WO2012100684A1 - Method and device for controlling access to local network - Google Patents

Method and device for controlling access to local network Download PDF

Info

Publication number
WO2012100684A1
WO2012100684A1 PCT/CN2012/070309 CN2012070309W WO2012100684A1 WO 2012100684 A1 WO2012100684 A1 WO 2012100684A1 CN 2012070309 W CN2012070309 W CN 2012070309W WO 2012100684 A1 WO2012100684 A1 WO 2012100684A1
Authority
WO
WIPO (PCT)
Prior art keywords
local network
access
network
local
remotely
Prior art date
Application number
PCT/CN2012/070309
Other languages
French (fr)
Chinese (zh)
Inventor
康艳超
周燕飞
Original Assignee
电信科学技术研究院
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 电信科学技术研究院 filed Critical 电信科学技术研究院
Publication of WO2012100684A1 publication Critical patent/WO2012100684A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/08Access restriction or access information delivery, e.g. discovery data delivery
    • H04W48/14Access restriction or access information delivery, e.g. discovery data delivery using user query or user detection

Definitions

  • the present invention relates to the field of communications technologies, and in particular, to a method and apparatus for controlling access to a local network.
  • BACKGROUND H(e)B (Home (Evolved) NodeB, a home base station) is a base station device that improves indoor wireless coverage, and also provides a local access function, that is, a UE can access a local network associated with a home base station through a home base station. For example: home network and corporate network.
  • LIPA Local IP Access
  • a UE User Equipment
  • a local network for example, a home network or a corporate network
  • the UE accesses the local network through the LGW (Local Gateway).
  • the local gateway can be implemented on the same physical entity as the home base station, or can be located in different physical entities.
  • the PDN packet data network (PDN) connection of the LTE Long Term Evolution (LTE) system is an IP connection established between the UE and the packet data network.
  • the network After receiving the PDN connection establishment request of the UE, the network will select the appropriate PDN GW packet data gateway (PDN Gateway, the packet data gateway can be written as PDN GW or can be written as PGW).
  • PDN Gateway the packet data gateway can be written as PDN GW or can be written as PGW.
  • the PDN GW recorded in the PDN subscription context of the user is preferentially selected.
  • the PDN network is a local network, such as a home network or a corporate network
  • the PGW is an LGW (local gateway).
  • a direct user path is used between the home base station and the local gateway, and user data can directly enter the local network or access the Internet (Internet) through the home base station and the local gateway.
  • LIPA access control is for each APN (Access Point Name, access point name, used to identify the PDN network) and each CSG (Closed Subscriber Group), specifically by MME (Mobility Management Entity, The mobility management entity) controls based on the PDN subscription context of the UE. Therefore, in the PDN subscription context of the UE, the CSG cell LIPA corresponding to which CSG IDs (CSG identifiers) can be accessed by the UE can be used to access the local networks corresponding to the APNs.
  • the UE can access the PDN network through the home base station to access the PLMN (Public Land Mobile Network), and can also use the LIPA technology to pass between the home base station and the local gateway. Direct user access to the local network.
  • PLMN Public Land Mobile Network
  • Embodiments of the present invention provide a method and apparatus for controlling access to a local network, which are used to control a UE to remotely access a local network.
  • the UE When determining that the APN is an APN of a local network, the UE has local IP access rights of the local network, and the UE is a UE that needs to remotely access the local network, according to packet data corresponding to the UE
  • the network PDN subscription context determines whether the UE is allowed to access the local network remotely.
  • An APN obtaining unit configured to acquire an access point name APN of a network that the user equipment UE requests to access; a determining processing unit, configured to: when determining that the APN is an APN of a local network, where the UE has a local network The IP access right, and the UE is a UE that needs to remotely access the local network, and determines whether to allow the UE to remotely access the local network according to the packet data network PDN subscription context corresponding to the UE.
  • the access point name APN of the network that the user equipment UE requests to access is obtained; when the APN is determined to be the APN of the local network, the UE has the local IP access right of the local network, and the UE When it is required to remotely access the UE of the local network, according to the packet data network PDN signing context corresponding to the UE, determining whether to allow the UE to remotely access the local network, thereby implementing control of the UE remotely accessing the local network, when In the case that the UE is allowed to access the local network remotely, the UE may be further accessed by the remote network.
  • FIG. 1 is a schematic flowchart of a method for controlling access to a local network according to an embodiment of the present invention
  • FIG. 2 is a schematic diagram of a network of a local home base station according to an embodiment of the present invention
  • FIG. 3 is a schematic diagram of a specific process of controlling a core network control node to access a local network according to an embodiment of the present invention
  • FIG. 4 is a schematic diagram of an attach process initiated by a UE
  • FIG. 5 is a schematic diagram of a PDN connection process initiated by a UE
  • FIG. 6 is a schematic flowchart of a method according to Embodiment 3 of the present disclosure.
  • FIG. 7 is a schematic structural diagram of an apparatus for controlling access to a local network according to an embodiment of the present disclosure
  • FIG. 8 is a schematic diagram of two user paths connected to a PDN network and a local network according to the prior art
  • FIG. 9 is a schematic diagram of a user path of a user remotely accessing a local network according to an embodiment of the present invention.
  • a method and apparatus for controlling access to a local network are used to control a UE to remotely access a local network.
  • the embodiment of the present invention proposes that when a CSG member (that is, a UE having the access right of the CSG cell) has the LIPA access right of the local network of the CSG cell and is not within the access range of the CSG cell, the CSG member can pass the PLMN.
  • a CSG member that is, a UE having the access right of the CSG cell
  • the CSG member can pass the PLMN.
  • VPN visited PLMN
  • the technical solution provided by the embodiment of the present invention is applicable to an LTE system and a UMTS (Universal Mobile Telecommunication System).
  • a method for controlling a core network control node to access a local network includes the following steps:
  • the UE When determining that the APN is the APN of the local network, the UE has the LIPA (Local IP Access) right of the local network, and the UE is a UE that needs to remotely access the local network, according to the packet data network corresponding to the UE.
  • the PDN subscription context determines whether the UE is allowed to access the local network remotely.
  • the core network control node in the embodiment of the present invention is an MME (Mobility Management Entity) or an SGSN (GPRS Service Support Node).
  • MME Mobility Management Entity
  • SGSN GPRS Service Support Node
  • the UE is determined to be a UE that needs to remotely access the local network, and includes:
  • the UE When the CSG ID (closed user group identifier) is not carried in the Attach Request message or the service request message sent by the UE, the UE is determined to be a UE that needs to remotely access the local network.
  • the CSG ID (closed user group identifier) of the CSG cell is carried in the attach request message or the service request message sent by the HeNB.
  • the determining, according to the packet data network PDN subscription context corresponding to the UE, determining whether to allow the UE to remotely access the local network includes:
  • the core network control node may obtain the PDN corresponding to the UE from the HSS (Home Subscriber Server) or the Home Location Register (HLR) in the UE-initiated attach process or the service request process. Sign the contract and save it, which can be applied directly.
  • HSS Home Subscriber Server
  • HLR Home Location Register
  • the identifier of the local network in the local network corresponding to different UEs in the HSS and the HLR is added in advance, and the identifier of the local network may be allowed to be remotely accessed, for example: Remote Access Permission ).
  • the identifier is set based on the subscription information of the user and the home network operator, and is used to identify whether the user can remotely access the local network. For example, when the identifier is set to 1, the UE is allowed to remotely access the local network, and the identifier is set. When 0, it means that the UE is not allowed to access the local network remotely.
  • the identifier of the local network in the roaming state may be allowed to be remotely accessed in the PDN subscription context of the local network corresponding to the different UEs in the HSS and the HLR.
  • the identifier may be: VPLMN Remote Access Allowed (VPLMN Remote Access Allowed).
  • the identifier is set in the roaming agreement between the home network operator and the roaming network operator to identify whether the user can remotely access the local network in the roaming network having the roaming agreement. For example, when the identifier is set to 1, it indicates that the UE in the roaming state is allowed to access the local network remotely. When the identifier is set to 0, the UE in the roaming state is not allowed to remotely access the local network.
  • the method further includes:
  • the method further includes:
  • the UE in the roaming state is controlled to remotely access the local network.
  • the controlling the UE to access the local network remotely includes:
  • the UE remotely accessing the local network in the roaming state includes:
  • the LGW address recorded in the PDN subscription context corresponding to the UE in the roaming state is taken as the PDN of the UE.
  • the determining the local gateway LGW address of the local network includes:
  • the home base station and the local gateway may be separate physical entities, and the local home base station network (LHN) is as shown in FIG. 2, where a Packet Data Network (PDN) is also a local network.
  • LHN local home base station network
  • PDN Packet Data Network
  • An LHN consists of a set of H(e) Bs that can obtain IP connections to the local network through one or more LGWs.
  • An LHN is identified by an LHN ID.
  • the LHN has the following characteristics:
  • a home base station can only belong to one LHN;
  • An LGW can only belong to one LHN
  • the network When the network selects the PDN GW, it will preferentially choose to record the PDN GW in the user's PDN subscription context. If the PDN GW address is not provided in the subscription information, the network can use the subscription information to obtain the address of the PDN GW by querying the DNS.
  • the LGW address of the local network may be recorded in advance in the PDN GW entry in the PDN subscription context of the local network corresponding to different UEs in the HSS, and may be different in the HLR and different UEs.
  • the GGSN (Gateway GPRS Support Node) identifier of the GGSN (Gateway GPRS Support Node) in the PDN subscription context of the corresponding local network records the LGW address of the local network, or increases the record and the APN allowing remote access.
  • the LGW address can be an FQDN (Fully Qualified Domain Name) or an IP address (address).
  • the PDN GW recorded in the PDN subscription context of the user is preferentially selected, so the PDN GW entry in the PDN subscription context of the local network corresponding to the different UEs in the HSS is recorded locally here.
  • the LGW address of the network, and the GGSN identity entry in the PDN subscription context of the local network corresponding to different UEs in the HLR record the LGW address of the local network, which can improve the efficiency of remote access to the local network without waiting for the HeNB to report the LGW. address.
  • the MME may check the remote location for establishing the UE to the local network from the DNS according to the LHN ID and the APN.
  • the LGW address to be accessed, the specific method can be:
  • the MME sends a query LGW address request to the DNS, where the LHN ID and the APN are carried;
  • the DNS determines the LGW address corresponding to the LHN according to the LHN ID (possibly including multiple LGW addresses);
  • the DNS determines the LGW address corresponding to the APN from the LGW address corresponding to the LHN according to the APN, and sends the LGW address to the MME.
  • the LGW address can be used as a PDN GW when remotely accessing the local network, providing access to the local network. Specific explanations are given below.
  • the UE When the user needs to initiate remote access, the UE sends the APN of the local network that needs to be remotely accessed to the network side. Specifically, the PDN connection request message or the Activate Packet Data Protocol Context Request may be activated. Context Request) The APN unit (IE) in the message is transmitted.
  • the core network control node determines according to the subscription data: This is an APN of the local network, and the UE has the LIPA access right of the local network identified by the APN, and the UE is not An access request is initiated in a CSG cell of the local network of the APN that allows LIPA access. Then, the core network control node determines whether the UE has subscription information for remote access to the local network, and if so, allows the UE to perform remote access. Further, in the user roaming scenario, the core network control node determines whether the UE has subscription information for remote access in the VPLMN.
  • the specific judgment process of the core network control node is shown in Figure 3, including the steps:
  • the core network control node determines whether the APN sent by the UE is an APN of the local network, and if yes, performs step S203; otherwise, performs step S202.
  • the core network control node accesses according to the existing process, and the determining process is terminated.
  • the core network control node further determines whether the UE has the LIPA access right of the local network that accesses the APN identifier. If yes, step S205 is performed. Otherwise, step S204 is performed.
  • the core network control node rejects the access request of the UE, and the determining process is terminated.
  • the core network control node determines whether the cell that the UE initiates the connection request is a CSG cell that is allowed to access the LIPA by the local network identified by the APN. If yes, step S206 is performed; otherwise, step S207 is performed.
  • the cell in which the UE initiates the connection request is a CSG cell that the local network of the APN identity allows the LIPA to access, if the UE initiates the connection request.
  • the cell is a CSG cell that the local network of the APN identity allows the LIPA to access.
  • the CSG ID is included in the attach request message or the service request message sent by the UE. Otherwise, the CSG ID is not included in the attach request message or the service request message sent by the UE. . Therefore, it can be determined whether the cell in which the UE initiates the connection request is a CSG cell that the local network that the APN identifies allows the LIPA to access, that is, whether the UE needs to remotely access the local network.
  • the core network control node performs the LIPA access procedure according to the provisions of the existing protocol, and the determining process is terminated.
  • the core network control node determines, according to the user subscription information, whether the UE has the right to remotely access the local network of the APN identifier. If yes, step S208 is performed. Otherwise, step S211 is performed.
  • the core network control node determines, according to the PLMN ID submitted by the UE, whether the user is a diffuse The user is logged, if yes, step S209 is performed, otherwise, step S211 is performed.
  • the core network control node determines, according to the user subscription information, whether the user has the right to remotely access the local network of the APN identifier from the VPLMN. If yes, step S210 is performed; otherwise, step S211 is performed.
  • the core network control node accepts the remote access, and the judgment process is terminated.
  • the core network control node rejects the remote access, and the determining process is terminated.
  • the core network control node After determining that the UE accepts the remote access to the local network identified by the APN from the PLMN or the VPLMN, the core network control node completes the process of the UE accessing the local network identified by the APN remotely from the PLMN or the VPLMN by using the procedure specified by the existing protocol.
  • the local network identified by the APN may be regarded as a normal PDN network, and obtained locally from a PDN GW item or a GGSN identity item in a PDN subscription context of a local network corresponding to different UEs in the HSS or HLR.
  • the LGW address of the network is used as the PDN GW of the remote access local network, or if the LGW address of the local network is not recorded in the PDN subscription context of the local network corresponding to the UE, the LHN ID is recorded (local
  • the home base station network identifier can be used to determine the LHN ID, and the APN determines the LGW address, and then completes the process of the UE remotely accessing the local network identified by the APN according to the existing procedure.
  • Embodiment 1 is a diagrammatic representation of Embodiment 1:
  • the user-initiated Attach process is shown in Figure 4.
  • the user accesses the local network remotely through the LTE system through the Attach process.
  • the UE sets a Ciphered Options Transfer Flag in the Attach Request message sent to the network side, indicating that the APN will be provided to the network side in subsequent messages. And, the subsequent UE sends an APN of the local network that initiates the remote access to the MME in the Ciphered Options Response message sent to the network side.
  • the MME obtains the PDN subscription context corresponding to the UE saved in the HSS through the Update Location Ack message sent by the HSS, and saves it locally. Then, the MME performs a remote access control step, that is, performs remote access control according to the remote access determination logic shown in FIG. 2: If the remote access is accepted, the MME allocates the local network of the APN identifier recorded in the PDN subscription context to the UE.
  • Corresponding LGW or, according to the LHN ID and APN recorded in the PDN subscription context, allocate the LGW address to the UE, and use the existing procedure to establish a remote access to the local network for the UE; if the remote access is rejected, the MME may reject the UE The PDN connection request, and returns the reason for the rejection.
  • Embodiment 2 is a diagrammatic representation of Embodiment 1:
  • the PDN connection process initiated by the UE is as shown in FIG. 5, and the user requests to remotely access the local network through the LTE system through the PDN connection process initiated by the UE.
  • the UE sends the APN of the local network that needs to be remotely accessed to the MME in the PDN Connectivity Request. Then, the MME performs a remote access control step, that is, remote access as shown in FIG. Determining logic, performing remote access control: If the remote access is accepted, the MME allocates the LGW corresponding to the local network of the APN identifier recorded in the PDN subscription context to the UE, or uses the LHN ID and the APN recorded in the PDN subscription context as the UE. The LGW address is allocated, and the existing procedure is used to establish remote access to the local network for the UE; if the remote access is rejected, the MME may reject the PDN connection request of the UE and return the reason for the rejection.
  • a remote access control step that is, remote access as shown in FIG. Determining logic, performing remote access control: If the remote access is accepted, the MME allocates the LGW corresponding to the local network of the APN identifier recorded in the PDN subscription context to the UE, or
  • Embodiment 3 is a diagrammatic representation of Embodiment 3
  • the PDP Context Activation Procedure is shown in Figure 5.
  • the user requests remote access to the local network through the UMTS system through the PDP Context Activation Procedure.
  • the MS mobile terminal
  • the MS sends an APN of the local network that needs to be remotely accessed to the SGSN in the Activate PDP context request message.
  • the SGSN performs a remote access control step, that is, performs remote access control according to the remote access judgment logic shown in FIG. 3: If the remote access is accepted, the SGSN allocates the local network of the APN identifier recorded in the PDN subscription context to the MS.
  • Corresponding LGW or, according to the LHN ID and APN recorded in the PDN subscription context, allocate an LGW address to the UE, and use the existing process to establish a remote access to the local network for the MS; if the remote access is rejected, the SGSN may reject the MS The PDN connection request, and returns the reason for the rejection.
  • an apparatus for controlling access to a local network includes:
  • the APN obtaining unit 101 is configured to acquire an access point name APN of the network that the user equipment UE requests to access; the determining processing unit 102 is configured to: when determining that the APN is an APN of a local network, where the UE has the local network The local IP access right, and the UE is a UE that needs to remotely access the local network, and determines whether to allow the UE to remotely access the local network according to the packet data network PDN subscription context corresponding to the UE.
  • the determining processing unit 102 determines that the UE is a UE that needs to remotely access the local network when the CSG ID is not carried in the attach request message or the service request message sent by the UE.
  • the determining processing unit 102 determines whether to allow the UE to remotely access the local network according to whether the UE is allowed to remotely access the identifier of the local network in the PDN subscription context corresponding to the UE.
  • the determining processing unit 102 determines, when the UE is allowed to remotely access the local network, whether the UE is a UE in a roaming state; if yes, according to a PDN subscription context corresponding to the UE in the roaming state Whether the UE in the roaming state is allowed to remotely access the identity of the local network, and whether the UE in the roaming state is allowed to remotely access the local network; otherwise, the UE is controlled to remotely access the local network.
  • the determining processing unit 102 controls the UE in the roaming state to remotely access the local network when determining that the UE in the roaming state is allowed to remotely access the local network.
  • the determining processing unit 102 establishes a remote access of the UE to the local network by using the local gateway LGW address recorded in the PDN subscription context corresponding to the UE as the PDN gateway address of the UE;
  • the LGW address recorded in the PDN signing context corresponding to the UE is used as the PDN gateway address of the UE, and the flood is established.
  • the determining processing unit 102 obtains a local home base station network identifier LHN ID of the local network recorded in the PDN subscription context corresponding to the UE, and determines the LGW address according to the LHN ID and the APN.
  • the device may be an MME or an SGSN.
  • the UE may access the PDN network through the home base station to access the PDN network, or may access the local through the direct user path between the home base station and the local gateway by using the LIPA technology.
  • the network cannot access the local network remotely when the UE is in the PLMN.
  • the access point name APN of the network that the user equipment UE requests to access is obtained.
  • the APN is determined to be the APN of the local network, and the UE has the local IP access right of the local network, And if the UE is a UE that needs to remotely access the local network, determine whether to allow the UE to access the local network remotely according to the packet data network PDN subscription context corresponding to the UE, so that the UE can remotely control the local network.
  • the UE may further access the local network according to the existing protocol, as shown in FIG. 9 .
  • embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, the present invention is in the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage and optical storage, etc.) in which computer usable program code is embodied.
  • the computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device.
  • the apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Disclosed are a method and a device for controlling access to a local network, for controlling a UE to remotely access the local network. The method comprises: acquiring an access point name (APN) sent by a user equipment (UE) and belonging to a network to which access is requested; and when determining that the APN is an APN of a local network, the UE has the authority of local IP access to the local network, and the UE is a UE requiring remote access to the local network, determining, according to a packet data network (PDN) subscription context corresponding to the UE, whether the UE is allowed to remotely access the local network.

Description

一种控制接入本地网络的方法及装置 本申请要求在 2011年 1月 25日提交中国专利局、 申请号为 201110026563.4、 发明名称为 "一种控制接入本地网络的方法及装置"的中国专利申请的优选权, 以及要求 2011年 7月 11 日提交中国专利局、 申请号为 201110192651.1、 发明名称为 "一种控制接入本地网络的方 法及装置" 的优先权, 其全部内容通过引用结合在本申请中。 技术领域  Method and device for controlling access to local network This application claims to be Chinese patent filed on January 25, 2011, with the application number of 201110026563.4, and the invention titled "a method and device for controlling access to a local network" The right of application, and the priority of the Chinese Patent Office, application number 201110192651.1, entitled "A method and device for controlling access to the local network", submitted on July 11, 2011, the entire contents of which are incorporated by reference. In this application. Technical field
本发明涉及通信技术领域, 尤其涉及一种控制接入本地网络的方法及装置。  The present invention relates to the field of communications technologies, and in particular, to a method and apparatus for controlling access to a local network.
背景技术 H(e) B ( Home (Evolved) NodeB, 家庭基站)是一种提高室内无线覆盖的基站设备, 并且还提供本地接入功能, 即 UE可以通过家庭基站接入家庭基站关联的本地网络, 例如: 家庭网络和企业网络等。 BACKGROUND H(e)B (Home (Evolved) NodeB, a home base station) is a base station device that improves indoor wireless coverage, and also provides a local access function, that is, a UE can access a local network associated with a home base station through a home base station. For example: home network and corporate network.
LIPA ( Local IP Access, 本地 IP接入)是一种允许 UE ( User Equipment, 用户设备 ) 通过家庭基站接入到与该家庭基站关联的本地网络(例如: 家庭网络、 企业网络) 的一种 技术。 UE通过 LGW ( Local Gateway, 本地网关)接入到本地网络, 本地网关可以与家庭 基站在同一个物理实体上实现, 也可以分别位于不同的物理实体。  LIPA (Local IP Access) is a technology that allows a UE (User Equipment) to access a local network (for example, a home network or a corporate network) associated with the home base station through a home base station. . The UE accesses the local network through the LGW (Local Gateway). The local gateway can be implemented on the same physical entity as the home base station, or can be located in different physical entities.
LTE长期演进( LTE, Long Term Evolution,长期演进)系统的 PDN分组数据网( Packet Data Network, 分组数据网 PDN )连接, 是在 UE与分组数据网之间建立的 IP连接。 收到 UE的 PDN连接建立请求后, 网络将为 UE选择合适的 PDN GW分组数据网关 ( PDN Gateway, 分组数据网关可以筒写为 PDN GW, 也可以筒写为 PGW ) )。 网络在为 UE选择 PDN GW时, 优先选择在用户的 PDN签约上下文中有记录的 PDN GW。  The PDN packet data network (PDN) connection of the LTE Long Term Evolution (LTE) system is an IP connection established between the UE and the packet data network. After receiving the PDN connection establishment request of the UE, the network will select the appropriate PDN GW packet data gateway (PDN Gateway, the packet data gateway can be written as PDN GW or can be written as PGW). When the network selects the PDN GW for the UE, the PDN GW recorded in the PDN subscription context of the user is preferentially selected.
在釆用 LIPA技术的应用场景中, PDN网络即本地网络, 例如家庭网络或企业网络, PGW 即 LGW (本地网关)。 家庭基站与本地网关之间釆用直接用户通路, 用户数据可以 通过家庭基站和本地网关直接进入本地网络或接入 Internet (因特网)。  In the application scenario where the LIPA technology is used, the PDN network is a local network, such as a home network or a corporate network, and the PGW is an LGW (local gateway). A direct user path is used between the home base station and the local gateway, and user data can directly enter the local network or access the Internet (Internet) through the home base station and the local gateway.
LIPA的接入控制是针对每个 APN ( Access Point Name ,接入点名称,用于标识了 PDN 网络) 和每个 CSG ( Closed Subscriber Group, 闭合用户群) 的, 具体由 MME ( Mobility Management Entity, 移动性管理实体 )基于 UE的 PDN签约上下文进行控制。 因此在 UE 的 PDN签约上下文中明确指出了 UE可以通过哪些 CSG ID ( CSG标识)对应的 CSG小区 LIPA接入哪些 APN对应的本地网络。 综上所述, 现有技术中, UE 可以通过家庭基站接入到 PLMN ( Public Land Mobile Network, 公共陆地移动网络), 从而访问 PDN网络, 也可以利用 LIPA技术通过家庭基站 和本地网关之间的直接用户通路访问本地网络。但是,现有技术中当 UE处于 PLMN中时, 无法远程接入到本地网络。 发明内容 本发明实施例提供了一种控制接入本地网络的方法及装置, 用以控制 UE远程接入本 地网络。 LIPA access control is for each APN (Access Point Name, access point name, used to identify the PDN network) and each CSG (Closed Subscriber Group), specifically by MME (Mobility Management Entity, The mobility management entity) controls based on the PDN subscription context of the UE. Therefore, in the PDN subscription context of the UE, the CSG cell LIPA corresponding to which CSG IDs (CSG identifiers) can be accessed by the UE can be used to access the local networks corresponding to the APNs. In summary, in the prior art, the UE can access the PDN network through the home base station to access the PLMN (Public Land Mobile Network), and can also use the LIPA technology to pass between the home base station and the local gateway. Direct user access to the local network. However, in the prior art, when the UE is in the PLMN, it is not possible to remotely access the local network. SUMMARY OF THE INVENTION Embodiments of the present invention provide a method and apparatus for controlling access to a local network, which are used to control a UE to remotely access a local network.
本发明实施例提供的一种控制接入本地网络的方法包括:  A method for controlling access to a local network provided by an embodiment of the present invention includes:
获取用户设备 UE发送的请求接入的网络的接入点名称 APN;  Obtaining an access point name of the network that the user equipment UE requests to access, APN;
当确定所述 APN为本地网络的 APN、 所述 UE具有该本地网络的本地 IP接入权限, 并且 UE为需要进行远程接入所述本地网络的 UE时, 根据与该 UE相对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程接入所述本地网络。  When determining that the APN is an APN of a local network, the UE has local IP access rights of the local network, and the UE is a UE that needs to remotely access the local network, according to packet data corresponding to the UE The network PDN subscription context determines whether the UE is allowed to access the local network remotely.
本发明实施例提供的一种控制接入本地网络的装置包括:  An apparatus for controlling access to a local network according to an embodiment of the present invention includes:
APN获取单元, 用于获取用户设备 UE发送的请求接入的网络的接入点名称 APN; 判断处理单元, 用于当确定所述 APN为本地网络的 APN、 所述 UE具有该本地网络 的本地 IP接入权限, 并且 UE为需要进行远程接入所述本地网络的 UE时, 根据与该 UE 相对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程接入所述本地网络。  An APN obtaining unit, configured to acquire an access point name APN of a network that the user equipment UE requests to access; a determining processing unit, configured to: when determining that the APN is an APN of a local network, where the UE has a local network The IP access right, and the UE is a UE that needs to remotely access the local network, and determines whether to allow the UE to remotely access the local network according to the packet data network PDN subscription context corresponding to the UE.
本发明实施例, 获取用户设备 UE发送的请求接入的网络的接入点名称 APN; 当确定 所述 APN为本地网络的 APN、 所述 UE具有该本地网络的本地 IP接入权限, 并且 UE为 需要进行远程接入本地网络的 UE时,根据与该 UE相对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程接入本地网络, 从而可以实现对 UE远程接入本地网络的控制, 当 允许 UE远程接入本地网络的情况下, 进一步可以使得 UE远程接入本地网络 附图说明  In the embodiment of the present invention, the access point name APN of the network that the user equipment UE requests to access is obtained; when the APN is determined to be the APN of the local network, the UE has the local IP access right of the local network, and the UE When it is required to remotely access the UE of the local network, according to the packet data network PDN signing context corresponding to the UE, determining whether to allow the UE to remotely access the local network, thereby implementing control of the UE remotely accessing the local network, when In the case that the UE is allowed to access the local network remotely, the UE may be further accessed by the remote network.
图 1为本发明实施例提供的一种控制接入本地网络的方法的总体流程示意图; 图 2为本发明实施例提供的本地家庭基站网络示意图;  1 is a schematic flowchart of a method for controlling access to a local network according to an embodiment of the present invention; FIG. 2 is a schematic diagram of a network of a local home base station according to an embodiment of the present invention;
图 3为本发明实施例提供的核心网控制节点控制接入本地网络的具体流程示意图; 图 4为 UE发起的附着 ( Attach )过程示意图;  FIG. 3 is a schematic diagram of a specific process of controlling a core network control node to access a local network according to an embodiment of the present invention; FIG. 4 is a schematic diagram of an attach process initiated by a UE;
图 5为 UE发起的 PDN连接过程示意图;  FIG. 5 is a schematic diagram of a PDN connection process initiated by a UE;
图 6为本发明实施例提供的实施例三的方法流程示意图;  FIG. 6 is a schematic flowchart of a method according to Embodiment 3 of the present disclosure;
图 7为本发明实施例提供的一种控制接入本地网络的装置结构示意图; 图 8为现有技术提供的连接到 PDN网络和本地网络的两种用户路径示意图; 图 9为本发明实施例提供的用户远程接入到本地网络的用户路径示意图 具体实施方式 本发明实施例提供了一种控制接入本地网络的方法及装置, 用以控制 UE远程接入本 地网络。 FIG. 7 is a schematic structural diagram of an apparatus for controlling access to a local network according to an embodiment of the present disclosure; FIG. 8 is a schematic diagram of two user paths connected to a PDN network and a local network according to the prior art; FIG. 9 is a schematic diagram of a user path of a user remotely accessing a local network according to an embodiment of the present invention. A method and apparatus for controlling access to a local network are used to control a UE to remotely access a local network.
本发明实施例提出了一种当 CSG成员(即具有该 CSG小区接入权限的 UE )具有 CSG 小区的本地网络的 LIPA接入权限并且不在 CSG小区的接入范围内时, CSG成员可以通过 PLMN远程接入到本地网络的技术方案, 并且在漫游协议允许的情况下, 同样适用于 CSG 成员通过拜访的 PLMN ( VPLMN )远程接入到本地网络。  The embodiment of the present invention proposes that when a CSG member (that is, a UE having the access right of the CSG cell) has the LIPA access right of the local network of the CSG cell and is not within the access range of the CSG cell, the CSG member can pass the PLMN. The remote access to the local network's technical solution, and if the roaming agreement allows, the same applies to CSG members remote access to the local network through the visited PLMN (VPLMN).
本发明实施例提供的技术方案, 适用于 LTE 系统和 UMTS ( Universal Mobile Telecommunication System, 通用移动通信系统 )。  The technical solution provided by the embodiment of the present invention is applicable to an LTE system and a UMTS (Universal Mobile Telecommunication System).
在网络侧, 参见图 1 , 本发明实施例提供的一种核心网控制节点控制接入本地网络的 方法包括步骤:  On the network side, referring to FIG. 1, a method for controlling a core network control node to access a local network according to an embodiment of the present invention includes the following steps:
S101、 获取用户设备 UE发送的请求接入的网络的接入点名称 APN。  S101. Acquire an access point name APN of a network that the user equipment UE requests to access.
S102、 当确定 APN为本地网络的 APN、 UE具有该本地网络的 LIPA (本地 IP接入) 权限, 并且 UE为需要进行远程接入本地网络的 UE时, 根据与该 UE相对应的分组数据 网 PDN签约上下文, 确定是否允许 UE远程接入本地网络。  S102. When determining that the APN is the APN of the local network, the UE has the LIPA (Local IP Access) right of the local network, and the UE is a UE that needs to remotely access the local network, according to the packet data network corresponding to the UE. The PDN subscription context determines whether the UE is allowed to access the local network remotely.
其中, 本发明实施例中所述的核心网控制节点, 为 MME (移动性管理实体)或 SGSN ( GPRS服务支持节点)。  The core network control node in the embodiment of the present invention is an MME (Mobility Management Entity) or an SGSN (GPRS Service Support Node).
通过查找与 UE相对应的 PDN签约上下文, 确定 UE是否具有本地网络的本地 IP接 入权限。也就是说, 可以根据 PDN签约上下文中的 APN和是否允许 UE建立到该 APN对 应的本地网络的 LIPA连接的标识, 确定 UE是否具有 APN标识的本地网络的 LIPA接入 权限。  It is determined whether the UE has the local IP access right of the local network by looking up the PDN subscription context corresponding to the UE. That is to say, whether the UE has the LIPA access right of the local network with the APN identity can be determined according to the APN in the PDN subscription context and whether the UE is allowed to establish the identity of the LIPA connection to the local network corresponding to the APN.
较佳地, 确定 UE为需要进行远程接入本地网络的 UE, 包括:  Preferably, the UE is determined to be a UE that needs to remotely access the local network, and includes:
当 UE发送的 Attach Request (附着请求)消息或服务请求消息中没有携带 CSG ID (闭 合用户群标识) 时, 确定 UE为需要进行远程接入本地网络的 UE。  When the CSG ID (closed user group identifier) is not carried in the Attach Request message or the service request message sent by the UE, the UE is determined to be a UE that needs to remotely access the local network.
如果 UE是在 CSG小区中, 则通过 HeNB发送的附着请求消息或服务请求消息中,会 携带该 CSG小区的 CSG ID (闭合用户群标识)。  If the UE is in the CSG cell, the CSG ID (closed user group identifier) of the CSG cell is carried in the attach request message or the service request message sent by the HeNB.
较佳地, 所述根据与该 UE相对应的分组数据网 PDN签约上下文, 确定是否允许 UE 远程接入本地网络, 包括:  Preferably, the determining, according to the packet data network PDN subscription context corresponding to the UE, determining whether to allow the UE to remotely access the local network, includes:
根据与该 UE相对应的 PDN签约上下文中的是否允许 UE远程接入本地网络的标识, 确定是否允许 UE远程接入本地网络。 Determining whether the UE is allowed to remotely access the identity of the local network according to the PDN subscription context corresponding to the UE, Determine if the UE is allowed to access the local network remotely.
其中, 在 UE发起的附着过程或服务请求过程中, 核心网控制节点可以从 HSS ( Home Subscriber Server, 家庭用户服务器)或 HLR ( Home Location Register, 归属位置寄存器) 中获取与该 UE相对应的 PDN签约上下文, 并进行保存, 后续可以直接应用。  The core network control node may obtain the PDN corresponding to the UE from the HSS (Home Subscriber Server) or the Home Location Register (HLR) in the UE-initiated attach process or the service request process. Sign the contract and save it, which can be applied directly.
本发明实施例中,预先在 HSS和 HLR中的与不同 UE相对应的本地网络的 PDN签约 上下文中增加是否允许 UE 远程接入本地网络的标识, 例如可以是: Remote Access Permission (远程接入允许)。 该标识是基于用户与归属网络运营商的签约信息设置的, 用 于标识用户是否能够远程接入该本地网络, 例如可以设置该标识为 1时, 表示允许 UE远 程接入本地网络, 设置该标识为 0时, 表示不允许 UE远程接入本地网络。  In the embodiment of the present invention, the identifier of the local network in the local network corresponding to different UEs in the HSS and the HLR is added in advance, and the identifier of the local network may be allowed to be remotely accessed, for example: Remote Access Permission ). The identifier is set based on the subscription information of the user and the home network operator, and is used to identify whether the user can remotely access the local network. For example, when the identifier is set to 1, the UE is allowed to remotely access the local network, and the identifier is set. When 0, it means that the UE is not allowed to access the local network remotely.
进一步, 本发明实施例中, 还可以预先在 HSS和 HLR中的与不同 UE相对应的本地 网络的 PDN签约上下文中增加是否允许漫游状态下的 UE远程接入本地网络的标识,例如 可以是: VPLMN Remote Access Allowed ( VPLMN远程接入允许)。 该标识 ^&于归属网 络运营商同漫游网络运营商之间的漫游协议而设置的, 用于标识用户在具有该漫游协议的 漫游网络中是否能够远程接入本地网络。 例如, 设置该标识为 1时, 表示允许漫游状态下 的 UE远程接入本地网络, 设置该标识为 0时, 表示不允许漫游状态下的 UE远程接入本 地网络。  Further, in the embodiment of the present invention, the identifier of the local network in the roaming state may be allowed to be remotely accessed in the PDN subscription context of the local network corresponding to the different UEs in the HSS and the HLR. For example, the identifier may be: VPLMN Remote Access Allowed (VPLMN Remote Access Allowed). The identifier is set in the roaming agreement between the home network operator and the roaming network operator to identify whether the user can remotely access the local network in the roaming network having the roaming agreement. For example, when the identifier is set to 1, it indicates that the UE in the roaming state is allowed to access the local network remotely. When the identifier is set to 0, the UE in the roaming state is not allowed to remotely access the local network.
较佳地, 当确定允许 UE远程接入本地网络时, 该方法还包括:  Preferably, when it is determined that the UE is allowed to access the local network remotely, the method further includes:
判断 UE是否为漫游状态下的 UE;  Determining whether the UE is a UE in a roaming state;
如果是,则根据与该漫游状态下的 UE相对应的 PDN签约上下文中的是否允许漫游状 态下的 UE远程接入本地网络的标识,判断是否允许漫游状态下的 UE远程接入本地网络; 否则, 控制 UE远程接入本地网络。  If yes, determining whether to allow the UE in the roaming state to remotely access the local network according to whether the UE in the roaming state is allowed to remotely access the local network in the PDN subscription context corresponding to the UE in the roaming state; otherwise, Control the UE to access the local network remotely.
较佳地, 该方法还包括:  Preferably, the method further includes:
当确定允许漫游状态下的 UE远程接入本地网络时, 控制漫游状态下的 UE远程接入 本地网络。  When it is determined that the UE in the roaming state is allowed to remotely access the local network, the UE in the roaming state is controlled to remotely access the local network.
较佳地, 所述控制 UE远程接入本地网络, 包括:  Preferably, the controlling the UE to access the local network remotely includes:
将与 UE相对应的 PDN签约上下文中记载的本地网关 LGW地址作为 UE的 PDN GW 地址, 建立 UE到本地网络的远程接入; 或者, 确定本地网络的本地网关 LGW地址, 将 该 LGW地址作为 UE的 PDN GW地址, 建立 UE到本地网络的远程接入;  Establishing the remote access of the UE to the local network by using the local gateway LGW address recorded in the PDN subscription context corresponding to the UE as the PDN GW address of the UE; or determining the local gateway LGW address of the local network, and using the LGW address as the UE PDN GW address, establishing remote access of the UE to the local network;
较佳地, 所述控制漫游状态下的 UE远程接入本地网络, 包括:  Preferably, the UE remotely accessing the local network in the roaming state includes:
将与漫游状态下的 UE相对应的 PDN签约上下文中记载的 LGW地址作为 UE的 PDN The LGW address recorded in the PDN subscription context corresponding to the UE in the roaming state is taken as the PDN of the UE.
GW地址, 建立漫游状态下的 UE到本地网络的远程接入; 或者, 确定本地网络的本地网 关 LGW地址, 将该 LGW地址作为 UE的 PDN GW地址, 建立漫游状态下的 UE到本地 网络的远程接入。 较佳地, 所述确定本地网络的本地网关 LGW地址, 包括: GW address, establishing remote access of the UE to the local network in the roaming state; or determining the local gateway LGW address of the local network, using the LGW address as the PDN GW address of the UE, and establishing the UE in the roaming state to the remote of the local network Access. Preferably, the determining the local gateway LGW address of the local network includes:
将与 UE相对应的 PDN签约上下文中记载的 LGW地址, 确定为本地网络的 LGW地 址; 或者,  Determining, as the LGW address of the local network, the LGW address recorded in the PDN subscription context corresponding to the UE; or
获取与 UE相对应的 PDN签约上下文中记载的本地网络的本地家庭基站网络标识 LHN ID , 根据该 LHN ID以及 APN确定 LGW地址。  Obtaining a local home base station network identifier LHN ID of the local network recorded in the PDN subscription context corresponding to the UE, and determining the LGW address according to the LHN ID and the APN.
在 3GPP R11阶段, 家庭基站与本地网关可以是单独的物理实体, 本地家庭基站网络 ( LHN )如图 2所示, 其中分组数据网络( Packet Data Network , PDN )也即本地网络。  In the 3GPP R11 phase, the home base station and the local gateway may be separate physical entities, and the local home base station network (LHN) is as shown in FIG. 2, where a Packet Data Network (PDN) is also a local network.
一个 LHN由一组 H(e) B组成, 这些 H(e) B可以通过一个或多个 LGW获得到本地 网络的 IP连接。 一个 LHN由一个 LHN ID标识, LHN具有以下特性:  An LHN consists of a set of H(e) Bs that can obtain IP connections to the local network through one or more LGWs. An LHN is identified by an LHN ID. The LHN has the following characteristics:
一个家庭基站只能属于一个 LHN;  A home base station can only belong to one LHN;
一个 LGW只能属于一个 LHN;  An LGW can only belong to one LHN;
当终端在同一个 LHN 中的家庭基站之间移动时, 需要支持 LIPA连接的连续性, 且 LIPA连接的 LGW不应当改变。  When the terminal moves between the home base stations in the same LHN, the continuity of the LIPA connection needs to be supported, and the LGW of the LIPA connection should not be changed.
网络在选择 PDN GW时, 将优先选择在用户的 PDN签约上下文中有记录 PDN GW。 如果签约信息中没有提供 PDN GW的地址, 网络可以利用签约信息通过查询 DNS的方式 获得 PDN GW的地址。  When the network selects the PDN GW, it will preferentially choose to record the PDN GW in the user's PDN subscription context. If the PDN GW address is not provided in the subscription information, the network can use the subscription information to obtain the address of the PDN GW by querying the DNS.
也就是说,本发明实施例中,可以预先在 HSS中的与不同 UE相对应的本地网络的 PDN 签约上下文中的 PDN GW项, 记录本地网络的 LGW地址, 可以预先在 HLR中的与不同 UE相对应的本地网络的 PDN签约上下文中的 GGSN ( Gateway GPRS Support Node, 网关 GPRS支持节点) 的标识(记为 GGSN identity )项记录本地网络的 LGW地址, 或者, 增 加记录与允许远程接入的 APN 相关的本地网络的本地家庭基站网络 ( Local H(e) B network, LHN )标识( ID )。 该 LGW地址可以是 FQDN ( Fully Qualified Domain Name, 全域名 ), 也可以是 IP地址( address )。  That is to say, in the embodiment of the present invention, the LGW address of the local network may be recorded in advance in the PDN GW entry in the PDN subscription context of the local network corresponding to different UEs in the HSS, and may be different in the HLR and different UEs. The GGSN (Gateway GPRS Support Node) identifier of the GGSN (Gateway GPRS Support Node) in the PDN subscription context of the corresponding local network records the LGW address of the local network, or increases the record and the APN allowing remote access. Local Local Base Station Network (Local H(e) B network, LHN) identification (ID) of the relevant local network. The LGW address can be an FQDN (Fully Qualified Domain Name) or an IP address (address).
网络在为 UE选择 PDN GW时, 优先选择在用户的 PDN签约上下文中有记录的 PDN GW,所以此处在 HSS中的与不同 UE相对应的本地网络的 PDN签约上下文中的 PDN GW 项记录本地网络的 LGW地址, 以及在 HLR中的与不同 UE相对应的本地网络的 PDN签 约上下文中的 GGSN identity项记录本地网络的 LGW地址,可以提高远程接入本地网络的 效率, 而无需等待 HeNB上报 LGW地址。  When the network selects the PDN GW for the UE, the PDN GW recorded in the PDN subscription context of the user is preferentially selected, so the PDN GW entry in the PDN subscription context of the local network corresponding to the different UEs in the HSS is recorded locally here. The LGW address of the network, and the GGSN identity entry in the PDN subscription context of the local network corresponding to different UEs in the HLR record the LGW address of the local network, which can improve the efficiency of remote access to the local network without waiting for the HeNB to report the LGW. address.
如果与不同 UE相对应的本地网络的 PDN签约上下文中没有记录本地网络的 LGW地 址, 而记录了 LHN ID, 则 MME可以根据 LHN ID以及 APN, 从 DNS查得用于建立 UE 到本地网络的远程接入的 LGW地址, 具体方法可以是:  If the LGW address of the local network is not recorded in the PDN subscription context of the local network corresponding to the different UE, and the LHN ID is recorded, the MME may check the remote location for establishing the UE to the local network from the DNS according to the LHN ID and the APN. The LGW address to be accessed, the specific method can be:
MME向 DNS发送查询 LGW地址请求, 其中携带 LHN ID以及 APN;  The MME sends a query LGW address request to the DNS, where the LHN ID and the APN are carried;
DNS根据 LHN ID确定 LHN对应的 LGW地址 (有可能包括多个 LGW地址); DNS根据 APN, 从 LHN对应的 LGW地址中确定出与该 APN对应的 LGW地址, 将 该 LGW地址发给 MME。 The DNS determines the LGW address corresponding to the LHN according to the LHN ID (possibly including multiple LGW addresses); The DNS determines the LGW address corresponding to the APN from the LGW address corresponding to the LHN according to the APN, and sends the LGW address to the MME.
该 LGW地址可以作为远程接入本地网络时的 PDN GW,提供到本地网络的接入过程。 下面给出具体的解释说明。  The LGW address can be used as a PDN GW when remotely accessing the local network, providing access to the local network. Specific explanations are given below.
用户需要发起远程接入时, UE将需要远程接入的本地网络的 APN发送给网络侧, 具 体地, 可以通过 PDN connection request ( PDN连接请求) 消息或者 Activate Packet Data Protocol Context Request (激活分组数据协议上下文请求) 消息中的 APN单元(IE ) 来传 送。  When the user needs to initiate remote access, the UE sends the APN of the local network that needs to be remotely accessed to the network side. Specifically, the PDN connection request message or the Activate Packet Data Protocol Context Request may be activated. Context Request) The APN unit (IE) in the message is transmitted.
接收到 UE传来的 APN, 核心网控制节点 (MME或 SGSN )根据签约数据判断出: 这是一个本地网络的 APN, 并且 UE具有该 APN标识的本地网络的 LIPA接入权限, 并且 UE并不是在该 APN标识的本地网络的允许 LIPA接入的 CSG 小区内发起接入请求的。然 后, 核心网控制节点判断 UE是否具有远程接入该本地网络的签约信息, 如果有, 则允许 UE进行远程接入。 进一步, 在用户漫游场景下, 核心网控制节点要判断 UE是否具有在 VPLMN进行远程接入的签约信息。 核心网控制节点具体的判断过程如图 3所示, 包括步 骤:  Receiving the APN sent by the UE, the core network control node (MME or SGSN) determines according to the subscription data: This is an APN of the local network, and the UE has the LIPA access right of the local network identified by the APN, and the UE is not An access request is initiated in a CSG cell of the local network of the APN that allows LIPA access. Then, the core network control node determines whether the UE has subscription information for remote access to the local network, and if so, allows the UE to perform remote access. Further, in the user roaming scenario, the core network control node determines whether the UE has subscription information for remote access in the VPLMN. The specific judgment process of the core network control node is shown in Figure 3, including the steps:
5201、 核心网控制节点判断 UE发送的 APN是否为本地网络的 APN, 如果是, 则执 行步骤 S203; 否则, 执行步骤 S202。  5201. The core network control node determines whether the APN sent by the UE is an APN of the local network, and if yes, performs step S203; otherwise, performs step S202.
5202、 核心网控制节点按照现有流程进行接入, 判断过程终止。  5202. The core network control node accesses according to the existing process, and the determining process is terminated.
5203、 核心网控制节点进一步判断 UE是否具有接入该 APN标识的本地网络的 LIPA 接入权限, 如果是, 则执行步骤 S205 , 否则, 执行步骤 S204。  5203. The core network control node further determines whether the UE has the LIPA access right of the local network that accesses the APN identifier. If yes, step S205 is performed. Otherwise, step S204 is performed.
5204、 核心网控制节点拒绝 UE的接入请求, 判断过程终止。  5204. The core network control node rejects the access request of the UE, and the determining process is terminated.
5205、核心网控制节点判断 UE发起连接请求的小区,是否为该 APN标识的本地网络 允许 LIPA接入的 CSG小区, 如果是, 则执行步骤 S206, 否则, 执行步骤 S207。  5205. The core network control node determines whether the cell that the UE initiates the connection request is a CSG cell that is allowed to access the LIPA by the local network identified by the APN. If yes, step S206 is performed; otherwise, step S207 is performed.
具体地, 根据 UE发送的附着请求消息或服务请求消息中是否携带 CSG ID, 来判断 UE发起连接请求的小区是不是该 APN标识的本地网络允许 LIPA接入的 CSG小区, 若 UE发起连接请求的小区是该 APN标识的本地网络允许 LIPA接入的 CSG小区, 则 UE发 送的附着请求消息或服务请求消息中会包含 CSG ID , 否则, UE发送的附着请求消息或服 务请求消息中不包含 CSG ID。 由此可以判断出 UE发起连接请求的小区是不是该 APN标 识的本地网络允许 LIPA接入的 CSG小区, 即判断 UE是否需要进行远程接入本地网络。  Specifically, according to whether the CSG ID is carried in the attach request message or the service request message sent by the UE, it is determined whether the cell in which the UE initiates the connection request is a CSG cell that the local network of the APN identity allows the LIPA to access, if the UE initiates the connection request. The cell is a CSG cell that the local network of the APN identity allows the LIPA to access. The CSG ID is included in the attach request message or the service request message sent by the UE. Otherwise, the CSG ID is not included in the attach request message or the service request message sent by the UE. . Therefore, it can be determined whether the cell in which the UE initiates the connection request is a CSG cell that the local network that the APN identifies allows the LIPA to access, that is, whether the UE needs to remotely access the local network.
S206、 核心网控制节点按照现有协议规定, 执行 LIPA接入流程, 判断过程终止。 S206. The core network control node performs the LIPA access procedure according to the provisions of the existing protocol, and the determining process is terminated.
5207、核心网控制节点根据用户签约信息,判断 UE是否具有远程接入该 APN标识的 本地网络的权限, 如果是, 则执行步骤 S208, 否则, 执行步骤 S211。 5207. The core network control node determines, according to the user subscription information, whether the UE has the right to remotely access the local network of the APN identifier. If yes, step S208 is performed. Otherwise, step S211 is performed.
5208、 核心网控制节点根据 UE提交的 PLMN ID ( PLMN标识), 判断用户是否为漫 游用户, 如果是, 则执行步骤 S209, 否则, 执行步骤 S211。 5208. The core network control node determines, according to the PLMN ID submitted by the UE, whether the user is a diffuse The user is logged, if yes, step S209 is performed, otherwise, step S211 is performed.
5209、 核心网控制节点根据用户签约信息, 判断用户是否具有从 VPLMN远程接入该 APN标识的本地网络的权限, 如果是, 则执行步骤 S210, 否则, 执行步骤 S211。  5209. The core network control node determines, according to the user subscription information, whether the user has the right to remotely access the local network of the APN identifier from the VPLMN. If yes, step S210 is performed; otherwise, step S211 is performed.
5210、 核心网控制节点接受远程接入, 判断过程终止。  5210. The core network control node accepts the remote access, and the judgment process is terminated.
S211、 核心网控制节点拒绝远程接入, 判断过程终止。  S211. The core network control node rejects the remote access, and the determining process is terminated.
核心网控制节点在确定接受 UE通过从 PLMN或 VPLMN远程接入 APN标识的本地 网络之后, 釆用现有协议规定的流程, 完成 UE通过从 PLMN或 VPLMN远程接入 APN 标识的本地网络的过程, 具体地, 可以把 APN标识的本地网络当作是普通的 PDN网络, 从预先在 HSS或 HLR中的与不同 UE相对应的本地网络的 PDN签约上下文中的 PDN GW 项或 GGSN identity项中获取本地网络的 LGW地址, 将该 LGW地址作为远程接入本地网 络的 PDN GW, 或者, 如果与 UE相对应的本地网络的 PDN签约上下文中没有记录本地 网络的 LGW地址,而是记录了 LHN ID(本地家庭基站网络标识),则可以才 居该 LHN ID, 以及 APN确定 LGW地址, 进而按照现有流程完成 UE远程接入 APN标识的本地网络的 过程。  After determining that the UE accepts the remote access to the local network identified by the APN from the PLMN or the VPLMN, the core network control node completes the process of the UE accessing the local network identified by the APN remotely from the PLMN or the VPLMN by using the procedure specified by the existing protocol. Specifically, the local network identified by the APN may be regarded as a normal PDN network, and obtained locally from a PDN GW item or a GGSN identity item in a PDN subscription context of a local network corresponding to different UEs in the HSS or HLR. The LGW address of the network, the LGW address is used as the PDN GW of the remote access local network, or if the LGW address of the local network is not recorded in the PDN subscription context of the local network corresponding to the UE, the LHN ID is recorded (local The home base station network identifier can be used to determine the LHN ID, and the APN determines the LGW address, and then completes the process of the UE remotely accessing the local network identified by the APN according to the existing procedure.
下面给出几个具体实施例的说明。  A description of several specific embodiments is given below.
实施例一:  Embodiment 1:
用户发起的 Attach (附着)过程如图 4所示, 用户通过该 Attach (附着)过程, 通过 LTE系统远程接入到本地网络。  The user-initiated Attach process is shown in Figure 4. The user accesses the local network remotely through the LTE system through the Attach process.
其中, UE在向网络侧发送的 Attach Request( Attach请求)消息中,设置 Ciphered Options Transfer Flag (已加密选项传输标识), 表示将在后续消息中将 APN提供给网络侧。 并且, 后续 UE在向网络侧发送的 Ciphered Options Response (已加密的选项响应 )消息中, 将要 发起远程接入的本地网络的 APN发给 MME。 MME通过 HSS发送的 Update Location Ack (更新位置确认) 消息, 获取 HSS中保存的与该 UE相对应的 PDN签约上下文, 并保存 在本地。 然后, MME执行远程接入控制步骤, 即按照图 2所示的远程接入判断逻辑, 进 行远程接入控制: 如果远程接入接受, MME为 UE分配 PDN签约上下文中记录的 APN 标识的本地网络所对应的 LGW,或者,根据 PDN签约上下文中记录的 LHN ID和 APN为 UE分配 LGW地址, 并利用现有流程为 UE建立到本地网络的远程接入; 如果远程接入拒 绝, MME可以拒绝 UE的 PDN连接请求, 并返回拒绝原因。  The UE sets a Ciphered Options Transfer Flag in the Attach Request message sent to the network side, indicating that the APN will be provided to the network side in subsequent messages. And, the subsequent UE sends an APN of the local network that initiates the remote access to the MME in the Ciphered Options Response message sent to the network side. The MME obtains the PDN subscription context corresponding to the UE saved in the HSS through the Update Location Ack message sent by the HSS, and saves it locally. Then, the MME performs a remote access control step, that is, performs remote access control according to the remote access determination logic shown in FIG. 2: If the remote access is accepted, the MME allocates the local network of the APN identifier recorded in the PDN subscription context to the UE. Corresponding LGW, or, according to the LHN ID and APN recorded in the PDN subscription context, allocate the LGW address to the UE, and use the existing procedure to establish a remote access to the local network for the UE; if the remote access is rejected, the MME may reject the UE The PDN connection request, and returns the reason for the rejection.
实施例二:  Embodiment 2:
现有技术中 UE发起的 PDN连接过程如图 5所示, 用户通过 UE发起的 PDN连接过 程, 请求通过 LTE系统远程接入到本地网络。  In the prior art, the PDN connection process initiated by the UE is as shown in FIG. 5, and the user requests to remotely access the local network through the LTE system through the PDN connection process initiated by the UE.
其中, UE在 PDN Connectivity Request ( PDN连接请求)中将需要远程接入的本地网 络的 APN发给 MME。 然后, MME执行远程接入控制步骤, 即按照图 2所示的远程接入 判断逻辑, 进行远程接入控制: 如果远程接入接受, MME为 UE分配 PDN签约上下文中 记录的 APN标识的本地网络所对应的 LGW,或者,根据 PDN签约上下文中记录的 LHN ID 和 APN为 UE分配 LGW地址, 并利用现有流程为 UE建立到本地网络的远程接入; 如果 远程接入拒绝, MME可以拒绝 UE的 PDN连接请求, 并返回拒绝原因。 The UE sends the APN of the local network that needs to be remotely accessed to the MME in the PDN Connectivity Request. Then, the MME performs a remote access control step, that is, remote access as shown in FIG. Determining logic, performing remote access control: If the remote access is accepted, the MME allocates the LGW corresponding to the local network of the APN identifier recorded in the PDN subscription context to the UE, or uses the LHN ID and the APN recorded in the PDN subscription context as the UE. The LGW address is allocated, and the existing procedure is used to establish remote access to the local network for the UE; if the remote access is rejected, the MME may reject the PDN connection request of the UE and return the reason for the rejection.
实施例三:  Embodiment 3:
PDP Context Activation Procedure ( PDP上下文激活过程)如图 5所示, 用户通过 PDP Context Activation Procedure ( PDP上下文激活过程 ), 请求通过 UMTS系统远程接入到本 地网络。  The PDP Context Activation Procedure is shown in Figure 5. The user requests remote access to the local network through the UMTS system through the PDP Context Activation Procedure.
具体地, MS (移动终端 )在 Activate PDP context (激活 PDP上下文)请求消息中, 将需要远程接入的本地网络的 APN发给 SGSN。 然后, SGSN执行远程接入控制步骤, 即 按照图 3所示的远程接入判断逻辑, 进行远程接入控制: 如果远程接入接受, SGSN为 MS 分配 PDN签约上下文中记录的 APN标识的本地网络所对应的 LGW, 或者, 根据 PDN签 约上下文中记录的 LHN ID和 APN为 UE分配 LGW地址, 并利用现有流程为 MS建立到 本地网络的远程接入; 如果远程接入拒绝, SGSN可以拒绝 MS的 PDN连接请求, 并返回 拒绝原因。  Specifically, the MS (mobile terminal) sends an APN of the local network that needs to be remotely accessed to the SGSN in the Activate PDP context request message. Then, the SGSN performs a remote access control step, that is, performs remote access control according to the remote access judgment logic shown in FIG. 3: If the remote access is accepted, the SGSN allocates the local network of the APN identifier recorded in the PDN subscription context to the MS. Corresponding LGW, or, according to the LHN ID and APN recorded in the PDN subscription context, allocate an LGW address to the UE, and use the existing process to establish a remote access to the local network for the MS; if the remote access is rejected, the SGSN may reject the MS The PDN connection request, and returns the reason for the rejection.
参见图 7, 本发明实施例提供的一种控制接入本地网络的装置包括:  Referring to FIG. 7, an apparatus for controlling access to a local network according to an embodiment of the present invention includes:
APN获取单元 101 ,用于获取用户设备 UE发送的请求接入的网络的接入点名称 APN; 判断处理单元 102, 用于当确定所述 APN为本地网络的 APN、所述 UE具有该本地网 络的本地 IP接入权限, 并且 UE为需要进行远程接入本地网络的 UE时, 根据与该 UE相 对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程接入本地网络。  The APN obtaining unit 101 is configured to acquire an access point name APN of the network that the user equipment UE requests to access; the determining processing unit 102 is configured to: when determining that the APN is an APN of a local network, where the UE has the local network The local IP access right, and the UE is a UE that needs to remotely access the local network, and determines whether to allow the UE to remotely access the local network according to the packet data network PDN subscription context corresponding to the UE.
较佳地, 所述判断处理单元 102, 当 UE发送的附着请求消息或服务请求消息中没有 携带 CSG ID时, 确定 UE为需要进行远程接入本地网络的 UE。  Preferably, the determining processing unit 102 determines that the UE is a UE that needs to remotely access the local network when the CSG ID is not carried in the attach request message or the service request message sent by the UE.
较佳地, 所述判断处理单元 102, 根据与该 UE相对应的 PDN签约上下文中的是否允 许 UE远程接入本地网络的标识, 确定是否允许 UE远程接入本地网络  Preferably, the determining processing unit 102 determines whether to allow the UE to remotely access the local network according to whether the UE is allowed to remotely access the identifier of the local network in the PDN subscription context corresponding to the UE.
较佳地, 所述判断处理单元 102, 当确定允许 UE远程接入本地网络时, 判断 UE是否 为漫游状态下的 UE; 如果是, 则根据与该漫游状态下的 UE相对应的 PDN签约上下文中 的是否允许漫游状态下的 UE远程接入本地网络的标识, 判断是否允许漫游状态下的 UE 远程接入本地网络; 否则, 控制 UE远程接入本地网络。  Preferably, the determining processing unit 102 determines, when the UE is allowed to remotely access the local network, whether the UE is a UE in a roaming state; if yes, according to a PDN subscription context corresponding to the UE in the roaming state Whether the UE in the roaming state is allowed to remotely access the identity of the local network, and whether the UE in the roaming state is allowed to remotely access the local network; otherwise, the UE is controlled to remotely access the local network.
较佳地, 所述判断处理单元 102, 当确定允许漫游状态下的 UE远程接入本地网络时, 控制漫游状态下的 UE远程接入本地网络。  Preferably, the determining processing unit 102 controls the UE in the roaming state to remotely access the local network when determining that the UE in the roaming state is allowed to remotely access the local network.
较佳地, 所述判断处理单元 102, 将与 UE相对应的 PDN签约上下文中记载的本地网 关 LGW地址作为 UE的 PDN网关地址, 建立 UE到本地网络的远程接入; 将与漫游状态 下的 UE相对应的 PDN签约上下文中记载的 LGW地址作为 UE的 PDN网关地址,建立漫 游状态下的 UE到本地网络的远程接入。 Preferably, the determining processing unit 102 establishes a remote access of the UE to the local network by using the local gateway LGW address recorded in the PDN subscription context corresponding to the UE as the PDN gateway address of the UE; The LGW address recorded in the PDN signing context corresponding to the UE is used as the PDN gateway address of the UE, and the flood is established. Remote access from the UE to the local network in the swim state.
所述判断处理单元 102, 获取与 UE相对应的 PDN签约上下文中记载的本地网络的本 地家庭基站网络标识 LHN ID , 根据该 LHN ID以及 APN确定 LGW地址。  The determining processing unit 102 obtains a local home base station network identifier LHN ID of the local network recorded in the PDN subscription context corresponding to the UE, and determines the LGW address according to the LHN ID and the APN.
较佳地, 所述装置, 可以为 MME, 也可以为 SGSN。  Preferably, the device may be an MME or an SGSN.
综上所述, 参阅图 8所示, 现有技术中, UE可以通过家庭基站接入到 PLMN, 从而 访问 PDN网络, 也可以利用 LIPA技术通过家庭基站和本地网关之间的直接用户通路访问 本地网络, 然而, 当 UE处于 PLMN中时, 无法远程接入到本地网络。  In summary, referring to FIG. 8 , in the prior art, the UE may access the PDN network through the home base station to access the PDN network, or may access the local through the direct user path between the home base station and the local gateway by using the LIPA technology. The network, however, cannot access the local network remotely when the UE is in the PLMN.
而本发明实施例中, 获取用户设备 UE发送的请求接入的网络的接入点名称 APN; 当 确定所述 APN为本地网络的 APN、所述 UE具有该本地网络的本地 IP接入权限,并且 UE 为需要进行远程接入本地网络的 UE时,根据与该 UE相对应的分组数据网 PDN签约上下 文, 确定是否允许 UE远程接入本地网络, 从而可以实现对 UE远程接入本地网络的控制, 当允许 UE远程接入本地网络的情况下, 进一步可以根据现有协议规定实现 UE远程接入 本地网络, 具体参阅图 9所示。  In the embodiment of the present invention, the access point name APN of the network that the user equipment UE requests to access is obtained. When the APN is determined to be the APN of the local network, and the UE has the local IP access right of the local network, And if the UE is a UE that needs to remotely access the local network, determine whether to allow the UE to access the local network remotely according to the packet data network PDN subscription context corresponding to the UE, so that the UE can remotely control the local network. When the UE is allowed to access the local network remotely, the UE may further access the local network according to the existing protocol, as shown in FIG. 9 .
本领域内的技术人员应明白, 本发明的实施例可提供为方法、 系统、 或计算机程序产 品。 因此, 本发明可釆用完全硬件实施例、 完全软件实施例、 或结合软件和硬件方面的实 施例的形式。 而且, 本发明可釆用在一个或多个其中包含有计算机可用程序代码的计算机 可用存储介盾 (包括但不限于磁盘存储器和光学存储器等)上实施的计算机程序产品的形 式。  Those skilled in the art will appreciate that embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, the present invention is in the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage and optical storage, etc.) in which computer usable program code is embodied.
本发明是参照根据本发明实施例的方法、 设备(系统)、 和计算机程序产品的流程图 和 /或方框图来描述的。 应理解可由计算机程序指令实现流程图和 /或方框图中的每一流 程和 /或方框、 以及流程图和 /或方框图中的流程和 /或方框的结合。 可提供这些计算机 程序指令到通用计算机、 专用计算机、 嵌入式处理机或其他可编程数据处理设备的处理器 以产生一个机器, 使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用 于实现在流程图一个流程或多个流程和 /或方框图一个方框或多个方框中指定的功能的 装置。  The present invention has been described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (system), and computer program products according to embodiments of the invention. It will be understood that each process and/or block of the flowchart illustrations and/or FIG. These computer program instructions can be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing device to produce a machine for the execution of instructions for execution by a processor of a computer or other programmable data processing device. Means for implementing the functions specified in one or more of the flow or in a block or blocks of the flow chart.
这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方 式工作的计算机可读存储器中, 使得存储在该计算机可读存储器中的指令产生包括指令装 置的制造品, 该指令装置实现在流程图一个流程或多个流程和 /或方框图一个方框或多个 方框中指定的功能。  The computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device. The apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.
这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上, 使得在计算机 或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理, 从而在计算机或其他 可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和 /或方框图一个 方框或多个方框中指定的功能的步骤。 显然, 本领域的技术人员可以对本发明进行各种改动和变型而不脱离本发明的精神和 范围。这样,倘若本发明的这些修改和变型属于本发明权利要求及其等同技术的范围之内, 则本发明也意图包含这些改动和变型在内。 These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device. The instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram. It is apparent that those skilled in the art can make various modifications and variations to the invention without departing from the spirit and scope of the invention. Thus, it is intended that the present invention cover the modifications and modifications of the invention

Claims

权 利 要 求 Rights request
1、 一种控制接入本地网络的方法, 其特征在于, 该方法包括: A method for controlling access to a local network, the method comprising:
获取用户设备 UE发送的请求接入的网络的接入点名称 APN;  Obtaining an access point name of the network that the user equipment UE requests to access, APN;
当确定所述 APN为本地网络的 APN、 所述 UE具有该本地网络的本地 IP接入权限, 并且 UE为需要进行远程接入所述本地网络的 UE时, 根据与该 UE相对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程接入所述本地网络。  When determining that the APN is an APN of a local network, the UE has local IP access rights of the local network, and the UE is a UE that needs to remotely access the local network, according to packet data corresponding to the UE The network PDN subscription context determines whether the UE is allowed to access the local network remotely.
2、根据权利要求 1所述的方法, 其特征在于, 确定 UE为需要进行远程接入所述本地 网络的 UE, 包括:  The method according to claim 1, wherein the determining that the UE is a UE that needs to remotely access the local network includes:
当 UE发送的附着请求消息或服务请求消息中没有携带闭合用户群标识 CSG ID时, 确定 UE为需要进行远程接入所述本地网络的 UE。  When the closed request group identifier CSG ID is not carried in the attach request message or the service request message sent by the UE, the UE is determined to be a UE that needs to remotely access the local network.
3、根据权利要求 2所述的方法, 其特征在于, 所述根据与该 UE相对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程接入所述本地网络, 包括:  The method according to claim 2, wherein the determining, according to the packet data network PDN subscription context corresponding to the UE, whether to allow the UE to remotely access the local network, includes:
根据与该 UE相对应的 PDN签约上下文中的是否允许 UE远程接入本地网络的标识, 确定是否允许 UE远程接入所述本地网络。  Determining whether to allow the UE to remotely access the local network according to whether the UE is allowed to remotely access the identity of the local network in the PDN subscription context corresponding to the UE.
4、根据权利要求 3所述的方法, 其特征在于, 当确定允许 UE远程接入所述本地网络 时, 该方法还包括:  The method according to claim 3, wherein when it is determined that the UE is allowed to remotely access the local network, the method further includes:
判断 UE是否为漫游状态下的 UE;  Determining whether the UE is a UE in a roaming state;
如果是,则根据与该漫游状态下的 UE相对应的 PDN签约上下文中的是否允许漫游状 态下的 UE远程接入本地网络的标识, 判断是否允许漫游状态下的 UE远程接入所述本地 网络;  If yes, determining whether to allow the UE in the roaming state to remotely access the local network according to whether the UE in the roaming state is allowed to remotely access the identifier of the local network in the PDN subscription context corresponding to the UE in the roaming state. ;
否则, 控制 UE远程接入所述本地网络。  Otherwise, the UE is controlled to remotely access the local network.
5、 根据权利要求 4所述的方法, 其特征在于, 该方法还包括:  5. The method according to claim 4, wherein the method further comprises:
当确定允许漫游状态下的 UE远程接入本地网络时, 控制漫游状态下的 UE远程接入 所述本地网络。  When it is determined that the UE in the roaming state is allowed to remotely access the local network, the UE in the roaming state is controlled to remotely access the local network.
6、 根据权利要求 5所述的方法, 其特征在于,  6. The method of claim 5, wherein
所述控制 UE远程接入所述本地网络, 包括:  The controlling the UE to access the local network remotely includes:
将与 UE相对应的 PDN签约上下文中记载的本地网关 LGW地址作为 UE的 PDN 网 关地址, 建立 UE到所述本地网络的远程接入;  Establishing a remote access of the UE to the local network by using the local gateway LGW address recorded in the PDN subscription context corresponding to the UE as the PDN gateway address of the UE;
所述控制漫游状态下的 UE远程接入所述本地网络, 包括:  The UE remotely accessing the local network in the roaming state includes:
将与漫游状态下的 UE相对应的 PDN签约上下文中记载的 LGW地址作为 UE的 PDN 网关地址, 建立漫游状态下的 UE到所述本地网络的远程接入。  The LGW address recorded in the PDN subscription context corresponding to the UE in the roaming state is used as the PDN gateway address of the UE, and the remote access of the UE in the roaming state to the local network is established.
7、 根据权利要求 5所述的方法, 其特征在于, 所述控制 UE远程接入本地网络, 包括: 7. The method of claim 5, wherein The controlling the UE to remotely access the local network includes:
确定本地网络的本地网关 LGW地址, 将该 LGW地址作为 UE的 PDN 网关地址, 建 立 UE到所述本地网络的远程接入;  Determining a local gateway LGW address of the local network, using the LGW address as a PDN gateway address of the UE, and establishing a remote access of the UE to the local network;
所述控制漫游状态下的 UE远程接入本地网络, 包括:  The UE remotely accessing the local network in the roaming state includes:
确定本地网络的本地网关 LGW地址, 将该 LGW地址作为 UE的 PDN网关地址, 建 立漫游状态下的 UE到所述本地网络的远程接入。  Determining the local gateway LGW address of the local network, using the LGW address as the PDN gateway address of the UE, and establishing remote access of the UE in the roaming state to the local network.
8、 根据权利要求 7所述的方法, 其特征在于, 所述确定本地网络的本地网关 LGW地 址, 包括:  The method according to claim 7, wherein the determining the local gateway LGW address of the local network comprises:
将与 UE相对应的 PDN签约上下文中记载的 LGW地址, 确定为本地网络的 LGW地 址; 或者,  Determining, as the LGW address of the local network, the LGW address recorded in the PDN subscription context corresponding to the UE; or
获取与 UE相对应的 PDN签约上下文中记载的本地网络的本地家庭基站网络标识 LHN ID , 根据该 LHN ID以及 APN确定 LGW地址。  Obtaining a local home base station network identifier LHN ID of the local network recorded in the PDN subscription context corresponding to the UE, and determining the LGW address according to the LHN ID and the APN.
9、 一种控制接入本地网络的装置, 其特征在于, 该装置包括:  9. A device for controlling access to a local network, the device comprising:
APN获取单元, 用于获取用户设备 UE发送的请求接入的网络的接入点名称 APN; 判断处理单元, 用于当确定所述 APN为本地网络的 APN、 所述 UE具有该本地网络 的本地 IP接入权限, 并且 UE为需要进行远程接入所述本地网络的 UE时, 根据与该 UE 相对应的分组数据网 PDN签约上下文, 确定是否允许 UE远程所述接入本地网络。  An APN obtaining unit, configured to acquire an access point name APN of a network that the user equipment UE requests to access; a determining processing unit, configured to: when determining that the APN is an APN of a local network, where the UE has a local network IP access rights, and when the UE needs to remotely access the UE of the local network, determine whether to allow the UE to remotely access the local network according to the packet data network PDN subscription context corresponding to the UE.
10、 根据权利要求 9所述的装置, 其特征在于, 所述判断处理单元, 当 UE发送的附 着请求消息或服务请求消息中没有携带闭合用户群标识 CSG ID时, 确定 UE为需要进行 远程接入所述本地网络的 UE。  The apparatus according to claim 9, wherein the determining processing unit determines that the UE needs to be remotely connected when the closed request group identifier CSG ID is not carried in the attach request message or the service request message sent by the UE. The UE entering the local network.
11、 根据权利要求 10所述的装置, 其特征在于, 所述判断处理单元, 根据与该 UE相 对应的 PDN签约上下文中的是否允许 UE远程接入本地网络的标识,确定是否允许 UE远 程接入所述本地网络。  The device according to claim 10, wherein the determining processing unit determines whether to allow the UE to remotely connect according to whether the UE is allowed to remotely access the identifier of the local network in the PDN subscription context corresponding to the UE. Enter the local network.
12、 根据权利要求 11所述的装置, 其特征在于, 所述判断处理单元, 当确定允许 UE 远程接入所述本地网络时, 判断 UE是否为漫游状态下的 UE; 如果是, 则根据与该漫游状 态下的 UE相对应的 PDN签约上下文中的是否允许漫游状态下的 UE远程接入本地网络的 标识, 判断是否允许漫游状态下的 UE远程接入所述本地网络; 否则, 控制 UE远程接入 所述本地网络。  The apparatus according to claim 11, wherein the determining processing unit determines, when the UE is allowed to remotely access the local network, whether the UE is a UE in a roaming state; if yes, according to Whether the UE in the roaming state is allowed to remotely access the identity of the local network in the PDN subscription context corresponding to the UE in the roaming state, determining whether the UE in the roaming state is allowed to remotely access the local network; otherwise, controlling the UE remotely Access to the local network.
13、 根据权利要求 12 所述的装置, 其特征在于, 所述判断处理单元, 当确定允许漫 游状态下的 UE远程接入本地网络时, 控制漫游状态下的 UE远程接入所述本地网络。  The apparatus according to claim 12, wherein the determining processing unit controls the UE in the roaming state to remotely access the local network when determining that the UE in the roaming state is allowed to remotely access the local network.
14、 根据权利要求 13所述的装置, 其特征在于, 所述判断处理单元, 将与 UE相对应 的 PDN签约上下文中记载的本地网关 LGW地址作为 UE的 PDN网关地址,建立 UE到所 述本地网络的远程接入; 将与漫游状态下的 UE相对应的 PDN签约上下文中记载的 LGW 地址作为 UE的 PDN网关地址, 建立漫游状态下的 UE到所述本地网络的远程接入。The device according to claim 13, wherein the determining processing unit establishes the UE to the local device by using the local gateway LGW address recorded in the PDN subscription context corresponding to the UE as the PDN gateway address of the UE. Remote access to the network; LGW recorded in the context of the PDN subscription corresponding to the UE in the roaming state The address is used as the PDN gateway address of the UE, and the remote access of the UE in the roaming state to the local network is established.
15、 根据权利要求 13 所述的装置, 其特征在于, 所述判断处理单元, 确定本地网络 的本地网关 LGW地址, 将该 LGW地址作为 UE的 PDN网关地址, 建立 UE到所述本地 网络的远程接入; 确定本地网络的本地网关 LGW地址, 将该 LGW地址作为 UE的 PDN 网关地址, 建立漫游状态下的 UE到所述本地网络的远程接入。 The device according to claim 13, wherein the determining processing unit determines a local gateway LGW address of the local network, uses the LGW address as a PDN gateway address of the UE, and establishes a remote location of the UE to the local network. The local gateway LGW address of the local network is determined, and the LGW address is used as the PDN gateway address of the UE, and the remote access of the UE in the roaming state to the local network is established.
16、 根据权利要求 15所述的装置, 其特征在于, 所述判断处理单元, 将与 UE相对应 的 PDN签约上下文中记载的 LGW地址, 确定为本地网络的 LGW地址; 或者,  The device according to claim 15, wherein the determining processing unit determines the LGW address recorded in the PDN subscription context corresponding to the UE as the LGW address of the local network; or
所述判断处理单元,获取与 UE相对应的 PDN签约上下文中记载的本地网络的本地家 庭基站网络标识 LHN ID , 根据该 LHN ID以及 APN确定 LGW地址。  The determining processing unit acquires a local home base station network identifier LHN ID of the local network recorded in the PDN subscription context corresponding to the UE, and determines the LGW address according to the LHN ID and the APN.
PCT/CN2012/070309 2011-01-25 2012-01-13 Method and device for controlling access to local network WO2012100684A1 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CN2011100265634A CN102083174A (en) 2011-01-25 2011-01-25 Method and device for controlling local network access
CN201110026563.4 2011-01-25
CN201110192651.1 2011-07-11
CN201110192651.1A CN102291800B (en) 2011-01-25 2011-07-11 Method and device for controlling access to local network

Publications (1)

Publication Number Publication Date
WO2012100684A1 true WO2012100684A1 (en) 2012-08-02

Family

ID=44088877

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/070309 WO2012100684A1 (en) 2011-01-25 2012-01-13 Method and device for controlling access to local network

Country Status (2)

Country Link
CN (2) CN102083174A (en)
WO (1) WO2012100684A1 (en)

Families Citing this family (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102083174A (en) * 2011-01-25 2011-06-01 电信科学技术研究院 Method and device for controlling local network access
CN102868997B (en) * 2011-07-06 2017-10-10 中兴通讯股份有限公司 Local gateway information processing method and device
CN102325348B (en) * 2011-07-19 2014-05-21 电信科学技术研究院 Method and equipment for constructing local Internet protocol access (LIPA) packet data network (PDN) connection
CN103379592B (en) * 2012-04-28 2016-12-28 华为终端有限公司 For remotely accessing the method and device of local network
CN103428670B (en) * 2012-05-23 2017-11-28 中兴通讯股份有限公司 A kind of access control method and mobile management entity
WO2014000266A1 (en) 2012-06-29 2014-01-03 华为技术有限公司 Information processing method, forwarding plane apparatus and control plane apparatus
CN105517105A (en) * 2014-09-23 2016-04-20 中兴通讯股份有限公司 Method and apparatus for accessing network
CN106489283B (en) * 2015-04-03 2019-12-06 华为技术有限公司 Near field service communication method, related equipment and system
CN106856619B (en) * 2015-12-08 2020-07-31 南京中兴新软件有限责任公司 Method, system and gateway for controlling access
CN107623708A (en) * 2016-07-14 2018-01-23 中兴通讯股份有限公司 Information synchronization method and device
CN108076162B (en) * 2016-11-18 2021-07-16 中兴通讯股份有限公司 Mobile terminal networking method and device
CN106792688A (en) * 2016-12-15 2017-05-31 中磊电子(苏州)有限公司 For the method for network traffics route
EP3826366B1 (en) * 2018-08-14 2023-02-15 Guangdong Oppo Mobile Telecommunications Corp., Ltd. Wireless communication method, terminal device and chip

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101163264A (en) * 2007-11-14 2008-04-16 中兴通讯股份有限公司 Data traffic access control method in mobile communications system
WO2008125729A1 (en) * 2007-04-13 2008-10-23 Nokia Corporation Method, radio system, mobile terminal and base station for providing local breakout service
WO2010122511A1 (en) * 2009-04-23 2010-10-28 Telefonaktiebolaget L M Ericsson (Publ) Local ip access through a femto base station
CN102083174A (en) * 2011-01-25 2011-06-01 电信科学技术研究院 Method and device for controlling local network access

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101720090B (en) * 2009-06-16 2015-06-03 中兴通讯股份有限公司 Method and device for realizing remote access control of home base station

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008125729A1 (en) * 2007-04-13 2008-10-23 Nokia Corporation Method, radio system, mobile terminal and base station for providing local breakout service
CN101163264A (en) * 2007-11-14 2008-04-16 中兴通讯股份有限公司 Data traffic access control method in mobile communications system
WO2010122511A1 (en) * 2009-04-23 2010-10-28 Telefonaktiebolaget L M Ericsson (Publ) Local ip access through a femto base station
CN102083174A (en) * 2011-01-25 2011-06-01 电信科学技术研究院 Method and device for controlling local network access
CN102291800A (en) * 2011-01-25 2011-12-21 电信科学技术研究院 Method and device for controlling access to local network

Also Published As

Publication number Publication date
CN102291800B (en) 2014-01-15
CN102083174A (en) 2011-06-01
CN102291800A (en) 2011-12-21

Similar Documents

Publication Publication Date Title
WO2012100684A1 (en) Method and device for controlling access to local network
JP5853112B2 (en) Voice service support method and apparatus in wireless communication system
TWI748952B (en) Supporting multiple concurrent service contexts with a single connectivity context
WO2012095021A1 (en) Method, system, and device for establishing local ip access connection
WO2015062098A1 (en) Network selection method and core network device
US9225726B2 (en) Methods for supporting user equipment accessing local IP services and apparatus therefor
WO2012097731A1 (en) Location management method for group-based machine type communication (mtc) devices and device therefor
KR20120093072A (en) Method and apparatus for supporting user equipment mobility in a wierless communication system
JP2022511597A (en) Network service control method and communication equipment
WO2012051890A1 (en) Terminal access limit method and system
WO2019242731A1 (en) Method and device for data processing
WO2012094957A1 (en) Method and system for performing mobility management on mtc terminal
WO2011134397A1 (en) Method, system and apparatus for identifying terminal
WO2016180018A1 (en) Access method and corresponding access node, terminal and communication network
WO2018059401A1 (en) Network switching method, device and system, and network access method and device
US9713176B2 (en) Telecommunication method and telecommunication system
WO2015165149A1 (en) Configuration method, prose key management functional entity, terminal, system, and storage medium
WO2012068728A1 (en) Methods and network entities for acquiring ip address of user
WO2011035732A1 (en) Control method, device and system for local ip access or selected ip traffic offload
WO2011006450A1 (en) Service processing method and communication device
JP7557006B2 (en) Method and apparatus for connection establishment - Patents.com
WO2011054294A1 (en) Connection setup method and equipment
WO2013004121A1 (en) Method and device for processing local gateway information
JP2024123131A (en) Indication information transmission method, device, system, and storage medium
CN102137381B (en) Method, device and system for network communication through home base station

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12738714

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12738714

Country of ref document: EP

Kind code of ref document: A1