WO2012022221A1 - Method and system triggering fixed-mobile convergence policy negotiation - Google Patents

Method and system triggering fixed-mobile convergence policy negotiation Download PDF

Info

Publication number
WO2012022221A1
WO2012022221A1 PCT/CN2011/077922 CN2011077922W WO2012022221A1 WO 2012022221 A1 WO2012022221 A1 WO 2012022221A1 CN 2011077922 W CN2011077922 W CN 2011077922W WO 2012022221 A1 WO2012022221 A1 WO 2012022221A1
Authority
WO
WIPO (PCT)
Prior art keywords
session
establishment
pcrf
epdg
network
Prior art date
Application number
PCT/CN2011/077922
Other languages
French (fr)
Chinese (zh)
Inventor
霍玉臻
周晓云
毕以峰
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012022221A1 publication Critical patent/WO2012022221A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W28/00Network traffic management; Network resource management
    • H04W28/16Central resource management; Negotiation of resources or communication parameters, e.g. negotiating bandwidth or QoS [Quality of Service]
    • H04W28/24Negotiating SLA [Service Level Agreement]; Negotiating QoS [Quality of Service]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/14Charging, metering or billing arrangements for data wireline or wireless communications
    • H04L12/1403Architecture for metering, charging or billing
    • H04L12/1407Policy-and-charging control [PCC] architecture
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/55Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP for hybrid networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04MTELEPHONIC COMMUNICATION
    • H04M15/00Arrangements for metering, time-control or time indication ; Metering, charging or billing arrangements for voice wireline or wireless communications, e.g. VoIP
    • H04M15/66Policy and charging system

Definitions

  • the present invention relates to the field of communications, and in particular, to a method and system for triggering a fixed network mobile convergence policy negotiation. Background technique
  • the 3GPP (3rd Generation Partnership Project) evolved packet system (EPS, Evolved Packet System) network architecture in the non-roaming scenario the evolved universal mobile communication system terrestrial radio access network (E-UTRAN, Evolved Universal Terrestrial Radio Access Network), Mobility Management Entity (MME), Serving Gateway (S-GW), Packet Data Network Gateway (P-GW or PDN GW, Packet Data Network) Gateway), Home Subscriber Server (HSS), Policy and Charging Rules Function (PCRF) entity and other supporting nodes.
  • the PCRF is the core of Policy and Charging Control (PCC) and is responsible for policy decision making and charging rules.
  • PCC Policy and Charging Control
  • the PCRF provides network control rules based on service data flows, including traffic data flow detection, Gating Control, Quality of Service (QoS) control, and data flow based charging rules.
  • the PCRF sends its formulated policies and charging rules to the Policy and Charging Enforcement Function (PCEF) for execution.
  • PCEF Policy and Charging Enforcement Function
  • the PCRF formulates the policy and charging rules based on: obtaining information related to the service from the application function (AF, Application Function); obtaining the subscription information with the user policy charging control from the SPR (Spent Profile Repository); Get information about the network associated with the bearer.
  • the PCRF includes a visited PCRF (vPCRF) and a home PCRF (hPCRF). In the roaming scenario, both vPCRF and hPCRF exist. In the non-roaming scenario, only hPCRF can continue to be called PCRF.
  • EPS supports interworking with non-3GPP systems. Interworking with non-3GPP systems is implemented through the S2a/b/c interface, which acts as an anchor between 3GPP and non-3GPP systems.
  • the system architecture diagram of EPS is shown in Figure 1. The non-3GPP system is divided into trusted non-3GPP IP access and untrusted non-3GPP IP access.
  • Trusted non-3GPP IP access can be directly connected to the P-GW through the S2a interface; untrusted non-3GPP IP access requires an evolved packet data gateway (ePDG, Evolved Packet Data Gateway) to be connected to the P-GW, ePDG and P-
  • ePDG evolved packet data gateway
  • IPSec is used to encrypt and protect signaling and data between the user equipment (UE, User Equipment) and the ePDG.
  • S2c provides user plane related control and mobility support between the UE and the P-GW.
  • the supported mobility management protocol is Moblie IPv6 support for dual stack Hosts and Routers (DSMIPv6).
  • S2c is also divided into trusted access and untrusted access, and ePDG is required for untrusted access.
  • BPCF Broadband Policy Control Framework
  • the PCRF needs to interact with the BPCF when performing QoS authorization so that the BPCF performs resource admission control without exceeding the contracted bandwidth or the largest physical agent supported by the line.
  • the BBF fixed network in the non-trusted non-3GPP access network proposes the above-mentioned explicit needs. Seeking, that is: need to guarantee the QoS on the entire transmission path of the data, in order to meet this demand, when the BBF fixed network accesses the mobile core network, it needs to be guaranteed: can trigger between the BBF fixed network and the mobile core network
  • the policy negotiation does not affect the access of other untrusted non-3GPP access networks except the BBF fixed network.
  • FIG. 2 is a structural diagram of a UE accessing a 3GPP core network through a BBF fixed network in the prior art, where the BBF fixed network is accessed as an untrusted non-3GPP access network.
  • the Broadband Access Server (BRAS)/Broadband Network Access Gateway (BNG, Broadband Network Gateway) located in the BBF fixed network will perform 3GPP-based Access authentication, and trigger the BPCF to initiate an S9* session to interact with the PCRF.
  • BRAS Broadband Access Server
  • BNG Broadband Network Gateway
  • the initiation of the S9* session is initiated to trigger the policy negotiation between the BBF fixed network and the mobile network, so that the PCRF can perform policy interworking with the BPCF when the PCRF performs QoS authorization, and the BPCF according to the PCRF resource request, network policy, subscription information, and resources. Resource admission control is performed using usage conditions and the like.
  • the BBF fixed network does not always be aware of UE access, or the BBF fixed network does not support 3GPP-based access authentication.
  • BPCF acts as a network element in the BBF fixed network. It is also impossible to perceive the access of the UE or the 3GPP-based access authentication. In this case, BPCF will not be able to initiate the establishment of an S9* session, and thus cannot trigger policy negotiation between the fixed network and the mobile network.
  • the main purpose of the present invention is to provide a method and system for triggering a fixed network mobile convergence policy negotiation, and in any case, can always guarantee the policy negotiation between the fixed network and the mobile network.
  • a method for triggering a fixed network mobile convergence policy negotiation comprising: an evolved packet data gateway (ePDG) initiating establishment of a Gxb session to a policy and charging rule function (PCRF); the PCRF being established by the Gxb session Triggering, the establishment of the S9* session by the PCRF to the Broadband Policy Control Architecture (BPCF), triggering the policy negotiation between the mobile network and the fixed network; wherein the ePDG is connected to the PCRF, and between the ePDG and the PCRF The interface is a Gxb interface.
  • ePDG evolved packet data gateway
  • PCRF policy and charging rule function
  • BPCF Broadband Policy Control Architecture
  • the method further includes: the user equipment (UE) accesses the 3GPP core network through the untrusted non-3GPP access network, and is authenticated by the ePDG, and/or the 3GPP.
  • the authorized charging server, and/or the 3GPP authentication and authorization charging proxy server determines whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
  • the PCRF includes a vPCRF and an hPCRF
  • the method further includes: ePDG initiates establishment of a Gxb session to the vPCRF or hPCRF, and the vPCRF or hPCRF is triggered by the establishment of the Gxb session, and is initiated by the vPCRF or hPCRF to the BPCF.
  • the establishment of the S9* session triggers the policy negotiation between the mobile network and the fixed network.
  • the PCRF includes an hPCRF
  • the method further includes: ePDG initiating the establishment of a Gxb session to the hPCRF, the hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the establishment of the S9* session to the BPCF, triggering The policy negotiation between the mobile core network and the fixed network.
  • a system for triggering a fixed network mobile convergence policy negotiation includes a policy negotiation triggering unit, configured to initiate a Gxb session establishment to the PCRF by the ePDG, where the PCRF is triggered by the establishment of the Gxb session, by the PCRF Initiating the establishment of an S9* session to the BPCF, triggering policy negotiation between the mobile network and the fixed network;
  • the ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
  • the system further includes a determining unit, configured to initiate the Gxb to the PCRF by the ePDG Before the establishment of the session, the UE accesses the 3GPP core network through the untrusted non-3GPP access network, and is judged by the ePDG, and/or the 3GPP authentication and authorization charging server, and/or the 3GPP authentication and authorization charging proxy server. Whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
  • the policy negotiation triggering unit is further configured to: in a roaming scenario, where the PCRF includes a vPCRF and an hPCRF, the ePDG initiates establishment of a Gxb session to the vPCRF or the hPCRF, where the vPCRF or the hPCRF is established by the Gxb session. Triggering, the vPCRF or hPCRF initiates the establishment of an S9* session to the BPCF, triggering policy negotiation between the mobile network and the fixed network.
  • the policy negotiation triggering unit is further configured to: in a non-roaming scenario, where the PCRF includes an hPCRF, the ePDG initiates establishment of a Gxb session to the hPCRF, and the hPCRF is triggered by the establishment of the Gxb session, by the hPCRF BPCF initiates the establishment of an S9* session, triggering policy negotiation between the mobile core network and the fixed network.
  • the ePDG of the present invention initiates the establishment of a Gxb session to the PCRF; the PCRF is triggered by the establishment of the Gxb session, and the PCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile network and the fixed network; wherein the ePDG is connected to the PCRF, ePDG
  • the interface with the PCRF is the Gxb interface.
  • the UE accesses the 3GPP core network through the BBF fixed network
  • the BBF fixed network senses the access of the UE, or whether the BBF fixed network supports the 3GPP-based access authentication
  • the PCRF initiates the establishment of the S9* session to the BPCF, and the PCRF is not the network element in the BBF fixed network. Therefore, the policy negotiation of the fixed network and the mobile network can be triggered to ensure stable implementation of the QoS control for the UE access. Reliable support. DRAWINGS
  • FIG. 2 is a non-roaming architecture diagram of a BBF fixed network accessing 3GPP when untrusted non-3GPP access in the prior art
  • 3 is a non-roaming architecture diagram of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention
  • 4 is a roaming architecture diagram of a home route of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention
  • FIG. 5 is a schematic diagram of a local grooming roaming architecture of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention
  • FIG. 6 is a flowchart of a policy negotiation between an ePDG and a 3GPP AAA Server/Proxy determining activation and fixed network in an S2b access scenario according to an embodiment of the present invention
  • FIG. 7 is a flowchart of a policy negotiation between a 3GPP AAA Server/Proxy decision activation and a fixed network in an S2b access scenario according to Embodiment 2 of the present invention
  • FIG. 8 is a flowchart of a policy negotiation between an ePDG and a 3GPP AAA Server/Proxy determining activation and fixed network in an S2c access scenario according to Embodiment 3 of the present invention
  • FIG. 9 is a flowchart of a policy negotiation between a 3GPP AAA Server/Proxy decision activation and a fixed network in an S2c access scenario according to Embodiment 4 of the present invention. detailed description
  • ePDG initiates the establishment of a Gxb session to the PCRF; the PCRF is triggered by the establishment of the Gxb session, and the PCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile network and the fixed network; wherein, ePDG and The PCRF is connected, and the interface between the ePDG and the PCRF is a Gxb interface.
  • the prior art is to establish an S9* session by the BPCF. If the BBF fixed network does not always perceive the UE access, or the BBF fixed network does not support the 3GPP-based access authentication, the BPCF acts as a BBF fixed network. The network element in the network cannot, of course, perceive the access of the UE or the 3GPP-based access authentication, so that the BPCF cannot initiate the establishment of the S9* session.
  • the present invention is different from the prior art in that the connection and interface between the ePDG and the PCRF are used. The PCRF initiates the establishment of the S9* session, that is, the PCRF establishes an S9* session to the BPCF.
  • PCRF is not a network element in the BBF fixed network
  • Policy negotiation can be performed between PCRF and BPCF in any case. In other words, it can always guarantee the policy negotiation of the BBF fixed network and the mobile network, thus providing stable and reliable support for the subsequent implementation of QoS control for UE access.
  • the S9* interface in this document refers to an evolved interface form based on the S9 interface; the S9* session refers to: an S9-based evolved session form.
  • the name "S9*" is used to indicate the evolution from S9, but other names that can implement the functions of the present invention are also within the scope of the present invention and will not be described again.
  • a method for triggering a fixed network mobile convergence policy negotiation mainly includes: when a policy negotiation between a mobile core network and a fixed network is triggered (ie, a Gxb session is established), the ePDG initiates establishment of a Gxb session to the PCRF, and the PCRF receives the Gxb session.
  • the establishment of the trigger the establishment of the S9* session by the PCRF, that is, the PCRF establishes an S9* session to the BPCF to trigger the policy negotiation between the BBF fixed network and the mobile network, thereby implementing policy negotiation between the mobile core network and the fixed network.
  • the ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
  • the method further includes: whether the triggering operation needs to be triggered, that is, the UE accesses the 3GPP core network through an untrusted non-3GPP access network, such as a BBF fixed network.
  • the ePDG, and/or the 3GPP AAA server, and/or the 3GPP AAA Proxy determine whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
  • AAA is an abbreviation for authentication and authorization charging
  • 3GPP AAA server refers to 3GPP authentication and authorization accounting server
  • 3GPPAAA Proxy refers to: 3GPP authentication and authorization charging proxy server.
  • both the vPCRF and the hPCRF are present.
  • the PCRF specifically includes: vPCRF and hPCRF; at this time, when the policy of the mobile core network and the fixed network needs to be triggered, the ePDG initiates the Gxb to the vPCRF or the hPCRF.
  • the establishment of the session, the vPCRF or the hPCRF is triggered by the establishment of the Gxb session, and the establishment of the S9* session by the vPCRF or the hPCRF, that is, the vPCRF or the hPCRF establishes an S9* session to the BPCF to trigger the policy negotiation between the BBF fixed network and the mobile network.
  • the vPCRF or the hPCRF establishes an S9* session to the BPCF to trigger the policy negotiation between the BBF fixed network and the mobile network.
  • hPCRF exists, which can be understood as: Specifically, the method includes: hPCRF; at this time, when the policy negotiation of the mobile core network and the fixed network is triggered, the ePDG initiates the establishment of the Gxb session to the hPCRF, and the hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the establishment of the S9* session. That is, the hPCRF establishes an S9* session to the BPCF to trigger
  • BBF fixed network and mobile network policy negotiation so as to achieve strategic negotiation between mobile core network and fixed network.
  • the invention is illustrated by way of example below.
  • the BBF fixed network access is one of untrusted non-3GPP access network access, mainly refers to fixed broadband access, including but not limited to the following access: WLAN access, WiFi access, ADSL Access and so on.
  • FIG. 3 is a non-roaming architecture diagram of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention.
  • the ePDG is connected to the PCRF through the Gxb interface.
  • the ePDG and/or the 3GPP AAA server determine that the policy negotiation with the fixed network needs to be activated, the ePDG establishes a Gxb session with the PCRF.
  • the PCRF is triggered by the Gxb session establishment and establishes an S9* session with the BPCF to implement policy negotiation with the fixed network.
  • FIG. 4 is a schematic diagram of a roaming architecture of a home route of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention.
  • FIG. 5 is a schematic diagram of a local navigation roaming architecture of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention.
  • the ePDG and the vPCRF are connected through the Gxb interface.
  • the ePDG and/or the 3GPPAAA Proxy determine that the policy negotiation with the fixed network needs to be activated
  • the ePDG establishes a Gxb session to the vPCRF.
  • the vPCRF is triggered by the Gxb session establishment, and establishes an S9* session with the BPCF to implement policy negotiation with the fixed network.
  • FIG. 6 is a flowchart of policy negotiation between the ePDG and the 3GPP AAA Server/Proxy to determine activation and fixed network in the S2b access scenario of the present invention. This embodiment is applicable to the case where the fixed network is used as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2b interface.
  • the process of Figure 6 includes the following steps:
  • Step 601 The UE performs the 3GPP-based access authentication by using the BBF fixed network access.
  • the UE when the 3GPP-based access authentication is not performed, the UE only needs to perform the traditional fixed network access authentication. In this scenario, the BBF access network cannot sense that the UE accesses the 3GPP core network.
  • Step 602 After the UE accesses the BBF to access the network, the BBF access network allocates a local IP address to the UE.
  • Step 603 The UE initiates an IKEv2 tunnel establishment process, and uses EAP for authentication.
  • the ePDG interacts with the AAA server through the AAA Proxy (the AAA Server further interacts with the HSS) to complete the Extensible Authentication Protocol (EAP) authentication.
  • EAP Extensible Authentication Protocol
  • Step 603a, step 603b, and step 603c belong to the EAP authentication process.
  • step 603a and step 603c are performed, and step 603b and step 603c are performed in the roaming scenario.
  • Step 603a After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA Server determines whether it needs to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session.
  • the judgment conditions include but are not limited to one or more of the following conditions:
  • the interworking protocol between the fixed network and the 3GPP network including whether the fixed network supports 3GPP and fixed network policy negotiation, whether the fixed network supports policy control, whether the fixed network supports BPCF, whether the fixed network/3GPP allows negotiation with the fixed network policy Etc.), to determine whether to allow activation of the policy negotiation with the fixed network. If the interworking agreement allows, you need to activate the policy negotiation with the fixed network; otherwise, you need to activate the policy negotiation with the fixed network.
  • step 601 determines whether the UE has performed the 3GPP-based access authentication through the BBF AAA Proxy. If step 601 is executed, the BPCF has established an S9* session with the PCRF, that is, the policy negotiation with the fixed network has been activated, and the policy negotiation with the fixed network is not required to be activated; otherwise, the policy negotiation with the fixed network needs to be activated.
  • the 3GPP AAA server determines that it needs to activate policy negotiation with the fixed network.
  • Step 603b After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA Proxy determines whether it is necessary to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session.
  • the judgment condition is the same as the judgment condition described in the step 603a.
  • the 3GPP AAA Proxy determines that policy negotiation with the fixed network needs to be activated.
  • Step 603c when the EAP authentication is completed, the 3GPP AAA Server/Proxy sends a DEA command to the ePDGo.
  • the 3GPP AAA Server sends a DEA command to the ePDG.
  • the 3GPP AAA Server carries the activation and fixed network policy negotiation indication in the DEA command, that is, establishes the Gxb session indication.
  • the 3GPP AAA Server sends a DEA command to the 3GPP AAA Proxy, and the 3GPP AAA Proxy forwards the message to the ePDG.
  • the 3GPP AAA Proxy After receiving the DEA command sent by the 3GPP AAA Server, the 3GPP AAA Proxy carries the activation and fixed network policy negotiation indication in the DEA command according to the judgment result of step 603b, that is, the Gxb session indication is established.
  • the activation and fixed network policy negotiation indication can be implemented by adding an indication field to the DEA message with or without existing fields.
  • the 3GPP AAA Server/Proxy When the 3GPP AAA Server/Proxy carries the activation and fixed network policy negotiation indication in the DEA command, it indicates that the ePDG activation and the fixed network policy negotiation are required. When the indication is not carried, it indicates that the ePDG activation and the fixed network policy negotiation are not required; and vice versa. Alternatively, when the 3GPP AAA Server/Proxy sets the activation and fixed network policy negotiation indication to 1 in the DEA command, it indicates that the ePDG activation and the fixed network policy negotiation are required. When the indication is set to 0, the ePDG activation and the fixed network are not required. Strategy negotiation; vice versa.
  • Step 603d After receiving the DEA command from the 3GPP AAA Proxy/Server, the ePDG determines whether it needs to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session.
  • the judgment conditions include but are not limited to one or more of the following conditions:
  • the 3GPP AAA Proxy/Server indicates whether the ePDG needs to be activated to negotiate with the fixed network policy. If the 3GPP AAA Proxy/Server indicates that it needs to activate the negotiation with the fixed network policy, it needs to activate the policy negotiation with the fixed network; otherwise, it does not need to activate the policy negotiation with the fixed network.
  • the ePDG's own capabilities support negotiation with the fixed network policy (eg, whether it supports the ability to establish Gxb sessions). If the ePDG's own capabilities support negotiation with the fixed network policy, it is necessary to activate the policy negotiation with the fixed network; otherwise, it is not necessary to activate the policy negotiation with the fixed network.
  • the ePDG determines that it needs to activate policy negotiation with the fixed network.
  • Step 604 If the ePDG determines that the policy negotiation with the fixed network needs to be activated according to the judgment result of the step 603d, the ePDG starts the establishment of the Gxb session.
  • the ePDG sends a gateway control session setup message to the vPCRF, where the message carries the user identifier, the PDN identifier, and the IPSec external tunnel information.
  • the IPSec external tunnel information includes the source address and source port of the IKEv2 signaling sent by the ePDG. Since the IKEv2 signaling may be through NAT traversal, the source address and source port received by the ePDG may be different from the source address and source port when the UE sends the packet.
  • Step 605 the vPCRF establishes an S9 session with the hPCRF.
  • Step 606 The vPCRF sends a gateway control session establishment acknowledgement message to the ePDG, where the message carries the QoS rule and the event trigger.
  • the ePDG interacts with the hPCRF directly through the vPCRF.
  • Step 607 After selecting the P-GW, the ePDG sends a proxy binding update message to the P-GW, where the message carries the user identifier and the PDN identifier.
  • Step 608 The P-GW sends an update P-GW IP address message to the AAA Server, and the P-GW is sent.
  • the address is sent to the AAA Server, and the AAA Server further interacts with the HSS to save the address of the P-GW to the HSS.
  • Step 609 The P-GW allocates an IP address to the UE, and initiates an IP-CAN session establishment process to the hPCRF, carrying the user identifier, the PDN identifier, and the IP address.
  • Step 610 The P-GW returns a proxy binding acknowledgement message to the ePDG, and carries an IP address assigned to the UE.
  • Step 611 The proxy binding update is successful, and an IPSec tunnel is established between the UE and the ePDG.
  • step 610 is a corresponding GTP bearer setup message.
  • Step 612 The ePDG sends the last IKEv2 signaling to the UE, and carries the IP address of the UE.
  • Step 613 triggered by the establishment of the Gxb session, the vPCRF/hPCRF establishes an S9* session with the BPCF. Through S9* sessions, vPCRF/hPCRF can negotiate policy with BPCF.
  • the vPCRF determines the BPCF of the BBF access network that the UE currently accesses according to the source IP address in the IPSec external tunnel information received in step 604, and initiates an S9* session establishment process to the BPCF, and carries the source IP in the IPSec external tunnel information. Address and source port number.
  • the BPCF further performs resource admission control according to the access location information of the BBF access network currently accessed by the UE. In a non-roaming scenario, hPCRF interacts with BPCF to establish an S9* session.
  • the establishment of the S9* session can be performed after the Gxb session is established.
  • an IPSec tunnel is established between the UE and the ePDG.
  • a PMIP or GTP tunnel is established between the ePDG and the P-GW.
  • the 3GPP AAA Server/Proxy determines a policy negotiation flowchart for activating and fixing the network.
  • This embodiment is applicable to the case where the fixed network is used as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2b interface.
  • the process of FIG. 7 includes the following steps: Step 701 to Step 702: The same steps 601 to 602.
  • Step 703 The UE initiates an IKEv2 tunnel establishment process, and uses EAP for authentication.
  • the ePDG interacts with the AAA server through the AAA Proxy (the AAA Server further interacts with the HSS) to complete the EAP authentication.
  • Step 703a, step 703b, step 703c, and step 703d belong to the EAP authentication process.
  • step 703a, step 703b, and step 703d are performed, and step 703a, step 703c, and step 703d are performed in the roaming scenario.
  • Step 703a The DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), and the message carries the ePDG capability information, where the information is used to indicate whether the ePDG supports the negotiation with the fixed network policy (for example, whether the Gxb is supported or not) is established. ) to the PCRF.
  • the ePDG sends the DER command to the hPCRF.
  • the ePDG sends the DER command to the vPCRF, and then the vPCRF forwards it to the hPCRF.
  • the vPCRF can delete the ePDG capability information in the command before forwarding the DER command.
  • Step 703b After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA server determines whether it needs to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session.
  • the judgment conditions include but are not limited to one or more of the following conditions:
  • the interworking protocol between the fixed network and the 3GPP network including whether the fixed network supports 3GPP and fixed network policy negotiation, whether the fixed network supports policy control, whether the fixed network supports BPCF, whether the fixed network/3GPP allows negotiation with the fixed network policy Etc.), to determine whether to allow activation of the policy negotiation with the fixed network. If the interworking agreement allows, you need to activate the policy negotiation with the fixed network; otherwise, you need to activate the policy negotiation with the fixed network.
  • step 701 determines whether the UE has performed 3GPP-based access authentication through the BBF AAA Proxy. If 701 is executed, the BPCF has established an S9* session with the PCRF, that is, the policy negotiation with the fixed network has been activated, and the policy association with the fixed network is not required to be activated. Business; otherwise, you need to activate policy negotiation with the fixed network.
  • ePDG capability support negotiation with the fixed network policy (eg, whether it supports the ability to establish Gxb sessions). If the ePDG capability supports negotiation with the fixed network policy, it needs to activate the policy negotiation with the fixed network; otherwise, it does not need to activate the policy negotiation with the fixed network.
  • the 3GPP AAA server determines that it needs to activate policy negotiation with the fixed network.
  • Step 703c After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA Proxy determines whether it is necessary to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session.
  • the judgment condition is the same as the judgment condition described in the step 703b.
  • the 3GPP AAA Proxy determines that policy negotiation with the fixed network needs to be activated.
  • Step 703d when the EAP authentication is completed, the 3GPP AAA Server/Proxy sends a DEA command to the ePDGo.
  • the 3GPP AAA Server sends a DEA command to the ePDG.
  • the 3GPP AAA Server carries the activation and fixed network policy negotiation indication, that is, the Gxb session establishment indication, in the DEA command.
  • the 3GPP AAA Server sends a DEA command to the 3GPP AAA Proxy, and the 3GPP AAA Proxy forwards the message to the ePDG.
  • the 3GPP AAA Proxy After receiving the DEA command sent by the 3GPP AAA Server, the 3GPP AAA Proxy carries the activation and fixed network policy negotiation indication, that is, the Gxb session establishment indication, in the DEA command according to the judgment result of step 703c.
  • the activation and fixed network policy negotiation indication can be implemented by adding an indication field to the DEA message with or without existing fields.
  • the 3GPP AAA Server/Proxy carries the activation and fixed network policy negotiation indication in the DEA command. It indicates that ePDG needs to be activated to negotiate with the fixed network. When the indication is not carried, it indicates that ePDG activation is not required for policy negotiation with the fixed network; vice versa.
  • the 3GPP AAA Server/Proxy sets the activation and fixed network policy negotiation indication to 1 in the DEA command, it indicates that the ePDG activation and the fixed network policy negotiation are required. When the indication is set to 0, the ePDG activation and the fixed network are not required. Strategy negotiation; vice versa.
  • Step 704 After receiving the DEA command from the 3GPP AAA Proxy/Server, the ePDG needs to activate the policy negotiation with the fixed network if the 3GPP AAA Proxy/Server indicates that the activation and the fixed network policy negotiation is required, and the ePDG starts the establishment of the Gxb session.
  • the ePDG sends a gateway control session setup message to the V-PCRF, where the message carries the user identifier, the PDN identifier, and the IPSec external tunnel information.
  • the IPSec external tunnel information includes the source address and source port of the IKEv2 signaling sent by the ePDG. Since the IKEv2 signaling may be through NAT traversal, the source address and source port received by the ePDG may be different from the source address and source port when the UE sends the packet.
  • Step 705 to step 713 are the same as steps 605 to 613.
  • FIG. 8 is a flowchart of policy negotiation between the ePDG and the 3GPP AAA Server/Proxy to determine activation and fixed network in the S2c access scenario of the present invention. This embodiment is applicable to a fixed network as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2c interface.
  • the process of Figure 8 includes the following steps:
  • Step 801 to step 806 The same step 601 to step 606.
  • Step 807 ⁇ Step 808 is the same as: Step 611 ⁇ Step 612.
  • the UE performs a Bootstraping process.
  • the UE performs a DNS lookup according to the APN to obtain an IP address of the P-GW to which the PDN is to be accessed.
  • the UE uses IKEv2 to establish a security association and uses EAP for authentication.
  • the P-GW communicates with the AAA Server (the AAA Server further interacts with the HSS) to complete the EAP authentication, and the P-GW allocates an IPv6 address or prefix to the UE as the home address HoA of the UE.
  • Step 810 The UE sends a DSMIPv6 binding update message to the P-GW, where the message carries CoA and HoA. The lifetime parameter in the binding message is not zero.
  • the P-GW establishes a binding context.
  • Step 811 The PCEF in the P-GW initiates an IP-CAN session establishment process to the H-PCRF, and carries the user identifier and the PDN identifier.
  • Step 812 The P-GW sends an update P-GW IP address message to the AAA Server, and sends the P-GW address to the AAA server.
  • the AAA Server further interacts with the HSS to save the address of the P-GW to the HSS.
  • Step 813 The P-GW returns a binding acknowledgement message to the UE.
  • Step 814 triggered by the establishment of the Gxb session, the vPCRF/hPCRF establishes an S9* session with the BPCF.
  • vPCRF/hPCRF can negotiate policy with BPCF.
  • the vPCRF determines the BPCF of the BBF access network that the UE currently accesses according to the source IP address in the IPSec external tunnel information received in step 604, and initiates an S9* session establishment process to the BPCF, and carries the source IP in the IPSec external tunnel information. Address and source port number.
  • the BPCF further performs resource admission control according to the access location information of the BBF access network currently accessed by the UE.
  • hPCRF also known as PCRF
  • BPCF interacts with BPCF to establish an S9* session.
  • the establishment of the S9* session can be performed after the Gxb session is established.
  • an IPSec tunnel is established between the UE and the ePDG, and a DSMIP tunnel is established between the UE and the P-GW.
  • the 3GPP AAA Server/Proxy determines a policy negotiation flowchart for activating the fixed network.
  • This embodiment is applicable to a fixed network as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2c interface.
  • the flow of FIG. 9 includes the following processes: Step 901 to Step 906: Same steps 701 to 706.
  • Step 907 to step 908 the same step 711 to step 712.
  • Step 909 to step 914 Same as step 809 to step 814.
  • ePDG can obtain the interworking protocol between fixed network and 3GPP network (including whether fixed network supports 3GPP and fixed network policy negotiation, whether fixed network supports policy control, whether fixed network supports BPCF, whether fixed network/3GPP allows and fixed network strategy
  • 3GPP AAA server/Proxy When negotiating, etc., whether the decision to activate the policy negotiation with the fixed network is required does not require the participation of the 3GPP AAA server/Proxy, and is directly determined by the ePDG in the EAP authentication process in the IPsec tunnel establishment process according to the judgment condition in step 703b.
  • the subsequent steps of the ePDG are the same as other embodiments of the invention.
  • a system for triggering a fixed network mobile convergence policy negotiation includes a policy negotiation triggering unit, and the policy negotiation triggering unit is configured to initiate a Gxb session establishment by the ePDG to the PCRF, where the PCRF is triggered by the establishment of the Gxb session, The PCRF initiates the establishment of the S9* session to the BPCF, and triggers the policy negotiation between the mobile network and the fixed network.
  • the ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
  • the system further includes a judging unit, configured by the ePDG, and/or the 3GPP in the case that the UE accesses the 3GPP core network through the untrusted non-3GPP access network before the ePDG initiates the establishment of the Gxb session to the PCRF.
  • the rights authorization charging server, and/or the 3GPP authentication authorization charging proxy server determine whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
  • the policy negotiation triggering unit is further configured to: in the case of the roaming scenario, where the PCRF specifically includes the vPCRF and the hPCRF, the ePDG initiates the establishment of the Gxb session to the vPCRF or the hPCRF, and the vPCRF or the hPCRF is triggered by the establishment of the Gxb session, The vPCRF or hPCRF initiates the establishment of an S9* session to the BPCF, triggering policy negotiation between the mobile network and the fixed network.
  • the policy negotiation triggering unit is further configured to: in the case of the non-roaming scenario, where the PCRF specifically includes the hPCRF, the ePDG initiates the establishment of the Gxb session to the hPCRF, the hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the S9* to the BPCF.
  • the establishment of the session triggers the policy negotiation between the mobile core network and the fixed network.

Abstract

Disclosed is a method to trigger a fixed-mobile convergence policy negotiation. The method comprises: an Evolved Pocket Data Gateway initiating the establishment of a Gxb session with a Policy And Charging Rules Function (PCRF), the PCRF is triggered by the establishment of the Gxb session, the PCRF initiating the establishment of a S9* session with Broadband Policy Control Framework (BPCF), triggering a policy negotiation between a mobile network and a fixed network. Also disclosed is a system of triggering a fixed-mobile convergence policy negotiation session, wherein the policy negotiation triggering unit establishes the Gxb session initiated by the ePDG with the PCRF. When the PCRF is triggered by the establishment of the Gxb session, the PCRF initiates the establishment of the S9* session, triggering the policy negotiation between the mobile network and the fix network. The method and system of the present invention can ensure the triggering of the policy negotiation between the fixed network and the mobile network in any situation.

Description

一种触发固网移动融合策略协商的方法及系统 技术领域  Method and system for triggering fixed network mobile convergence strategy negotiation
本发明涉及通信领域, 尤其涉及一种触发固网移动融合策略协商的方 法及系统。 背景技术  The present invention relates to the field of communications, and in particular, to a method and system for triggering a fixed network mobile convergence policy negotiation. Background technique
如图 1所示,非漫游场景下第三代合作伙伴计划(3GPP, 3rd Generation Partnership Project )演进的分组系统( EPS , Evolved Packet System )网络架 构, 由演进的通用移动通信系统陆地无线接入网 (E-UTRAN , Evolved Universal Terrestrial Radio Access Network )、移动管理单元 ( MME, Mobility Management Entity )、 服务网关 (S-GW, Serving Gateway ), 分组数据网络 网关( P-GW或 PDN GW, Packet Data Network Gateway )、 归属用户服务器 ( HSS , Home Subscriber Server )、 策略和计费规则功能( PCRF, Policy and Charging Rules Function )实体及其他支撑节点组成。 PCRF是策略和计费控 制 (PCC, Policy and Charging Control ) 的核心, 负责策略决策和计费规则 的制定。 PCRF提供了基于业务数据流的网络控制规则, 这些网络控制包括 业务数据流的检测、 门控 (Gating Control ), 服务质量 (QoS , Quality of Service )控制以及基于数据流的计费规则等。 PCRF将其制定的策略和计费 规则发送给策略和计费执行功能(PCEF )执行, 同时, PCRF还需要保证 这些规则和用户的签约信息一致。 PCRF制定策略和计费规则的依据包括: 从应用功能( AF, Application Function )获取与业务相关的信息; 从用户签 约数据库( SPR, Subscription Profile Repository )获取与用户策略计费控制 签约信息; 从 PCEF获取与承载相关网络的信息。 PCRF 包括拜访 PCRF ( vPCRF )和归属 PCRF ( hPCRF ), 漫游场景下, vPCRF和 hPCRF均存在, 非漫游场景下 , 只有 hPCRF, 此时也可以继续称为 PCRF。 As shown in Figure 1, the 3GPP (3rd Generation Partnership Project) evolved packet system (EPS, Evolved Packet System) network architecture in the non-roaming scenario, the evolved universal mobile communication system terrestrial radio access network (E-UTRAN, Evolved Universal Terrestrial Radio Access Network), Mobility Management Entity (MME), Serving Gateway (S-GW), Packet Data Network Gateway (P-GW or PDN GW, Packet Data Network) Gateway), Home Subscriber Server (HSS), Policy and Charging Rules Function (PCRF) entity and other supporting nodes. The PCRF is the core of Policy and Charging Control (PCC) and is responsible for policy decision making and charging rules. The PCRF provides network control rules based on service data flows, including traffic data flow detection, Gating Control, Quality of Service (QoS) control, and data flow based charging rules. The PCRF sends its formulated policies and charging rules to the Policy and Charging Enforcement Function (PCEF) for execution. At the same time, the PCRF also needs to ensure that these rules are consistent with the user's subscription information. The PCRF formulates the policy and charging rules based on: obtaining information related to the service from the application function (AF, Application Function); obtaining the subscription information with the user policy charging control from the SPR (Spent Profile Repository); Get information about the network associated with the bearer. The PCRF includes a visited PCRF (vPCRF) and a home PCRF (hPCRF). In the roaming scenario, both vPCRF and hPCRF exist. In the non-roaming scenario, only hPCRF can continue to be called PCRF.
EPS支持与非 3GPP系统的互通。 与非 3GPP系统的互通通过 S2a/b/c 接口实现, P-GW作为 3GPP与非 3GPP系统间的锚点。 EPS的系统架构图 如图 1所示。其中非 3GPP系统被分为可信任非 3GPP IP接入和不可信任非 3GPP IP接入。 可信任非 3GPP IP接入可直接通过 S2a接口与 P-GW连接; 不可信任非 3GPP IP接入需经过演进的分组数据网关( ePDG, Evolved Packet Data Gateway ) 与 P-GW相连, ePDG与 P-GW间的接口为 S2b, 并且用户 设备(UE, User Equipment )与 ePDG之间采用 IPSec对信令和数据进行加 密保护。 S2c提供了 UE与 P-GW之间的用户面相关的控制和移动性支持, 其支持的移动性管理协议为支持双栈的移动 IPv6 ( DSMIPv6, Moblie IPv6 support for dual stack Hosts and Routers )。 S2c也被分为可信任接入和不可信 任接入, 不可信任接入时需要经过 ePDG。  EPS supports interworking with non-3GPP systems. Interworking with non-3GPP systems is implemented through the S2a/b/c interface, which acts as an anchor between 3GPP and non-3GPP systems. The system architecture diagram of EPS is shown in Figure 1. The non-3GPP system is divided into trusted non-3GPP IP access and untrusted non-3GPP IP access. Trusted non-3GPP IP access can be directly connected to the P-GW through the S2a interface; untrusted non-3GPP IP access requires an evolved packet data gateway (ePDG, Evolved Packet Data Gateway) to be connected to the P-GW, ePDG and P- The interface between the GWs is S2b, and IPSec is used to encrypt and protect signaling and data between the user equipment (UE, User Equipment) and the ePDG. S2c provides user plane related control and mobility support between the UE and the P-GW. The supported mobility management protocol is Moblie IPv6 support for dual stack Hosts and Routers (DSMIPv6). S2c is also divided into trusted access and untrusted access, and ePDG is required for untrusted access.
目前很多运营商关注固网移动融合( FMC, Fixed Mobile Convergence ), 并针对 3GPP和宽带论坛(BBF, Broadband Forum )互连互通进行研究。 对于用户通过 BBF固网接入移动核心网的场景, 需要对数据的整个传输路 径(数据会经过固网和移动网传输)上的 QoS进行保证, 现有技术中, 是 通过 PCRF与 BBF固网中的宽带策略控制架构 (BPCF, Broadband Policy Control Framework 宽带策略控制架构)进行协商, 以实现 QoS保障。 BPCF 作为 BBF固网中的网元,对 PCRF的资源请求消息 ,根据 BBF固网接入的 网络策略、签约信息等进行资源接纳控制。 例如: 当 UE通过无线局域网络 ( WLAN, Wireless Local Area Networks )接入 3GPP核心网时, 为了保证 通过一个 WLAN接入线路接入的所有 UE访问业务的总带宽需求不超过该 线路的带宽, 例如不超过签约带宽或该线路支持的最大物理代理, PCRF在 进行 QoS授权时需要与 BPCF交互, 以便 BPCF执行资源接纳控制。  At present, many operators pay attention to Fixed Mobile Convergence (FMC) and conduct research on interconnection and interoperability between 3GPP and Broadband Forum (BBF). For the scenario where the user accesses the mobile core network through the BBF fixed network, the QoS of the entire data transmission path (data will be transmitted through the fixed network and the mobile network) is required. In the prior art, the PCRF and the BBF fixed network are used. The Broadband Policy Control Architecture (BPCF, Broadband Policy Control Framework) negotiates to implement QoS guarantees. As a network element in the BBF fixed network, BPCF performs resource admission control on the resource request message of the PCRF according to the network policy and subscription information of the BBF fixed network access. For example, when the UE accesses the 3GPP core network through a wireless local area network (WLAN), the total bandwidth requirement of all UEs accessing the service through a WLAN access line does not exceed the bandwidth of the line, for example, The PCRF needs to interact with the BPCF when performing QoS authorization so that the BPCF performs resource admission control without exceeding the contracted bandwidth or the largest physical agent supported by the line.
目前不可信任的非 3GPP接入网中只有 BBF固网提出了上述明确的需 求, 即为: 需要对数据的整个传输路径上的 QoS进行保证, 为了满足该需 求, 当 BBF固网接入移动核心网时, 需要保证的是: 能够触发 BBF固网与 移动核心网之间的策略协商, 同时不影响除 BBF固网之外其它不可信任的 非 3GPP接入网的接入。 At present, only the BBF fixed network in the non-trusted non-3GPP access network proposes the above-mentioned explicit needs. Seeking, that is: need to guarantee the QoS on the entire transmission path of the data, in order to meet this demand, when the BBF fixed network accesses the mobile core network, it needs to be guaranteed: can trigger between the BBF fixed network and the mobile core network The policy negotiation does not affect the access of other untrusted non-3GPP access networks except the BBF fixed network.
图 2为现有技术中, UE通过 BBF固网接入 3GPP核心网的架构图,其 中 BBF固网作为不可信任的非 3GPP接入网接入。在图 2的架构中, 当 UE 接入 BBF固网后, 位于 BBF固网内的宽带接入服务器( BRAS, Broadband Remote Access Server ) /广播网络网关 ( BNG, Broadband Network Gateway ) 将执行基于 3GPP的接入认证, 同时触发 BPCF主动发起 S9*会话与 PCRF 进行交互。 这里, 发起 S9*会话的建立是为了触发 BBF固网与移动网的策 略协商,从而当 PCRF进行 QoS授权时 PCRF能够与 BPCF进行策略互通, BPCF根据 PCRF的资源请求、 网络策略、 签约信息、 资源使用情况等执行 资源接纳控制。  2 is a structural diagram of a UE accessing a 3GPP core network through a BBF fixed network in the prior art, where the BBF fixed network is accessed as an untrusted non-3GPP access network. In the architecture of Figure 2, when the UE accesses the BBF fixed network, the Broadband Access Server (BRAS)/Broadband Network Access Gateway (BNG, Broadband Network Gateway) located in the BBF fixed network will perform 3GPP-based Access authentication, and trigger the BPCF to initiate an S9* session to interact with the PCRF. Here, the initiation of the S9* session is initiated to trigger the policy negotiation between the BBF fixed network and the mobile network, so that the PCRF can perform policy interworking with the BPCF when the PCRF performs QoS authorization, and the BPCF according to the PCRF resource request, network policy, subscription information, and resources. Resource admission control is performed using usage conditions and the like.
然而,在某些场景中, BBF固网并不总能感知到 UE的接入、或者 BBF 固网不支持基于 3GPP的接入认证, 如此一来, BPCF作为 BBF固网中的 网元,当然也无法感知到 UE的接入、或者无法支持基于 3GPP的接入认证。 在这种情况下, BPCF将不能主动发起 S9*会话的建立, 从而不能触发固网 与移动网的策略协商。 由此可见: 采用现有技术, 并不总能保证触发固网 与移动网之间的策略协商,无法为后续基于策略协商实现对 UE接入的 QoS 控制提供稳定的、可靠的支持,从而导致后续基于策略协商实现对 UE接入 的 QoS控制充满了不确定性。 发明内容  However, in some scenarios, the BBF fixed network does not always be aware of UE access, or the BBF fixed network does not support 3GPP-based access authentication. As a result, BPCF acts as a network element in the BBF fixed network. It is also impossible to perceive the access of the UE or the 3GPP-based access authentication. In this case, BPCF will not be able to initiate the establishment of an S9* session, and thus cannot trigger policy negotiation between the fixed network and the mobile network. It can be seen that: With the prior art, it is not always guaranteed to trigger policy negotiation between the fixed network and the mobile network, and it is unable to provide stable and reliable support for subsequent QoS control of UE access based on policy negotiation, thereby resulting in Subsequent policy-based negotiation to achieve QoS control for UE access is full of uncertainty. Summary of the invention
有鉴于此, 本发明的主要目的在于提供一种触发固网移动融合策略协 商的方法及系统, 在任何情况下都总能保证触发固网与移动网之间的策略 协商。 为达到上述目的, 本发明的技术方案是这样实现的: 一种触发固网移动融合策略协商的方法, 该方法包括: 演进的分组数 据网关 (ePDG ) 向策略和计费规则功能(PCRF )发起 Gxb会话的建立; 所述 PCRF受到所述 Gxb会话的建立的触发, 由 PCRF向宽带策略控制架 构 (BPCF )发起 S9*会话的建立, 触发移动网与固网的策略协商; 其中, 所述 ePDG与所述 PCRF相连,所述 ePDG与所述 PCRF之间的接口为 Gxb接口。 In view of this, the main purpose of the present invention is to provide a method and system for triggering a fixed network mobile convergence policy negotiation, and in any case, can always guarantee the policy negotiation between the fixed network and the mobile network. In order to achieve the above object, the technical solution of the present invention is achieved as follows: A method for triggering a fixed network mobile convergence policy negotiation, the method comprising: an evolved packet data gateway (ePDG) initiating establishment of a Gxb session to a policy and charging rule function (PCRF); the PCRF being established by the Gxb session Triggering, the establishment of the S9* session by the PCRF to the Broadband Policy Control Architecture (BPCF), triggering the policy negotiation between the mobile network and the fixed network; wherein the ePDG is connected to the PCRF, and between the ePDG and the PCRF The interface is a Gxb interface.
其中, 所述 ePDG向所述 PCRF发起 Gxb会话的建立之前, 该方法还 包括: 用户设备 ( UE )通过不可信任的非 3GPP接入网接入 3GPP核心网, 由 ePDG、 和 /或 3GPP鉴权授权计费服务器、 和 /或 3GPP鉴权授权计费代 理服务器判断是否需要触发移动核心网与固网的策略协商。  Before the ePDG initiates the establishment of the Gxb session to the PCRF, the method further includes: the user equipment (UE) accesses the 3GPP core network through the untrusted non-3GPP access network, and is authenticated by the ePDG, and/or the 3GPP. The authorized charging server, and/or the 3GPP authentication and authorization charging proxy server determines whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
其中,漫游场景下,所述 PCRF包括 vPCRF和 hPCRF,该方法还包括: ePDG向 vPCRF或 hPCRF发起 Gxb会话的建立, vPCRF或 hPCRF受到所 述 Gxb会话的建立的触发,由 vPCRF或 hPCRF向 BPCF发起 S9*会话的建 立, 触发移动网与固网的策略协商。  In the roaming scenario, the PCRF includes a vPCRF and an hPCRF, and the method further includes: ePDG initiates establishment of a Gxb session to the vPCRF or hPCRF, and the vPCRF or hPCRF is triggered by the establishment of the Gxb session, and is initiated by the vPCRF or hPCRF to the BPCF. The establishment of the S9* session triggers the policy negotiation between the mobile network and the fixed network.
其中, 非漫游场景下, 所述 PCRF包括 hPCRF, 该方法还包括: ePDG 向 hPCRF发起 Gxb会话的建立, hPCRF受到所述 Gxb会话的建立的触发, 由 hPCRF向 BPCF发起 S9*会话的建立, 触发移动核心网与固网的策略协 商。  In the non-roaming scenario, the PCRF includes an hPCRF, and the method further includes: ePDG initiating the establishment of a Gxb session to the hPCRF, the hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the establishment of the S9* session to the BPCF, triggering The policy negotiation between the mobile core network and the fixed network.
一种触发固网移动融合策略协商的系统, 该系统包括策略协商触发单 元,用于在 ePDG向 PCRF发起 Gxb会话的建立,所述 PCRF受到所述 Gxb 会话的建立的触发的情况下, 由 PCRF向 BPCF发起 S9*会话的建立, 触发 移动网与固网的策略协商; 其中,  A system for triggering a fixed network mobile convergence policy negotiation, the system includes a policy negotiation triggering unit, configured to initiate a Gxb session establishment to the PCRF by the ePDG, where the PCRF is triggered by the establishment of the Gxb session, by the PCRF Initiating the establishment of an S9* session to the BPCF, triggering policy negotiation between the mobile network and the fixed network;
所述 ePDG与所述 PCRF相连,所述 ePDG与所述 PCRF之间的接口为 Gxb接口。  The ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
其中,该系统还包括判断单元,用于所述 ePDG向所述 PCRF发起 Gxb 会话的建立之前, UE通过不可信任的非 3GPP接入网接入 3GPP核心网的 情况下, 由 ePDG、 和 /或 3GPP鉴权授权计费服务器、 和 /或 3GPP鉴权授 权计费代理服务器判断是否需要触发移动核心网与固网的策略协商。 The system further includes a determining unit, configured to initiate the Gxb to the PCRF by the ePDG Before the establishment of the session, the UE accesses the 3GPP core network through the untrusted non-3GPP access network, and is judged by the ePDG, and/or the 3GPP authentication and authorization charging server, and/or the 3GPP authentication and authorization charging proxy server. Whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
其中, 所述策略协商触发单元, 进一步用于在漫游场景下, 所述 PCRF 包括 vPCRF和 hPCRF的情况下, ePDG向 vPCRF或 hPCRF发起 Gxb会话 的建立, vPCRF或 hPCRF受到所述 Gxb会话的建立的触发, 由 vPCRF或 hPCRF向 BPCF发起 S9*会话的建立, 触发移动网与固网的策略协商。  The policy negotiation triggering unit is further configured to: in a roaming scenario, where the PCRF includes a vPCRF and an hPCRF, the ePDG initiates establishment of a Gxb session to the vPCRF or the hPCRF, where the vPCRF or the hPCRF is established by the Gxb session. Triggering, the vPCRF or hPCRF initiates the establishment of an S9* session to the BPCF, triggering policy negotiation between the mobile network and the fixed network.
其中,所述策略协商触发单元,进一步用于在非漫游场景下,所述 PCRF 包括 hPCRF的情况下, ePDG向 hPCRF发起 Gxb会话的建立, hPCRF受 到所述 Gxb会话的建立的触发, 由 hPCRF向 BPCF发起 S9*会话的建立, 触发移动核心网与固网的策略协商。  The policy negotiation triggering unit is further configured to: in a non-roaming scenario, where the PCRF includes an hPCRF, the ePDG initiates establishment of a Gxb session to the hPCRF, and the hPCRF is triggered by the establishment of the Gxb session, by the hPCRF BPCF initiates the establishment of an S9* session, triggering policy negotiation between the mobile core network and the fixed network.
本发明的 ePDG向 PCRF发起 Gxb会话的建立; PCRF受到 Gxb会话 的建立的触发, 由 PCRF向 BPCF发起 S9*会话的建立, 触发移动网与固网 的策略协商;其中, ePDG与 PCRF相连, ePDG与 PCRF之间的接口为 Gxb 接口。  The ePDG of the present invention initiates the establishment of a Gxb session to the PCRF; the PCRF is triggered by the establishment of the Gxb session, and the PCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile network and the fixed network; wherein the ePDG is connected to the PCRF, ePDG The interface with the PCRF is the Gxb interface.
采用本发明, 当 UE通过 BBF固网接入 3GPP核心网时, 在任何情况 下, 例如无论 BBF固网是否感知到 UE的接入、 或者 BBF固网是否支持基 于 3GPP的接入认证,由于是由 PCRF向 BPCF发起 S9*会话的建立,且 PCRF 不是 BBF固网中的网元, 因此总能保证触发固网与移动网的策略协商, 为 后续实现对 UE接入的 QoS控制提供稳定的、 可靠的支持。 附图说明  With the present invention, when the UE accesses the 3GPP core network through the BBF fixed network, in any case, for example, whether the BBF fixed network senses the access of the UE, or whether the BBF fixed network supports the 3GPP-based access authentication, The PCRF initiates the establishment of the S9* session to the BPCF, and the PCRF is not the network element in the BBF fixed network. Therefore, the policy negotiation of the fixed network and the mobile network can be triggered to ensure stable implementation of the QoS control for the UE access. Reliable support. DRAWINGS
图 1为现有技术中非漫游场景下的 EPS架构图;  1 is an EPS architecture diagram in a non-roaming scenario in the prior art;
图 2为现有技术中 BBF固网作为不可信任非 3GPP接入时接入 3GPP 的非漫游架构图;  2 is a non-roaming architecture diagram of a BBF fixed network accessing 3GPP when untrusted non-3GPP access in the prior art;
图 3为本发明的 UE通过 BBF固网接入 3GPP核心网的非漫游架构图; 图 4为本发明的 UE通过 BBF固网接入 3GPP核心网的家乡路由的漫 游架构图; 3 is a non-roaming architecture diagram of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention; 4 is a roaming architecture diagram of a home route of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention;
图 5为本发明的 UE通过 BBF固网接入 3GPP核心网的本地疏导漫游 架构图;  5 is a schematic diagram of a local grooming roaming architecture of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention;
图 6 为本发明方法实施例一 S2b接入场景下 ePDG 和 3GPP AAA Server/Proxy决定激活与固网的策略协商流程图;  FIG. 6 is a flowchart of a policy negotiation between an ePDG and a 3GPP AAA Server/Proxy determining activation and fixed network in an S2b access scenario according to an embodiment of the present invention;
图 7为本发明方法实施例二 S2b接入场景下 3GPP AAA Server/Proxy决 定激活与固网的策略协商流程图;  7 is a flowchart of a policy negotiation between a 3GPP AAA Server/Proxy decision activation and a fixed network in an S2b access scenario according to Embodiment 2 of the present invention;
图 8 为本发明方法实施例三 S2c接入场景下 ePDG 和 3GPP AAA Server/Proxy决定激活与固网的策略协商流程图;  FIG. 8 is a flowchart of a policy negotiation between an ePDG and a 3GPP AAA Server/Proxy determining activation and fixed network in an S2c access scenario according to Embodiment 3 of the present invention;
图 9为本发明方法实施例四 S2c接入场景下 3GPP AAA Server/Proxy决 定激活与固网的策略协商流程图。 具体实施方式  FIG. 9 is a flowchart of a policy negotiation between a 3GPP AAA Server/Proxy decision activation and a fixed network in an S2c access scenario according to Embodiment 4 of the present invention. detailed description
本发明的基本思想是: ePDG向 PCRF发起 Gxb会话的建立; PCRF受 到 Gxb会话的建立的触发, 由 PCRF向 BPCF发起 S9*会话的建立, 触发 移动网与固网的策略协商; 其中, ePDG与 PCRF相连, ePDG与 PCRF之 间的接口为 Gxb接口。  The basic idea of the present invention is: ePDG initiates the establishment of a Gxb session to the PCRF; the PCRF is triggered by the establishment of the Gxb session, and the PCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile network and the fixed network; wherein, ePDG and The PCRF is connected, and the interface between the ePDG and the PCRF is a Gxb interface.
下面结合附图对技术方案的实施作进一步的详细描述。  The implementation of the technical solution will be further described in detail below with reference to the accompanying drawings.
现有技术是由 BPCF发起 S9*会话的建立, 如果 BBF固网并不总能感 知到 UE的接入、 或者 BBF固网不支持基于 3GPP的接入认证, 如此一来, BPCF作为 BBF固网中的网元, 当然也无法感知到 UE的接入、 或者无法 支持基于 3GPP的接入认证, 从而 BPCF将不能主动发起 S9*会话的建立。 本发明区别于现有技术使用 ePDG与 PCRF之间的连接和接口, 由 PCRF 发起 S9*会话的建立, 即 PCRF向 BPCF建立 S9*会话, 由于 PCRF并不是 BBF固网中的网元,因此, PCRF与 BPCF间任何情况下都能进行策略协商, 也就是说, 总能保证触发 BBF固网与移动网的策略协商, 从而为后续实现 对 UE接入的 QoS控制提供稳定的、 可靠的支持。 The prior art is to establish an S9* session by the BPCF. If the BBF fixed network does not always perceive the UE access, or the BBF fixed network does not support the 3GPP-based access authentication, the BPCF acts as a BBF fixed network. The network element in the network cannot, of course, perceive the access of the UE or the 3GPP-based access authentication, so that the BPCF cannot initiate the establishment of the S9* session. The present invention is different from the prior art in that the connection and interface between the ePDG and the PCRF are used. The PCRF initiates the establishment of the S9* session, that is, the PCRF establishes an S9* session to the BPCF. Since the PCRF is not a network element in the BBF fixed network, Policy negotiation can be performed between PCRF and BPCF in any case. In other words, it can always guarantee the policy negotiation of the BBF fixed network and the mobile network, thus providing stable and reliable support for the subsequent implementation of QoS control for UE access.
这里需要指出的是, 本文的所述 S9*接口指基于 S9接口的演进接口形 式; 所述 S9*会话指: 基于 S9的演进会话形式。 本文暂且用 "S9*" 这一 名称表示区别于 S9的演进, 但是能实现本发明功能的其他名称也都在本发 明的保护范围内, 不作赘述。  It should be noted here that the S9* interface in this document refers to an evolved interface form based on the S9 interface; the S9* session refers to: an S9-based evolved session form. For the time being, the name "S9*" is used to indicate the evolution from S9, but other names that can implement the functions of the present invention are also within the scope of the present invention and will not be described again.
一种触发固网移动融合策略协商的方法, 该方法主要包括: 需触发移 动核心网与固网的策略协商 (即 Gxb会话建立 ) 时, ePDG向 PCRF发起 Gxb会话的建立, PCRF受到该 Gxb会话的建立的触发, 由 PCRF发起 S9* 会话的建立, 即 PCRF向 BPCF建立 S9*会话, 以触发 BBF固网与移动网 的策略协商, 从而实现移动核心网与固网的策略协商。 所述 ePDG与所述 PCRF相连, 所述 ePDG与所述 PCRF之间的接口为 Gxb接口。  A method for triggering a fixed network mobile convergence policy negotiation, the method mainly includes: when a policy negotiation between a mobile core network and a fixed network is triggered (ie, a Gxb session is established), the ePDG initiates establishment of a Gxb session to the PCRF, and the PCRF receives the Gxb session. The establishment of the trigger, the establishment of the S9* session by the PCRF, that is, the PCRF establishes an S9* session to the BPCF to trigger the policy negotiation between the BBF fixed network and the mobile network, thereby implementing policy negotiation between the mobile core network and the fixed network. The ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
进一步的, 触发移动核心网与固网的策略协商之前, 该方法还包括是 否需要触发的判断操作, 即为: UE通过不可信任的非 3GPP接入网, 比如 BBF固网接入 3GPP核心网时, ePDG、和 /或 3GPPAAA server,和 /或 3GPP AAA Proxy判断是否需要触发移动核心网与固网的策略协商。  Further, before the policy of the mobile core network and the fixed network is negotiated, the method further includes: whether the triggering operation needs to be triggered, that is, the UE accesses the 3GPP core network through an untrusted non-3GPP access network, such as a BBF fixed network. The ePDG, and/or the 3GPP AAA server, and/or the 3GPP AAA Proxy determine whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
其中, AAA是鉴权授权计费的缩写, 3GPP AAA server指 3GPP鉴权授 权计费服务器; 3GPPAAA Proxy指: 3GPP鉴权授权计费代理服务器。  AAA is an abbreviation for authentication and authorization charging, 3GPP AAA server refers to 3GPP authentication and authorization accounting server, and 3GPPAAA Proxy refers to: 3GPP authentication and authorization charging proxy server.
进一步的, 漫游场景下, vPCRF和 hPCRF 均存在, 可以理解为所述 PCRF具体包括: vPCRF和 hPCRF; 此时, 需触发移动核心网与固网的策 略协商时包括: ePDG向 vPCRF或 hPCRF发起 Gxb会话的建立, vPCRF 或 hPCRF受到该 Gxb会话的建立的触发, 由 vPCRF或 hPCRF发起 S9*会 话的建立, 即 vPCRF或 hPCRF向 BPCF建立 S9*会话, 以触发 BBF固网 与移动网的策略协商, 从而实现移动核心网与固网的策略协商。  Further, in the roaming scenario, both the vPCRF and the hPCRF are present. It can be understood that the PCRF specifically includes: vPCRF and hPCRF; at this time, when the policy of the mobile core network and the fixed network needs to be triggered, the ePDG initiates the Gxb to the vPCRF or the hPCRF. The establishment of the session, the vPCRF or the hPCRF is triggered by the establishment of the Gxb session, and the establishment of the S9* session by the vPCRF or the hPCRF, that is, the vPCRF or the hPCRF establishes an S9* session to the BPCF to trigger the policy negotiation between the BBF fixed network and the mobile network. Thereby achieving strategic negotiation between the mobile core network and the fixed network.
进一步的, 非漫游场景下, 只有 hPCRF存在, 可以理解为: 所述 PCRF 具体包括: hPCRF;此时,需触发移动核心网与固网的策略协商时包括: ePDG 向 hPCRF发起 Gxb会话的建立, hPCRF受到该 Gxb会话的建立的触发, 由 hPCRF发起 S9*会话的建立, 即 hPCRF向 BPCF建立 S9*会话, 以触发Further, in the non-roaming scenario, only hPCRF exists, which can be understood as: Specifically, the method includes: hPCRF; at this time, when the policy negotiation of the mobile core network and the fixed network is triggered, the ePDG initiates the establishment of the Gxb session to the hPCRF, and the hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the establishment of the S9* session. That is, the hPCRF establishes an S9* session to the BPCF to trigger
BBF固网与移动网的策略协商, 从而实现移动核心网与固网的策略协商。 BBF fixed network and mobile network policy negotiation, so as to achieve strategic negotiation between mobile core network and fixed network.
以下对本发明进行举例阐述。  The invention is illustrated by way of example below.
本发明中, BBF固网接入是不可信任的非 3GPP接入网接入中的一种, 主要是指固定宽带接入, 包括但不限于下列接入: WLAN接入, WiFi接入, ADSL接入等。  In the present invention, the BBF fixed network access is one of untrusted non-3GPP access network access, mainly refers to fixed broadband access, including but not limited to the following access: WLAN access, WiFi access, ADSL Access and so on.
图 3为本发明的 UE通过 BBF固网接入 3GPP核心网的非漫游架构图。 ePDG与 PCRF之间通过 Gxb接口相连, 当 ePDG和 /或 3GPP AAA server 判断需要激活与固网的策略协商时, ePDG向 PCRF建立 Gxb会话。 PCRF 受到 Gxb会话建立的触发, 向 BPCF建立 S9*会话, 从而实现与固网的策 略协商。  FIG. 3 is a non-roaming architecture diagram of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention. The ePDG is connected to the PCRF through the Gxb interface. When the ePDG and/or the 3GPP AAA server determine that the policy negotiation with the fixed network needs to be activated, the ePDG establishes a Gxb session with the PCRF. The PCRF is triggered by the Gxb session establishment and establishes an S9* session with the BPCF to implement policy negotiation with the fixed network.
图 4为本发明的 UE通过 BBF固网接入 3GPP核心网的家乡路由的漫 游架构图。 图 5为本发明的 UE通过 BBF固网接入 3GPP核心网的本地疏 导漫游架构图。 图 4、 图 5中, ePDG与 vPCRF之间通过 Gxb接口相连, 当 ePDG和 /或 3GPPAAA Proxy判断需要激活与固网的策略协商时, ePDG 向 vPCRF建立 Gxb会话。 vPCRF受到 Gxb会话建立的触发, 向 BPCF建 立 S9*会话, 从而实现与固网的策略协商。  4 is a schematic diagram of a roaming architecture of a home route of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention. FIG. 5 is a schematic diagram of a local navigation roaming architecture of a UE accessing a 3GPP core network through a BBF fixed network according to the present invention. In Figure 4 and Figure 5, the ePDG and the vPCRF are connected through the Gxb interface. When the ePDG and/or the 3GPPAAA Proxy determine that the policy negotiation with the fixed network needs to be activated, the ePDG establishes a Gxb session to the vPCRF. The vPCRF is triggered by the Gxb session establishment, and establishes an S9* session with the BPCF to implement policy negotiation with the fixed network.
方法实施例一:  Method embodiment one:
图 6为本发明 S2b接入场景下, ePDG和 3GPP AAA Server/Proxy决定 激活与固网的策略协商流程图。 本实施例适用于固网作为不可信任的非 3GPP接入网, UE通过 S2b接口接入 3GPP核心网的情况。 图 6的流程包 括以下步驟:  FIG. 6 is a flowchart of policy negotiation between the ePDG and the 3GPP AAA Server/Proxy to determine activation and fixed network in the S2b access scenario of the present invention. This embodiment is applicable to the case where the fixed network is used as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2b interface. The process of Figure 6 includes the following steps:
步驟 601 , UE通过 BBF固网接入, 执行基于 3GPP的接入认证。 该步 驟可选, 当不执行基于 3GPP的接入认证时, UE只需要执行传统的固网接 入认证, 在这种场景下, BBF接入网络无法感知 UE接入 3GPP核心网。 Step 601: The UE performs the 3GPP-based access authentication by using the BBF fixed network access. This step Optionally, when the 3GPP-based access authentication is not performed, the UE only needs to perform the traditional fixed network access authentication. In this scenario, the BBF access network cannot sense that the UE accesses the 3GPP core network.
步驟 602, UE接入 BBF接入网络后 , BBF接入网络为 UE分配本地 IP 地址。  Step 602: After the UE accesses the BBF to access the network, the BBF access network allocates a local IP address to the UE.
步驟 603, UE发起 IKEv2隧道建立过程, 并采用 EAP进行认证。 漫游 场景下, ePDG通过 AAA Proxy与 AAA Server交互( AAA Server进一步与 HSS交互) 以完成扩展认证协议(EAP, Extensible Authentication Protocol ) 认证。  Step 603: The UE initiates an IKEv2 tunnel establishment process, and uses EAP for authentication. In the roaming scenario, the ePDG interacts with the AAA server through the AAA Proxy (the AAA Server further interacts with the HSS) to complete the Extensible Authentication Protocol (EAP) authentication.
步驟 603a、 步驟 603b、 步驟 603c属于 EAP认证流程。 在非漫游场景 下,执行步驟 603a和步驟 603c,在漫游场景下执行步驟 603b和步驟 603c。  Step 603a, step 603b, and step 603c belong to the EAP authentication process. In the non-roaming scenario, step 603a and step 603c are performed, and step 603b and step 603c are performed in the roaming scenario.
步驟 603a, 3GPP AAA Server在收到 ePDG发送的 DER命令 (命令码 指示该命令为认证和授权请求)后, 判断是否需要激活与固网的策略协商, 即是否建立 Gxb会话。 判断条件包括但不限于下述条件中的一条或多条: Step 603a: After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA Server determines whether it needs to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session. The judgment conditions include but are not limited to one or more of the following conditions:
1、 根据接入类型判断 UE是否从固网接入。 若从固网接入, 则需要激 活与固网的策略协商; 否则, 不需要激活与固网的策略协商。 1. Determine whether the UE accesses from the fixed network according to the access type. If you access from the fixed network, you need to activate the policy negotiation with the fixed network; otherwise, you do not need to activate the policy negotiation with the fixed network.
2、 根据固网和 3GPP网络的互通协议 (包括固网是否支持 3GPP与固 网的策略协商, 固网是否支持策略控制, 固网是否支持 BPCF, 固网 /3GPP 是否允许与固网的策略协商等), 判断是否允许激活与固网的策略协商。 若 互通协议允许, 则需要激活与固网的策略协商; 否则, 需要激活与固网的 策略协商。  2. According to the interworking protocol between the fixed network and the 3GPP network (including whether the fixed network supports 3GPP and fixed network policy negotiation, whether the fixed network supports policy control, whether the fixed network supports BPCF, whether the fixed network/3GPP allows negotiation with the fixed network policy Etc.), to determine whether to allow activation of the policy negotiation with the fixed network. If the interworking agreement allows, you need to activate the policy negotiation with the fixed network; otherwise, you need to activate the policy negotiation with the fixed network.
3、 UE是否已经通过 BBF AAA Proxy执行了基于 3GPP的接入认证, 即是否已经执行了步驟 601。 若执行了步驟 601 , 则 BPCF已经和 PCRF建 立了 S9*会话, 即已经激活了与固网的策略协商, 则不需要激活与固网的策 略协商; 否则, 需要激活与固网的策略协商。  3. Whether the UE has performed the 3GPP-based access authentication through the BBF AAA Proxy, that is, whether step 601 has been performed. If step 601 is executed, the BPCF has established an S9* session with the PCRF, that is, the policy negotiation with the fixed network has been activated, and the policy negotiation with the fixed network is not required to be activated; otherwise, the policy negotiation with the fixed network needs to be activated.
4、 本地策略。 当满足上述条件中的一条或多条时, 3GPP AAA server判断需要激活与 固网的策略协商。 4. Local strategy. When one or more of the above conditions are met, the 3GPP AAA server determines that it needs to activate policy negotiation with the fixed network.
步驟 603b, 3GPP AAA Proxy在收到 ePDG发送的 DER命令 (命令码 指示该命令为认证和授权请求 )后, 判断是否需要激活与固网的策略协商, 即是否建立 Gxb会话。 判断条件同步驟 603a中描述的判断条件。  Step 603b: After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA Proxy determines whether it is necessary to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session. The judgment condition is the same as the judgment condition described in the step 603a.
当满足上述条件中的一条或多条时, 3GPP AAA Proxy判断需要激活与 固网的策略协商。  When one or more of the above conditions are met, the 3GPP AAA Proxy determines that policy negotiation with the fixed network needs to be activated.
步驟 603c , EAP认证完成时, 3GPP AAA Server/Proxy发送 DEA命令 给 ePDGo  Step 603c, when the EAP authentication is completed, the 3GPP AAA Server/Proxy sends a DEA command to the ePDGo.
非漫游场景下, 3GPP AAA Server发送 DEA命令给 ePDG。 根据步驟 603a的判断结果, 3GPP AAA Server在 DEA命令中携带激活与固网策略协 商指示, 即建立 Gxb会话指示。  In the non-roaming scenario, the 3GPP AAA Server sends a DEA command to the ePDG. According to the judgment result of the step 603a, the 3GPP AAA Server carries the activation and fixed network policy negotiation indication in the DEA command, that is, establishes the Gxb session indication.
漫游场景下, 3GPP AAA Server发送 DEA命令给 3GPP AAA Proxy, 3GPP AAA Proxy再将消息转发给 ePDG。 3GPP AAA Proxy在收到 3GPP AAA Server发送的 DEA命令后,根据步驟 603b的判断结果,在 DEA命令 中携带激活与固网策略协商指示, 即建立 Gxb会话指示。  In the roaming scenario, the 3GPP AAA Server sends a DEA command to the 3GPP AAA Proxy, and the 3GPP AAA Proxy forwards the message to the ePDG. After receiving the DEA command sent by the 3GPP AAA Server, the 3GPP AAA Proxy carries the activation and fixed network policy negotiation indication in the DEA command according to the judgment result of step 603b, that is, the Gxb session indication is established.
激活与固网策略协商指示可以通过在 DEA消息中新增一个指示字段来 带或不携带现有字段来实现。  The activation and fixed network policy negotiation indication can be implemented by adding an indication field to the DEA message with or without existing fields.
3GPP AAA Server/Proxy在 DEA命令中携带激活与固网策略协商指示 时表示需要 ePDG 激活与固网的策略协商, 不携带该指示时表示不需要 ePDG激活与固网的策略协商; 反之亦然。 或者, 3GPP AAA Server/Proxy 在 DEA命令中设置激活与固网策略协商指示为 1时, 表示需要 ePDG激活 与固网的策略协商, 设置该指示为 0时, 表示不需要 ePDG激活与固网的 策略协商; 反之亦然。 步驟 603d, ePDG收到来自 3GPP AAA Proxy/Server的 DEA命令后, 判断是否需要激活与固网的策略协商, 即是否建立 Gxb会话。 判断条件包 括但不限于下述条件中的一条或多条: When the 3GPP AAA Server/Proxy carries the activation and fixed network policy negotiation indication in the DEA command, it indicates that the ePDG activation and the fixed network policy negotiation are required. When the indication is not carried, it indicates that the ePDG activation and the fixed network policy negotiation are not required; and vice versa. Alternatively, when the 3GPP AAA Server/Proxy sets the activation and fixed network policy negotiation indication to 1 in the DEA command, it indicates that the ePDG activation and the fixed network policy negotiation are required. When the indication is set to 0, the ePDG activation and the fixed network are not required. Strategy negotiation; vice versa. Step 603d: After receiving the DEA command from the 3GPP AAA Proxy/Server, the ePDG determines whether it needs to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session. The judgment conditions include but are not limited to one or more of the following conditions:
1、 3GPP AAA Proxy/Server指示 ePDG是否需要激活与固网策略协商。 若 3GPP AAA Proxy/Server指示需要激活与固网策略协商,则需要激活与固 网的策略协商; 否则, 不需要激活与固网的策略协商。  1. The 3GPP AAA Proxy/Server indicates whether the ePDG needs to be activated to negotiate with the fixed network policy. If the 3GPP AAA Proxy/Server indicates that it needs to activate the negotiation with the fixed network policy, it needs to activate the policy negotiation with the fixed network; otherwise, it does not need to activate the policy negotiation with the fixed network.
2、 ePDG自身的能力是否支持与固网策略协商 (如, 是否支持 Gxb会 话建立的能力)。 若 ePDG自身的能力是否支持与固网策略协商, 则需要激 活与固网的策略协商; 否则, 不需要激活与固网的策略协商。  2. Whether the ePDG's own capabilities support negotiation with the fixed network policy (eg, whether it supports the ability to establish Gxb sessions). If the ePDG's own capabilities support negotiation with the fixed network policy, it is necessary to activate the policy negotiation with the fixed network; otherwise, it is not necessary to activate the policy negotiation with the fixed network.
当满足上述条件中的一条或多条时, ePDG判断需要激活与固网的策略 协商。  When one or more of the above conditions are met, the ePDG determines that it needs to activate policy negotiation with the fixed network.
步驟 604, 若根据步驟 603d的判断结果, ePDG决定需要激活与固网 的策略协商, ePDG启动 Gxb会话的建立。 ePDG向 vPCRF发送网关控制 会话建立消息, 消息中携带用户标识、 PDN标识和 IPSec外部隧道信息, IPSec外部隧道信息包括 ePDG接收到的 UE发送的 IKEv2信令的源地址和 源端口。 由于 IKEv2信令可能经过了 NAT穿越, 因此 ePDG接收到的源地 址和源端口可能与 UE发送时的源地址和源端口不同。  Step 604: If the ePDG determines that the policy negotiation with the fixed network needs to be activated according to the judgment result of the step 603d, the ePDG starts the establishment of the Gxb session. The ePDG sends a gateway control session setup message to the vPCRF, where the message carries the user identifier, the PDN identifier, and the IPSec external tunnel information. The IPSec external tunnel information includes the source address and source port of the IKEv2 signaling sent by the ePDG. Since the IKEv2 signaling may be through NAT traversal, the source address and source port received by the ePDG may be different from the source address and source port when the UE sends the packet.
步驟 605, vPCRF与 hPCRF建立 S9会话。  Step 605, the vPCRF establishes an S9 session with the hPCRF.
步驟 606, vPCRF向 ePDG发送网关控制会话建立确认消息, 消息中 携带 QoS规则和事件触发器。  Step 606: The vPCRF sends a gateway control session establishment acknowledgement message to the ePDG, where the message carries the QoS rule and the event trigger.
在非漫游场景下, ePDG 与 hPCRF, 直接进行消息交互, 不再经过 vPCRF。  In a non-roaming scenario, the ePDG interacts with the hPCRF directly through the vPCRF.
步驟 607, ePDG选择 P-GW后, 向 P-GW发送代理绑定更新消息, 消 息中携带用户标识和 PDN标识。  Step 607: After selecting the P-GW, the ePDG sends a proxy binding update message to the P-GW, where the message carries the user identifier and the PDN identifier.
步驟 608 , P-GW向 AAA Server发送更新 P-GW IP地址消息,将 P-GW 的地址发送给 AAA Server, AAA Server进一步与 HSS交互将 P-GW的地址 保存到 HSS中。 Step 608: The P-GW sends an update P-GW IP address message to the AAA Server, and the P-GW is sent. The address is sent to the AAA Server, and the AAA Server further interacts with the HSS to save the address of the P-GW to the HSS.
步驟 609, P-GW为 UE分配 IP地址, 向 hPCRF发起 IP-CAN会话建 立流程, 携带用户标识、 PDN标识和 IP地址。  Step 609: The P-GW allocates an IP address to the UE, and initiates an IP-CAN session establishment process to the hPCRF, carrying the user identifier, the PDN identifier, and the IP address.
步驟 610, P-GW向 ePDG返回代理绑定确认消息, 携带为 UE分配的 IP地址。  Step 610: The P-GW returns a proxy binding acknowledgement message to the ePDG, and carries an IP address assigned to the UE.
步驟 611 , 代理绑定更新成功, UE和 ePDG之间建立 IPSec隧道。 当 S2b接口上应用 GTP协议时, 步驟 607、 步驟 610中是相应的 GTP 载建立消息。  Step 611: The proxy binding update is successful, and an IPSec tunnel is established between the UE and the ePDG. When the GTP protocol is applied to the S2b interface, in step 607, step 610 is a corresponding GTP bearer setup message.
步驟 612, ePDG向 UE发送最后一条 IKEv2信令,携带 UE的 IP地址。 步驟 613 ,受到 Gxb会话建立的触发, vPCRF/hPCRF与 BPCF建立 S9* 会话。 通过 S9*会话, vPCRF/hPCRF可以与 BPCF进行策略协商。 vPCRF 根据步驟 604中收到的 IPSec外部隧道信息中的源 IP地址确定 UE当前接 入的 BBF接入网的 BPCF,并向 BPCF发起 S9*会话建立流程,并携带 IPSec 外部隧道信息中的源 IP地址和源端口号。 BPCF根据 UE当前接入的 BBF 接入网的接入位置信息进一步执行资源接纳控制。 非漫游场景下, hPCRF 与 BPCF进行交互, 建立 S9*会话。  Step 612: The ePDG sends the last IKEv2 signaling to the UE, and carries the IP address of the UE. Step 613: triggered by the establishment of the Gxb session, the vPCRF/hPCRF establishes an S9* session with the BPCF. Through S9* sessions, vPCRF/hPCRF can negotiate policy with BPCF. The vPCRF determines the BPCF of the BBF access network that the UE currently accesses according to the source IP address in the IPSec external tunnel information received in step 604, and initiates an S9* session establishment process to the BPCF, and carries the source IP in the IPSec external tunnel information. Address and source port number. The BPCF further performs resource admission control according to the access location information of the BBF access network currently accessed by the UE. In a non-roaming scenario, hPCRF interacts with BPCF to establish an S9* session.
S9*会话的建立在 Gxb会话建立完成后就可以进行了。  The establishment of the S9* session can be performed after the Gxb session is established.
执行此流程后, UE与 ePDG之间建立了 IPSec隧道, ePDG与 P-GW 之间建立了 PMIP或 GTP隧道。  After the process is complete, an IPSec tunnel is established between the UE and the ePDG. A PMIP or GTP tunnel is established between the ePDG and the P-GW.
方法实施例二:  Method Embodiment 2:
图 7本发明 S2b接入场景下, 3GPP AAA Server/Proxy决定激活与固网 的策略协商流程图。 本实施例适用于固网作为不可信任的非 3GPP接入网, UE通过 S2b接口接入 3GPP核心网的情况。 图 7的流程包括以下步驟: 步驟 701~步驟 702: 同步驟 601~步驟 602。 步驟 703 , UE发起 IKEv2隧道建立过程, 并采用 EAP进行认证。 漫游 场景下, ePDG通过 AAA Proxy与 AAA Server交互( AAA Server进一步与 HSS交互 ) 以完成 EAP认证, In the S2b access scenario of the present invention, the 3GPP AAA Server/Proxy determines a policy negotiation flowchart for activating and fixing the network. This embodiment is applicable to the case where the fixed network is used as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2b interface. The process of FIG. 7 includes the following steps: Step 701 to Step 702: The same steps 601 to 602. Step 703: The UE initiates an IKEv2 tunnel establishment process, and uses EAP for authentication. In the roaming scenario, the ePDG interacts with the AAA server through the AAA Proxy (the AAA Server further interacts with the HSS) to complete the EAP authentication.
步驟 703a、 步驟 703b、 步驟 703c、 步驟 703d属于 EAP认证流程。 在 非漫游场景下, 执行步驟 703a、 步驟 703b和步驟 703d, 在漫游场景下执 行步驟 703a、 步驟 703c和步驟 703d。  Step 703a, step 703b, step 703c, and step 703d belong to the EAP authentication process. In the non-roaming scenario, step 703a, step 703b, and step 703d are performed, and step 703a, step 703c, and step 703d are performed in the roaming scenario.
步驟 703a, ePDG发送的 DER命令(命令码指示该命令为认证和授权 请求), 消息中携带 ePDG能力信息, 该信息用来表示 ePDG是否支持与固 网策略协商(如,是否支持 Gxb会很建立 )给 PCRF。 非漫游场景下, ePDG 之间将 DER命令发给 hPCRF,漫游场景下, ePDG将 DER命令发给 vPCRF 后, 再由 vPCRF转发给 hPCRF。 vPCRF在转发 DER命令前可以将命令中 的 ePDG能力信息删除。  Step 703a: The DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), and the message carries the ePDG capability information, where the information is used to indicate whether the ePDG supports the negotiation with the fixed network policy (for example, whether the Gxb is supported or not) is established. ) to the PCRF. In the non-roaming scenario, the ePDG sends the DER command to the hPCRF. In the roaming scenario, the ePDG sends the DER command to the vPCRF, and then the vPCRF forwards it to the hPCRF. The vPCRF can delete the ePDG capability information in the command before forwarding the DER command.
步驟 703b, 3GPPAAA Server在收到 ePDG发送的 DER命令 (命令码 指示该命令为认证和授权请求)后, 判断是否需要激活与固网的策略协商, 即是否建立 Gxb会话。 判断条件包括但不限于下述条件中的一条或多条: Step 703b: After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA server determines whether it needs to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session. The judgment conditions include but are not limited to one or more of the following conditions:
1、 根据接入类型判断 UE是否从固网接入。 若从固网接入, 则需要激 活与固网的策略协商; 否则, 不需要激活与固网的策略协商。 1. Determine whether the UE accesses from the fixed network according to the access type. If you access from the fixed network, you need to activate the policy negotiation with the fixed network; otherwise, you do not need to activate the policy negotiation with the fixed network.
2、 根据固网和 3GPP网络的互通协议 (包括固网是否支持 3GPP与固 网的策略协商, 固网是否支持策略控制, 固网是否支持 BPCF, 固网 /3GPP 是否允许与固网的策略协商等), 判断是否允许激活与固网的策略协商。 若 互通协议允许, 则需要激活与固网的策略协商; 否则, 需要激活与固网的 策略协商。  2. According to the interworking protocol between the fixed network and the 3GPP network (including whether the fixed network supports 3GPP and fixed network policy negotiation, whether the fixed network supports policy control, whether the fixed network supports BPCF, whether the fixed network/3GPP allows negotiation with the fixed network policy Etc.), to determine whether to allow activation of the policy negotiation with the fixed network. If the interworking agreement allows, you need to activate the policy negotiation with the fixed network; otherwise, you need to activate the policy negotiation with the fixed network.
3、 UE是否已经通过 BBF AAA Proxy执行了基于 3GPP的接入认证, 即是否已经执行了步驟 701。 若执行了 701 , 则 BPCF已经和 PCRF建立了 S9*会话, 即已经激活了与固网的策略协商, 则不需要激活与固网的策略协 商; 否则, 需要激活与固网的策略协商。 3. Whether the UE has performed 3GPP-based access authentication through the BBF AAA Proxy, that is, whether step 701 has been performed. If 701 is executed, the BPCF has established an S9* session with the PCRF, that is, the policy negotiation with the fixed network has been activated, and the policy association with the fixed network is not required to be activated. Business; otherwise, you need to activate policy negotiation with the fixed network.
4、 本地策略。  4. Local strategy.
5、 ePDG的能力是否支持与固网策略协商 (如, 是否支持 Gxb会话建 立的能力)。 若 ePDG的能力是否支持与固网策略协商, 则需要激活与固网 的策略协商; 否则, 不需要激活与固网的策略协商。  5. Does the ePDG capability support negotiation with the fixed network policy (eg, whether it supports the ability to establish Gxb sessions). If the ePDG capability supports negotiation with the fixed network policy, it needs to activate the policy negotiation with the fixed network; otherwise, it does not need to activate the policy negotiation with the fixed network.
当满足上述条件中的一条或多条时, 3GPP AAA server判断需要激活与 固网的策略协商。  When one or more of the above conditions are met, the 3GPP AAA server determines that it needs to activate policy negotiation with the fixed network.
步驟 703c, 3GPP AAA Proxy在收到 ePDG发送的 DER命令 (命令码 指示该命令为认证和授权请求 )后, 判断是否需要激活与固网的策略协商, 即是否建立 Gxb会话。 判断条件同步驟 703b中描述的判断条件。  Step 703c: After receiving the DER command sent by the ePDG (the command code indicates that the command is an authentication and authorization request), the 3GPP AAA Proxy determines whether it is necessary to activate the policy negotiation with the fixed network, that is, whether to establish a Gxb session. The judgment condition is the same as the judgment condition described in the step 703b.
当满足上述条件中的一条或多条时, 3GPP AAA Proxy判断需要激活与 固网的策略协商。  When one or more of the above conditions are met, the 3GPP AAA Proxy determines that policy negotiation with the fixed network needs to be activated.
步驟 703d, EAP认证完成时, 3GPP AAA Server/Proxy发送 DEA命令 给 ePDGo  Step 703d, when the EAP authentication is completed, the 3GPP AAA Server/Proxy sends a DEA command to the ePDGo.
非漫游场景下, 3GPP AAA Server发送 DEA命令给 ePDG。 根据步驟 703b的判断结果, 3GPP AAA Server在 DEA命令中携带激活与固网策略协 商指示, 即 Gxb会话建立指示。  In the non-roaming scenario, the 3GPP AAA Server sends a DEA command to the ePDG. According to the judgment result of the step 703b, the 3GPP AAA Server carries the activation and fixed network policy negotiation indication, that is, the Gxb session establishment indication, in the DEA command.
漫游场景下, 3GPP AAA Server发送 DEA命令给 3GPP AAA Proxy, 3GPP AAA Proxy再将消息转发给 ePDG。 3GPP AAA Proxy在收到 3GPP AAA Server发送的 DEA命令后,根据步驟 703c的判断结果, 在 DEA命令 中携带激活与固网策略协商指示, 即 Gxb会话建立指示。  In the roaming scenario, the 3GPP AAA Server sends a DEA command to the 3GPP AAA Proxy, and the 3GPP AAA Proxy forwards the message to the ePDG. After receiving the DEA command sent by the 3GPP AAA Server, the 3GPP AAA Proxy carries the activation and fixed network policy negotiation indication, that is, the Gxb session establishment indication, in the DEA command according to the judgment result of step 703c.
激活与固网策略协商指示可以通过在 DEA消息中新增一个指示字段来 带或不携带现有字段来实现。  The activation and fixed network policy negotiation indication can be implemented by adding an indication field to the DEA message with or without existing fields.
3GPP AAA Server/Proxy在 DEA命令中携带激活与固网策略协商指示 时表示需要 ePDG 激活与固网的策略协商, 不携带该指示时表示不需要 ePDG激活与固网的策略协商; 反之亦然。 或者, 3GPP AAA Server/Proxy 在 DEA命令中设置激活与固网策略协商指示为 1时, 表示需要 ePDG激活 与固网的策略协商, 设置该指示为 0时, 表示不需要 ePDG激活与固网的 策略协商; 反之亦然。 The 3GPP AAA Server/Proxy carries the activation and fixed network policy negotiation indication in the DEA command. It indicates that ePDG needs to be activated to negotiate with the fixed network. When the indication is not carried, it indicates that ePDG activation is not required for policy negotiation with the fixed network; vice versa. Alternatively, when the 3GPP AAA Server/Proxy sets the activation and fixed network policy negotiation indication to 1 in the DEA command, it indicates that the ePDG activation and the fixed network policy negotiation are required. When the indication is set to 0, the ePDG activation and the fixed network are not required. Strategy negotiation; vice versa.
步驟 704, ePDG收到来自 3GPP AAA Proxy/Server的 DEA命令后, 若 3GPP AAA Proxy/Server指示需要激活与固网策略协商, 则需要激活与固网 的策略协商, ePDG启动 Gxb会话的建立。 ePDG向 V-PCRF发送网关控制 会话建立消息, 消息中携带用户标识、 PDN标识和 IPSec外部隧道信息, IPSec外部隧道信息包括 ePDG接收到的 UE发送的 IKEv2信令的源地址和 源端口。 由于 IKEv2信令可能经过了 NAT穿越, 因此 ePDG接收到的源地 址和源端口可能与 UE发送时的源地址和源端口不同。  Step 704: After receiving the DEA command from the 3GPP AAA Proxy/Server, the ePDG needs to activate the policy negotiation with the fixed network if the 3GPP AAA Proxy/Server indicates that the activation and the fixed network policy negotiation is required, and the ePDG starts the establishment of the Gxb session. The ePDG sends a gateway control session setup message to the V-PCRF, where the message carries the user identifier, the PDN identifier, and the IPSec external tunnel information. The IPSec external tunnel information includes the source address and source port of the IKEv2 signaling sent by the ePDG. Since the IKEv2 signaling may be through NAT traversal, the source address and source port received by the ePDG may be different from the source address and source port when the UE sends the packet.
步驟 705至步驟 713同步驟 605至步驟 613。  Step 705 to step 713 are the same as steps 605 to 613.
方法实施例三:  Method embodiment three:
图 8为本发明 S2c接入场景下, ePDG和 3GPP AAA Server/Proxy决定 激活与固网的策略协商流程图。 本实施例适用于固网作为不可信任的非 3GPP接入网, UE通过 S2c接口接入 3GPP核心网的情况。 图 8的流程包 括以下步驟:  FIG. 8 is a flowchart of policy negotiation between the ePDG and the 3GPP AAA Server/Proxy to determine activation and fixed network in the S2c access scenario of the present invention. This embodiment is applicable to a fixed network as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2c interface. The process of Figure 8 includes the following steps:
步驟 801~步驟 806: 同步驟 601~步驟 606。  Step 801 to step 806: The same step 601 to step 606.
步驟 807~步驟 808同: 步驟 611~步驟 612。  Step 807~Step 808 is the same as: Step 611~Step 612.
步驟 809, UE执行 Bootstraping流程。 UE根据 APN进行 DNS查找获 得所要接入 PDN的 P-GW的 IP地址。为了保护 UE和 P-GW之间的 DSMIPv6 消息, UE使用 IKEv2建立安全联盟,并采用 EAP进行认证。 P-GW与 AAA Server ( AAA Server进一步与 HSS交互 )进行通信以完成 EAP认证, 同时 P-GW为 UE分配一个 IPv6地址或前缀作为 UE的家乡地址 HoA。 步驟 810, UE向 P-GW发送 DSMIPv6绑定更新消息,消息中携带 CoA 和 HoA。 绑定消息中生命期参数不为零。 P-GW建立绑定上下文。 In step 809, the UE performs a Bootstraping process. The UE performs a DNS lookup according to the APN to obtain an IP address of the P-GW to which the PDN is to be accessed. To protect the DSMIPv6 message between the UE and the P-GW, the UE uses IKEv2 to establish a security association and uses EAP for authentication. The P-GW communicates with the AAA Server (the AAA Server further interacts with the HSS) to complete the EAP authentication, and the P-GW allocates an IPv6 address or prefix to the UE as the home address HoA of the UE. Step 810: The UE sends a DSMIPv6 binding update message to the P-GW, where the message carries CoA and HoA. The lifetime parameter in the binding message is not zero. The P-GW establishes a binding context.
步驟 811 , P-GW中的 PCEF向 H-PCRF发起 IP-CAN会话建立流程, 携带用户标识、 PDN标识。  Step 811: The PCEF in the P-GW initiates an IP-CAN session establishment process to the H-PCRF, and carries the user identifier and the PDN identifier.
步驟 812, P-GW向 AAA Server发送更新 P-GW IP地址消息,将 P-GW 的地址发送给 AAA Server, AAA Server进一步与 HSS交互将 P-GW的地址 保存到 HSS中。  Step 812: The P-GW sends an update P-GW IP address message to the AAA Server, and sends the P-GW address to the AAA server. The AAA Server further interacts with the HSS to save the address of the P-GW to the HSS.
步驟 813 , P-GW向 UE返回绑定确认消息。  Step 813: The P-GW returns a binding acknowledgement message to the UE.
步驟 814,受到 Gxb会话建立的触发, vPCRF/hPCRF与 BPCF建立 S9* 会话。 通过 S9*会话, vPCRF/hPCRF可以与 BPCF进行策略协商。 vPCRF 根据步驟 604中收到的 IPSec外部隧道信息中的源 IP地址确定 UE当前接 入的 BBF接入网的 BPCF,并向 BPCF发起 S9*会话建立流程,并携带 IPSec 外部隧道信息中的源 IP地址和源端口号。 BPCF根据 UE当前接入的 BBF 接入网的接入位置信息进一步执行资源接纳控制。 非漫游场景下, hPCRF (此时也称为 PCRF ) 与 BPCF进行交互, 建立 S9*会话。  Step 814, triggered by the establishment of the Gxb session, the vPCRF/hPCRF establishes an S9* session with the BPCF. Through S9* sessions, vPCRF/hPCRF can negotiate policy with BPCF. The vPCRF determines the BPCF of the BBF access network that the UE currently accesses according to the source IP address in the IPSec external tunnel information received in step 604, and initiates an S9* session establishment process to the BPCF, and carries the source IP in the IPSec external tunnel information. Address and source port number. The BPCF further performs resource admission control according to the access location information of the BBF access network currently accessed by the UE. In a non-roaming scenario, hPCRF (also known as PCRF) interacts with BPCF to establish an S9* session.
S9*会话的建立在 Gxb会话建立完成后就可以进行了。 The establishment of the S9* session can be performed after the Gxb session is established.
执行此流程后, UE与 ePDG之间建立了 IPSec隧道, UE与 P-GW之 间建立了 DSMIP隧道。  After the process is performed, an IPSec tunnel is established between the UE and the ePDG, and a DSMIP tunnel is established between the UE and the P-GW.
方法实施例四:  Method Embodiment 4:
图 9本发明 S2c接入场景下, 3GPP AAA Server/Proxy决定激活与固网 的策略协商流程图。 本实施例适用于固网作为不可信任的非 3GPP接入网, UE通过 S2c接口接入 3GPP核心网的情况。 图 9的流程包括以下流程: 步驟 901~步驟 906: 同步驟 701~步驟 706。  In the S2c access scenario of the present invention, the 3GPP AAA Server/Proxy determines a policy negotiation flowchart for activating the fixed network. This embodiment is applicable to a fixed network as an untrusted non-3GPP access network, and the UE accesses the 3GPP core network through the S2c interface. The flow of FIG. 9 includes the following processes: Step 901 to Step 906: Same steps 701 to 706.
步驟 907~步驟 908: 同步驟 711~步驟 712。  Step 907 to step 908: the same step 711 to step 712.
步驟 909~步驟 914: 同步驟 809~步驟 814。 当 ePDG可以获得固网和 3GPP网络的互通协议 (包括固网是否支持 3GPP与固网的策略协商, 固网是否支持策略控制, 固网是否支持 BPCF, 固网 /3GPP是否允许与固网的策略协商等 )时,是否需要激活与固网的策略 协商的判断可以不需要 3GPPAAA server/Proxy参与,直接由 ePDG在 IPsec 隧道建立过程中的 EAP认证流程中,根据步驟 703b中的判断条件进行判断, ePDG的后续步驟同本发明的其它实施例。 Step 909 to step 914: Same as step 809 to step 814. When ePDG can obtain the interworking protocol between fixed network and 3GPP network (including whether fixed network supports 3GPP and fixed network policy negotiation, whether fixed network supports policy control, whether fixed network supports BPCF, whether fixed network/3GPP allows and fixed network strategy When negotiating, etc., whether the decision to activate the policy negotiation with the fixed network is required does not require the participation of the 3GPP AAA server/Proxy, and is directly determined by the ePDG in the EAP authentication process in the IPsec tunnel establishment process according to the judgment condition in step 703b. The subsequent steps of the ePDG are the same as other embodiments of the invention.
一种触发固网移动融合策略协商的系统, 该系统包括策略协商触发单 元, 策略协商触发单元用于在 ePDG向 PCRF发起 Gxb会话的建立, PCRF 受到该 Gxb会话的建立的触发的情况下, 由 PCRF向 BPCF发起 S9*会话 的建立, 触发移动网与固网的策略协商; 其中, ePDG与 PCRF相连, ePDG 与 PCRF之间的接口为 Gxb接口。  A system for triggering a fixed network mobile convergence policy negotiation, the system includes a policy negotiation triggering unit, and the policy negotiation triggering unit is configured to initiate a Gxb session establishment by the ePDG to the PCRF, where the PCRF is triggered by the establishment of the Gxb session, The PCRF initiates the establishment of the S9* session to the BPCF, and triggers the policy negotiation between the mobile network and the fixed network. The ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
这里,该系统还包括判断单元,判断单元用于 ePDG向 PCRF发起 Gxb 会话的建立之前, UE通过不可信任的非 3GPP接入网接入 3GPP核心网的 情况下, 由 ePDG、 和 /或 3GPP鉴权授权计费服务器、 和 /或 3GPP鉴权授 权计费代理服务器判断是否需要触发移动核心网与固网的策略协商。  Here, the system further includes a judging unit, configured by the ePDG, and/or the 3GPP in the case that the UE accesses the 3GPP core network through the untrusted non-3GPP access network before the ePDG initiates the establishment of the Gxb session to the PCRF. The rights authorization charging server, and/or the 3GPP authentication authorization charging proxy server determine whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
这里, 述策略协商触发单元进一步用于在漫游场景下, PCRF具体包括 vPCRF和 hPCRF的情况下, ePDG向 vPCRF或 hPCRF发起 Gxb会话的建 立, vPCRF或 hPCRF受到所述 Gxb会话的建立的触发,由 vPCRF或 hPCRF 向 BPCF发起 S9*会话的建立, 触发移动网与固网的策略协商。  Here, the policy negotiation triggering unit is further configured to: in the case of the roaming scenario, where the PCRF specifically includes the vPCRF and the hPCRF, the ePDG initiates the establishment of the Gxb session to the vPCRF or the hPCRF, and the vPCRF or the hPCRF is triggered by the establishment of the Gxb session, The vPCRF or hPCRF initiates the establishment of an S9* session to the BPCF, triggering policy negotiation between the mobile network and the fixed network.
这里, 策略协商触发单元进一步用于在非漫游场景下, PCRF具体包括 hPCRF的情况下, ePDG向 hPCRF发起 Gxb会话的建立, hPCRF受到所述 Gxb会话的建立的触发, 由 hPCRF向 BPCF发起 S9*会话的建立, 触发移 动核心网与固网的策略协商。  Here, the policy negotiation triggering unit is further configured to: in the case of the non-roaming scenario, where the PCRF specifically includes the hPCRF, the ePDG initiates the establishment of the Gxb session to the hPCRF, the hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the S9* to the BPCF. The establishment of the session triggers the policy negotiation between the mobile core network and the fixed network.
以上所述, 仅为本发明的较佳实施例而已, 并非用于限定本发明的保 护范围。  The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims

权利要求书 Claim
1、一种触发固网移动融合策略协商的方法,其特征在于,该方法包括: 演进的分组数据网关 (ePDG ) 向策略和计费规则功能 (PCRF )发起 Gxb 会话的建立; 所述 PCRF受到所述 Gxb会话的建立的触发, 由 PCRF向宽 带策略控制架构 (BPCF )发起 S9*会话的建立, 触发移动网与固网的策略 协商; 其中,  A method for triggering a fixed network mobile convergence policy negotiation, the method comprising: an evolved packet data gateway (ePDG) initiating a Gxb session establishment to a policy and charging rule function (PCRF); the PCRF is subjected to Initiating the establishment of the Gxb session, the PCRF initiates the establishment of the S9* session to the Broadband Policy Control Architecture (BPCF), and triggers the policy negotiation between the mobile network and the fixed network;
所述 ePDG与所述 PCRF相连,所述 ePDG与所述 PCRF之间的接口为 Gxb接口。  The ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
2、根据权利要求 1所述的方法,其特征在于,所述 ePDG向所述 PCRF 发起 Gxb会话的建立之前, 该方法还包括: 用户设备(UE )通过不可信任 的非 3GPP接入网接入 3GPP核心网, 由 ePDG、 和 /或 3GPP鉴权授权计费 服务器、 和 /或 3GPP鉴权授权计费代理服务器判断是否需要触发移动核心 网与固网的策略协商。  The method according to claim 1, wherein before the ePDG initiates the establishment of the Gxb session to the PCRF, the method further comprises: the user equipment (UE) accessing through the untrusted non-3GPP access network The 3GPP core network determines whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network by the ePDG, and/or the 3GPP authentication and authorization charging server, and/or the 3GPP authentication and authorization charging proxy server.
3、 根据权利要求 1或 2所述的方法, 其特征在于, 漫游场景下, 所述 PCRF包括 vPCRF和 hPCRF, 该方法还包括: ePDG向 vPCRF或 hPCRF 发起 Gxb会话的建立, vPCRF或 hPCRF受到所述 Gxb会话的建立的触发, 由 vPCRF或 hPCRF向 BPCF发起 S9*会话的建立,触发移动网与固网的策 略协商。  The method according to claim 1 or 2, wherein, in the roaming scenario, the PCRF includes a vPCRF and an hPCRF, the method further includes: ePDG initiating establishment of a Gxb session to the vPCRF or hPCRF, and the vPCRF or hPCRF is subjected to In the triggering of the establishment of the Gxb session, the vPCRF or the hPCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile network and the fixed network.
4、 根据权利要求 1或 2所述的方法, 其特征在于, 非漫游场景下, 所 述 PCRF包括 hPCRF, 该方法还包括: ePDG向 hPCRF发起 Gxb会话的建 立, hPCRF受到所述 Gxb会话的建立的触发, 由 hPCRF向 BPCF发起 S9* 会话的建立, 触发移动核心网与固网的策略协商。  The method according to claim 1 or 2, wherein, in the non-roaming scenario, the PCRF includes an hPCRF, the method further includes: ePDG initiating establishment of a Gxb session to the hPCRF, and the hPCRF is established by the Gxb session The triggering, the hPCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile core network and the fixed network.
5、 一种触发固网移动融合策略协商的系统, 其特征在于, 该系统包括 策略协商触发单元,用于在 ePDG向 PCRF发起 Gxb会话的建立,所述 PCRF 受到所述 Gxb会话的建立的触发的情况下, 由 PCRF向 BPCF发起 S9*会 话的建立, 触发移动网与固网的策略协商; 其中, A system for triggering a fixed network mobile convergence policy negotiation, wherein the system includes a policy negotiation triggering unit, configured to initiate establishment of a Gxb session to the PCRF by the ePDG, where the PCRF is triggered by the establishment of the Gxb session. In the case, the S9* will be initiated by the PCRF to the BPCF. The establishment of words, triggering the policy negotiation between the mobile network and the fixed network;
所述 ePDG与所述 PCRF相连,所述 ePDG与所述 PCRF之间的接口为 Gxb接口。  The ePDG is connected to the PCRF, and the interface between the ePDG and the PCRF is a Gxb interface.
6、根据权利要求 5所述的系统, 其特征在于, 该系统还包括判断单元, 用于所述 ePDG向所述 PCRF发起 Gxb会话的建立之前, UE通过不可信任 的非 3GPP接入网接入 3GPP核心网的情况下, 由 ePDG、 和 /或 3GPP鉴权 授权计费服务器、 和 /或 3GPP鉴权授权计费代理服务器判断是否需要触发 移动核心网与固网的策略协商。  The system according to claim 5, wherein the system further comprises a determining unit, configured to access the UE through an untrusted non-3GPP access network before the ePDG initiates the establishment of the Gxb session to the PCRF. In the case of the 3GPP core network, the ePDG, and/or the 3GPP authentication and authorization charging server, and/or the 3GPP authentication and authorization charging proxy server determine whether it is necessary to trigger policy negotiation between the mobile core network and the fixed network.
7、 根据权利要求 5或 6所述的系统, 其特征在于, 所述策略协商触发 单元,进一步用于在漫游场景下,所述 PCRF包括 vPCRF和 hPCRF的情况 下, ePDG向 vPCRF或 hPCRF发起 Gxb会话的建立, vPCRF或 hPCRF受 到所述 Gxb会话的建立的触发,由 vPCRF或 hPCRF向 BPCF发起 S9*会话 的建立, 触发移动网与固网的策略协商。  The system according to claim 5 or 6, wherein the policy negotiation triggering unit is further configured to: in the roaming scenario, when the PCRF includes a vPCRF and an hPCRF, the ePDG initiates a Gxb to the vPCRF or the hPCRF. The establishment of the session, the vPCRF or the hPCRF is triggered by the establishment of the Gxb session, and the vPCRF or the hPCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile network and the fixed network.
8、 根据权利要求 5或 6所述的系统, 其特征在于, 所述策略协商触发 单元,进一步用于在非漫游场景下,所述 PCRF包括 hPCRF的情况下, ePDG 向 hPCRF发起 Gxb会话的建立, hPCRF受到所述 Gxb会话的建立的触发, 由 hPCRF向 BPCF发起 S9*会话的建立, 触发移动核心网与固网的策略协 商。  The system according to claim 5 or 6, wherein the policy negotiation triggering unit is further configured to: in the non-roaming scenario, when the PCRF includes an hPCRF, the ePDG initiates the establishment of the Gxb session to the hPCRF. The hPCRF is triggered by the establishment of the Gxb session, and the hPCRF initiates the establishment of the S9* session to the BPCF, triggering the policy negotiation between the mobile core network and the fixed network.
PCT/CN2011/077922 2010-08-16 2011-08-02 Method and system triggering fixed-mobile convergence policy negotiation WO2012022221A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201010257601.2 2010-08-16
CN201010257601.2A CN102378143B (en) 2010-08-16 2010-08-16 A kind of method and system triggering fixed network mobile fusion policy conferring

Publications (1)

Publication Number Publication Date
WO2012022221A1 true WO2012022221A1 (en) 2012-02-23

Family

ID=45604760

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2011/077922 WO2012022221A1 (en) 2010-08-16 2011-08-02 Method and system triggering fixed-mobile convergence policy negotiation

Country Status (2)

Country Link
CN (1) CN102378143B (en)
WO (1) WO2012022221A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103369706A (en) * 2012-03-26 2013-10-23 中兴通讯股份有限公司 Policy session establishment method and system

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103327471B (en) * 2012-03-20 2016-06-22 电信科学技术研究院 A kind of interface building method and device

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101730246A (en) * 2009-06-24 2010-06-09 中兴通讯股份有限公司 Strategy control framework of converged network and method for realizing strategy control

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1993947B (en) * 2004-07-30 2011-12-07 艾利森电话股份有限公司 A method and device for providing correlation means in hybrid telecommunication networks
CN101267319B (en) * 2008-04-30 2011-07-13 中兴通讯股份有限公司 A method for distributing control rule of policy billing
CN101277541B (en) * 2008-05-22 2012-02-08 中兴通讯股份有限公司 Method for forwarding message of Diameter route entity
CN101309521B (en) * 2008-06-17 2011-12-28 中兴通讯股份有限公司 Policy and rule synchronization method

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101730246A (en) * 2009-06-24 2010-06-09 中兴通讯股份有限公司 Strategy control framework of converged network and method for realizing strategy control

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
"S9* gap analysis", 3GPP TSG SA WGS MEETING #79 TD S2-102462, 4 May 2010 (2010-05-04), Retrieved from the Internet <URL:http//www.3gpp.org/ftp/tsg sa/WG2 Arch/TSGS2 79 Kyoto/Docs> [retrieved on 20111019] *
"Study on Support of BBF Access Interworking", 3GPP TR23.839 V0.1.1, 2 June 2010 (2010-06-02), Retrieved from the Internet <URL:http://www.3gpp.org/ftp/Specs/archive/23series/23.839> [retrieved on 20111019] *

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103369706A (en) * 2012-03-26 2013-10-23 中兴通讯股份有限公司 Policy session establishment method and system

Also Published As

Publication number Publication date
CN102378143B (en) 2016-03-30
CN102378143A (en) 2012-03-14

Similar Documents

Publication Publication Date Title
US8849273B2 (en) Method and system for reporting fixed network access information
US9271220B2 (en) Policy control method and system
WO2013104234A1 (en) Policy control method and system for converged network
WO2013064070A1 (en) Method, system and pcrf for realizing reflection qos mechanism
WO2010081329A1 (en) Method and system for controlling network resources during service flow migrating procedure
WO2012058998A1 (en) Policy and charging control method supporting ip flow mobility in roaming scenario
WO2012003764A1 (en) Method for policy and charging rules function (pcrf) informing centralized deployment functional architecture (bpcf) of user equipment access information
US9544832B2 (en) Method, apparatus and system for policy control
WO2009043210A1 (en) A method for selecting a gateway of the radio network
WO2006135216A1 (en) System and method for tunnel management over a 3g-wlan interworking system
US20130094487A1 (en) Method and System for Information Transmission
WO2011006317A1 (en) Method and system for deleting redundant information of home policy and charging rules function
WO2012019507A1 (en) Policy control method and system for accessing fixed broadband access network
WO2013020448A1 (en) Information transmission method, packet data gateway, and policy and charging rules function
WO2014040552A1 (en) Method and system for notifying access network position information
WO2010054560A1 (en) Method and system for implementing multi-access
WO2013016967A1 (en) Access method, system and mobile intelligent access point
WO2014048197A1 (en) Method, system and device for user equipment to select visited public land mobile network
WO2014056374A1 (en) Method, device and system for establishing session
WO2014094488A1 (en) Charging policy method and device for roaming local service
WO2012010036A1 (en) Policy control method and system
WO2012129992A1 (en) Sponsored data connectivity processing method, and policy and charging rules function
WO2014048191A1 (en) Method and system for selecting vplmn and packet data network gateway
Ahmed et al. Inter-system mobility in evolved packet system (EPS): Connecting non-3GPP accesses
WO2014036878A1 (en) Charging control method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 11817748

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 11817748

Country of ref document: EP

Kind code of ref document: A1