
the first session user plane network element acquires the private network name related information matched with the destination address information and required for establishing the private network session from the preset private network service rule related information, and generates an access event of the private network service according to the private network name related information required for establishing the private network session; or,
and the first session user plane network element generates an access event of the private network service according to the destination address information.
In an embodiment, when the first session user plane network element recognizes that the public network service transmitted by the public network session channel user plane includes a private network service, before sending an access event of the private network service to the first session control plane network element of the public network service, the method further includes, based on the public network service initiated by the user terminal:
when receiving a public network service activation request initiated by the user terminal, the session establishment initiation network element selects a first session control plane network element corresponding to the public network service of the user terminal, and sends a public network session establishment request to the first session control plane network element;
the first session control plane network element selects a first session user plane network element, controls the first session user plane network element to establish a public network session channel user plane of the public network service and allocates the first user IP address to the user terminal; the first user IP address is different from preset destination address information of the private network service in the preset private network service rule related information.
In an embodiment, the initiating, by the first session control plane onu, a process of establishing a private network session for a user according to the access event, and controlling the first session user plane onu to execute a process of establishing a user plane of the private network session channel for the user, so that establishing the user plane of the private network session channel for the user includes:
the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is not also used as a second session user plane network element, determining the second user IP address and the second session user plane network element, and sending the second user IP address to the first session user plane network element; and the number of the first and second groups,
the first session control plane network element controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
In an embodiment, the step of the first session control plane network element starting a process of establishing a private network session for a user according to the access event, and controlling the first session user plane network element to execute a process of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user, further includes:
the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is also used as a second session user plane network element, determining the second user IP address and sending the second user IP address to the first session user plane network element; and (c) a second step of,
the first session control plane network element controls the first session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required by establishing the private network session; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
In an embodiment, the first session control plane onu starts a procedure for establishing a private network session for a user according to the access event, and controls the first session user plane onu to execute a procedure for establishing a user plane of the private network session channel for the user, so as to establish the user plane of the private network session channel for the user, further comprising:
the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
when the first session control plane network element determines that the first session control plane network element does not double as a second session control plane network element and the first session user plane network element does not double as a second session user plane network element, determining the second session control plane network element and the second session user plane network element, and sending a private network session establishment request to the second session control plane network element; the first session control plane network element determines the second session control plane network element by adopting the same or similar method for determining the session control plane network element by the session establishment initiation network element;
the second session control plane network element returns a private network session establishment response to the first session control plane network element, wherein the private network session establishment response at least comprises the second user IP address and interface address information of a relevant interface of the second session user plane network element;
when receiving the private network session establishment response, the first session control plane network element sends the second user IP address to the first session user plane network element, and controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required by private network session establishment; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
In an embodiment, the step of the first session control plane network element starting a process of establishing a private network session for a user according to the access event, and controlling the first session user plane network element to execute a process of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user, further includes:
when the first session control plane network element determines that the private network needs to start secondary authentication/authorization and stores user authentication information required for performing secondary authentication on the user terminal, the first session control plane network element can act on the user terminal to execute a secondary authentication/authorization process according to local configuration or preset private network service rule related information, and controls the first session user plane network element to execute the private network related authorization on the user terminal.
In an embodiment, the transmitting the replaced UL uplink data packet to a private network through the private network session channel user plane includes:
and the first session user plane network element executes a service distribution rule to determine a private network session channel identifier according to the UL uplink data message, and transmits the replaced UL uplink data message to a private network through a private network session channel user plane corresponding to the private network session channel identifier.
In an embodiment, the replacing, by the first session user plane network element, the second user IP address in the DL downlink data packet sent by the private network to the user terminal by the first user IP address, and sending the replaced DL downlink data packet to the user terminal sequentially through the public network session channel user plane and the base station includes:
the first session user plane network element executes a service convergence rule so as to converge the target DL downlink data transmitted by the private network session channel user plane corresponding to the private network session channel identifier into the public network session channel user plane between the first session user plane network element and the base station;
replacing the second user IP address in a DL downlink data message sent to the user terminal by the private network with the first user IP address;
sending the replaced DL downlink data message to the user terminal through a first session user plane network element of the public network session channel user plane and a base station in sequence; or,
and sending the replaced DL downlink data message to the user terminal through a first session user plane network element, an intermediate session user plane network element and a base station of the public network session channel user plane in sequence.
In an embodiment, the step of the first session control plane network element starting a procedure of establishing a private network session for a user according to the access event, and controlling the first session user plane network element to execute a procedure of establishing a private network session channel user plane for the user, further includes:
and when a preset condition is met, the first session control plane network element sends a notification message to the corresponding session establishment initiating network element according to the previously acquired session establishment initiating network element identifier so as to notify the session establishment initiating network element to count the number of the private network session channel user planes.
In an embodiment, the service access processing method further includes:
and the first session control plane network element and the first session user plane network element perform segmented management on the public network session channel user plane and the private network session channel user plane, and perform session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service respectively.
In an embodiment, the service access processing method further includes:
and respectively associating at least two QoS flows with the public network session channel user plane and the private network session channel user plane so as to respectively perform end-to-end session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service.
In addition, to achieve the above object, the present invention further provides a service access processing apparatus, including:
the event sending module is used for sending an access event of the private network service to a first session control plane network element of the public network service when the first session user plane network element identifies that the public network service transmitted by a public network session channel user plane comprises the private network service based on the public network service initiated by the user terminal;
a session establishing module, configured to start a process of establishing a private network session for a user according to the access event by using the first session control plane network element, and control the first session user plane network element to execute a process of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user;
a service distribution module, configured to replace, by using the first session user plane network element, a first user IP address in UL uplink data packets of all private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by the network, and transmit the replaced UL uplink data packet to the private network through the private network session channel user plane;
and the service convergence module is used for replacing the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address by adopting the first session user plane network element, and sending the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
In addition, to achieve the above object, the present invention further provides a packet domain device of a mobile communication network, including: the service access processing method comprises a memory, a processor and a service access processing program which is stored on the memory and can run on the processor, wherein the service access processing program realizes the steps of the service access processing method when being executed by the processor.
In addition, to achieve the above object, the present invention further provides a storage medium, on which a service access processing program is stored, and the service access processing program implements the steps of the service access processing method when executed by a processor.
For users with the simultaneous public network service and private network service requirements, the existing multi-DNN technical scheme needs to:
(1) The user terminal supports multiple DNN functions and can configure special DNN required by the private network service on a related interface of the user terminal;
(2) Installing a private network service APP on a user terminal, and calling a private network DNN of the private network service by the APP when the private network service APP is activated by a user;
(3) When a user uses a private network service, the operation of a private network service APP needs to be executed first, and the private network service cannot be used by clicking a relevant link on a public network service interface.
Due to the defects of the existing multi-DNN technical scheme, the following results are obtained: when a user terminal used by a user does not support a multi-DNN function, the user cannot use a public network service and a private network service on the same terminal; when a user terminal used by a user supports multiple DNN functions, the user needs to perform relatively complicated operations on the user terminal to use the private network service.
After a user terminal initiates a public network service, the invention adopts a first session user plane network element to identify that the public network service transmitted by a public network session channel user plane comprises a private network service, and sends an access event of the private network service to a first session control plane network element of the public network service, wherein the first session control plane network element starts a process of establishing a private network session for a user according to the access event and controls the first session user plane network element to execute the process of establishing a private network session channel user plane for the user so as to establish the private network session channel user plane for the user; the first session user plane network element replaces a first user IP address in UL uplink data messages of all private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages to the private network through the private network session channel user plane; the technical scheme that the first session user plane network element replaces the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address, and sends the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence solves the technical problems that the user terminal is required to support multiple DNN functions in the existing DNN technical scheme, and the private network service needs to be configured and operated in a complicated mode on the user terminal supporting the multiple DNN functions. The invention realizes that the user terminal bears the public network service and the private network service through the single session channel, and the network can respectively charge and control the private network service and the public network service of the user terminal. For the user terminal which does not support the multi-DNN function, the public network service and the private network service can be simultaneously provided for the user. When a user uses the private network service through a user terminal which does not support the multi-DNN function or supports the multi-DNN function, the user does not need to perform complicated configuration on the user terminal, the private network service can be started and used in the using process of the public network service through simple operation of clicking a link or inputting a destination address on a public network page, private network access can be performed without extra operation, and the imperceptibility of the user to use the private network service through the user terminal and the service access experience of the user are improved.
Drawings
Fig. 1 is a schematic structural diagram of a hardware operating environment according to an embodiment of the present invention;
fig. 2 is a schematic flow chart of a first session user plane network element obtaining relevant information of a preset private network service rule in the service processing method of the present invention;
fig. 3 is a schematic flow chart of establishing a public network session channel user plane in the service processing method of the present invention;
fig. 4 is a schematic diagram of single DNN/single IP address of the user terminal and multi-DNN offloading convergence control at the network side in the 5G network according to the present invention;
fig. 5 is a specific flowchart of step S220/step C20 in the service processing method of the present invention;
fig. 6 is another specific flowchart of step S220/step C20 in the service processing method of the present invention;
fig. 7 is a schematic diagram of another specific flow of step S220/step C20 in the service processing method of the present invention;
FIG. 8 is a diagram illustrating a mapping relationship between a first user IP address and a second user IP address;
fig. 9 is a schematic diagram of a single APN/single IP address of a user terminal and a multi-APN shunt convergence management control of a network side in a 4G network according to the present invention;
fig. 10 is a functional block diagram of a service processing system according to the present invention.
Detailed Description
In order to better understand the above technical solutions, exemplary embodiments of the present invention will be described in more detail below with reference to the accompanying drawings. While exemplary embodiments of the invention are shown in the drawings, it should be understood that the invention may be embodied in various forms and should not be limited to the embodiments set forth herein. Rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the scope of the invention to those skilled in the art.
As shown in fig. 1, fig. 1 is a schematic structural diagram of a hardware operating environment according to an embodiment of the present invention.
It should be noted that fig. 1 is a schematic structural diagram of a hardware operating environment of a packet domain device of a mobile communication network.
As an implementation manner, as shown in fig. 1, an embodiment of the present invention relates to a mobile communication network packet domain device, where the mobile communication network packet domain device includes: a processor 1001, such as a CPU, a memory 1002, and a communication bus 1003. The communication bus 1003 is used to implement connection communication among these components.
The memory 1002 may be a high-speed RAX memory or a non-volatile memory (non-volatile XeXory), such as a disk memory. As shown in fig. 1, a memory 1002, which is a storage medium, may include therein a service access processing program; and the processor 1001 may be configured to call the service access handler stored in the memory 1002 and perform the following operations:
based on public network service initiated by a user terminal, when a first session user plane network element identifies that public network service transmitted by a public network session channel user plane comprises private network service, sending an access event of the private network service to a first session control plane network element of the public network service;
the first session control plane network element starts a flow of establishing a private network session for a user according to the access event, and controls the first session user plane network element to execute a flow of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user;
the first session user plane network element replaces the first user IP address in the UL uplink data message of all the private network services transmitted by the public network session channel user plane with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data message to the private network through the private network session channel user plane; and the number of the first and second groups,
and the first session user plane network element replaces the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address, and sends the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
It should be noted that, although a logical order is shown in the flowcharts, in some cases, the steps shown or described may be executed in an order different from the order shown or described here.
The explanation of the terms involved in the various embodiments of the invention in a 5G network scenario is: UPF (User Plane Function) is a User Plane Function, UDM (Unified Data Management) is a Unified User Data Management Function, UDR (Unified Data storage) is a Unified User Data storage Function, DNN (Data Network Name) is a Data Network Name, PCF (Policy Control Function) is a Policy Control Function, S-NSSAI (Single Network Slice Selection Association) is Single Network Slice Selection auxiliary Information, it may also be referred to as Network Slice id, PCC (Policy and Charging Control) as Policy and Charging Control, URL/URI (Uniform Resource Locator/Uniform Resource Identifier), AMF (Access and Mobility Management Function) as Access and Mobility Management Network element, SMF (Session Management Function) as Session Management Function, I-SMF (Intermediate SMF) as Intermediate SMF as Intermediate Control Plane Function, I-UPF (Intermediate UPF) as Intermediate UPF as Intermediate User Plane Function, NRF (Network Management Function) as Network Resource database Function, gbb (gbnodeb) as wireless 5G base station, UE (User Equipment) as User Equipment, often referred to as User terminal, e.g. 5G handset. A public network DNN, for example, internet DNN, and CMNET DNN for china mobile; the private network DNN is, for example, an enterprise private network DNN. Public network DNN service is called public network service, and private network DNN service is called private network service; the public network session is a Protocol Data Unit (PDU) session of a public network DNN, and a public network session channel user plane is a user plane of the public network session; the private network session is a PDU (Protocol Data Unit) session of the private network DNN, and the private network session channel user plane is a user plane of the private network session.
As shown in fig. 3, in the first embodiment of the present invention in a 5G network scenario, the service processing method of the present invention includes the following steps S210 to S240. The embodiment belongs to an access scene of a 5G network, and supports 5G users. The service processing method is applied to the packet domain equipment of the mobile communication network, and the packet domain equipment of the mobile communication network at least comprises a session establishment initiating network element, a first session control plane network element, a second session control plane network element, a first session user plane network element and a second session user plane network element; generally, the packet domain equipment of the mobile communication network further comprises: a policy control network element. In some specific scenarios, the first session control plane network element may double as the second session control plane network element, and the first session user plane network element may double as the second session user plane network element. In the 5G network, the session establishment initiation network element is AMF, the session control plane network element is SMF, the session user plane network element is UPF, the policy control network element is PCF/UDR, the Intermediate session control plane network element is I-SMF (Intermediate SMF), the Intermediate session user plane network element is I-UPF, the first session control plane network element is denoted as first target SMF, the second session control plane network element is denoted as second target SMF, the first session user plane network element is denoted as first target UPF, the second session user plane network element is denoted as second target UPF, that is, in some specific scenarios, the first target SMF may be used as second target SMF, and the first target UPF may be used as second target UPF.
As shown in fig. 4, the session establishment initiating network element corresponds to AMF1, the first target SMF corresponds to SMF1, the second target SMF corresponds to SMF2, the first target UPF corresponds to UPF1, the second target UPF corresponds to UPF2, the intermediate session control plane network element corresponds to I-SMF1, the intermediate session user plane network element corresponds to I-UPF1, and the policy control network element is PCF/UDR. Before step S210 is performed, the following steps are performed corresponding to fig. 4:
TABLE 1 (5G PCC information related)
In table 1, 1) if the same user only has 1 private network DNN service, the "sequence number" parameter may not be needed; 2) The destination URL/URI and IP address of the private network DNN1 and the private network DNN2 cannot be repeated, and need to be guaranteed when the PCC policy is preset.
Step 0, the user signs a contract, including:
(1) And opening the network slice identifiers S-NSSAI of the public network DNN and the public network DNN, and the network slice identifiers S-NSSAI of the private network DNN and the private network DNN for the user subscription at the user attributive UDM/UDR.
(2) And a PCC strategy of 'private network service distribution strategy in public network service' signed and opened by the user home PCF/UDR is called as a preset PCC strategy. The preset PCC policy indicates: when one of a destination URL/URI and a destination IP address of a "private network" is detected in an UL upstream data message of a PDU session (hereinafter referred to as a public network session) of a public network DNN, the "private network DNN" is activated for a user. And the destination address in the UL uplink data message is within the range of all the private network destination URLs/URIs and destination IP addresses contained in the PCC policy information. The information/parameters included in the preset PCC policy are shown in table 1.
(3) When the mode that the PCF/UDR issues the PCC predefined rule and the SMF locally configures the PCC predefined policy is adopted, the destination URL/URI and the destination IP address of the private network service in the table 1 can be locally configured on the SMF1, the PCC predefined rule issued by the PCF/UDR to the SMF1 contains the PCC predefined rule name information of the private network service shunting in the public network service and the private network name related information (including the network slice identifier S-NSSAI) needed to be established, and the multi-private network service shunting in the public network service of the same user terminal can be realized by increasing the number of the PCC predefined policies for the user.
When a user opens a private network service, the subscription of private network DNN and S-NSSAI to which the private network DNN belongs is required to be completed in a user attributive UDM/UDR, and the user is a private network user at the same time; when a service of ' immediately establishing a special channel for transmitting a corresponding special network service for a user when the special network service is identified in a public network service of the user ' is required to be provided for a special network user ', a PCC strategy of ' special network service distribution in the public network service ' is required to be signed in a PCF/UDR to which the special network user belongs; in the subsequent PDU session establishment process of the user public network DNN, the SMF1 in charge of the user public network DNN service obtains a PCC strategy of 'private network service shunting strategy in public network service' of the user from the user home PCF/UDR.
As described above, the content in table 1 is the content at least included in the preset private network service rule-related information, and after the user opens the private network service and opens the service "establish a dedicated channel for transmitting the corresponding private network service immediately when the private network service is identified in the public network service of the user", the content in table 1 is generated and completed before the user actually uses the private network service, which can be understood as the preset private network service rule-related information, and the content in the preset private network service rule-related information is already obtained by SMF1 before the user sends the private network service data message through the public network PDU session user plane channel, no matter in the PCC manner that PCF/UDR issues the full amount of preset private network service rule-related information to SMF1, or in the manner that PCF/UDR issues the predefined PCC rule and SMF1 locally configures the predefined policy (see the following steps 3-2); moreover, it can be understood that the PCC policy including the information related to the preset private network service rule is a PCC policy related to the preset private network service rule, and is also a PCC policy of "private network service distribution in public network service". The preset private network service rule related information at least includes PCC policy identifier, public network name related information, preset destination address information of the private network service, private network name related information required for establishing a private network session, and user identifier information, which is specifically referred to in table 1.
In practical applications, when a user uses a public network service or a private network service, steps S110 to S120 are first performed, as shown in fig. 2:
step S110: when receiving a public network service activation request initiated by the user terminal, the session establishment initiation network element selects a first session control plane network element corresponding to the public network service of the user terminal, and sends a public network session establishment request to the first session control plane network element;
step S120: and the first session control plane network element selects a first session user plane network element, controls the first session user plane network element to establish a public network session channel user plane of the public network service and allocates the first user IP address to the user terminal.
The first user IP address is different from preset destination address information of the private network service in the preset private network service rule related information.
Corresponding to steps 1 to 3-1 of fig. 4: a user uses a public network service or a private network service, the UE initiates a public network DNN activation request, also called a public network service activation request, through the UE at a roaming place, AMF1 receives the public network service activation request initiated by the UE, AMF1 executes SMF service discovery to NRF, and determines that if the user has cross-SMF POOL switching/roaming according to a service discovery result, AMF1 selects I-SMF and a first target SMF, which correspond to I-SMF1 and SMF1 in FIG. 4 respectively; if the user does not switch/roam, or switch/roam in the SMF POOL, or activate the public network DNN for the first time, AMF1 directly selects the first target SMF, there is no I-SMF (there is no I-SMF1 in fig. 4, only there is SMF 1), and sends the public network session establishment request of the user to the first target SMF, i.e. SMF1, wherein if there is I-SMF1 in fig. 4, AMF1 sends the public network session establishment request to SMF1 via I-SMF 1; if the I-SMF1 does not exist, AMF1 directly sends the public network session establishment request to SMF1. After the SMF1 of the public network DNN service (referred to as public network service) performs UDM service discovery to the NRF, SM (session management) subscription data of the user is obtained and subscribed from the user-owned UDM/UDR, and the SM subscription data includes a network slice identifier (S-NSSAI) and a DNN that are allowed to be used by the user.
Step 3-2 to step 6: the SMF1 of the public network service establishes a public network session for the UE, wherein the SMF1 executes PCF service discovery to NRF, acquires a preset PCC strategy signed by a user from a user home PCF/UDR according to a service discovery result, selects a first target UPF (UPF 1 in figure 4), issues the preset PCC strategy to the selected UPF1, indicates to allocate session resources for the public network session, allocates a first user IP address (IP address 1 in figure 4) to the UE and the like, returns the first user IP address and other related information to the AMF1 and the UE through the AMF1, completes related information interaction, and the SMF1 controls the UPF1 to establish a public network session channel user plane of the public network service for the UE; the first user IP address is distributed by the SMF1 and sent to the UE through the AMF, and the UPF1 acquires the first user IP address of the UE by identifying a source IP address in an UL uplink data message sent by the UE. If I-SMF1 exists in the figure 4, the I-SMF1 forwards the relevant message, and the I-SMF1 indicates the I-UPF1 to allocate the relevant resources; if there is no I-SMF1, then SMF1 communicates directly with AMF1, and the above steps follow the 3GPP standard. After the first user IP address is allocated to the UE, the first user IP address is the IP address of the UE, that is, IP address 1 in fig. 4 is the source IP address in the UL uplink data packet sent by the UE.
Further, in the 3GPP standard flows of steps 3-2 and 4, the implementation process of the PCC policy of the preset "private network service offloading policy in the public network service" needs to be newly added to the SMF1 of the public network service and the UPF1 selected by the SMF1, which is specifically as follows:
(1) In step 3-2, through the PCC flow, the SMF1 of the public network service obtains preset private network service rule related information in a preset "private network service offloading policy in the public network service", including information of each parameter shown in table 1; specifically, a mode that PCF/UDR publishes the total information in 1 to SMF1 can be adopted, and a mode that PCF/UDR issues PCC predefined rules to SMF1 and SMF1 locally configures the PCC predefined rules can also be adopted. The specific process of the SMF1 obtaining the relevant information of the preset private network service rule refers to (2) and (3) in step 0.
(2) After acquiring the relevant information of the preset private network service rule, including the parameter information in table 1, the SMF1 of the public network service executes a process of ensuring that the IP address of the first user allocated to the UE is different from the destination IP address of the private network service in the relevant information of the preset private network service rule. It should be understood that, when the SMF1 of the public network service allocates the first user IP address to the UE, it needs to check whether the first user IP address conflicts repeatedly with the destination IP address (the destination IP address in table 1) of the private network DNN in the preset PCC policy acquired from the PCF to which the user belongs, and if the addresses are repeated, it needs to replace the first user IP address to be allocated to the user with a new first user IP address that does not duplicate with the destination IP address of the private network DNN, thereby avoiding the situation that the source IP address is the same as the destination IP address when the UE sends the UL uplink data message. Because the source IP address of the UL uplink data packet of the private network service sent by the UE is the first user IP address, and the destination IP address cannot be the same as the source IP address, it needs to be ensured that the first user IP address allocated to the UE by the SMF1 cannot be the same as all destination IP addresses in the preset destination address information in the preset private network service rule-related information (i.e., all IP addresses in the "destination URL/URI and destination IP address" in table 1). If the SMF1 finds that the first user IP address allocated to the UE is the same as any preset destination address information in the relevant information of the preset private network service rule, the SMF1 allocates a user IP address for the UE again, the reallocated user IP address is an IP address which is different from all destination IP addresses in the relevant information of the preset private network service rule, and the IP address information of the UE in the PCF/UDR to which the user belongs is updated through a subsequent PCC process. The IP address reallocated by the SMF1 is the IP address of the first user.
(3) In step 4, the SMF1 of the public network service maps the obtained relevant information of the preset private network service rule to the N4 interface information and issues the information to the UPF1 of the public network service, that is, the SMF1 issues the relevant information of the preset private network service rule to the UPF1, and the relevant information of the preset private network service rule is shown in table 1. The SMF1 does not necessarily need to issue all the information in table 1 to the UPF1, but at least includes "public network DNN (including network slice identifier S-NSSAI)", "destination URL/URI and destination IP address", and information identifying a user in table 1, and may further include "private network DNN (including network slice identifier S-NSSAI)", which may be determined as the case may be. If the preset private network service rule related information sent by the first session control plane network element to the first session user plane network element includes "private network DNN (including network slice identifier S-NSSAI)", the subsequent process may correspond to "the first session control plane network element obtains the private network name related information required for establishing the private network session included in the access event" in step S2211, step S2221, and step S2231, below; if the preset private network service rule related information sent by the first session control plane network element to the first session user plane network element does not include "private network DNN (including network slice identifier S-NSSAI)", the subsequent process may correspond to "the first session control plane network element obtains destination address information included in the access event" in step S2211, step S2221, and step S2231, and obtains private network name related information required for establishing a private network session by matching from the preset private network service rule related information according to the destination address information ". In the process of executing the service processing, the forwarding of the data message of the public network service of the UE is not influenced.
Obviously, there is also a way to obtain all the information in table 1, and all the information in table 1 can be implemented by configuring locally in the UPF1.
(4) The UPF1 of the public network service selected by the SMF1 of the public network service executes the preset PCC policy while forwarding the user data packet (including UL uplink data packet and DL downlink data packet) of the public network service of the UE, and when the user data packet (also called UL uplink data packet) sent by the UE meets the condition, that is, when the destination URL/URI or the destination IP address included in the UL uplink data packet is the URL/URI or the IP address in the destination URL/URI or the destination IP address in the "destination URL/URI" field in the table 1, it is necessary to report a relevant event to the SMF1, where the relevant event may be understood as an access event of using the private network service by the user, and may also be understood as when the UL uplink data packet including the URL/URI or IP address whose destination address information is the private network service is detected in the public network service of the UE, the access event of the private network service is reported to the SMF1, which will be described in detail in step 7 later.
The SMF1 of the public network service executes a PCC policy of a preset "private network service offloading policy in the public network service", and when an access event of the private network service reported by the UPF1 is received, a PDU private network session (also referred to as a private network session) of a corresponding private network DNN is activated for a user, that is, when the UPF1 reports an UL uplink data packet with a destination address of a URL/URI or an IP address of the private network service detected in the public network service of the UE, the SMF1 is notified to activate the corresponding private network session for the user, which will be described in detail in step 8 below.
Step S210: based on public network service initiated by a user terminal, when a first session user plane network element identifies that public network service transmitted by a public network session channel user plane comprises private network service, sending an access event of the private network service to a first session control plane network element of the public network service.
In this embodiment, after a user inputs destination address information that the user needs to access through the UE, the UE sends an UL uplink data packet of a public network service or a private network service, a public network session channel user plane in charge of the public network service transmits the UL uplink data packet of the public network service and the private network service that the UE sends, and the UPF1 identifies whether the public network service transmitted by the public network session channel user plane includes the private network service, so as to decide whether to report an access event of the private network service to the SMF1, and if the UPF1 identifies that the public network service includes the private network service, it indicates that the private network service that the user needs to access, and reports the access event of the private network service to the SMF1.
Further, the identifying, by the first session user plane network element, whether the public network service transmitted by the public network session channel user plane includes the private network service includes: and the first session user plane network element acquires the destination address information in the UL uplink data message sent by the user terminal, and determines that the UL uplink data message is a private network service when recognizing that the destination address information is the same as the preset destination address information of the private network service, namely the public network service comprises the private network service.
It should be understood that, the public network session channel user plane transmits all UL uplink data packets corresponding to the private network service used by the user in the form of the public network service, where the UL uplink data packets include destination address information input by the user, and if the UPF1 recognizes that the destination address information corresponding to the private network service included in the UL uplink data packets is the same as the preset destination address information of the private network service, that is, the destination address information is the same as one of the destination URL/URI and the destination IP address in the preset private network service rule-related information, it may be determined that the UL uplink data packets are the private network service, that is, the public network service includes the private network service.
The preset destination address information of the private network service is obtained by at least one of the following modes:
the preset destination address information of the private network service is acquired from the local configuration of the first session user plane network element;
the preset destination address information of the private network service is obtained by the first session user plane network element from the preset private network service rule related information sent to the first session control plane network element by the first session user plane network element.
It should be understood that in the 5G scenario, all the information in table 1 may be locally configured and pre-stored in UPF1, since all the information in table 1 includes the preset destination address information of the private network service. When the UPF1 needs to acquire the preset destination address information of the private network service, the UPF1 can acquire the preset destination address information of the private network service from the local configuration of the UPF1; the preset destination address information of the private network service can also be that the SMF1 issues to the UPF1, the SMF1 sends the relevant information of the preset private network service rule to the UPF1, and the UPF1 obtains the preset destination address information of the private network service from the relevant information of the preset private network service rule, that is: the SMF1 of the public network service maps the obtained related information of the preset private network service rule to the UPF1 which is sent to the public network service in the N4 interface information, the SMF1 sends the related information of the preset private network service rule to the UPF1, and the related information of the preset private network service rule is shown in the table 1. The SMF1 does not necessarily need to issue all the information in table 1 to the UPF1, but at least includes "public network DNN (including network slice identifier S-NSSAI)", "destination URL/URI and destination IP address", and information identifying a user in table 1, and may further include "private network DNN (including network slice identifier S-NSSAI)". Of course, it is not excluded that the UPF1 may obtain the preset destination address information to the private network service through other ways. It should be noted that the specific manner of acquiring the preset destination address information of the private network service is set according to actual requirements.
How to acquire the relevant information of the preset private network service rule by the first session control plane network element specifically includes:
and the related information of the preset private network service rule is obtained by the first session control plane network element in a PCC mode and/or local configuration of the first session control plane network element, and the related information of the preset private network service rule is sent to the first session user plane network element in the process of establishing the public network session channel user plane for the user terminal.
It should be understood that, in a 5G scenario, SMF1 may obtain relevant information of a preset private network service rule in a PCC manner, and SMF1 may also obtain relevant information of a preset private network service rule from its own local configuration; of course, it is not excluded that the SMF1 may obtain the information related to the preset private network service rule through other ways. It should be noted that the specific manner of acquiring the relevant information of the preset private network service rule is set according to actual requirements. Then, the SMF1 sends the related information of the preset private network service rule to the UPF1 in the process of establishing the public network session channel user plane for the user terminal. The related information of the preset private network service rule at least comprises a PCC strategy identification, related information of a public network name, preset destination address information of a private network service, related information of a private network name required for establishing a private network session, user identification information and the like; the private network name related information refers to necessary information such as a private network name required for establishing a private network session, and under the condition that network scenes are different, specific contents included in the private network name related information are different. In the 5G scenario, the information related to the private network name at least includes the private network DNN and a network slice identifier S-NSSAI to which the private network DNN belongs, that is, the private network name and the network slice identifier.
Specifically, the obtaining, by the first session control plane network element, the relevant information of the preset private network service rule in the PCC manner includes at least one of the following manners:
in the process of establishing public network session for a user terminal, a policy control network element issues a full amount of related information of a preset private network service rule to a first session control plane network element;
in the process of establishing public network session for the user terminal, the policy control network element issues a PCC predefined rule to the first session control plane network element, and the first session control plane network element configures the PCC predefined policy from the local thereof according to the PCC predefined rule so as to obtain the relevant information of the preset private network service rule.
It should be understood that during the process of establishing the public network session tunnel user plane for the user terminal, the PCF/UDR sends the full amount of information related to the preset private network service rule to the SMF1. Or, in the process of establishing a public network session channel user plane for the user terminal, the PCF/UDR issues the PCC predefined rule to the SMF1, and the SMF1 configures the PCC predefined policy from the local thereof according to the PCC predefined rule, thereby acquiring the related information of the preset private network service rule. Namely: in step 3-2, through the PCC flow, the SMF1 of the public network service obtains preset private network service rule related information in a preset "private network service offloading policy in the public network service", including information of each parameter shown in table 1; specifically, a mode that PCF/UDR publishes the total information in 1 to SMF1 can be adopted, and a mode that PCF/UDR issues PCC predefined rules to SMF1 and SMF1 locally configures the PCC predefined rules can also be adopted. The specific process of the SMF1 obtaining the relevant information of the preset private network service rule refers to (2) and (3) in step 0.
Specifically, all the information in table 1 is stored in the local configuration of the first session control plane network, and the manner for the first session control plane network element to obtain the relevant information of the preset private network service rule from its local configuration includes:
mode 1: the SMF1 acquires relevant information of the preset private network service rule from all the information in the local configuration table 1.
Mode 2: the SMF1 obtains the relevant information of the preset private network service rule from all the information except the "subscriber identity" in the local configuration table 1. According to the private network DNN signed by the user and the network slice identification information to which the private network DNN belongs, which is acquired from the user attributive UDM/UDR, by the SMF1, if the private network DNN and the network slice identification information to which the private network DNN belongs are matched with the private network DNN (including the network slice identification S-NSSAI) in the table 1 information locally configured by the SMF1, a preset private network service distribution strategy in public network service is executed for the UE of the user, and the relevant information of the preset private network service rule in the table 1 of the UE is acquired and enabled.
Corresponding to steps 6-7 of fig. 4, step 6 is the mediation of public network service: the UE uses a first user IP address (IP address 1 in figure 4) of a public network session obtained from a network to use a service, the UPF1 detects a destination address, namely a destination URL/URI and a destination IP address, included in a UL uplink user data message sent by the UE in a public network session channel user plane, if the destination URL/URI and the destination IP address are not included in the destination URL/URI and the destination IP address in the table 1, the UE is identified as the public network service, and then the public network connected with an N6 interface of the public network session is normally dredged; if the destination URL/URI and the destination IP address in the UL uplink data message are contained in the destination URL/URI and the destination IP address stored in the table 1, the UL uplink data message is identified as a private network service, namely the public network service comprises the private network service, the UE uses the private network service, namely the access event of the private network service is sent to the SMF1, the reported content contains the content which is specified by the SMF1 in the step 4 and needs to be reported by the UPF1, when the UPF1 identifies the first UL uplink data message which belongs to the private network service and appears in the public network service, the access event of the private network service is immediately sent to the SMF1, and after the confirmation message which is returned by the SMF1 and received for the access event of the private network service, the subsequent UL uplink data message of the same private network service and is identified in the user plane of the public network session channel can not repeatedly send the access event of the private network service to the SMF1 any more; meanwhile, before the private network session channel user plane is established for the UE, the UPF1 needs to cache all the identified private network service UL uplink data packets of the private network service until the private network session channel user plane of the UE is established, and then the UPF1 sequentially forwards (receives first to forward) all the cached private network service UL uplink data packets of the private network service, and then forwards the private network service UL uplink data packets received after the private network session channel user plane of the private network service of the UE is established, that is, the UPF1 caches UL uplink data packets of all the private network services in the public network session channel user plane, that is, when the first session user plane network element identifies that the public network service transmitted by the public network session channel user plane includes the private network service, the first session user plane network element sends the access event of the private network service to the first session control plane network element of the public network service, and also includes the first session user plane network element caching all the private network service UL uplink data packets in the private network session channel user plane of the public network, and further waits for the next step of indication of the SMF1. And the SMF1 receives the access event of the private network service reported by the UPF1 and starts a process of establishing a private network PDU session for the UE. The SMF1 and the UPF1 can still normally dredge the public network service of the user when establishing the private network session and the private network session channel user plane for the user, and the public network service is not influenced by the private network session and the private network session channel user plane. It should be understood that, when the first session user plane network element recognizes that the public network service transmitted by the public network session channel user plane includes the private network service, while sending the access event of the private network service to the first session control plane network element of the public network service, the method further includes: the first session user plane network element caches UL uplink data messages of all private network services in the public network session channel user plane, the public network session channel user plane forwards the UL uplink data messages and DL downlink data messages of the public network services, and the public network services forwarded by the public network session channel user plane do not trigger the process of establishing private network sessions for users. The first session user plane network element can only send a private network service access event to the first session control plane network element once; for a private network service access event sent by a first session user plane network element in the same public network session channel user plane for the same private network service and multiple private network service access events sent, the private network session establishment process is only executed once by the first session control plane network element for the same private network service.
Further, the access event is generated by the following method:
the first session user plane network element acquires the private network name related information matched with the destination address information and required for establishing the private network session from the preset private network service rule related information, and generates an access event of the private network service according to the private network name related information required for establishing the private network session; or the first session user plane network element generates an access event of the private network service according to the destination address information.
When a private network session of a private network service is established for a user, a first target SMF needs to obtain private network name related information corresponding to the private network service, and the first target SMF establishes a corresponding private network session including a user plane channel of the private network session for the UE according to the obtained private network name related information. The private network name related information required for establishing the private network session in the 5G scene includes a private network name and a network slice identifier to which the private network name belongs, that is, a private network DNN and a network slice identifier S-NSSAI to which the private network DNN belongs. The preset private network service rule related information includes preset destination address information of the private network service (in table 1, "destination URL/URI and destination IP address") and private network name related information of the private network service (in table 1, "private network DNN (including network slice identifier S-NSSAI)"), and there is a correspondence between the preset destination address information and the private network name related information. As shown in table 1, a set of URLs/URIs and/or a set of IPv4 addresses and/or a set of IPv6 addresses correspond to a private network DNN and a network slice identified by S-NSSAI to which the private network DNN belongs; namely, the information related to the private network name of the private network service can be positioned through the destination address information of the private network service. When there are multiple private network services in the public network service of the same user, the preset private network service rule related information further includes private network service numbers for distinguishing the private network services, as shown in table 1, where "serial numbers" identify different private network services of the same user, and destination address information and private network name related information of different private network services of the same user are different, that is, "destination URL/URI and destination IP address" corresponding to different "serial numbers" in table 1 are different, and "private network DNN (including network slice identifier S-NSSAI)" is different. The preset private network service rule related information takes the user identifier as a first index, as shown in table 1, that is, different users can configure different preset private network service rule related information, and the private network service destination address information of different users is the same and can respectively correspond to different private network name related information.
According to the related information of the preset private network service rule, the related information of the private network name of the private network service is positioned through the destination address information of the private network service, and a first session control plane network element (SMF 1) establishes a corresponding private network session for the UE according to the related information of the private network name and controls a first session user plane network element (UPF 1) to establish a user plane channel of the private network session; and acquiring a private network service access event from a first session user plane network element (UPF 1) according to a first session control plane network element (SMF 1), establishing a corresponding private network session for the UE according to the private network name related information, and supporting the establishment of a plurality of corresponding private network service sessions for a plurality of different private network services of the same user in the same public network session channel user plane. For example: the related information of the private network name of the private network service A is an enterprise 1 private network DNN and belongs to S-NSSAI1; the information related to the private network name of the private network service B is an enterprise 2 private network DNN and belongs to S-NSSAI2; the information related to the private network name of the private network service C is the enterprise 3 private network DNN and belongs to S-NSSAI2, and so on.
It should be understood that, in one case, since the information related to the preset private network service rule includes the PCC policy identifier, the information related to the public network name, the preset destination address information of the private network service, the information related to the private network name required for establishing the private network session, and the user identifier information, corresponding to step 4 in fig. 4, the first target SMF sends the information related to the preset private network service rule to the first target UPF in advance, the first target UPF matches the preset destination address information of the private network service identical to the destination address information from the information related to the preset private network service rule according to the destination address information in the UL uplink data packet sent by the user terminal, then matches the information related to the private network name according to the matched preset destination address information, obtains the information related to the private network name required for establishing the private network session matched with the destination address information, then generates the access event of the private network service according to the matched information related to the private network name required for establishing the private network session, that the access event of the private network service includes the private network name required for establishing the private network session, and when the first target session related event of the private network service access event of the private network service is received from the target SMF, the access event of the first target service, the access event of the private network service is received. In another case, the first target UPF generates an access event of the private network service according to destination address information in an UL uplink data packet sent by the user terminal, where the access event includes destination address information in the UL uplink data packet sent by the user terminal, the first target SMF receives the access event of the private network service sent by the first target UPF, and can obtain the destination address information in the UL uplink data packet sent by the user terminal from the access event, and the first target SMF derives, according to the destination address information, from preset private network service rule-related information according to a matching rule of the destination address information, preset destination address information, and private network name-related information: the destination address information is matched with the information related to the private network name required by establishing the private network session.
Step S220: and the first session control plane network element starts a flow for establishing a private network session for the user according to the access event, and controls the first session user plane network element to execute the flow for establishing the private network session channel user plane for the user, so as to establish the private network session channel user plane for the user.
In this embodiment, after receiving the access event of the private network service reported by the UPF1, the SMF1 starts a process of establishing a private network session for the user to establish the private network session, and controls the UPF1 to execute a process of establishing a private network session channel user plane for the user to establish the private network session channel user plane.
Further, as shown in fig. 5, step S220 includes the following steps:
step S2211: the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
step S2212: when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is not also used as a second session user plane network element, determining the second user IP address and the second session user plane network element, and sending the second user IP address to the first session user plane network element; the second user IP address is different from preset destination address information of the private network service in the preset private network service rule related information;
step S2213: and the first session control plane network element controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session.
It should be understood that after receiving an access event of a private network service sent by the UPF1, the SMF1 may obtain, according to the access event, private network name related information required for establishing a private network session if the access event includes the private network name related information required for establishing the private network session; if the access event comprises destination address information, destination address information can be acquired, and then the information is deduced from the relevant information of the preset private network business rule according to the matching rule of the destination address information, the preset destination address information and the relevant information of the private network name: the destination address information is matched with the information related to the private network name required by establishing the private network session. In the following, the private network name is a private network DNN, and the network slice identifier S-NSSAI to which the private network name belongs is a private network S-NSSAI.
For the scenario that the first target SMF is concurrently used as the second target SMF and the first target UPF is not concurrently used as the second target UPF, it should be understood that according to the actual network deployment situation and the service mediation scheme, SMF1 has the capability of mediation of both the public network service and the private network DNN + private network S-NSSAI service, while UPF1 only has the capability of mediation of the public network service and does not have the capability of mediation of the private network DNN + private network S-NSSAI service, that is: SMF1 can be used as SMF2, and UPF1 can not be used as UPF 2. Specifically, after acquiring a private network DNN and a private network S-NSSAI corresponding to a private network service, the SMF1 determines that the SMF1 is also used as the SMF2 after determining that the SMF has the capability of dredging the private network DNN and the private network S-NSSAI; and after determining that the self does not have the capability of dredging the private network DNN and/or the private network S-NSSAI, determining that the self does not serve as the SMF2.
The SMF1 determines that the SMF1 can be used as the SMF2, the SMF2 is used as the SMF2, namely the SMF1 and the SMF2 are the same network element and can be called as SMF1/SMF2, the process that the SMF2 establishes the private network session (DNN is private network DNN, S-NSSAI is private network S-NSSAI) for the UE is executed, the process comprises the steps of obtaining session management subscription data of the private network DNN and the private network S-NSSAI of the user from a user home UDM/UDR, selecting UPF, executing secondary authentication/authorization on demand, allocating a second user IP address for the UE, executing PCC strategy of the private network DNN, and controlling the selected UPF to establish a private network session channel user plane for the UE. I.e. the steps 8-2, 8-3 and 11 in fig. 4 are not needed to be executed; the steps 9-1, 9-2, 9-3, 10, 12 and 13 need to be executed. Wherein: (1) When the UPF is selected, the SMF1/SMF2 determines whether the UPF1 has the capability of dredging the private network DNN and the private network S-NSSAI, if not, the UPF1 is determined as the I-UPF of the private network DNN, and the UPF with the capability of dredging the private network DNN and the private network S-NSSAI is selected as the UPF2; (2) The SMF1/SMF2 obtains a second user IP address allocated by the private network DNN through a flow of 'secondary authentication/authorization' or the SMF1/SMF2 allocates the second user IP address (IP address 2 in figure 4) for the private network DNN for the UE and sends the second user IP address to the UPF1 in a step 12; for the private network, the source IP address in the UL uplink data packet of the private network service sent by the UE received by the private network should be the IP address of the second user; (3) And step 13, controlling UPF2 and UPF1 by SMF1/SMF2 to establish a user plane channel of a private network DNN for the UE, wherein the user plane channel comprises an N9 interface between UPF1 and UPF2 and an N6 interface between UPF2 and the private network. Through the steps, the network side establishes the private network session channel user plane for the UE, wherein the private network DNN + private network S-NSSAI is completed. When the private network service has a plurality of private network services, a plurality of corresponding private network session channel user planes can be established for the UE through the private network DNN and the private network S-NSSAI.
Further, as shown in fig. 6, step S220 further includes the following steps:
step S2221: the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
step S2222: when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is also used as a second session user plane network element, determining a second user IP address, and sending the second user IP address to the first session user plane network element, wherein the second user IP address is different from preset destination address information of the private network service in the preset private network service rule related information;
step S2223: and the first session control plane network element controls the first session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required by establishing the private network session.
It should be understood that after receiving an access event of a private network service sent by the UPF1, the SMF1 may obtain, according to the access event, private network name related information required for establishing a private network session if the access event includes the private network name related information required for establishing the private network session; if the access event comprises destination address information, destination address information can be acquired, and then the information is deduced from the relevant information of the preset private network business rule according to the matching rule of the destination address information, the preset destination address information and the relevant information of the private network name: the destination address information is matched with the information related to the private network name required by establishing the private network session. In the following, the private network name is a private network DNN, and the network slice identifier S-NSSAI to which the private network name belongs is a private network S-NSSAI.
For the scenario that the first target SMF is also used as the second target SMF and the first target UPF is also used as the second target UPF, it should be understood that according to the actual network deployment situation and the service mediation scheme, SMF1 has the capability of mediating both the public network service and the private network DNN + private network S-NSSAI service, and UPF1 has the capability of mediating both the public network service and the private network DNN + private network S-NSSAI service, that is: SMF1 may be regarded as SMF2, and UPF1 may be regarded as a scenario of UPF 2. Specifically, the SMF1 determines that it can be used as the SMF2, and then uses it as the SMF2, that is, the SMF1 and the SMF2 are the same network element, and executes a process of the SMF2 to establish a private network session for the UE (DNN is a private network DNN, and S-NSSAI is a private network S-NSSAI), including acquiring session management subscription data of the private network DNN and the private network S-NSSAI of the user from the user home UDM/UDR, selecting an UPF, executing "secondary authentication/authorization" as needed, allocating a second user IP address to the UE, executing a PCC policy of the private network DNN, and controlling the selected UPF to establish a private network session channel user plane for the UE. I.e. the steps 8-2, 8-3 and 11 in fig. 4 are not needed to be executed; the steps 9-1, 9-2, 9-3, 10, 12 and 13 need to be executed. Wherein: (1) When UPF is selected, SMF1/SMF2 determines whether UPF1 has the capability of dredging private network DNN and private network S-NSSAI, if yes, UPF1 is determined as UPF2 of private network DNN, namely UPF1 and UPF2 are the same network element and can be called UPF1/UPF2; (2) The SMF1/SMF2 obtains a second user IP address allocated by the private network DNN through a 'secondary authentication/authorization' process or the SMF1/SMF2 allocates a second user IP address (IP address 2 in figure 4) for the private network DNN for the UE and sends the second user IP address to the UPF1/UPF2 in a step 12; for the private network, the source IP address in the UL uplink data message of the private network service sent by the UE received by the private network is the IP address of the second user; (3) And step 13, controlling the UPF1/UPF2 by the SMF1/SMF2 to establish a user plane channel of the private network DNN for the UE, wherein the user plane channel comprises an N6 interface between the UPF1/UPF2 and the private network. Through the steps, the network side establishes the private network session channel user plane for the UE, wherein the private network DNN + private network S-NSSAI is completed. When the private network service has a plurality of private network services, a plurality of corresponding private network session channel user planes can be established for the UE through the private network DNN and the private network S-NSSAI.
Further, as shown in fig. 7, step S220 further includes the following steps:
step S2231: the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
step S2232: when the first session control plane network element determines that the first session control plane network element does not double as a second session control plane network element and the first session user plane network element does not double as a second session user plane network element, determining the second session control plane network element and the second session user plane network element, and sending a private network session establishment request to the second session control plane network element; the first session control plane network element determines the second session control plane network element, namely the second session control plane network element under a 5G network, by adopting the same or similar method for determining the session control plane network element with the session establishment initiation network element;
step S2233: the second session control plane network element returns a private network session establishment response to the first session control plane network element, wherein the private network session establishment response at least comprises the second user IP address and interface address information of a relevant interface of the second session user plane network element, and the second user IP address is different from preset destination address information of the private network service in preset private network service rule relevant information;
step S2234: and when receiving the private network session establishment response, the first session control plane network element sends the second user IP address to the first session user plane network element, and controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session.
It should be understood that after receiving an access event of a private network service sent by the UPF1, if the access event includes private network name related information required for establishing a private network session, the SMF1 may obtain the private network name related information required for establishing the private network session according to the access event; if the access event comprises destination address information, destination address information can be acquired, and then the information is deduced from the relevant information of the preset private network business rule according to the matching rule of the destination address information, the preset destination address information and the relevant information of the private network name: the destination address information is matched with the information related to the private network name required by establishing the private network session. The following description will be given by taking an example in which the private network name is private network DNN and the network slice identifier S-NSSAI to which the private network name belongs is private network S-NSSAI.
In step S2232, a specific manner of determining the second session user plane network element (UPF 2) is: when the first session control plane network element (SMF 1) determines that the first session control plane network element (SMF 1) does not serve as the second session control plane network element (SMF 2), the first session control plane network element (SMF 1) determines the second session control plane network element (SMF 2) through NRF service discovery, namely the first session control plane network element (SMF 1) executes SMF service discovery to a home network resource database network element (NRF), and selects the second session control plane network element (SMF 2) according to a service discovery result; then the first session control plane network element (SMF 1) determines an intermediate session control plane network element (I-SMF) which is used as a private network session, determines a first session user plane network element (UPF 1) which is used as an intermediate session user plane network element (I-UPF) of the private network session, and indicates the first session user plane network element (UPF 1) to allocate and report resources of the intermediate session user plane network element (I-UPF) for the private network service; finally, a private network session establishment request is sent to the second session control plane network element (SMF 2), and the second session user plane network element (UPF 2) is determined by the second session control plane network element (SMF 2).
For the scenario that the first target SMF is not concurrently the second target SMF and the first target UPF is not concurrently the second target UPF, it should be understood that according to the actual network deployment situation and the service mediation scheme, SMF1 only has the capability of mediation of the public network service and not the capability of mediation of the private network DNN + private network S-NSSAI service, and since UPF2 should be the UPF controlled by SMF2, UPF1 does not have the capability of mediation of the private network DNN + private network S-NSSAI service, that is: SMF1 cannot be taken as SMF2, and UPF1 cannot be taken as UPF 2. Specifically, when the SMF1 determines that it cannot serve as the SMF2, it executes the SMF service discovery procedure, and sends a procedure of establishing a private network session (DNN is a private network DNN, and S-NSSAI is a private network S-NSSAI) for the UE to the selected SMF2, and after receiving a private network session (DNN is a private network DNN, and S-NSSAI is a private network S-NSSAI) establishment response message returned by the SMF2, controls the SMF1 to establish a private network session channel user plane for the UE. Namely, the business processes from step 8 to step 13 need to be executed. Wherein: after receiving the second user IP address returned by SMF2 (the SMF2 obtains the second user IP address allocated to the private network DNN through the "secondary authentication/authorization" procedure or the SMF2 allocates the second user IP address (IP address 2 in fig. 4) for the private network DNN to the UE), SMF1 sends the second user IP address to UPF1 in step 12; for the private network, the source IP address in the UL uplink data packet of the private network service sent by the UE received by the private network should be the second user IP address. Through the steps, the network side establishes a private network session channel user plane for the UE, wherein the private network session channel user plane completes private network DNN + private network S-NSSAI. When the private network service has a plurality of private network services, a plurality of corresponding private network session channel user planes can be established for the UE through the private network DNN and the private network S-NSSAI.
Corresponding to fig. 4, the business process from step 8 to step 13 is as follows:
(1) Step 8-1, SMF1 executes SMF service discovery to NRF, and selects a second target SMF for establishing private network DNN for UE according to service discovery result; in the user roaming scenario, the second target SMF of the private network DNN is the user-owned SMF, i.e. SMF2 in fig. 4, SMF1 in the public network DNN takes itself as the I-SMF of the private network DNN, and simultaneously takes the selected UPF1 as the I-UPF of the private network DNN.
(2) And 8-2, taking the SMF1 as the I-SMF of the private network DNN of the user, and indicating the I-UPF (UPF 1 in the figure 4) of the private network DNN of the user to distribute and report the N9 interface resources of the private network DNN of the user.
(3) And 8-3, the SMF1 sends a private network session establishment request to the SMF2 selected by the private network DNN of the user.
Step 9-1 to step 11: after SMF2 of the private network service of the user executes UDM service discovery to NRF, SM (session management) subscription data of the user is obtained and subscribed from the user home UDM/UDR, wherein the SM subscription data comprises network slice identification (S-NSSAI) and DNN which are allowed to be used by the user. The SMF2 establishes a private network session for the UE, and comprises the following steps: the method comprises the steps of performing 'secondary authentication/authorization' between the SMF2 and a private network as required, after PCF service discovery is executed to the NRF, obtaining a private network service preset PCC strategy signed by a user from a user home PCF/UDR, selecting UPF2, issuing the private network service preset PCC strategy to the UPF2, indicating the allocation of session resources for private network session, allocating a second user IP address (IP address 2 in figure 4) to the UE, or allocating IP address 2 by the private network in the 'secondary authentication/authorization' process, and the like, returning relevant information to an I-SMF (SMF 1 in figure 4) of the private network service of the user, and completing relevant information interaction, wherein the steps follow the 3GPP standard.
Wherein, in the "secondary authentication/authorization" in step 9-2, the user authentication information includes an authentication password and a user name, if the authentication password and the user name are the same and are both user MSISDN or IMSI in MSISDN or IMSI, the I-SMF (SMF 1 in fig. 4) of the first target SMF/private network service of the public network service should be completed instead of the UE, without forwarding the authentication information to the UE; if the user name and the password need to be provided by the UE, the I-SMF (namely SMF 1) of the first target SMF/private network service of the public network service needs to pass through user authentication information between the UE and the private network. Meanwhile, in the case that the second user IP address (IP address 2 in fig. 4) allocated to the user by the second target SMF of the private network service (SMF 2 in fig. 4) needs to be guaranteed, the second user IP address (IP address 2 in fig. 4) allocated to the user by the second target SMF of the private network service should not be duplicated with all IP addresses of the private network service that can be accessed by the UE, that is, any IP address in the fields of "destination URL/URI and destination IP address" in table 1 should not be included in the second user IP address pool configured for the enterprise private network service by the second target SMF of the private network service, that is, the second user IP address is not the same as the preset destination address information in the PCC preset policy.
Step 12: the information interaction between the I-SMF (namely SMF 1) of the first target SMF/private network service of the public network service and the I-UPF (UPF 1 in figure 4) of the first target UPF/private network service of the public network service is completed through an N4 interface, and comprises the following steps: the SMF1 issues a preset PCC policy, N9 interface information of a second target UPF (UPF 2 in fig. 4) of the private network DNN, a second user IP address (IP address 2 in fig. 4) for the user private network DNN, and the like to the UPF1. And the I-SMF of the first target SMF/private network service of the public network service and the target SMF2 of the private network service of the user complete the related information interaction, and complete the establishment of the private network session.
Step 13: a private network session channel user plane of the private network session is established between the I-UPF of the first target UPF/private network service of the public network service and the second target UPF (UPF 2 in fig. 4) of the private network service, and the private network service of the user is dredged through the private network session channel user plane, that is, the UL uplink data packet of the private network service cached by the first target UPF and the UL uplink data packet currently being transmitted (the UL uplink data packet of the private network service received after the first target UPF is established on the private network session channel user plane) are transmitted by the private network session channel user plane.
Further, when step S220 is executed, for a scenario where the first target SMF is also used as the second target SMF and the first target UPF is not also used as the second target UPF, or a scenario where the first target SMF is also used as the second target SMF and the first target UPF is also used as the second target UPF, or a scenario where the first target SMF is not also used as the second target SMF and the first target UPF is not also used as the second target UPF, if the private network needs to start the secondary authentication/authorization authentication process, the secondary authentication/authorization authentication process includes:
when the first session control plane network element determines that the private network needs to start secondary authentication/authorization and stores user authentication information required for performing secondary authentication on the user terminal, the first session control plane network element can act on the user terminal to execute a secondary authentication/authorization process according to local configuration or preset private network service rule related information, and controls the first session user plane network element to execute the private network related authorization on the user terminal. It should be noted that the flow of the secondary authentication/authorization corresponds to step 9-2 of fig. 4, and refer to the details of step 9-2 above.
If the SMF1 determines that the private network needs to start secondary authentication/authorization authentication, and user authentication information required for performing secondary authentication on the UE is stored in the SMF1, the SMF1 replaces the UE to perform secondary authentication, so that the SMF1 can be understood to act on the UE to perform a secondary authentication/authorization process according to local configuration or a preset PCC policy, and control the UPF1 to perform the related authorization of the private network on the UE. The specific implementation manner of the SMF1 acting the UE to execute the secondary authentication/authorization process according to the local configuration or the preset PCC policy is as follows: SMF1 local configuration: and enabling the proxy UE to perform secondary authentication for specific private network name related information (the private network name and S-NSSAI to which the private network name belongs), wherein the authentication parameter is the user identification MSISDN or IMSI. The other realization mode is as follows: in table 1, 1 parameter information is added to "proxy user performs secondary authentication", and the values of the parameters are: if the authentication parameter is the user identification MSISDN, and if the authentication parameter is the user identification IMSI, then the SMF1 does not execute the secondary authentication of the agent user, if the authentication parameter is the user identification MSISDN, then the SMF1 executes the secondary authentication of the agent user, and if the authentication parameter is the user identification MSISDN, and if the authentication parameter is the user identification IMSI, then the SMF1 executes the secondary authentication of the agent user, and the authentication parameter is the user identification IMSI.
Under the scene that the first target SMF is used as the second target SMF and the first target UPF is not used as the second target UPF, or the first target SMF is used as the second target SMF and the first target UPF is used as the second target UPF, or the first target SMF is not used as the second target SMF and the first target UPF is not used as the second target UPF, the user authentication information is not required to be sent to the UE, the SMF1 replaces the UE to complete the secondary authentication or authorization process, the user does not need to manually input the user authentication information on the UE, the user can use the private network service process through the UE without the perception, and the service access experience of the user is improved.
Step S230: and the first session user plane network element replaces the first user IP address in the UL uplink data messages of all the private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages to the private network through the private network session channel user plane.
In this embodiment, after the private network session channel user plane is established, for the UE side, the UPF1 of the public network service only has one public network session channel user plane, which includes an N9 interface (in the case of I-UPF (I-UPF 1 in fig. 4)) or an N3 interface (in the case of no I-UPF (I-UPF 1 in fig. 4)); for the network side, there are one public network session channel user plane (only N6 interface) and one private network session channel user plane (when the UPF1 does not also serve as the UPF2, there is an N9 interface, and when the UPF1 also serves as the UPF2, there is an N6 interface) at the same time.
The UPF1 replaces the first user IP address in the UL uplink data messages of all private network services transmitted by the user plane of the public network session channel with the second user IP address. And further, the UPF1 transmits the replaced UL uplink data message to a private network through a private network session channel user plane, namely, service shunting, so as to realize access of the private network. The private network includes campus network, enterprise private network, etc., and the enterprise private network includes private network of government department, private network of public institution, private network of private enterprise, etc. The UPF1 replaces the first user IP address in the UL uplink data message with the second user IP address, which is an operation completed by the replaced UE and does not need the UE to support a multi-DNN function.
Specifically, step S230 includes: after the private network session channel user plane is established, the first session user plane network element replaces the first user IP address in the UL uplink data messages of all the private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replaces the first user IP address in the UL uplink data messages of all the private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages of all the private network services cached before the private network session channel user plane is established and the replaced UL uplink data messages of all the private network services received after the private network session channel user plane is established to the private network sequentially through the private network session channel user plane.
It should be understood that, after the private network session channel user plane is established, the UPF1 replaces the first user IP address in the UL uplink data packets of all private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replaces the first user IP address in the UL uplink data packets of all private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data packets of all private network services cached before the private network session channel user plane is established and the replaced UL uplink data packets of all private network services received after the private network session channel user plane is established to the private network sequentially through the private network session channel user plane. Wherein, the transmission of UL uplink data message by the private network session channel user plane follows the rule of receiving and forwarding first.
Further, the present embodiment is to support the distribution and aggregation of multiple private network services in the public network service of the same user. Considering that a user uses a plurality of private network services through the same UE, establishing a plurality of corresponding private network session channel user planes for the UE according to the private network name related information to which the private network services used by the user in the same public network service session channel user plane on the same UE belong, namely, the step that a first session user plane network element transmits the replaced UL uplink data packet to the private network through the private network session channel user planes comprises the following steps:
and the first session user plane network element executes a service distribution rule to determine a private network session channel identifier according to the UL uplink data message, and transmits the replaced UL uplink data message to a private network through a private network session channel user plane corresponding to the private network session channel identifier.
It should be understood that, when there are one or more private network services, after the private network session channel user plane is established, each private network service corresponds to one private network session channel user plane, and each private network session channel user plane has one corresponding private network session channel identifier. UPF1 executes a business distribution rule, determines private network conversation channel identification according to target UL uplink data corresponding to different private network businesses, can be matched with a corresponding private network conversation channel user plane through the determined private network conversation channel identification, UPF1 replaces a first user IP address in each UL uplink data message with a second user IP address, and then transmits each replaced UL uplink data message to a private network through the private network conversation channel user plane corresponding to private network name related information according to the corresponding private network conversation channel identification, and business distribution is achieved. Wherein each private network service corresponds to a respective second user IP address.
Step S240: and the first session user plane network element replaces the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address, and sends the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
In this embodiment, after the UPF1 transmits the replaced UL uplink data packet to the private network through the private network session channel user plane, the private network sends a DL downlink data packet to the UE. The UPF1 replaces the second user IP address in the DL downlink data message with the first user IP address, where the second user IP address and the first user IP address are both understood as destination IP addresses, that is, the first user IP address included in the DL downlink data message after replacement corresponds to the first user IP address included in the UL uplink data message before replacement. And then, the UPF1 sends the replaced DL downlink data message to the UE through the public network session channel user plane and the base station in sequence, and the user can see the required access information through the UE.
Wherein, the UPF1 forwards the data received from the N6 interface of the user plane of the session channel in the public network to the N9 interface (in the case of I-UPF (I-UPF 1 in fig. 4)) or the N3 interface (in the case of I-UPF (I-UPF 1 in fig. 4)) of the user plane of the session channel in the public network, and then sends the data to the UE through the gNB; the UPF1 forwards data received from the N9 interface (when the UPF1 is not concurrently used as the UPF2, the N9 interface is present) or the N6 interface (when the UPF1 is concurrently used as the UPF2, the N6 interface is present) of the private network session channel user plane to the N9 interface (when the I-UPF is present (I-UPF 1 in fig. 4)) or the N3 interface (when the I-UPF is not present (I-UPF 1 in fig. 4)) of the public network session channel user plane, and then transmits the data to the UE via the gNB. Wherein, the IP address of the UE is the first user IP address of the public network session (IP address 1 in fig. 4). For the IP address for the public network session channel user plane (IP address 1 in fig. 4) and the IP address for the private network session channel user plane (IP address 2 in fig. 4), IPv4v6, IPv4, and IPv6 may be respectively adopted. Fig. 8 is a schematic diagram illustrating a mapping relationship between a first user IP address and a second user IP address.
Further, considering the case that the user uses a plurality of private network services through the UE, the private network session channel user planes with the same number as the private network services are correspondingly established, and the number of the public network session channel user planes is one, the private network transmits DL downlink data packets corresponding to different private network services to the public network session channel user planes according to the corresponding private network session channel user planes, and each private network session channel user plane transmits the DL downlink data packets transmitted by each private network session channel user plane to the public network session channel user plane. For the case that the public network I-UPF (the public network I-UPF1 in fig. 4) exists in the public network and the public network I-UPF does not exist, the step S240 includes the following steps:
the first session user plane network element executes a service convergence rule so as to converge the target DL downlink data transmitted by the private network session channel user plane corresponding to the private network session channel identifier into the public network session channel user plane between the first session user plane network element and the base station;
replacing the second user IP address in a DL downlink data message sent to the user terminal by the private network with the first user IP address;
sending the replaced DL downlink data message to the user terminal through a first session user plane network element of the public network session channel user plane and a base station in sequence; or,
and sending the replaced DL downlink data message to the user terminal through a first session user plane network element, an intermediate session user plane network element and a base station of the public network session channel user plane in sequence.
Specifically, for the case that there is no I-UPF1 in the public network, when there are multiple private network session channel user planes, the UPF1 executes a service convergence rule to converge the target DL downlink data transmitted by the private network session channel user plane corresponding to each private network session channel identifier to the public network session channel user plane between the UPF1 and the gNB, then replaces the second user IP address in the DL downlink data message sent to the UE by the private network with the first user IP address, and further sends the replaced DL downlink data message to the UE sequentially through the UPF1 and the gNB of the public network session channel user plane.
For the situation that I-UPF1 exists in the public network, when a plurality of private network session channel user planes are established, the UPF1 executes a service convergence rule to converge target DL downlink data transmitted by the private network session channel user plane corresponding to each private network session channel identifier into the public network session channel user plane between the UPF1 and the gNB, then a second user IP address in the DL downlink data message sent to the UE by the private network is replaced by a first user IP address, and further the replaced DL downlink data message is sent to the UE through the UPF1, the I-UPF1 and the gNB of the public network session channel user plane in sequence.
According to the technical scheme, the embodiment realizes that the public network service and the private network service are borne for the user terminal through the single session channel, and the network can respectively carry out charging and service control on the private network service and the public network service of the user terminal. For the user terminal which does not support the multi-DNN function, the public network service and the private network service can be simultaneously provided for the user. When a user uses the private network service through a user terminal which does not support the multi-DNN function or supports the multi-DNN function, the user does not need to perform complicated configuration on the user terminal, the private network service can be started and used in the using process of the public network service through simple operation of clicking a link or inputting a destination address on a public network page, private network access can be performed without extra operation, and the imperceptibility of the user to use the private network service through the user terminal and the service access experience of the user are improved.
Further, based on the above embodiment, after step S220, the method further includes: and when the preset conditions are met, the first session control plane network element sends a notification message to the corresponding session establishment initiating network element according to the previously acquired session establishment initiating network element identifier so as to notify the session establishment initiating network element to count the number of the private network session channel user planes.
It should be understood that, in a 5G scenario, there are multiple session establishment initiating network elements, the SMF1 can start a function of sending a notification message to the AMF as required, and the preset condition is set according to an actual requirement, for example, the preset condition is that establishment of a private network session channel user plane is completed. When the SMF1 starts the function, the SMF1 should support to send the notification message to all or part of AMFs of the same operator according to the AMF, or send the notification message to AMFs of part of other operators, or not send the notification message to AMFs of part of other operators; the SMF1 may obtain the AMF identifier before establishing the public network session channel user plane. When a preset condition is met, the SMF1 sends a notification message to the AMF according to the previously acquired AMF identifier, to notify the AMF to count the number of the private network session channel user planes, for example, the AMF is the AMF1 in fig. 4. The SMF1 sends the notification message to the AMF according to the previously acquired AMF identifier to notify the AMF that "the network additionally establishes a private network session for the UE", that is, the private network session is also included in addition to the public network session, and in fig. 4, the SMF1 sends the message to the AMF1 through the I-SMF1 (in the case of the presence of the I-SMF) or directly (in the case of the absence of the I-SMF), so as to ensure the consistency of the statistical session numbers on the AMF1 and the SMF1. If the step exists, the AMF only takes the "private network session additionally established by the network for the UE" into the relevant statistical index, and is not used for the session (public network session and private network session) that needs to be established for the user when the user performs handover/roaming across AMF and handover/roaming across SMF, that is, when the UE performs handover/redirection of the public network session, the AMF only performs handover/redirection of the private network session, and does not need to perform handover/redirection of the private network session.
Further, based on the above embodiment, the service access processing method further includes:
and the first session control plane network element and the first session user plane network element perform segmented management on the public network session channel user plane and the private network session channel user plane, and perform session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service respectively.
It should be understood that, under the condition that SMF1 is not both SMF2 and UPF1 is not both UPF2, and under the condition that SMF1 is both SMF2 and UPF1 is not both UPF2, the I-SMF (i.e. SMF 1) of the first target SMF/private network service of the public network service and the I-UPF (i.e. UPF 1) of the first target UPF/private network service of the public network service can cooperate to realize the respective flow statistics and charging bill generation for the public network session and the private network session, and the respective control; as shown in fig. 4: the public network conversation user plane is as follows: UE-wireless gNB- (I-UPF 1, if present) -UPF 1-public network; the private network session user plane is as follows: UE-wireless gNB- (I-UPF 1, if present) -UPF1 (for UL uplink data packets, the first user IP address is replaced from user IP address 1 to user IP address 2; for DL downlink data packets, the second user IP address is replaced from user IP address 2 to user IP address 1) -UPF 2-private network; and respectively carrying out flow statistics and charging and session control on the user planes of the 2 session channels.
Under the condition that the SMF1 is also used as the SMF2 and the UPF1 is also used as the UPF2, the target SMF (namely the SMF 1) of the first target SMF/private network service of the public network service and the target UPF (namely the UPF 1) of the first target UPF/private network service of the public network service can be matched to realize the respective flow statistics and charging bill generation of the public network session and the private network session and the respective control; as shown in fig. 4: the public network conversation user plane is as follows: UE-wireless gNB- (I-UPF 1, if present) -UPF 1-public network; the private network session user plane is as follows: UE-wireless gNB- (I-UPF 1, if present) -UPF 1/UPF2 (for UL uplink data packets, the first user IP address is replaced from user IP address 1 to user IP address 2; for DL downlink data packets, the second user IP address is replaced from user IP address 2 to user IP address 1) -private network; and respectively carrying out flow statistics and charging and session control on the user planes of the 2 session channels.
Further, based on the foregoing embodiment, the service access processing method further includes:
and respectively associating at least two QoS flows with the public network session channel user plane and the private network session channel user plane so as to respectively perform end-to-end session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service.
It should be understood that for the "UE-wireless gNB- (I-UPF 1, if present) -UPF1 segment" 2 QoS flows may be employed, with 1 QoS Flow associated to the "UPF 1-public network" segment of the public network session channel user plane and another 1 QoS Flow associated to the "UPF 1-UPF 2-private network or UPF1/UPF 2-private network" segment of the private network session channel user plane, with the UE support, to facilitate the wireless network to perform QoS management, traffic statistics and charging for the UE's public and private network traffic, respectively.
Further, referring to fig. 4, fig. 4 includes a scenario where the user is roaming and the network has inserted I-SMF and I-UPF at the roaming location.
For the scenario that the user roams and the network does not insert I-SMF and I-UPF in the roaming place, refer to fig. 4 as well, with the difference that I-SMF1 and I-UPF1 in fig. 4 do not exist, AMF directly interworks with SMF1, and wireless gNB directly interworks with UPF1.
For a scenario where the user is not roaming but the network has inserted I-SMF and I-UPF and the SMF of the public network session provided for the user can select a UPF for private network DNN access, reference may also be made to fig. 4, with the difference that SMF1 and SMF2 in fig. 4 are the same SMF.
For a scenario where the user is not roaming but the network has inserted I-SMF and I-UPF and the UPF of the public network session provided for the user is a UPF for private network DNN access, reference may also be made to fig. 4, with the difference that SMF1 and SMF2 are the same SMF and UPF1 and UPF2 are the same UPF in fig. 4.
For the scenario that the user does not roam and the network does not insert I-SMF and I-UPF, and the SMF of the public network session provided for the user can select UPF for private network DNN access, refer to fig. 4 as well, where the difference is that there are no I-SMF1 and I-UPF1 in fig. 4, AMF directly interworks with SMF1, wireless gNB directly interworks with UPF1, and SMF1 and SMF2 are the same SMF.
For a scenario where the user does not roam, I-SMF and I-UPF are not inserted into the network, and the UPF of the public network session provided for the user is a UPF accessed by a private network DNN, refer to fig. 4 as well, where the difference is that there are no I-SMF1 and I-UPF1 in fig. 4, AMF and SMF1 are directly intercommunicated, wireless gNB and UPF1 are directly intercommunicated, SMF1 and SMF2 are the same SMF, and UPF1 and UPF2 are the same UPF.
For the scenario of fig. 4, if the UE then undergoes handover/roaming across I-SMFs (I-SMF 1 in fig. 4), the AMF selects a new I-SMF for the UE, while the I-SMF (SMF 1 in fig. 4) of the first target SMF/private network DNN service of public network services is unchanged, i.e.: only the I-SMF1 and the I-UPF1 in the figure 4 are replaced by corresponding new I-SMF and I-UPF, and the SSC mode1 mode is adopted, so that the public network service and the private network service of the user are not interrupted and the 3GPP standard is followed.
For the scenario in fig. 4 where there is no I-SMF, that is, AMF directly interworks with SMF1, and wireless gNB directly interworks with UPF1, if the UE performs handover/roaming across I-SMF (I-SMF 1 in fig. 4), AMF selects I-SMF (I-SMF 1 in fig. 4, for example) for the UE, while I-SMF (SMF 1 in fig. 4) of first target SMF/private network DNN service of public network service is unchanged, that is: in fig. 4, I-SMF1 and I-UPF1 exist, SSC mode1 is adopted, the public network service and the private network service of the user are not interrupted, and the 3GPP standard is followed.
It should be noted that, in the above implementation process, except for the technical implementation scheme disclosed in the present invention, all the implementation processes are in compliance with the 3GPP standard, and based on the basic specification of the 5G network, the network must be based on S-NSSAI (network slice identifier) and DNN in the process of establishing sessions (public network session and private network session) for the 5G UE. In the invention, all the contents related to DNN in the invention application proposal refer to DNN corresponding to corresponding S-NSSAI for simplifying description.
Regarding the allocation of the IP address for the user UE by the 5G network, the above is the allocation of the user IP address by the SMF in the 3GPP standard, which is also the most common way; there is also a way in the 3GPP standard that the UPF is responsible for allocating user IP addresses, namely: in the stage of allocating user IP addresses by the network, the SMF issues an instruction for allocating the user IP addresses to the UPF, the UPF allocates the user IP addresses and reports the user IP addresses to the SMF, and the SMF transmits the user IP addresses to the user terminal UE through the AMF (or through the I-SMF and the AMF). The invention is equally applicable in such a way that: in the stage of allocating the user IP address, the SMF1 issues an instruction for allocating the user IP address to the UPF1, the UPF1 allocates a first user IP address and reports the first user IP address to the SMF1, and if the SMF1 finds that the first user IP address allocated by the UPF1 is repeated with a target IP address in the related information of the preset private network service rule, the SMF1 issues an instruction to the UPF1 to request the UPF1 to reallocate a new first user IP address which is not the same as the target IP address in the related information of the preset private network service rule; the first user IP address is sent to the user terminal UE through the gNB through the AMF (or through the I-SMF and then the AMF); SMF2 sends an instruction for allocating user IP addresses to UPF2, and the second user IP address allocated by UPF2 is not the same as the IP address of a private network service server; and the UPF2 allocates the second user IP address and reports the second user IP address to the SMF2, and the SMF1 obtains the second user IP address from the SMF2 and then sends the second user IP address to the UPF1 in the step 12.
In the first embodiment of the present invention, a corresponding 5G network element is provided, which is also applicable to a 5G network element function in a 4G/5G convergence network element, and even if part of the 4G functions therein do not support the "private network service offloading policy in public network service" function of the present invention, the 4G/5G network element is not affected to provide the service function of the "private network service offloading policy in public network service" in a 5G scenario for the user.
The invention is also applicable to 4G networks, including: the 5G user uses the multimode user terminal supporting the 4G function (such as a 4G/5G terminal, a 3G/4G/5G terminal, a 2G/3G/4G/5G terminal, and the like) to access the 4G network, the 4G user uses the user terminal supporting the 4G function (such as a 4G terminal, a 3G/4G terminal, a 2G/3G/4G terminal, and the like, and the multimode terminal supporting the 4G and 5G terminals at the same time) to access the 4G network, and enjoys the service of 'establishing a dedicated channel for transmitting the corresponding dedicated network service for the user immediately when the user identifies the dedicated network service in the public network service of the user'. A second example is given below: the mobile communication network provides a service scene of ' establishing a special channel for transmitting a corresponding special network service for a user immediately when the special network service is identified in the public network service of the user ' for a 5G user accessing a 4G network by using a multi-mode user terminal supporting a 4G function '; the basic implementation principle is the same as that of the 5G network providing a service of ' establishing a dedicated channel for transmitting a corresponding private network service for a user immediately when the private network service is identified in the public network service of the user ' for a 5G user accessing the 5G network by using a user terminal supporting the 5G function ' for the 5G network. It is worth noting that: the pure 5G user terminal cannot access the 4G network, and what can access the 4G network must be a 4G terminal, that is: the 5G user accesses the 4G network and uses a 4G/5G multimode terminal supporting 4G functions.
The related names in 4G networks are explained as follows:
APN, the full Name is Access Point Name, translate to the Name of Access Point;
EPC, named as Evolved Packet Core, translated into an Evolved Packet Core;
the EPS is called an Evolved Packet System in all, and is translated into an Evolved Packet System;
DNS, called Domain Name System, translated into Domain Name resolution System;
MME, which is called Mobility Management Entity entirely, and translates the MME into Mobility Management equipment;
SGW, called service Gateway, translates into service Gateway;
the PGW, called PDN Gateway, translates into packet data Gateway;
PDN, called Packet Data Network, translated into Packet Data Network;
SAE, called System Architecture Evolution, is translated into System Architecture Evolution;
SAE-GW, which is called System Architecture Evolution-Gateway, translates into System Architecture Evolution Gateway;
the HLR is called a Home Location Register and translated into a Home Location Register;
HSS, called as Home Subscriber Server, translated into attribution signed user Server;
DRA, named Diameter Relay Agent, translated into Diameter Relay Agent;
PCC, called Policy and Charging Control throughout, is translated into Policy and Charging Control;
PCRF, called Policy and Charging Rule Function, translates into Policy and Charging rules Function;
SPR, called as Subscription Profile Repository, translated into user Subscription database;
IMSI, called as International Mobile Subscriber identity, translated into International Mobile Subscriber identity;
MSISDN, the full name of Mobile Subscriber ISDN Number, translated into the ISDN Number of the Mobile Subscriber;
MSISDN, which may also be Mobile Subscriber Integrated Services Digital Network Number, is translated into a comprehensive service Digital Network Number of the Mobile Subscriber;
the eNB, called evolved NodeB in full, translates into evolved NodeB, i.e. 4G base station;
LTE, called Long Term Evolution overall, translates to Long Term Evolution;
SGSN, called Serving GPRS Support Node, translates into GPRS service Support Node;
GGSN, called Gateway GPRS Support Node, translates into Gateway GPRS Support Node.
It is noted that the pre-set PCC policy applies to 4G networks as well as to 5G networks. Table 1 above is referred to as table 2 in the 4G network, where the "subscriber identity" in table 2 includes MSISDN and/or IMSI of the subscriber, and the associated DNNs are all DNNs/APNs, that is: the method is called DNN in 5G, called APN in 4G, and uses APN in a network in which a 4G user accesses 4G through a 4G-capable terminal UE and does not use network slice identification S-NSSAI in a network in which a 4G user accesses 4G through a 4G-capable terminal UE; and gNB is eNB. In the 4G access scene, a session establishment initiating network element in the 4G network is an MME, and can also be a fused AMF/MME; the network element of the session control plane is SMF/PGW-C; a session user plane network element UPF/PGW-U; the network element of the intermediate session control plane is I-SMF/SGW-C; the network element of the intermediate session user plane is I-UPF/SGW-U; the user data management network element is a converged UDM/UDR/HSS; the policy control network element is a fused PCF/UDR/PCRF/SPR; the functions of the network database network elements are implemented by DRA, EPC DNS and NRF. The DRA is responsible for communication between the MME and the HSS, and the EPC DNS is used for selecting the SGW-C and the PGW-C; SMF/PGW-C addressing PCF/UDR/PCRF/SPR is generally responsible for NRF and may also be responsible for 4G communication between SMF/PGW-C and PCF/UDR/PCRF/SPR by DRA. And SGW-C and PGW-C are commonly combined to be SAEGW-C, namely SMF/SAEGW-C; SGW-U and PGW-U are commonly combined to be SAEGW-U, i.e. UPF/SAEGW-U.
As shown in fig. 9, fig. 9 is a schematic diagram illustrating a single APN/single IP address of a user equipment and a multi-APN offload aggregation control at a network side in a 4G network according to the present invention. Fig. 9 compares with fig. 4, that is, each network element in fig. 4 is correspondingly replaced to obtain each network element in fig. 9, specifically: the 5G base station gNB should be replaced by a 4G base station eNB, AMF should be replaced by AMF/MME or MME, SMF1 should be replaced by SMF/SAEGW-C1 (having the functions of PGW-C and SGW-C at the same time), UPF1 should be replaced by UPF/SAEGW-U1 (having the functions of PGW-U and SGW-U at the same time), I-SMF1 should be replaced by I-SGW-C1 or SGW-C1, I-UPF1 should be replaced by I-UPF/SGW-U1 or SGW-U1, SMF2 should be replaced by SMF/PGW-C2, UPF2 should be replaced by UPF/PGW-U2, NRF and DRA, and EPC DNS; UDM/UDR should be replaced by UDM/UDR/HSS, PCF/UDR should be replaced by PCF/UDR/PCRF/SPR.
For the sake of understanding, the simple correspondence of 5G network element functions to 4G network element functions is: the gbb is eNB, the AMF is MME, the SMF is PGW-C, the UPF is PGW-U, the I-SMF is SGW-C, the I-UPF is SGW-U, the NRF is NRF and EPC DNS, the subscriber-owned UDM/UDR is quad-fusion UDM/UDR/HSS/HLR, and the subscriber-owned PCF/UDR is dual-fusion PCF/UDR/PCRF/SPR, as shown in fig. 9. In addition to other descriptions referred to, the UE is a user terminal supporting 4G functionality, such as a 4G/5G multimode handset. Public network APN, such as Internet APN, and CMNET APN for China Mobile; the private network APN is, for example, an enterprise private network APN. Public network APN service is called public network service, and private network APN service is called private network service; the public network session is EPS bearer (namely 4G bearer) of the APN of the public network, and the user plane of the session channel of the public network is the user plane of the 4G bearer of the public network; the private network session is carried by 4G of private network APN, and the private network session channel user plane is carried by the private network 4G.
In a scenario that a 5G user accesses a 4G network through a 4G-capable multimode terminal UE, as shown in fig. 3, the service processing method includes the following steps C10-C40. The present embodiment belongs to a scenario in which a 5G user accesses a 4G network through a 4G-capable multimode terminal UE, and is applicable to a scenario in which a 4G user accesses a 4G network through a 4G-capable terminal UE. The service processing method is applied to the packet domain equipment of the mobile communication network, and the packet domain equipment of the mobile communication network at least comprises a session establishment initiating network element, a policy control network element, a first session control plane network element, a second session control plane network element, a first session user plane network element and a second session user plane network element. In some specific scenarios, the first session control plane network element may serve as a second session control plane network element, and the second session user plane network element may serve as a second session user plane network element.
In a network in which a 4G user accesses a 4G through a 4G-supporting terminal UE, a session control plane network element comprises a PGW-C and an SGW-C, and a session user plane network element comprises a PGW-U and an SGW-U. Wherein SGW-C is an intermediate session control plane network element, and SGW-U is an intermediate session user plane network element. The first session control plane network element is represented as a first target SMF/PGW-C and needs to have the SGW-C function at the same time, namely the SAEGW-C function; the second session control plane network element is represented as a second target SMF/PGW-C, the first session user plane network element is represented as a first target UPF/PGW-U, and the first session user plane network element needs to have the SGW-U function at the same time, namely the UPF/SAEGW-U function; the second session user plane network element is represented as a second target UPF/PGW-U, and the policy control network element is PCRF/SPR. In a network in which a 5G user accesses a 4G through a 4G-supporting multimode terminal UE, a session establishment initiating network element is an MME, a session control plane network element comprises an SMF/PGW-C and an SGW-C, and a session user plane network element comprises an UPF/PGW-U and an SGW-U. The SGW-C is an intermediate session control plane network element, and the SGW-U is an intermediate session user plane network element; the first session control plane network element is represented as a first target SMF/PGW-C and needs to have the function of SGW-C at the same time, namely has the function of SMF/SAEGW-C; the second session control plane network element is represented as a second target SMF/PGW-C; the first session user plane network element is represented as a first target UPF/PGW-U and needs to have the SGW-U function at the same time, namely the UPF/SAEGW-U function; the second session user plane network element is represented as a second target UPF/PGW-U, and the policy control network element is PCF/UDR/PCRF/SPR, that is, in some specific scenarios, the first target SMF/PGW-C may serve as the second target SMF/PGW-C, and the first target UPF/PGW-U may serve as the second target UPF/PGW-U.
As shown in FIG. 9, for a scenario that a 5G user accesses a 4G network through a multimode terminal supporting 4G, the PGW-C is understood as SMF/PGW-C, and the PGW-U is understood as UPF/PGW-U. The session establishment initiating network element corresponds to MME1, the first target SMF/PGW-C corresponds to SMF/PGW-C1, the second target SMF/PGW-C corresponds to SMF/PGW-C2, the first target UPF/PGW-U corresponds to UPF/PGW-U1, the second target UPF/PGW-U corresponds to UPF/PGW-U2, the intermediate session control plane network element is SGW-C1, and the intermediate session user plane network element is SGW-U1. Before step C10 is performed, the following steps are performed corresponding to fig. 9:
step 0, user signing, including:
(1) And opening a public network APN and a private network APN for the user subscription in the user attributive UDM/UDR/HSS/HLR.
(2) And signing and opening a PCC strategy of 'private network service shunting strategy in public network service' on the user home PCF/UDR/PCRF/SPR, wherein the PCC strategy is called a preset PCC strategy. The preset PCC policy indicates: when one of a destination URL/URI and a destination IP address of a private network is detected in an UL uplink data message of a 4G bearer (hereinafter referred to as a public network session) of a public network APN, the private network APN is activated for a user. Wherein, the destination address in the UL uplink data message should be within all the private network destination URLs/URIs and destination IP addresses contained in the PCC policy information. The information/parameters included in the preset PCC policy are shown in table 2.
(3) When the mode that the PCF/UDR/PCRF/SPR issues the PCC predefined rule and the SMF/PGW-C locally configures the PCC predefined policy is adopted, the destination URL/URI and the destination IP address of the private network service in the table 2 can be locally configured on the SMF/PGW-C1, the PCC predefined rule issued by the PCF/UDR/PCRF/SPR to the SMF/PGW-C1 contains the PCC predefined rule name information of the private network service shunt in the public network service and the related information of the private network name to be established (the private network APN in the table 2), and the multi-private network service shunt in the public network service of the same user terminal can be realized by increasing the number of the PCC predefined policies for the user.
When a user opens a private network service, the user needs to complete the signing of private network APN in a user attributive UDM/UDR/HSS/HLR, and the user is a private network user at the same time; when a service of ' immediately establishing a special channel for transmitting corresponding special network service for a user when the special network service is identified in the public network service of the user ' is required to be provided for a special network user ', a PCC policy of ' special network service shunting in the public network service ' is required to be signed in a PCF/UDR/PCRF/SPR to which the special network user belongs; in the subsequent 4G bearing establishment process of the APN, the SMF/PGW-C1 in charge of the APN service of the public network obtains a PCC strategy of 'private network service shunting strategy in public network service' of the user from a PCF/UDR/PCRF/SPR to which the user belongs.
Table 2 (4G PCC information)
In table 2, 1) if the same user only has 1 private network APN service, the "sequence number" parameter may not be needed; 2) The URL/URI and IP addresses of the private network APN1 and the private network APN2 cannot be repeated, and guarantee needs to be provided when a PCC strategy is preset.
As described above, the content in table 2 is the content at least included in the preset private network service rule related information, and after the user opens the private network service and opens the service "establish a dedicated channel for transmitting the corresponding private network service immediately when the private network service is identified in the public network service of the user", the content in table 2 is generated, which is completed before the user actually uses the private network service, and can be understood as the preset private network service rule related information, no matter the PCC mode that PCF/UDR/PCRF/SPR issues the full amount of preset private network service rule related information to PGW-C1 or the mode that PCF/UDR/PCRF/SPR predefines the PCC rule and SMF/PGW-C1 locally configures the predefined policy, before the user sends the private network service data packet in the user plane channel through the public network 4G, the content in the preset private network service rule related information is already obtained by SMF/PGW-C1 (see step 3 described later); moreover, it can be understood that the PCC policy including the information related to the preset private network service rule is a PCC policy related to the preset private network service rule, and is also a PCC policy of "private network service distribution in public network service". The preset private network service rule related information at least includes PCC policy identifier, public network name related information, preset destination address information of the private network service, private network name related information required for establishing a private network session, and user identifier information, which is specifically referred to in table 2.
In practical applications, when a user uses a data service, steps B10 to B20 are performed first, as shown in fig. 2:
step B10: when receiving a public network service activation request initiated by the user terminal, the session establishment initiation network element selects a first session control plane network element corresponding to the public network service of the user terminal, and sends a public network session establishment request to the first session control plane network element;
step B20: and the first session control plane network element selects a first session user plane network element, controls the first session user plane network element to establish a public network session channel user plane of the public network service and allocates the first user IP address to the user terminal. The first user IP address is different from preset destination address information of the private network service in the preset private network service rule related information.
Corresponding to steps 1 to 3 of fig. 9: a user uses a public network service or a private network service, the UE uses a public network APN activation request initiated by the UE at a roaming place, which is also called as a public network service activation request, after the MME1 receives the public network service activation request initiated by the UE, the MME1 inquires an EPC DNS, and determines that if the user has cross-SGW-C POOL switching/roaming according to an inquiry result, the MME1 selects an SGW-C and a first target SMF/PGW-C, which respectively correspond to the SGW-C1 and the UPF/PGW-C1 in FIG. 9; if the user does not switch/roam, or switches/roams in the SGW-C POOL, or activates the public network APN for the first time, and the first target SMF/PGW-C has the function of the SGW-C, that is, under the condition of the SAEGW-C, the MME1 selects the first target SMF/PGW-C which is comprehensively set by the SGW-C and the PGW-C (in fig. 9, the SGW-C1 and the PGW-C1 are the same network element, that is, SMF/PGW-C1 or referred to as SMF/SAEGW-C1), and sends the public network session establishment request of the user to the first target SMF/PGW-C, that is, SMF/PGW-C1. In fig. 9, if the SGW-C1 exists, the MME1 sends a public network session establishment request to the PGW-C1 through the I-SGW-C1; if the SGW-C1 and the SMF/PGW-C1 are the same device (namely, SMF/SAEGW-C1), the MME1 directly sends the public network session establishment request to the SMF/PGW-C1 (SMF/SAEGW-C1). The MME in the 4G network obtains the user subscription data from the HSS of the user, and then the MME includes the 4G bearing related information (including APN allowed to be used by the user) in the 4G bearing establishment request message and sends the 4G bearing related information to the PGW-C through the SGW-C.
Step 3 to step 6: after SMF/PGW-C1 of the public network service establishes a public network session for UE, the method comprises the steps that after the SMF/PGW-C1 executes PCF service discovery to NRF, a preset PCC strategy signed by a user is obtained from PCF/UDR/PCRF/SPR according to a service discovery result (the SMF/PGW-C1 accesses the PCRF/SPR to which the user is subscribed through DRA), a first selected target UPF/PGW-U (IP address 1 in figure 9) is sent, the preset PCC strategy is sent to the selected UPF/PGW-U1, session resources used for the public network session are indicated to be distributed, a first user IP address (IP address 1 in figure 9) is distributed to the UE, and the first user IP address and other related information are returned to the UE through the SGW-C and the MME1, and related information interaction is completed, and the SMF/PGW-C1 controls the UPF/PGW-U1 to establish a public network session channel session for the UE. The first user IP address is distributed by the SMF/PGW-C1 and sent to the UE through the SGW-C and the MME, and the UPF/PGW-U1 acquires the first user IP address of the UE by identifying a source IP address in an UL uplink data message sent by the UE. In fig. 9, if there is SGW-C1, SGW-C1 forwards the relevant message, and SGW-C1 instructs SGW-U1 to allocate the relevant resource; if the SGW-C1 and SMF/PGW-C1 are the same SMF/SAE-GW1, then SMF/SAE-GW1 communicates directly with MME1, and SMF/SAEGW-C1 instructs UPF/SAEGW-U1 to allocate SGW-related resources, the above steps follow the 3GPP standard. After the first user IP address is allocated to the UE, the first user IP address is the IP address of the UE, that is, IP address 1 in fig. 9 is the source IP address in the UL uplink data packet sent by the UE.
Further, in the 3GPP standard flow of step 4, the implementation process of the PCC policy of the preset "private network service offloading policy" needs to be newly added to the SMF/PGW-C1 of the public network service and the UPF/PGW-U1 selected by the SMF/PGW-C1, which is specifically as follows:
(1) In step 3, through the PCC flow, the SMF/PGW-C1 of the public network service obtains the relevant information of the preset private network service rule in the preset "private network service splitting policy in the public network service", including the information of each parameter shown in table 2; specifically, a mode of sending the full amount of information in the table 2 to the SMF/PGW-C1 by the PCF/UDR/PCRF/SPR may be adopted, or a mode of sending the PCC predefined rule to the SMF/PGW-C1 by the PCF/UDR/PCRF/SPR while locally configuring the PCC predefined rule by the SMF/PGW-C1 may be adopted. The specific process of acquiring the relevant information of the preset private network service rule by the SMF/PGW-C1 refers to (2) and (3) in the step 0.
(2) After the SMF/PGW-C1 of the public network service obtains the preset private network service rule-related information including the parameter information in table 2, it executes a procedure of ensuring that the IP address of the first user allocated to the UE is different from the destination IP address of the private network service in the preset private network service rule-related information. It should be understood that, when the SMF/PGW-C1 of the public network service allocates the first user IP address to the UE, it needs to check whether the first user IP address conflicts repeatedly with the destination IP address (the destination IP address in table 2) of the private network APN in the preset PCC policy acquired from the user home PCF/UDR/PCRF/SPR, and if the addresses are repeated, the first user IP address to be allocated to the user needs to be replaced with a new first user IP address that does not duplicate the destination IP address of the private network APN, thereby avoiding the occurrence of the situation that the source IP address is the same as the destination IP address when the UE sends the UL uplink data message. Because the source IP address of the UL uplink data packet of the private network service sent by the UE is the first user IP address, and the destination IP address cannot be the same as the source IP address, it needs to be ensured that the first user IP address allocated to the UE by the SMF/PGW-C1 cannot be the same as all destination IP addresses in the preset destination address information in the preset private network service rule-related information (i.e., all IP addresses in the "destination URL/URI and destination IP address" in table 2). If the SMF/PGW-C1 finds that a first user IP address allocated to the UE is the same as any preset destination address information in the preset private network service rule related information, the SMF/PGW-C1 allocates a user IP address for the UE again, the reallocated user IP address is an IP address which is different from all destination IP addresses in the preset private network service rule related information, and the IP address information of the UE in the PCF/UDR/PCRF/SPR to which the user belongs is updated through a subsequent PCC process. Wherein, the IP address redistributed by the SMF/PGW-C1 is the IP address of the first user.
(3) In the step 4, the SMF/PGW-C1 of the public network service maps the obtained relevant information of the preset private network service rule to the UPF/PGW-U1 of the public network service in the Sx interface information, that is, the SMF/PGW-C1 issues the relevant information of the preset private network service rule to the UPF/PGW-U1, and the relevant information of the preset private network service rule is shown in table 2. The SMF/PGW-C1 does not necessarily need to send all the information in table 2 to the UPF/PGW-U1, but at least includes the "public network APN", "destination URL/URI and destination IP address" in table 2 and information identifying the user, and may further include a "private network APN", which may be determined as the case may be. If the preset private network service rule related information sent by the first session control plane network element to the first session user plane network element contains "private network DNN", the subsequent flow may correspond to "the first session control plane network element obtains the private network name related information required for establishing the private network session included in the access event" in the following steps C211, C221, and C231; if the information related to the preset private network service rule issued by the first session control plane network element to the first session user plane network element does not contain the "private network DNN", the subsequent process may correspond to the following step C211, step C221, and step C231, where the first session control plane network element obtains destination address information included in the access event, and obtains the information related to the private network name required for establishing the private network session by matching from the information related to the preset private network service rule according to the destination address information. In the process of executing the service processing, the forwarding of the data message of the public network service of the UE is not influenced.
Obviously, there is also a way to obtain all the information in table 2, and all the information in table 2 can be implemented by local configuration in the UPF/PGW-U1.
(4) The UPF/PGW-U1 of the public network service selected by the SMF/PGW-C1 of the public network service executes the preset PCC policy while forwarding the user data packet (including the UL uplink data packet and the DL downlink data packet) of the public network service of the UE, and when the user data packet (also called the UL uplink data packet) sent by the UE meets the condition, that is, the destination URL/URI or the destination IP address included in the UL uplink data packet is the URL/URI or the IP address in the destination URL/URI or the destination IP address in the "destination URL/URI" field in the "destination URL/URI and destination IP address" field in table 2, it is necessary to report a relevant event to the SMF/PGW-C1, where the relevant event may be understood as an access event of the private network service used by the user, or may be understood as a report of the UL uplink data packet including the URL/URI or IP address of the private network service whose destination address information is detected in the public network service of the UE, the access event of the private network service is reported to the SMF/PGW-C1, and the following step 7.
The SMF/PGW-C1 of the public network service executes a PCC policy of a preset "private network service offloading policy in the public network service", and when receiving an access event of the private network service reported by the UPF/PGW-U1, activates a 4G bearer (also referred to as a private network session) of a corresponding private network APN for the user, that is, when detecting an UL uplink data packet with a destination address of a URL/URI or IP address of the private network service in the public network service of the UE reported by the UPF/PGW-U1, the SMF/PGW-C1 is notified to activate the corresponding private network session for the user, which will be described in detail in step 8 below.
Step C10: based on public network service initiated by a user terminal, when a first session user plane network element identifies that public network service transmitted by a public network session channel user plane comprises private network service, sending an access event of the private network service to a first session control plane network element of the public network service.
In this embodiment, after a user inputs destination address information that the user needs to access through the UE, the UE sends an UL uplink data packet of a public network service or a private network service, a public network session channel user plane in charge of the public network service transmits the UL uplink data packet of the public network service and the private network service that the UE sends, and the UPF/PGW-U1 identifies whether the public network service transmitted by the public network session channel user plane includes the private network service, so as to decide whether to report an access event of the private network service to the SMF/PGW-C1, and if the UPF/PGW-U1 identifies that the public network service includes the private network service, it indicates that the user needs to access the private network service, and then reports an access event of the private network service to the SMF/PGW-C1.
Further, the identifying, by the first session user plane network element, whether the public network service transmitted by the public network session channel user plane includes the private network service includes: and the first session user plane network element acquires the destination address information in the UL uplink data message sent by the user terminal, and determines that the UL uplink data message is a private network service when recognizing that the destination address information is the same as the preset destination address information of the private network service, namely the public network service comprises the private network service.
It should be understood that, the public network session channel user plane transmits all UL uplink data messages corresponding to the private network service used by the user in the form of the public network service, where the UL uplink data messages include destination address information input by the user, and if the UPF/PGW-U1 identifies that the destination address information corresponding to the private network service included in the UL uplink data messages is the same as the preset destination address information of the private network service, that is, the destination address information is the same as one of the destination URL/URI and the destination IP address in the preset private network service rule-related information, it may be determined that the UL uplink data messages are the private network service, that is, the public network service includes the private network service.
The preset destination address information of the private network service is obtained by at least one of the following modes:
the preset destination address information of the private network service is acquired by the first session user plane network element from the local configuration of the first session user plane network element;
the preset destination address information of the private network service is obtained by the first session user plane network element from the preset private network service rule related information sent to the first session control plane network element by the first session user plane network element.
It should be understood that, in the 4G scenario, all the information in table 2 may be locally configured and pre-stored in the UPF/PGW-U1, since all the information in table 2 includes the preset destination address information of the private network service. When the UPF/PGW-U1 needs to acquire the preset destination address information of the private network service, the UPF/PGW-U1 can acquire the preset destination address information of the private network service from the local configuration of the UPF/PGW-U1; the preset destination address information of the private network service can also be sent to the UPF/PGW-U1 by the SMF/PGW-C1, the SMF/PGW-C1 sends the relevant information of the preset private network service rule to the UPF/PGW-U1, and the UPF/PGW-U1 obtains the preset destination address information of the private network service from the relevant information of the preset private network service rule, namely: the SMF/PGW-C1 of the public network service maps the obtained related information of the preset private network service rule to the UPF/PGW-U1 which is sent to the public network service in the Sx interface information, the SMF/PGW-C1 sends the related information of the preset private network service rule to the UPF/PGW-U1, and the related information of the preset private network service rule is shown in a table 2. The SMF/PGW-C1 does not necessarily need to send all the information in table 2 to the UPF/PGW-U1, but at least includes "public network APN", "destination URL/URI and destination IP address" in table 2 and information identifying a user, and may further include "private network APN". Of course, it is not excluded that the UPF/PGW-U1 may obtain the predetermined destination address information to the private network service through other means. It should be noted that the specific manner of acquiring the preset destination address information of the private network service is set according to actual requirements.
How to acquire the relevant information of the preset private network service rule by the first session control plane network element specifically includes:
and the related information of the preset private network service rule is obtained by the first session control plane network element in a PCC mode and/or in local configuration of the first session control plane network element, and is sent to the first session user plane network element in the process of establishing the public network session channel user plane for the user terminal.
It should be understood that, in a 4G scenario, the SMF/PGW-C1 may obtain the relevant information of the preset private network service rule in a PCC manner, and the SMF/PGW-C1 may also obtain the relevant information of the preset private network service rule from its own local configuration; of course, it is not excluded that the SMF/PGW-C1 may obtain the relevant information of the preset private network service rule through other ways. It should be noted that the specific manner of acquiring the relevant information of the preset private network service rule is set according to actual requirements. And then, the SMF/PGW-C1 sends the related information of the preset private network business rule to the UPF/PGW-U1 in the process of establishing the public network session channel user plane for the user terminal. The related information of the preset private network service rule at least comprises a PCC strategy identification, related information of a public network name, preset destination address information of a private network service, related information of a private network name required for establishing a private network session, user identification information and the like; the private network name related information refers to necessary information such as a private network name required for establishing a private network session, and under the condition that network scenes are different, specific contents included in the private network name related information are different. In the 4G scenario, the information related to the private network name at least includes a private network APN, that is, a private network name.
Specifically, the obtaining, by the first session control plane network element, the relevant information of the preset private network service rule in the PCC manner includes at least one of the following manners:
in the process of establishing public network session for a user terminal, a policy control network element issues a full amount of relevant information of a preset private network service rule to a first session control plane network element;
in the process of establishing public network session for the user terminal, the policy control network element issues a PCC predefined rule to the first session control plane network element, and the first session control plane network element configures the PCC predefined policy from the local thereof according to the PCC predefined rule so as to obtain the relevant information of the preset private network service rule.
It should be understood that, in the process of establishing the public network session channel user plane for the user terminal, the PCF/UDR/PCRF/SPR sends the whole amount of information related to the preset private network service rule to the SMF/PGW-C1. Or, in the process of establishing a public network session channel user plane for the user terminal, the PCF/UDR/PCRF/SPR issues the PCC predefined rule to the SMF/PGW-C1, and the SMF/PGW-C1 configures a PCC predefined policy locally from the PCC predefined rule, thereby acquiring the relevant information of the preset private network service rule. Namely: in step 3, through the PCC flow, the SMF/PGW-C1 of the public network service obtains the relevant information of the preset private network service rule in the preset "private network service splitting policy in the public network service", including the information of each parameter shown in table 2; specifically, the PCF/UDR/PCRF/SPR may be used to send the full amount of information in table 2 to the SMF/PGW-C1, or the PCF/UDR/PCRF/SPR may be used to send the PCC predefined rule to the SMF/PGW-C1 and to configure the PCC predefined rule locally to the SMF/PGW-C1. The specific process of the SMF/PGW-C1 for obtaining the relevant information of the preset private network service rule refers to (2) and (3) in step 0.
Specifically, all the information in table 2 is stored in the local configuration of the first session control plane network, and the manner for the first session control plane network element to obtain the relevant information of the preset private network service rule from its local configuration includes:
mode 1: the SMF/PGW-C1 obtains the relevant information of the preset private network service rule from all the information in the local configuration table 2.
Mode 2: the SMF/PGW-C1 obtains the relevant information of the preset private network business rule from all the information except the user identification in the local configuration table 2. According to a private network APN signed by a user and acquired from a user home UDM/UDR/HSS/HLR, if the private network APN is matched with a private network APN in table 2 information locally configured by the SMF/PGW-C1, a preset private network service shunting strategy in a public network service is executed for UE of the user, and related information of a preset private network service rule in table 2 of the UE is acquired and made.
Corresponding to steps 6-7 of fig. 9, step 6 is the mediation of the public network service: the UE uses a first user IP address (IP address 1 in figure 9) of a public network session obtained from a network to use a service, and the UPF/PGW-U1 detects a destination address, namely a destination URL/URI and a destination IP address, included in a UL uplink user data message sent by the UE in a public network session channel user plane, and if the destination URL/URI and the destination IP address are not included in the destination URL/URI and the destination IP address in a table 2, the UE is identified as a public network service, so that a public network connected with an SGi interface of the public network session is normally dredged; if the destination URL/URI and the destination IP address in the UL uplink data message are contained in the destination URL/URI and the destination IP address stored in the table 2, the UL uplink data message is identified as a private network service, namely the public network service comprises the private network service, then the private network service used by the UE is reported to the SMF/PGW-C1, namely an access event of the private network service is sent to the SMF/PGW-C1, the reported content comprises the content which is specified by the SMF/PGW-C1 in the 4 th step and needs to be reported by the UPF/PGW-U1, when the UPF/PGW-U1 identifies the first UL uplink data message belonging to the private network service in the public network service, the access event of the private network service is immediately sent to the SMF/PGW-C1, and after receiving a confirmation message returned by the SMF/PGW-C1 for receiving the access event of the private network service, the subsequent private network service uplink data message of the same private network service identified in the session channel user plane of the SMF/PGW-C1 can not be repeatedly sent to the access event of the private network service of the SMF/PGW-C1; meanwhile, before the private network session channel user plane is established for the UE, the UPF/PGW-U1 needs to cache all the identified private network service UL uplink data messages of the private network service until the private network session channel user plane of the UE is established, the UPF/PGW-U1 sequentially forwards (forwards in advance) all the cached private network service UL uplink data messages of the private network service, and then forwards the received private network service UL uplink data messages after the private network session channel user plane of the private network service of the UE is established, namely the UPF/PGW-U1 caches UL uplink data messages of all the private network services in the public network session channel user plane, namely when the first session user plane network element identifies that the public network service transmitted by the public network session channel user plane comprises the private network service, the first session user plane network element caches the UL uplink data messages of all the private network service in the public network session channel user plane, and further comprises the next step of waiting for the SMF/PGW 1 indication. The SMF/PGW-C1 receives the access event of the private network service reported by the UPF/PGW-U1, and starts a process of establishing private network 4G load for the UE. The SMF/PGW-C1 and the UPF/PGW-U1 can normally dredge the public network service of the user while establishing the private network session and the private network session channel user plane for the user, and the public network service is not influenced by the private network session and the private network session channel user plane. It should be understood that, when the first session user plane network element recognizes that the public network service transmitted by the public network session channel user plane includes the private network service, while sending the access event of the private network service to the first session control plane network element of the public network service, the method further includes: the first session user plane network element caches UL uplink data messages of all private network services in the public network session channel user plane, the public network session channel user plane forwards the UL uplink data messages and DL downlink data messages of the public network services, and the public network services forwarded by the public network session channel user plane do not trigger the process of establishing private network sessions for users. The first session user plane network element can only send a private network service access event to the first session control plane network element once; for a private network service access event sent by a first session user plane network element in the same public network session channel user plane for the same private network service and multiple private network service access events sent, the private network session establishment process is only executed once by the first session control plane network element for the same private network service.
Further, the access event is generated by the following method:
the first session user plane network element acquires the private network name related information matched with the destination address information and required for establishing the private network session from the preset private network service rule related information, and generates an access event of the private network service according to the private network name related information required for establishing the private network session; or the first session user plane network element generates an access event of the private network service according to the destination address information.
When a private network session of a private network service is established for a user, a first target SMF/PGW-C needs to obtain private network name related information corresponding to the private network service, and the first target SMF/PGW-C establishes a corresponding private network session for the UE according to the obtained private network name related information, wherein the private network session comprises a user plane channel of the private network session. The private network name related information required for establishing the private network session in the 4G scene includes a private network name, namely a private network APN. The preset private network service rule related information comprises preset destination address information (destination URL/URI and destination IP address in table 2) of the private network service and private network name related information (private network APN in table 2) of the private network service, and the preset destination address information and the private network name related information have a corresponding relation. As shown in table 2, a set of URLs/URIs and/or a set of IPv4 addresses and/or a set of IPv6 addresses correspond to a private network APN; namely, the information related to the private network name of the private network service can be positioned through the destination address information of the private network service. When there are multiple private network services in the public network service of the same user, the preset private network service rule related information further includes private network service numbers for distinguishing the private network services, as shown in table 2, where "serial numbers" identify different private network services of the same user, and the destination address information and private network name related information of different private network services of the same user are different, that is, "destination URL/URI and destination IP address" corresponding to different "serial numbers" in table 2 are different, and "private network APN" is different. The preset private network service rule related information takes the user identifier as a first index, as shown in table 2, that is, different users can configure different preset private network service rule related information, and the private network service destination address information of different users is the same and can respectively correspond to different private network name related information.
According to the related information of the preset private network service rule, the related information of the private network name of the private network service is positioned through the destination address information of the private network service, and a first session control plane network element (SMF/PGW-C1) establishes a corresponding private network session for the UE according to the related information of the private network name and controls a first session user plane network element (UPF/PGW-U1) to establish a user plane channel of the private network session; the method comprises the steps of obtaining a private network service access event from a first session user plane network element (UPF/PGW-U1) according to a first session control plane network element (SMF/PGW-C1), establishing a corresponding private network session for UE according to private network name related information, and supporting the establishment of a plurality of corresponding private network service sessions for a plurality of different private network services of the same user in the same public network session channel user plane. For example: the related information of the private network name of the private network service A is an enterprise 1 private network APN; the private network name related information of the private network service B is an enterprise 2 private network APN; the information related to the private network name of the private network service C is the enterprise 3 private network APN, and the like.
It should be understood that, in a case where the information related to the preset private network service rule includes a PCC policy identifier, information related to a public network name, preset destination address information of a private network service, information related to a private network name required for establishing a private network session, and user identifier information, corresponding to step 4 in fig. 9, the first target SMF/PGW-C issues the preset private network service rule to the first target UPF/PGW-U in advance, the first target UPF/PGW-U matches, according to destination address information in an UL uplink data packet sent by a user terminal, preset destination address information of a private network service identical to the destination address information from the information related to the preset private network service rule, then matches, according to the matched preset destination address information, information related to the private network name, obtains information related to the private network name required for establishing the private network session, which matches with the destination address information, generates an access event of the private network service according to the matched information related to the private network name required for establishing the private network session, that the access event of the private network service includes a first private network name-related to the private network service, and obtains a first target event-related to which is sent from the private network service-PGW-C. In another case, the first target UPF/PGW-U generates an access event of the private network service according to destination address information in an UL uplink data packet sent by the user terminal, that is, the access event includes destination address information in the UL uplink data packet sent by the user terminal, the first target SMF/PGW-C receives the access event of the private network service sent by the first target UPF/PGW-U, and can obtain destination address information in the UL uplink data packet sent by the user terminal from the access event, and the first target SMF/PGW-C derives from the preset private network service rule-related information according to the destination address information and a matching rule of the preset destination address information and the private network name-related information, according to the destination address information: the destination address information is matched with the information related to the private network name required by establishing the private network session.
Step C20: and the first session control plane network element starts a flow for establishing a private network session for the user according to the access event, and controls the first session user plane network element to execute the flow for establishing the private network session channel user plane for the user, so as to establish the private network session channel user plane for the user.
In this embodiment, after receiving an access event of a private network service reported by the UPF/PGW-U1, the SMF/PGW-C1 starts a process of establishing a private network session for a user to establish a private network session, and controls the UPF/PGW-U1 to execute a process of establishing a private network session channel user plane for the user to establish a private network session channel user plane.
Further, as shown in fig. 5, step C20 includes the following steps:
step C211: the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
step C212: when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is not also used as a second session user plane network element, determining the second user IP address and the second session user plane network element, and sending the second user IP address to the first session user plane network element; the second user IP address is different from preset destination address information of the private network service in the preset private network service rule related information;
step C213: and the first session control plane network element controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session.
It should be understood that after the SMF/PGW-C1 receives the access event of the private network service sent by the UPF/PGW-U1, if the access event includes the private network name related information required for establishing the private network session, the private network name related information required for establishing the private network session may be obtained according to the access event; if the access event comprises destination address information, destination address information can be acquired, and then the information is deduced from the relevant information of the preset private network business rule according to the matching rule of the destination address information, the preset destination address information and the relevant information of the private network name: the destination address information is matched with the information related to the private network name required by establishing the private network session. The following description will be given taking an example in which the private network name is a private APN.
For the scenario that the first target SMF/PGW-C is also the second target SMF/PGW-C and the first target UPF/PGW-U is not also the second target UPF/PGW-U, it should be understood that according to the actual network deployment situation and the service mediation scheme, the SMF/PGW-C1 has the capability of mediation of both the public network service and the private network APN service, and the UPF/PGW-U1 has only the capability of mediation of the public network service and does not have the capability of mediation of the private network APN service, that is: the SMF/PGW-C1 can be used as the SMF/PGW-C2, and the UPF/PGW-U1 can not be used as the UPF/PGW-U2. Specifically, after the SMF/PGW-C1 acquires the private network APN corresponding to the private network service and determines that the SMF/PGW-C2 doubles as the SMF/PGW-C after determining that the SMF/PGW-C has the capability of dredging the private network APN; and after determining that the self does not have the capability of dredging the private network APN, determining that the self does not serve as the SMF/PGW-C2.
If the SMF/PGW-C1 determines that the SMF/PGW-C1 can be used as the SMF/PGW-C2, the SMF/PGW-C2 is used as the SMF/PGW-C2, namely the SMF/PGW-C1 and the SMF/PGW-C2 are the same network element, and the SMF/PGW-C2 is called SMF/PGW-C1 or SMF/PGW-C2, and the process of establishing the private network session (APN is the private network APN) for the UE by the SMF/PGW-C2 is executed, wherein the process comprises the steps of selecting UPF/PGW-U, executing secondary authentication/authorization according to needs, distributing a second user IP address for the UE, executing a policy of the private network PCC, and controlling the selected UPF/PGW-U to establish a private network session channel user plane for the UE. I.e. the steps 8-2, 8-3 and 11 in fig. 9 are not needed to be executed; the steps 9-1, 9-2, 10, 12 and 13 need to be executed. Wherein:
(1) When the UPF/PGW-U is selected, the SMF/PGW-C1 or the SMF/PGW-C2 determines whether the UPF/PGW-U1 has the capability of dredging the private network APN, if not, the UPF/PGW-U1 is determined to be the SGW-U of the private network APN, and the UPF/PGW-U with the capability of dredging the private network APN is selected to be the UPF/PGW-U2.
(2) The SMF/PGW-C1 or SMF/PGW-C2 obtains the second user IP address allocated by the private network APN through the "secondary authentication/authorization" procedure or the SMF/PGW-C1 or SMF/PGW-C2 allocates the second user IP address (IP address 2 in fig. 9) for the private network APN to the UE, and sends the second user IP address to the UPF/PGW-U1 in step 12; for the private network, the source IP address in the UL uplink data packet of the private network service sent by the UE received by the private network should be the second user IP address.
(3) And step 13, controlling the UPF/PGW-U2 and the UPF/PGW-U1 to establish a user plane channel of the private network APN for the UE by the SMF/PGW-C1 or the SMF/PGW-C2, wherein the user plane channel comprises an S5 interface between the UPF/PGW-U1 and the UPF/PGW-U2 and an SGi interface between the UPF/PGW-U2 and the private network. Through the steps, the network side establishes a private network session channel user plane for the UE, wherein the private network session channel user plane completes the private network APN. When the private network service is multiple, a corresponding plurality of private network session channel user planes can be established for the UE through the private network APN. It is noted that "secondary authentication/authorization" in 4G networks is referred to as "non-transparent access".
Further, as shown in fig. 6, step C20 further includes the following steps:
step C221: the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
step C222: when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is also used as a second session user plane network element, determining a second user IP address, and sending the second user IP address to the first session user plane network element, wherein the second user IP address is different from preset destination address information of the private network service in preset private network service rule related information;
step C223: and the first session control plane network element controls the first session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session.
It should be understood that after receiving an access event of a private network service sent by the UPF/PGW-U1, the SMF/PGW-C1 may obtain, according to the access event, private network name related information required for establishing a private network session if the access event includes the private network name related information required for establishing the private network session; if the access event comprises destination address information, the destination address information can be obtained, and then the information is deduced from the relevant information of the preset private network service rule according to the matching rule of the destination address information, the preset destination address information and the relevant information of the private network name: the destination address information is matched with the information related to the private network name required by establishing the private network session. The following description will be given taking an example in which the private network name is a private network APN.
For a scenario that a first target SMF/PGW-C is also used as a second target SMF/PGW-C and a first target UPF/PGW-U is also used as a second target UPF/PGW-U, it should be understood that according to an actual network deployment situation and a service mediation scheme, the SMF/PGW-C1 has the capability of mediation of public network service and private network APN service at the same time, and the UPF/PGW-U1 has the capability of mediation of public network service and private network APN service at the same time, that is: the SMF/PGW-C1 can be used as the SMF/PGW-C2, and the UPF/PGW-U1 can be used as the scene of the UPF/PGW-U2. Specifically, the SMF/PGW-C1 determines that the SMF/PGW-C1 itself can be used as the SMF/PGW-C2, and then uses the SMF/PGW-C2 itself as the SMF/PGW-C2, that is, the SMF/PGW-C1 and the SMF/PGW-C2 are the same network element, and executes a process of the SMF/PGW-C2 establishing a private network session (APN is a private network APN) for the UE, including selecting the UPF/PGW-U, performing "secondary authentication/authorization" as needed, allocating a second user IP address to the UE, executing a PCC policy for the private network APN, and controlling the selected UPF/PGW-U to establish a private network session channel user plane for the UE. That is, the steps 8-2, 8-3 and 11 in FIG. 9 are not required to be executed; the steps 9-1, 9-2, 10, 12 and 13 need to be executed. Wherein:
(1) When the UPF/PGW-U is selected, the SMF/PGW-C1/private network SMF/PGW-C determines whether the UPF/PGW-U1 has the capability of dredging the private network APN, if so, the UPF/PGW-U1 is determined to be used as the SGW-U and UPF/PGW-U of the private network APN, namely UPF/SAEGW-U2 of the private network APN, and the UPF/PGW-U1 and the UPF/SAEGW-U are the same network element and can be called as UPF/PGW-U1/SAEGW-U2.
(2) The SMF/PGW-C1 or SMF/PGW-C2 obtains the second user IP address allocated by the private network APN through the "secondary authentication/authorization" procedure or the SMF/PGW-C1 or SMF/PGW-C2 allocates the second user IP address (IP address 2 in fig. 9) for the private network APN to the UE, and sends the second user IP address to the SMF/PGW-U1/sae gw-U2 in step 12; for the private network, the source IP address in the UL uplink data packet of the private network service sent by the UE received by the private network should be the second user IP address.
(3) In step 13, the SMF/PGW-C1 or SMF/PGW-C2 controls the UPF/PGW-U1/SAEGW-U2 to establish a user plane channel of the private APN for the UE, including an SGi interface between the UPF/PGW-U1/SAEGW-U2 and the private network and an internal interface (i.e., an S5 interface for the private network service) of the UPF/PGW-U1/SAEGW-U2. Through the steps, the network side establishes the private network session channel user plane for the UE, wherein the private network session channel user plane completes the private network APN. When the private network service is multiple, a corresponding plurality of private network session channel user planes can be established for the UE through the private network APN. It is noted that "secondary authentication/authorization" in 4G networks is referred to as "non-transparent access".
Further, as shown in fig. 7, step C20 further includes the following steps:
step C231: the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
step C232: when the first session control plane network element determines that the first session control plane network element does not double as a second session control plane network element and the first session user plane network element does not double as a second session user plane network element, determining the second session control plane network element and the second session user plane network element, and sending a private network session establishment request to the second session control plane network element; the first session control plane network element determines the second session control plane network element, namely the second session control plane network element under a 4G network, by adopting the same or similar method for determining the session control plane network element with the session establishment initiation network element;
step C233: the second session control plane network element returns a private network session establishment response to the first session control plane network element, wherein the private network session establishment response at least comprises the second user IP address and interface address information of a relevant interface of the second session user plane network element, and the second user IP address is different from preset destination address information of the private network service in preset private network service rule relevant information;
step C234: and when receiving the private network session establishment response, the first session control plane network element sends the second user IP address to the first session user plane network element, and controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session.
It should be understood that after receiving an access event of a private network service sent by the UPF/PGW-U1, the SMF/PGW-C1 may obtain, according to the access event, private network name related information required for establishing a private network session if the access event includes the private network name related information required for establishing the private network session; if the access event comprises destination address information, destination address information can be acquired, and then the information is deduced from the relevant information of the preset private network business rule according to the matching rule of the destination address information, the preset destination address information and the relevant information of the private network name: the destination address information is matched with the information related to the private network name required by establishing the private network session. The following description will be given taking an example in which the private network name is a private APN.
A specific way of determining the second session user plane network element in step C232 is as follows: when the first session control plane network element determines that the first session control plane network element does not double as a second session control plane network element, the first session control plane network element (SMF/PGW-C1) determines a second session control plane network element (SMF/PGW-C2) through DNS analysis, namely the first session control plane network element (SMF/PGW-C1) initiates private network DNS analysis to an attributive network resource database network element (DNS), and selects the second session control plane network element according to the analysis result; then the first session control plane network element determines itself as an intermediate session control plane network element of the private network session, determines the first session user plane network element as an intermediate session user plane network element of the private network session, and instructs the first session user plane network element to allocate and report resources of the intermediate session user plane network element for the private network service; and finally, sending a private network session establishment request to a second session control plane network element, and determining a second session user plane network element by the second session control plane network element.
For the scenario that the first target SMF/PGW-C is not concurrently the second target SMF/PGW-C and the first target UPF/PGW-U is not concurrently the second target UPF/PGW-U, it should be understood that, according to the actual network deployment situation and the service mediation scheme, the SMF/PGW-C1 only has the capability of mediation of the public network service and not has the capability of mediation of the private network APN service, and since the UPF/PGW-U2 should be the UPF/PGW-U controlled by the SMF/PGW-C2, the UPF/PGW-U1 does not have the capability of mediation of the private network APN service, that is: SMF/PGW-C1 cannot be used as SMF/PGW-C2, UPF/PGW-U1 cannot be used as UPF/PGW-U2. Specifically, the SMF/PGW-C1 determines that the SMF/PGW-C1 cannot serve as the SMF/PGW-C2, executes a private network APN resolution request to the EPC DNS, then selects the SMF/PGW-C2 according to a private network APN resolution result returned by the EPC DNS, and sends a flow of establishing a private network session (APN is a private network APN) for the UE to the selected SMF/PGW-C2, and controls the UPF/PGW-U1 to establish a private network session channel user plane for the UE after receiving a private network session (APN is a private network APN) establishment response message returned by the SMF/PGW-C2. Namely, the business processes from step 8 to step 13 need to be executed. Wherein: after receiving the second user IP address returned by the SMF/PGW-C2 (the SMF/PGW-C2 obtains the second user IP address allocated by the private network APN through the "secondary authentication/authorization" procedure or the SMF/PGW-C2 allocates the second user IP address (IP address 2 in fig. 9) for the private network APN to the UE), the SMF/PGW-C1 sends the second user IP address to the UPF/PGW-U1 in step 12; for the private network, the source IP address in the UL uplink data packet of the UE sending the private network service received by the private network should be the second user IP address. Through the steps, the network side establishes the private network session channel user plane for the UE, wherein the private network session channel user plane completes the private network APN. When the private network service is multiple, a corresponding plurality of private network session channel user planes can be established for the UE through the private network APN. It is noted that "secondary authentication/authorization" in 4G networks is referred to as "non-transparent access".
Corresponding to fig. 9, the business process from step 8 to step 13 is as follows:
(1) Step 8-1, the SMF/PGW-C1 initiates a resolving request (namely PGW query) of the private network APN to an EPC DNS, and selects to establish a second target SMF/PGW-C of the private network APN for the UE according to a query result; in a user roaming scenario, the second target SMF/PGW-C of the APN is a SMF/PGW-C of a user home location, that is, SMF/PGW-C2 in fig. 9, the SMF/PGW-C1 in the APN of the public network of the user uses itself as an SGW-C of the APN of the private network of the user, and the selected UPF/PGW-U1 is used as an SGW-U of the APN of the private network of the user.
(2) And 8-2, taking the SMF/PGW-C1 as the SGW-C of the private network APN of the user, and indicating the SGW-U (UPF/PGW-U1 in the figure 9) of the private network APN of the user to distribute and report the S5 interface resources of the private network APN of the user.
(3) And 8-3, the SMF/PGW-C1 sends a private network session establishment request to the SMF/PGW-C2 selected by the user private network APN.
Step 9-1 to step 11: the SMF/PGW-C2 establishes a private network session for the UE, and comprises the following steps: the "secondary authentication/authorization" performed between the SMF/PGW-C2 and the private network as required, obtaining a private network service pre-configured PCC policy signed by the user from the user home PCF/UDR/PCRF/SPR, selecting the UPF/PGW-U2, issuing the private network service pre-configured PCC policy to the UPF/PGW-U2, indicating to allocate session resources for the private network session, allocating a second user IP address (IP address 2 in fig. 9, or allocating IP address 2 by the private network in the "secondary authentication/authorization" flow) to the UE, and the like, and returning relevant information to the SGW-C (SMF/PGW-C1 in fig. 9) of the private network service of the user and completing relevant information interaction, where the above steps follow the 3GPP standard. Wherein, the 4G bearer establishment request message sent by the SMF/PGW-C1 to the SMF/PGW-C2 already contains the relevant information of the user APN; in 4G networks, "secondary authentication/authorization" is referred to as "non-transparent access".
Wherein, in the "secondary authentication/authorization" in step 9-1, the user authentication information includes an authentication password and a user name, and if the authentication password and the user name are the same and are both user MSISDN or IMSI in MSISDN or IMSI, the SGW-C (SMF/PGW-C1 in fig. 9) of the first target SMF/PGW-C of the public network service/private network service should replace UE to complete the authentication without forwarding the authentication information to the UE; if the user name and the password need to be provided by the UE, the SGW-C (i.e., SMF/PGW-C1) of the first target SMF/PGW-C of the public network service/private network service needs to pass through user authentication information between the UE and the private network. Meanwhile, in the case that the second target SMF/PGW-C of the private network service (SMF/PGW-C2 in fig. 9) is the second user IP address (IP address 2 in fig. 9) allocated to the user, it needs to be ensured that the second user IP address (IP address 2 in fig. 9) allocated to the user by the second target SMF/PGW-C of the private network service should not be duplicated with all IP addresses of the private network service that can be accessed by the UE, that is, any IP address in the fields of the "destination URL/URI and destination IP address" in table 2 should not be included in the second user IP address pool configured for the private network service of the enterprise by the second target SMF/PGW-C of the private network service, that is, the second user IP address is not the same as the preset destination address information in the PCC preset policy.
Step 12: the information interaction between the first target SMF/PGW-C of the public network service and the SGW-C of the private network service (i.e., SMF/PGW-C1) and the first target UPF/PGW-U of the public network service and the SGW-U of the private network service (UPF/PGW-U1 in fig. 9) is completed through the Sx interface, including: the SMF/PGW-C1 issues a preset PCC policy, S5 interface information of a second target UPF/PGW-U (UPF/PGW-U2 in fig. 9) of the private network APN, a second user IP address (IP address 2 in fig. 9) for the user private network APN, and the like to the UPF/PGW-U1. And the SGW-C of the first target SMF/PGW-C of the public network service/the private network service and the target SMF/PGW-C2 of the private network service of the user complete the relevant information interaction, and complete the establishment of the private network session.
Step 13: a private network session channel user plane of the private network session is established between an SGW-U of a first target UPF/PGW-U of the public network service and a second target UPF/PGW-U of the private network service (UPF/PGW-U2 in fig. 9), and the private network service of the user is dredged through the private network session channel user plane, that is, an UL uplink data packet of the private network service cached by the first target UPF/PGW-U and an UL uplink data packet currently being transmitted (an UL uplink data packet of the private network service received after the first target UPF/PGW-U is established on the private network session channel user plane) are transmitted by the private network session channel user plane.
Further, while executing step C20, for a scenario in which the first target SMF/PGW-C is concurrently used as the second target SMF/PGW-C and the first target UPF/PGW-U is not concurrently used as the second target UPF/PGW-U, or a scenario in which the first target SMF/PGW-C is concurrently used as the second target SMF/PGW-C and the first target UPF/PGW-U is concurrently used as the second target UPF/PGW-U, or a scenario in which the first target SMF/PGW-C is not concurrently used as the second target SMF/PGW-C and the first target UPF/PGW-U is not concurrently used as the second target UPF/PGW-U, if the private network needs to start the secondary authentication/authorization authentication procedure, the secondary authentication/authorization authentication procedure includes:
when the first session control plane network element determines that the private network needs to start secondary authentication/authorization and stores user authentication information required for performing secondary authentication on the user terminal, the first session control plane network element can act on the user terminal to execute a secondary authentication/authorization process according to local configuration or relevant information of a preset private network service rule, and controls the first session user plane network element to execute the relevant authorization of the private network on the user terminal. It should be noted that the flow of the secondary authentication/authorization corresponds to step 9-1 of fig. 9, and refer to the details of step 9-1 above.
If the SMF/PGW-C1 determines that the private network needs to start secondary authentication/authorization authentication, and user authentication information required for performing secondary authentication on the UE is stored in the SMF/PGW-C1, the SMF/PGW-C1 replaces the UE to perform secondary authentication, so that the SMF/PGW-C1 can be understood to act on the UE to perform a secondary authentication/authorization process according to local configuration or a preset PCC strategy, and control the UPF/PGW-U1 to perform the related authorization of the private network on the UE. The specific implementation manner of the SMF/PGW-C1 performing the secondary authentication/authorization procedure according to the local configuration or the preset PCC policy agent UE is as follows: SMF/PGW-C1 is locally configured to: and enabling the proxy UE to perform secondary authentication on the specific private network name related information (private network name), wherein the authentication parameter is a user identifier MSISDN or IMSI. The other realization mode is as follows: in table 2, 1 parameter information is added to "proxy user performs secondary authentication", and the values of the parameters are: if the value is "no", the SMF/PGW-C1 does not execute secondary authentication of the proxy user, and the authentication parameter is the user identification MSISDN ", if the value is" yes ", the SMF/PGW-C1 executes secondary authentication of the proxy user, and the authentication parameter is the user identification MSISDN", and if the value is "yes", the authentication parameter is the user identification IMSI ", the SMF/PGW-C1 executes secondary authentication of the proxy user, and the authentication parameter is the user identification MSISDN, and if the value is" yes ", the authentication parameter is the user identification IMSI", the SMF/PGW-C1 executes secondary authentication of the proxy user, and the authentication parameter is the user identification IMSI.
Under the scene that the first target SMF/PGW-C is used as the second target SMF/PGW-C and the first target UPF/PGW-U is not used as the second target UPF/PGW-U, or the first target SMF/PGW-C is used as the second target SMF/PGW-C and the first target UPF/PGW-U is used as the second target UPF/PGW-U, or the first target SMF/PGW-C is not used as the second target SMF/PGW-C and the first target UPF/PGW-U is not used as the second target UPF/PGW-U, user authentication information is not required to be sent to the UE, the SMF/PGW-C1 replaces the UE to complete a secondary authentication or authorization process, the user does not need to manually input the user authentication information on the UE, the user can use the non-perception of the private network service process through the UE, and the service access experience of the user is improved.
Step C30: and the first session user plane network element replaces the first user IP address in the UL uplink data messages of all the private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages to the private network through the private network session channel user plane.
In this embodiment, after the private network session channel user plane is established, only one public network session channel user plane exists for the UPF/PGW-U1 of the public network service on the UE side, including an S5/S8 interface (in the case where an SGW-U exists (an SGW-U1 in fig. 9)) or an S1-U interface (in the case where an SGW-U and a UPF/PGW-U1 are the same UPF/SAEGW-U (in the case where an SGW-U1 and a UPF/PGW-U1 are the same network element in fig. 9)); for the network side, a public network session channel user plane (only an SGi interface exists) and a private network session channel user plane (when the UPF/PGW-U1 does not serve as the UPF/PGW-U2 at the same time, an S5 interface exists, and when the UPF/PGW-U1 serves as the UPF/PGW-U2 at the same time, the SGi interface exists) exist at the same time.
And the UPF/PGW-U1 replaces the first user IP address in the UL uplink data messages of all private network services transmitted by the user plane of the public network session channel with the second user IP address. And further, the UPF/PGW-U1 transmits the replaced UL uplink data message to a private network through a private network session channel user plane, namely service shunting, so as to realize private network access. The private network includes campus network, enterprise private network, etc., and the enterprise private network includes private network of government department, private network of public institution, private network of private enterprise, etc. The UPF/PGW-U1 replaces the first user IP address in the UL uplink data message with the second user IP address, which is an operation completed by replacing the UE and does not need the UE to support a multi-APN function.
Specifically, step S230 includes: after the private network session channel user plane is established, the first session user plane network element replaces the first user IP address in the UL uplink data messages of all the private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replaces the first user IP address in the UL uplink data messages of all the private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages of all the private network services cached before the private network session channel user plane is established and the replaced UL uplink data messages of all the private network services received after the private network session channel user plane is established to the private network sequentially through the private network session channel user plane.
It should be understood that, after the private network session channel user plane is established, the UPF/PGW-U1 replaces the first user IP address in the UL uplink data packets of all private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replaces the first user IP address in the UL uplink data packets of all private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data packets of all private network services cached before the private network session channel user plane is established and the replaced UL uplink data packets of all private network services received after the private network session channel user plane is established to the private network sequentially through the private network session channel user plane. Wherein, the transmission of UL uplink data message by the private network session channel user plane follows the rule of receiving and forwarding first.
Further, this embodiment supports the distribution and aggregation of multiple private network services in the public network service of the same user. Considering that a user uses a plurality of private network services through the same UE, establishing a plurality of corresponding private network session channel user planes for the UE according to the private network name related information to which the private network services used by the user in the same public network service session channel user plane on the same UE belong, namely, the step that a first session user plane network element transmits the replaced UL uplink data packet to the private network through the private network session channel user planes comprises the following steps:
and the first session user plane network element executes a service distribution rule to determine a private network session channel identifier according to the UL uplink data message, and transmits the replaced UL uplink data message to a private network through a private network session channel user plane corresponding to the private network session channel identifier.
It should be understood that, when there are one or more private network services, after the private network session channel user plane is established, each private network service corresponds to one private network session channel user plane, and each private network session channel user plane has one corresponding private network session channel identifier. The UPF/PGW-U1 executes a service distribution rule, determines private network session channel identification according to target UL uplink data corresponding to different private network services, can be matched with corresponding private network session channel user faces through the determined private network session channel identification, replaces a first user IP address in each UL uplink data message with a second user IP address through the UPF/PGW-U1, and then transmits each replaced UL uplink data message to a private network through the private network session channel user face corresponding to private network name related information according to the corresponding private network session channel identification, so that service distribution is realized. Wherein each private network service corresponds to a respective second user IP address.
Step C40: and the first session user plane network element replaces the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address, and sends the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
In this embodiment, after the UPF/PGW-U1 transmits the replaced UL uplink data packet to the private network through the private network session channel user plane, the private network sends the DL downlink data packet to the UE. The UPF/PGW-U1 replaces the second user IP address in the DL downlink data message with the first user IP address, wherein the second user IP address and the first user IP address are both understood as destination IP addresses, namely, the first user IP address included in the replaced DL downlink data message corresponds to the first user IP address included in the replaced UL uplink data message. And further, the UPF/PGW-U1 sends the replaced DL downlink data message to the UE through the public network session channel user plane and the base station in sequence, and the user can see the required access information through the UE.
Wherein, for the data received from the SGi interface of the public network session channel user plane, the UPF/PGW-U1 forwards the data to the S5/S8 interface of the public network session channel user plane (in the case of existence of SGW-U (SGW-U1 in fig. 9)) or the S1-U interface (in the case of the SGW-U and the UPF/PGW-U1 being the same UPF/sae gw-U (in the case of SGW-U1 and UPF/PGW-U1 being the same network element in fig. 9)), and then sends the data to the UE through the eNB; the UPF/PGW-U1 forwards data received from an S5 interface (when the UPF/PGW-U1 is not concurrently UPF/PGW-U2, the existing interface is an S5 interface) of a private network session channel user plane, an SGi interface (when the UPF/PGW-U1 is concurrently UPF/PGW-U2, the existing interface is an SGi interface) to an S5/S8 interface (when the SGW-U exists (SGW-U1 in fig. 9)) of a public network session channel user plane, or an S1-U interface (when the SGW-U and the UPF/PGW-U1 are the same UPF/SAEGW-U (when the SGW-U1 and the UPF/PGW-U1 are the same network element in fig. 9)), and then sends the data to the UE via the eNB. Wherein, the IP address of the UE is the first user IP address of the public network session (IP address 1 in fig. 9). For the IP address for the public network session channel user plane (IP address 1 in fig. 9) and the IP address for the private network session channel user plane (IP address 2 in fig. 9), IPv4v6, IPv4, and IPv6 can be respectively used. Fig. 8 is a schematic diagram illustrating a mapping relationship between a first user IP address and a second user IP address.
Further, considering the situation that a user uses a plurality of private network services through the UE, the private network session channel user planes with the same number as the private network services are correspondingly established, and one public network session channel user plane is provided, so that the private network transmits DL downlink data packets corresponding to different private network services to the public network session channel user plane according to the corresponding private network session channel user plane, and each private network session channel user plane transmits the DL downlink data packet transmitted by each private network session channel user plane to the public network session channel user plane. For the case that the public network SGW-U (the public network SGW-U1 in fig. 9) exists in the public network and the SGW-U and the UPF/PGW-U1 are the same UPF/sae gw-U (in fig. 9, the SGW-U1 and the UPF/PGW-U1 are the same network element), step C40 includes the following steps:
the first session user plane network element executes a service convergence rule so as to converge the target DL downlink data transmitted by the private network session channel user plane corresponding to the private network session channel identifier into the public network session channel user plane between the first session user plane network element and the base station;
replacing the second user IP address in a DL downlink data message sent to the user terminal by the private network with the first user IP address;
sending the replaced DL downlink data message to the user terminal through a first session user plane network element of the public network session channel user plane and a base station in sequence; or,
and sending the replaced DL downlink data message to the user terminal through a first session user plane network element, an intermediate session user plane network element and a base station of the public network session channel user plane in sequence.
Specifically, for the case where the SGW-U and the UPF/PGW-U1 are the same UPF/SAEGW-U (in fig. 9, the SGW-U1 and the UPF/PGW-U1 are the same network element), when there are multiple private network session channel user planes, the UPF/PGW-U1 executes a service convergence rule to converge target DL downlink data transmitted by the private network session channel user plane corresponding to each private network session channel identifier into the public network session channel user plane between the UPF/PGW-U1 and the eNB, and then replaces a second user IP address in a DL downlink data message sent by the private network to the UE with the first user IP address, and further sends the replaced DL data downlink message to the UE sequentially through the UPF/PGW-U1 and the eNB of the public network session channel user plane.
For the situation that SGW-U1 exists in the public network, when a plurality of private network session channel user planes are established, the UPF/PGW-U1 executes a service convergence rule to converge target DL downlink data transmitted by the private network session channel user plane corresponding to each private network session channel identifier into the public network session channel user plane between the UPF/PGW-U1 and the eNB, then a second user IP address in a DL downlink data message sent to the UE by the private network is replaced by a first user IP address, and the replaced DL downlink data message is sent to the UE through the UPF/PGW-U1, the SGW-U1 and the eNB of the public network session channel user plane in sequence.
According to the technical scheme, the embodiment realizes that the public network service and the private network service are borne for the user terminal through the single session channel, and the network can respectively carry out charging and service control on the private network service and the public network service of the user terminal. For a user terminal which does not support the function of multiple APNs, public network service and private network service can be provided for the user at the same time. When a user uses the private network service through a user terminal which does not support the multi-APN function or supports the multi-APN function, the user does not need to perform complicated configuration on the user terminal, and can start and use the private network service in the using process of the public network service through simple operation of clicking a link or inputting a destination address on a public network page, so that private network access can be performed without extra operation, and the imperceptibility of the user to use the private network service through the user terminal and the service access experience of the user are improved.
Further, based on the above embodiment, step C20 is followed by: and when a preset condition is met, the first session control plane network element sends a notification message to the corresponding session establishment initiating network element according to the previously acquired session establishment initiating network element identifier so as to notify the session establishment initiating network element to count the number of the private network session channel user planes.
It should be understood that, in a 4G scenario, there are multiple session establishment initiating network elements, and the SMF/PGW-C1 may start a function of sending a notification message to the MME as required, where the preset condition is set according to an actual requirement, for example, the preset condition is that establishment of a private network session channel user plane is completed. When the SMF/PGW-C1 starts the function, the SMF/PGW-C1 supports sending the notification message according to the MME, and realizes sending the notification message to all or part of MMEs of the same operator, or sending the notification message to MMEs of part of other operators, or not sending the notification message to MMEs of part of other operators; the SMF/PGW-C1 can acquire the SGW-C and SGW identifications before establishing a public network session channel user plane. When the preset condition is met, the SMF/PGW-C1 sends a notification message to the MME according to the previously acquired SGW-C and SGW identifiers, and notifies the MME to count the number of private network session channel user planes, for example, the MME is the MME1 in fig. 9. The SMF/PGW-C1 sends the notification message to the MME according to the previously obtained SGW-C and SGW identifier to notify the MME that "the network additionally establishes a private network session for the UE" that is, in addition to the public network session, the SMF/PGW-C1 in fig. 9 sends the message to the MME1 through the SGW-C1 (in the case where the SGW-C exists) or directly (in the case where the SGW-U and the UPF/PGW-U1 are the same UPF/SAEGW-U (in the case where the SGW-U1 and the UPF/PGW-U1 are the same network element in fig. 9)) so as to ensure consistency of the statistical session numbers on the MME1, the SGW-C, and the SMF/PGW-C1. If the step exists, the MME only takes the "private network session additionally established by the network for the UE" into the relevant statistical index, and is not used for the session (public network session and private network session) that needs to be established for the user when the user switches/roams across MMEs and SMF/PGW-C, that is, when the UE switches/roams across MMEs and SMF/PGW-C, the MME only performs the switching/redirection of the public network session, but does not need to perform the switching/redirection of the private network session.
Further, based on the above embodiment, the service access processing method further includes:
and the first session control plane network element and the first session user plane network element perform segmented management on the public network session channel user plane and the private network session channel user plane, and perform session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service respectively.
It should be understood that under the condition that the SMF/PGW-C1 is not concurrently serving as the SMF/PGW-C2 and the UPF/PGW-U1 is not concurrently serving as the UPF/PGW-U2, under the condition that the SMF/PGW-C1 is concurrently serving as the SMF/PGW-C2 and the UPF/PGW-U1 is not concurrently serving as the UPF/PGW-U2, the SGW-C (i.e., the SMF/PGW-C1) of the first target SMF/PGW-C/private network service of the public network service and the SGW-U (i.e., the UPF/PGW-U1) of the first target UPF/PGW-U/private network service of the public network service can cooperate to realize respectively counting traffic and generating charging bills and respectively for the public network session and the private network session, and respectively manage and control; as shown in fig. 9: the public network conversation user plane is as follows: UE-Wireless eNB (SGW-U1, independent or the same network element as UPF/PGW-U1) -UPF/PGW-U1-public network; the private network session user plane is as follows: UE-wireless eNB- (SGW-U1, independent or same network element as UPF/PGW-U1) -UPF/PGW-U1/SGW-U2 (for UL uplink data packet, replace first user IP address from user IP address 1 to user IP address 2; for DL downlink data packet, replace second user IP address from user IP address 2 to user IP address 1) -UPF/PGW-U2-private network; and respectively carrying out flow statistics and charging and session control on the user planes of the 2 session channels.
Under the condition that the SMF/PGW-C1 is also used as the SMF/PGW-C2 and the UPF/PGW-U1 is also used as the UPF/PGW-U2, the target SMF/PGW-C (namely the SMF/PGW-C1) of the first target SMF/PGW-C/private network service of the public network service and the target UPF/PGW-U (namely the UPF/PGW-U1) of the first target UPF/PGW-C/private network service of the public network service can be matched to respectively count the flow and generate a charging bill and respectively manage and control the public network session and the private network session; as shown in fig. 9: the public network conversation user plane is as follows: UE-Wireless eNB- (SGW-U1, independent or same network element as UPF/PGW-U1) -UPF/PGW-U1-public network; the private network session user plane is as follows: UE-wireless eNB (SGW-U1, independent or same network element as UPF/PGW-U1) -UPF/PGW-U1/SGW-U2/UPF/PGW-U2 (for UL uplink data message, replace first user IP address from user IP address 1 to user IP address 2; for DL downlink data message, replace second user IP address from user IP address 2 to user IP address 1) -private network; and respectively carrying out flow statistics and charging and session control on the user planes of the 2 session channels.
Further, based on the foregoing embodiment, the service access processing method further includes:
and respectively associating at least two QoS flows with the public network session channel user plane and the private network session channel user plane so as to respectively perform end-to-end session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service.
It should be understood that, in case of UE support, for "UE-wireless eNB- (SGW-U1, independent or same network element as UPF/PGW-U1) -UPF/PGW-U1 segment", 2 QoS flows may be employed, 1 QoS Flow being associated to "UPF/PGW-U1-public network" segment of public network session channel user plane, and another 1 QoS Flow being associated to "UPF/PGW-U1/SGW-U2-UPF/PGW-U2-private network or UPF/PGW-U1/SGW-U2/UPF/PGW-U2-private network" segment of private network session channel user plane, so that the wireless network facilitates QoS management, traffic statistics and charging to the public network traffic and private network traffic of the UE, respectively.
Further, referring to fig. 9, fig. 9 includes a scenario where a subscriber is roaming and the network already has separate SGW-C and SGW-U at the roaming site.
For a scenario where a user roams and a network does not have an independent SGW-C and an independent SGW-U at a roaming place, refer to fig. 9 as well, where the difference is that in fig. 9, SGW-C1 and SMF/PGW-C1 are the same network element SMF/SAEGW-C1, SGW-U1 and UPF/PGW-U1 are the same network element UPF/SAEGW-U1, MME and SMF/PGW-C1 directly communicate, and wireless eNB and UPF/SAEGW-U1 directly communicate.
For a scenario where the user does not roam but the network already has separate SGW-C and SGW-U, and the SMF/PGW-C of the public network session provided for the user can select the UPF/PGW-U to access to the private network APN, refer also to fig. 9, with the difference that SMF/PGW-C1 and SMF/SAEGW-C2 in fig. 9 are the same SMF/PGW-C1/SAEGW-C2.
For a scenario where the user does not roam but the network already has independent SGW-C and SGW-U, and the UPF/PGW-U of the public network session provided for the user is the UPF/PGW-U accessed by the private network APN, refer to fig. 9 as well, where the difference is that in fig. 9, SMF/PGW-C1 and SMF/SAEGW-C2 are the same SMF/PGW-C1/SAEGW-C2, and UPF/PGW-U1 and UPF/SAEGW-U2 are the same UPF/PGW-U1/SAEGW-U2.
For a scenario that a user does not roam and a network does not have independent SGW-C and SGW-U, and an SMF/PGW-C of a public network session provided for the user can select a UPF/PGW-U accessed to a private APN, refer to fig. 9 as well, where the difference is that in fig. 9, the SGW-C1 and the SMF/PGW-C1 are the same network element SMF/SAEGW-C1, the upw-U1 and the PGW-U1 are the same network element UPF/SAEGW-U1, the MME and the SMF/PGW-C1 are directly intercommunicated, the wireless eNB and the UPF/SAEGW-U1 are directly intercommunicated, and the SMF/PGW-C1 and the SMF/SAEGW-C2 are the same SMF/PGW-C1/SAEGW-C2.
For a scenario that the user does not roam and the network does not have independent SGW-C and SGW-U, and the UPF/PGW-U of the public network session provided for the user is the UPF/PGW-U accessed by the private network APN, refer to fig. 9 as well, where the difference is that the SGW-C1 and the SMF/PGW-C1 in fig. 9 are the same network element SMF/SAEGW-C1, the SGW-U1 and the UPF/PGW-U1 are the same network element UPF/SAEGW-U1, the MME and the SMF/PGW-C1 are directly intercommunicated, the wireless eNB and the UPF/SAEGW-U1 are directly intercommunicated, and the SMF/PGW-C1 and the SMF/SAEGW-C2 are the same SMF/PGW-C1/SAEGW-C2, and the UPF/SAEGW-U1 and the UPF/SAEGW-U2 are the same UPF/PGW-C1/SAEGW-U2.
For the scenario of fig. 9, if the UE then undergoes handover/roaming across SGW-cs (SGW-C1 in fig. 9), the MME selects a new SGW-C for the UE, while the SGW-C (SMF/PGW-C1 in fig. 9) of the first target SMF/PGW-C/private network APN traffic of the public network traffic is unchanged, i.e.: only the SGW-C1 and the SGW-U1 in the figure 9 are replaced by corresponding new SGW-C and SGW-U, an SSC mode1 mode is adopted, the public network service and the private network service of a user are not interrupted, and the 3GPP standard is followed.
For the scenario in which the SGW-C1 and the SMF/PGW-C1 in fig. 9 are the same network element SMF/SAEGW-C1, that is, the MME directly interworks with the SMF/PGW-C1, and the wireless eNB directly interworks with the UPF/SAEGW-U1, if the UE performs handover/roaming across SGW-cs (the SGW-C in fig. 9) thereafter, the MME selects the SGW-C (e.g., the SGW-C1 in fig. 9) for the UE, and the SGW-C (the SMF/PGW-C1 in fig. 9) of the first target SMF/PGW-C/private network APN service of the public network service is unchanged, that is: in fig. 9, there are independent SGW-C1 and SGW-U1, and the SSC mode1 is adopted, so that the public network service and the private network service of the user are not interrupted and conform to the 3GPP standard.
It should be noted that, in the above implementation process, except for the technical implementation scheme disclosed in the present invention, all the implementation processes are based on the basic specification of the 4G network in compliance with the 3GPP standard, and the network must be based on the APN in the process of establishing sessions (public network session and private network session) for the 4G UE. In the invention, all the contents related to the APN refer to the corresponding APN in order to simplify the description.
The invention is also suitable for the 4G user to access the 4G network by using the user terminal supporting the 4G function (such as 4G terminal, 3G/4G terminal, 2G/3G/4G, and the like, and the multimode terminal supporting the 4G and 5G terminals, and the like), and enjoy the service of 'establishing a special channel for transmitting the corresponding special network service for the user immediately when the special network service is identified in the public network service of the user' provided by the network. The 4G network provides a scenario of "immediately establishing a dedicated channel for transmitting a corresponding private network service for a user when the private network service is identified in a public network service of the user" for a 4G user accessing the 4G network by using a user terminal supporting a 4G function, a basic implementation principle of the scenario is basically the same as that of the second embodiment, and a difference is that: the session control plane network element can be PGW-C or PGW-C/GGSN-C without SMF function; the session user plane network element can be a PGW-U or a PGW-U/GGSN-U without UPF function; the user data management network element is HSS or UDM/UDR/HSS or HSS/HLR or UDM/UDR/HSS/HLR; the policy control network element is PCRF/SPR or PCF/UDR/PCRF/SPR; the functions of the network database network elements may be implemented by DRA, EPC, DNS, where: DRA is responsible for communication between MME and HSS and between PGW-C and PCRF, EPC DNS is used for selecting SGW-C and PGW-C; and: SGW-C and PGW-C are commonly combined as SAEGW-C or SAEGW/GGSN-C; SGW-U and PGW-U are commonly combined to be SAEGW-U or SAEGW/GGSN-U; in the 4G network, the session control plane network element and the session user plane network element can be jointly set as SGW, PGW, SAEGW, PGW/GGSN, SAE-GW/GGSN.
As shown in fig. 10, a service access processing apparatus provided by the present invention includes:
an event sending module 310, configured to send, based on a public network service initiated by a user terminal, an access event of the private network service to a first session control plane network element of the public network service when the first session user plane network element recognizes that the public network service transmitted by a public network session channel user plane includes the private network service;
a session establishing module 320, configured to start a process of establishing a private network session for a user according to the access event by using the first session control plane network element, and control the first session user plane network element to execute a process of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user;
a service distribution module 330, configured to replace, by using the first session user plane network element, a first user IP address in UL uplink data packets of all private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by the network, and transmit the replaced UL uplink data packet to the private network through the private network session channel user plane;
and the service convergence module 340 is configured to replace the second user IP address in the DL downlink data packet sent to the user terminal by the private network with the first user IP address by using the first session user plane network element, and send the replaced DL downlink data packet to the user terminal through the public network session channel user plane and the base station in sequence.
Further, the event sending module 310 is further configured to cache, by using the first session user plane network element, UL uplink data packets of all the private network services in the public network session channel user plane; forwarding the UL uplink data message and the DL downlink data message of the public network service through the public network session channel user plane; the public network service forwarded by the public network session channel user plane does not include the private network service, and the public network service forwarded by the public network session channel user plane does not trigger a process of establishing a private network session for a user.
Further, the service offloading module 330 is specifically configured to, after the private network session channel user plane is established, replace, by using the first session user plane network element, the first user IP address in the UL uplink data packet of all the private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replace, by the network, the first user IP address in all the UL uplink data packet of all the private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmit, to the private network, the replaced UL uplink data packet of all the private network services cached before the private network session channel user plane is established and the replaced UL uplink data packet of all the private network services received after the private network session channel user plane is established, through the private network session channel user plane in sequence.
Further, the event sending module 310 is further configured to obtain, by the first session user plane network element, destination address information in the UL uplink data packet sent by the user terminal, and determine that the UL uplink data packet is a private network service when it is identified that the destination address information is the same as preset destination address information of a private network service;
the preset destination address information of the private network service is obtained through at least one of the following modes:
the preset destination address information of the private network service is acquired by the first session user plane network element from the local configuration of the first session user plane network element;
the preset destination address information of the private network service is obtained by the first session user plane network element from the preset private network service rule related information sent to the first session control plane network element by the first session user plane network element;
the related information of the preset private network service rule is obtained by the first session control plane network element in a PCC mode and/or in local configuration of the first session control plane network element, and is sent to the first session user plane network element in the process of establishing the public network session channel user plane for the user terminal;
the obtaining, by the first session control plane network element, the relevant information of the preset private network service rule in a PCC manner includes at least one of the following manners:
in the process of establishing public network session for the user terminal, the policy control network element issues the whole amount of relevant information of the preset private network service rule to the first session control plane network element;
in the process of establishing a public network session for the user terminal, the policy control network element issues a PCC predefined rule to the first session control plane network element, the first session control plane network element configures a PCC predefined policy from its own local according to the PCC predefined rule to obtain relevant information of the preset private network service rule, where the relevant information of the preset private network service rule at least includes a PCC policy identifier, relevant information of a public network name, preset destination address information of the private network service, relevant information of a private network name required for establishing a private network session, and user identifier information.
Further, the event sending module 310 is further configured to acquire, by using the first session user plane network element, the private network name related information, which is matched with the destination address information and is required to establish the private network session, from the preset private network service rule related information, and generate an access event of the private network service according to the private network name related information required to establish the private network session; or,
and the first session user plane network element generates an access event of the private network service according to the destination address information.
Further, the service access processing apparatus further includes:
a public network session request sending unit, configured to select a first session control plane network element corresponding to a public network service of the user terminal when receiving a public network service activation request initiated by the user terminal by using a session establishment initiation network element, and send a public network session establishment request to the first session control plane network element;
a public network session establishing unit, configured to select a first session user plane network element by using the first session control plane network element, control the first session user plane network element to establish a public network session channel user plane of the public network service, and allocate the first user IP address to the user terminal; the first user IP address is different from preset destination address information of the private network service in the preset private network service rule related information.
Further, the session establishing module 320 includes:
a first information obtaining unit, configured to obtain, by using the first session control plane network element, private network name related information required to establish a private network session included in the access event, or obtain, by using the first session control plane network element, destination address information included in the access event, and obtain, according to the destination address information, private network name related information required to establish a private network session by matching with preset private network service rule related information;
a first information sending unit, configured to determine a second user IP address and a second session user plane network element when determining that the first session control plane network element doubles as the second session control plane network element and the first session user plane network element does not doubles as the second session user plane network element, and send the second user IP address to the first session user plane network element; and the number of the first and second groups,
a first user plane establishing unit, configured to control, by the first session control plane network element, the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
Further, the session establishing module 320 further includes:
a second information obtaining unit, configured to obtain, by using the first session control plane network element, private network name related information required to establish a private network session included in the access event, or obtain, by using the first session control plane network element, destination address information included in the access event, and obtain, according to the destination address information, private network name related information required to establish a private network session by matching the destination address information with preset private network service rule related information;
a second information sending unit, configured to determine, by using the first session control plane network element, the second user IP address when determining that the first session control plane network element doubles as a second session control plane network element and the first session user plane network element doubles as a second session user plane network element, and send the second user IP address to the first session user plane network element; and (c) a second step of,
and a second user plane establishing unit, configured to control, by using the first session control plane network element, the first session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session.
Further, the session establishing module 320 further includes:
a third information obtaining unit, configured to obtain, by using the first session control plane network element, private network name related information required to establish a private network session included in the access event, or obtain, by using the first session control plane network element, destination address information included in the access event, and obtain, according to the destination address information, private network name related information required to establish a private network session by matching the destination address information with preset private network service rule related information;
a third information sending unit, configured to determine, by using the first session control plane network element, the second session control plane network element and the second session user plane network element when determining that the first session control plane network element is not concurrently used as the second session control plane network element and the first session user plane network element is not concurrently used as the second session user plane network element, and send a private network session establishment request to the second session control plane network element; the first session control plane network element determines the second session control plane network element by adopting the same or similar method for determining the session control plane network element by the session establishment initiation network element;
a fourth information sending unit, configured to return a private network session establishment response to the first session control plane network element by using the second session control plane network element, where the private network session establishment response at least includes the second user IP address and interface address information of a relevant interface of the second session user plane network element;
a third user plane establishing unit, configured to send the second user IP address to the first session user plane network element when the first session control plane network element receives the private network session establishment response, and control the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
Further, the session establishing module 320 further includes:
and the authentication unit is used for acting the user terminal to execute a secondary authentication/authorization process according to local configuration or preset relevant information of a private network service rule when the first session control plane network element determines that the private network needs to start secondary authentication/authorization and stores user authentication information required by secondary authentication of the user terminal, and controlling the first session user plane network element to execute the relevant authorization of the private network to the user terminal.
Further, in the aspect that the service offloading module 320 transmits the replaced UL uplink data packet to the private network through the private network session channel user plane, specifically configured to:
and executing a service distribution rule by adopting the first session user plane network element to determine a private network session channel identifier according to the UL uplink data message, and transmitting the replaced UL uplink data message to a private network through a private network session channel user plane corresponding to the private network session channel identifier.
Further, the service convergence module 340 includes:
a message aggregation unit, configured to execute a service aggregation rule by using the first session user plane network element, so as to aggregate, to the public network session channel user plane between the first session user plane network element and the base station, target DL downlink data transmitted by the private network session channel user plane corresponding to the private network session channel identifier;
an address replacing unit, configured to replace the second user IP address in a DL downlink data packet sent by the private network to the user terminal with the first user IP address;
an address sending unit, configured to send the replaced DL downlink data packet to the user terminal sequentially through a first session user plane network element and a base station of the public network session channel user plane; or the replaced DL downlink data message is sent to the user terminal through the first session user plane network element, the middle session user plane network element and the base station of the public network session channel user plane in sequence.
Further, the service access processing apparatus further includes:
and the quantity counting unit is used for sending a notification message to the corresponding session establishment initiating network element by adopting the first session control plane network element according to the previously acquired session establishment initiating network element identifier when the preset condition is met so as to notify the session establishment initiating network element to count the quantity of the private network session channel user planes.
Further, the service access processing apparatus further includes:
and the first control unit is used for performing segmented management on the public network session channel user plane and the private network session channel user plane by adopting the first session control plane network element and the first session user plane network element, and performing session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service respectively.
Further, the service access processing apparatus further includes:
and the second control unit is used for associating the at least two QoS flows with the public network session channel user plane and the private network session channel user plane respectively so as to perform end-to-end session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service respectively.
The specific implementation of the service processing system of the present invention is basically the same as the embodiments of the service processing method described above, and is not described herein again.
The invention also provides a mobile communication network packet domain device, which comprises: the service access processing method comprises a memory, a processor and a service access processing program which is stored on the memory and can run on the processor, wherein the service access processing program realizes the steps of the service access processing method when being executed by the processor.
Further, the present invention also provides a storage medium, on which a service access processing program is stored, and when the service access processing program is executed by a processor, the steps of the service access processing method are implemented.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
It should be noted that in the claims, any reference signs placed between parentheses shall not be construed as limiting the claim. The word "comprising" does not exclude the presence of elements or steps not listed in a claim. The word "a" or "an" preceding an element does not exclude the presence of a plurality of such elements. The invention may be implemented by means of hardware comprising several distinct elements, and by means of a suitably programmed computer. In the unit claims enumerating several means, several of these means can be embodied by one and the same item of hardware. The usage of the words first, second and third, etcetera do not indicate any ordering. These words may be interpreted as names.
While preferred embodiments of the present invention have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all such alterations and modifications as fall within the scope of the invention.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.
Claims (18)
1. A service access processing method is applied to a packet domain device of a mobile communication network, and comprises the following steps:
based on public network service initiated by a user terminal, when a first session user plane network element identifies that public network service transmitted by a public network session channel user plane comprises private network service, sending an access event of the private network service to a first session control plane network element of the public network service;
the first session control plane network element starts a flow of establishing a private network session for a user according to the access event, and controls the first session user plane network element to execute a flow of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user;
the first session user plane network element replaces the first user IP address in the UL uplink data message of all the private network services transmitted by the public network session channel user plane with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data message to the private network through the private network session channel user plane; and the number of the first and second groups,
and the first session user plane network element replaces the second user IP address in the DL downlink data message sent to the user terminal by the private network with the first user IP address, and sends the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
2. The method as claimed in claim 1, wherein when the first session user plane network element recognizes that the public network service transmitted by the public network session channel user plane includes a private network service, the method further includes, while sending an access event of the private network service to the first session control plane network element of the public network service:
the first session user plane network element caches UL uplink data messages of all the private network services in the public network session channel user plane; and (c) a second step of,
the public network session channel user plane forwards an UL uplink data message and a DL downlink data message of the public network service; the public network service forwarded by the public network session channel user plane does not include the private network service, and the public network service forwarded by the public network session channel user plane does not trigger a process of establishing a private network session for a user.
3. The method of claim 1, wherein the first session user plane network element replaces a first user IP address in UL uplink data packets of all the private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by a network, and transmits the replaced UL uplink data packets to a private network through the private network session channel user plane, comprising:
after the private network session channel user plane is established, the first session user plane network element replaces the first user IP address in the UL uplink data messages of all the private network services cached before the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, replaces the first user IP address in the UL uplink data messages of all the private network services received after the private network session channel user plane is established with the second user IP address allocated to the user terminal by the network, and transmits the replaced UL uplink data messages of all the private network services cached before the private network session channel user plane is established and the replaced UL uplink data messages of all the private network services received after the private network session channel user plane is established to the private network sequentially through the private network session channel user plane.
4. The method of claim 1, wherein the service access processing method further comprises:
the first session user plane network element acquires destination address information in the UL uplink data message sent by the user terminal, and determines that the UL uplink data message is a private network service when the destination address information is identified to be the same as preset destination address information of the private network service;
the preset destination address information of the private network service is obtained by at least one of the following modes:
the preset destination address information of the private network service is acquired from the local configuration of the first session user plane network element;
the preset destination address information of the private network service is obtained by the first session user plane network element from the preset private network service rule related information sent to the first session control plane network element by the first session user plane network element;
the related information of the preset private network service rule is obtained by the first session control plane network element in a PCC mode and/or in local configuration of the first session control plane network element, and is sent to the first session user plane network element in the process of establishing the public network session channel user plane for the user terminal;
the obtaining, by the first session control plane network element, the relevant information of the preset private network service rule in a PCC manner includes at least one of the following manners:
in the process of establishing public network session for the user terminal, the policy control network element issues the whole amount of relevant information of the preset private network service rule to the first session control plane network element;
in the process of establishing a public network session for the user terminal, the policy control network element issues a PCC predefined rule to the first session control plane network element, the first session control plane network element configures a PCC predefined policy from its own local according to the PCC predefined rule to obtain relevant information of the preset private network service rule, where the relevant information of the preset private network service rule at least includes a PCC policy identifier, relevant information of a public network name, preset destination address information of the private network service, relevant information of a private network name required for establishing a private network session, and user identifier information.
5. The method of claim 4, wherein the service access processing method further comprises:
the first session user plane network element acquires the private network name related information matched with the destination address information and required for establishing the private network session from the preset private network service rule related information, and generates an access event of the private network service according to the private network name related information required for establishing the private network session; or,
and the first session user plane network element generates an access event of the private network service according to the destination address information.
6. The method as claimed in claim 1, wherein, when the first session user plane network element recognizes that the public network service transmitted by the public network session channel user plane includes the private network service based on the public network service initiated by the user terminal, before sending the access event of the private network service to the first session control plane network element of the public network service, the method further includes:
when receiving a public network service activation request initiated by the user terminal, the session establishment initiation network element selects a first session control plane network element corresponding to the public network service of the user terminal and sends a public network session establishment request to the first session control plane network element;
the first session control plane network element selects a first session user plane network element, controls the first session user plane network element to establish a public network session channel user plane of the public network service and allocates the first user IP address to the user terminal; the first user IP address is different from preset destination address information of the private network service in the preset private network service rule related information.
7. The method as claimed in claim 1, wherein the initiating, by the first session control plane network element, a procedure for establishing a private network session for the user according to the access event, and controlling the first session user plane network element to perform the procedure for establishing the private network session channel user plane for the user, comprises:
the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is not also used as a second session user plane network element, determining the second user IP address and the second session user plane network element, and sending the second user IP address to the first session user plane network element; and the number of the first and second groups,
the first session control plane network element controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required for establishing the private network session; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
8. The method as claimed in claim 1, wherein the first session control plane network element starts a procedure of establishing a private network session for a user according to the access event, and controls the first session user plane network element to perform the procedure of establishing the private network session channel user plane for the user, so as to establish the private network session channel user plane for the user, further comprising:
the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
when the first session control plane network element determines that the first session control plane network element is also used as a second session control plane network element and the first session user plane network element is also used as a second session user plane network element, the first session user plane network element determines the second user IP address and sends the second user IP address to the first session user plane network element; and (c) a second step of,
the first session control plane network element controls the first session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required by establishing the private network session; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
9. The method as claimed in claim 1, wherein the first session control plane NE initiates a procedure of establishing a private network session for a user according to the access event, and controls the first session user plane NE to perform a procedure of establishing the private network session channel user plane for a user, so as to establish the private network session channel user plane for the user, further comprising:
the first session control plane network element acquires private network name related information required for establishing a private network session and included in the access event, or the first session control plane network element acquires destination address information included in the access event and matches the destination address information with preset private network service rule related information to obtain private network name related information required for establishing the private network session;
when the first session control plane network element determines that the first session control plane network element does not double as a second session control plane network element and the first session user plane network element does not double as a second session user plane network element, determining the second session control plane network element and the second session user plane network element, and sending a private network session establishment request to the second session control plane network element; the first session control plane network element determines the second session control plane network element by adopting the same or similar method of determining the session control plane network element by a session establishment initiation network element;
the second session control plane network element returns a private network session establishment response to the first session control plane network element, wherein the private network session establishment response at least comprises the second user IP address and interface address information of a relevant interface of the second session user plane network element;
when receiving the private network session establishment response, the first session control plane network element sends the second user IP address to the first session user plane network element, and controls the first session user plane network element and the second session user plane network element to establish the private network session channel user plane corresponding to the private network name related information according to the private network name related information required by private network session establishment; and the second user IP address is different from the preset destination address information of the private network service in the preset private network service rule related information.
10. The method as claimed in any one of claims 7 to 9, wherein the first session control plane onu initiates a procedure for establishing a private network session for the user according to the access event, and controls the first session user plane onu to execute the procedure for establishing the private network session channel user plane for the user, so that while establishing the private network session channel user plane for the user, the method further comprises:
when the first session control plane network element determines that the private network needs to start secondary authentication/authorization and stores user authentication information required for performing secondary authentication on the user terminal, the first session control plane network element can act on the user terminal to execute a secondary authentication/authorization process according to local configuration or preset private network service rule related information, and controls the first session user plane network element to execute the private network related authorization on the user terminal.
11. The method of claim 1, wherein said transmitting the replaced UL uplink data packet to a private network over the private network session channel user plane comprises:
and the first session user plane network element executes a service distribution rule to determine a private network session channel identifier according to the UL uplink data message, and transmits the replaced UL uplink data message to a private network through a private network session channel user plane corresponding to the private network session channel identifier.
12. The method of claim 11, wherein the replacing, by the first session user plane network element, the second user IP address in the DL downlink data packet sent by the private network to the user terminal with the first user IP address, and sending the replaced DL downlink data packet to the user terminal sequentially through the public network session channel user plane and the base station comprises:
the first session user plane network element executes a service convergence rule so as to converge the target DL downlink data transmitted by the private network session channel user plane corresponding to the private network session channel identifier into the public network session channel user plane between the first session user plane network element and the base station;
replacing the second user IP address in a DL downlink data message sent to the user terminal by the private network with the first user IP address;
the replaced DL downlink data message is sent to the user terminal through a first session user plane network element of the public network session channel user plane and a base station in sequence; or,
and sending the replaced DL downlink data message to the user terminal through a first session user plane network element, an intermediate session user plane network element and a base station of the public network session channel user plane in sequence.
13. The method as claimed in claim 1, wherein the first session control plane network element starts a procedure of establishing a private network session for the user according to the access event, and controls the first session user plane network element to perform the procedure of establishing the private network session channel user plane for the user, so as to further include, after establishing the private network session channel user plane for the user:
and when the preset conditions are met, the first session control plane network element sends a notification message to the corresponding session establishment initiating network element according to the previously acquired session establishment initiating network element identifier so as to notify the session establishment initiating network element to count the number of the private network session channel user planes.
14. The method of claim 1, wherein the service access processing method further comprises:
and the first session control plane network element and the first session user plane network element perform segmented management on the public network session channel user plane and the private network session channel user plane, and perform session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service respectively.
15. The method of claim 1, wherein the service access processing method further comprises:
and respectively associating at least two QoS flows with the public network session channel user plane and the private network session channel user plane so as to respectively perform end-to-end session control, flow statistics and charging on the public network session corresponding to the public network service and the private network session corresponding to the private network service.
16. A service access processing apparatus, characterized in that the service access processing apparatus comprises:
the event sending module is used for sending an access event of the private network service to a first session control plane network element of the public network service when the first session user plane network element identifies that the public network service transmitted by a public network session channel user plane comprises the private network service based on the public network service initiated by the user terminal;
a session establishing module, configured to start a process of establishing a private network session for a user according to the access event by using the first session control plane network element, and control the first session user plane network element to execute a process of establishing a private network session channel user plane for the user, so as to establish the private network session channel user plane for the user;
a service distribution module, configured to replace, by using the first session user plane network element, a first user IP address in UL uplink data packets of all private network services transmitted by the public network session channel user plane with a second user IP address allocated to the user terminal by the network, and transmit the replaced UL uplink data packet to the private network through the private network session channel user plane;
and the service convergence module is used for replacing the second user IP address in the DL downlink data message which is sent to the user terminal by the private network by the first user IP address by adopting the first session user plane network element, and sending the replaced DL downlink data message to the user terminal through the public network session channel user plane and the base station in sequence.
17. A mobile communication network packet domain device, characterized in that the mobile communication network packet domain device comprises: a memory, a processor, and a service access processing program stored on the memory and executable on the processor, the service access processing program, when executed by the processor, implementing the service access processing method according to any one of claims 1-15.
18. A storage medium having stored thereon a service access processing program which, when executed by a processor, implements the service access processing method of any one of claims 1-15.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210449285.1A CN115529342A (en) | 2022-04-27 | 2022-04-27 | Service access processing method, device, equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210449285.1A CN115529342A (en) | 2022-04-27 | 2022-04-27 | Service access processing method, device, equipment and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115529342A true CN115529342A (en) | 2022-12-27 |
Family
ID=84695133
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210449285.1A Pending CN115529342A (en) | 2022-04-27 | 2022-04-27 | Service access processing method, device, equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115529342A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2024060472A1 (en) * | 2022-09-20 | 2024-03-28 | 中国移动通信集团设计院有限公司 | Data distributing method, double-domain private network system, device, storage medium, and program product |
| WO2024114539A1 (en) * | 2022-12-01 | 2024-06-06 | 中兴通讯股份有限公司 | Address allocation method and apparatus, and user plane function entity |
-
2022
- 2022-04-27 CN CN202210449285.1A patent/CN115529342A/en active Pending
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2024060472A1 (en) * | 2022-09-20 | 2024-03-28 | 中国移动通信集团设计院有限公司 | Data distributing method, double-domain private network system, device, storage medium, and program product |
| WO2024114539A1 (en) * | 2022-12-01 | 2024-06-06 | 中兴通讯股份有限公司 | Address allocation method and apparatus, and user plane function entity |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN111771394B (en) | System and method for UE context and PDU session context management | |
| US11115919B2 (en) | Network selection method and base station | |
| US8391210B2 (en) | Radio communication system and radio transmission path control method | |
| US8437265B2 (en) | Method, apparatus and system for sharing network resources | |
| CN116389176A (en) | Session management function and policy control function for charging control of non-public network | |
| JP5189107B2 (en) | Mechanism for uniquely identifying and unifying packet bearer context user sets in mobile communication networks | |
| WO2021156771A1 (en) | EXTENSION OF Npcf_EventExposure WITH USAGE MONITORING EVENT | |
| US8582503B2 (en) | Method for indicating the bearer management of a serving gateway | |
| CN108738082B (en) | Session processing method, device and system | |
| EP3078186B1 (en) | Ip address assignment for a ue in 3gpp | |
| CN114365518B (en) | Method for influencing data service route in core network by service application | |
| WO2007087745A1 (en) | A method and system for implementing the data routing of the roaming user | |
| CN115529294B (en) | Service processing method, device, equipment and storage medium | |
| CN115529342A (en) | Service access processing method, device, equipment and storage medium | |
| CN107113799B (en) | Method and equipment for formulating service chain strategies | |
| CN114009108A (en) | RAN paging handling | |
| US10516783B2 (en) | Method and device for processing PCC rule | |
| EP3445072B1 (en) | Mobile radio communication network and method for associating a mobile radio terminal device to a network slice instance of a mobile radio communication network | |
| US10575165B2 (en) | Routing based on access point name (APN) information | |
| KR20140045215A (en) | Method and apparatus for configuring connection based on group | |
| CN115735371A (en) | Network slice specific authentication and authorization | |
| CN111092842B (en) | Information processing method, server, network element and storage medium | |
| EP2919509B1 (en) | Method and device for hosting application by access node | |
| CN112953748B (en) | Communication method and device | |
| CN114631397A (en) | Signaling transmission in wireless networks |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |