WO2007143950A1 - An apparatus and method for implementing the boot-strap of the dual-stack node in the heterogeneous network - Google Patents

An apparatus and method for implementing the boot-strap of the dual-stack node in the heterogeneous network Download PDF

Info

Publication number
WO2007143950A1
WO2007143950A1 PCT/CN2007/070086 CN2007070086W WO2007143950A1 WO 2007143950 A1 WO2007143950 A1 WO 2007143950A1 CN 2007070086 W CN2007070086 W CN 2007070086W WO 2007143950 A1 WO2007143950 A1 WO 2007143950A1
Authority
WO
WIPO (PCT)
Prior art keywords
dual
fha
address
nas
information
Prior art date
Application number
PCT/CN2007/070086
Other languages
French (fr)
Chinese (zh)
Inventor
Hongguang Guan
Original Assignee
Huawei Technologies Co., Ltd.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co., Ltd. filed Critical Huawei Technologies Co., Ltd.
Publication of WO2007143950A1 publication Critical patent/WO2007143950A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W36/00Hand-off or reselection arrangements
    • H04W36/0005Control or signalling for completing the hand-off
    • H04W36/0011Control or signalling for completing the hand-off for data sessions of end-to-end connection
    • H04W36/0019Control or signalling for completing the hand-off for data sessions of end-to-end connection adapted for mobile IP [MIP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]
    • H04W80/045Network layer protocols, e.g. mobile IP [Internet Protocol] involving different protocol versions, e.g. MIPv4 and MIPv6

Definitions

  • the present invention relates to the field of network communications, and in particular, to an apparatus and method for implementing bootstrap dual-stack nodes in a heterogeneous network.
  • the different relationships between the provider and the access service provider, and the different relationships between the service provider and the authorized certifier include two categories: BP: Integrated ASP network scenario (integrated ASP network) Scene) and Third party MSP
  • the scenario is for the case where MSP and ASP are integrated to provide network services.
  • the mobile node can obtain HA (Home access only) with NAI (Network access identifier) and pre-shared key.
  • the NAS in the ASP analyzes the NAI of the NAS, requests the authentication from the MAH (home AAA server), and the MAH gives the address or domain name of the HA, and returns the authentication result to the NAS.
  • the MAH home AAA server
  • the request message carries the HA information obtained from the MAH.
  • the DHCP server receives the above information
  • the NAS After the Request message, the NAS returns a response message carrying the HA information, and the HA information may be the above AAA.
  • the HA information obtained in H can also be the local home agent configured by ASP.
  • the relay forwards the received response message to MN, so that MN gets the address information of the HA.
  • Li can get the address provided by ASP and the address information of HA. Subsequently, Li takes the process of H0A (home address) and security alliance and Third party MSP.
  • the H0A and the security association IKEv2 SA process are the same in the scenario.
  • the scenario is for ASP and MSP to provide network services independently.
  • Li needs to pre-configure the domain name of HA through DNS (Domain Name
  • the program does not provide a way to configure the domain name of HA.
  • An object of an embodiment of the present invention is to provide an apparatus and method for implementing dual-stack nodes bootstrap in a heterogeneous network
  • the dual-stack mobile node can be booted in the IPV6 network and the IPV4 network.
  • a device for implementing bootstrap of a dual-stack node in a heterogeneous network comprising:
  • Switching resource server H0RS used for switching management of dual-stack mobile nodes, providing dual-stack mobile nodes Signing information authentication for switching between networks.
  • the DSHORS manages subscription information of the dual-stack mobile node, where the method includes:
  • the MIPv6 dual-stack mobile node can obtain the address and authentication information of the H0A and HA when booting on the foreign link in the IPV6 network or in the M IPv4 type foreign network, and the MIPv6 dual-stack mobile node traverses the IPV4 network.
  • Required parameters such as FHA gateway address, THOA (temporary home address).
  • the embodiments of the present invention can facilitate network operators to conduct and maintain services.
  • Figure 1 shows the Integrated ASP network
  • FIG. 2 is a schematic diagram of setting an FHA in an interface between an IPv4 network and an IPv6 network according to an embodiment of the present invention
  • FIG. 3 is a schematic diagram of deployment of a DSHORS in a network according to an embodiment of the present invention
  • FIG. 4 is a schematic diagram of a principle of a bootstrap mobile node performing bootstrapping in the scenario 1 of the embodiment of the present invention
  • FIG. 5 is a schematic diagram of a specific processing flow of a FHA address and a TH0A in a MIPv4 network in the scenario 2 of the embodiment of the present invention
  • FIG. 6 is a schematic diagram of a specific processing flow of a FHA address and a TH0A in a MIPv4 network in the scenario 2 of the embodiment of the present invention
  • FIG. 7 is a schematic diagram of a specific processing flow of a FHA address and a TH0A in a MIPv4 network in the scenario 2 of the embodiment of the present invention.
  • An embodiment of the present invention provides an apparatus and method for implementing bootstrap of a dual-stack node in a heterogeneous network.
  • DSHORS Dual Stack Switching Resource Server
  • FHA provided by DSH0RS through the NAS (Foreign Home)
  • the gateway information of the dual stack mobile access service, and the TH0A information is obtained from the FHA.
  • FHA can manage dual-stack mobile nodes.
  • FHA can be set in the boundary between IPv4 network and IPv6 network, as shown in Figure 2.
  • FHA can also be set up in a hybrid network running both IPv4 and IPv6 networks.
  • the main process for managing dual-stack mobile nodes using FHA is as follows:
  • MIPv6 is a foreign agent in the MIPv4 network.
  • FHA supports both MIP4 and
  • the MN When moving from the IPv6 network to the IPv4 network, the MN obtains a temporary IPv4 address from the FHA and obtains the C0A address of the IPv6 corresponding to the TH0A. At the same time, the FHA's IPv4 address and the temporary home address TH0A are obtained.
  • IPv4 COA Care of
  • Li uses MIP6 protocol with CN (Core
  • C0A used for communication is the C0A address of IPv6 obtained from FHA.
  • IPv6 packets communicating with CN and HA are carried in the MIP4 protocol on the IPv4 network.
  • the home agent communicates using the MIP 4 protocol, its H0A is TH0A, the COA is the IPv4 COA address obtained from the FA, and the H0A is the FHA I Pv4 address.
  • the apparatus for implementing bootstrap of a dual-stack node in a heterogeneous network is a H0RS (Switching Resource Server).
  • H0RS can exist independently, and AAA (Authentication Authorization
  • H0RS can also be integrated in the AAA server.
  • DSHORS can provide for the movement of dual-stack mobile nodes between MIPv6 and MIPv4 networks.
  • Change service manage the subscription information of the dual-stack mobile node, and provide authentication information, FHA address, target network subnet prefix, temporary home address and HAA for the switch between MIPv6 and MIPv4.
  • the schematic diagram of DSH0RS deployment in the network is shown in Figure 3.
  • HOME in Figure 3
  • DOMAIN represents the home domain
  • VISIT DOMAIN represents the visited domain
  • DS-SP represents the dual stack service provider.
  • scenario 1 is: a dual-stack node bootstraps on a foreign link in an IPV6 network
  • scenario 2 is: a dual-stack node in a foreign link in an IPV4 network Booting on.
  • the home network of the dual-stack node in scenario 1 and scenario 2 above is an IPV6 network.
  • FIG. 4 The schematic diagram of the dual-stack mobile node booting in the above scenario 1 is shown in Fig. 4.
  • the home network of the dual-stack mobile node is an MIPv6 network.
  • the dual-stack mobile node performs bootstrapping on the foreign link of the type MIPv6 network.
  • the dual-stack mobile node also obtains the address and related security parameters of the FHA accessing the network access MIPV4 type network. .
  • the specific processing process of obtaining the HA information and the gateway information of the FHA dual-stack mobile access service includes the following steps:
  • the MAH requests the DSH0RS of the management domain to provide the gateway address or domain name information of the FHA dual-stack mobile access service for the current ASP, and the MAH gives the HA address or domain name. Then, the MA H returns the authentication result of the gateway address or the domain name information, the HA address, or the domain name information of the FHA dual-stack mobile access service to the NAS.
  • Li performs DHCP process, to DHCP multicast
  • the address sends an Information Request message carrying the NAI of the MN.
  • the Request message carries the HA information obtained from the MAH and the gateway information of the FHA dual-stack mobile access service.
  • the DHCP server After receiving the above Information Request message, the DHCP server sends a DHCP message to the DHCP server.
  • the relay returns the gateway information carrying the FHA dual-stack mobile access service and the response message of the HA information, and the HA information may be the HA information obtained from the MAH or the local home agent configured by the ASP.
  • the relay forwards the received response message to MN, so that MN obtains the address information of the HA and the gateway information of the FHA dual-stack mobile access service.
  • MN obtains TH0A from FHA through the IKE-AUTH (Internet Key Exchange Protocol - Authentication Part) procedure of IKEv2 (Internet Key Exchange Protocol Version 2).
  • IKE-AUTH Internet Key Exchange Protocol - Authentication Part
  • the specific processing process of obtaining the HA information and the gateway information of the FHA dual-stack mobile access service may further include the following steps:
  • the MAH requests the DSHORS of the administrative domain to provide the gateway address or domain name of the FHA dual-stack mobile access service for the current ASP.
  • DSHORS provides the MAH with the gateway address or domain name of the FHA dual-stack mobile access service. DSHORS requests the allocation of TH0A from FHA, and FHA returns the assigned TH0A to DSHORS.
  • DSHORS returns the authentication result, the address or domain name of the HA, the address or domain name information of the FHA dual-stack mobile access service, and the TH0A returned by the FHA to the NAS.
  • the NAS returns the address of the HA returned by DSHORS, the address of the FHA, and TH0A, and returns the authentication result to Li.
  • the address sends an Information Request message carrying the NAI of the MN.
  • the request message carries the above-mentioned HA information derived from DSHORS and the FHA dual-stack mobile access service network. Off information.
  • the DHCP server After receiving the above Information Request message, the DHCP server sends DHCP to the DHCP server.
  • the relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, and the HA information.
  • the relay forwards the received response message to MN, so that the RADIUS obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service.
  • the specific processing process of obtaining the HA information and the gateway information of the FHA dual-stack mobile access service may further include the following steps:
  • the MAH requests the DSH0RS of the management domain to provide the gateway address or domain name of the FHA dual-stack mobile access service for the current ASP. At the same time, the MAH returns the given HA address or domain name, the gateway address or domain name of the FHA dual-stack mobile access service, and the authentication result to the NAS.
  • the address sends an Information Request message carrying the NAI of the MN.
  • the Request message carries the HA information obtained from the MAH and the gateway information of the FHA dual-stack mobile access service.
  • the server obtains the TH0A address that the MN needs to obtain according to the FHA information, and the DHCP server allocates the address from the associated configured address pool.
  • This step is another optional operation of step 604.
  • the NAS obtains the FHA information according to the authentication message, and forwards the FHA as the next DHCP server, and the FHA to the DHCP server (this DHCP server may not be the same as the previous DHCP server) Request TH0A address assignment. [69] 606.
  • the DHCP server After receiving the information Request message, the DHCP server returns, to the DHCP relay, a response that carries the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, the HA information, and the allocated TH0A address information. Message.
  • the relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service, and the TH0A information.
  • the above process requires an extended option to carry the FHA address or domain name in the implementation.
  • the option can be extended in MA or DHCP.
  • the embodiment of the present invention does not limit the name and form of the option, but the option should be able to carry the address or domain name information of the FHA, and give an identification method that distinguishes whether the content of the option is an address or a domain name.
  • the home network is a dual-stack mobile node of the MIPv6 network that bootstraps on a foreign link of the type MIPv4 network.
  • a specific processing flow for obtaining the FHA address and the TH0A in the MIPv4 network is as shown in FIG. 5, and includes the following steps:
  • the NAS in the ASP parses the NAI of the MN, and authenticates the MN; according to the MN's NAI, the AAA's home domain is determined, and the A SP decides to request the DSHORS for authentication and switch resource information, such as the FHA address and domain name.
  • DSHORS provides the gateway address or domain name of the FHA dual-stack mobile access service. At the same time, DSHORS gives the address or domain name of the HA, and returns the given authentication result and the gateway address or domain name information of the FHA dual-stack mobile access service to the NAS.
  • the address sends an Information Request message carrying the NAI of the MN.
  • the Request message carries the above-mentioned HA information from the DSHORS and the gateway information of the FHA dual-stack mobile access service.
  • the DHCP server After receiving the above Information Request message, the DHCP server sends a DHCP message to the DHCP server.
  • the relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, and the HA information.
  • the relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service.
  • FIG. 6 Another specific processing procedure for obtaining the FHA address and the TH0A in the MIPv4 network is as shown in FIG. 6, and includes the following steps:
  • the NAS in the ASP parses the NAI of the MN, and authenticates the MN; according to the MN's NAI, the AAA's home domain is requested, and the A SP decides to request the DSH0RS for authentication and switch resource information, such as the FHA address and domain name.
  • DSH0RS provides the gateway address or domain name of the FHA dual-stack mobile access service to the NAS. DSH0RS requests the allocation of TH0A to FHA, and FHA returns the assigned TH0A to DSH0RS.
  • the DSH0RS returns the given authentication result, the address or domain name of the HA, and the gateway address or domain name information of the TH0A and FHA dual-stack mobile access service returned by the FHA to the NAS.
  • the NAS returns the address of the HA, the address of the FHA, the TH0A and the authentication result given by the DSH0RS to the MN.
  • the address sends an Information Request message carrying the NAI of the MN.
  • the Request message carries the HA information obtained from the DSH0RS and the gateway information of the FHA dual-stack mobile access service.
  • the DHCP server After receiving the above Information Request message, the DHCP server sends DHCP to the DHCP server.
  • the relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, and the HA information.
  • DHCP DHCP
  • the relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service.
  • FIG. 7 Another specific processing procedure for obtaining the FHA address and the TH0A in the MIPv4 network is as shown in FIG. 7, and includes the following steps:
  • the NAS in the ASP parses the NAI of the MN, and authenticates the MN; according to the MN's NAI, the AAA's home domain is requested, and the A SP decides to request the DSH0RS for authentication and switch resource information, such as the FHA address and domain name.
  • DSH0RS provides the gateway address or domain name of the FHA dual-stack mobile access service to the NAS. DSH0RS returns the given authentication result, HA address or domain name to the NAS.
  • the NAS returns the address of the HA, the address of the FHA, and the authentication result given by the DSH0RS to the MN.
  • the address sends an Information Request message carrying the NAI of the MN.
  • the Request message carries the HA information obtained from the DSH0RS and the gateway information of the FHA dual-stack mobile access service.
  • the server obtains the TH0A address required by MN according to the FHA information, and the DHCP server allocates the address from the address pool of the related configuration.
  • This step is another optional operation of step 905.
  • the NAS obtains the FHA information according to the authentication message, and forwards the FHA as the next DHCP relay, from the FHA to the DHCP server (this DHCP
  • the server may not be the same as the previous DHCP server) requesting TH0A address allocation.
  • the DHCP server After receiving the above Information Request message, the DHCP server sends DHCP to the DHCP server.
  • the relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, the HA information, and the allocated TH0A address information.
  • DHCP DHCP
  • the relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, the gateway of the FHA dual-stack mobile access service, and the TH0A information.
  • the foregoing technical solution provided by the embodiment of the present invention can be implemented by setting a DSH0RS (Dual Stack Switching Resource Server) logical network element, so that a dual-stack mobile node can be implemented in the I PV6. Bootstrap in the network and IPV4 networks.
  • the MIPv6 dual-stack mobile node can obtain the address and authentication information of the H0A and the HA when booting on the foreign link in the IPV6 network or in the MIPv4 type foreign network, and the FHA when the MIPv6 dual-stack mobile node traverses the IPV4 network.
  • Required parameters such as gateway address and TH0A.
  • the embodiments of the present invention can facilitate network operators to conduct and maintain services.

Abstract

An apparatus and method for implementing the boot-strap of the dual-stack node in the heterogeneous network. The apparatus mainly includes a HORS (handoff resource server). The method mainly includes: the MN (mobile node) retrieves the gateway information of the FHA (foreign home agent) dual-stack mobile access service provided by the DSHORS (dual-stack handoff resource server) through the NAS (network access server), and retrieves the THOA (temporary home agent address) information from the FHA. Using this invention, the boot-strap of the dual-stack mobile node in the IPv6 and IPv4 network can be implemented.

Description

说明书 实现双栈节点在异构网络中自举的装置和方法  Apparatus and method for implementing bootstrap of a dual stack node in a heterogeneous network
[1] 技术领域  [1] Technical field
[2] 本发明涉及网络通讯领域, 尤其涉及一种实现双栈节点在异构网络中自举的装 置和方法。  [2] The present invention relates to the field of network communications, and in particular, to an apparatus and method for implementing bootstrap dual-stack nodes in a heterogeneous network.
[3] 发明背景 [3] Background of the invention
[4] 目前, 在无线通讯领域已经有 MIPv6如何进行自举的实现方案。 依据 MSP (Mobi le service provider, 移动月艮务供应商)和 ASP (Access service  [4] At present, there is already an implementation scheme of how MIPv6 performs bootstrapping in the field of wireless communication. According to MSP (Mobi le service provider) and ASP (Access service)
provider, 接入服务提供商)之间的不同关系, 还有服务提供者和授权认证者 之间的不同关系, 该实现方案的应用场景包括两大类, BP: Integrated ASP network scenario (综合 ASP网络场景)和 Third party MSP  The different relationships between the provider and the access service provider, and the different relationships between the service provider and the authorized certifier. The application scenarios of the implementation include two categories: BP: Integrated ASP network scenario (integrated ASP network) Scene) and Third party MSP
scenario (第三方 MSP网络场景) 。  Scenario (third-party MSP network scenario).
[5] Integrated ASP network scenario  [5] Integrated ASP network scenario
场景针对 MSP和 ASP集成在一起提供网络服务的情况。 在该场景对应的解决方案 中, 丽 (Mobile Node, 移动节点)可以在只拥有 NAI (Network access identifier , 网络接入标识)和预共享密钥的情况下得到 HA (Home  The scenario is for the case where MSP and ASP are integrated to provide network services. In the solution corresponding to this scenario, the mobile node can obtain HA (Home access only) with NAI (Network access identifier) and pre-shared key.
Address, 家乡代理) 的地址、 家乡地址和认证证书。  Address, home agent) Address, home address and certificate.
[6] 在 Integrated ASP network  [6] in Integrated ASP network
scenario场景中, 丽如何进行 HA地址自举的处理流程如图 1所示, 包括如下步骤  In the scenario, how to perform the HA address bootstrapping process is shown in Figure 1, including the following steps.
[7] 1 [7] 1
、 ASP中的 NAS解析丽的 NAI, 向丽所在 MAH (家乡 AAA服务器)请求认证, MAH 给出 HA的地址或者域名, 并返回认证结果给 NAS。  The NAS in the ASP analyzes the NAI of the NAS, requests the authentication from the MAH (home AAA server), and the MAH gives the address or domain name of the HA, and returns the authentication result to the NAS.
[8] 2 、 丽进行 DHCP (Dynamic Host Configuration [8] 2, Li performs DHCP (Dynamic Host Configuration
Protocol, 动态主机配置协议)过程, 向 DHCP multicast  Protocol, Dynamic Host Configuration Protocol) procedure, to DHCP multicast
address发送携带丽的 NAI的 Information Request (信息请求) 消息。  Address sends an Information Request message carrying the NAI of the MN.
[9] 3 、 NAS作为 DHCP Relay (中转) , 转发上述 Information Request消息给 DHCP服务器, 同时, 在转发的 Information [9] 3, NAS as DHCP Relay (transfer), forward the above Information Request message to the DHCP server, meanwhile, in the Forwarded Information
Request消息中携带上述从 MAH中得来的 HA信息。  The request message carries the HA information obtained from the MAH.
[10] 4 、 DHCP服务器在接收到上述 Information [10] 4, the DHCP server receives the above information
Request消息后, 向 NAS返回携带 HA信息的响应消息, 该 HA信息可以是上述从 AAA After the Request message, the NAS returns a response message carrying the HA information, and the HA information may be the above AAA.
H中得来的 HA信息, 也可以是 ASP配置的本地家乡代理。 The HA information obtained in H can also be the local home agent configured by ASP.
[11] 5 、 DHCP [11] 5, DHCP
relay将接收到的响应消息转发给丽, 从而使丽得到了 HA的地址信息。  The relay forwards the received response message to MN, so that MN gets the address information of the HA.
[12] 在上述 DHCP过程中, 丽能够得到 ASP提供的地址和 HA的地址信息, 随后, 丽取 得 H0A (家乡地址)和安全联盟的过程和 Third party MSP [12] In the above DHCP process, Li can get the address provided by ASP and the address information of HA. Subsequently, Li takes the process of H0A (home address) and security alliance and Third party MSP.
scenario场景中得到 H0A和安全联盟 IKEv2 SA过程是一样的。  The H0A and the security association IKEv2 SA process are the same in the scenario.
[13] Third party MSP scenario [13] Third party MSP scenario
场景针对 ASP和 MSP独立提供网络服务的情况。 在该场景对应的解决方案中, 丽 需要预先配置 HA的域名, 通过 DNS (Domain Name  The scenario is for ASP and MSP to provide network services independently. In the solution corresponding to this scenario, Li needs to pre-configure the domain name of HA through DNS (Domain Name
Server, 域名服务器)査找 HA的地址, 然后通过 IKE ( Internet Key  Server, domain name server) find the address of HA, then pass IKE (Internet Key
Exchange, 密钥交换)协议, 从 HA获得 H0A。 该方案没有提供如何配置 HA的域名 的方法。  Exchange, Key Exchange) protocol, obtaining H0A from HA. The program does not provide a way to configure the domain name of HA.
[14] 在实现本发明的过程中, 发明人发现上述现有技术的解决方案只能解决纯 MIPv 6如何进行自举的问题, 没有解决 ΜΙΡν6节点在 ΜΙΡν4类型的外地网络中自举的时 候, 如何获得 H0A、 HAA (家乡代理的地址)和认证信息的问题。 没有解决 MIPv6 穿越 IPV4网络时候, 如何获得 FHA的网关地址、 临时家乡地址等必要参数的问题 ; 没有解决 MIPV6节点在 IPV6的外地网络中进行自举的时候, 如何得到 MIPV6穿 越 IPv4网络的网关地址, 甚至得到这个网关为丽分配的临时家乡地址的问题。  [14] In the process of implementing the present invention, the inventors have found that the above prior art solution can only solve the problem of how pure MIPv6 bootstrap, and does not solve the problem that when the ΜΙΡν6 node bootstraps in the ΜΙΡν4 type of foreign network, How to get the problem of H0A, HAA (address of home agent) and authentication information. The problem of how to obtain the necessary parameters such as the FHA gateway address and the temporary home address when the MIPv6 traverses the IPV4 network is not solved. How to obtain the gateway address of the MIPV6 traversing the IPv4 network when the MIPV6 node bootstraps in the IPV6 field network. I even got the problem of the temporary home address assigned to this gateway.
[15] 发明内容  [15] Summary of the invention
[16] 本发明实施例的目的是提供一种实现双栈节点在异构网络中自举的装置和方法 [16] An object of an embodiment of the present invention is to provide an apparatus and method for implementing dual-stack nodes bootstrap in a heterogeneous network
, 从而可以实现双栈移动节点在 IPV6网络和 IPV4网络中自举。 Thus, the dual-stack mobile node can be booted in the IPV6 network and the IPV4 network.
[17] 本发明实施例的目的是通过以下技术方案实现的: [17] The purpose of the embodiment of the present invention is achieved by the following technical solutions:
[18] 一种实现双栈节点在异构网络中自举的装置, 包括: [18] A device for implementing bootstrap of a dual-stack node in a heterogeneous network, comprising:
[19] 切换资源服务器 H0RS, 用于对双栈移动节点进行切换管理, 提供双栈移动节点 在网络间进行切换的签约信息认证。 [19] Switching resource server H0RS, used for switching management of dual-stack mobile nodes, providing dual-stack mobile nodes Signing information authentication for switching between networks.
[20] 一种实现双栈节点在异构网络中自举的方法, 设置双栈切换资源服务器 DSHORS [20] A method for implementing dual-stack node bootstrapping in a heterogeneous network, setting a dual-stack switching resource server DSHORS
, 所述 DSHORS管理双栈移动节点的签约信息, 所述方法包括: The DSHORS manages subscription information of the dual-stack mobile node, where the method includes:
[21] 丽 [21] Li
获得 DSHORS提供的 FHA双栈移动接入服务的网关信息, 并且获得 FHA给其分配的 T H0A信息。  Obtain the gateway information of the FHA dual-stack mobile access service provided by DSHORS, and obtain the T H0A information assigned to it by the FHA.
[22] 由上述本发明实施例提供的技术方案可以看出, 本发明实施例通过设置 DSHORS  [22] It can be seen from the technical solutions provided by the foregoing embodiments of the present invention that the embodiment of the present invention sets DSHORS
(双栈切换资源服务器)逻辑网元, 从而可以实现双栈移动节点在 IPV6网络和 I PV4网络中自举。 可以使 MIPv6双栈移动节点在 IPV6网络中的外地链路上或者在 M IPv4类型的外地网络中自举的时候, 获得 H0A、 HA的地址和认证信息, 以及 MIPv 6双栈移动节点穿越 IPV4网络时 FHA网关地址、 THOA (temporary home address, 临时家乡地址)等必要参数。 本发明实施例可以方便网络运营商开展 和维护业务。  (Double stack switching resource server) Logical network element, so that the dual stack mobile node can boot the IPV6 network and the I PV4 network. The MIPv6 dual-stack mobile node can obtain the address and authentication information of the H0A and HA when booting on the foreign link in the IPV6 network or in the M IPv4 type foreign network, and the MIPv6 dual-stack mobile node traverses the IPV4 network. Required parameters such as FHA gateway address, THOA (temporary home address). The embodiments of the present invention can facilitate network operators to conduct and maintain services.
[23] 附图简要说明  [23] BRIEF DESCRIPTION OF THE DRAWINGS
[24] 图 1为在 Integrated ASP network  [24] Figure 1 shows the Integrated ASP network
scenario场景中, 丽如何进行 HA地址自举的处理流程示意图;  In the scenario, how does Li perform the process flow of HA address bootstrapping;
[25] 图 2为本发明实施例所述 FHA设置在 IPv4网络和 IPv6网络的交界范围内的示意图  2 is a schematic diagram of setting an FHA in an interface between an IPv4 network and an IPv6 network according to an embodiment of the present invention;
[26] 图 3为本发明实施例所述 DSHORS在网络中的部署示意图; FIG. 3 is a schematic diagram of deployment of a DSHORS in a network according to an embodiment of the present invention; FIG.
[27] 图 4为双栈移动节点在本发明实施例所述场景 1中进行自举的原理示意图;  [27] FIG. 4 is a schematic diagram of a principle of a bootstrap mobile node performing bootstrapping in the scenario 1 of the embodiment of the present invention;
[28] 图 5为在本发明实施例所述场景 2中, 一种丽得到 FHA的地址和丽在 MIPv4网络中 的 TH0A的具体处理流程示意图;  [28] FIG. 5 is a schematic diagram of a specific processing flow of a FHA address and a TH0A in a MIPv4 network in the scenario 2 of the embodiment of the present invention;
[29] 图 6为在本发明实施例所述场景 2中, 一种丽得到 FHA的地址和丽在 MIPv4网络中 的 TH0A的具体处理流程示意图; 6 is a schematic diagram of a specific processing flow of a FHA address and a TH0A in a MIPv4 network in the scenario 2 of the embodiment of the present invention;
[30] 图 7为在本发明实施例所述场景 2中, 一种丽得到 FHA的地址和丽在 MIPv4网络中 的 TH0A的具体处理流程示意图。 FIG. 7 is a schematic diagram of a specific processing flow of a FHA address and a TH0A in a MIPv4 network in the scenario 2 of the embodiment of the present invention.
[31] 实施本发明的方式 [31] Mode for carrying out the invention
[32] 本发明实施例提供了一种实现双栈节点在异构网络中自举的装置和方法, 本发 明实施例在网络中设置 DSHORS (双栈切换资源服务器) , 丽通过 NAS获得 DSH0RS 提供的 FHA (Foreign Home [32] An embodiment of the present invention provides an apparatus and method for implementing bootstrap of a dual-stack node in a heterogeneous network. In the embodiment, DSHORS (Dual Stack Switching Resource Server) is set in the network, and the FHA provided by DSH0RS through the NAS (Foreign Home)
Agent, 外地家乡代理)双栈移动接入服务的网关信息, 并且从 FHA获得 TH0A信 息。  Agent, the foreign home agent) The gateway information of the dual stack mobile access service, and the TH0A information is obtained from the FHA.
[33] 为了更好地描述本发明实施例, 我们先介绍一下 FHA。 FHA可以对双栈移动节点 进行管理, FHA可以设置在 IPv4网络和 IPv6网络的交界范围内, 如图 2所示。 FHA 还可以设置在同时运行 IPv4网络和 IPv6网络的混合网络中。 使用 FHA对双栈移动 节点进行管理的主要过程如下:  [33] For a better description of the embodiments of the present invention, we will first introduce FHA. FHA can manage dual-stack mobile nodes. FHA can be set in the boundary between IPv4 network and IPv6 network, as shown in Figure 2. FHA can also be set up in a hybrid network running both IPv4 and IPv6 networks. The main process for managing dual-stack mobile nodes using FHA is as follows:
[34] FHA  [34] FHA
作为家乡网络是 MIPv6的丽在 MIPv4网络中的外地家乡代理, FHA同时支持 MIP4和 As a home network, MIPv6 is a foreign agent in the MIPv4 network. FHA supports both MIP4 and
MIP6协议。 丽从 IPv6网络移动到 IPv4网络时, 先从 FHA获得一个 TH0A即临时 IPv4 地址, 并获得该 TH0A对应的 IPv6的 C0A地址。 同时获得 FHA的 IPv4地址和临时家 乡地址 TH0A。 MIP6 protocol. When moving from the IPv6 network to the IPv4 network, the MN obtains a temporary IPv4 address from the FHA and obtains the C0A address of the IPv6 corresponding to the TH0A. At the same time, the FHA's IPv4 address and the temporary home address TH0A are obtained.
[35] 当丽移动到 IPv4网中的 FA (Foreign [35] When Li moved to the FA in the IPv4 network (Foreign
Agent, 外地代理)处时, 将会获得一个 IPv4的 COA (Care of  Agent, field agent), will get an IPv4 COA (Care of
Address, 转交地址)地址。 丽使用 MIP6协议与 CN (Core  Address, care-of address) address. Li uses MIP6 protocol with CN (Core
Network, 通信节点)和 HA通讯, 通讯时使用的 C0A是从 FHA处获得的 IPv6的 C0A 地址。  Network, communication node) and HA communication, C0A used for communication is the C0A address of IPv6 obtained from FHA.
[36] 丽 [36] Li
与 CN和 HA通讯的 IPv6数据包在 IPv4网络中承载在 MIP4协议中。 家乡代理使用 MIP 4协议通讯时, 其 H0A为 TH0A、 COA为从 FA处获得的 IPv4的 COA地址、 H0A为 FHA的 I Pv4地址。  IPv6 packets communicating with CN and HA are carried in the MIP4 protocol on the IPv4 network. When the home agent communicates using the MIP 4 protocol, its H0A is TH0A, the COA is the IPv4 COA address obtained from the FA, and the H0A is the FHA I Pv4 address.
[37] 本发明实施例所述实现双栈节点在异构网络中自举的装置为 H0RS (切换资源服 务器) 。 H0RS可以独立存在, 和 AAA (Authentication Authorization  [37] The apparatus for implementing bootstrap of a dual-stack node in a heterogeneous network according to an embodiment of the present invention is a H0RS (Switching Resource Server). H0RS can exist independently, and AAA (Authentication Authorization
Accounting, 验证、 授权、 计费)之间采用 MA  MA between Accounting, authentication, authorization, and accounting)
protocol (MA协议)进行通信, H0RS也可以集成在 AAA服务器中。  Protocol (MA protocol) for communication, H0RS can also be integrated in the AAA server.
[38] H0RS  [38] H0RS
包括 DSHORS, DSHORS可以为双栈移动节点在 MIPv6和 MIPv4网络间的移动提供切 换服务, 管理双栈移动节点的签约信息, 同时为丽在 MIPv6和 MIPv4两个网络间 的切换提供认证信息、 FHA地址、 目标网络子网前缀, 临时家乡地址和 HAA等信 息。 DSH0RS在网络中的部署示意图如图 3所示。 图 3中的 HOME Including DSHORS, DSHORS can provide for the movement of dual-stack mobile nodes between MIPv6 and MIPv4 networks. Change service, manage the subscription information of the dual-stack mobile node, and provide authentication information, FHA address, target network subnet prefix, temporary home address and HAA for the switch between MIPv6 and MIPv4. The schematic diagram of DSH0RS deployment in the network is shown in Figure 3. HOME in Figure 3
DOMAIN表示家乡域, VISIT DOMAIN表示拜访域, DS-SP表示双栈服务提供商。  DOMAIN represents the home domain, VISIT DOMAIN represents the visited domain, and DS-SP represents the dual stack service provider.
[39] 下面描述本发明实施例所述实现双栈节点在异构网络中自举的方法。 本发明实 施例所述方法适用于两个场景, SP: 场景 1是: 双栈节点在 IPV6网络中的外地链 路上进行自举; 场景 2是: 双栈节点在 IPV4网络中的外地链路上进行自举。 上述 场景 1和场景 2中的双栈节点的家乡网络是 IPV6网络。  [39] The following describes a method for implementing a dual stack node bootstrap in a heterogeneous network according to an embodiment of the present invention. The method in the embodiment of the present invention is applicable to two scenarios, SP: scenario 1 is: a dual-stack node bootstraps on a foreign link in an IPV6 network; scenario 2 is: a dual-stack node in a foreign link in an IPV4 network Booting on. The home network of the dual-stack node in scenario 1 and scenario 2 above is an IPV6 network.
[40] 下面分别介绍在上述两个应用场景中本发明实施例所述方法的具体处理流程。  [40] The specific processing flow of the method in the embodiment of the present invention in the above two application scenarios is respectively described below.
[41] 双栈移动节点在上述场景 1中进行自举的原理示意图如图 4所示。 在上述场景 1 中, 双栈移动节点的家乡网络是 MIPv6网络。 双栈移动节点在类型是 MIPv6网络 的外地链路上进行自举, 双栈移动节点除了需要获得 MIPV6启动的参数之外, 还 要获得访问网络接入 MIPV4类型网络的 FHA的地址和相关安全参数。  [41] The schematic diagram of the dual-stack mobile node booting in the above scenario 1 is shown in Fig. 4. In the above scenario 1, the home network of the dual-stack mobile node is an MIPv6 network. The dual-stack mobile node performs bootstrapping on the foreign link of the type MIPv6 network. In addition to the parameters that the MIPV6 starts, the dual-stack mobile node also obtains the address and related security parameters of the FHA accessing the network access MIPV4 type network. .
[42] 在上述场景 1, 丽得到 HA信息和 FHA双栈移动接入服务的网关信息的具体处理过 程包括如下步骤:  [42] In the above scenario 1, the specific processing process of obtaining the HA information and the gateway information of the FHA dual-stack mobile access service includes the following steps:
[43] 401 、 ASP中的 NAS解析丽的 NAI, 向丽所在 MAH请求认证。  [43] 401. The NAS in ASP parses the NAI of Li, and requests the authentication from MAH.
[44] 402  [44] 402
、 MAH向本管理域的 DSH0RS请求能够为丽当前所在的 ASP提供 FHA双栈移动接入 服务的网关地址或者域名信息, 同时, MAH给出 HA的地址或者域名。 然后, MA H返回携带 FHA双栈移动接入服务的网关地址或者域名信息、 HA的地址或者域名 信息的认证结果给 NAS。  The MAH requests the DSH0RS of the management domain to provide the gateway address or domain name information of the FHA dual-stack mobile access service for the current ASP, and the MAH gives the HA address or domain name. Then, the MA H returns the authentication result of the gateway address or the domain name information, the HA address, or the domain name information of the FHA dual-stack mobile access service to the NAS.
[45] 403 、 丽进行 DHCP过程, 向 DHCP multicast  [45] 403, Li performs DHCP process, to DHCP multicast
address发送携带丽的 NAI的 Information Request消息。  The address sends an Information Request message carrying the NAI of the MN.
[46] 404 、 NAS作为 DHCP Relay, 转发上述 Information  [46] 404, NAS as DHCP Relay, forward the above Information
Request消息给 DHCP服务器, 同时, 在转发的 Information  Request message to the DHCP server, at the same time, the information forwarded
Request消息中携带上述从 MAH中得来的 HA信息、 FHA双栈移动接入服务的网关 信息。  The Request message carries the HA information obtained from the MAH and the gateway information of the FHA dual-stack mobile access service.
[47] 405 、 DHCP服务器在接收到上述 Information Request消息后, 向 DHCP relay返回携带 FHA双栈移动接入服务的网关信息和 HA信息的响应消息, 该 HA信 息可以是上述从 MAH中得来的 HA信息, 也可以是 ASP配置的本地家乡代理。 [47] 405. After receiving the above Information Request message, the DHCP server sends a DHCP message to the DHCP server. The relay returns the gateway information carrying the FHA dual-stack mobile access service and the response message of the HA information, and the HA information may be the HA information obtained from the MAH or the local home agent configured by the ASP.
[48] 406 、 DHCP [48] 406, DHCP
relay将接收到的响应消息转发给丽, 从而使丽得到了 HA的地址信息和 FHA双栈 移动接入服务的网关信息。  The relay forwards the received response message to MN, so that MN obtains the address information of the HA and the gateway information of the FHA dual-stack mobile access service.
[49] 407 [49] 407
、 丽通过 IKEv2 ( Internet密钥交换协议版本 2) 的 IKE-AUTH ( Internet密钥交 换协议 -认证部分)过程从 FHA得到 TH0A。  MN obtains TH0A from FHA through the IKE-AUTH (Internet Key Exchange Protocol - Authentication Part) procedure of IKEv2 (Internet Key Exchange Protocol Version 2).
[50] 408 、 丽向 FHA进行注册过程。 [50] 408, Li registered the process with FHA.
[51] 在上述场景 1, 丽得到 HA信息和 FHA双栈移动接入服务的网关信息的具体处理过 程还可以包括如下步骤:  [51] In the foregoing scenario 1, the specific processing process of obtaining the HA information and the gateway information of the FHA dual-stack mobile access service may further include the following steps:
[52] 501 、 ASP中的 NAS解析丽的 NAI, 向丽所在 MAH请求认证。 [52] 501. The NAS in ASP parses the NAI of Li, and requests the authentication from MAH.
[53] 502 [53] 502
、 MAH向本管理域的 DSHORS请求能够为丽当前所在的 ASP提供 FHA双栈移动接入 服务的网关地址或者域名。  The MAH requests the DSHORS of the administrative domain to provide the gateway address or domain name of the FHA dual-stack mobile access service for the current ASP.
[54] 503 [54] 503
、 DSHORS向 MAH提供 FHA双栈移动接入服务的网关地址或者域名。 DSHORS向 FHA 请求 TH0A的分配, FHA将分配的 TH0A返回给 DSHORS。  DSHORS provides the MAH with the gateway address or domain name of the FHA dual-stack mobile access service. DSHORS requests the allocation of TH0A from FHA, and FHA returns the assigned TH0A to DSHORS.
[55] 504 [55] 504
、 DSHORS将认证结果、 HA的地址或者域名、 FHA双栈移动接入服务的地址或者域 名信息和 FHA返回的 TH0A等信息一起返回给 NAS。  DSHORS returns the authentication result, the address or domain name of the HA, the address or domain name information of the FHA dual-stack mobile access service, and the TH0A returned by the FHA to the NAS.
[56] 505 [56] 505
、 NAS将 DSHORS返回的 HA的地址、 FHA的地址和 TH0A, 还有认证结果返回给丽。  The NAS returns the address of the HA returned by DSHORS, the address of the FHA, and TH0A, and returns the authentication result to Li.
[57] 506 、 丽进行 DHCP过程, 向 DHCP multicast [57] 506, Li performs DHCP process, to DHCP multicast
address发送携带丽的 NAI的 Information Request消息。  The address sends an Information Request message carrying the NAI of the MN.
[58] 507 、 NAS作为 DHCP Relay, 转发上述 Information [58] 507, NAS as DHCP Relay, forward the above Information
Request消息给 DHCP服务器, 同时, 在转发的 Information  Request message to the DHCP server, at the same time, the information forwarded
Request消息中携带上述从 DSHORS中得来的 HA信息、 FHA双栈移动接入服务的网 关信息。 The request message carries the above-mentioned HA information derived from DSHORS and the FHA dual-stack mobile access service network. Off information.
[59] 508 、 DHCP服务器在接收到上述 Information Request消息后, 向 DHCP  [59] 508. After receiving the above Information Request message, the DHCP server sends DHCP to the DHCP server.
relay返回携带 ASP分配给丽的本地地址、 FHA双栈移动接入服务的网关信息和 HA 信息的响应消息。  The relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, and the HA information.
[60] 509 、 DHCP [60] 509, DHCP
relay将收到的响应消息转发给丽, 从而丽得到 ASP分配的本地地址、 HA的地址 和 FHA双栈移动接入服务的网关信息。  The relay forwards the received response message to MN, so that the RADIUS obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service.
[61] 510 、 丽向 FHA进行注册过程。 [61] 510, Li registered the process with FHA.
[62] 在上述场景 1, 丽得到 HA信息和 FHA双栈移动接入服务的网关信息的具体处理过 程还可以包括如下步骤:  [62] In the foregoing scenario 1, the specific processing process of obtaining the HA information and the gateway information of the FHA dual-stack mobile access service may further include the following steps:
[63] 601 、 ASP中的 NAS解析丽的 NAI, 向丽所在 MAH请求认证。 [63] 601. The NAS in ASP parses the NAI of Li, and requests the authentication from MAH.
[64] 602 [64] 602
、 MAH向本管理域的 DSH0RS请求能够为丽当前所在的 ASP提供 FHA双栈移动接入 服务的网关地址或者域名。 同时, MAH将给出的 HA的地址或者域名、 FHA双栈移 动接入服务的网关地址或者域名和认证结果返回给 NAS。  The MAH requests the DSH0RS of the management domain to provide the gateway address or domain name of the FHA dual-stack mobile access service for the current ASP. At the same time, the MAH returns the given HA address or domain name, the gateway address or domain name of the FHA dual-stack mobile access service, and the authentication result to the NAS.
[65] 603 、 丽进行 DHCP过程, 向 DHCP multicast [65] 603, Li performs DHCP process, to DHCP multicast
address发送携带丽的 NAI的 Information Request消息。  The address sends an Information Request message carrying the NAI of the MN.
[66] 604 、 NAS作为 DHCP Relay, 转发上述 Information [66] 604, NAS as DHCP Relay, forward the above Information
Request消息给 DHCP服务器, 同时, 在转发的 Information  Request message to the DHCP server, at the same time, the information forwarded
Request消息中携带上述从 MAH中得来的 HA信息、 FHA双栈移动接入服务的网关 信息。  The Request message carries the HA information obtained from the MAH and the gateway information of the FHA dual-stack mobile access service.
[67] DHCP [67] DHCP
服务器根据 FHA信息得到丽需要得到的 TH0A地址, DHCP服务器从相关配置的地址 池分配地址。  The server obtains the TH0A address that the MN needs to obtain according to the FHA information, and the DHCP server allocates the address from the associated configured address pool.
[68] 605 [68] 605
、 本步骤是 604步骤的另一个可选操作, NAS根据认证消息得到 FHA信息, 将 FHA 作为下一个 DHCP服务器进行转发, 由 FHA向 DHCP服务器(这个 DHCP服务器也许和 前一个 DHCP服务器不是同一个)请求 TH0A地址分配。 [69] 606 、 DHCP服务器在接收到上述 Information Request消息后, 向 DHCP relay返回携带 ASP分配给丽的本地地址、 FHA双栈移动接入服务的网关信息、 HA 信息和分配的 TH0A地址信息的响应消息。 This step is another optional operation of step 604. The NAS obtains the FHA information according to the authentication message, and forwards the FHA as the next DHCP server, and the FHA to the DHCP server (this DHCP server may not be the same as the previous DHCP server) Request TH0A address assignment. [69] 606. After receiving the information Request message, the DHCP server returns, to the DHCP relay, a response that carries the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, the HA information, and the allocated TH0A address information. Message.
[70] 607 、 DHCP [70] 607, DHCP
relay将接收到的响应消息转发给丽, 从而使丽得到 ASP分配的本地地址、 HA的 地址和 FHA双栈移动接入服务的网关信息, 还有 TH0A信息。  The relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service, and the TH0A information.
[71] 上述过程在实施中需要增加扩展选项来携带 FHA的地址或者域名, 可以在 MA或 者 DHCP中扩展选项。 本发明实施例不限定该选项的名称和形式, 但是该选项要 能够携带 FHA的地址或者域名信息, 并给出区别该选项内容是地址还是域名的标 识方法。 [71] The above process requires an extended option to carry the FHA address or domain name in the implementation. The option can be extended in MA or DHCP. The embodiment of the present invention does not limit the name and form of the option, but the option should be able to carry the address or domain name information of the FHA, and give an identification method that distinguishes whether the content of the option is an address or a domain name.
[72] 在上述场景 2中, 家乡网络是 MIPv6网络的双栈移动节点在类型是 MIPv4网络的 外地链路上进行自举。 一种丽得到 FHA的地址和丽在 MIPv4网络中的 TH0A的具体 处理流程如图 5所示, 包括如下步骤:  [72] In scenario 2 above, the home network is a dual-stack mobile node of the MIPv6 network that bootstraps on a foreign link of the type MIPv4 network. A specific processing flow for obtaining the FHA address and the TH0A in the MIPv4 network is as shown in FIG. 5, and includes the following steps:
[73] 701  [73] 701
、 ASP中的 NAS解析丽的 NAI, 对丽进行认证; 根据丽的 NAI得知丽的归属域, 由 A SP决策向 DSHORS请求认证和切换资源信息, 例如 FHA的地址和域名。  The NAS in the ASP parses the NAI of the MN, and authenticates the MN; according to the MN's NAI, the AAA's home domain is determined, and the A SP decides to request the DSHORS for authentication and switch resource information, such as the FHA address and domain name.
[74] 702 [74] 702
、 DSHORS提供 FHA双栈移动接入服务的网关地址或者域名。 同时, DSHORS给出 HA 的地址或者域名, 将给出的认证结果和 FHA双栈移动接入服务的网关地址或者域 名信息返回给 NAS。  DSHORS provides the gateway address or domain name of the FHA dual-stack mobile access service. At the same time, DSHORS gives the address or domain name of the HA, and returns the given authentication result and the gateway address or domain name information of the FHA dual-stack mobile access service to the NAS.
[75] 703 、 NAS将 DSHORS给出的 HAA、 FHA的地址和认证结果返回给丽。  [75] 703, NAS returns the HAA, FHA address and authentication result given by DSHORS to Li.
[76] 704 、 丽进行 DHCP过程, 向 DHCP multicast [76] 704, Li performs DHCP process, to DHCP multicast
address发送携带丽的 NAI的 Information Request消息。  The address sends an Information Request message carrying the NAI of the MN.
[77] 705 、 NAS作为 DHCP Relay, 转发上述 Information [77] 705, NAS as DHCP Relay, forward the above Information
Request消息给 DHCP服务器, 同时, 在转发的 Information  Request message to the DHCP server, at the same time, the information forwarded
Request消息中携带上述从 DSHORS中得来的 HA信息、 FHA双栈移动接入服务的网 关信息。  The Request message carries the above-mentioned HA information from the DSHORS and the gateway information of the FHA dual-stack mobile access service.
[78] 706 、 DHCP服务器在接收到上述 Information Request消息后, 向 DHCP relay返回携带 ASP分配给丽的本地地址、 FHA双栈移动接入服务的网关信息和 HA 信息的响应消息。 [78] 706. After receiving the above Information Request message, the DHCP server sends a DHCP message to the DHCP server. The relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, and the HA information.
[79] 707 、 DHCP [79] 707, DHCP
relay将接收到的响应消息转发给丽, 从而使丽得到 ASP分配的本地地址、 HA的 地址和 FHA双栈移动接入服务的网关信息。  The relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service.
[80] 708 、 丽通过 IKEv2的 IKE-AUTH过程从 FHA得到 TH0A。 [80] 708, Li obtained TH0A from FHA through IKEv2's IKE-AUTH process.
[81] 709 、 丽进行注册过程。 [81] 709, Li registered the registration process.
[82] 在上述场景 2中, 另一种丽得到 FHA的地址和丽在 MIPv4网络中的 TH0A的具体处 理流程如图 6所示, 包括如步骤:  [82] In the above scenario 2, another specific processing procedure for obtaining the FHA address and the TH0A in the MIPv4 network is as shown in FIG. 6, and includes the following steps:
[83] 801 [83] 801
、 ASP中的 NAS解析丽的 NAI, 对丽进行认证; 根据丽的 NAI得知丽的归属域, 由 A SP决策向 DSH0RS请求认证和切换资源信息, 例如 FHA的地址和域名。  The NAS in the ASP parses the NAI of the MN, and authenticates the MN; according to the MN's NAI, the AAA's home domain is requested, and the A SP decides to request the DSH0RS for authentication and switch resource information, such as the FHA address and domain name.
[84] 802 [84] 802
、 DSH0RS向 NAS提供 FHA双栈移动接入服务的网关地址或者域名。 DSH0RS向 FHA请 求 TH0A的分配, FHA将分配的 TH0A返回给 DSH0RS。  DSH0RS provides the gateway address or domain name of the FHA dual-stack mobile access service to the NAS. DSH0RS requests the allocation of TH0A to FHA, and FHA returns the assigned TH0A to DSH0RS.
[85] 803 [85] 803
、 DSH0RS将给出的认证结果、 HA的地址或者域名和 FHA返回的 TH0A和 FHA双栈移 动接入服务的网关地址或者域名信息一起返回给 NAS。  The DSH0RS returns the given authentication result, the address or domain name of the HA, and the gateway address or domain name information of the TH0A and FHA dual-stack mobile access service returned by the FHA to the NAS.
[86] 804 、 NAS将 DSH0RS给出的 HA的地址、 FHA的地址、 TH0A和认证结果返回给丽。 [86] 804. The NAS returns the address of the HA, the address of the FHA, the TH0A and the authentication result given by the DSH0RS to the MN.
[87] 805 、 丽进行 DHCP过程, 向 DHCP multicast [87] 805, Li performs DHCP process, to DHCP multicast
address发送携带丽的 NAI的 Information Request消息。  The address sends an Information Request message carrying the NAI of the MN.
[88] 806 、 NAS作为 DHCP Relay, 转发上述 Information [88] 806, NAS as DHCP Relay, forward the above Information
Request消息给 DHCP服务器, 同时, 在转发的 Information  Request message to the DHCP server, at the same time, the information forwarded
Request消息中携带上述从 DSH0RS中得来的 HA信息、 FHA双栈移动接入服务的网 关信息。  The Request message carries the HA information obtained from the DSH0RS and the gateway information of the FHA dual-stack mobile access service.
[89] 807 、 DHCP服务器在接收到上述 Information Request消息后, 向 DHCP  [89] 807. After receiving the above Information Request message, the DHCP server sends DHCP to the DHCP server.
relay返回携带 ASP分配给丽的本地地址、 FHA双栈移动接入服务的网关信息和 HA 信息的响应消息。 [90] 808 、 DHCP The relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, and the HA information. [90] 808, DHCP
relay将接收到的响应消息转发给丽, 从而使丽得到 ASP分配的本地地址、 HA的 地址和 FHA双栈移动接入服务的网关信息。  The relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, and the gateway information of the FHA dual-stack mobile access service.
[91] 在上述场景 2中, 另一种丽得到 FHA的地址和丽在 MIPv4网络中的 TH0A的具体处 理流程如图 7所示, 包括如步骤: [91] In the above scenario 2, another specific processing procedure for obtaining the FHA address and the TH0A in the MIPv4 network is as shown in FIG. 7, and includes the following steps:
[92] 901 [92] 901
、 ASP中的 NAS解析丽的 NAI, 对丽进行认证; 根据丽的 NAI得知丽的归属域, 由 A SP决策向 DSH0RS请求认证和切换资源信息, 例如 FHA的地址和域名。  The NAS in the ASP parses the NAI of the MN, and authenticates the MN; according to the MN's NAI, the AAA's home domain is requested, and the A SP decides to request the DSH0RS for authentication and switch resource information, such as the FHA address and domain name.
[93] 902 [93] 902
、 DSH0RS向 NAS提供 FHA双栈移动接入服务的网关地址或者域名。 DSH0RS将给出 的认证结果、 HA的地址或者域名返回给 NAS。  DSH0RS provides the gateway address or domain name of the FHA dual-stack mobile access service to the NAS. DSH0RS returns the given authentication result, HA address or domain name to the NAS.
[94] 903 、 NAS将 DSH0RS给出的 HA的地址、 FHA的地址和认证结果返回给丽。 [94] 903. The NAS returns the address of the HA, the address of the FHA, and the authentication result given by the DSH0RS to the MN.
[95] 904 、 丽进行 DHCP过程, 向 DHCP multicast [95] 904, Li performs DHCP process, to DHCP multicast
address发送携带丽的 NAI的 Information Request消息。  The address sends an Information Request message carrying the NAI of the MN.
[96] 905 、 NAS作为 DHCP Relay, 转发上述 Information [96] 905, NAS as DHCP Relay, forward the above Information
Request消息给 DHCP服务器, 同时, 在转发的 Information  Request message to the DHCP server, at the same time, the information forwarded
Request消息中携带上述从 DSH0RS中得来的 HA信息、 FHA双栈移动接入服务的网 关信息。  The Request message carries the HA information obtained from the DSH0RS and the gateway information of the FHA dual-stack mobile access service.
[97] DHCP [97] DHCP
服务器根据 FHA信息得到丽需要的 TH0A地址, DHCP服务器从相关配置的地址池分 配地址。  The server obtains the TH0A address required by MN according to the FHA information, and the DHCP server allocates the address from the address pool of the related configuration.
[98] 906 [98] 906
、 本步骤是 905步骤的另一个可选操作, NAS根据认证消息得到 FHA信息, 将 FHA 作为下一个 DHCP relay进行转发, 由 FHA向 DHCP服务器(这个 DHCP  This step is another optional operation of step 905. The NAS obtains the FHA information according to the authentication message, and forwards the FHA as the next DHCP relay, from the FHA to the DHCP server (this DHCP
服务器也许和前一个 DHCP服务器不是同一个)请求 TH0A地址分配。  The server may not be the same as the previous DHCP server) requesting TH0A address allocation.
[99] 907 、 DHCP服务器在接收到上述 Information Request消息后, 向 DHCP [99] 907. After receiving the above Information Request message, the DHCP server sends DHCP to the DHCP server.
relay返回携带 ASP分配给丽的本地地址、 FHA双栈移动接入服务的网关信息、 HA 信息和分配的 TH0A地址信息的响应消息。 [100] 908 、 DHCP The relay returns a response message carrying the local address assigned by the ASP to the MN, the gateway information of the FHA dual-stack mobile access service, the HA information, and the allocated TH0A address information. [100] 908, DHCP
relay将接收到的响应消息转发给丽, 从而使丽得到 ASP分配的本地地址、 HA的 地址、 FHA双栈移动接入服务的网关和 TH0A信息。  The relay forwards the received response message to MN, so that MN obtains the local address assigned by the ASP, the address of the HA, the gateway of the FHA dual-stack mobile access service, and the TH0A information.
[101] 综上所述, 由上述本发明实施例提供的技术方案可以看出, 本发明实施例通过 设置 DSH0RS (双栈切换资源服务器)逻辑网元, 从而可以实现双栈移动节点在 I PV6网络和 IPV4网络中自举。 可以使 MIPv6双栈移动节点在 IPV6网络中的外地链 路上或者在 MIPv4类型的外地网络中自举的时候, 获得 H0A、 HA的地址和认证信 息, 以及 MIPv6双栈移动节点穿越 IPV4网络时 FHA网关地址、 TH0A等必要参数。 本发明实施例可以方便网络运营商开展和维护业务。  [101] In summary, it can be seen that the foregoing technical solution provided by the embodiment of the present invention can be implemented by setting a DSH0RS (Dual Stack Switching Resource Server) logical network element, so that a dual-stack mobile node can be implemented in the I PV6. Bootstrap in the network and IPV4 networks. The MIPv6 dual-stack mobile node can obtain the address and authentication information of the H0A and the HA when booting on the foreign link in the IPV6 network or in the MIPv4 type foreign network, and the FHA when the MIPv6 dual-stack mobile node traverses the IPV4 network. Required parameters such as gateway address and TH0A. The embodiments of the present invention can facilitate network operators to conduct and maintain services.
[102] 以上所述, 仅为本发明较佳的具体实施方式, 但本发明的保护范围并不局限于 此, 任何熟悉本技术领域的技术人员在本发明揭露的技术范围内, 可轻易想到 的变化或替换, 都应涵盖在本发明的保护范围之内。 因此, 本发明的保护范围 应该以权利要求的保护范围为准。  The above description is only a preferred embodiment of the present invention, but the scope of the present invention is not limited thereto, and any person skilled in the art can easily think of within the technical scope disclosed by the present invention. Changes or substitutions are intended to be included within the scope of the invention. Therefore, the scope of protection of the present invention should be determined by the scope of the claims.

Claims

权利要求书 Claim
[1] 1、 一种实现双栈节点在异构网络中自举的装置, 其特征在于, 包括: 切换资源服务器 H0RS, 用于对双栈移动节点进行切换管理, 提供双栈移动 节点在网络间进行切换的签约信息认证。  [1] 1. A device for implementing bootstrapping of a dual-stack node in a heterogeneous network, comprising: a handover resource server H0RS, configured to perform handover management on a dual-stack mobile node, and provide a dual-stack mobile node in a network. Signing information authentication for switching between.
[2] 2、 根据权利要求 1所述的实现双栈节点在异构网络中自举的装置, 其特征 在于, 所述的 H0RS具体包括:  [2] The device for booting a dual-stack node in a heterogeneous network according to claim 1, wherein the H0RS specifically includes:
双栈切换资源服务器 DSHORS, 用于为双栈移动节点在因特网协议版本 6MIPv Dual Stack Switching Resource Server DSHORS, used for dual stack mobile nodes in Internet Protocol version 6MIPv
6和因特网协议版本 4MIPv4网络间的移动提供切换服务, 管理双栈移动节点 的签约信息, 为移动节点丽在 MIPv6和 MIPv4两个网络间的切换提供外地家 乡代理 FHA双栈移动接入服务的网关信息。 Mobile switching between 6 and Internet Protocol version 4MIPv4 networks provides switching services, manages subscription information of dual-stack mobile nodes, and provides a gateway for foreign home agent FHA dual-stack mobile access services for mobile node switching between MIPv6 and MIPv4 networks. information.
[3] 3、 根据权利要求 2所述的实现双栈节点在异构网络中自举的装置, 其特征 在于, 所述的 H0RS独立存在或集成在验证、 授权、 计费 AAA服务器中。 [3] 3. The device for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 2, wherein the H0RS exists independently or integrated in an authentication, authorization, and accounting AAA server.
[4] 4、 一种实现双栈节点在异构网络中自举的方法, 其特征在于, 设置双栈切 换资源服务器 DSHORS, 所述 DSHORS管理双栈移动节点的签约信息, 所述方 法包括: [4] 4, a method for implementing a dual-stack node bootstrap in a heterogeneous network, characterized in that: a double-stack switching resource server DSHORS is set, and the DSHORS manages subscription information of a dual-stack mobile node, the method includes:
 Li
获得 DSHORS提供的 FHA双栈移动接入服务的网关信息, 并且获得 FHA给其分 配的 TH0A信息。  Obtain the gateway information of the FHA dual-stack mobile access service provided by DSHORS, and obtain the TH0A information assigned by FHA.
[5] 5、 根据权利要求 4所述的实现双栈节点在异构网络中自举的方法, 其特征 在于, 当家乡网络是 MIPv6网络的双栈移动节点在 MIPv6网络中的外地链路 上自举时, 所述方法包括:  [5] 5. The method for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 4, wherein when the home network is a dual-stack mobile node of the MIPv6 network on a foreign link in the MIPv6 network When booting, the method includes:
接入服务提供商 ASP中的 NAS解析丽的网络接入标识 NAI, 向丽所在家乡 AAA 服务器 MAH请求认证, MAH向本管理域的 DSHORS请求获得为丽当前所在的 A SP提供 FHA双栈移动接入服务的地址或者域名信息;  The NAS in the access service provider ASP resolves the network access identifier NAI, requests authentication from the home AAA server MAH, and the MAH requests the DSHORS in the local domain to obtain the FHA dual-stack mobile connection for the current A SP. Address or domain name information of the service;
AAAH  AAAH
将 DSHORS提供的所述 FHA双栈移动接入服务的地址或者域名信息和认证结果 发送给 NAS; 丽进行动态主机配置协议 DHCP过程, 向 DHCP多播地址发送携带 丽的 NAI的信息请求消息; NAS Sending the address or domain name information and the authentication result of the FHA dual-stack mobile access service provided by the DSHORS to the NAS; performing a dynamic host configuration protocol DHCP process, and transmitting an information request message carrying the NAI to the DHCP multicast address; NAS
将所述信息请求消息转发给 DHCP服务器, 并且在转发的信息请求消息中携 带所述从 MAH中得来的 FHA双栈移动接入服务的地址或者域名信息; DHCP服 务器向 NAS返回携带所述 FHA双栈移动接入服务的地址或者域名信息的响应 消息, NAS将该响应消息返回给丽;  Forwarding the information request message to the DHCP server, and carrying the address or domain name information of the FHA dual-stack mobile access service obtained from the MAH in the forwarded information request message; the DHCP server returns to the NAS to carry the FHA The address of the dual-stack mobile access service or the response message of the domain name information, and the NAS returns the response message to the MN;
MN通过密钥交换协议从 FHA得到 TH0A。  The MN obtains the TH0A from the FHA through a key exchange protocol.
[6] 6、 根据权利要求 4所述的实现双栈节点在异构网络中自举的方法, 其特征 在于, 当家乡网络是 MIPv6网络的双栈移动节点在 MIPv6网络中的外地链路 上自举时, 所述方法包括: [6] 6. The method for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 4, wherein when the home network is a dual-stack mobile node of the MIPv6 network on a foreign link in the MIPv6 network When booting, the method includes:
ASP  ASP
中的 NAS解析丽的 NAI, 向丽所在 MAH请求认证, MAH向本管理域的 DSH0RS 请求获得为丽当前所在的 ASP提供 FHA双栈移动接入服务的地址或者域名信 息;  The NAS resolves the NAI of the NAS, requests authentication from the MAH of the MN, and the MAH requests the DSH0RS of the admin domain to obtain the address or domain name information of the FHA dual-stack mobile access service for the ASP where the MN is currently located;
DSH0RS  DSH0RS
向 FHA请求 TH0A的分配, FHA将分配的 TH0A返回给 DSHORS, DSH0RS将认证结 果、 FHA双栈移动接入服务的地址或者域名信息和 TH0A信息返回给 NAS, NAS 将 DSHORS返回的 THOA和认证结果返回给丽;  The FHA is requested to allocate the TH0A, and the FHA returns the allocated TH0A to the DSHORS. The DSH0RS returns the authentication result, the address of the FHA dual-stack mobile access service or the domain name information and the TH0A information to the NAS, and the NAS returns the THOA and the authentication result returned by the DSHORS. Give
 Li
进行 DHCP过程, 向 DHCP多播地址发送携带丽的 NAI的信息请求消息; NAS将 所述信息请求消息转发给 DHCP服务器, 并且在转发的信息请求消息中携带 所述从 DSHORS中得来的 FHA双栈移动接入服务的地址或者域名信息; DHCP  The DHCP process is performed, and the information request message carrying the NAI is sent to the DHCP multicast address; the NAS forwards the information request message to the DHCP server, and carries the FHA double received from the DSHORS in the forwarded information request message. Address or domain name information of the stack mobile access service; DHCP
服务器向 NAS返回携带所述 FHA双栈移动接入服务的地址或者域名信息的响 应消息, NAS将该响应消息返回给丽。  The server returns a response message carrying the address or domain name information of the FHA dual-stack mobile access service to the NAS, and the NAS returns the response message to the MN.
[7] 7、 根据权利要求 4所述的实现双栈节点在异构网络中自举的方法, 其特征 在于, 当家乡是 MIPv6网络的双栈移动节点在 MIPv6网络中的外地链路上自 举时, 所述方法包括: [7] 7. The method for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 4, wherein when the home is a dual-stack mobile node of the MIPv6 network, the foreign link in the MIPv6 network is self-existing. Whereas, the method comprises:
ASP 中的 NAS解析丽的 NAI, 向丽所在 MAH请求认证, MAH向本管理域的 DSHORS 请求获得为丽当前所在的 ASP提供 FHA双栈移动接入服务的地址或者域名信 息; MAH将 DSHORS提供的 FHA双栈移动接入服务的地址或者域名信息返回给 NAS; ASP The NAS analyzes the NAI of the NAS, requests the authentication from the MAH of the MN, and the MAH requests the DSHORS of the admin domain to obtain the address or domain name information of the FHA dual-stack mobile access service for the ASP where the MN is currently located; MAH will provide the FHA provided by the DSHORS. The address or domain name information of the dual-stack mobile access service is returned to the NAS;
Li
进行 DHCP过程, 向 DHCP多播地址发送携带丽的 NAI的信息请求消息; NAS将 所述信息请求消息转发给 DHCP服务器, 并且在转发的信息请求消息中携带 所述从 MAH中得来的 FHA双栈移动接入服务的地址或者域名信息; The DHCP process is performed, and the information request message carrying the NAI is sent to the DHCP multicast address; the NAS forwards the information request message to the DHCP server, and carries the FHA double obtained from the MAH in the forwarded information request message. The address or domain name information of the stack mobile access service;
DHCP DHCP
服务器根据 FHA信息得到丽的 TH0A地址, DHCP服务器从相关配置的地址池分 配地址; DHCP服务器向 NAS返回携带所述 FHA双栈移动接入服务的地址或者 域名信息和 TH0A信息的响应消息, NAS将该响应消息返回给丽。 The server obtains the TH0A address of the MN according to the FHA information, and the DHCP server allocates the address from the related configured address pool; the DHCP server returns a response message carrying the address or domain name information of the FHA dual-stack mobile access service and the TH0A information to the NAS, and the NAS will The response message is returned to Li.
8、 根据权利要求 4所述的实现双栈节点在异构网络中自举的方法, 其特征 在于, 当家乡网络是 MIPv6网络的双栈移动节点在 MIPv4网络中的外地链路 上自举时, 所述方法包括:  8. The method for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 4, wherein when the home network is a dual-stack mobile node of the MIPv6 network bootstrapped on a foreign link in the MIPv4 network , the method includes:
ASP  ASP
中的 NAS解析丽的 NAI, 对丽进行认证; 根据丽的 NAI得知丽的归属域, 由 ASThe NAS in the analysis of the NAI, the certification of Li; according to the NAI of Li, the domain of Li, by AS
P决策向 DSHORS请求认证和切换资源信息; The P decision requests authentication and switching resource information from DSHORS;
DSHORS  DSHORS
向 NAS提供 FHA双栈移动接入服务的网关地址或者域名, NAS将 DSHORS返回的 FHA的地址和认证结果返回给丽; 丽进行 DHCP过程, 向 DHCP多播地址发送携 带丽的 NAI的信息请求消息; The NAS provides the gateway address or domain name of the FHA dual-stack mobile access service, and the NAS returns the FHA address and the authentication result returned by the DSHORS to the MN; the MN performs a DHCP process, and sends an information request message carrying the NAI to the DHCP multicast address. ;
NAS NAS
将所述信息请求消息转发给 DHCP服务器, 并且在转发的信息请求消息中携 带所述从 DSHORS中得来的 FHA双栈移动接入服务的地址或者域名信息; DHCP 服务器根据 FHA信息得到的 TH0A地址, 并且从相关配置的地址池分配地址; DHCP Forwarding the information request message to the DHCP server, and carrying the address or domain name information of the FHA dual-stack mobile access service obtained from the DSHORS in the forwarded information request message; the TH0A address obtained by the DHCP server according to the FHA information And assign an address from the associated configured address pool; DHCP
服务器向 NAS返回携带所述 FHA双栈移动接入服务的地址或者域名信息和 THO A信息的响应消息, NAS将该响应消息返回给丽。 The server returns to the NAS the address or domain name information and the THO carrying the FHA dual-stack mobile access service. The response message of the A message, the NAS returns the response message to the MN.
[9] 9、 根据权利要求 7或 8所述的实现双栈节点在异构网络中自举的方法, 其特 征在于, 所述的 NAS将所述信息请求消息转发给 DHCP服务器的过程, 还包括 [9] The method for implementing the bootstrapping of the dual-stack node in the heterogeneous network according to claim 7 or 8, wherein the NAS forwards the information request message to the DHCP server, and Including
NAS NAS
根据认证消息得到 FHA信息, 将 FHA作为下一个 DHCP服务器进行转发, 由 FHA 向 DHCP服务器请求 TH0A地址分配。  According to the authentication message, the FHA information is obtained, and the FHA is forwarded as the next DHCP server, and the FHA requests the TH0A address allocation from the DHCP server.
[10] 10、 根据权利要求 4所述的实现双栈节点在异构网络中自举的方法, 其特征 在于, 当家乡网络是 MIPv6网络的双栈移动节点在 MIPv4网络中的外地链路 上自举时, 所述方法包括: [10] The method for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 4, wherein when the home network is a dual-stack mobile node of the MIPv6 network on a foreign link in the MIPv4 network When booting, the method includes:
ASP  ASP
中的 NAS解析丽的 NAI, 对丽进行认证; 根据丽的 NAI得知丽的归属域, 由 AS The NAS in the analysis of the NAI, the certification of Li; according to the NAI of Li, the domain of Li, by AS
P决策向 DSH0RS请求认证和切换资源信息; The P decision requests authentication and switching resource information from the DSH0RS;
DSH0RS  DSH0RS
将提供的 FHA双栈移动接入服务的网关地址或者域名和认证结果返回给 NAS ; NAS将 DSH0RS返回 FHA的地址和认证结果返回给丽; 丽进行 DHCP过程, 向 D HCP多播地址发送携带丽的 NAI的信息请求消息;  The gateway address or domain name and authentication result of the provided FHA dual-stack mobile access service are returned to the NAS; the NAS returns the address of the DSH0RS to the FHA and the authentication result is returned to the MN; the MN performs the DHCP process, and sends the MN to the D HCP multicast address. NAI information request message;
NAS  NAS
将所述信息请求消息转发给 DHCP服务器, 并且在转发的信息请求消息中携 带所述从 DSH0RS中得来的 FHA双栈移动接入服务的地址或者域名信息; DHCP 服务器向 NAS返回携带所述 FHA双栈移动接入服务的地址或者域名信息的响 应消息, NAS将该响应消息返回给丽;  Forwarding the information request message to the DHCP server, and carrying the address or domain name information of the FHA dual-stack mobile access service obtained from the DSH0RS in the forwarded information request message; the DHCP server returns to the NAS to carry the FHA The address of the dual-stack mobile access service or the response message of the domain name information, and the NAS returns the response message to the MN;
MN通过密钥交换协议从 FHA得到 TH0A。  The MN obtains the TH0A from the FHA through a key exchange protocol.
[11] 11、 根据权利要求 4所述的实现双栈节点在异构网络中自举的方法, 其特征 在于, 当家乡网络是 MIPv6网络的双栈移动节点在 MIPv4网络中的外地链路 上自举时, 所述方法包括: [11] 11. The method for implementing bootstrapping of a dual-stack node in a heterogeneous network according to claim 4, wherein when the home network is a dual-stack mobile node of the MIPv6 network on a foreign link in the MIPv4 network When booting, the method includes:
ASP  ASP
中的 NAS解析丽的 NAI, 对丽进行认证; 根据丽的 NAI得知丽的归属域, 由 AS P决策向 DSHORS请求认证和切换资源信息; The NAS in the analysis of Li NAI, the certification of Li; according to Li NAI learned that Li's attribution domain, by AS P decision requests authentication and switching resource information to DSHORS;
DSHORS DSHORS
向 NAS提供 FHA双栈移动接入服务的网关地址或者域名。 DSHORS向 FHA请求 TH OA的分配, FHA将分配的 TH0A返回给 DSHORS; DSHORS将给出的认证结果、 TH OA和 FHA双栈移动接入服务的网关地址或者域名信息返回给 NAS; Provide the NAS with the gateway address or domain name of the FHA dual-stack mobile access service. DSHORS requests the allocation of TH OA from FHA, and FHA returns the assigned TH0A to DSHORS; DSHORS returns the given authentication result, gateway address or domain name information of TH OA and FHA dual-stack mobile access service to NAS;
NAS将 DSHORS返回的 FHA的地址、 TH0A和 NAS will return the address of the FHA returned by DSHORS, TH0A and
认证结果返回给丽; 丽进行 DHCP过程, 向 DHCP多播地址发送携带丽的 NAI的 信息请求消息; NAS将所述信息请求消息转发给 DHCP服务器, 并且在转发的 信息请求消息中携带所述从 DSHORS中得来的 FHA双栈移动接入服务的地址或 者域名信息; The authentication result is returned to the MN; the MN performs a DHCP process, and sends an information request message carrying the NAI to the DHCP multicast address; the NAS forwards the information request message to the DHCP server, and carries the slave in the forwarded information request message. The address or domain name information of the FHA dual-stack mobile access service derived from DSHORS;
DHCP DHCP
服务器向 NAS返回携带所述 FHA双栈移动接入服务的地址或者域名信息的响 应消息, NAS将该响应消息返回给丽。 The server returns a response message carrying the address or domain name information of the FHA dual-stack mobile access service to the NAS, and the NAS returns the response message to the MN.
PCT/CN2007/070086 2006-06-09 2007-06-06 An apparatus and method for implementing the boot-strap of the dual-stack node in the heterogeneous network WO2007143950A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2006100828101A CN101087242B (en) 2006-06-09 2006-06-09 Device and method for self enumeration of heterogeneous network in dual stack node
CN200610082810.1 2006-06-09

Publications (1)

Publication Number Publication Date
WO2007143950A1 true WO2007143950A1 (en) 2007-12-21

Family

ID=38831423

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2007/070086 WO2007143950A1 (en) 2006-06-09 2007-06-06 An apparatus and method for implementing the boot-strap of the dual-stack node in the heterogeneous network

Country Status (2)

Country Link
CN (1) CN101087242B (en)
WO (1) WO2007143950A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8238363B2 (en) * 2006-06-09 2012-08-07 Huawei Technologies Co., Ltd. Method and apparatus for a dual-stack MN to roaming in an IPv4 network

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100893059B1 (en) * 2007-12-03 2009-04-15 에스케이 텔레콤주식회사 Method for providing packet service while hand-over between different kinds networks and mobile communication terminal for the same
US20090290539A1 (en) * 2008-05-21 2009-11-26 Huawei Technologies, Co., Ltd. Method and apparatus for home agent address acquisition for IPv4 mobile nodes
CN101692674B (en) * 2009-10-30 2012-10-17 杭州华三通信技术有限公司 Method and equipment for double stack access
CN102625279A (en) * 2012-03-16 2012-08-01 中山大学 IPv4 (Internet Protocol version 4)-supporting hierarchical mobile IPv6 method

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050099976A1 (en) * 2003-09-23 2005-05-12 Shu Yamamoto Enabling mobile IPv6 communication over a network containing IPv4 components using a tunnel broker model
US20060062248A1 (en) * 2004-09-23 2006-03-23 Nokia Corporation Providing connection between networks using different protocols
CN1762126A (en) * 2003-03-19 2006-04-19 三星电子株式会社 Use the mobile IP communication system and the method thereof of dual stack transition mechanism

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030236914A1 (en) * 2002-06-25 2003-12-25 Intel Corporation Connection of next generation mobile nodes across previous generation networks to next generation networks

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1762126A (en) * 2003-03-19 2006-04-19 三星电子株式会社 Use the mobile IP communication system and the method thereof of dual stack transition mechanism
US20050099976A1 (en) * 2003-09-23 2005-05-12 Shu Yamamoto Enabling mobile IPv6 communication over a network containing IPv4 components using a tunnel broker model
US20060062248A1 (en) * 2004-09-23 2006-03-23 Nokia Corporation Providing connection between networks using different protocols

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8238363B2 (en) * 2006-06-09 2012-08-07 Huawei Technologies Co., Ltd. Method and apparatus for a dual-stack MN to roaming in an IPv4 network

Also Published As

Publication number Publication date
CN101087242A (en) 2007-12-12
CN101087242B (en) 2010-12-08

Similar Documents

Publication Publication Date Title
KR101268892B1 (en) Methods for common authentication and authorization across independent networks
KR101205466B1 (en) Methods and apparatus for providing pmip key hierarchy in wireless communication networks
Leung et al. WiMAX forum/3GPP2 proxy mobile IPv4
JP5238029B2 (en) Method and apparatus for roaming between communication networks
US20100048161A1 (en) Method, system and apparatuses thereof for realizing emergency communication service
JP4909357B2 (en) Method for transmitting data packets based on an Ethernet transmission protocol between at least one mobile communication unit and a communication system
US8331287B2 (en) Method and system for managing mobility in a mobile communication system using mobile internet protocol
KR20090061663A (en) Address management method, address management system, mobile terminal and home domain server
US20080295154A1 (en) Method and system for managing mobility of access terminal using proxy mobile internet protocol in a mobile communication system, and method for allocating home address of access terminal for the same
WO2008119296A1 (en) A method and device for performing mobility management protocol negotiation
CA2779094A1 (en) User equipment (ue), home agent node (ha), methods, and telecommunications system for home network prefix (hnp) assignment
US8300631B2 (en) Method for realizing mobile IP management and the network system thereof
KR20090093928A (en) System for fa relocation with context transfer in wireless networks
WO2007128239A1 (en) System for implementing mobile ipv6 and method for establishing user link in the system
WO2007143950A1 (en) An apparatus and method for implementing the boot-strap of the dual-stack node in the heterogeneous network
WO2008154789A1 (en) A method of selecting mobile management mode in wireless network
EP2299748B1 (en) Method and system for supporting mobility security in the next generation network
WO2007131406A1 (en) A method and system for allocating home agent
KR20110045885A (en) Handover providing system and method based on mobile IP among heterogeneity network
US8908871B2 (en) Mobile internet protocol system and method for updating home agent root key
KR100687721B1 (en) Method for extending of diameter AAA protocol supporting mobile IPv6
KR100667699B1 (en) Apparatus and method for dhcp relay in portable internet system and packet ccess router having the apparatus
WG et al. Internet-Draft Kudelski Security Intended status: Informational S. Gundavelli, Ed. Expires: September 14, 2016 Cisco March 13, 2016
Gondi et al. A New Mobility Solution Based On PMIP Using AAA Mobility Extensions in Heterogeneous Networks
KR100657514B1 (en) Inter subnet handover method for dhcp service user in high speed portable internet system

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 07721707

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 07721707

Country of ref document: EP

Kind code of ref document: A1