WO2012122043A1 - Generic packet filtering - Google Patents

Generic packet filtering Download PDF

Info

Publication number
WO2012122043A1
WO2012122043A1 PCT/US2012/027566 US2012027566W WO2012122043A1 WO 2012122043 A1 WO2012122043 A1 WO 2012122043A1 US 2012027566 W US2012027566 W US 2012027566W WO 2012122043 A1 WO2012122043 A1 WO 2012122043A1
Authority
WO
WIPO (PCT)
Prior art keywords
packet
outgoing packet
interface
outgoing
hook
Prior art date
Application number
PCT/US2012/027566
Other languages
French (fr)
Inventor
Michelle Perras
Juan Carlos Zuniga
Alexander Reznik
Reeteshkumar Varshney
Imran Khan
Original Assignee
Interdigital Patent Holdings, Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Interdigital Patent Holdings, Inc. filed Critical Interdigital Patent Holdings, Inc.
Priority to JP2013557774A priority Critical patent/JP2014524160A/en
Priority to EP12708991.0A priority patent/EP2681898A1/en
Priority to KR1020137026102A priority patent/KR20140018272A/en
Priority to CN201280021387.8A priority patent/CN103918241B/en
Publication of WO2012122043A1 publication Critical patent/WO2012122043A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/22Parsing or analysis of headers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L65/00Network arrangements, protocols or services for supporting real-time applications in data packet communication
    • H04L65/40Support for services or applications
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/14Multichannel or multilink protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W28/00Network traffic management; Network resource management
    • H04W28/02Traffic management, e.g. flow control or congestion control
    • H04W28/06Optimizing the usage of the radio link, e.g. header compression, information sizing, discarding information

Definitions

  • Packet filters may evaluate or analyze "packets" which may be transferred between one or more computing devices that are in communication with each other, for example via the Internet and/or via wireless communication.
  • IP router may permit or may block the flow of various types of IP packets via IP packet filtering. Packet filtering can be applied to incoming and outgoing IP flow traffic. Input packet filters may define what inbound IP traffic may be allowed to be accepted on one or more interfaces. Output packet filters may define what IP traffic may be sent from one or more interfaces.
  • IP Internet Protocol
  • Packet filtering tools may be available in different operating systems (OSs), such as but not limited to “Netfilter” on Linux and Windows; “WinpkFilter” on Windows; and
  • Embodiments contemplate the application of specific routing and/or forwarding rules on some packets or each packet when a device may have one or more, or multiple, interfaces.
  • One or more embodiments may be implemented without modifying the IP stack.
  • Embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering.
  • the WTRU may include a first interface and a second interface.
  • the WTRU may be configured to apply at least one tag to at least one outgoing packet and to execute an outgoing packet filtering function.
  • the outgoing packet filtering function may determine, based at least in part on the at least one tag, at least one of the first interface or the second interface via which to send the outgoing packet.
  • the at least one tag may be removed from the at least one outgoing packet and the at least one outgoing packet may be sent via at least one of the determined first interface or second interface.
  • At least one mode may be configured on the WTRU and executing the outgoing packet filtering function may include executing an outgoing packet filtering function that may be associated with the at least one mode.
  • the outgoing packet filtering function may be executed at a time proximate to the sending of the at least one outgoing packet.
  • At least one hook may be registered on the WTRU, and executing the outgoing packet filtering function may include calling the at least one hook. Also, the determining by the outgoing packet filtering function may be executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet.
  • Embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering.
  • the WTRU may be configured to execute an outgoing packet filtering function.
  • the outgoing packet filtering function may determine a number of respective individual interfaces that may be included in an interface mapping on the WTRU.
  • the outgoing packet filtering function may identify the respective individual interfaces that may be included in the interface mapping.
  • the outgoing packet filtering function may determine, based at least in part on the determined number of mapped interfaces, a number of required duplicates of at least one outgoing packet.
  • the required number of duplicates of the at least one outgoing packet may be created.
  • either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet may be respectively sent via each of the individual interfaces that may be included in the interface mapping.
  • Embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering.
  • the WTRU may be configured to identify at least one incoming packet, where the at least one incoming packet may be received via an interface of the WTRU.
  • the WTRU may also be configured to identify at least one outgoing packet, where the at least one outgoing packet may correspond to the at least one incoming packet.
  • an outgoing packet filter function may be executed and the outgoing packet filter function may identify the interface on which the at least one incoming packet was received.
  • the at least one outgoing packet may be sent via the same interface via which the incoming packet was received.
  • FIG. 1 A is a system diagram of an example communications system in which one or more disclosed embodiments may be implemented;
  • FIG. IB is a system diagram of an example wireless transmit/receive unit (WTRU) that may be used within the communications system illustrated in FIG. 1A;
  • WTRU wireless transmit/receive unit
  • FIG. 1C is a system diagram of an example radio access network and an example core network that may be used within the communications system illustrated in FIG. 1A;
  • FIG ID is a system diagram of another example radio access network and an example core network that may be used within the communications system illustrated in FIG. 1A;
  • FIG. IE is a system diagram of another example radio access network and an example core network that may be used within the communications system illustrated in FIG. 1A;
  • FIG. 2 is an exemplary illustration of packet filtering and/or routing techniques consistent with embodiments
  • FIG. 3 is another exemplary illustration of packet filtering and/or routing consistent with embodiments
  • FIG. 4 is another exemplary illustration of packet filtering and/or routing behavior consistent with embodiments
  • FIG. 5 is a block diagram of a filtering technique consistent with embodiments
  • FIG. 6 is a block diagram of another filtering technique consistent with embodiments.
  • FIG. 7 is a block diagram of another filtering technique consistent with embodiments.
  • FIG. 8 is a block diagram of another filtering technique consistent with embodiments.
  • FIG. 9 is a block diagram of another filtering technique consistent with embodiments.
  • FIG. 1A is a diagram of an example communications system 100 in which one or more disclosed embodiments may be implemented.
  • the communications system 100 may be a multiple access system that provides content, such as voice, data, video, messaging, broadcast, etc., to multiple wireless users.
  • the communications system 100 may enable multiple wireless users to access such content through the sharing of system resources, including wireless bandwidth.
  • the communications systems 100 may employ one or more channel access methods, such as code division multiple access (CDMA), time division multiple access (TDMA), frequency division multiple access (FDMA), orthogonal FDMA (OFDMA), single- carrier FDMA (SC-FDMA), and the like.
  • CDMA code division multiple access
  • TDMA time division multiple access
  • FDMA frequency division multiple access
  • OFDMA orthogonal FDMA
  • SC-FDMA single- carrier FDMA
  • the communications system 100 may include wireless transmit/receive units (WTRUs) 102a, 102b, 102c, and/or 102d (which generally or collectively may be referred to as WTRU 102), a radio access network (RAN) 103/104/105, a core network 106/107/109, a public switched telephone network (PSTN) 108, the Internet 1 10, and other networks 1 12, though it will be appreciated that the disclosed embodiments contemplate any number of WTRUs, base stations, networks, and/or network elements.
  • Each of the WTRUs 102a, 102b, 102c, 102d may be any type of device configured to operate and/or communicate in a wireless environment.
  • the WTRUs 102a, 102b, 102c, 102d may be configured to transmit and/or receive wireless signals and may include user equipment (UE), a mobile station, a fixed or mobile subscriber unit, a pager, a cellular telephone, a personal digital assistant (PDA), a smartphone, a laptop, a netbook, a personal computer, a wireless sensor, consumer electronics, and the like.
  • UE user equipment
  • PDA personal digital assistant
  • smartphone a laptop
  • netbook a personal computer
  • a wireless sensor consumer electronics, and the like.
  • the communications systems 100 may also include a base station 114a and a base station 1 14b.
  • Each of the base stations 114a, 1 14b may be any type of device configured to wirelessly interface with at least one of the WTRUs 102a, 102b, 102c, 102d to facilitate access to one or more communication networks, such as the core network 106/107/109, the Internet 1 10, and/or the networks 112.
  • the base stations 114a, 114b may be a base transceiver station (BTS), a Node-B, an eNode B, a Home Node B, a Home eNode B, a site controller, an access point (AP), a wireless router, and the like. While the base stations 1 14a,
  • 1 14b may include any number of interconnected base stations and/or network elements.
  • the base station 114a may be part of the RAN 103/104/105, which may also include other base stations and/or network elements (not shown), such as a base station controller (BSC), a radio network controller (RNC), relay nodes, etc.
  • BSC base station controller
  • RNC radio network controller
  • the base station 1 14b may be configured to transmit and/or receive wireless signals within a particular geographic region, which may be referred to as a cell (not shown).
  • the cell may further be divided into cell sectors.
  • the cell associated with the base station 114a may be divided into three sectors.
  • the base station 1 14a may include three transceivers, i.e., one for each sector of the cell.
  • the base station 1 14a may employ multiple-input multiple output (MIMO) technology and, therefore, may utilize multiple transceivers for each sector of the cell.
  • MIMO multiple-input multiple output
  • the base stations 1 14a, 1 14b may communicate with one or more of the WTRUs 102a, 102b, 102c, 102d over an air interface 1 15/1 16/1 17, which may be any suitable wireless communication link (e.g., radio frequency (RF), microwave, infrared (IR), ultraviolet (UV), visible light, etc.).
  • the air interface 1 15/116/1 17 may be established using any suitable radio access technology (RAT).
  • RAT radio access technology
  • the communications system 100 may be a multiple access system and may employ one or more channel access schemes, such as CDMA, TDMA, FDMA, OFDMA, SC-FDMA, and the like.
  • the base station 1 14a in the RAN 103/104/105 and the WTRUs 102a, 102b, 102c may implement a radio technology such as Universal Mobile Telecommunications System (UMTS) Terrestrial Radio Access (UTRA), which may establish the air interface 1 15/116/1 17 using wideband CDMA (WCDMA).
  • UMTS Universal Mobile Telecommunications System
  • UTRA Universal Mobile Telecommunications System
  • WCDMA wideband CDMA
  • WCDMA may include communication protocols such as High-Speed Packet Access (HSPA) and/or Evolved HSPA (HSPA+).
  • HSPA may include High-Speed Downlink Packet Access (HSDPA) and/or High-Speed Uplink Packet Access (HSUPA).
  • HSPA High-Speed Packet Access
  • HSDPA High-Speed Downlink Packet Access
  • HSUPA High-Speed Uplink Packet Access
  • the base station 1 14a and the WTRUs 102a, 102b, 102c may implement a radio technology such as Evolved UMTS Terrestrial Radio Access (E-UTRA), which may establish the air interface 115/116/1 17 using Long Term Evolution (LTE) and/or LTE-Advanced (LTE- A).
  • E-UTRA Evolved UMTS Terrestrial Radio Access
  • LTE Long Term Evolution
  • LTE-A LTE-Advanced
  • the base station 1 14a and the WTRUs 102a, 102b, 102c may implement radio technologies such as IEEE 802.16 (i.e., Worldwide Interoperability for Microwave Access (WiMAX)), CDMA2000, CDMA2000 IX, CDMA2000 EV-DO, Interim Standard 2000 (IS-2000), Interim Standard 95 (IS-95), Interim Standard 856 (IS-856), Global System for Mobile communications (GSM), Enhanced Data rates for GSM Evolution (EDGE), GSM EDGE (GERAN), and the like.
  • IEEE 802.16 i.e., Worldwide Interoperability for Microwave Access (WiMAX)
  • CDMA2000, CDMA2000 IX, CDMA2000 EV-DO Code Division Multiple Access 2000
  • IS-95 Interim Standard 95
  • IS-856 Interim Standard 856
  • GSM Global System for Mobile communications
  • GSM Global System for Mobile communications
  • EDGE Enhanced Data rates for GSM Evolution
  • GERAN GSM EDGERAN
  • the base station 114b in FIG. 1A may be a wireless router, Home Node B, Home eNode
  • the base station 114b and the WTRUs 102c, 102d may implement a radio technology such as IEEE 802.11 to establish a wireless local area network (WLAN).
  • the base station 114b and the WTRUs 102c, 102d may implement a radio technology such as IEEE 802.15 to establish a wireless personal area network (WPAN).
  • WLAN wireless local area network
  • WPAN wireless personal area network
  • the base station 114b and the WTRUs 102c, 102d may utilize a cellular- based RAT (e.g., WCDMA, CDMA2000, GSM, LTE, LTE-A, etc.) to establish a picocell or femtocell.
  • a cellular- based RAT e.g., WCDMA, CDMA2000, GSM, LTE, LTE-A, etc.
  • the base station 1 14b may have a direct connection to the Internet 1 10.
  • the base station 114b may not be required to access the Internet 1 10 via the core network 106/107/109.
  • the RAN 103/104/105 may be in communication with the core network 106/107/109, which may be any type of network configured to provide voice, data, applications, and/or voice over internet protocol (VoIP) services to one or more of the WTRUs 102a, 102b, 102c, 102d.
  • the core network 106/107/109 may provide call control, billing services, mobile location-based services, pre-paid calling, Internet connectivity, video distribution, etc., and/or perform high-level security functions, such as user authentication.
  • VoIP voice over internet protocol
  • the RAN 103/104/105 and/or the core network 106/107/109 may be in direct or indirect communication with other RANs that employ the same RAT as the RAN 103/104/105 or a different RAT.
  • the core network in addition to being connected to the RAN 103/104/105, which may be utilizing an E-UTRA radio technology, the core network
  • 106/107/109 may also be in communication with another RAN (not shown) employing a GSM radio technology.
  • the core network 106/107/109 may also serve as a gateway for the WTRUs 102a, 102b, 102c, 102d to access the PSTN 108, the Internet 1 10, and/or other networks 1 12.
  • the PSTN 108 may include circuit-switched telephone networks that provide plain old telephone service (POTS).
  • POTS plain old telephone service
  • the Internet 110 may include a global system of interconnected computer networks and devices that use common communication protocols, such as the transmission control protocol (TCP), user datagram protocol (UDP) and the internet protocol (IP) in the TCP/IP internet protocol suite.
  • the networks 112 may include wired or wireless communications networks owned and/or operated by other service providers.
  • the networks 112 may include another core network connected to one or more RANs, which may employ the same RAT as the RAN 103/104/105 or a different RAT.
  • Some or all of the WTRUs 102a, 102b, 102c, 102d in the communications system 100 may include multi-mode capabilities, i.e., the WTRUs 102a, 102b, 102c, 102d may include multiple transceivers for communicating with different wireless networks over different wireless links.
  • the WTRU 102c shown in FIG. 1A may be configured to communicate with the base station 114a, which may employ a cellular-based radio technology, and with the base station 1 14b, which may employ an IEEE 802 radio technology.
  • FIG. IB is a system diagram of an example WTRU 102.
  • the WTRU 102 may include a processor 1 18, a transceiver 120, a transmit/receive element 122, a speaker/microphone 124, a keypad 126, a display/touchpad 128, non-removable memory 130, removable memory 132, a power source 134, a global positioning system (GPS) chipset 136, and other peripherals 138.
  • GPS global positioning system
  • the base stations 114a and 114b, and/or the nodes that base stations 114a and 114b may represent, such as but not limited to transceiver station (BTS), a Node-B, a site controller, an access point (AP), a home node-B, an evolved home node-B (eNodeB), a home evolved node-B (HeNB), a home evolved node-B gateway, and proxy nodes, among others, may include some or all of the elements depicted in FIG. IB and described herein.
  • BTS transceiver station
  • Node-B a Node-B
  • AP access point
  • eNodeB evolved home node-B
  • HeNB home evolved node-B gateway
  • proxy nodes among others, may include some or all of the elements depicted in FIG. IB and described herein.
  • the processor 118 may be a general purpose processor, a special purpose processor, a conventional processor, a digital signal processor (DSP), a plurality of microprocessors, one or more microprocessors in association with a DSP core, a controller, a microcontroller,
  • DSP digital signal processor
  • the processor 1 18 may perform signal coding, data processing, power control, input/output processing, and/or any other functionality that enables the WTRU 102 to operate in a wireless environment.
  • the processor 1 18 may be coupled to the transceiver 120, which may be coupled to the
  • FIG. IB depicts the processor 1 18 and the transceiver 120 as separate components, it will be appreciated that the processor 118 and the transceiver 120 may be integrated together in an electronic package or chip.
  • the transmit/receive element 122 may be configured to transmit signals to, or receive signals from, a base station (e.g., the base station 1 14a) over the air interface 115/116/1 17.
  • a base station e.g., the base station 1 14a
  • the transmit/receive element 122 may be an antenna configured to transmit and/or receive RF signals.
  • the transmit/receive element 122 may be an emitter/detector configured to transmit and/or receive IR, UV, or visible light signals, for example.
  • the transmit/receive element 122 may be configured to transmit and receive both RF and light signals. It will be appreciated that the transmit/receive element 122 may be configured to transmit and/or receive any combination of wireless signals.
  • the WTRU 102 may include any number of transmit/receive elements 122. More specifically, the WTRU 102 may employ MIMO technology. Thus, in one embodiment, the WTRU 102 may include two or more transmit/receive elements 122 (e.g., multiple antennas) for transmitting and receiving wireless signals over the air interface 115/1 16/1 17.
  • the transceiver 120 may be configured to modulate the signals that are to be transmitted by the transmit/receive element 122 and to demodulate the signals that are received by the transmit/receive element 122.
  • the WTRU 102 may have multi-mode capabilities.
  • the transceiver 120 may include multiple transceivers for enabling the WTRU 102 to communicate via multiple RATs, such as UTRA and IEEE 802.11, for example.
  • the processor 1 18 of the WTRU 102 may be coupled to, and may receive user input data from, the speaker/microphone 124, the keypad 126, and/or the display/touchpad 128 (e.g., a liquid crystal display (LCD) display unit or organic light-emitting diode (OLED) display unit).
  • the processor 1 18 may also output user data to the speaker/microphone 124, the keypad 126, and/or the display/touchpad 128.
  • the processor 118 may access information from, and store data in, any type of suitable memory, such as the non-removable memory 130 and/or the removable memory 132.
  • the non-removable memory 130 may include random-access memory (RAM), read-only memory (ROM), a hard disk, or any other type of memory storage device.
  • the removable memory 132 may include a subscriber identity module (SIM) card, a memory stick, a secure digital (SD) memory card, and the like.
  • SIM subscriber identity module
  • SD secure digital
  • the processor 1 18 may access information from, and store data in, memory that is not physically located on the WTRU 102, such as on a server or a home computer (not shown).
  • the processor 1 18 may receive power from the power source 134, and may be configured to distribute and/or control the power to the other components in the WTRU 102.
  • the power source 134 may be any suitable device for powering the WTRU 102.
  • the power source 134 may include one or more dry cell batteries (e.g., nickel-cadmium ( iCd), nickel-zinc (NiZn), nickel metal hydride (NiMH), lithium-ion (Li-ion), etc.), solar cells, fuel cells, and the like.
  • the processor 1 18 may also be coupled to the GPS chipset 136, which may be configured to provide location information (e.g., longitude and latitude) regarding the current location of the WTRU 102.
  • location information e.g., longitude and latitude
  • the WTRU 102 may receive location information over the air interface 1 15/1 16/1 17 from a base station (e.g., base stations 1 14a, 114b) and/or determine its location based on the timing of the signals being received from two or more nearby base stations. It will be appreciated that the WTRU 102 may acquire location information by way of any suitable location-determination method while remaining consistent with an embodiment.
  • the processor 118 may further be coupled to other peripherals 138, which may include one or more software and/or hardware modules that provide additional features, functionality and/or wired or wireless connectivity.
  • the peripherals 138 may include an accelerometer, an e-compass, a satellite transceiver, a digital camera (for photographs or video), a universal serial bus (USB) port, a vibration device, a television transceiver, a hands free headset, a Bluetooth® module, a frequency modulated (FM) radio unit, a digital music player, a media player, a video game player module, an Internet browser, and the like.
  • the peripherals 138 may include an accelerometer, an e-compass, a satellite transceiver, a digital camera (for photographs or video), a universal serial bus (USB) port, a vibration device, a television transceiver, a hands free headset, a Bluetooth® module, a frequency modulated (FM) radio unit, a digital music player, a media player, a video game player
  • FIG. 1C is a system diagram of the RAN 103 and the core network 106 according to an embodiment.
  • the RAN 103 may employ a UTRA radio technology to communicate with the WTRUs 102a, 102b, 102c over the air interface 1 15.
  • the RAN 103 may also be in communication with the core network 106.
  • the RAN 103 may include Node-Bs 140a, 140b, 140c, which may each include one or more transceivers for communicating with the WTRUs 102a, 102b, 102c over the air interface 115.
  • the Node-Bs 140a, 140b, 140c may each be associated with a particular cell (not shown) within the RAN 103.
  • the RAN 103 may also include RNCs 142a, 142b. It will be appreciated that the RAN 103 may include any number of Node-Bs and RNCs while remaining consistent with an embodiment.
  • the Node-Bs 140a, 140b may be in communication with the RNC 142a. Additionally, the Node-B 140c may be in communication with the RNC 142b.
  • the Node- Bs 140a, 140b, 140c may communicate with the respective RNCs 142a, 142b via an Iub interface.
  • the RNCs 142a, 142b may be in communication with one another via an lur interface.
  • Each of the RNCs 142a, 142b may be configured to control the respective Node-Bs 140a, 140b, 140c to which it is connected.
  • each of the RNCs 142a, 142b may be configured to carry out or support other functionality, such as outer loop power control, load control, admission control, packet scheduling, handover control, macrodiversity, security functions, data encryption, and the like.
  • the core network 106 shown in FIG. 1C may include a media gateway (MGW) 144, a mobile switching center (MSC) 146, a serving GPRS support node (SGSN) 148, and/or a gateway GPRS support node (GGSN) 150. While each of the foregoing elements are depicted as part of the core network 106, it will be appreciated that any one of these elements may be owned and/or operated by an entity other than the core network operator.
  • MGW media gateway
  • MSC mobile switching center
  • SGSN serving GPRS support node
  • GGSN gateway GPRS support node
  • the RNC 142a in the RAN 103 may be connected to the MSC 146 in the core network
  • the MSC 146 may be connected to the MGW 144.
  • the MSC 146 and the MGW 144 may provide the WTRUs 102a, 102b, 102c with access to circuit-switched networks, such as the PSTN 108, to facilitate communications between the WTRUs 102a, 102b,
  • the RNC 142a in the RAN 103 may also be connected to the SGSN 148 in the core network 106 via an IuPS interface.
  • the SGSN 148 may be connected to the GGSN 150.
  • the SGSN 148 and the GGSN 150 may provide the WTRUs 102a, 102b, 102c with access to packet- switched networks, such as the Internet 110, to facilitate communications between and the WTRUs 102a, 102b, 102c and IP-enabled devices.
  • the core network 106 may also be connected to the networks 1 12, which may include other wired or wireless networks that are owned and/or operated by other service providers.
  • FIG. ID is a system diagram of the RAN 104 and the core network 107 according to an embodiment.
  • the RAN 104 may employ an E-UTRA radio technology to communicate with the WTRUs 102a, 102b, 102c over the air interface 1 16.
  • the RAN 104 may also be in communication with the core network 107.
  • the RAN 104 may include eNode-Bs 160a, 160b, 160c, though it will be appreciated that the RAN 104 may include any number of eNode-Bs while remaining consistent with an embodiment.
  • the eNode-Bs 160a, 160b, 160c may each include one or more transceivers for communicating with the WTRUs 102a, 102b, 102c over the air interface 116.
  • the eNode-Bs 160a, 160b, 160c may implement MIMO technology.
  • the eNode-B 160a for example, may use multiple antennas to transmit wireless signals to, and receive wireless signals from, the WTRU 102a.
  • Each of the eNode-Bs 160a, 160b, 160c may be associated with a particular cell (not shown) and may be configured to handle radio resource management decisions, handover decisions, scheduling of users in the uplink and/or downlink, and the like. As shown in FIG. ID, the eNode-Bs 160a, 160b, 160c may communicate with one another over an X2 interface.
  • the core network 107 shown in FIG. ID may include a mobility management gateway (MME) 162, a serving gateway 164, and a packet data network (PDN) gateway 166. While each of the foregoing elements are depicted as part of the core network 107, it will be appreciated that any one of these elements may be owned and/or operated by an entity other than the core network operator.
  • MME mobility management gateway
  • PDN packet data network
  • the MME 162 may be connected to each of the eNode-Bs 160a, 160b, 160c in the RAN
  • the MME 162 may be responsible for authenticating users of the WTRUs 102a, 102b, 102c, bearer
  • the MME 162 may also provide a control plane function for switching between the RAN 104 and other RANs (not shown) that employ other radio technologies, such as GSM or WCDMA.
  • the serving gateway 164 may be connected to each of the eNode-Bs 160a, 160b, 160c in the RAN 104 via the S I interface.
  • the serving gateway 164 may generally route and forward user data packets to/from the WTRUs 102a, 102b, 102c.
  • the serving gateway 164 may also perform other functions, such as anchoring user planes during inter-eNode B handovers, triggering paging when downlink data is available for the WTRUs 102a, 102b, 102c, managing and storing contexts of the WTRUs 102a, 102b, 102c, and the like.
  • the serving gateway 164 may also be connected to the PDN gateway 166, which may provide the WTRUs 102a, 102b, 102c with access to packet-switched networks, such as the Internet 1 10, to facilitate communications between the WTRUs 102a, 102b, 102c and IP-enabled devices.
  • the PDN gateway 166 may provide the WTRUs 102a, 102b, 102c with access to packet-switched networks, such as the Internet 1 10, to facilitate communications between the WTRUs 102a, 102b, 102c and IP-enabled devices.
  • the core network 107 may facilitate communications with other networks.
  • the core network 107 may provide the WTRUs 102a, 102b, 102c with access to circuit- switched networks, such as the PSTN 108, to facilitate communications between the WTRUs 102a, 102b, 102c and traditional land-line communications devices.
  • the core network 107 may include, or may communicate with, an IP gateway (e.g., an IP multimedia subsystem (IMS) server) that serves as an interface between the core network 107 and the PSTN 108.
  • IMS IP multimedia subsystem
  • the core network 107 may provide the WTRUs 102a, 102b, 102c with access to the networks 112, which may include other wired or wireless networks that are owned and/or operated by other service providers.
  • FIG. IE is a system diagram of the RAN 105 and the core network 109 according to an embodiment.
  • the RAN 105 may be an access service network (ASN) that employs IEEE 802.16 radio technology to communicate with the WTRUs 102a, 102b, 102c over the air interface 117.
  • ASN access service network
  • the communication links between the different functional entities of the WTRUs 102a, 102b, 102c, the RAN 105, and the core network 109 may be defined as reference points.
  • the RAN 105 may include base stations 180a, 180b, 180c, and an
  • the RAN 105 may include any number of base stations and ASN gateways while remaining consistent with an embodiment.
  • the base stations 180a, 180b, 180c may each be associated with a particular cell (not shown) in the RAN
  • 105 may each include one or more transceivers for communicating with the WTRUs 102a,
  • the base stations 180a, 180b, 180c may implement MIMO technology.
  • the base station 180a may use multiple antennas to transmit wireless signals to, and receive wireless signals from, the WTRU 102a.
  • the base stations 180a, 180b, 180c may also provide mobility management functions, such as handoff triggering, tunnel establishment, radio resource management, traffic classification, quality of service (QoS) policy enforcement, and the like.
  • the ASN gateway 182 may serve as a traffic aggregation point and may be responsible for paging, caching of subscriber profiles, routing to the core network 109, and the like.
  • the air interface 117 between the WTRUs 102a, 102b, 102c and the RAN 105 may be defined as an Rl reference point that implements the IEEE 802.16 specification.
  • each of the WTRUs 102a, 102b, 102c may establish a logical interface (not shown) with the core network 109.
  • the logical interface between the WTRUs 102a, 102b, 102c and the core network 109 may be defined as an R2 reference point, which may be used for authentication,
  • the communication link between each of the base stations 180a, 180b, 180c may be defined as an R8 reference point that includes protocols for facilitating WTRU handovers and the transfer of data between base stations.
  • the communication link between the base stations 180a, 180b, 180c and the ASN gateway 182 may be defined as an R6 reference point.
  • the R6 reference point may include protocols for facilitating mobility management based on mobility events associated with each of the WTRUs 102a, 102b, 102c.
  • the RAN 105 may be connected to the core network 109.
  • the communication link between the RAN 105 and the core network 109 may defined as an R3 reference point that includes protocols for facilitating data transfer and mobility management capabilities, for example.
  • the core network 109 may include a mobile IP home agent (MIP-HA) 184, an authentication, authorization, accounting (AAA) server 186, and a gateway 188. While each of the foregoing elements are depicted as part of the core network 109, it will be appreciated that any one of these elements may be owned and/or operated by an entity other than the core network operator.
  • MIP-HA mobile IP home agent
  • AAA authentication, authorization, accounting
  • the MIP-HA may be responsible for IP address management, and may enable the
  • WTRUs 102a, 102b, 102c to roam between different ASNs and/or different core networks.
  • MIP-HA 184 may provide the WTRUs 102a, 102b, 102c with access to packet-switched networks, such as the Internet 1 10, to facilitate communications between the WTRUs 102a,
  • the AAA server 186 may be responsible for user authentication and for supporting user services.
  • the gateway 188 may facilitate interworking with other networks. For example, the gateway 188 may provide the WTRUs 102a, 102b, 102c with access to circuit-switched networks, such as the PSTN 108, to facilitate communications between the WTRUs 102a, 102b, 102c and traditional land-line communications devices. In addition, the gateway 188 may provide the WTRUs 102a, 102b, 102c with access to the networks 1 12, which may include other wired or wireless networks that are owned and/or operated by other service providers.
  • the RAN 105 may be connected to other ASNs and the core network 109 may be connected to other core networks.
  • the communication link between the RAN 105 the other ASNs may be defined as an R4 reference point, which may include protocols for coordinating the mobility of the WTRUs 102a, 102b, 102c between the RAN 105 and the other ASNs.
  • the communication link between the core network 109 and the other core networks may be defined as an R5 reference, which may include protocols for facilitating interworking between home core networks and visited core networks.
  • Embodiments recognize that specific packet filtering and routing rules that support different features and requirements. For example, embodiments recognize tools that may map interfaces together such as bonding, bridging, and packet filtering. Also by way of example, an Ethernet bonding driver may be available on Linux OS.
  • This bonding module is a tool that may handle interface mapping and packet routing.
  • the bonding module may allow the configuration of a virtual interface that could hide underneath physical interfaces to the upper layers (e.g., IP stack and higher). Such virtual interfaces may present a single virtual interface to Internet Protocol (e.g., master) and may bond the underlying interfaces (e.g., slaves) to the master, for example.
  • Internet Protocol e.g., master
  • underlying interfaces e.g., slaves
  • the bonding module may control the forwarding of packets from determined appropriate interface(s) to the application and/or IP layer, and in one or more embodiments perhaps transparently to the application and/or IP layer, for example.
  • the forwarding algorithm may be different, depending of the desired behavior.
  • This forwarding mechanism may be configured by selecting an appropriate MODE.
  • values defined for the MODE may include: 1) balance-rr or 0; 2) active-backup or 1 ; 3) balance-xor or 2; 4) broadcast or 3; 5) 802.3ad or 4; 6) balance-tlb or 5; and 7) balance-alb or 6.
  • bridging is a type of forwarding technique that may be used in packet-switched computer networks. Unlike routing for example, bridging may make no assumptions about where in a network a particular address is located. Instead, bridging may depend on flooding, as well as examination of source addresses in received packet headers to locate one or more unknown devices. Once a device has been located, its location may be recorded in a table where the MAC address may be stored - so as to preclude the need for further broadcasting, for example. Bridging may occur at OSI Model Layer 2 (data-link layer), for example. Also by way of example, and not limitation, a bridge may direct frames according to hardware assigned MAC addresses.
  • Embodiments recognize one or more techniques to perform packet filtering. For instance in the Linux OS, packet filtering may be done using the "libnetfilter queue” tool that allows performing user-space packet queuing. With this tool, the packet may be intercepted in the kernel space and passed to the application space. However, depending on the kind of filtering that may need to be done, with the "libnetfilter queue” tool - a packet that is to be passed to the application is an IP packet so the only fields that may be available for filtering are the fields in the TCP(UDP)/IP headers and above.
  • Embodiments recognize that filtering based on other parameters, for example such as the physical interface from which the packet has been received, may not be possible with tools like the libnetfilter queue, since the physical interface information may not be available at the application space level, among other reasons.
  • One or more contemplated incoming and/or outgoing packet filtering techniques may utilize and/or access other parameters, such as but not limited to an incoming physical interface, for example.
  • Embodiments recognize that filtering may be done using a 5-tuple grouping:
  • source/destination IP addresses may not be possible via the 5-tuple technique alone, since the physical interface information may not be available at the application space level.
  • Embodiments contemplate one or more techniques and devices to implement packet filtering.
  • the contemplated embodiments may be used to apply specific, filtering, routing, and/or forwarding rules on some or each packet when a device, such as a wireless
  • WTRU transmit/receive unit
  • WTRU transmit/receive unit
  • One or more embodiments contemplate configurable operational modes that may enable heretofore un-provided functionalities or requirements by associating one or more outgoing filtering functions to the mode.
  • one or more embodiments contemplate the use of one or more outgoing packet filtering hooks that may be executed at the kernel level, for example.
  • one or more embodiments - including those that contemplate configurable operational modes and embodiments that contemplate the use of outgoing packet filtering hooks in the kernel level - may use packet filtering hooks executed at the kernel level to handle incoming packet filtering.
  • One or more embodiments may be implemented in a module, perhaps without modifying the IP stack.
  • one or more embodiments contemplate one or more of the following functionalities: the usage of the incoming interface, in addition to the 5- tuple (or 6-tuple with IPv6), to build an incoming packet mapping table and/or implement outgoing packet filtering; kernel-space hooks (perhaps instead of user-space applications, for example); higher layer identification of flows by adding tags to outgoing packets, where the contemplated tags may or may not be related to 5 -tuple (or 6-tuple), e.g., where matching criteria may not be based on 5-tuple (or 6-tuple); a capability to have a system map contemplated tags to a source IP address (e.g., in such scenarios the contemplated tag may be related to the 5- tuple); a capability in outgoing packets filtering hook(s) to use the contemplated tags for packet filtering; and/or a capability in outgoing packets filtering hook(s) to remove the contemplated tags once the out
  • incoming packets may need to be filtered before reaching the IP stack. Such filtering may enable information gathering that may be needed later on to apply specific routing or forwarding rules to outgoing packets, for example.
  • incoming packet filtering may be used for other purposes, e.g., to manipulate or modify the received data, etc.
  • Embodiments contemplate that one or more incoming packet filtering algorithms (if and where any may be needed) and/or the outgoing packet filtering may need to be configured on a group of physical interfaces, which may be mapped together (e.g., perhaps with the binding application described herein).
  • one or more contemplated functionalities may be enabled by introducing operational modes that may be applied to the physical interfaces, for example.
  • one or more mapping tables may be maintained with the operational modes and the associated rule or rules to be applied on outgoing packets.
  • incoming and/or outgoing packets may be filtered per IP flow based on, at least in part, the 5-tuple (source/destination IP addresses, source/destination port numbers and protocol type), or for IPv6, the 6-tuple (5-tuple + IP flow level), for example.
  • Embodiments contemplate that flows may be identified by higher layers by adding a specific tag to the outgoing packets. Packets having identical 5-tuple (or 6-tuple) may be tagged differently. Packet filtering may be done based on these tags, for example.
  • the tags may be used for assignment of flow-specific IP source addresses.
  • the 5-tuple (or 6-tuple in IPv6) may be created with a generic (or default) source IP address.
  • a logical interface may use flow-specific IP addresses to distinguish outgoing flows.
  • the LIF may substitute an appropriate flow-specific IP address based on the flow-tag and then may remove the tag.
  • the reverse operation may be applied to a corresponding incoming stream.
  • the terminal's flow-specific IP addresses may be destination IP addresses (since these are incoming).
  • tags may be used, the destination IP addresses may be changed to generic destination IP addresses and/or flow tags may be appended to incoming packets.
  • This generic packet filtering may make enable packet filtering based on any field or fields (e.g., from application to link layer fields).
  • packet filtering may be done using hooks instead of queues.
  • queues may have limitations, and that with the hooks, the filtering may be done at the kernel level (as opposed to the application level using queues, for example).
  • Embodiments also contemplate that, with the hooks, access may be permitted to the socket buffer (skb) which may allow access to the interface used for the packet reception, for example.
  • the incoming packet filtering may be configured by registering a PREROUTI G hook.
  • the packet filtering tool may intercept the incoming packets and then may call the registered hook.
  • the desired packet filtering may be applied on incoming packets. For example, specific information may be saved, and/or the packet information may be modified, etc.
  • the hook may be called at the kernel level, for example.
  • a PREROUTING hook may be registered for outgoing packet filtering.
  • the packet filtering tool may intercept the outgoing packets and may call the registered hook.
  • the desired packet filtering e.g., outgoing packet filtering or packet manipulation
  • one or more outgoing packet filtering functions may be associated with a heretofore un-provided and/or un-configured operational mode or modes (perhaps as defined in a bonding module, for example).
  • the one or more outgoing filtering functions may be executed at various times a packet needs to be transmitted or each time a packet needs to be transmitted, for example.
  • embodiments - including embodiments that contemplate one or more configurable operational modes and embodiments that contemplate the use of outgoing packet filtering hooks in the kernel level - packets that may not match any or a sufficient number of outgoing rules and/or filters may follow one or more pre-configured rules (e.g., broadcasting or transmitting on all interfaces). Similarly, one or more pre-configured rules may be combined with outgoing rules or filters so that a designated or preferred outcome may be achieved.
  • pre-configured rules e.g., broadcasting or transmitting on all interfaces.
  • pre-configured rules may be combined with outgoing rules or filters so that a designated or preferred outcome may be achieved.
  • one or more embodiments contemplate packet multiplication (i.e., some or all outgoing packets may be replicated and sent on multiple mapped interfaces). This may be referred to as “duplication” or “multiplication” behavior, for example and not limitation.
  • a "multiplicate" mode may be configured.
  • the multiplicate mode may replicate and transmit outgoing packets on some or all interfaces that may mapped together.
  • the outgoing packets may be intercepted and the outgoing packet filtering function, associated with multiplicate mode, may be executed in order to determine on which interfaces the outgoing packets may be sent and/or how many copies may be generated.
  • outgoing packet filtering functions associated with multiplicate mode may be executed at various times that a packet may need to be transmitted or each time that a packet may need to be transmitted. Additionally or alternatively, in embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used, a packet filtering hook may be registered. In one or more embodiments, the outgoing packets may be intercepted by the packet filtering tool and the registered hook may be called at various times that a packet may need to be transmitted or each time that a packet may need to be transmitted.
  • Embodiments contemplate that the outgoing packet filtering function may obtain a list of mapped interfaces.
  • the number of mapped interfaces may determine how many copies of the outgoing packet may be done, for example.
  • Each outgoing packet may be sent over some or all associated interfaces.
  • FIG. 2 is an exemplary illustration of outgoing packet routing behavior when either a multiplicate mode or multiplication behavior may be configured, or when one or more kernel level executed outgoing packet filtering hooks may be used.
  • a first interface (IF#1) and a second interface (IF#2) may be mapped together.
  • the interfaces may be part of a mobile node such as a wireless
  • WTRU transmit/receive unit
  • a multiplicate mode may be configured.
  • one or more packets may be sent on an interface (e.g., IF#1) that may be mapped to one or more other interfaces (e.g., IF#2).
  • no incoming packet filtering may need be defined in the either the embodiments with the multiplicate mode configured or in embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used.
  • an outgoing packet filtering function may be executed and/or the one or more packets may be replicated and sent on both IF#1 and IF#2.
  • One or more embodiments contemplate packet mirroring (e.g., some or all packets associated to a specific IP flow sent on the same physical interface as the one used for the reception of this IP flow).
  • Some embodiments in which one or more operational modes may be configured may have a "mirror" mode configured.
  • a mirror mode may transmit outgoing packets on the same interface as the packets were received.
  • the outgoing packets may be intercepted and the outgoing packet filtering function may be executed in order to determine the interface in which outgoing packets may be sent.
  • some or all packets associated with a specific IP flow may be sent on the same interface (e.g., same physical interface) as the interface that may have been used for the reception of the IP flow.
  • incoming packets may be intercepted in order to create a list of IP flows (e.g., considering 5-tuple) and/or corresponding incoming interfaces.
  • the list may be used by the outgoing packet filter, for example.
  • a NETFILTER To intercept the incoming packets, a NETFILTER
  • PREROUTING hook may be registered, by way of example and not limitation.
  • embodiments contemplate a way to get the index of the incoming physical interface may be to use the skb iif field of some or each incoming packet and call the existing dev_get_by_index function.
  • the IP flow information from the socket buffer (skb), along with the incoming interface, may be stored in a linked list whenever a new IP flow is detected.
  • FIG. 3 illustrates an example of such techniques.
  • an IP flow may be identified by a 5-tuple.
  • the outgoing packet filtering function associated with mirror mode may be executed at various times a packet may need to be transmitted or each time a packet may need to be transmitted. In one or more embodiments, the outgoing interface indicated in the packet may be overridden at this point.
  • a NETFILTER hook (e.g., an outgoing packet filtering function) may have been registered, for example.
  • the outgoing packets may be intercepted by the NETFILTER tool and the registered hook may be called some or each time a packet may need to be transmitted.
  • the packet may be transmitted on the selected outgoing interfaces at this point, for example.
  • Embodiments contemplate that outgoing packet filtering may be based on the IP flow 5- tuple and/or on the incoming interface information. Embodiments contemplate that this information may be saved when incoming packets are received, for example. One or more algorithms may compare the outgoing IP flow tuple, obtained from the skb, with the saved incoming IP flow tuple. If a match is found, the incoming interface may be obtained from the IP flow list. One or more embodiments contemplate that this same incoming interface may be used for the outgoing packet.
  • FIG. 3 is an exemplary illustration of the packet filtering and routing behavior when "mirror" mode is configured regarding embodiments that contemplate one or more configurable operational modes.
  • FIG. 3 is also an exemplary illustration of packet filtering and routing behavior for embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used.
  • a first interface (IF #1) and at least a second interface (IF #2) may be mapped together on a mobile node (MN) which may be a wireless transmit/receive unit (WTRU).
  • MN mobile node
  • WTRU wireless transmit/receive unit
  • a "mirror" mode may be configured.
  • one or more packets may be sent on both IF#1 and IF#2 to a correspondent node (CN), or the like, of a communication network.
  • CN correspondent node
  • data may be received on IF#1.
  • one or more incoming packets may be intercepted by a NETFILTER tool, for example, and saved to an IP flow list.
  • NETFILTER tool for example, and saved to an IP flow list.
  • no IP flows may match
  • one or more packets may be sent on both interfaces.
  • a decision may be made on the network side to send an IP flow #2 to the WTRU on IF#2.
  • one or more incoming packets may be intercepted by a PREROUTI G filter, for example, and saved into the IP flow list.
  • the outgoing packet filtering function may be executed to determine, at least in part, which interface may be used to send the packet, or in some embodiments perhaps should be used to send the packet.
  • the one or more outgoing packet filtering hooks may determine which interface may be used to send the packet, or in some embodiments perhaps should be used to send the packet.
  • IP flow #2 may be found in the IP flow list, perhaps using the 5-tuple for identification.
  • the interface associated with the receipt of incoming packets that correspond to the outgoing packets may be used to send the outgoing packets. For example, as IF#2 received IP flow #2, then IF#2 may be used to send outgoing packets that correspond to the received IP flow #2.
  • One or more embodiments contemplate packet filtering using tags (e.g., some or all packets associated with a specific flow may be tagged and may be sent on the interface specified by the one or more configured rules).
  • An exemplary implementation may include the direction of application level "control" packets to be sent on a first interface (IF#1) and other type of data to be sent on a second interface (IF #2).
  • One or more of such embodiments may be referred to as "using tags" or "tagging" behavior, by way of example and not limitation.
  • a configurable operational mode may be defined.
  • the operational mode may be called "tagging", for example and not limitation.
  • a tagging mode may filter outgoing packets based on tags and may transmit the outgoing packets on the interface specified by one or more configured rules.
  • the outgoing packets may be tagged by one or more higher layers.
  • the outgoing packets may be intercepted by an outgoing packet filtering function.
  • the filtering function may determine, perhaps based on the tags and/or the one or more configured rules, via which interface the outgoing packets may be sent.
  • the tags may be removed, prior to sending the packets.
  • Flow-specific IP source addresses may be substituted for the source addresses in the original packet.
  • flow-specific IP destination addresses may be removed and replaced by generic destination IP addresses and/or appropriate flow tags.
  • the one or more rules may be configured either locally (e.g., by the user or local applications) or by a network node (e.g., ANDSF).
  • the one or more rules may specify which interface to use or which algorithm to apply (e.g., mirror, multiplicate, etc).
  • a hook e.g., an outgoing packet filtering function
  • the outgoing packets may be intercepted by the packet filtering tool and the registered hook may be called at various times a packet may need to be transmitted or each time a packet may need to be transmitted.
  • incoming packet filtering may or may not be required, hooks for incoming packet filtering may or may not be installed, and incoming packets may or may not be intercepted.
  • Embodiments contemplate that outgoing packet filtering may be based on the tag added to the outgoing packet.
  • the algorithm may compare the tag with the tags specified in the configured rules. If a match is found, the specified action may be executed. For example, the action may be to send to a specific interface, execute a particular rule, etc. Also by way of example, the rule may specify the outgoing interface.
  • FIG. 4 is an exemplary illustration of one or more alternative embodiments.
  • embodiments contemplate packet filtering and routing behavior when, and in at least some embodiments, a tagging mode may be configured.
  • the WTRU (such as a mobile node
  • MN in one or more embodiments may map one or more interfaces (IF) together.
  • the WTRU (or mobile node (MN)) may configure a tagging mode or a "using tags" mode.
  • the WTRU or mobile node (MN)
  • MN mobile node
  • one or more flows may be tagged, perhaps at the application layer. In one or more embodiments, the flows may be tagged at a control layer, or one or more other layers, for example.
  • one or more outgoing filtering hooks may use one or more tags and/or one or more rules to do packet filtering.
  • the tag may be removed before transmission.
  • At least one control flow may be sent on a first interface (IF #1) and one or more other flows may be sent on a second interface (IF #2).
  • IF #1 first interface
  • IF #2 second interface
  • the transmission from the respective interface may be specified by one or more rules.
  • the packet filtering capabilities/details described herein may apply to a terminal in uplink and/or downlink as well as to any network node. For example, a base station doing packet forwarding may use the packet filtering methods described herein to implement packet forwarding on uplink and downlink packets. Policies may be configured to determine the forwarding decisions criteria.
  • a wireless transmit/receive unit may be configured to implement packet filtering, where the WTRU may include a first interface and a second interface.
  • WTRU wireless transmit/receive unit
  • embodiments contemplate applying at least one tag to at least one outgoing packet, and at 5004, executing an outgoing packet filtering function.
  • embodiments contemplate determining, by the outgoing packet filtering function, based at least in part on the at least one tag, at least one of the first interface or the second interface via which to send the outgoing packet.
  • embodiments contemplate removing the at least one tag from the at least one outgoing packet; and, at 5010, sending the at least one outgoing packet via at least one of the determined first interface or second interface.
  • the applying the at least one tag to the at least one outgoing packet may be done at a logical layer higher than a layer of the first interface or the second interface. In one or more embodiments, the applying the at least one tag to the at least one outgoing packet may be done at an application layer or a control layer. Also, embodiments contemplate that the at least one tag may designate the at least one outgoing packet as either a control packet or a non-control packet.
  • first interface may be mapped with the second interface.
  • determining by the outgoing filtering function at 5006 may be further based on one or more predetermined rules.
  • embodiments contemplate configuring at least one mode on the WTRU, where the executing the outgoing packet filtering function of 5004 may include executing an outgoing packet filtering function associated with the at least one mode. Also, in one or more embodiments, the determining by the outgoing packet filtering function of 5006 may be executed at a time proximate to the sending of the at least one outgoing packet.
  • embodiments contemplate registering at least one hook on the WTRU, where the executing the outgoing packet filtering function of 5004 may include calling the at least one hook. Also, the determining by the outgoing packet filtering function of 5006 may executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet. [0112] Alternatively or additionally, one or more embodiments contemplate that the removing the at least one tag from the at least one outgoing packet of 5008 may be performed by the outgoing packet filter function associated with the at least one mode. Alternatively or additionally, one or more embodiments contemplate that the removing the at least one tag from the at least one outgoing packet of 5008 may be performed by the at least one hook at the kernel level.
  • a wireless transmit/receive unit may be configured to implement packet filtering.
  • WTRU wireless transmit/receive unit
  • one or more embodiments contemplate executing an outgoing packet filtering function.
  • One or more embodiments also contemplate, at 6004, determining, by the outgoing packet filtering function, a number of respective individual interfaces included in an interface mapping on the WTRU, and at 6006, identifying, by the outgoing packet filtering function, the respective individual interfaces included in the interface mapping.
  • embodiments contemplate determining, by the outgoing packet filtering function, based at least in part on the determined number of mapped interfaces, a number of required duplicates of at least one outgoing packet.
  • embodiments contemplate creating the required number of duplicates of the at least one outgoing packet, and at 6012 sending either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet respectively via each of the individual interfaces included in the interface mapping.
  • embodiments contemplate configuring at least one mode on the WTRU, where the executing the outgoing packet filtering function at 6002 may include executing an outgoing packet filtering function associated with the at least one mode. Also, one or more embodiments contemplate that at least the determining by the outgoing packet filtering function the number of interfaces included in the interface mapping of 6004 may be executed at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
  • One or more embodiments also contemplate that the identifying of 6006, the determining of 6008, and/or the duplicating of 6010 may also be executed at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
  • embodiments contemplate registering at least one hook on the WTRU, where the executing the outgoing packet filtering function of 6002 may include calling the at least one hook, and at least the determining by the outgoing packet filtering function the number of interfaces included in the interface mapping of 6004 may be executed by the at least one hook at a kernel level at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
  • One or more embodiments also contemplate that the identifying of 6006, the determining of 6008, and/or the duplicating of 6010 may also be executed by the at least one hook at a kernel level at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
  • embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering.
  • WTRU wireless transmit/receive unit
  • One or more embodiments contemplate, at 7002, identifying at least one incoming packet, where the at least one incoming packet may be received via an interface of the WTRU.
  • Embodiments also contemplate, at 7004, identifying at least one outgoing packet, where the at least one outgoing packet may corresponding to the at least one incoming packet.
  • One or more embodiments contemplate, at 7006, executing an outgoing packet filter function, and at 7008, identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received.
  • embodiments contemplate sending the at least one outgoing packet via the same interface via which the incoming packet was received.
  • the identifying the at least one incoming packet of 7002 of FIG. 7 may include, at 8004, calling the at least one hook at a kernel space upon receipt of the at least one incoming packet, and at 8006, determining, by the at least one hook, a label for the at least one incoming packet.
  • embodiments contemplate identifying, by the at least one hook, the interface via which the at least one incoming packet was received. Also, at 8010, embodiments contemplate associating, by the at least one hook, the label and the identity of the interface in a table.
  • the determining, by the at least one hook, the label for the at least one incoming packet of 8006, may include assigning at least one of a five tuple designation or a six tuple designation to the at least one incoming packet.
  • the five tuple designation may include at least one of a source internet protocol (IP) address, a destination IP address, a source port number, a destination port number, or a protocol type
  • the six tuple designation may include at least one of a source IP address, a destination IP address, a source port number, a destination port number, a protocol type, or an IP flow level.
  • IP internet protocol
  • identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received of 7008 of FIG. 7 may include, at 9002 accessing the table, and at 9004, identifying the correspondence between the at least one outgoing packet and the label of the at least one incoming packet.
  • embodiments also contemplate, at 9006, selecting the interface associated with the label.
  • embodiments contemplate configuring at least one mode on the WTRU, where the executing the outgoing packet filtering function of 7006 of FIG. 7 may include executing an outgoing packet filtering function associated with the at least one mode.
  • the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received of 7008 of FIG. 7 may be executed at a time proximate to the sending of the at least one outgoing packet.
  • one or more embodiments contemplate registering at least one hook on the WTRU, where the executing the outgoing packet filtering function of 7006 of FIG. 7 may include calling the at least one hook.
  • the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received of 7008 of FIG. 7 may be executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet.
  • Examples of computer-readable storage media include, but are not limited to, a read only memory (ROM), a random access memory (RAM), a register, cache memory, semiconductor memory devices, magnetic media such as internal hard disks and removable disks, magneto-optical media, and optical media such as CD-ROM disks, and digital versatile disks (DVDs).
  • ROM read only memory
  • RAM random access memory
  • register cache memory
  • semiconductor memory devices magnetic media such as internal hard disks and removable disks, magneto-optical media, and optical media such as CD-ROM disks, and digital versatile disks (DVDs).
  • a processor in association with software may be used to implement a radio frequency transceiver for use in a WTRU, UE, terminal, base station, RNC, or any host computer.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Multimedia (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Embodiments contemplate one or more techniques for packet filtering. One or more embodiments may apply specific routing and/or forwarding rules on some or each packet when a device has one or more, or multiple, interfaces. Contemplated filtering techniques may be implemented in a module and/or without modifying an IP stack. The contemplated packet filtering techniques may apply to a terminal in uplink and/or downlink as well as to any network node. An incoming packet table may be created using 5-tuple, 6-tuple, and/or tags, among other mechanisms, to support incoming and/or outgoing packet filtering.

Description

GENERIC PACKET FILTERING
CROSS REFERENCE TO RELATED APPLICATIONS
[0001] This application claims the benefit of U.S. Provisional Application No. 61/449,275, titled "Generic Packet Filtering Methodology", filed on March 4, 2011, the content of which being hereby incorporated by reference herein in its entirety, for all purposes.
BACKGROUND
[0002] Packet filters may evaluate or analyze "packets" which may be transferred between one or more computing devices that are in communication with each other, for example via the Internet and/or via wireless communication.
[0003] An Internet Protocol (IP) router may permit or may block the flow of various types of IP packets via IP packet filtering. Packet filtering can be applied to incoming and outgoing IP flow traffic. Input packet filters may define what inbound IP traffic may be allowed to be accepted on one or more interfaces. Output packet filters may define what IP traffic may be sent from one or more interfaces.
[0004] Packet filtering tools may be available in different operating systems (OSs), such as but not limited to "Netfilter" on Linux and Windows; "WinpkFilter" on Windows; and
"LittleSwitch" on Apple's OS, for example.
SUMMARY
[0005] One or more techniques for packet filtering are contemplated. Embodiments contemplate the application of specific routing and/or forwarding rules on some packets or each packet when a device may have one or more, or multiple, interfaces. One or more embodiments may be implemented without modifying the IP stack.
[0006] Embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering. The WTRU may include a first interface and a second interface. The WTRU may be configured to apply at least one tag to at least one outgoing packet and to execute an outgoing packet filtering function. The outgoing packet filtering function may determine, based at least in part on the at least one tag, at least one of the first interface or the second interface via which to send the outgoing packet. The at least one tag may be removed from the at least one outgoing packet and the at least one outgoing packet may be sent via at least one of the determined first interface or second interface.
[0007] In one or more embodiments, at least one mode may be configured on the WTRU and executing the outgoing packet filtering function may include executing an outgoing packet filtering function that may be associated with the at least one mode. In addition, the outgoing packet filtering function may be executed at a time proximate to the sending of the at least one outgoing packet.
[0008] In one or more embodiments, at least one hook may be registered on the WTRU, and executing the outgoing packet filtering function may include calling the at least one hook. Also, the determining by the outgoing packet filtering function may be executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet.
[0009] Embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering. The WTRU may be configured to execute an outgoing packet filtering function. The outgoing packet filtering function may determine a number of respective individual interfaces that may be included in an interface mapping on the WTRU. The outgoing packet filtering function may identify the respective individual interfaces that may be included in the interface mapping. Also, the outgoing packet filtering function may determine, based at least in part on the determined number of mapped interfaces, a number of required duplicates of at least one outgoing packet. The required number of duplicates of the at least one outgoing packet may be created. In addition, either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet may be respectively sent via each of the individual interfaces that may be included in the interface mapping.
[0010] Embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering. The WTRU may be configured to identify at least one incoming packet, where the at least one incoming packet may be received via an interface of the WTRU. The WTRU may also be configured to identify at least one outgoing packet, where the at least one outgoing packet may correspond to the at least one incoming packet. Also, an outgoing packet filter function may be executed and the outgoing packet filter function may identify the interface on which the at least one incoming packet was received. In addition, the at least one outgoing packet may be sent via the same interface via which the incoming packet was received. BRIEF DESCRIPTION OF THE DRAWINGS
[0011] A more detailed understanding may be had from the following description, given by way of example in conjunction with the accompanying drawings wherein:
[0012] FIG. 1 A is a system diagram of an example communications system in which one or more disclosed embodiments may be implemented;
[0013] FIG. IB is a system diagram of an example wireless transmit/receive unit (WTRU) that may be used within the communications system illustrated in FIG. 1A;
[0014] FIG. 1C is a system diagram of an example radio access network and an example core network that may be used within the communications system illustrated in FIG. 1A;
[0015] FIG ID is a system diagram of another example radio access network and an example core network that may be used within the communications system illustrated in FIG. 1A;
[0016] FIG. IE is a system diagram of another example radio access network and an example core network that may be used within the communications system illustrated in FIG. 1A;
[0017] FIG. 2 is an exemplary illustration of packet filtering and/or routing techniques consistent with embodiments;
[0018] FIG. 3 is another exemplary illustration of packet filtering and/or routing consistent with embodiments;
[0019] FIG. 4 is another exemplary illustration of packet filtering and/or routing behavior consistent with embodiments;
[0020] FIG. 5 is a block diagram of a filtering technique consistent with embodiments;
[0021] FIG. 6 is a block diagram of another filtering technique consistent with embodiments;
[0022] FIG. 7 is a block diagram of another filtering technique consistent with embodiments;
[0023] FIG. 8 is a block diagram of another filtering technique consistent with embodiments; and
[0024] FIG. 9 is a block diagram of another filtering technique consistent with embodiments.
DETAILED DESCRIPTION OF ILLUSTRATIVE EMBODIMENTS
[0025] A detailed description of illustrative embodiments will now be described with reference to the various Figures. Although this description provides a detailed example of possible implementations, it should be noted that the details are intended to be exemplary and in no way limit the scope of the application. As used herein, the article "a", absent further qualification or characterization, may be understood to mean "one or more" or "at least one", for example.
[0026] FIG. 1A is a diagram of an example communications system 100 in which one or more disclosed embodiments may be implemented. The communications system 100 may be a multiple access system that provides content, such as voice, data, video, messaging, broadcast, etc., to multiple wireless users. The communications system 100 may enable multiple wireless users to access such content through the sharing of system resources, including wireless bandwidth. For example, the communications systems 100 may employ one or more channel access methods, such as code division multiple access (CDMA), time division multiple access (TDMA), frequency division multiple access (FDMA), orthogonal FDMA (OFDMA), single- carrier FDMA (SC-FDMA), and the like.
[0027] As shown in FIG. 1A, the communications system 100 may include wireless transmit/receive units (WTRUs) 102a, 102b, 102c, and/or 102d (which generally or collectively may be referred to as WTRU 102), a radio access network (RAN) 103/104/105, a core network 106/107/109, a public switched telephone network (PSTN) 108, the Internet 1 10, and other networks 1 12, though it will be appreciated that the disclosed embodiments contemplate any number of WTRUs, base stations, networks, and/or network elements. Each of the WTRUs 102a, 102b, 102c, 102d may be any type of device configured to operate and/or communicate in a wireless environment. By way of example, the WTRUs 102a, 102b, 102c, 102d may be configured to transmit and/or receive wireless signals and may include user equipment (UE), a mobile station, a fixed or mobile subscriber unit, a pager, a cellular telephone, a personal digital assistant (PDA), a smartphone, a laptop, a netbook, a personal computer, a wireless sensor, consumer electronics, and the like.
[0028] The communications systems 100 may also include a base station 114a and a base station 1 14b. Each of the base stations 114a, 1 14b may be any type of device configured to wirelessly interface with at least one of the WTRUs 102a, 102b, 102c, 102d to facilitate access to one or more communication networks, such as the core network 106/107/109, the Internet 1 10, and/or the networks 112. By way of example, the base stations 114a, 114b may be a base transceiver station (BTS), a Node-B, an eNode B, a Home Node B, a Home eNode B, a site controller, an access point (AP), a wireless router, and the like. While the base stations 1 14a,
1 14b are each depicted as a single element, it will be appreciated that the base stations 1 14a,
1 14b may include any number of interconnected base stations and/or network elements.
[0029] The base station 114a may be part of the RAN 103/104/105, which may also include other base stations and/or network elements (not shown), such as a base station controller (BSC), a radio network controller (RNC), relay nodes, etc. The base station 114a and/or the base station
1 14b may be configured to transmit and/or receive wireless signals within a particular geographic region, which may be referred to as a cell (not shown). The cell may further be divided into cell sectors. For example, the cell associated with the base station 114a may be divided into three sectors. Thus, in one embodiment, the base station 1 14a may include three transceivers, i.e., one for each sector of the cell. In another embodiment, the base station 1 14a may employ multiple-input multiple output (MIMO) technology and, therefore, may utilize multiple transceivers for each sector of the cell.
[0030] The base stations 1 14a, 1 14b may communicate with one or more of the WTRUs 102a, 102b, 102c, 102d over an air interface 1 15/1 16/1 17, which may be any suitable wireless communication link (e.g., radio frequency (RF), microwave, infrared (IR), ultraviolet (UV), visible light, etc.). The air interface 1 15/116/1 17 may be established using any suitable radio access technology (RAT).
[0031] More specifically, as noted above, the communications system 100 may be a multiple access system and may employ one or more channel access schemes, such as CDMA, TDMA, FDMA, OFDMA, SC-FDMA, and the like. For example, the base station 1 14a in the RAN 103/104/105 and the WTRUs 102a, 102b, 102c may implement a radio technology such as Universal Mobile Telecommunications System (UMTS) Terrestrial Radio Access (UTRA), which may establish the air interface 1 15/116/1 17 using wideband CDMA (WCDMA).
WCDMA may include communication protocols such as High-Speed Packet Access (HSPA) and/or Evolved HSPA (HSPA+). HSPA may include High-Speed Downlink Packet Access (HSDPA) and/or High-Speed Uplink Packet Access (HSUPA).
[0032] In another embodiment, the base station 1 14a and the WTRUs 102a, 102b, 102c may implement a radio technology such as Evolved UMTS Terrestrial Radio Access (E-UTRA), which may establish the air interface 115/116/1 17 using Long Term Evolution (LTE) and/or LTE-Advanced (LTE- A).
[0033] In other embodiments, the base station 1 14a and the WTRUs 102a, 102b, 102c may implement radio technologies such as IEEE 802.16 (i.e., Worldwide Interoperability for Microwave Access (WiMAX)), CDMA2000, CDMA2000 IX, CDMA2000 EV-DO, Interim Standard 2000 (IS-2000), Interim Standard 95 (IS-95), Interim Standard 856 (IS-856), Global System for Mobile communications (GSM), Enhanced Data rates for GSM Evolution (EDGE), GSM EDGE (GERAN), and the like.
[0034] The base station 114b in FIG. 1A may be a wireless router, Home Node B, Home eNode
B, or access point, for example, and may utilize any suitable RAT for facilitating wireless connectivity in a localized area, such as a place of business, a home, a vehicle, a campus, and the like. In one embodiment, the base station 114b and the WTRUs 102c, 102d may implement a radio technology such as IEEE 802.11 to establish a wireless local area network (WLAN). In another embodiment, the base station 114b and the WTRUs 102c, 102d may implement a radio technology such as IEEE 802.15 to establish a wireless personal area network (WPAN). In yet another embodiment, the base station 114b and the WTRUs 102c, 102d may utilize a cellular- based RAT (e.g., WCDMA, CDMA2000, GSM, LTE, LTE-A, etc.) to establish a picocell or femtocell. As shown in FIG. 1A, the base station 1 14b may have a direct connection to the Internet 1 10. Thus, the base station 114b may not be required to access the Internet 1 10 via the core network 106/107/109.
[0035] The RAN 103/104/105 may be in communication with the core network 106/107/109, which may be any type of network configured to provide voice, data, applications, and/or voice over internet protocol (VoIP) services to one or more of the WTRUs 102a, 102b, 102c, 102d. For example, the core network 106/107/109 may provide call control, billing services, mobile location-based services, pre-paid calling, Internet connectivity, video distribution, etc., and/or perform high-level security functions, such as user authentication. Although not shown in FIG. 1A, it will be appreciated that the RAN 103/104/105 and/or the core network 106/107/109 may be in direct or indirect communication with other RANs that employ the same RAT as the RAN 103/104/105 or a different RAT. For example, in addition to being connected to the RAN 103/104/105, which may be utilizing an E-UTRA radio technology, the core network
106/107/109 may also be in communication with another RAN (not shown) employing a GSM radio technology.
[0036] The core network 106/107/109 may also serve as a gateway for the WTRUs 102a, 102b, 102c, 102d to access the PSTN 108, the Internet 1 10, and/or other networks 1 12. The PSTN 108 may include circuit-switched telephone networks that provide plain old telephone service (POTS). The Internet 110 may include a global system of interconnected computer networks and devices that use common communication protocols, such as the transmission control protocol (TCP), user datagram protocol (UDP) and the internet protocol (IP) in the TCP/IP internet protocol suite. The networks 112 may include wired or wireless communications networks owned and/or operated by other service providers. For example, the networks 112 may include another core network connected to one or more RANs, which may employ the same RAT as the RAN 103/104/105 or a different RAT.
[0037] Some or all of the WTRUs 102a, 102b, 102c, 102d in the communications system 100 may include multi-mode capabilities, i.e., the WTRUs 102a, 102b, 102c, 102d may include multiple transceivers for communicating with different wireless networks over different wireless links. For example, the WTRU 102c shown in FIG. 1A may be configured to communicate with the base station 114a, which may employ a cellular-based radio technology, and with the base station 1 14b, which may employ an IEEE 802 radio technology.
[0038] FIG. IB is a system diagram of an example WTRU 102. As shown in FIG. IB, the WTRU 102 may include a processor 1 18, a transceiver 120, a transmit/receive element 122, a speaker/microphone 124, a keypad 126, a display/touchpad 128, non-removable memory 130, removable memory 132, a power source 134, a global positioning system (GPS) chipset 136, and other peripherals 138. It will be appreciated that the WTRU 102 may include any subcombination of the foregoing elements while remaining consistent with an embodiment. Also, embodiments contemplate that the base stations 114a and 114b, and/or the nodes that base stations 114a and 114b may represent, such as but not limited to transceiver station (BTS), a Node-B, a site controller, an access point (AP), a home node-B, an evolved home node-B (eNodeB), a home evolved node-B (HeNB), a home evolved node-B gateway, and proxy nodes, among others, may include some or all of the elements depicted in FIG. IB and described herein.
[0039] The processor 118 may be a general purpose processor, a special purpose processor, a conventional processor, a digital signal processor (DSP), a plurality of microprocessors, one or more microprocessors in association with a DSP core, a controller, a microcontroller,
Application Specific Integrated Circuits (ASICs), Field Programmable Gate Array (FPGAs) circuits, any other type of integrated circuit (IC), a state machine, and the like. The processor 1 18 may perform signal coding, data processing, power control, input/output processing, and/or any other functionality that enables the WTRU 102 to operate in a wireless environment. The processor 1 18 may be coupled to the transceiver 120, which may be coupled to the
transmit/receive element 122. While FIG. IB depicts the processor 1 18 and the transceiver 120 as separate components, it will be appreciated that the processor 118 and the transceiver 120 may be integrated together in an electronic package or chip.
[0040] The transmit/receive element 122 may be configured to transmit signals to, or receive signals from, a base station (e.g., the base station 1 14a) over the air interface 115/116/1 17. For example, in one embodiment, the transmit/receive element 122 may be an antenna configured to transmit and/or receive RF signals. In another embodiment, the transmit/receive element 122 may be an emitter/detector configured to transmit and/or receive IR, UV, or visible light signals, for example. In yet another embodiment, the transmit/receive element 122 may be configured to transmit and receive both RF and light signals. It will be appreciated that the transmit/receive element 122 may be configured to transmit and/or receive any combination of wireless signals.
[0041] In addition, although the transmit/receive element 122 is depicted in FIG. IB as a single element, the WTRU 102 may include any number of transmit/receive elements 122. More specifically, the WTRU 102 may employ MIMO technology. Thus, in one embodiment, the WTRU 102 may include two or more transmit/receive elements 122 (e.g., multiple antennas) for transmitting and receiving wireless signals over the air interface 115/1 16/1 17.
[0042] The transceiver 120 may be configured to modulate the signals that are to be transmitted by the transmit/receive element 122 and to demodulate the signals that are received by the transmit/receive element 122. As noted above, the WTRU 102 may have multi-mode capabilities. Thus, the transceiver 120 may include multiple transceivers for enabling the WTRU 102 to communicate via multiple RATs, such as UTRA and IEEE 802.11, for example.
[0043] The processor 1 18 of the WTRU 102 may be coupled to, and may receive user input data from, the speaker/microphone 124, the keypad 126, and/or the display/touchpad 128 (e.g., a liquid crystal display (LCD) display unit or organic light-emitting diode (OLED) display unit). The processor 1 18 may also output user data to the speaker/microphone 124, the keypad 126, and/or the display/touchpad 128. In addition, the processor 118 may access information from, and store data in, any type of suitable memory, such as the non-removable memory 130 and/or the removable memory 132. The non-removable memory 130 may include random-access memory (RAM), read-only memory (ROM), a hard disk, or any other type of memory storage device. The removable memory 132 may include a subscriber identity module (SIM) card, a memory stick, a secure digital (SD) memory card, and the like. In other embodiments, the processor 1 18 may access information from, and store data in, memory that is not physically located on the WTRU 102, such as on a server or a home computer (not shown).
[0044] The processor 1 18 may receive power from the power source 134, and may be configured to distribute and/or control the power to the other components in the WTRU 102. The power source 134 may be any suitable device for powering the WTRU 102. For example, the power source 134 may include one or more dry cell batteries (e.g., nickel-cadmium ( iCd), nickel-zinc (NiZn), nickel metal hydride (NiMH), lithium-ion (Li-ion), etc.), solar cells, fuel cells, and the like.
[0045] The processor 1 18 may also be coupled to the GPS chipset 136, which may be configured to provide location information (e.g., longitude and latitude) regarding the current location of the WTRU 102. In addition to, or in lieu of, the information from the GPS chipset 136, the WTRU 102 may receive location information over the air interface 1 15/1 16/1 17 from a base station (e.g., base stations 1 14a, 114b) and/or determine its location based on the timing of the signals being received from two or more nearby base stations. It will be appreciated that the WTRU 102 may acquire location information by way of any suitable location-determination method while remaining consistent with an embodiment.
[0046] The processor 118 may further be coupled to other peripherals 138, which may include one or more software and/or hardware modules that provide additional features, functionality and/or wired or wireless connectivity. For example, the peripherals 138 may include an accelerometer, an e-compass, a satellite transceiver, a digital camera (for photographs or video), a universal serial bus (USB) port, a vibration device, a television transceiver, a hands free headset, a Bluetooth® module, a frequency modulated (FM) radio unit, a digital music player, a media player, a video game player module, an Internet browser, and the like.
[0047] FIG. 1C is a system diagram of the RAN 103 and the core network 106 according to an embodiment. As noted above, the RAN 103 may employ a UTRA radio technology to communicate with the WTRUs 102a, 102b, 102c over the air interface 1 15. The RAN 103 may also be in communication with the core network 106. As shown in FIG. 1C, the RAN 103 may include Node-Bs 140a, 140b, 140c, which may each include one or more transceivers for communicating with the WTRUs 102a, 102b, 102c over the air interface 115. The Node-Bs 140a, 140b, 140c may each be associated with a particular cell (not shown) within the RAN 103. The RAN 103 may also include RNCs 142a, 142b. It will be appreciated that the RAN 103 may include any number of Node-Bs and RNCs while remaining consistent with an embodiment.
[0048] As shown in FIG. 1C, the Node-Bs 140a, 140b may be in communication with the RNC 142a. Additionally, the Node-B 140c may be in communication with the RNC 142b. The Node- Bs 140a, 140b, 140c may communicate with the respective RNCs 142a, 142b via an Iub interface. The RNCs 142a, 142b may be in communication with one another via an lur interface. Each of the RNCs 142a, 142b may be configured to control the respective Node-Bs 140a, 140b, 140c to which it is connected. In addition, each of the RNCs 142a, 142b may be configured to carry out or support other functionality, such as outer loop power control, load control, admission control, packet scheduling, handover control, macrodiversity, security functions, data encryption, and the like.
[0049] The core network 106 shown in FIG. 1C may include a media gateway (MGW) 144, a mobile switching center (MSC) 146, a serving GPRS support node (SGSN) 148, and/or a gateway GPRS support node (GGSN) 150. While each of the foregoing elements are depicted as part of the core network 106, it will be appreciated that any one of these elements may be owned and/or operated by an entity other than the core network operator.
[0050] The RNC 142a in the RAN 103 may be connected to the MSC 146 in the core network
106 via an IuCS interface. The MSC 146 may be connected to the MGW 144. The MSC 146 and the MGW 144 may provide the WTRUs 102a, 102b, 102c with access to circuit-switched networks, such as the PSTN 108, to facilitate communications between the WTRUs 102a, 102b,
102c and traditional land-line communications devices. [0051] The RNC 142a in the RAN 103 may also be connected to the SGSN 148 in the core network 106 via an IuPS interface. The SGSN 148 may be connected to the GGSN 150. The SGSN 148 and the GGSN 150 may provide the WTRUs 102a, 102b, 102c with access to packet- switched networks, such as the Internet 110, to facilitate communications between and the WTRUs 102a, 102b, 102c and IP-enabled devices.
[0052] As noted above, the core network 106 may also be connected to the networks 1 12, which may include other wired or wireless networks that are owned and/or operated by other service providers.
[0053] FIG. ID is a system diagram of the RAN 104 and the core network 107 according to an embodiment. As noted above, the RAN 104 may employ an E-UTRA radio technology to communicate with the WTRUs 102a, 102b, 102c over the air interface 1 16. The RAN 104 may also be in communication with the core network 107.
[0054] The RAN 104 may include eNode-Bs 160a, 160b, 160c, though it will be appreciated that the RAN 104 may include any number of eNode-Bs while remaining consistent with an embodiment. The eNode-Bs 160a, 160b, 160c may each include one or more transceivers for communicating with the WTRUs 102a, 102b, 102c over the air interface 116. In one embodiment, the eNode-Bs 160a, 160b, 160c may implement MIMO technology. Thus, the eNode-B 160a, for example, may use multiple antennas to transmit wireless signals to, and receive wireless signals from, the WTRU 102a.
[0055] Each of the eNode-Bs 160a, 160b, 160c may be associated with a particular cell (not shown) and may be configured to handle radio resource management decisions, handover decisions, scheduling of users in the uplink and/or downlink, and the like. As shown in FIG. ID, the eNode-Bs 160a, 160b, 160c may communicate with one another over an X2 interface.
[0056] The core network 107 shown in FIG. ID may include a mobility management gateway (MME) 162, a serving gateway 164, and a packet data network (PDN) gateway 166. While each of the foregoing elements are depicted as part of the core network 107, it will be appreciated that any one of these elements may be owned and/or operated by an entity other than the core network operator.
[0057] The MME 162 may be connected to each of the eNode-Bs 160a, 160b, 160c in the RAN
104 via an SI interface and may serve as a control node. For example, the MME 162 may be responsible for authenticating users of the WTRUs 102a, 102b, 102c, bearer
activation/deactivation, selecting a particular serving gateway during an initial attach of the
WTRUs 102a, 102b, 102c, and the like. The MME 162 may also provide a control plane function for switching between the RAN 104 and other RANs (not shown) that employ other radio technologies, such as GSM or WCDMA.
[0058] The serving gateway 164 may be connected to each of the eNode-Bs 160a, 160b, 160c in the RAN 104 via the S I interface. The serving gateway 164 may generally route and forward user data packets to/from the WTRUs 102a, 102b, 102c. The serving gateway 164 may also perform other functions, such as anchoring user planes during inter-eNode B handovers, triggering paging when downlink data is available for the WTRUs 102a, 102b, 102c, managing and storing contexts of the WTRUs 102a, 102b, 102c, and the like.
[0059] The serving gateway 164 may also be connected to the PDN gateway 166, which may provide the WTRUs 102a, 102b, 102c with access to packet-switched networks, such as the Internet 1 10, to facilitate communications between the WTRUs 102a, 102b, 102c and IP-enabled devices.
[0060] The core network 107 may facilitate communications with other networks. For example, the core network 107 may provide the WTRUs 102a, 102b, 102c with access to circuit- switched networks, such as the PSTN 108, to facilitate communications between the WTRUs 102a, 102b, 102c and traditional land-line communications devices. For example, the core network 107 may include, or may communicate with, an IP gateway (e.g., an IP multimedia subsystem (IMS) server) that serves as an interface between the core network 107 and the PSTN 108. In addition, the core network 107 may provide the WTRUs 102a, 102b, 102c with access to the networks 112, which may include other wired or wireless networks that are owned and/or operated by other service providers.
[0061] FIG. IE is a system diagram of the RAN 105 and the core network 109 according to an embodiment. The RAN 105 may be an access service network (ASN) that employs IEEE 802.16 radio technology to communicate with the WTRUs 102a, 102b, 102c over the air interface 117. As will be further discussed below, the communication links between the different functional entities of the WTRUs 102a, 102b, 102c, the RAN 105, and the core network 109 may be defined as reference points.
[0062] As shown in FIG. IE, the RAN 105 may include base stations 180a, 180b, 180c, and an
ASN gateway 182, though it will be appreciated that the RAN 105 may include any number of base stations and ASN gateways while remaining consistent with an embodiment. The base stations 180a, 180b, 180c may each be associated with a particular cell (not shown) in the RAN
105 and may each include one or more transceivers for communicating with the WTRUs 102a,
102b, 102c over the air interface 1 17. In one embodiment, the base stations 180a, 180b, 180c may implement MIMO technology. Thus, the base station 180a, for example, may use multiple antennas to transmit wireless signals to, and receive wireless signals from, the WTRU 102a. The base stations 180a, 180b, 180c may also provide mobility management functions, such as handoff triggering, tunnel establishment, radio resource management, traffic classification, quality of service (QoS) policy enforcement, and the like. The ASN gateway 182 may serve as a traffic aggregation point and may be responsible for paging, caching of subscriber profiles, routing to the core network 109, and the like.
[0063] The air interface 117 between the WTRUs 102a, 102b, 102c and the RAN 105 may be defined as an Rl reference point that implements the IEEE 802.16 specification. In addition, each of the WTRUs 102a, 102b, 102c may establish a logical interface (not shown) with the core network 109. The logical interface between the WTRUs 102a, 102b, 102c and the core network 109 may be defined as an R2 reference point, which may be used for authentication,
authorization, IP host configuration management, and/or mobility management.
[0064] The communication link between each of the base stations 180a, 180b, 180c may be defined as an R8 reference point that includes protocols for facilitating WTRU handovers and the transfer of data between base stations. The communication link between the base stations 180a, 180b, 180c and the ASN gateway 182 may be defined as an R6 reference point. The R6 reference point may include protocols for facilitating mobility management based on mobility events associated with each of the WTRUs 102a, 102b, 102c.
[0065] As shown in FIG. IE, the RAN 105 may be connected to the core network 109. The communication link between the RAN 105 and the core network 109 may defined as an R3 reference point that includes protocols for facilitating data transfer and mobility management capabilities, for example. The core network 109 may include a mobile IP home agent (MIP-HA) 184, an authentication, authorization, accounting (AAA) server 186, and a gateway 188. While each of the foregoing elements are depicted as part of the core network 109, it will be appreciated that any one of these elements may be owned and/or operated by an entity other than the core network operator.
[0066] The MIP-HA may be responsible for IP address management, and may enable the
WTRUs 102a, 102b, 102c to roam between different ASNs and/or different core networks. The
MIP-HA 184 may provide the WTRUs 102a, 102b, 102c with access to packet-switched networks, such as the Internet 1 10, to facilitate communications between the WTRUs 102a,
102b, 102c and IP-enabled devices. The AAA server 186 may be responsible for user authentication and for supporting user services. The gateway 188 may facilitate interworking with other networks. For example, the gateway 188 may provide the WTRUs 102a, 102b, 102c with access to circuit-switched networks, such as the PSTN 108, to facilitate communications between the WTRUs 102a, 102b, 102c and traditional land-line communications devices. In addition, the gateway 188 may provide the WTRUs 102a, 102b, 102c with access to the networks 1 12, which may include other wired or wireless networks that are owned and/or operated by other service providers.
[0067] Although not shown in FIG. IE, it will be appreciated that the RAN 105 may be connected to other ASNs and the core network 109 may be connected to other core networks. The communication link between the RAN 105 the other ASNs may be defined as an R4 reference point, which may include protocols for coordinating the mobility of the WTRUs 102a, 102b, 102c between the RAN 105 and the other ASNs. The communication link between the core network 109 and the other core networks may be defined as an R5 reference, which may include protocols for facilitating interworking between home core networks and visited core networks.
[0068] Embodiments recognize that specific packet filtering and routing rules that support different features and requirements. For example, embodiments recognize tools that may map interfaces together such as bonding, bridging, and packet filtering. Also by way of example, an Ethernet bonding driver may be available on Linux OS. This bonding module is a tool that may handle interface mapping and packet routing. The bonding module may allow the configuration of a virtual interface that could hide underneath physical interfaces to the upper layers (e.g., IP stack and higher). Such virtual interfaces may present a single virtual interface to Internet Protocol (e.g., master) and may bond the underlying interfaces (e.g., slaves) to the master, for example. The bonding module may control the forwarding of packets from determined appropriate interface(s) to the application and/or IP layer, and in one or more embodiments perhaps transparently to the application and/or IP layer, for example. The forwarding algorithm may be different, depending of the desired behavior. This forwarding mechanism may be configured by selecting an appropriate MODE. By way of example, and not limitation, values defined for the MODE may include: 1) balance-rr or 0; 2) active-backup or 1 ; 3) balance-xor or 2; 4) broadcast or 3; 5) 802.3ad or 4; 6) balance-tlb or 5; and 7) balance-alb or 6.
[0069] Embodiments recognize that bridging is a type of forwarding technique that may be used in packet-switched computer networks. Unlike routing for example, bridging may make no assumptions about where in a network a particular address is located. Instead, bridging may depend on flooding, as well as examination of source addresses in received packet headers to locate one or more unknown devices. Once a device has been located, its location may be recorded in a table where the MAC address may be stored - so as to preclude the need for further broadcasting, for example. Bridging may occur at OSI Model Layer 2 (data-link layer), for example. Also by way of example, and not limitation, a bridge may direct frames according to hardware assigned MAC addresses.
[0070] Embodiments recognize one or more techniques to perform packet filtering. For instance in the Linux OS, packet filtering may be done using the "libnetfilter queue" tool that allows performing user-space packet queuing. With this tool, the packet may be intercepted in the kernel space and passed to the application space. However, depending on the kind of filtering that may need to be done, with the "libnetfilter queue" tool - a packet that is to be passed to the application is an IP packet so the only fields that may be available for filtering are the fields in the TCP(UDP)/IP headers and above. Embodiments recognize that filtering based on other parameters, for example such as the physical interface from which the packet has been received, may not be possible with tools like the libnetfilter queue, since the physical interface information may not be available at the application space level, among other reasons. One or more contemplated incoming and/or outgoing packet filtering techniques (such as, for example, where outgoing packet(s) may be sent on the same interface as a corresponding incoming packet(s) was received) may utilize and/or access other parameters, such as but not limited to an incoming physical interface, for example.
[0071] Embodiments recognize that filtering may be done using a 5-tuple grouping:
source/destination IP addresses, source/destination port numbers and protocol type, for example. And embodiments contemplate that filtering based on other parameters, such as the physical interface from which the packet has been received, may not be possible via the 5-tuple technique alone, since the physical interface information may not be available at the application space level.
[0072] Embodiments contemplate one or more techniques and devices to implement packet filtering. The contemplated embodiments may be used to apply specific, filtering, routing, and/or forwarding rules on some or each packet when a device, such as a wireless
transmit/receive unit (WTRU), which may have one or more (or multiple) interfaces, for example.
[0073] One or more embodiments contemplate configurable operational modes that may enable heretofore un-provided functionalities or requirements by associating one or more outgoing filtering functions to the mode. Alternatively or additionally, one or more embodiments contemplate the use of one or more outgoing packet filtering hooks that may be executed at the kernel level, for example. In addition, one or more embodiments - including those that contemplate configurable operational modes and embodiments that contemplate the use of outgoing packet filtering hooks in the kernel level - may use packet filtering hooks executed at the kernel level to handle incoming packet filtering. One or more embodiments may be implemented in a module, perhaps without modifying the IP stack.
[0074] By way of example, and not limitation, one or more embodiments contemplate one or more of the following functionalities: the usage of the incoming interface, in addition to the 5- tuple (or 6-tuple with IPv6), to build an incoming packet mapping table and/or implement outgoing packet filtering; kernel-space hooks (perhaps instead of user-space applications, for example); higher layer identification of flows by adding tags to outgoing packets, where the contemplated tags may or may not be related to 5 -tuple (or 6-tuple), e.g., where matching criteria may not be based on 5-tuple (or 6-tuple); a capability to have a system map contemplated tags to a source IP address (e.g., in such scenarios the contemplated tag may be related to the 5- tuple); a capability in outgoing packets filtering hook(s) to use the contemplated tags for packet filtering; and/or a capability in outgoing packets filtering hook(s) to remove the contemplated tags once the outgoing interface selection is done, for example.
[0075] Embodiments contemplate that devices that may have one or more, or multiple, interfaces may require heretofore un-provided functionalities to support, among other requirements, connecting to different networks on each interface. To support these requirements and others, embodiments contemplate that incoming packets may need to be filtered before reaching the IP stack. Such filtering may enable information gathering that may be needed later on to apply specific routing or forwarding rules to outgoing packets, for example. Embodiments contemplate that incoming packet filtering may be used for other purposes, e.g., to manipulate or modify the received data, etc.
[0076] Embodiments contemplate that one or more incoming packet filtering algorithms (if and where any may be needed) and/or the outgoing packet filtering may need to be configured on a group of physical interfaces, which may be mapped together (e.g., perhaps with the binding application described herein).
[0077] In embodiments that contemplate the configuration of one or more operational modes, one or more contemplated functionalities may be enabled by introducing operational modes that may be applied to the physical interfaces, for example. One or more embodiments contemplate that one or more mapping tables may be maintained with the operational modes and the associated rule or rules to be applied on outgoing packets.
[0078] One or more embodiments contemplate that incoming and/or outgoing packets may be filtered per IP flow based on, at least in part, the 5-tuple (source/destination IP addresses, source/destination port numbers and protocol type), or for IPv6, the 6-tuple (5-tuple + IP flow level), for example. [0079] Embodiments contemplate that flows may be identified by higher layers by adding a specific tag to the outgoing packets. Packets having identical 5-tuple (or 6-tuple) may be tagged differently. Packet filtering may be done based on these tags, for example. One or more embodiments contemplate that the tags may be used for assignment of flow-specific IP source addresses. For example, the 5-tuple (or 6-tuple in IPv6) may be created with a generic (or default) source IP address. Embodiments contemplate that a logical interface (LIF) may use flow-specific IP addresses to distinguish outgoing flows. The LIF may substitute an appropriate flow-specific IP address based on the flow-tag and then may remove the tag. Additionally, the reverse operation may be applied to a corresponding incoming stream. For example, the terminal's flow-specific IP addresses may be destination IP addresses (since these are incoming). In embodiments where tags may be used, the destination IP addresses may be changed to generic destination IP addresses and/or flow tags may be appended to incoming packets. This generic packet filtering may make enable packet filtering based on any field or fields (e.g., from application to link layer fields).
[0080] In any of the contemplated embodiments, packet filtering may be done using hooks instead of queues. Embodiments recognize that queues may have limitations, and that with the hooks, the filtering may be done at the kernel level (as opposed to the application level using queues, for example). Embodiments also contemplate that, with the hooks, access may be permitted to the socket buffer (skb) which may allow access to the interface used for the packet reception, for example.
[0081] In one or more embodiments - including embodiments that contemplate one or more configurable operational modes and embodiments that contemplate the use of outgoing packet filtering hooks in the kernel level, for example, - the incoming packet filtering may be configured by registering a PREROUTI G hook. The packet filtering tool may intercept the incoming packets and then may call the registered hook. In this hook, the desired packet filtering may be applied on incoming packets. For example, specific information may be saved, and/or the packet information may be modified, etc. In one or more embodiments, the hook may be called at the kernel level, for example.
[0082] In one or more embodiments - including embodiments that contemplate the use of outgoing packet filtering hooks in the kernel level - a PREROUTING hook may be registered for outgoing packet filtering. The packet filtering tool may intercept the outgoing packets and may call the registered hook. The desired packet filtering (e.g., outgoing packet filtering or packet manipulation) may be done in the hook, which may be executed at the kernel level, for example. [0083] Alternatively or additionally, in one or more embodiments - including embodiments that contemplate one or more configurable operational modes - instead of registering a hook, one or more outgoing packet filtering functions may be associated with a heretofore un-provided and/or un-configured operational mode or modes (perhaps as defined in a bonding module, for example). The one or more outgoing filtering functions may be executed at various times a packet needs to be transmitted or each time a packet needs to be transmitted, for example.
[0084] In one or more embodiments - including embodiments that contemplate one or more configurable operational modes and embodiments that contemplate the use of outgoing packet filtering hooks in the kernel level - packets that may not match any or a sufficient number of outgoing rules and/or filters may follow one or more pre-configured rules (e.g., broadcasting or transmitting on all interfaces). Similarly, one or more pre-configured rules may be combined with outgoing rules or filters so that a designated or preferred outcome may be achieved.
[0085] The exemplary embodiments presented herein illustrate both specific and generally contemplated functionalities. For example, one or more embodiments contemplate packet multiplication (i.e., some or all outgoing packets may be replicated and sent on multiple mapped interfaces). This may be referred to as "duplication" or "multiplication" behavior, for example and not limitation.
[0086] In embodiments that contemplate one or more configurable operational modes, a "multiplicate" mode may be configured. The multiplicate mode may replicate and transmit outgoing packets on some or all interfaces that may mapped together. When "multiplicate" mode is configured, the outgoing packets may be intercepted and the outgoing packet filtering function, associated with multiplicate mode, may be executed in order to determine on which interfaces the outgoing packets may be sent and/or how many copies may be generated.
[0087] In embodiments that contemplate the configuration of the multiplicate mode, outgoing packet filtering functions associated with multiplicate mode may be executed at various times that a packet may need to be transmitted or each time that a packet may need to be transmitted. Additionally or alternatively, in embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used, a packet filtering hook may be registered. In one or more embodiments, the outgoing packets may be intercepted by the packet filtering tool and the registered hook may be called at various times that a packet may need to be transmitted or each time that a packet may need to be transmitted.
[0088] Embodiments contemplate that the outgoing packet filtering function may obtain a list of mapped interfaces. The number of mapped interfaces may determine how many copies of the outgoing packet may be done, for example. Each outgoing packet may be sent over some or all associated interfaces. FIG. 2 is an exemplary illustration of outgoing packet routing behavior when either a multiplicate mode or multiplication behavior may be configured, or when one or more kernel level executed outgoing packet filtering hooks may be used.
[0089] Referring to FIG.2, at 2002, a first interface (IF#1) and a second interface (IF#2) may be mapped together. The interfaces may be part of a mobile node such as a wireless
transmit/receive unit (WTRU), for example. At 2004, in embodiments that contemplate the configuration of one or more operational modes, a multiplicate mode may be configured. At 2006, one or more packets may be sent on an interface (e.g., IF#1) that may be mapped to one or more other interfaces (e.g., IF#2). At 2008, in one or more embodiments, no incoming packet filtering may need be defined in the either the embodiments with the multiplicate mode configured or in embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used. At 2010, an outgoing packet filtering function may be executed and/or the one or more packets may be replicated and sent on both IF#1 and IF#2.
[0090] One or more embodiments contemplate packet mirroring (e.g., some or all packets associated to a specific IP flow sent on the same physical interface as the one used for the reception of this IP flow).
[0091] Some embodiments in which one or more operational modes may be configured may have a "mirror" mode configured. A mirror mode may transmit outgoing packets on the same interface as the packets were received. When a "mirror" mode is configured, the outgoing packets may be intercepted and the outgoing packet filtering function may be executed in order to determine the interface in which outgoing packets may be sent. In one or more embodiments, some or all packets associated with a specific IP flow may be sent on the same interface (e.g., same physical interface) as the interface that may have been used for the reception of the IP flow.
[0092] In embodiments which contemplate the configuration of one or more operational modes and/or in embodiments that may employ one or more kernel level executed outgoing packet filtering hooks, incoming packets may be intercepted in order to create a list of IP flows (e.g., considering 5-tuple) and/or corresponding incoming interfaces. The list may be used by the outgoing packet filter, for example. To intercept the incoming packets, a NETFILTER
PREROUTING hook may be registered, by way of example and not limitation. For example, embodiments contemplate a way to get the index of the incoming physical interface may be to use the skb iif field of some or each incoming packet and call the existing dev_get_by_index function. [0093] The IP flow information from the socket buffer (skb), along with the incoming interface, may be stored in a linked list whenever a new IP flow is detected. FIG. 3 illustrates an example of such techniques. By way of example, an IP flow may be identified by a 5-tuple.
[0094] In embodiments in which one or more operational modes may be configured, the outgoing packet filtering function associated with mirror mode may be executed at various times a packet may need to be transmitted or each time a packet may need to be transmitted. In one or more embodiments, the outgoing interface indicated in the packet may be overridden at this point.
[0095] Additionally or alternatively, in embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used, a NETFILTER hook (e.g., an outgoing packet filtering function) may have been registered, for example. The outgoing packets may be intercepted by the NETFILTER tool and the registered hook may be called some or each time a packet may need to be transmitted. The packet may be transmitted on the selected outgoing interfaces at this point, for example.
[0096] Embodiments contemplate that outgoing packet filtering may be based on the IP flow 5- tuple and/or on the incoming interface information. Embodiments contemplate that this information may be saved when incoming packets are received, for example. One or more algorithms may compare the outgoing IP flow tuple, obtained from the skb, with the saved incoming IP flow tuple. If a match is found, the incoming interface may be obtained from the IP flow list. One or more embodiments contemplate that this same incoming interface may be used for the outgoing packet. FIG. 3 is an exemplary illustration of the packet filtering and routing behavior when "mirror" mode is configured regarding embodiments that contemplate one or more configurable operational modes. FIG. 3 is also an exemplary illustration of packet filtering and routing behavior for embodiments in which one or more kernel level executed outgoing packet filtering hooks may be used.
[0097] Referring to FIG. 3, at 3002, a first interface (IF #1) and at least a second interface (IF #2) may be mapped together on a mobile node (MN) which may be a wireless transmit/receive unit (WTRU). At 3004, in embodiments that contemplate one or more configurable operational modes, a "mirror" mode may be configured. At 3006, where there may be no IP flow list, one or more packets may be sent on both IF#1 and IF#2 to a correspondent node (CN), or the like, of a communication network. At 3008, data may be received on IF#1. At 3010, one or more incoming packets may be intercepted by a NETFILTER tool, for example, and saved to an IP flow list. At 3012, where no IP flows may match, one or more packets may be sent on both interfaces. At 3014, a decision may be made on the network side to send an IP flow #2 to the WTRU on IF#2.
[0098] At 3016, one or more incoming packets may be intercepted by a PREROUTI G filter, for example, and saved into the IP flow list. At 3018, in embodiments which contemplate one or more configurable modes, where a mirror mode may be configured - the outgoing packet filtering function may be executed to determine, at least in part, which interface may be used to send the packet, or in some embodiments perhaps should be used to send the packet.
Alternatively or additionally, at 3018, in embodiments in which one or more kernel level executed outgoing packet filtering hooks are implemented, the one or more outgoing packet filtering hooks may determine which interface may be used to send the packet, or in some embodiments perhaps should be used to send the packet. At 3020, IP flow #2 may be found in the IP flow list, perhaps using the 5-tuple for identification. In one or more embodiments, the interface associated with the receipt of incoming packets that correspond to the outgoing packets may be used to send the outgoing packets. For example, as IF#2 received IP flow #2, then IF#2 may be used to send outgoing packets that correspond to the received IP flow #2.
[0099] One or more embodiments contemplate packet filtering using tags (e.g., some or all packets associated with a specific flow may be tagged and may be sent on the interface specified by the one or more configured rules). An exemplary implementation may include the direction of application level "control" packets to be sent on a first interface (IF#1) and other type of data to be sent on a second interface (IF #2). One or more of such embodiments may be referred to as "using tags" or "tagging" behavior, by way of example and not limitation.
[0100] In embodiments in which one or more modes may be configured, a configurable operational mode may be defined. The operational mode may be called "tagging", for example and not limitation. A tagging mode may filter outgoing packets based on tags and may transmit the outgoing packets on the interface specified by one or more configured rules.
[0101] When a "tagging" mode is configured, the outgoing packets may be tagged by one or more higher layers. The outgoing packets may be intercepted by an outgoing packet filtering function. The filtering function may determine, perhaps based on the tags and/or the one or more configured rules, via which interface the outgoing packets may be sent. In some embodiments, the tags may be removed, prior to sending the packets. Flow-specific IP source addresses may be substituted for the source addresses in the original packet. Similarly for incoming packets, flow-specific IP destination addresses may be removed and replaced by generic destination IP addresses and/or appropriate flow tags. [0102] The one or more rules may be configured either locally (e.g., by the user or local applications) or by a network node (e.g., ANDSF). By way of example, and not limitation, the one or more rules may specify which interface to use or which algorithm to apply (e.g., mirror, multiplicate, etc).
[0103] Embodiments contemplate that if, for example, one or more operational modes may be configured, the outgoing packet filtering function associated with a tagging mode may be executed at various times a packet may need to be transmitted, or each time a packet may need to be transmitted. Alternatively or additionally, embodiments contemplate that if, for example, one or more kernel level executed outgoing packet filtering hooks are used, a hook (e.g., an outgoing packet filtering function) may be registered. The outgoing packets may be intercepted by the packet filtering tool and the registered hook may be called at various times a packet may need to be transmitted or each time a packet may need to be transmitted. In one or more embodiments, incoming packet filtering may or may not be required, hooks for incoming packet filtering may or may not be installed, and incoming packets may or may not be intercepted.
[0104] Embodiments contemplate that outgoing packet filtering may be based on the tag added to the outgoing packet. The algorithm may compare the tag with the tags specified in the configured rules. If a match is found, the specified action may be executed. For example, the action may be to send to a specific interface, execute a particular rule, etc. Also by way of example, the rule may specify the outgoing interface.
[0105] FIG. 4 is an exemplary illustration of one or more alternative embodiments. In FIG. 4 embodiments contemplate packet filtering and routing behavior when, and in at least some embodiments, a tagging mode may be configured. At 4002, the WTRU (such as a mobile node
(MN), for example) in one or more embodiments may map one or more interfaces (IF) together.
Alternatively or additionally, at 4004, in embodiments that contemplate the configuration of one or more operational modes, the WTRU (or mobile node (MN)) may configure a tagging mode or a "using tags" mode. One or more embodiments contemplate that some or all application level control packets may be sent on IF#1 and that other types of data may be sent on IF#2. At 4006, one or more flows may be tagged, perhaps at the application layer. In one or more embodiments, the flows may be tagged at a control layer, or one or more other layers, for example. At 4008, one or more outgoing filtering hooks may use one or more tags and/or one or more rules to do packet filtering. In one or more embodiments, the tag may be removed before transmission. At
4010, at least one control flow may be sent on a first interface (IF #1) and one or more other flows may be sent on a second interface (IF #2). Embodiments contemplate that the transmission from the respective interface may be specified by one or more rules. [0106] Embodiments contemplate that the packet filtering capabilities/details described herein may apply to a terminal in uplink and/or downlink as well as to any network node. For example, a base station doing packet forwarding may use the packet filtering methods described herein to implement packet forwarding on uplink and downlink packets. Policies may be configured to determine the forwarding decisions criteria.
[0107] In light of the description herein and referring to FIG. 5, embodiments contemplate that a wireless transmit/receive unit (WTRU) may be configured to implement packet filtering, where the WTRU may include a first interface and a second interface. At 5002, embodiments contemplate applying at least one tag to at least one outgoing packet, and at 5004, executing an outgoing packet filtering function. At 5006, embodiments contemplate determining, by the outgoing packet filtering function, based at least in part on the at least one tag, at least one of the first interface or the second interface via which to send the outgoing packet. At 5008, embodiments contemplate removing the at least one tag from the at least one outgoing packet; and, at 5010, sending the at least one outgoing packet via at least one of the determined first interface or second interface.
[0108] One or more embodiments contemplate that the applying the at least one tag to the at least one outgoing packet may be done at a logical layer higher than a layer of the first interface or the second interface. In one or more embodiments, the applying the at least one tag to the at least one outgoing packet may be done at an application layer or a control layer. Also, embodiments contemplate that the at least one tag may designate the at least one outgoing packet as either a control packet or a non-control packet.
[0109] One or more embodiments contemplate that the first interface may be mapped with the second interface. Also, embodiments contemplate that the determining by the outgoing filtering function at 5006 may be further based on one or more predetermined rules.
[0110] Alternatively or additionally, embodiments contemplate configuring at least one mode on the WTRU, where the executing the outgoing packet filtering function of 5004 may include executing an outgoing packet filtering function associated with the at least one mode. Also, in one or more embodiments, the determining by the outgoing packet filtering function of 5006 may be executed at a time proximate to the sending of the at least one outgoing packet.
[0111] Alternatively or additionally, embodiments contemplate registering at least one hook on the WTRU, where the executing the outgoing packet filtering function of 5004 may include calling the at least one hook. Also, the determining by the outgoing packet filtering function of 5006 may executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet. [0112] Alternatively or additionally, one or more embodiments contemplate that the removing the at least one tag from the at least one outgoing packet of 5008 may be performed by the outgoing packet filter function associated with the at least one mode. Alternatively or additionally, one or more embodiments contemplate that the removing the at least one tag from the at least one outgoing packet of 5008 may be performed by the at least one hook at the kernel level.
[0113] Referring to FIG. 6, embodiments contemplate that a wireless transmit/receive unit (WTRU) may be configured to implement packet filtering. At 6002, one or more embodiments contemplate executing an outgoing packet filtering function. One or more embodiments also contemplate, at 6004, determining, by the outgoing packet filtering function, a number of respective individual interfaces included in an interface mapping on the WTRU, and at 6006, identifying, by the outgoing packet filtering function, the respective individual interfaces included in the interface mapping. At 6008, embodiments contemplate determining, by the outgoing packet filtering function, based at least in part on the determined number of mapped interfaces, a number of required duplicates of at least one outgoing packet. At 6010, embodiments contemplate creating the required number of duplicates of the at least one outgoing packet, and at 6012 sending either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet respectively via each of the individual interfaces included in the interface mapping.
[0114] Alternatively or additionally, embodiments contemplate configuring at least one mode on the WTRU, where the executing the outgoing packet filtering function at 6002 may include executing an outgoing packet filtering function associated with the at least one mode. Also, one or more embodiments contemplate that at least the determining by the outgoing packet filtering function the number of interfaces included in the interface mapping of 6004 may be executed at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet. One or more embodiments also contemplate that the identifying of 6006, the determining of 6008, and/or the duplicating of 6010 may also be executed at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
[0115] Alternatively or additionally, embodiments contemplate registering at least one hook on the WTRU, where the executing the outgoing packet filtering function of 6002 may include calling the at least one hook, and at least the determining by the outgoing packet filtering function the number of interfaces included in the interface mapping of 6004 may be executed by the at least one hook at a kernel level at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet. One or more embodiments also contemplate that the identifying of 6006, the determining of 6008, and/or the duplicating of 6010 may also be executed by the at least one hook at a kernel level at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
[0116] Referring to FIG. 7, embodiments contemplate a wireless transmit/receive unit (WTRU) that may be configured to implement packet filtering. One or more embodiments contemplate, at 7002, identifying at least one incoming packet, where the at least one incoming packet may be received via an interface of the WTRU. Embodiments also contemplate, at 7004, identifying at least one outgoing packet, where the at least one outgoing packet may corresponding to the at least one incoming packet. One or more embodiments contemplate, at 7006, executing an outgoing packet filter function, and at 7008, identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received. At 7010, embodiments contemplate sending the at least one outgoing packet via the same interface via which the incoming packet was received.
[0117] Alternatively or additionally, referring to FIG. 8, one or more embodiments
contemplate, at 8002, registering at least one hook on the WTRU. Embodiments also contemplate that the identifying the at least one incoming packet of 7002 of FIG. 7 may include, at 8004, calling the at least one hook at a kernel space upon receipt of the at least one incoming packet, and at 8006, determining, by the at least one hook, a label for the at least one incoming packet. At 8008, embodiments contemplate identifying, by the at least one hook, the interface via which the at least one incoming packet was received. Also, at 8010, embodiments contemplate associating, by the at least one hook, the label and the identity of the interface in a table.
[0118] Alternatively or additionally, embodiments contemplate that the determining, by the at least one hook, the label for the at least one incoming packet of 8006, may include assigning at least one of a five tuple designation or a six tuple designation to the at least one incoming packet. One or more embodiments contemplate that the five tuple designation may include at least one of a source internet protocol (IP) address, a destination IP address, a source port number, a destination port number, or a protocol type, and the six tuple designation may include at least one of a source IP address, a destination IP address, a source port number, a destination port number, a protocol type, or an IP flow level.
[0119] Alternatively or additionally, referring to FIG. 9, embodiments contemplate that the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received of 7008 of FIG. 7 may include, at 9002 accessing the table, and at 9004, identifying the correspondence between the at least one outgoing packet and the label of the at least one incoming packet. Embodiments also contemplate, at 9006, selecting the interface associated with the label.
[0120] Alternatively or additionally, embodiments contemplate configuring at least one mode on the WTRU, where the executing the outgoing packet filtering function of 7006 of FIG. 7 may include executing an outgoing packet filtering function associated with the at least one mode. One or more embodiments also contemplate that the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received of 7008 of FIG. 7 may be executed at a time proximate to the sending of the at least one outgoing packet.
[0121] Alternatively or additionally, one or more embodiments contemplate registering at least one hook on the WTRU, where the executing the outgoing packet filtering function of 7006 of FIG. 7 may include calling the at least one hook. One or more embodiments also contemplate that the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received of 7008 of FIG. 7 may be executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet.
[0122] Although features and elements are described above in particular combinations, one of ordinary skill in the art will appreciate that each feature or element can be used alone or in any combination with the other features and elements. In addition, the methods described herein may be implemented in a computer program, software, or firmware incorporated in a computer- readable medium for execution by a computer or processor. Examples of computer-readable media include electronic signals (transmitted over wired or wireless connections) and computer- readable storage media. Examples of computer-readable storage media include, but are not limited to, a read only memory (ROM), a random access memory (RAM), a register, cache memory, semiconductor memory devices, magnetic media such as internal hard disks and removable disks, magneto-optical media, and optical media such as CD-ROM disks, and digital versatile disks (DVDs). A processor in association with software may be used to implement a radio frequency transceiver for use in a WTRU, UE, terminal, base station, RNC, or any host computer.

Claims

What is Claimed is:
1. A method performed by a wireless transmit/receive unit (WTRU) to implement packet filtering, the WTRU including a first interface and a second interface, the method comprising:
applying at least one tag to at least one outgoing packet;
executing an outgoing packet filtering function;
determining, by the outgoing packet filtering function, based at least in part on the at least one tag, at least one of the first interface or the second interface via which to send the outgoing packet;
removing the at least one tag from the at least one outgoing packet; and sending the at least one outgoing packet via at least one of the determined first interface or second interface.
2. The method of claim 1, wherein the applying the at least one tag to the at least one
outgoing packet is done at a logical layer higher than a layer of the first interface or the second interface.
3. The method of claim 2, wherein the applying the at least one tag to the at least one
outgoing packet is done at an application layer or a control layer.
4. The method of claim 1 , wherein the at least one tag designates the at least one outgoing packet as either a control packet or a non-control packet.
5. The method of claim 1, further comprising mapping the first interface with the second interface.
6. The method of claim 1 , wherein the determining by the outgoing filtering function is further based on one or more predetermined rules.
7. The method of claim 1, further comprising:
configuring at least one mode on the WTRU, wherein the executing the outgoing packet filtering function includes executing an outgoing packet filtering function associated with the at least one mode, and the determining by the outgoing packet filtering function is executed at a time proximate to the sending of the at least one outgoing packet.
8. The method of claim 1, further comprising:
registering at least one hook on the WTRU, wherein the executing the outgoing packet filtering function includes calling the at least one hook, and the determining by the outgoing packet filtering function is executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet.
9. The method of claim 7, wherein the removing the at least one tag from the at least one outgoing packet is performed by the outgoing packet filter function associated with the at least one mode.
10. The method of claim 8, wherein the removing the at least one tag from the at least one outgoing packet is performed by the at least one hook at the kernel level.
11. A method performed by a wireless transmit/receive unit (WTRU) to implement packet filtering, the method comprising:
executing an outgoing packet filtering function;
determining, by the outgoing packet filtering function, a number of respective individual interfaces included in an interface mapping on the WTRU;
identifying, by the outgoing packet filtering function, the respective individual interfaces included in the interface mapping; determining, by the outgoing packet filtering function, based at least in part on the determined number of mapped interfaces, a number of required duplicates of at least one outgoing packet;
creating the required number of duplicates of the at least one outgoing packet; and sending either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet respectively via each of the individual interfaces included in the interface mapping.
12. The method of claim 1 1, further comprising:
configuring at least one mode on the WTRU, wherein the executing the outgoing packet filtering function includes executing an outgoing packet filtering function associated with the at least one mode, and at least the determining by the outgoing packet filtering function the number of interfaces included in the interface mapping is executed at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
13. The method of claim 1 1, further comprising:
registering at least one hook on the WTRU, wherein the executing the outgoing packet filtering function includes calling the at least one hook, and at least the determining by the outgoing packet filtering function the number of interfaces included in the interface mapping is executed by the at least one hook at a kernel level at a time proximate to the sending of either the at least one outgoing packet or one of the duplicates of the at least one outgoing packet.
14. A method performed by a wireless transmit/receive unit (WTRU) to implement packet filtering, the method comprising:
identifying at least one incoming packet, the at least one incoming packet received via an interface of the WTRU;
identifying at least one outgoing packet, the at least one outgoing packet corresponding to the at least one incoming packet;
executing an outgoing packet filter function; identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received; and
sending the at least one outgoing packet via the same interface via which the incoming packet was received.
15. The method of claim 14, further comprising:
registering at least one hook on the WTRU, and wherein the identifying the at least one incoming packet includes:
calling the at least one hook at a kernel space upon receipt of the at least one incoming packet;
determining, by the at least one hook, a label for the at least one incoming packet;
identifying, by the at least one hook, the interface via which the at least one incoming packet was received; and
associating, by the at least one hook, the label and the identity of the interface in a table.
16. The method of claim 15, wherein the determining, by the at least one hook, the label for the at least one incoming packet includes assigning at least one of a five tuple designation or a six tuple designation to the at least one incoming packet.
17. The method of claim 16, wherein the five tuple designation includes at least one of a source internet protocol (IP) address, a destination IP address, a source port number, a destination port number, or a protocol type, and the six tuple designation includes at least one of a source IP address, a destination IP address, a source port number, a destination port number, a protocol type, or an IP flow level.
18. The method of claim 15, wherein the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received includes:
accessing the table; identifying the correspondence between the at least one outgoing packet and the label of the at least one incoming packet; and
selecting the interface associated with the label.
19. The method of claim 14, further comprising:
configuring at least one mode on the WTRU, wherein the executing the outgoing packet filtering function includes executing an outgoing packet filtering function associated with the at least one mode, and the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received is executed at a time proximate to the sending of the at least one outgoing packet.
20. The method of claim 14, further comprising:
registering at least one hook on the WTRU, wherein the executing the outgoing packet filtering function includes calling the at least one hook, and the identifying, by the outgoing packet filter function, the interface on which the at least one incoming packet was received is executed by the at least one hook at a kernel level at a time proximate to the sending of the at least one outgoing packet.
PCT/US2012/027566 2011-03-04 2012-03-02 Generic packet filtering WO2012122043A1 (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
JP2013557774A JP2014524160A (en) 2011-03-04 2012-03-02 General packet filtering
EP12708991.0A EP2681898A1 (en) 2011-03-04 2012-03-02 Generic packet filtering
KR1020137026102A KR20140018272A (en) 2011-03-04 2012-03-02 Generic packet filtering
CN201280021387.8A CN103918241B (en) 2011-03-04 2012-03-02 Method for packet filtering and WTRU

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US201161449275P 2011-03-04 2011-03-04
US61/449,275 2011-03-04

Publications (1)

Publication Number Publication Date
WO2012122043A1 true WO2012122043A1 (en) 2012-09-13

Family

ID=45833522

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2012/027566 WO2012122043A1 (en) 2011-03-04 2012-03-02 Generic packet filtering

Country Status (6)

Country Link
US (1) US8873367B2 (en)
EP (1) EP2681898A1 (en)
JP (1) JP2014524160A (en)
KR (1) KR20140018272A (en)
CN (1) CN103918241B (en)
WO (1) WO2012122043A1 (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9270692B2 (en) * 2012-11-06 2016-02-23 Mediatek Inc. Method and apparatus for setting secure connection in wireless communications system
US9768929B2 (en) 2012-12-21 2017-09-19 Blackberry Limited Method and apparatus for identifying interference type in time division duplex systems
US10311595B2 (en) * 2013-11-19 2019-06-04 Canon Kabushiki Kaisha Image processing device and its control method, imaging apparatus, and storage medium
US9641485B1 (en) 2015-06-30 2017-05-02 PacketViper LLC System and method for out-of-band network firewall
US20190014092A1 (en) * 2017-07-08 2019-01-10 Dan Malek Systems and methods for security in switched networks

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001060011A2 (en) * 2000-02-08 2001-08-16 Lucent Technologies Inc. A translation system and related method for use with a communication device
EP1496661A1 (en) * 2002-04-18 2005-01-12 Matsushita Electric Industrial Co., Ltd. Communication terminal device and communication control method
US20050008009A1 (en) * 2003-06-27 2005-01-13 Broadcom Corporation Single and double tagging schemes for packet processing in a network device
EP1503548A1 (en) * 2003-08-01 2005-02-02 fg microtec GmbH Distributed Quality of Service Management System
EP1729461A1 (en) * 2005-06-02 2006-12-06 Broadcom Corporation Dynamic port failover

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7853209B2 (en) * 2004-03-30 2010-12-14 Mitsubishi Denki Kabushiki Kaisha Mobile communication station, base station apparatus, and dedicated-short-range-communications system
US9544216B2 (en) * 2005-02-04 2017-01-10 Hewlett Packard Enterprise Development Lp Mesh mirroring with path tags
WO2008137132A2 (en) * 2007-05-04 2008-11-13 Kabushiki Kaisha Toshiba Intelligent connectivity framework for the simul taneous use of multiple interfaces (intelicon)
US20100226384A1 (en) * 2009-03-09 2010-09-09 Prabhakar Balaji S Method for reliable transport in data networks
EP2493134B1 (en) * 2009-04-02 2017-06-07 Telefonaktiebolaget LM Ericsson (publ) Techniques for Handling Network Traffic

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2001060011A2 (en) * 2000-02-08 2001-08-16 Lucent Technologies Inc. A translation system and related method for use with a communication device
EP1496661A1 (en) * 2002-04-18 2005-01-12 Matsushita Electric Industrial Co., Ltd. Communication terminal device and communication control method
US20050008009A1 (en) * 2003-06-27 2005-01-13 Broadcom Corporation Single and double tagging schemes for packet processing in a network device
EP1503548A1 (en) * 2003-08-01 2005-02-02 fg microtec GmbH Distributed Quality of Service Management System
EP1729461A1 (en) * 2005-06-02 2006-12-06 Broadcom Corporation Dynamic port failover

Also Published As

Publication number Publication date
JP2014524160A (en) 2014-09-18
US20120230235A1 (en) 2012-09-13
KR20140018272A (en) 2014-02-12
EP2681898A1 (en) 2014-01-08
CN103918241B (en) 2017-05-24
CN103918241A (en) 2014-07-09
US8873367B2 (en) 2014-10-28

Similar Documents

Publication Publication Date Title
US20220256342A1 (en) Methods for service slice selection and separation
JP6092959B2 (en) Method and apparatus for local data caching
EP3207687B1 (en) Anchoring ip devices in icn networks
US8868733B2 (en) Socket application program interface (API) extension
EP2727295B1 (en) Managing data mobility policies
KR101615000B1 (en) Session manager and source internet protocol (ip) address selection
US9407530B2 (en) Systems and methods for providing DNS server selection using ANDSF in multi-interface hosts
WO2011163561A1 (en) Interface of an m2m server with the 3gpp core network
EP2679031A2 (en) Stable local breakout concept and usage
WO2012178055A1 (en) Mobile network virtualization
US8873367B2 (en) Generic packet filtering
US20150304892A1 (en) Network Stack Virtualization
TW201404234A (en) Configurable host interface using multi-radio device and architecture for WLAN offload
WO2015020985A1 (en) Lawful interception solutions for local offload traffic, local cached traffic and local ip access traffic
KR20130135940A (en) Privacy for inter-user equipment transfer subscribers
EP3320654B1 (en) Path information updates in information-centric networking
WO2014110138A1 (en) Method and apparatus for establishing ip connectivity between nodes in an opportunistic multi medium access control aggregation network

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12708991

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2013557774

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

ENP Entry into the national phase

Ref document number: 20137026102

Country of ref document: KR

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: 2012708991

Country of ref document: EP