JP2005198181A - Sip communication control device - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To reduce a load on a NAT device when sending and receiving a SIP message via a SIP server between and among multiple terminals belonging to networks with different address systems in order to conduct transmission. <P>SOLUTION: A SIP communication control device 4 comprises a path information management means for analyzing a transferred SIP message when the terminal transmits the SIP message to the SIP server via the NAT device and managing the information of the network which the terminal belongs to, and an SDP information management means for managing SDP information which is the previous information of converted information and included in the SIP message. When a conversion means for addresses or the like sends the SIP message sent via the SIP server to the terminal via the NAT device, the path information management means specifies the network which the terminal which has received the SIP message belongs to, and compares it with the network which the terminal which has transmitted the SIP message belongs to. If the terminals belong to the same network, the SDP information included in the SIP message is re-converted to the information before conversion managed by the SDP information management means. <P>COPYRIGHT: (C)2005,JPO&NCIPI

Description

  TECHNICAL FIELD The present invention relates to a SIP communication control device, and in particular, a technology effective when applied to a case where a SIP message belonging to a network having a different address system is routed when a SIP message is transmitted / received between terminals belonging to the same network. It is about.

  Conventionally, there is SIP as a protocol for realizing a multimedia service that performs call setting on an IP network and transmission of media such as audio and video via the Internet (for example, Non-Patent Document 1 and Non-Patent Document 2). reference).

  The SIP is used for signaling such as the start and end of transmission when transmitting (transmitting / receiving) media such as voice and video between a plurality of terminals. The media is transmitted by RTP (Real-time Transport Protocol), which is a protocol for transmitting and receiving voice and moving images in real time (for example, see Non-Patent Document 3).

  Further, the SIP message generally includes a session description by SDP (Session Description Protocol) (see, for example, Non-Patent Document 4). The session description includes the IP address of the session creator, that is, the terminal that receives the media, and the port number that indicates the location where the media is received. Therefore, for example, when a terminal in a network with a private IP address address system, such as an in-house LAN or VPN, sends and receives the SIP message via a SIP server with a global IP address, the network by a NAT device In addition to layer address translation, it is necessary to translate the IP address and port number described in SDP in the SIP message.

As a method for converting the IP address or port number described in SDP into the SIP message, for example, a method of converting a SIP communication control device having an ALG (Application Level Gateway) function in cooperation with a NAT device is proposed. (For example, see Non-Patent Document 5).
M.Handley, H.Schulzrinne, E.Schooler, J.Rosenberg, "SIP: Session Initiation Protocol", [online], March 1999, [December 24, 2003 search], Internet <URL: http: // www.ietf.org/rfc/rfc2543.txt> J. Rosenberg, H. Schulzrinne, G. Camarillo, A. Johnston, J. Peterson, R. Sparks, M. Handley, E. Schooler, "SIP: Session Initiation Protocol", [online], June 2002, [2003 December 24, 2009], Internet <URL: http://www.ietf.org/rfc/rfc3261.txt> H. Schulzrinne, GMD Fokus, S. Casner, R. Frederick, V. Jacobson, "RTP: A Transport Protocol for Real-Time Applications", [online], January 1996, [searched December 24, 2003], Internet <URL: http://www.ietf.org/rfc/rfc1889.txt> M. Handley, V. Jacobson, "SDP: Session Description Protocol", [online], April 1998, [searched on December 24, 2003], Internet <URL: http://www.ietf.org/rfc/ rfc2327.txt> P. Srisuresh, J. Kuthan, J. Rosenberg, A. Molitor, A. Rayhan, "Middlebox communication architecture and framework", [online], August 2002, [Searched on December 24, 2003], Internet <URL: http://www.ietf.org/rfc/rfc3303.txt>

  However, in the conventional SIP communication control device, when the IP address and port number described in SDP are converted into the SIP message using the ALG function, all of the SIP message headers are included. The conversion is performed according to a uniform conversion rule. Therefore, in the SIP message received by the terminal via the SIP server and NAT device, the IP address and port number for transmitting the media described in SDP are the addresses of the network to which the SIP server belongs. It is a value according to the system. As a result, even when media is transmitted by the RTP, the media is transmitted through the same route as the SIP message.

  That is, in the conventional method, even if the terminals that transmit the media, that is, the terminal that transmitted the SIP message and the received terminal belong to the same network, other address systems to which the SIP server belongs unconditionally. The media is transmitted via the network. For this reason, for example, there is a problem that transmission delay of media easily occurs due to an increase in transmission distance and an increase in traffic on the network to which the SIP server belongs.

  In addition, since the NAT device must perform address conversion, that is, encapsulation and decapsulation, on media transmitted and received between terminals in the same network, the processing load on the NAT device increases. There is also a problem.

  An object of the present invention is to prevent transmission delay of the media when transmitting / receiving a SIP message via a SIP server belonging to a network having a different address system among a plurality of terminals. Is to provide new technology.

  An object of the present invention is to reduce the load on a NAT device when media is transmitted / received by performing SIP message transmission / reception via a SIP server belonging to a network having a different address system among a plurality of terminals. It is to provide possible technology.

  The above and other objects and novel features of the present invention will be apparent from the description of this specification and the accompanying drawings.

  According to the present invention, the SIP in the first network to which two or more terminals and two or more NAT (Network Address Translation) devices belong belong to a second network having an address system different from the address system of the first network. When a SIP message is transmitted / received to / from a terminal belonging to the first network or another network via a Session Initiation Protocol) server, an SDP (Session Description included in the SIP message in cooperation with the NAT device) Protocol) is a SIP communication control device comprising address conversion means having an ALG (Application Level Gateway) function for controlling the conversion of the address and port number of the protocol, from the terminal of the first network via the NAT device. When sending a SIP message to a server, the SIP message transferred from the NAT device is analyzed and the terminal belongs to Route information management means for managing network information, and SDP information management means for managing information before conversion of SDP included in the SIP message. The address conversion means is transmitted via the SIP server. When the SIP message is transmitted to the terminal of the first network via the NAT device, means for specifying the network to which the terminal that has transmitted the SIP message belongs by the route information management means, and the SIP message is received. When the network to which the terminal belongs is identified and compared with the network to which the terminal that sent the SIP message belongs, and the network to which the terminal that sent the SIP message belongs and the network to which the receiving terminal belongs are the same, the SIP message The SDP information included in the information is converted into information before conversion managed by the SDP information management means. The most important feature in that it comprises means for converting.

  The SIP communication control device of the present invention, when converting (encapsulating) an IP address in the NAT device to transmit a SIP message transmitted from a terminal to a SIP server, in cooperation with the NAT device, Obtain and manage network information and SDP information to which the terminal that sent the SIP message belongs. On the other hand, when the IP address of the SIP message transmitted from the SIP server is converted by a NAT device, the SIP message is analyzed by referring to the network information managed and analyzed by the terminal. Identify the network to which it belongs. When the terminal that sent the SIP message and the terminal that receives the SIP message belong to the same network, the SDP information of the SIP message is converted back to the original managed SDP information and transferred to the receiving terminal To do. In this way, when the terminal receives the SIP message transmitted via a SIP server belonging to a network with a different address system, the terminal that transmitted the SIP message belongs to the same network. The IP address and port number described in the SDP of the received SIP message are described in the address system of the network to which each terminal belongs. Therefore, when media such as audio and video are transmitted, routing can be performed within the network without going through the network to which the SIP server belongs. As a result, it is possible to prevent media transmission delay due to an increase in transmission distance and traffic on the network to which the SIP server belongs. In addition, since routing can be performed within the network to which each terminal belongs, it is not necessary to convert the IP address in the NAT device when media is transmitted. Therefore, the load on the NAT device can be reduced.

Hereinafter, the present invention will be described in detail together with embodiments (examples) with reference to the drawings.
In all the drawings for explaining the embodiments, parts having the same function are given the same reference numerals and their repeated explanation is omitted.

  The SIP communication control device of the present invention, when converting (encapsulating) an IP address of a SIP message transmitted from a terminal by a NAT device, is associated with the NAT device and to which the terminal that has transmitted the SIP message belongs Information and SDP information before conversion are acquired and managed. Further, when an address of a SIP message transmitted from a network having a different address system is converted (decapsulated) by the NAT device, the network to which the terminal that has transmitted the SIP message belongs is specified in cooperation with the NAT device. Then, if the terminal that sent the SIP message and the terminal that receives the SIP message belong to the same network, by reverse-converting the part described in SDP included in the SIP message into SDP information before conversion, It reduces the media transmission delay and the load on the NAT device when the terminal that sends the SIP message and the terminal that receives the SIP message belong to the same network.

FIG. 1 is a schematic diagram showing a schematic configuration of a communication network system using a SIP communication control apparatus according to an embodiment of the present invention.
In FIG. 1, 11 is a first VPN, 11a is a first terminal, 11b is a second terminal, 12 is a second VPN, 12a is a third terminal, 2a is a first NAT device, 2b is a second NAT device, 2c is a third NAT device, 3 is a global network, 3a is a SIP server, 4 is a SIP communication control device, 5 is a gateway device (GW device), 6 is a telephone network, 6a is a telephone exchange, and 6b is a telephone.

  The network system in which the SIP communication control device and the NAT device according to the present invention are used is, for example, a VPN (Virtual Private Network) including terminals 11a, 11b, 12a and NAT devices 2a, 2b, 2c as shown in FIG. ) And a global network 3 such as a management IP network provided with a SIP server 3a. Each terminal 11a, 11b, 12a of the VPN 11, 12 is one of the NAT devices 2a, 2b, 2c. Is connected to the SIP server 3a. Of the VPNs 11 and 12, at least one VPN 11 includes two or more NAT devices 2a and 2b as shown in FIG. All the NAT devices 2a, 2b, 2c are connected to the SIP communication control terminal 4. At this time, the SIP server 3a may be connected to the telephone exchange 6a and the telephone 6b disposed in the existing telephone network 6 via the GW apparatus 5, for example, as shown in FIG. .

  As described above, when the SIP server 3a is arranged in a network having an address system different from the address system of the VPNs 11 and 12 to which the terminals 11a, 11b, and 12a belong, when media communication is performed between all terminals. SIP signaling is performed through the Global network 3 to which the SIP server 3a belongs. Here, for communication between the terminals 11a and 11b of the first VPN 11 and the terminal 12a of the second VPN 12 across the Global network 3, the NAT device and the SIP communication control device use an IP address, a port number, and a SIP message. The IP address and the port number are converted, but in the conventional method, the SDP in the SIP message is also converted in the same manner as the SIP header. As a result, transmission / reception of media by RTP is always performed via the Global network 3a as in the case of the SIP signaling. However, when media is transmitted and received between terminals belonging to the same VPN such as the first terminal 11a and the second terminal 11b as shown in FIG. 1, it is not necessary to pass through the Global network 3a. Further, when setting the communication path of the media, by setting the path that passes outside the first VPN 11 via the first NAT device 2a and the second NAT device 2b belonging to the first VPN 11, the transmission delay of the media, There is concern about an increase in loads on the first NAT device 2a and the second NAT device 2b.

  Therefore, in the communication network system of the present invention, when the SIP communication control device 4 is used, for example, when the terminal of the first VPN 11 communicates with a terminal of the second VPN 12 or a terminal outside the network such as the telephone 6b, the media (RTP) is transmitted via the global network 3, and when communication is performed between terminals in the same network such as the first terminal 11a and the second terminal 11b of the first VPN 11, the media (RTP) is transmitted to the global network 3. It is possible to perform transmission / reception through the route set in the first VPN 11 without going through. Hereinafter, a method of transmitting / receiving SIP messages and transmitting / receiving media between the first terminal 11a and the second terminal 11b in the first VPN 11 shown in FIG. 1 will be described.

  FIG. 2 is a schematic diagram for explaining a schematic configuration of the SIP communication control device and a SIP message transmission procedure of the present embodiment. FIG. 3 is a diagram showing an example of a NAT information management table held by the SIP communication control device. In FIG. 2, 401 is an address conversion means, 402 is NAT information management means, 403 is route information management means, and 404 is SDP information management means.

  For example, as shown in FIG. 2, the SIP communication control apparatus 4 of the present embodiment includes an address conversion means 401 having an ALG function for converting the IP address and port number of the SDP of the SIP message, and the SIP communication control apparatus. 4 NAT information management means 402 for managing the information of the network (VPN) to which the NAT device connected is connected, the route information management means 403 for managing the information of the network to which the terminal that sent the SIP message belongs, and the terminal SDP information management means 404 for managing the SDP information of the first SIP message. Further, the NAT information management means 402 has a NAT information management table for grasping route information indicating which VPN (NAP device) a signal (SIP message) passes through, for example, as shown in FIG. As described above, the association between the ID information of each NAT device and the network (VPN) to which it belongs is set in advance.

  For example, as shown in FIG. 2, when the first terminal 11a issues an INVITE (1) to the second terminal 11b, the first NAT device 2a that has received the INVITE (1) receives the INVITE (1). Transfer to the SIP communication control device 4. At this time, the SIP communication control device 4 generates the INVITE (2) obtained by converting the SIP header of the INVITE (1), the IP address and the port number of the SDP in the address conversion unit 401, and the first NAT device. Before returning to 2a, first, identify that the received INVITE (1) is a signal transferred from the first NAT device 2a, and refer to the NAT information management table set in advance. Then, it is grasped from which VPN terminal the INVITE (1) is transmitted, and the information is held in the route information management means 403. In this case, since the INVITE (1) has been transferred from the first NAT device 2a, the route information management unit 403 holds information that the INVITE (1) has been transmitted from the terminal of the first VPN 11. At the same time, in the SIP communication control device 4, SDP information before address conversion by the SDP information management means 404, that is, the INVITE so that the SDP can be reversely converted when it is determined that the communication is within VPN later. Holds the SDP information of (1). Further, in consideration of the case where the Call-ID is changed in the transit SIP server, the Call-ID of the INVITE (1) is added as a unique SIP header. When these processes are completed, the address translation means 401 generates INVITE (2) subjected to the address translation process in the normal SIP message and returns it to the first NAT device 2a.

  Thereafter, the INVITE (2) is encapsulated by the first NAT device 2a, for example, and then transferred to the second NAT device 2b connected to the second terminal 11b as the destination via the SIP server 3a. . The second NAT device 2b that has received the INVITE (2) transfers the INVITE (2) to the SIP communication control device 4. At this time, if the INVITE (2) is encapsulated, it is decapsulated by the second NAT device 2b and transferred. Then, the SIP communication control device 4 acquires the Call-ID from the unique SIP header of the INVITE (2), refers to the information on the route held by the route information management means 403, and refers to the INVITE (2 ) Is transmitted from the terminal of the first VPN 11. At the same time, since the INVITE (2) is transferred from the second NAT device 2b, both the terminal that has transmitted the INVITE (2) (first terminal 11a) and the terminal that receives it (the second terminal 11b) It belongs to 1 VPN 11 and is determined to be communication within the same VPN. When it is determined that the communication is within the same VPN, the address conversion unit 401 searches the SDP information management unit 403 to search the original SDP information of the INVITE (2), that is, the SDP of the INVITE (1). Is generated, INVITE (3) is generated by reversely converting the SDP information of INVITE (2) into the SDP information of INVITE (1), and is returned to the second NAT device 2b.

  The second NAT device 2b that has received the INVITE (3) transmits it to the second terminal 11b. That is, since the second terminal 11b receives INVITE (3) in which SDP information that has not been address-translated is described, when the medium (RTP) is transmitted to the first terminal 11a, it is not the same via the Global network. It will be sent via VPN. Further, after receiving the INVITE (3), the SIP communication control device 4 also transmits the response message such as 180 Ringing or 200 OK from the second terminal 11b to the first terminal 11a. By performing the same processing as when transmitting INVITE, the first terminal 11a can receive a response message in which SDP information that has not been address-translated is described. As a result, it is possible to route a route for transmitting media between the first terminal 11a and the second terminal 11b via the same VPN.

  Next, as an example of communication within the same VPN, detailed processing of the SIP communication control apparatus when communication is performed between the first terminal 11a and the second terminal 11b illustrated in FIG. 2 will be described.

  4 to 16 are schematic diagrams for explaining an example of communication between terminals in the same VPN, FIG. 4 is a diagram showing a communication sequence, and FIG. 5 is a first INVITE transmitted from the first terminal. FIG. 6 is a flowchart showing an example of a processing procedure performed by the address conversion means, FIG. 7A is a diagram showing an example of a route information management table, and FIG. 7 shows an example of the information management table, FIG. 7C shows an example of INVITE (2), FIG. 8 shows an example of INVITE (2) received by the second NAT device, and FIG. FIG. 9 is a diagram illustrating an example of INVITE (3), FIG. 9 is a diagram illustrating a message path when a response message is transmitted from the second terminal to the first terminal, and FIG. 10 is an example of an initial response message transmitted by the second terminal. FIG. 11A shows an example of a route information management table, and FIG. 11B shows an example of an SDP information management table. FIG. 11C shows an example of 200 OK (2), FIG. 12A shows an example of 200 OK (2) received by the first NAT device, and FIG. FIG. 13A is a diagram illustrating an example of OK (3), FIG. 13A is a diagram illustrating an example of deleting unnecessary route information, and FIG. 13B is a diagram illustrating an example of deleting unnecessary SDP information. FIG. 14A shows an example of a path information management table when media transmission / reception is started, and FIG. 14B shows an example of an SDP information management table when media transmission / reception is started. 15 is a diagram showing a network state when media is transmitted and received, FIG. 16A is a diagram showing an example of deleting unnecessary route information, and FIG. 16B is SDP information that is no longer needed. It is a figure which shows the example which deletes.

  In the communication network system including the SIP communication control apparatus of the present embodiment, the transmission / reception of media between the first terminal 11a and the second terminal 11b belonging to the same first VPN 11 is roughly as shown in FIG. This is done along the sequence.

  In the following description, the IP address and port number of the first terminal 11a in the address system of the first VPN 11 are 192.168.0.1 and 10000, respectively, and the IP address and port number of the second terminal 11b are 192.168.0.2, respectively. , 20000. In addition, the first NAT device 2a is set to convert the IP address and port number of the first terminal 11a from 192.168.0.1, 10000 to 130.0.0.1, 15000 according to the address system of the Global network 3. Suppose that it is given. Similarly, it is assumed that the second NAT device 2b is set to convert the IP address and port number of the second terminal 11b from 192.168.0.2, 20000 to 130.0.0.2, 25000. Further, it is assumed that information associating VPNs belonging to the first NAT device 2a and the second NAT device 2b has already been registered in the NAT information management means 402.

  First, as shown in FIG. 4, INVITE (1) called from the first terminal 11a to the second terminal 11b is received by the first NAT device 2a. At this time, the IP address and the port number described in the SIP header and SDP of the INVITE (1) are described along the address system of the first VPN 11 as shown in FIG. Therefore, the first NAT device 2a transfers the received INVITE (1) to the SIP communication control device 4, and the IP address and port number described in the SIP header and SDP are in accordance with the address system of the Global network 3. (STEP 1).

  Upon receiving the INVITE (1), the address etc. converting means 401 of the SIP communication control device 4 first analyzes the SIP message transferred from the NAT device and describes the unique SIP header as shown in FIG. (Steps 401a and 401b). Now, the transferred SIP message is INVITE (1) as shown in FIG. 5, and there is no unique SIP header. If there is no unique SIP header, as shown in FIG. 6, the VPN to which the terminal that sent the message belongs is specified from the forwarded SIP message, the route information is set in the route information management means 403, and The SDP information of the SIP message is set in the SDP information management means 404 (step 401c). At this time, in the step 401c, first, referring to the NAT information management table as shown in FIG. 3, for example, the first NAT device 2a that forwarded the INVITE (1) belongs to the first VPN 11, and the INVITE (1 ) Is identified as a SIP message transmitted from the first terminal 11 a belonging to the first VPN 11. Then, for example, as shown in FIG. 7A, the call information of the INVITE (1), the method type, the NAT device, and the information of the VPN to which the INVITE (1) is registered in the route information management table of the route information management means 403 To do. Further, after the registration to the route information management table is completed, the SDP information of the INVITE (1) is collected and, for example, the SDP information management table possessed by the SDP information management means 404 as shown in FIG. The INVITE (1) Call-ID and SDP information are registered.

  After the registration of the route information and SDP information, the Call-ID collected from the INVITE (1) is inserted into the INVITE (1) as a unique SIP header, and the SIP header of the INVITE (1) and An INVITE (2) converted from the IP address and port number of the SDP is generated and returned to the first NAT device 2a (steps 401d and 401e). At this time, the generated INVITE (2) has a unique SIP header describing a Call-ID called PN-KEY inserted, for example, as shown in FIG. The described IP address and port number are converted from 192.168.0.1, 10000 to 130.0.0.1, 15000.

  The first NAT device 2a that has received the returned INVITE (2), for example, encapsulates the INVITE (2) and transmits it to the SIP server 3a. Then, the transmitted INVITE (2) is received by the second NAT device 2b via the SIP server 3a. The second NAT device 2b transfers the received INVITE (2) to the SIP communication control device 4 (STEP 2). At this time, if the INVITE (2) is encapsulated, it is decapsulated by the second NAT device 2b and then transferred to the SIP communication control device 4. At this time, in this embodiment, the SIP server 3a operates as a B2BUA (Back To Back User Agent), and the INVITE (2) received by the second NAT device 2b is, for example, as shown in FIG. Suppose that Call-ID is changed.

  Upon receiving the INVITE (2) transferred from the second NAT device 2b, the SIP communication control device 4 first receives the received INVITE (2) as shown in FIG. Analysis is performed to determine whether there is a unique SIP header (steps 401a and 401b). Now, since the INVITE (2) has a unique SIP header, the Call-ID of the original INVITE (1) is acquired from the unique SIP header in this case (step 401f).

  After obtaining the Call-ID of the original INVITE (1), next, referring to the route information management table of the route information management means 403, the INVITE is obtained from the VPN information associated with obtaining the Call-ID. The VPN to which the first terminal 11a that transmitted (1) belongs is specified as the first VPN 11 (step 401g).

  After specifying the VPN to which the terminal that sent the INVITE (1) belongs, next, referring to the NAT information management table of the NAT information management means 402, the second NAT device 2b that forwarded the INVITE (2), that is, The VPN to which the second terminal 11b that receives the INVITE belongs is specified (step 401h).

  Once the VPN to which the terminal that transmitted the INVITE (1) belongs and the VPN to which the terminal that receives the INVITE (2) belongs are compared, the VPN information is compared to determine whether they belong to the same VPN (step 401i 401j). At this time, if the terminals belong to the same VPN, the SDP information management table 404 of the SDP information management unit 404 is searched using the original Call-ID acquired from the unique SIP header as key information. Collect SDP information of original INVITE (1). Then, as shown in FIG. 8B, INVITE (3) in which the SDP information of INVITE (2) is replaced with the collected SDP information of INVITE (1) is generated and returned to the second NAT device 2b ( Steps 401k and 401e). At this time, since the INVITE (3) does not require a unique SIP header, it is deleted from the SIP message.

  If the terminals do not belong to the same VPN, the SDP of the INVITE (2) is not changed, and the INVITE (3) from which only the unique SIP header is deleted is returned to the second NAT device 2b (step) 401l, 401e). In this way, the second terminal 11b can receive INVITE (3) in which the IP address and port number of the SDP information are described in the address system of the first VPN 11.

  When the second terminal 11b receives the INVITE (3), for example, it usually receives the INVITE (3) and returns a response message (180 Ringing) informing the first terminal 11a that it is calling. However, here, the sequence is omitted, and then a response message (200 OK) is sent back to inform the first terminal 11a that the user of the second terminal 11b has answered the call. Will be explained.

  The response message (200 OK) transmitted from the second terminal 11b to the first terminal 11a is transmitted when the INVITE is transmitted from the first terminal 11a to the second terminal 11b as shown in FIG. Sent on the reverse route. That is, 200 OK (1) transmitted from the second terminal 11b is first received by the second NAT device 2b and transferred to the SIP communication control device 4. At this time, since the SIP header of 200 OK (1) and the IP address and port number of SDP are described in the address system of the first VPN 11 as shown in FIG. 10, for example, the INVITE (1) Is registered in the route information management table and registered in the SDP information management table in the same procedure as that for converting to INVITE (2). When registration in the route information management table and registration in the SDP information management table are performed, the respective tables are as shown in FIGS. 11 (a) and 11 (b). After registration in each table, the 200 OK (1) Call-ID is inserted as a unique SIP header, and the SIP header and SDP IP address and Port number are converted to 200 OK (2). It is generated and returned to the second NAT device 2b (STEP 3). At this time, the generated 200 OK (2) is inserted with a unique SIP header describing a Call-ID called PN-KEY, as shown in FIG. The IP address and port number described in the above are converted from 192.168.0.2, 20000 to 130.0.0.2, 25000.

  The second NAT device 2b that has received the returned 200 OK (2) encapsulates the 200 OK (2), for example, and transmits it to the SIP server 3a. Then, the transmitted 200 OK (2) is received by the first NAT device 2a via the SIP server 3a. The first NAT device 2a transfers the received 200 OK (2) to the SIP communication control device 4 (STEP 4). At this time, if the 200 OK (2) is encapsulated, it is decapsulated by the first NAT device 2a and then transferred to the SIP communication control device 4. In this embodiment, since it is assumed that the SIP server operates as a B2BUA (Back To Back User Agent), the 200 OK (2) received by the first NAT device 2a is shown in FIG. As shown in FIG. 5, the Call-ID is returned to the original value, that is, the Call-ID value of the INVITE (1).

  In the SIP communication control device 4 that has received the 200 OK (2), the 200 OK (2) is processed in the same procedure as when the address conversion means 401 converts the INVITE (2) into INVITE (3). ) Is converted into 200 OK (3) and returned to the first NAT device 2a. In the present example, since the second terminal 11b and the first terminal 11a belong to the same first VPN 11, the 200 OK (3) SDP returned to the first NAT device 2a is shown in FIG. ), The SDP of 200 OK (1) is inversely converted.

  Note that in a basic call such as in this embodiment, the INVITE and the 200 OK passage route are the same, but the INVITE is transmitted to the destination terminal, such as call forwarding and forwarding after answering, and forwarding processing there. When is activated, 200 OK is not always returned on the same route as INVITE. Therefore, it is possible to cope with more service sequences by determining for each signal whether or not the communication is within the VPN.

  When the first terminal 11a receives the response message (200 OK) by the above procedure, this time, as shown in FIG. 4, an ACK is transmitted from the first terminal 11a to the second terminal 11b. Is done. Also when transmitting the ACK, the basic processing procedure is the same as when transmitting the INVITE, and the ACK (1) transmitted from the first terminal 11a is replaced with the first NAT device 2a and the SIP communication control. The device 4 converts it into ACK (2). Here, in order to make effective use of resources, for example, as shown in FIGS. 13 (a) and 13 (b), it is collected when the INVITE is transmitted. The route information and SDP information are deleted from each management table (STEP 5).

  Further, when the SIP communication control device 4 receives the ACK (1), the route information collected from the 200 OK (1) is unnecessary, but if it is deleted when the ACK (1) is received, For example, when 200 OK is retransmitted from the second terminal 11b, it cannot be determined whether or not it is in the same VPN. Therefore, there is a problem that proper reverse conversion cannot be performed when communication is performed within the same VPN. Therefore, when the ACK (1) is received, only the route information and SDP information collected from INVITE are deleted.

  The first NAT device 2a that has received the ACK (2) returned from the SIP communication control device 4 transmits the ACK (2) to the SIP server 3a. At this time, the transmitted ACK (2) is received by the second NAT device 2b via the SIP server 3a. Then, the second NAT device 2b transfers the received ACK (2) to the SIP communication control device 4. The SIP communication control device 4 converts the ACK (2) into ACK (3) and returns it to the second NAT device 2b (STEP 6). At this time, the management tables of the route information management unit 403 and the SDP information management unit 404 of the SIP communication control device 4 are not changed, and as shown in FIGS. 14 (a) and 14 (b), the second The path information and SDP information acquired when the response message (200 OK) is transmitted from the terminal 11b are held.

  Then, ACK (3) returned from the SIP communication control device 4 is transmitted from the second NAT device 2b to the second terminal 11b, and when the ACK (3) is received by the second terminal 11b, Media such as voice and video can be transmitted and received between the first terminal 11a and the second terminal 11b. At this time, as shown in FIG. 15, the media based on the RTP can be transmitted through a communication route routed in the first VPN 11, so that transmission delays caused by passing through the SIP server 3a, and the NATs. It is possible to prevent an increase in the load on the devices 2a and 2b.

  Thus, as shown in FIG. 15, when the media transmission / reception (call) performed on the communication route routed in the first VPN 11 is terminated, for example, as shown in FIG. Send a message (BYE) to notify the end of communication. At this time, BYE (1) transmitted from the first terminal 11a is converted into BYE (2) by the first NAT device 2a and the SIP communication control device 4 and transmitted to the SIP server 3a, and the SIP server 3a. The second NAT device 2b that has received the BYE (2) via the URL converts the BYE (2) into BYE (3) in cooperation with the SIP communication control device 4, and then transfers the BYE (2) to the second terminal 11b. .

  The second terminal 11b that has received the BYE (3) transmits a response message (200 OK) to the second terminal 11b to the first terminal 11a. At this time, when the second NAT device 2b transfers 200 OK (1) transmitted by the second terminal 11b to the SIP communication control device 4, the address etc. conversion means 401 of the SIP communication control device 4 is shown in FIG. As shown in FIG. 16A and FIG. 16B, the route information and SDP information registered in the management tables of the route information management unit 403 and the SDP information management unit 404 are deleted. Thereafter, the 200 OK (1) is converted into 200 OK (2) and returned to the second NAT device 2b (STEP 7).

  In this embodiment, the route information in the normal sequence and the deletion process of the SDP information before conversion have been described. However, the call state managed as a conventional function in the SIP communication control device is also deleted in the semi-normal sequence. As a result, the route information and the SDP information before conversion may be deleted.

  The second NAT device 2b that has received the returned 200 OK (2) transmits the 200 OK (2) to the SIP server 3a. The first NAT device 2a that has received the 200 OK (2) via the SIP server 3a transfers the 200 OK (2) to the SIP communication control device 4 and converts it to 200 OK (3) (STEP 8). . At this time, in the SIP communication control device 4, since all the route information and SDP information relating to the communication between the first terminal 11a and the second terminal 11b have already been deleted, it is simply set to 200 OK (3). Convert and return to the first NAT device 2a. When the returned 200 OK (3) is transferred from the first NAT device 2a to the first terminal 11a, the communication between the first terminal 11a and the second terminal 11b is completely terminated.

  As described above, according to the communication network system using the SIP communication control device 4 of the present embodiment, communication is performed when performing SIP communication via the SIP server 3a on the network 3 having a different address system. If the terminals belong to the same network, a communication path can be set only in the network to which the terminal belongs for media transmission / reception. Therefore, it is possible to prevent media transmission delay and increase of load on the NAT device.

  The present invention has been specifically described above based on the above-described embodiments. However, the present invention is not limited to the above-described embodiments, and various modifications can be made without departing from the scope of the present invention. is there.

  For example, in the above-described embodiment, the network to which the terminals 11a and 11b belong is described as VPN 11, and the network to which the SIP server 3a belongs is described as the Global network 3. However, the present invention is not limited to this. Each network may have any configuration as long as the system is different from the network address system to which the SIP server belongs and the SIP system transmits and receives SIP messages via the SIP server.

It is a schematic diagram which shows schematic structure of the communication network system using the SIP communication control apparatus of one Example by this invention. It is a schematic diagram for demonstrating the schematic structure of the SIP communication control apparatus of a present Example, and the transmission procedure of a SIP message. It is a figure which shows an example of the NAT information management table which the said SIP communication control apparatus hold | maintains. It is a schematic diagram for demonstrating an example of the communication between the terminals in the same VPN, and is a figure which shows the sequence of communication. It is a schematic diagram for demonstrating an example of the communication between the terminals in the same VPN, and is a figure which shows an example of the first INVITE (1) which the 1st terminal transmitted. It is a schematic diagram for demonstrating an example of the communication between the terminals in the same VPN, and is a flowchart which shows an example of the process sequence performed by address etc. conversion means. FIG. 7A is a schematic diagram for explaining an example of communication between terminals in the same VPN, FIG. 7A is a diagram showing an example of a route information management table, and FIG. 7B is an example of an SDP information management table. FIG. 7C shows an example of INVITE (2). FIG. 8 is a schematic diagram for explaining an example of communication between terminals in the same VPN, FIG. 8 is a diagram showing an example of INVITE (2) received by the second NAT device, and FIG. 8B is a diagram showing INVITE (3). It is a figure which shows an example. It is a schematic diagram for demonstrating an example of communication between the terminals in the same VPN, and is a figure which shows the path | route of a message when a response message is transmitted from the 2nd terminal to the 1st terminal. It is a schematic diagram for demonstrating an example of the communication between the terminals in the same VPN, and is a figure which shows an example of the first response message which the 2nd terminal transmitted. FIG. 11A is a schematic diagram for explaining an example of communication between terminals in the same VPN, FIG. 11A is a diagram showing an example of a route information management table, and FIG. 11B is an example of an SDP information management table. FIG. 11C shows an example of 200 OK (2). FIG. 12A is a schematic diagram for explaining an example of communication between terminals in the same VPN. FIG. 12A is a diagram showing an example of 200 OK (2) received by the first NAT device, and FIG. It is a figure which shows an example of 200 OK (3). FIG. 13 is a schematic diagram for explaining an example of communication between terminals in the same VPN. FIG. 13A is a diagram showing an example of deleting unnecessary route information, and FIG. 13B is unnecessary. It is a figure which shows the example which deletes the SDP information. FIG. 14A is a schematic diagram for explaining an example of communication between terminals in the same VPN. FIG. 14A is a diagram showing an example of a route information management table when transmission / reception of media is started, and FIG. FIG. 10 is a diagram showing an example of an SDP information management table when transmission / reception of media is started. It is a schematic diagram for demonstrating an example of the communication between the terminals in the same VPN, and is a figure which shows the state of the network when performing transmission / reception of media. FIG. 16 is a schematic diagram for explaining an example of communication between terminals in the same VPN, FIG. 16A is a diagram showing an example of deleting unnecessary route information, and FIG. 16B is unnecessary. It is a figure which shows the example which deletes the SDP information.

Explanation of symbols

11 ... 1st VPN
11a ... 1st terminal 11b ... 2nd terminal 12 ... 2nd VPN
12a ... 3rd terminal 2a ... 1st NAT device 2b ... 2nd NAT device 2c ... 3rd NAT device 3 ... Global network 3a ... SIP server 4 ... SIP communication control device 5 ... Gateway device (GW device)
6 ... Telephone network 6a ... Telephone exchange 6b ... Telephone

Claims (3)

SIP (Session Initiation Protocol) in which the terminal of the first network to which two or more terminals and two or more NAT (Network Address Translation) devices belong belongs to a second network having an address system different from the address system of the first network When a SIP message is transmitted / received to / from a terminal belonging to the first network or another network via a server, an address of an SDP (Session Description Protocol) included in the SIP message in cooperation with the NAT device And a SIP communication control device including address conversion means having an ALG (Application Level Gateway) function for controlling the conversion of the port number,
When transmitting a SIP message from the terminal of the first network to the SIP server via the NAT device, path information for analyzing the SIP message transferred from the NAT device and managing information of the network to which the terminal belongs Management means, and SDP information management means for managing information before conversion of SDP included in the SIP message,
The address conversion unit transmits the SIP message by the route information management unit when transmitting the SIP message transmitted via the SIP server to the terminal of the first network via the NAT device. Means for identifying a network to which the terminal belongs; means for identifying a network to which the terminal that receives the SIP message belongs; and means for comparing with a network to which the terminal that has transmitted the SIP message belongs; and a network to which the terminal that has transmitted the SIP message belongs And a means for reconverting the information of the SDP included in the SIP message into the information before conversion managed by the SDP management means when the receiving terminals belong to the same network. Communication control device. The route information management means and the SDP information management means are means for managing the Call message ID of the SIP message in association with the network information or the SDP information before conversion as key information,
2. The SIP according to claim 1, wherein the means for identifying the network to which the terminal that has transmitted the SIP message belongs is a means for searching the route information management means using the Call-ID of the SIP message as key information. Communication control device. The address conversion means includes means for inserting the SIP message Call-ID as the key information into the SIP message as a unique SIP header when converting the SDP information of the SIP message,
The means for specifying a network to which a terminal that has transmitted the SIP message belongs is a means for searching the route information management terminal using the unique SIP header acquired from the SIP message as key information. The SIP communication control device described.

Images