WO2013060190A1 - Procédé d'établissement de trajet et serveur d'accès à distance à large bande d'itinérance - Google Patents

Procédé d'établissement de trajet et serveur d'accès à distance à large bande d'itinérance Download PDF

Info

Publication number
WO2013060190A1
WO2013060190A1 PCT/CN2012/080677 CN2012080677W WO2013060190A1 WO 2013060190 A1 WO2013060190 A1 WO 2013060190A1 CN 2012080677 W CN2012080677 W CN 2012080677W WO 2013060190 A1 WO2013060190 A1 WO 2013060190A1
Authority
WO
WIPO (PCT)
Prior art keywords
remote access
broadband remote
authentication
roaming
access server
Prior art date
Application number
PCT/CN2012/080677
Other languages
English (en)
Chinese (zh)
Inventor
陈刚
刘建宇
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Publication of WO2013060190A1 publication Critical patent/WO2013060190A1/fr

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor

Definitions

  • the present invention relates to communication technologies, and in particular, to a path establishment method and apparatus.
  • Background Art Mobile communication technologies have been widely used in modern society. Among them, the third generation mobile communication technology has become the mainstream technology in the field of mobile communication.
  • the three technical standards involved in the third generation mobile communication technology are Wideband Code Division Multiple Access, Code Division Multiple Access 2000, and Time Division Synchronous Code Division Multiple Access ( Time Division-Synchronous Code Division Multiple Access ). All of the above three technology standards support multimedia services and support users to roam around the world.
  • the prior art provides a mobile internet protocol (mobile IP), which solves the problem that after the mobile node leaves the home agent, the port continues to communicate with the application server through the foreign agent. Communication problems.
  • mobile IP mobile internet protocol
  • the host agent After the mobile node arrives at the foreign agent, the host agent needs to recalculate the route and perform route convergence according to the routing message sent by the foreign agent.
  • the embodiment of the invention provides a path establishment method and a roaming broadband remote access server, which can solve the problem that the host agent needs to recalculate the route and converge the route according to the routing message sent by the foreign agent after the mobile node arrives at the foreign agent.
  • a path establishment method provided by an embodiment of the present invention includes:
  • the roaming broadband remote access server receives an access request sent by the mobile station, where the access request includes a source internet protocol address, where the source internet protocol address is an internet protocol address obtained by the first authentication server, and the authentication causes the source internet protocol
  • the address forms a mapping table with the Internet Protocol address of the host broadband remote access server and enables the mobile station to obtain the remote access service through the host broadband Server access to the application server;
  • the roaming broadband remote access server sends an authentication request including the source internet protocol address to the second authentication server, so that the second authentication server responds to the authentication request according to the mapping table;
  • the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server according to the internet protocol address of the host broadband remote access server, and the tunnel is used to transmit traffic between the mobile station and the application server.
  • a roaming broadband remote access server includes: a receiver, configured to receive an access request sent by a mobile station, where the access request includes a source internet protocol address, and the source internet protocol address Is an Internet Protocol address that obtains the authentication of the first authentication server, the authentication forms a mapping table between the source Internet Protocol address and the Internet Protocol address of the host broadband remote access server, and enables the mobile station to obtain access through the host broadband remote access server.
  • a receiver configured to receive an access request sent by a mobile station, where the access request includes a source internet protocol address, and the source internet protocol address Is an Internet Protocol address that obtains the authentication of the first authentication server, the authentication forms a mapping table between the source Internet Protocol address and the Internet Protocol address of the host broadband remote access server, and enables the mobile station to obtain access through the host broadband remote access server.
  • a requesting unit configured to send an authentication request including the source internet protocol address to the second authentication server, so that the second authentication server responds to the authentication request according to the mapping table; and the response unit is configured to: receive the authentication request Corresponding authentication response, the authentication response including an internet protocol address of the host broadband remote access server;
  • the tunnel establishing unit is configured to send a tunnel establishment request to the host broadband remote access server according to the internet protocol address of the host broadband remote access server, where the tunnel is used to transmit traffic between the mobile station and the application server.
  • the source internet protocol address of the mobile station can be sent to the authentication server, and provided according to the authentication server.
  • the Internet Protocol address of the host broadband remote access server, the roaming broadband remote access server and the host broadband remote access server A tunnel is established between the mobile station and the application server.
  • the path establishment method and apparatus can solve the problem that the host agent needs to recalculate the route and perform route convergence according to the routing message sent by the foreign agent after the mobile node arrives at the foreign agent.
  • FIG. 1 is a flowchart of a path establishment method according to an embodiment of the present invention.
  • FIG. 2 is a schematic diagram of a roaming broadband remote access server according to an embodiment of the present invention.
  • Embodiment 1 is a diagrammatic representation of Embodiment 1:
  • FIG. 1 is a flowchart of a path establishment method according to an embodiment of the present invention, where the method includes:
  • the roaming broadband remote access server receives an access request sent by the mobile station, where the access request includes a source internet protocol address.
  • the source internet protocol address is an internet protocol address that obtains authentication of the first authentication server.
  • the authentication forms a mapping table between the source internet protocol address and the internet protocol address of the host broadband remote access server and enables the mobile station to gain access to the application server through the host broadband remote access server.
  • the mobile station is a wireless communication terminal.
  • the mobile station can be a mobile phone, personal digital Assistant and personal computer.
  • the roaming broadband remote access server is a device that provides access services for mobile stations.
  • the roaming broadband remote access server can provide access services to the mobile station through an access point.
  • the roaming broadband remote access server may be a broadband remote access server, a service server, or a multi-service control gateway.
  • the roaming broadband remote access server may include an access control unit and a user management unit.
  • the access control unit can manage and control multiple access points.
  • the roaming broadband remote access server can sense the mobile station entering or leaving its jurisdiction through the access point.
  • the roaming broadband remote access server may use the Address Resolution Protocol to detect whether the mobile station leaves the jurisdiction of the mobile station;
  • the traffic received from the mobile station in unit time determines whether the mobile station leaves its jurisdiction. Specifically, if the traffic received by the roaming broadband remote access server from the mobile station is less than a predetermined threshold in a unit time, the mobile station is judged to have left its jurisdiction.
  • the roaming broadband remote access server can receive an access request sent by the mobile station.
  • the access request can be an access request message.
  • the following describes an example of a process in which a roaming broadband remote access server receives an access request sent by a mobile station.
  • the access point controlled by the roaming broadband remote access server senses that the mobile station enters its coverage range and receives an access request message sent by the mobile station. For example, an access point can perceive a mobile station in a manner defined by the Institute of Electrical and Electronics Engineers (IEEE) 802.1x. After receiving the access request packet, the access point can transparently transmit the packet to the roaming broadband remote access server. For example, the access point transparently transmits the access request message to the roaming broadband remote access server through the Control And Provisioning of Wireless Access Points protocol. The access point can also access first. The request packet is transparently transmitted to the switch, and the switch sends the access request packet to the roaming broadband remote access server.
  • IEEE Institute of Electrical and Electronics Engineers
  • the access request sent by the mobile station may include the source Internet Protocol address of the mobile station.
  • the source internet protocol address may be an internet protocol address assigned by the host broadband remote access server to the mobile station.
  • the host broadband remote access server assigns an internet protocol address to the mobile station via a Dynamic Host Configuration Protocol or a Point-to-Point Protocol over Ethernet over Ethernet.
  • the source internet protocol address may also be an internet protocol address that the user statically configures on the mobile station.
  • a host broadband remote access server is also a device that provides access to mobile stations.
  • the host broadband remote access server can also provide access services to the mobile station through the access point. For details on how the host broadband remote access server works, see the description above for roaming broadband remote access servers.
  • the source internet protocol address is an internet protocol address that obtains authentication of the first authentication server.
  • the first authentication server may be an authentication, authorization, and accounting (Authentication, Authorization, Accounting) server.
  • the process of obtaining the authentication of the first authentication server from the source internet protocol address is described below by way of an example.
  • the mobile station Before the mobile station arrives at the roaming broadband remote access server, the mobile station establishes a connection with the host broadband remote access server, and the host broadband remote access server sends an authentication request including the source internet protocol address to the first authentication server.
  • the first authentication server responds to the authentication request and establishes a mapping table between the source internet protocol address and the internet protocol address of the host broadband remote access server.
  • the mapping table can be stored in the first authentication server or in the user subscription information database.
  • the mobile station After the source Internet Protocol address is authenticated by the first authentication server, the mobile station gains access to the application server.
  • the application server can be a video server or a Wireless Application Protocol server.
  • the application server can be directly connected to the host broadband remote access server or connected to the host broadband remote access server through a router.
  • the roaming broadband remote access server sends the source network to the second authentication server An authentication request of the protocol address, so that the second authentication server performs an oral response to the authentication request according to the mapping table.
  • the second authentication server and the first authentication server may be the same device or different devices.
  • the mapping table may be stored in the user subscription information database.
  • the roaming broadband remote access server may send an authentication request (Access-Request) to the second authentication server through a Remote Authentication Dial In User Service protocol.
  • Access-Request an authentication request
  • RFC2865 and RFC2866 For details on the remote user dial-up authentication service protocol, see RFC2865 and RFC2866.
  • the second authentication server responds to the authentication request according to the mapping table.
  • the mapping table may be saved in the user subscription database.
  • the second authentication server searches the user subscription database for the source internet protocol address, and obtains the internet protocol address of the first authentication server according to the mapping table. After obtaining the Internet Protocol address of the first authentication server, the second authentication server sends an access-accept (Access-Accept) to the roaming broadband remote access server through the remote user dial-up authentication service protocol.
  • Access-Accept access-accept
  • the roaming broadband remote access server receives an authentication response corresponding to the authentication request, where the authentication response includes an internet protocol address of the host broadband remote access server.
  • the roaming broadband remote access server may receive the authentication response corresponding to the authentication request by using a remote user dialing authentication service protocol.
  • the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server according to the internet protocol address of the host broadband remote access server.
  • the tunnel is used to transfer traffic between the mobile station and the application server.
  • the roaming broadband remote access server Before the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the roaming broadband remote access server can determine that the mobile station is in a roaming state.
  • the roaming broadband remote access server may receive the authentication response corresponding to the authentication request, and the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server.
  • the second authentication server generates a roaming token and sends the roaming token to the roaming broadband remote access server.
  • the roaming broadband remote access server generates a tunnel establishment request based on the roaming flag.
  • the roaming flag is used to identify that the mobile station is roaming.
  • the roaming flag can be carried in the authentication response.
  • the second authentication server may generate a roaming token according to the mapping table.
  • the authentication request sent by the roaming broadband remote access server to the second authentication server may include an internet protocol address of the roaming broadband remote access server.
  • the second authentication server finds the mapping table according to the source internet protocol address included in the authentication request.
  • the second authentication server obtains an internet protocol address of the host broadband remote access server according to the mapping table.
  • the second authentication server compares the Internet Protocol address of the host broadband remote access server with the Internet Protocol address of the roaming broadband remote access server, determines that the two Internet Protocol addresses are different, and determines that the mobile station is roaming.
  • the roaming broadband remote access server Before the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the roaming broadband remote access server can determine that the mobile station is roaming. In a specific implementation, after the roaming broadband remote access server receives the authentication response corresponding to the authentication request, and the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the roaming broadband remote access server compares the The internet protocol address of the host broadband remote access server and the internet protocol address of the roaming broadband remote access server determine that the two internet protocol addresses are different, thereby determining that the mobile station is in a roaming state.
  • the roaming broadband remote access server can establish a tunnel between the roaming broadband remote access server and the host broadband remote access server through a protocol.
  • the protocol may be a Roaming Access Auto-Tunneling Protocol (RA2P).
  • R2P Roaming Access Auto-Tunneling Protocol
  • the RA2P is based on the Generic Datagram Protocol.
  • the RA2P message includes an internet protocol header, a general data protocol header, an RA2P header, and a payload.
  • the internet protocol header includes a source address and a destination address for identifying the RA2P tunnel.
  • the length of the internet protocol header is 20 bytes.
  • the source port or destination port in the generic data protocol header can be 1710, or other values that have not been used yet.
  • RA2P The length of the header is 16 bytes.
  • the RA2P text can include the following types:
  • a tunnel establishment request (RA2P-Start-Tuneling-Request) is used to establish a control connection to the peer end;
  • R2P-Start-Tuneling-Ack a tunnel establishment response for responding to the tunnel establishment request
  • a tunnel removal request (RA2P-Stop-Tuneling-Request) is used to notify the peer to remove the control connection;
  • the tunnel removal response (RA2P-Stop-Tuneling-Ack) is used to respond to the tunnel removal request;
  • the RA2P-Tunneling-Authentication-Request is used to authenticate the peer request.
  • the RA2P-Tunneling-Authentication-Ack is used to respond to the tunnel authentication request.
  • R2P-Hello Connectivity detection
  • Length (L): 1 indicates that the length field exists. For signaling messages, this field is 1
  • Sequence(S): 1 indicates that the Ns and Nr fields exist. For signaling messages, this field is 1 Priority (P): 1 means the message should be transmitted preferentially. For signaling messages, this field is 0. Version (Ver): indicates the current version, this field is 1.
  • Length Indicates the total length of the RA2P header and payload, in bytes.
  • Type Indicates the type of signaling packets, including:
  • Tunnel ID Used to identify the control connection.
  • the tunnel identity (Tunnel ID) is assigned to the mobile station by the router that sends the tunnel establishment request. Different mobile stations correspond to different tunnel identities.
  • Ns indicates the serial number of the packet. This field can range from 0 to 65535.
  • Nr indicates the serial number of the next message desired. This field can range from 0 to 65535. For data messages, this field is reserved. Even if the S field is 1, the receiver will ignore the field.
  • Offset Size Indicates the starting position of the transmission payload relative to the RA2P header.
  • a tunnel between the roaming broadband remote access server and the host broadband remote access server can be used to transfer traffic between the mobile station and the application server.
  • the roaming broadband remote access server after receiving the traffic from the mobile station to the application server, forwards the traffic to the host broadband remote access server through the tunnel. After receiving the traffic, the host broadband remote access server forwards the traffic to the application server. Similarly, after receiving the traffic destined for the mobile station from the application server, the host broadband remote access server forwards the traffic to the roaming broadband remote access server through the tunnel. After receiving the traffic, the roaming broadband remote access server forwards the traffic to the mobile station through the access point.
  • the roaming broadband remote access server is based on the media access control (Media Access Control) protocol address of the mobile station. Traffic is forwarded to the mobile station through the data link layer.
  • the access request message sent by the mobile station may include the media access control protocol address of the mobile station.
  • the roaming broadband remote access server can obtain the media access control protocol address of the mobile station according to the access request message.
  • the source internet protocol address of the mobile station can be sent to the authentication server, and according to the host broadband remote access server provided by the authentication server
  • the Internet Protocol address establishes a tunnel between the roaming broadband remote access server and the host broadband remote access server for transmitting traffic between the mobile station and the application server.
  • the host agent needs to recalculate the route and perform route convergence according to the routing message sent by the foreign agent.
  • the mobile station needs to install the client software.
  • the mobile station does not need to install the above client software.
  • the method includes:
  • the roaming broadband remote access server generates the tunnel establishment request according to the roaming flag, where the roaming flag is a flag generated by the second authentication server according to the mapping table for identifying that the mobile station is in a roaming state, where the roaming flag is Certification response.
  • the method includes:
  • the roaming broadband remote access server compares the network of the host broadband remote access server The inter-protocol address and the internet protocol address of the roaming broadband remote access server determine that the mobile station is roaming.
  • the mapping table includes a media access control protocol address of the mobile station, where the authentication request includes a media access control protocol address of the mobile station, so that the second authentication server compares the media of the mobile station included in the authentication request Whether the access control protocol address is equal to the media access control protocol address of the mobile station included in the mapping table, and further responds to the authentication request.
  • the first authentication server and the second authentication server are the same device.
  • Embodiment 2 is a diagrammatic representation of Embodiment 1:
  • FIG. 2 is a schematic diagram of a roaming broadband remote access server according to an embodiment of the present invention, where the apparatus includes:
  • the receiver 201 is configured to receive an access request sent by the mobile station, where the access request includes a source internet protocol address.
  • the source internet protocol address is an internet protocol address that obtains authentication of the first authentication server.
  • the authentication forms a mapping table between the source Internet Protocol address and the Internet Protocol address of the host broadband remote access server and enables the mobile station to gain access to the application server through the host broadband remote access server.
  • the mobile station is a wireless communication terminal.
  • the mobile station can be a mobile phone, a personal digital assistant, and a personal computer.
  • a roaming broadband remote access server is a device that provides access services for mobile stations.
  • the roaming broadband remote access server can provide access services to the mobile station through the access point.
  • the roaming broadband remote access server may be a broadband remote access server, a service server, or a multi-service control gateway.
  • the roaming broadband remote access server may include an access control unit and a user management unit.
  • the access control unit can manage and control multiple access points.
  • the roaming broadband remote access server can enter or leave the tube through the access point to the mobile station.
  • the scope of jurisdiction is perceived.
  • the roaming broadband remote access server can detect whether the mobile station leaves its jurisdiction by using the address resolution protocol; or can receive the data in the unit time.
  • the traffic from the mobile station determines whether the mobile station is leaving its jurisdiction. Specifically, if the traffic received by the roaming broadband remote access server from the mobile station is less than a predetermined threshold in a unit time, the mobile station is determined to leave its jurisdiction.
  • the roaming broadband remote access server can receive an access request sent by the mobile station.
  • the access request can be an access request message.
  • the following describes an example of a process in which a roaming broadband remote access server receives an access request sent by a mobile station.
  • the access point controlled by the roaming broadband remote access server senses that the mobile station enters its coverage range and receives an access request message sent by the mobile station.
  • an access point can be aware of a mobile station in a manner defined by IEEE 802.1x.
  • the access point can transparently transmit the packet to the roaming broadband remote access server.
  • the access point transparently transmits the access request message to the roaming broadband remote access server through the wireless access point control and providing the protocol.
  • the access point may also transparently transmit the access request message to the switch, and then the switch sends the access request message to the roaming broadband remote access server.
  • the access request sent by the mobile station may include the source internet protocol address of the mobile station.
  • the source internet protocol address may be an internet protocol address assigned by the host broadband remote access server to the mobile station.
  • the host broadband remote access server assigns an internet protocol address to the mobile station via a dynamic host configuration protocol or a point-to-point protocol over Ethernet.
  • the source internet protocol address can also be an internet protocol address for static configuration on the mobile station.
  • a host broadband remote access server is also a device that provides access services for mobile stations.
  • the host broadband remote access server can also provide access services to the mobile station through the access point. For details on how the host broadband remote access server works, see the description above for roaming broadband remote access servers.
  • the source internet protocol address is an internet protocol address that obtains authentication of the first authentication server.
  • the first authentication server may be an authentication, authorization, and accounting server. The process of obtaining the authentication of the first authentication server by the source internet protocol address is described below by way of an example.
  • the mobile station Before the mobile station arrives at the roaming broadband remote access server, the mobile station establishes a connection with the host broadband remote access server, and the host broadband remote access server sends an authentication request including the source internet protocol address to the first authentication server.
  • the first authentication server responds to the authentication request and establishes a mapping table between the source internet protocol address and the internet protocol address of the host broadband remote access server.
  • the mapping table can be stored in the first authentication server or in the user subscription information database.
  • the mobile station After the source Internet Protocol address is authenticated by the first authentication server, the mobile station gains access to the application server.
  • the application server can be a video server or a wireless application protocol server.
  • the application server can be directly connected to the host broadband remote access server or connected to the host broadband remote access server through the router.
  • the requesting unit 202 is configured to send an authentication request including the source internet protocol address to the second authentication server, so that the second authentication server responds to the authentication request according to the mapping table.
  • the second authentication server and the first authentication server may be the same device or different devices.
  • the mapping table may be stored in the user subscription information database.
  • the roaming broadband remote access server can send an authentication request to the second authentication server through the remote user dialing authentication service protocol.
  • the remote user dial-up authentication service protocol see RFC2865 and RFC2866.
  • the second authentication server responds to the authentication request according to the mapping table.
  • the mapping table may be saved in the user subscription database.
  • the second authentication server searches the user subscription database for the source internet protocol address, and obtains the internet protocol address of the first authentication server according to the mapping table. After obtaining the Internet Protocol address of the first authentication server, the second authentication server sends the authentication reception to the roaming broadband remote access server through the remote user dialing authentication service protocol.
  • the response unit 203 is configured to receive an authentication response corresponding to the authentication request, where the authentication response includes an internet protocol address of the host broadband remote access server.
  • the roaming broadband remote access server may receive the authentication response corresponding to the authentication request by using a remote user dialing authentication service protocol.
  • the tunnel establishing unit 204 is configured to send a tunnel establishment request to the host broadband remote access server according to the internet protocol address of the host broadband remote access server.
  • the tunnel is used to transmit traffic between the mobile station and the application server.
  • the roaming broadband remote access server Before the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the roaming broadband remote access server can determine that the mobile station is roaming.
  • the second authentication server After the roaming broadband remote access server receives the authentication response corresponding to the authentication request, and the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the second authentication server generates a roaming token, and The roaming tag is sent to the roaming broadband remote access server.
  • the roaming broadband remote access server generates a tunnel establishment request based on the roaming flag.
  • the roaming tag is used to identify that the mobile station is roaming.
  • the roaming flag can be carried in the authentication response.
  • the second authentication server may generate a roaming token according to the mapping table.
  • the authentication request sent by the roaming broadband remote access server to the second authentication server may include an internet protocol address of the roaming broadband remote access server.
  • the second authentication server finds the mapping table according to the source internet protocol address included in the authentication request.
  • the second authentication server obtains an internet protocol address of the host broadband remote access server according to the mapping table.
  • the second authentication server compares the Internet Protocol address of the host broadband remote access server with the Internet Protocol address of the roaming broadband remote access server, determines that the two Internet Protocol addresses are different, and determines that the mobile station is roaming.
  • the roaming broadband remote access server Before the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the roaming broadband remote access server can determine that the mobile station is in a roaming state. In a specific implementation, after the roaming broadband remote access server receives the authentication response corresponding to the authentication request, and the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, the roaming broadband remote access server compares the Hosting the internet protocol address of the broadband access server and the internet protocol address of the roaming broadband remote access server, determining two internet addresses The protocol address is different, and it is determined that the mobile station is in a roaming state.
  • the roaming broadband remote access server can establish a tunnel between the roaming broadband remote access server and the host broadband remote access server through a protocol.
  • the protocol can be RA2P.
  • the RA2P is based on the Generic Datagram Protocol.
  • the RA2P message includes an internet protocol header, a general data protocol header, an RA2P header, and a payload.
  • the internet protocol header includes a source address and a destination address for identifying the RA2P tunnel.
  • the length of the internet protocol header is 20 bytes.
  • the source or destination port in the Generic Data Protocol header can be 1710 or other values that have not been used.
  • the length of the RA2P header is 16 bytes.
  • the RA2P text can include the following types:
  • a tunnel establishment request (RA2P-Start-Tuneling-Request) is used to establish a control connection to the peer end;
  • a tunnel establishment response (RA2P-Start-Tuneling-Ack) is used to respond to the tunnel establishment request;
  • a tunnel removal request (RA2P-Stop-Tuneling-Request) is used to notify the peer to remove the control connection;
  • the tunnel removal response (RA2P-Stop-Tuneling-Ack) is used to respond to the tunnel removal request;
  • the RA2P-Tunneling-Authentication-Request is used to request authentication from the authentication server.
  • the RA2P-Tunneling-Authentication-Ack is used to respond to the tunnel authentication request.
  • R2P-Hello Connectivity detection
  • the contents of the RA2P header are as follows:
  • RA2 P header includes multiple fields.
  • the definition of each field is as follows:
  • Length (L): 1 indicates that the length field exists. For signaling messages, this field is 1
  • Sequence(S): 1 indicates that the Ns and Nr fields exist. For signaling messages, this field is 1
  • Priority (P): 1 means that the 4 text should be transmitted preferentially. For signaling messages, this field is 0.
  • Length Indicates the total length of the RA2P header and payload, in bytes.
  • Type Indicates the type of signaling packets, including:
  • Tunnel ID Used to identify the control connection.
  • the tunnel identity is assigned to the mobile station by the router that sent the tunnel setup request. Different mobile stations correspond to different tunnel identities.
  • Ns indicates the serial number of the packet. This field can range from 0 to 65535
  • Nr indicates the serial number of the next message desired.
  • the value of this field ranges from 0 to 65535. For data messages, this field is reserved. Even if the S field is 1, the receiver will ignore the field.
  • Offset Size Indicates the starting position of the transmission payload relative to the RA2P header.
  • the tunnel between the roaming broadband remote access server and the host broadband remote access server can Used to transfer traffic between the mobile station and the application server.
  • the roaming broadband remote access server after receiving the traffic from the mobile station to the application server, forwards the traffic to the host broadband remote access server through the tunnel. After receiving the traffic, the host broadband remote access server forwards the traffic to the application server. Similarly, after receiving the traffic destined for the mobile station from the application server, the host broadband remote access server forwards the traffic to the roaming broadband remote access server through the tunnel. After receiving the traffic, the roaming broadband remote access server forwards the traffic to the mobile station through the access point.
  • the roaming broadband remote access server forwards traffic to the mobile station through the data link layer according to the media access control protocol address of the mobile station.
  • the access request message sent by the mobile station may include the media access control protocol address of the mobile station.
  • the roaming broadband remote access server can obtain the media access control protocol address of the mobile station according to the access request message.
  • the source internet protocol address of the mobile station can be sent to the authentication server, and the remote connection is provided according to the host broadband provided by the authentication server.
  • the Internet Protocol address of the incoming server establishes a tunnel between the roaming broadband remote access server and the host broadband remote access server for transmitting traffic between the mobile station and the application server.
  • the roaming broadband remote access server provided by the embodiment of the present invention can solve the problem that the host agent needs to recalculate the route and perform route convergence according to the routing message sent by the foreign agent after the mobile node arrives at the foreign agent.
  • the mobile station needs to install the client software.
  • the mobile station does not need to install the above client software.
  • the roaming broadband remote access server may include:
  • a roaming tag processing unit configured to: after the roaming broadband remote access server receives the authentication response corresponding to the authentication request, and before the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server, according to the roaming flag, Generating the tunnel establishment request, the The roaming flag is a flag generated by the second authentication server according to the mapping table for identifying that the mobile station is in a roaming state, and the roaming flag is carried in the authentication response.
  • the roaming broadband remote access server may include:
  • a roaming state determining unit configured to compare the host after the roaming broadband remote access server receives the authentication response corresponding to the authentication request and the roaming broadband remote access server sends a tunnel establishment request to the host broadband remote access server
  • the internet protocol address of the broadband remote access server and the internet protocol address of the roaming broadband remote access server determine that the mobile station is in a roaming state.
  • the mapping table includes a media access control protocol address of the mobile station, where the authentication request includes a media access control protocol address of the mobile station, so that the second authentication server compares the media of the mobile station included in the authentication request Whether the access control protocol address is equal to the media access control protocol address of the mobile station included in the mapping table, and further responds to the authentication request.
  • the first authentication server and the second authentication server are the same device.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

L'invention concerne un procédé d'établissement de trajet. Lorsqu'une station mobile atteint un serveur d'accès à distance à large bande d'itinérance, l'adresse de protocole Internet de source de la station mobile peut être envoyée à un serveur d'authentification, et un tunnel pour transmettre le trafic entre la station mobile et un serveur d'application est établi entre le serveur d'accès à distance à large bande d'itinérance et un serveur d'accès à distance à large bande domestique selon l'adresse de protocole Internet du serveur d'accès à distance à large bande domestique fournie par le serveur d'authentification. En outre, l'invention concerne également un serveur d'accès à distance à large bande d'itinérance correspondant. Le procédé d'établissement de trajet et le serveur d'accès à distance à large bande d'itinérance proposés dans les modes de réalisation de la présente invention peuvent résoudre le problème selon lequel, après qu'un nœud mobile atteint un agent étranger, un agent domestique doit recalculer une route et réaliser une convergence de routes selon un message de route envoyé par l'agent étranger.
PCT/CN2012/080677 2011-10-25 2012-08-29 Procédé d'établissement de trajet et serveur d'accès à distance à large bande d'itinérance WO2013060190A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201110327700.8 2011-10-25
CN201110327700A CN102333295A (zh) 2011-10-25 2011-10-25 一种路径建立方法以及漫游宽带远程接入服务器

Publications (1)

Publication Number Publication Date
WO2013060190A1 true WO2013060190A1 (fr) 2013-05-02

Family

ID=45484872

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/080677 WO2013060190A1 (fr) 2011-10-25 2012-08-29 Procédé d'établissement de trajet et serveur d'accès à distance à large bande d'itinérance

Country Status (2)

Country Link
CN (1) CN102333295A (fr)
WO (1) WO2013060190A1 (fr)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102333295A (zh) * 2011-10-25 2012-01-25 华为技术有限公司 一种路径建立方法以及漫游宽带远程接入服务器

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1653772A (zh) * 2002-05-06 2005-08-10 思科技术公司 用于移动因特网协议动态本地代理分配的方法和装置
CN102075904A (zh) * 2010-12-24 2011-05-25 杭州华三通信技术有限公司 一种防止漫游用户再次认证的方法和装置
CN102333295A (zh) * 2011-10-25 2012-01-25 华为技术有限公司 一种路径建立方法以及漫游宽带远程接入服务器

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1653772A (zh) * 2002-05-06 2005-08-10 思科技术公司 用于移动因特网协议动态本地代理分配的方法和装置
CN102075904A (zh) * 2010-12-24 2011-05-25 杭州华三通信技术有限公司 一种防止漫游用户再次认证的方法和装置
CN102333295A (zh) * 2011-10-25 2012-01-25 华为技术有限公司 一种路径建立方法以及漫游宽带远程接入服务器

Also Published As

Publication number Publication date
CN102333295A (zh) 2012-01-25

Similar Documents

Publication Publication Date Title
US9743334B2 (en) Method and apparatus for enabling data path selection in a virtual home gateway
US9112909B2 (en) User and device authentication in broadband networks
US9407495B2 (en) Combining locally addressed devices and wide area network (WAN) addressed devices on a single network
JP5987122B2 (ja) デバイス固有のトラフィックフローステアリングのためのネットワークアドレス変換されたデバイスの特定
RU2015132107A (ru) Системы и способы доступа к сети
US11153207B2 (en) Data link layer-based communication method, device, and system
WO2008131634A1 (fr) Procédé et appareil permettant d'envoyer et de recevoir des paquets multidiffusion
WO2011143880A1 (fr) Procédé et système permettant de transmettre des données de multidiffusion sans fil
US20140307651A1 (en) Internet Protocol Address Registration
US20180167231A1 (en) Managing multiple virtual network memberships
WO2014101755A1 (fr) Procédé et système de dérivation de données de service
KR101901341B1 (ko) 사용자 장치의 이동성을 지원하는 네트워크 접속 방법 및 장치
US20230146807A1 (en) Supporting dynamic host configuration protocol-based customer premises equipment in fifth generation wireline and wireless convergence
KR20180051621A (ko) 전기통신 네트워크와 적어도 하나의 사용자 장비 간의 적어도 하나의 통신 교환의 개선된 핸들링을 위한 방법, 전기통신 네트워크, 사용자 장비, 시스템, 프로그램 및 컴퓨터 프로그램 제품
WO2011032417A1 (fr) Procédé et système de déclenchement d'acheminement de message de communication, d'informations et de données et de configuration de routage
WO2012041168A1 (fr) Procédé de traitement pour une connexion à distance destinée à un réseau ipv6 et dispositif associé
WO2011032478A1 (fr) Procédé, dispositif et terminal pour obtenir un identifiant de terminal
WO2010091562A1 (fr) Procédé et appareil pour l'interaction entre un réseau fixe et un réseau tiers ou un serveur d'applications
WO2009124444A1 (fr) Procédé et appareil de traitement d'un message de demande de protocole de résolution d'adresse (arp)
WO2013026299A1 (fr) Procédé et dispositif de résolution d'adresse, et procédé de transmission d'informations
WO2014124561A1 (fr) Procédé pour réaliser une communication dans un wlan
US9439127B2 (en) Method for data transmission and local network entity
WO2016074354A1 (fr) Procédé et système de partage de wifi, passerelle domestique et passerelle de réseau local sans fil
WO2013060190A1 (fr) Procédé d'établissement de trajet et serveur d'accès à distance à large bande d'itinérance
WO2010066144A1 (fr) Procédé, dispositif et réseau mobile d'espaces multi-adresses pour envoyer et transférer des données

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12843342

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12843342

Country of ref document: EP

Kind code of ref document: A1