WO2005062546A1 - Procede de conversion et de traversee d'une adresse reseau et son systeme - Google Patents
Procede de conversion et de traversee d'une adresse reseau et son systeme Download PDFInfo
- Publication number
- WO2005062546A1 WO2005062546A1 PCT/CN2004/001516 CN2004001516W WO2005062546A1 WO 2005062546 A1 WO2005062546 A1 WO 2005062546A1 CN 2004001516 W CN2004001516 W CN 2004001516W WO 2005062546 A1 WO2005062546 A1 WO 2005062546A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- address
- network
- port
- signaling
- message
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/2521—Translation architectures other than single NAT servers
- H04L61/2528—Translation at a proxy
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/256—NAT traversal
- H04L61/2564—NAT traversal for a higher-layer protocol, e.g. for session initiation protocol [SIP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L61/00—Network arrangements, protocols or services for addressing or naming
- H04L61/09—Mapping addresses
- H04L61/25—Mapping addresses of the same type
- H04L61/2503—Translation of Internet protocol [IP] addresses
- H04L61/256—NAT traversal
- H04L61/2578—NAT traversal without involvement of the NAT server
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0281—Proxies
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/029—Firewall traversal, e.g. tunnelling or, creating pinholes
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/10—Architectures or entities
- H04L65/102—Gateways
- H04L65/1023—Media gateways
- H04L65/103—Media gateways in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/10—Architectures or entities
- H04L65/102—Gateways
- H04L65/1033—Signalling gateways
- H04L65/104—Signalling gateways in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/1066—Session management
- H04L65/1069—Session establishment or de-establishment
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/1066—Session management
- H04L65/1101—Session protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L65/00—Network arrangements, protocols or services for supporting real-time applications in data packet communication
- H04L65/1066—Session management
- H04L65/1101—Session protocols
- H04L65/1104—Session initiation protocol [SIP]
Definitions
- the present invention relates to the field of communication technologies in a Next Generation Network (NNG), and in particular, to a method and system for implementing network address translation traversal in NGN.
- NNG Next Generation Network
- NGN is a milestone in the history of telecommunications, and it marks the arrival of a new generation of telecommunications network era. From a development perspective, NGN has gradually taken the step from packet switching to public switched telephone networks ("PSTN"). All the services of the original PSTN network were downloaded, and a large amount of data transmission was offloaded to the Internet Protocol (Internet Protocol, "IP”) network to reduce the load of the PSTN network. It also added and enhanced many new features of the IP technology. New and old business. In this sense, NGN is a product of the fusion of PSTN voice network based on Time Division Multiplexing (“TDM" for short) and packet network based on Internet Protocol / Asynchronous Transmission Mode (IP / ATM). It enables integrated services such as voice, video, and data on a new generation of networks. At present, NGN has become a research hotspot.
- TDM Time Division Multiplexing
- IP / ATM Internet Protocol / Asynchronous Transmission Mode
- NGN can be divided into four levels in function: access and transmission layer, media transmission layer, network control layer, and network service layer.
- SoftSwitch provides call control and connection control functions for services with real-time requirements for NGN. It is the core of NGN call and control.
- SoftX is a key component of the network control layer of NGN, and is a device that provides integrated services and call control. Its main functions include: call control, signaling gateway, gateway control, Comprehensive business, enhanced business, etc.
- NGN network based on packet networks
- IP addresses access users are addressed by IP addresses.
- NAT egress network address translation / firewall
- the firewall is used to restrict the unrestricted entry of data packets into the network.
- the firewall checks the source address, destination address, source port, destination port, and protocol of the packet to determine whether the packet meets the filtering principle. Only the packets that meet the requirements can pass through the firewall.
- some servers that require external access such as Web servers, are usually placed in this area, and a firewall is configured so that all data packets destined for the corresponding ports of these servers can pass through.
- the firewall When performing multimedia communication, even if the firewall can let the data packets originally sent to the fixed port to enter, because the audio / video communication needs to establish a channel for sending and receiving data through dynamic port allocation, its range is large and cannot be predicted in advance For the internal terminal's IP address and port information, the firewall cannot ignore the security of the local area network and open such a large packet filtering range.
- NAT is used to hide the LAN IP address and protect the hosts in the LAN from external attacks. Because the addresses in the LAN cannot be routed on the public network, when the destination address of the data packet When it is an intra-LAN address, the data packet can only be dropped. During multimedia communication, if the address of the H.323 called party is a LAN address, the data packet of the call cannot reach the terminal in the LAN at all. When a call is initiated from the LAN, the caller's IP address, that is, the LAN IP address, and port information are loaded into the payload of the data packet. After the called party receives the data packet, it is based on the source IP address in the payload of the data packet. And the port send audio and video streams.
- NAT also enables multiple terminals in a local area network to share a smaller number of public IP addresses through network address / port translation. For example, when an application is executed on a terminal in a local area network, the local area network IP address and port are mapped to the gateway's external network IP address and port.
- the NAT device In multimedia communication, only when the multimedia stream channel is established from the inside to the outside, the NAT device can establish the corresponding port mapping relationship, and the multimedia stream transmitted to the external IP address of the gateway can be correctly transmitted to the terminal of the local area network. If the multimedia stream channel is established from the outside to the inside, the NAT device cannot establish a mapping relationship, and the transmission of the multimedia stream will fail. Furthermore, if these channels are maintained using a timeout mechanism, if no data is transmitted on the channel within the timeout period, this mapping relationship will be canceled. During multimedia communication, if it takes a long time to stop multimedia data on the channel When transmitting, certain measures need to be taken to maintain the establishment of the channel.
- ACG Application Layer Gateway
- MIDCOM Middlebox Communication
- UDP User Datagram Protocol
- STUN NAT Simple Traversal of UDP Through Network Address Translators
- Ordinary NAT implements address translation by modifying UDP or Transfer Control Protocol (TCP) packet headers, but part of it is carried by TCP UDP applications such as multimedia sessions, file sharing, games, etc.
- TCP UDP applications such as multimedia sessions, file sharing, games, etc.
- End-to-end applications also need to carry address information in the TCP / UDP payload. Under normal circumstances, the application program fills its own address in the TCP UDP payload. This address information is modified to the external address on the NAT when passing NAT, which is the ALG method we often say.
- the ALG function currently resides in some NAT / Firewall devices, and requires these devices to have application-recognized intelligence. At the same time, every new application needs to be upgraded to NAT / Firewall.
- ALG needs to support the identification of IP voice and video protocols such as H323, SIP, MGCP / H.248, and control of NAT / Firewall, so that NGN services can pass through smoothly.
- the key points of ALG are: The internal terminal of the enterprise network / resident network can register with the public network SoftX through NAT / ALG, and perform protocol analysis and call processing through SoftX.
- Public network SoftX and enterprise network terminals communicate through SIP / H.323 / MGCP / H.248 protocols.
- NAT / ALG needs to identify SIP / H.323 / MGCP / H.248 protocol signaling and establish media stream channels to support media. Smooth Leap through NAT / FW.
- ALG is the simplest way to support NGN applications, but due to the actual situation of the network, a large number of NAT / FW devices that do not support NGN service applications have been deployed.
- MIDCOM is different from ALG.
- the framework structure of MIDCOM is a trusted third-party MIDCOM agent (Agent) to control the middle box (Middlebo) mechanism.
- Agent trusted third-party MIDCOM agent
- the application business intelligence is also transferred from the Middlebox to the external MIDCOM Agent, so the application Xie Yiyi is transparent to Middlebox.
- the Middlebox function can reside in NAT / FW, and the MIDCOM Agent function can reside in SoftX.
- the MIDCOM Agent in the softswitch device, it recognizes IP voice and video protocols such as H.323, SIP, MGCP / H.248 and controls NAT / FW. It can be used as a solution for NGN service traversal: NAT / FW Program.
- SoftX of the public network controls the NAT / FW devices at the edge of the private network through the MIDCOM protocol
- SoftX does not have SIP / H323 / MGCP / H248 protocols on the calling and called sides, such as the calling and called sides.
- SoftX needs to control the NAT / FW on both sides of the calling party and the called party through the MIDCOM protocol. After the media stream channel is created on the NAT / FW, the media stream can pass through the NAT / FW smoothly.
- SoftSwitch device SoftX has realized the identification of the SIP / H323 / MGCP / H248 protocol, it is only necessary to add the MIDCOM protocol to the NAT / FW device, and the new application service identification will be supported by the softswitch in the future. Support, so this scheme is a kind of Solution, but existing NAT / FW equipment needs to be upgraded to support the MIDCOM protocol.
- Another idea to solve the NGN NAT problem is that the user terminal in the local area network obtains an external address whose address corresponds to the egress NAT in advance through a mechanism, and then the address information described in the packet load is directly filled in the egress NAT.
- the external address instead of the IP address of the user terminal in the local area network, so that the content of the packet does not need to be modified when passing through NAT. You only need to convert the IP address of the packet header according to the ordinary NAT process.
- the IP address information in the packet is consistent with the IP address information in the packet header.
- the STUN protocol is based on this idea to solve the problem of address translation at the application layer.
- the user's application program as a STUN client (CLIENT), sends a request STUN message to a STUN server (SERVER) outside the NAT through UDP.
- the STUN SERVER receives the request message and generates a response message.
- the response message carries the source port of the request message, that is, STUN CLIENT's corresponding external port on NAT.
- STUN CLIENT learns its corresponding external address on NAT through the content of the response message body, and fills it in the UDP payload of the calling protocol in the future, and informs the peer,
- the real-time transfer protocol (RealTime Transfer Protocol, RTP) receiving address and port number are addresses and port numbers outside NAT. Because the NAT mapping entry of the media stream is pre-established on the NAT through the STUN protocol, the media stream can pass through the NAT smoothly.
- the biggest advantage of the STUN protocol is that there is no need to make any changes to the existing NAT / FW equipment. Because there are a large number of NAT / FW in the actual network environment, and these NAT / FW do not support the application of Voice over IP (VoIP), if you use MIDCOM or NAT / ALG to solve this problem, you need to replace With existing NAT / FW, this is not easy.
- VoIP Voice over IP
- the STUN method does not require modification of NAT / FW, which is its biggest advantage.
- the STUN method can be used in a network environment where multiple NATs are connected in series, but the MIDCOM method cannot achieve effective control of multi-level NAT.
- the STUN SERVER must be placed on the public network and can be embedded in the public network.
- SoftX since the NAT mapping entry of the media stream is pre-established on the NAT through the STUN protocol, the media stream can pass through the NAT smoothly.
- STUN The limitation of STUN is that the application needs to support the STUN CLIENT function, that is, the NGN network terminal must have the STUN CLIENT function. At the same time, STUN is not suitable for supporting the traversal of TCP connections, so it does not support the H.323 application protocol. In addition, the STUN method does not support traversal of firewalls by NGN services, and the STUN method does not support symmetric NAT traversal.
- TURN mode The TURN method is similar to STUN.
- the idea of solving the NAT problem is also based on that private network access users obtain their private address corresponding to the public network address in advance through a mechanism, and then fill in the address letter described in the message payload directly.
- the public network address The difference is that the address obtained in advance in the STUN mode is the address on the egress NAT, and the address obtained in advance in the TURN mode is the address on the TURN server (SERVER).
- the TURN application model is shown in Figure 1.
- the system and system for implementing the TURN method include grouped user terminals 10, 11, NAT FW 20, 21, SoftX 40, 41, and TURN SERVER50. It assigns the address and port of the TURN Server as the external receiving address and port of the TURN client (TURN CLIENT), that is, the packets sent by the user terminals in the local area network must be relayed and forwarded by the TURN server. It is worth pointing out that this is the biggest difference between the STUN method and the TURN method.
- this method can also solve the defects that the STUN method cannot penetrate Symmetric NAT and firewall equipment, that is, no matter what type of NAT / FW the corporate network / resident network exit is, Both can achieve NAT penetration, and TURN supports TCP-based applications, such as the H.323 protocol.
- the TURN SERVER controls the allocation of addresses and ports, and can allocate a RealTime Transfer Protocol (RTP) / RealTime Transfer Control Protocol (RTC) address pair as the receiving address of the local client.
- RTP RealTime Transfer Protocol
- RTC RealTime Transfer Control Protocol
- the egress NAT arbitrarily allocates RTP / RTCP addresses and port numbers, so that clients cannot receive RTCP packets from the peer.
- TURN The limitation of TURN is that the terminal needs to support TURN CLIENT, which has the same requirements for network terminals as STUN. In addition, all packets must be forwarded through the TURN server, which increases the delay of packets and the possibility of packet loss.
- network terminals that require NGN have the TURN Client function.
- the signaling receiving port and the sending port of the multimedia terminal are inconsistent, the RTP / RTCP receiving port and the sending port are inconsistent, which may cause a problem that the NAT cannot be traversed.
- the main object of the present invention is to provide a method and a system for implementing network address translation traversal, so that the existing NAT / FW and user terminal are transformed.
- the present invention provides a method for implementing network address translation traversal, which includes the following steps:
- a network address translation server or a proxy server other than a firewall receives a signaling message from a packet user terminal in the first network, it parses the signaling payload information and records the call signaling in the message payload.
- the address and port, and the media stream real-time transmission protocol and real-time transmission control protocol address and port and modify the call signaling address and port in the message load information to the proxy server for Call signaling address and port in the network, modify the media stream real-time transmission protocol and real-time transmission control protocol address and port in the message load information to the address in the second network allocated by the proxy server for the media stream And port;
- the proxy server sends the modified signaling message to a packet voice signaling processing device or a service processing device;
- the proxy server When the proxy server receives a response signaling message sent to the packet user terminal in the first network, analyze the load information of the response signaling message, and respond to the signaling in the message load information.
- the address and port are modified to the call signaling address and port recorded in step A, and the media stream real-time transmission protocol, protocol, and real-time transmission control protocol address and port carried in the message load information are modified to the address and port recorded in step A Media stream real-time transmission protocol and real-time transmission control protocol address and port;
- the proxy server sends the modified response signaling message to the packet user terminal in the first network.
- the method may further include:
- the packet user terminal in the first network sends a signaling message to the proxy server, and the signaling message is first sent to a network address translation server or a firewall, and the network address translation server or firewall allocates a public network to the signaling message.
- Address / port, and the source of the IP header of the signaling packet The address is changed from the address / port of the first network to the public network address / port assigned to it, and the first network address / port and the public network address assigned by the network address translation server or firewall are recorded in a signaling address mapping relationship / Port correspondence, and then forward the signaling message to the proxy server.
- step A After performing step A, it may include:
- the proxy server periodically initiates messages to the grouped user terminals in the first network, and updates the signaling address mapping relationship on the network address translation server or firewall.
- Step A may further include:
- the proxy server When the proxy server receives the call signaling from the packet user terminal in the first network, it records the IP header address and port of the call signaling packet, and modifies it to the proxy server to allocate the call for the call.
- the call signaling address and port in the second network
- step C further includes:
- the proxy server When the proxy server receives a call signaling addressed to a packet user terminal in the first network, change the templet IP header address and port 4 of the call signaling to the recorded call signaling. Packet IP header address and port.
- the packet voice signaling processing device or service processing device is a softswitch device or an IP voice gatekeeper device.
- a system for implementing network address translation traversal includes:
- Grouped user terminals located in the first network for initiating and receiving services
- a proxy server located in the second network is configured to receive a signaling message from the packet user terminal in the first network, analyze the message load information of the signaling message, and record a call in the message load.
- the media stream address and port in the message payload are modified to the address and port in the second network that the proxy server assigned to the media stream.
- the modified signaling message to the softswitch device, and when the proxy server receives the response signaling sent to the packet user terminal in the first network, the response Parse the signaling message load information, modify the response signaling address and port in the message load to the recorded call signaling address and port, and change the media stream address and port carried in the message load, Modify it to the recorded media stream address and port, and then send the changed response signaling to the packet user terminal in the first network;
- the soft switching device is configured to provide integrated services and call control, and forward it to the proxy server when receiving a response signaling message sent to the group user terminal.
- the system may further include:
- a network address translation server or firewall is configured to provide the packet user terminal with a service for accessing the second network, and forward packets between the packet user terminal and the proxy server.
- the packet user terminal may be a user terminal that uses the ⁇ .323 protocol, or the session initiation protocol, or the media gateway control protocol, or the ⁇ .248 protocol for audio and video communications.
- the proxy server can also be used to charge according to the traffic.
- the proxy server can also be used for user access control, bandwidth management, and encryption of the quality of service tag, virtual private network tag, and information of the media stream.
- the proxy server is further used for setting multiple first network and second network address pairs, and simultaneously traversing multiple network address translation servers or firewalls.
- the proxy server may also use the first packet refresh method to update the session entries or address translation relationship entries of the media stream.
- the proxy server not only converts the address / port of the IP header of the message, but also carries the The signaling address / port and RTP / RTCP address / port are also converted.
- FIG. 1 is a system structure diagram in a TURN mode
- FIG. 2 is a system structure diagram of a FULL PROXY mode according to an embodiment of the present invention
- FIG. 3 is a flowchart of a method for implementing NAT / FW traversal in a FULL PROXY mode according to an embodiment of the present invention. Modes for Carrying Out the Invention To make the objectives, technical solutions, and advantages of the present invention clearer, the present invention will be described in further detail below with reference to the accompanying drawings.
- the full proxy (FULL PROXY) method is used to implement NAT / FW traversal by relaying call signaling and media streams of user terminals in the private network at the same time.
- FIG. 2 is a schematic structural diagram of a specific embodiment of a FULL PROXY-type system according to the present invention. In order to highlight the present invention, only the parts which are closely related to the present invention are marked in FIG.
- the system in this embodiment includes packet user terminals 10 and 11, NAT / FW 20 and 21, a proxy server (PROXY SERVER) 30, and a soft switching device (SoftX) 40. And 41.
- the grouped user terminals 10 and 11 belong to different networks and are connected to PROXY SERVER 30 through NAT FW 20 and 21 respectively; PROXY SERVER 30 is connected to SoftX 40 and 41.
- the solid line is the media stream, and the dotted line is the signaling stream.
- the packet user terminals 10 and 11 communicate using audio / video protocols such as H.323, Session Initation Protocol (SIP), Media Gateway Control Protocol (MGCP), and H.248.
- the packet user terminal is the initiator and receiver of the multimedia service.
- the private network the public network is accessed through NAT / FW20 and 21 respectively.
- the private network and the public network mentioned in the present invention are only a specific special case. Essentially, as long as they are two networks, they can be different local networks, one can be a local network, and the other is an external public network. As long as one network is within the NAT / FW, the network is considered a private network, and the other network is outside the NAT / FW, the network is considered a public network.
- NAT / FW 20 and 21 refer to devices that implement the NAT function and the firewall function, and are usually configured at the location where the private network accesses the public network. On the one hand, it is used to prevent data packets from entering the private network without restrictions, and to protect the hosts on the private network from external attacks; on the other hand, through network address port translation, private IP addresses are hidden to enable multiple user terminals in the private network. Able to share a small number of public IP addresses.
- PROXY SERVER 30 is similar to the TURN SERVER in the prior art and is placed in the metropolitan area network convergence layer, and is used to implement the functions of FULL PROXY, that is, the signaling agent and media relay functions.
- the specific functions are as follows: When receiving the signaling message from the packet user terminal 10, PROXY SERVER 30 analyzes and processes the signaling message load, and obtains the IP header address / port of the signaling message and the signaling message.
- the call signaling addresses / ports in the payload and the user terminal's receiving media stream addresses / ports, these addresses / ports are private network addresses / ports.
- PROXY SERVER 30 allocates call signaling addresses / ports in the public network for the signaling message, the call signaling in the payload of the signaling message, and the user terminal receiving the media stream. And record the above private network Correspondence between address / port and public network address / port.
- Header address / port call signaling address / port in the private network corresponding to the call signaling address / port in the signaling message payload, and private address corresponding to the address / port of the media stream in the signaling message payload
- the address / port of the media stream in the network modify the IP header address / port of the signaling packet to the IP header address / port of the signaling packet in the private network; call the signaling address / Modify the call signaling address / port in the private network on the port; modify the media stream address / port carried in the signaling message to the media stream address / port in the private network; and finally, follow the repaired signaling message IP
- the header address forwards the message. In this way, call signaling and media streams can be relayed between the caller and the callee through PROXY SERVER30.
- PROXY SERVER 30 can be configured with multiple IP address pairs. If PROXY SERVER30 is configured with multiple private network IP addresses or multiple public network IP addresses, you can use a single device to simultaneously traverse multiple enterprise network / resident network egress FW / NAT or proxy multiple softswitches at the same time . In this way, it is ensured that no matter in which networking mode the PROXY SERVER30 is, whether the NAT is symmetric or not, the media flow can be correctly forwarded.
- PROXY SERVER 30 In addition, through processing and analysis of signaling, PROXY SERVER 30 not only obtains the address conversion of this session, but also obtains quality of service such as bandwidth requirements (Quality of Service (referred to as "QoS”) information. Therefore, it can control the passage and close of the media stream through the session state information to protect the network and prevent bandwidth theft.
- QoS Quality of Service
- PROXY SERVER30 can provide access control functions and bandwidth management functions for users, provide QoS marking for media streams, virtual local area network (Virtual Local Area Network, "VLAN”) marking and information encryption.
- VLAN Virtual Local Area Network
- the present invention may also introduce a timing refresh mechanism of the NAT address binding relationship, that is, PROXY SERVER 30 periodically sends packets to the packet user terminal 10 after the address is parsed to obtain the address, to refresh the enterprise exit NAT /
- the mapping relationship of the signaling address on the FW20 is the correspondence between the private network IP address / port and the IP address / port on the public network allocated by the NAT / F W20.
- PROXY SERVER30 After resolving the traversal of the signaling address to the enterprise egress NAT, for the interaction of the media stream, PROXY SERVER30 uses the first packet refresh method to update the session entry or address translation entry of the media stream, that is, after the media stream is sent by the terminal, The NAT / FW20 of the enterprise exit is converted to PROXY SERVER30, and the first packet is learned to obtain the dynamically assigned address / port information on the NAT / FW20 of the exit, thereby updating the media stream session entry, establishing a complete media stream session entry, and completing the Media forwarding function when the public network accesses multiple enterprises. '
- PROXY SERVER30 After the introduction of PROXY SERVER30 in the system, since the media streams of the calling party and the called party both pass through PROXY SERVER30, PROXY SERVER30 can accurately obtain the media traffic, thereby realizing the billing based on the message traffic, not just the traditional Duration-based billing.
- SoftX40 and 41 are softswitch devices. As key components of the NGN network control layer, they are used to provide integrated services and call control. When receiving the signaling message sent from the public network to the packet user terminal in the private network, the received message is forwarded to PROXY SERVER30.
- Step 200 The packet user terminal 10 in the private network sends a signaling message to the PROXY SERVER 30.
- the signaling message contains registration and call information, and the source address of the IP header of the signaling message is a private network address.
- the group user terminal 10 regards the PROXY SERVER 30 as a soft switching device. Specifically, the signaling message originating from the packet user terminal 10 is first sent to the NAT / FW 20, and the NAT / FW 20 assigns a public network address / port to the signaling message, and sends the message to the IP header.
- the source address is changed from the private network address / port to the public network address / port assigned to it, but the internal information of the message is not changed. Record the above private network address / port and the public network address assigned by NAT / FW 20 / Correspondence between ports, and then forward the signaling message to PROXY SERVER30.
- Step 210 After receiving the signaling message, PROXY SERVER 30 analyzes and processes the information carried in the signaling message payload, and obtains the IP header address / port of the signaling message, and the call message in the message payload. Let the address / port and the media stream address / port requested by the user terminal, and PROXY SERVER 30 allocate the signaling message, the call signaling in the signaling payload, and the media stream requested by the user terminal, respectively. Address / port in the public network. Then, the IP header address / port of the routing message of PROXY SERVER30 is changed to the address / port in the public network allocated by PROXY SERVER30 for the call, and the call signaling address in the payload is changed to PROXY SERVER30 for the call.
- Assign the call signaling address / port in the public network modify the media stream address / port in the packet payload to the public network address / port allocated by PROXY SERVER30 for this media stream, and record the private network Correspondence between the IP header address / port of the signaling message, the call signaling address / port in the message payload, and the media stream address / port requested by the user terminal, and the address / port in the public network allocated by PROXY SERVER30 relationship.
- Step 220 Forward the modified signaling message in step 210 to the softswitch device SoftX40o
- Step 230 When SoftX40 receives the response signaling message to be sent to the packet user terminal 10, it forwards the response signaling message to PROXY SERVER30.
- Step 240 When the PROXY SERVER 30 receives the response signaling message sent to the packet user terminal 10 in the private network, it parses the response signaling message load information to obtain the IP header address / port and response of the response signaling message. The address / port, media stream address / port of the response signaling in the signaling message payload, and then the IP header address / port of the response command message, the address / port, and media of the response signaling in the response signaling message payload.
- the stream address / port obtains the corresponding IP address, call signaling address / port, and media stream address / port from the corresponding relationship recorded by itself, and then changes the IP header address / port of the response signaling to 4
- the corresponding IP header address / port in the private network modify the response signaling address / port in the response signaling packet load to the corresponding call signaling address / port in the private network, and modify the media stream carried in the response signaling
- the address / port is changed to the corresponding media stream address / port in the private network.
- the media stream address / port can be an RTP / RTCP address / port.
- NAT FW traversal By recording and modifying the signaling and media stream addresses / ports in the packet payload in steps 210 and 240, the NAT FW traversal is realized, and the existing traversal in any networking form does not require the existing traversal. NAT / FW and user terminal for transformation.
- Step 250 PROXY SERVER 30 sends the modified response signaling message to the packet user terminal 10 in the private network.
- PROXY SERYER30 first sends the modified response signaling message to NAT / FW20, and the destination address of the message is the public network address / port allocated by NAT / FW20 for the call of packet user terminal 10, NAT / FW20 Query the private network address / port corresponding to the public network destination address / port of the packet from the correspondence table between the private network address / port and public network address / port recorded by itself, and then use the queried private network address / The port replaces the public network destination address / port of the message, and then forwards the response signaling message after address / port translation to the packet User terminal 10.
- the FULL PROXY mode of the present invention has the following differences compared with the TUR mode relay:
- the TURN method is to assign an address / port when the TURN server interacts with the user terminal through the TURN protocol.
- the internal address information of the message is generated by the terminal.
- the TURN server performs address conversion on the subsequent message based on the assigned address / port information.
- the device that relays the message parses and processes the call protocol, rewrites the media stream address information carried in the message, and forwards the signaling message. At the same time, the media message is transmitted based on the rewritten media stream address information. After doing the address translation, the relay is forwarded.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Multimedia (AREA)
- General Business, Economics & Management (AREA)
- Business, Economics & Management (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Computer Security & Cryptography (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
- Small-Scale Networks (AREA)
- Computer And Data Communications (AREA)
- Communication Control (AREA)
Description
Claims
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP04802529A EP1693998B1 (en) | 2003-12-24 | 2004-12-24 | Method and system for a proxy-based network translation |
DE602004019807T DE602004019807D1 (de) | 2003-12-24 | 2004-12-24 | Verfahren und system zu einer proxy-basierten netzwerkadressübersetzung |
US10/584,212 US7787459B2 (en) | 2003-12-24 | 2004-12-24 | Method and system for implementing traversal through network address translation |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN200310121080.8 | 2003-12-24 | ||
CNB2003101210808A CN100399768C (zh) | 2003-12-24 | 2003-12-24 | 实现网络地址转换穿越的方法、系统 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2005062546A1 true WO2005062546A1 (fr) | 2005-07-07 |
Family
ID=34706058
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2004/001516 WO2005062546A1 (fr) | 2003-12-24 | 2004-12-24 | Procede de conversion et de traversee d'une adresse reseau et son systeme |
Country Status (6)
Country | Link |
---|---|
US (1) | US7787459B2 (zh) |
EP (1) | EP1693998B1 (zh) |
CN (1) | CN100399768C (zh) |
AT (1) | ATE424675T1 (zh) |
DE (1) | DE602004019807D1 (zh) |
WO (1) | WO2005062546A1 (zh) |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1748597A1 (en) | 2005-07-27 | 2007-01-31 | Sharp Kabushiki Kaisha | Method for managing hidden stations in a centrally controlled network |
WO2008003644A1 (de) * | 2006-07-03 | 2008-01-10 | Siemens Aktiengesellschaft | Verfahren zur verwaltung von kommunikationsverbindungen über netzwerk-adressumsetzende nat netzknoten |
US7848306B2 (en) | 2005-07-27 | 2010-12-07 | Sharp Laboratories Of America, Inc. | Coexistence of access provider and in-home networks |
US7856008B2 (en) | 2005-07-27 | 2010-12-21 | Sharp Laboratories Of America, Inc. | Synchronizing channel sharing with neighboring networks |
US8027345B2 (en) | 2005-07-27 | 2011-09-27 | Sharp Laboratories Of America, Inc. | Method for automatically providing quality of service |
US8175190B2 (en) | 2005-07-27 | 2012-05-08 | Qualcomm Atheros, Inc. | Managing spectra of modulated signals in a communication network |
US8509442B2 (en) | 2005-07-27 | 2013-08-13 | Sharp Laboratories Of America, Inc. | Association, authentication, and security in a network |
US8654635B2 (en) | 2003-11-24 | 2014-02-18 | Qualcomm Incorporated | Medium access control layer that encapsulates data from a plurality of received data units into a plurality of independently transmittable blocks |
CN112437168A (zh) * | 2020-11-13 | 2021-03-02 | 广州朗国电子科技有限公司 | 一种内网穿透系统 |
Families Citing this family (62)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1317873C (zh) * | 2003-08-19 | 2007-05-23 | 中兴通讯股份有限公司 | 基于媒体网关控制协议的信令代理实现方法 |
US7912046B2 (en) * | 2005-02-11 | 2011-03-22 | Microsoft Corporation | Automated NAT traversal for peer-to-peer networks |
JP4487810B2 (ja) * | 2005-03-14 | 2010-06-23 | 株式会社日立製作所 | セッション中継装置 |
IES20050439A2 (en) * | 2005-06-30 | 2006-08-09 | Asavie R & D Ltd | A method of network communication |
US20070022289A1 (en) * | 2005-07-20 | 2007-01-25 | Mci, Inc. | Method and system for providing secure credential storage to support interdomain traversal |
CN100413376C (zh) * | 2005-08-15 | 2008-08-20 | 华为技术有限公司 | 一种提高下一代网络终端通信安全性的方法及终端 |
US7920548B2 (en) * | 2005-08-18 | 2011-04-05 | Hong Kong Applied Science And Technology Research Institute Co. Ltd. | Intelligent switching for secure and reliable voice-over-IP PBX service |
CN101064712B (zh) * | 2006-04-24 | 2013-04-24 | 上海信息安全基础设施研究中心 | 一种基于Linux内核实现双通道穿越多级NAT和防火墙的系统及方法 |
WO2007123359A2 (en) * | 2006-04-24 | 2007-11-01 | Ktfreetel Co., Ltd. | Interworking system between ip networks using different ip addressing scheme, application layer gateway (alg), stun server, network address translator, interworking method thereof, and sip message routing method thereof |
CN100454905C (zh) * | 2006-06-09 | 2009-01-21 | 华为技术有限公司 | 穿越网络地址转换的方法 |
CN100596125C (zh) * | 2006-06-30 | 2010-03-24 | 华为技术有限公司 | 一种媒体流穿越网络地址转换的方法及系统 |
CN101119299A (zh) | 2006-08-02 | 2008-02-06 | 华为技术有限公司 | 导通媒体流的方法、导通检测方法及其系统 |
CN102325086A (zh) * | 2006-08-02 | 2012-01-18 | 华为技术有限公司 | 导通媒体流的方法、导通检测方法及其系统 |
US9413590B2 (en) * | 2006-08-22 | 2016-08-09 | Orange | Method for management of a secured transfer session through an address translation device, corresponding server and computer program |
CN101132353A (zh) * | 2006-08-23 | 2008-02-27 | 华为技术有限公司 | 一种信令转发的方法及装置 |
CN101179480B (zh) * | 2006-11-07 | 2010-05-12 | 中兴通讯股份有限公司 | 一种转发流媒体的方法 |
EP2103091B1 (en) * | 2006-12-12 | 2015-11-18 | Telefonaktiebolaget L M Ericsson (publ) | Ip address distribution in middleboxes |
EP2116007A4 (en) | 2006-12-29 | 2017-04-05 | Broadview Networks, Inc. | Method and system for network address translation (nat) traversal of real time protocol (rtp) media |
CN101309203B (zh) * | 2007-05-17 | 2011-03-16 | 中兴通讯股份有限公司 | 一种网络媒体服务方法 |
CN101325600A (zh) * | 2007-06-15 | 2008-12-17 | 华为技术有限公司 | 一种操作指示方法、设备及系统 |
US8631155B2 (en) * | 2007-06-29 | 2014-01-14 | Microsoft Corporation | Network address translation traversals for peer-to-peer networks |
CN101094159B (zh) * | 2007-07-18 | 2010-06-09 | 中兴通讯股份有限公司 | 一种媒体流私网穿透的方法 |
US7933273B2 (en) * | 2007-07-27 | 2011-04-26 | Sony Computer Entertainment Inc. | Cooperative NAT behavior discovery |
CN101796805B (zh) * | 2007-09-04 | 2014-12-17 | 富士通株式会社 | 接入网关及其应用方法 |
US8233488B2 (en) | 2007-09-14 | 2012-07-31 | At&T Intellectual Property I, Lp | Methods and systems for network address translation management |
JP2009089183A (ja) * | 2007-10-01 | 2009-04-23 | Brother Ind Ltd | 情報処理装置及び情報処理プログラム |
CN101562898B (zh) * | 2008-04-16 | 2011-04-06 | 北京信威通信技术股份有限公司 | 一种高效的无线接入系统rtp代理技术 |
CN101262447B (zh) * | 2008-04-21 | 2011-02-16 | 中国科学院计算技术研究所 | 一种系统终端设备建立nat穿越通道的方法 |
US20090319674A1 (en) * | 2008-06-24 | 2009-12-24 | Microsoft Corporation | Techniques to manage communications between relay servers |
US8374188B2 (en) * | 2008-06-24 | 2013-02-12 | Microsoft Corporation | Techniques to manage a relay server and a network address translator |
CN101621506A (zh) * | 2008-07-01 | 2010-01-06 | 鸿富锦精密工业(深圳)有限公司 | 透过nat实现实时多媒体双向通信的方法 |
CN101742008B (zh) * | 2008-11-11 | 2012-08-08 | 华为技术有限公司 | 一种媒体流代理方法、语音交换机及通信系统 |
KR101606142B1 (ko) * | 2008-11-28 | 2016-03-25 | 삼성전자주식회사 | 음성패킷망에서 네트워크 주소 번역 통과를 지원하기 위한 장치 및 방법 |
US8166179B2 (en) * | 2009-01-30 | 2012-04-24 | Cisco Technology, Inc. | Media streaming through a network address translation (NAT) device |
US8171148B2 (en) | 2009-04-17 | 2012-05-01 | Sling Media, Inc. | Systems and methods for establishing connections between devices communicating over a network |
US9167043B2 (en) * | 2009-05-22 | 2015-10-20 | Nederlandse Organisatie Voor Toegepast-Natuurwetenschappelijk Onderzoek Tno | Servers for device identification services |
WO2011000405A1 (en) * | 2009-06-29 | 2011-01-06 | Telefonaktiebolaget Lm Ericsson (Publ) | Method and apparatus for relaying packets |
TWI420387B (zh) * | 2009-07-30 | 2013-12-21 | Woei Jia Hwang | 網頁即時語音錄製方法及其應用 |
US8621099B2 (en) | 2009-09-21 | 2013-12-31 | Sling Media, Inc. | Systems and methods for formatting media content for distribution |
CN102035950B (zh) * | 2009-09-30 | 2014-08-13 | 华为技术有限公司 | 坐席业务处理方法及ip坐席终端 |
JP2011077804A (ja) * | 2009-09-30 | 2011-04-14 | Oki Networks Co Ltd | 通信装置およびその通信方法 |
US9015225B2 (en) | 2009-11-16 | 2015-04-21 | Echostar Technologies L.L.C. | Systems and methods for delivering messages over a network |
US9178923B2 (en) | 2009-12-23 | 2015-11-03 | Echostar Technologies L.L.C. | Systems and methods for remotely controlling a media server via a network |
JP4818428B2 (ja) * | 2009-12-25 | 2011-11-16 | 株式会社東芝 | 通信システム及び電話交換装置及び制御方法 |
US9275054B2 (en) | 2009-12-28 | 2016-03-01 | Sling Media, Inc. | Systems and methods for searching media content |
TW201125330A (en) * | 2009-12-29 | 2011-07-16 | Gemtek Technolog Co Ltd | Network address transforming method, network address transformer and communication system for multimedia streaming. |
US9113185B2 (en) | 2010-06-23 | 2015-08-18 | Sling Media Inc. | Systems and methods for authorizing access to network services using information obtained from subscriber equipment |
CN103780779B (zh) * | 2012-10-19 | 2016-10-05 | 华为技术有限公司 | 媒体流的交互方法和网络设备 |
KR102015806B1 (ko) * | 2012-10-22 | 2019-08-29 | 삼성전자 주식회사 | 전자장치, 네트워크 시스템 및 프라이비트 네트워크를 구축하는 방법 |
CN104601418B (zh) * | 2014-12-02 | 2017-11-21 | 重庆尊贤科技有限公司 | 多个一户一vlan捆绑认证机制出口下多网融合传输系统 |
CN104994028B (zh) * | 2015-07-15 | 2019-04-26 | 上海地面通信息网络股份有限公司 | 基于nat地址转换器的带宽节约控制装置 |
US10560407B2 (en) * | 2016-10-06 | 2020-02-11 | Sap Se | Payload description for computer messaging |
CN107104966B (zh) * | 2017-04-25 | 2020-07-17 | 刘正达 | 基于网络结构动态调整的家用无线网络安全的实现方法 |
US10785192B2 (en) | 2018-02-28 | 2020-09-22 | Sling Media Pvt. Ltd. | Methods and systems for secure DNS routing |
US10742696B2 (en) * | 2018-02-28 | 2020-08-11 | Sling Media Pvt. Ltd. | Relaying media content via a relay server system without decryption |
CN109361561A (zh) * | 2018-08-23 | 2019-02-19 | 中国联合网络通信集团有限公司 | 心跳机制保持方法、装置及存储介质 |
US11153350B2 (en) * | 2019-09-16 | 2021-10-19 | Fortinet, Inc. | Determining on-net/off-net status of a client device |
CN112969046A (zh) * | 2021-02-05 | 2021-06-15 | 招联消费金融有限公司 | 一种基于内网代理的视频面签系统和方法 |
CN113163024B (zh) * | 2021-03-12 | 2023-04-07 | 网宿科技股份有限公司 | 报文处理方法、服务器及存储介质 |
CN113489717A (zh) * | 2021-07-02 | 2021-10-08 | 北京飞讯数码科技有限公司 | 基于sip协议的内外网互通方法、装置、设备及存储介质 |
CN115086183B (zh) * | 2022-07-05 | 2024-02-06 | 武汉思普崚技术有限公司 | 一种应用层网关的报文关联方法及装置 |
CN115550591A (zh) * | 2022-09-02 | 2022-12-30 | 深圳市华运通科技股份有限公司 | 视讯通话系统、视讯通话方法及存储介质 |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030048780A1 (en) * | 2001-09-10 | 2003-03-13 | Phomsopha Bounthavivone K. | Supporting real-time multimedia applications via a network address translator |
CN1411220A (zh) * | 2001-10-04 | 2003-04-16 | 华为技术有限公司 | 私有网络的ip语音业务实现方法及系统 |
Family Cites Families (18)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH11122301A (ja) * | 1997-10-20 | 1999-04-30 | Fujitsu Ltd | アドレス変換接続装置 |
JP3770831B2 (ja) * | 1999-08-18 | 2006-04-26 | 富士通株式会社 | ネットワークの負荷分散を行うコンピュータ、監視装置、その方法およびそのためのプログラムを記録した記録媒体 |
US7146410B1 (en) * | 2000-06-07 | 2006-12-05 | Nortel Networks Limited | System and method for executing control protocols among nodes in separate IP networks |
US6879820B2 (en) * | 2000-07-12 | 2005-04-12 | Telefonaktiebolaget Lm Ericsson (Publ) | Charging in communication networks having split control planes and user planes |
GB2369746A (en) | 2000-11-30 | 2002-06-05 | Ridgeway Systems & Software Lt | Communications system with network address translation |
JP3760767B2 (ja) * | 2000-12-21 | 2006-03-29 | 株式会社日立製作所 | ネットワーク管理装置及びネットワーク管理方法 |
US7050422B2 (en) * | 2001-02-20 | 2006-05-23 | Innomedia Pte, Ltd. | System and method for providing real time connectionless communication of media data through a firewall |
US6687245B2 (en) * | 2001-04-03 | 2004-02-03 | Voxpath Networks, Inc. | System and method for performing IP telephony |
US7068646B2 (en) * | 2001-04-03 | 2006-06-27 | Voxpath Networks, Inc. | System and method for performing IP telephony including internal and external call sessions |
US20040198679A1 (en) | 2001-07-05 | 2004-10-07 | Sophie Vasseur | Use of inhibitors of expression or activity of p8/com1 for treating tumors |
US20030033418A1 (en) * | 2001-07-19 | 2003-02-13 | Young Bruce Fitzgerald | Method of implementing and configuring an MGCP application layer gateway |
US7219161B1 (en) * | 2001-08-29 | 2007-05-15 | Cisco Technology, Inc. | Techniques for network address and port translation for network protocols that do not use translated ports when requesting network resources |
US7072332B2 (en) * | 2001-09-27 | 2006-07-04 | Samsung Electronics Co., Ltd. | Soft switch using distributed firewalls for load sharing voice-over-IP traffic in an IP network |
US7274684B2 (en) * | 2001-10-10 | 2007-09-25 | Bruce Fitzgerald Young | Method and system for implementing and managing a multimedia access network device |
US7200139B1 (en) * | 2001-11-08 | 2007-04-03 | At&T Corp. | Method for providing VoIP services for wireless terminals |
US20030106067A1 (en) * | 2001-11-30 | 2003-06-05 | Hoskins Steve J. | Integrated internet protocol (IP) gateway services in an RF cable network |
US20040095913A1 (en) * | 2002-11-20 | 2004-05-20 | Nokia, Inc. | Routing optimization proxy in IP networks |
US7454510B2 (en) * | 2003-05-29 | 2008-11-18 | Microsoft Corporation | Controlled relay of media streams across network perimeters |
-
2003
- 2003-12-24 CN CNB2003101210808A patent/CN100399768C/zh not_active Expired - Lifetime
-
2004
- 2004-12-24 US US10/584,212 patent/US7787459B2/en active Active
- 2004-12-24 DE DE602004019807T patent/DE602004019807D1/de active Active
- 2004-12-24 WO PCT/CN2004/001516 patent/WO2005062546A1/zh active Application Filing
- 2004-12-24 EP EP04802529A patent/EP1693998B1/en active Active
- 2004-12-24 AT AT04802529T patent/ATE424675T1/de not_active IP Right Cessation
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20030048780A1 (en) * | 2001-09-10 | 2003-03-13 | Phomsopha Bounthavivone K. | Supporting real-time multimedia applications via a network address translator |
CN1411220A (zh) * | 2001-10-04 | 2003-04-16 | 华为技术有限公司 | 私有网络的ip语音业务实现方法及系统 |
Cited By (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8654635B2 (en) | 2003-11-24 | 2014-02-18 | Qualcomm Incorporated | Medium access control layer that encapsulates data from a plurality of received data units into a plurality of independently transmittable blocks |
US9013989B2 (en) | 2003-11-24 | 2015-04-21 | Qualcomm Incorporated | Medium access control layer that encapsulates data from a plurality of received data units into a plurality of independently transmittable blocks |
US8027345B2 (en) | 2005-07-27 | 2011-09-27 | Sharp Laboratories Of America, Inc. | Method for automatically providing quality of service |
US7848306B2 (en) | 2005-07-27 | 2010-12-07 | Sharp Laboratories Of America, Inc. | Coexistence of access provider and in-home networks |
US7856008B2 (en) | 2005-07-27 | 2010-12-21 | Sharp Laboratories Of America, Inc. | Synchronizing channel sharing with neighboring networks |
US7865184B2 (en) | 2005-07-27 | 2011-01-04 | Sharp Laboratories Of America, Inc. | Method for managing hidden stations in a centrally controlled network |
EP1748597A1 (en) | 2005-07-27 | 2007-01-31 | Sharp Kabushiki Kaisha | Method for managing hidden stations in a centrally controlled network |
US8175190B2 (en) | 2005-07-27 | 2012-05-08 | Qualcomm Atheros, Inc. | Managing spectra of modulated signals in a communication network |
US8416887B2 (en) | 2005-07-27 | 2013-04-09 | Qualcomm Atheros, Inc | Managing spectra of modulated signals in a communication network |
US8509442B2 (en) | 2005-07-27 | 2013-08-13 | Sharp Laboratories Of America, Inc. | Association, authentication, and security in a network |
US7720471B2 (en) | 2005-07-27 | 2010-05-18 | Sharp Laboratories Of America | Method for managing hidden stations in a centrally controlled network |
US8045579B2 (en) | 2006-07-03 | 2011-10-25 | Siemens Enterprise Communications Gmbh & Co. Kg | Method for managing communication connections by network address translating (NAT) network nodes |
WO2008003644A1 (de) * | 2006-07-03 | 2008-01-10 | Siemens Aktiengesellschaft | Verfahren zur verwaltung von kommunikationsverbindungen über netzwerk-adressumsetzende nat netzknoten |
CN112437168A (zh) * | 2020-11-13 | 2021-03-02 | 广州朗国电子科技有限公司 | 一种内网穿透系统 |
CN112437168B (zh) * | 2020-11-13 | 2023-09-01 | 广州朗国电子科技股份有限公司 | 一种内网穿透系统 |
Also Published As
Publication number | Publication date |
---|---|
CN1633102A (zh) | 2005-06-29 |
US20070217407A1 (en) | 2007-09-20 |
CN100399768C (zh) | 2008-07-02 |
EP1693998A1 (en) | 2006-08-23 |
ATE424675T1 (de) | 2009-03-15 |
DE602004019807D1 (de) | 2009-04-16 |
US7787459B2 (en) | 2010-08-31 |
EP1693998A4 (en) | 2007-01-03 |
EP1693998B1 (en) | 2009-03-04 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2005062546A1 (fr) | Procede de conversion et de traversee d'une adresse reseau et son systeme | |
EP2034666B1 (en) | Method and system for realizing media stream interaction and media gateway controller and media gateway | |
KR101280281B1 (ko) | 일련의 경계 게이트웨이들을 통하는 ip 멀티미디어 베어러 경로 최적화를 위한 개선된 방법 및 시스템 | |
EP1650916B1 (en) | The system and method for realize multimedia call crossover the private network | |
US8484359B2 (en) | Providing telephony services to terminals behind a firewall and/or a network address translator | |
EP1692844B1 (en) | Methods and devices for traversing firewalls and network address translation (nat) installations | |
US8468259B2 (en) | Middlebox control | |
KR100804291B1 (ko) | Ip 어드레스 바인딩들에 기초한 멀티미디어 트래픽의필터링 방법 및 시스템 | |
US20050286538A1 (en) | Method and call server for establishing a bi-directional peer-to-peer communication link | |
JP2004515164A (ja) | 通信システム | |
EP2850813A1 (en) | Nat traversal for voip | |
JP4705167B2 (ja) | ネットワークアドレス変換またはファイアウォール設備を越える方法及びシステム | |
WO2007036160A1 (fr) | Appareil, systeme et procede assurant la communication entre un client et un serveur | |
WO2003030463A1 (fr) | Procede et systeme pour la prestation d'un service vocal ip sur un reseau prive | |
US20100031339A1 (en) | Streaming Media Service For Mobile Telephones | |
US8374178B2 (en) | Apparatus and method for supporting NAT traversal in voice over internet protocol system | |
WO2008003214A1 (fr) | Procédé, dispositif et système de passage de flux multimédia à travers la traduction d'adresse de réseau | |
EP1804429B1 (en) | A communication system and method for achieving ip cross-domain intercommunication via an edge media gateway | |
KR100606895B1 (ko) | NAPT 환경에서 VoIP 시스템의 음성 통신방법 | |
KR20050001125A (ko) | 방화벽 환경에서 보이스오버아이피 서비스를 제공하는시스템, 방법 및 기록 매체 | |
JP2006340260A (ja) | インターネット電話機の通話制御方法 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 2004802529 Country of ref document: EP |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
WWW | Wipo information: withdrawn in national office |
Ref document number: DE |
|
WWP | Wipo information: published in national office |
Ref document number: 2004802529 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2007217407 Country of ref document: US Ref document number: 10584212 Country of ref document: US |
|
WWP | Wipo information: published in national office |
Ref document number: 10584212 Country of ref document: US |