[go: up one dir, main page]

WO2007036140A1 - Procede d'implementation d'un commutateur de traduction d'adresses de reseau dans un reseau ip mobile - Google Patents

Procede d'implementation d'un commutateur de traduction d'adresses de reseau dans un reseau ip mobile Download PDF

Info

Publication number
WO2007036140A1
WO2007036140A1 PCT/CN2006/002463 CN2006002463W WO2007036140A1 WO 2007036140 A1 WO2007036140 A1 WO 2007036140A1 CN 2006002463 W CN2006002463 W CN 2006002463W WO 2007036140 A1 WO2007036140 A1 WO 2007036140A1
Authority
WO
WIPO (PCT)
Prior art keywords
signaling
tunnel
udp tunnel
address
udp
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2006/002463
Other languages
English (en)
Chinese (zh)
Inventor
Haotao Pan
Hongguang Guan
Jianbing Wang
Chao Hou
Chuntao Wang
Jianjun Li
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Technologies Co Ltd
Original Assignee
Huawei Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Technologies Co Ltd filed Critical Huawei Technologies Co Ltd
Publication of WO2007036140A1 publication Critical patent/WO2007036140A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2514Translation of Internet protocol [IP] addresses between local and global IP addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/256NAT traversal
    • H04L61/2564NAT traversal for a higher-layer protocol, e.g. for session initiation protocol [SIP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]

Definitions

  • the present invention relates to the field of network communications, and in particular, to a method for implementing a signaling over-the-network address translation device in a mobile IP network.
  • Mobile IP is a solution that provides mobile functionality to users on the Internet. Mobile IP can exceed geographic limits and is scalable, reliable, and secure. Mobile IP extends the user's mobility and roaming capabilities, allowing nodes to maintain ongoing communications while switching.
  • Mobile IP Mobile node
  • Mobile IP provides a wide range of mobility to the terminal, while also ensuring the IP address assignability and reachability of the terminal.
  • Mobile IP systems mainly include MN, FA (foreign agent), HA (home agent) and CN (communication node).
  • the data packet sent by the CN to the MN on the foreign network will be first routed to the HA of the MN, then tunneled to the FA of the MN, and finally, to the MN by the FA.
  • the data packet sent by the MN to the CN will be routed first to the FA of the MN, which is directly passed to the CN.
  • the NAT may establish an address mapping table of the FA/MN according to the public IP address corresponding to the private IP address of the FA/MN that internally sends the data packet, and convert the private IP address and the public IP address according to the mapping table;
  • NAPT The device may establish an address port mapping table of the FA/MN according to the private IP address and port of the FA/MN that internally sends the data packet, and the corresponding public IP address and port, and according to the mapping table in the private IP address and port The conversion between the public IP address and the port.
  • NAT/NAPT will discard the received for the data packet sent by the CN to the FA MN.
  • NAT/NAPT cannot find the corresponding private IP address or private IP address and port according to the above mapping table.
  • the FA/MN In the case of placing NAT/NAPT at the exit location of the FA/MN, the FA/MN is located behind the NAT/NAPT device, and the HA and the FA and the MN (supporting the care-of address) are tunneled.
  • the tunnel mode includes IP in IP mode. , GRE mode and minimum encapsulation mode, in order to solve the problem that the above data packet cannot be transmitted normally, the RFC3519 protocol proposed by the IETF Mobile IP Working Group has developed a method for the data packet to traverse the NAT NAPT device, which adopts UDP (user datagram) Agreement) to achieve traversal.
  • UDP user datagram
  • the FA/MN After the mobile node registers successfully on the FA, the FA/MN sends a Keep Alive message with the HA periodically, and establishes a UDP tunnel address and port mapping table, ie, an IP address mapping table or IP, on the NAT/NAPT device.
  • a UDP tunnel address and port mapping table ie, an IP address mapping table or IP
  • a mapping table of addresses and ports After the data packet sent by the HA to the MN is encapsulated by the UDP tunnel, the NAP/NAPT device searches for the corresponding private IP address in the mapping table according to the public IP address in the external IP header of the encapsulated tunnel data packet, or the public IP address and port. Or a private IP address and port, and then send the tunnel packet to the endpoint of the UDP tunnel (FA/MN) through the discovered private IP address, port.
  • an object of the present invention is to provide a method for implementing signaling traversing network address translation equipment in a mobile IP network, so that signaling protocol data can traverse between HA and FA/MN.
  • NAT/NAPT device is to provide a method for implementing signaling traversing network address translation equipment in a mobile IP network, so that signaling protocol data can traverse between HA and FA/MN.
  • a method for implementing signaling traversing a network address translation device in a mobile IP network comprising:
  • the sender encapsulates the signaling data in the user data packet protocol UDP tunnel packet for transmission;
  • Network address translation device NAT/network address port conversion device
  • the NAPT forwards the received UDP tunnel packet according to the tunnel address and port mapping table.
  • the sender is FA/MN, and / or HA.
  • the method further includes:
  • the FA/MN and the HA respectively notify the other party whether or not the signal of the signaling channel of the UDP tunnel is supported. Step A is performed.
  • the information that the FA/MN and the HA respectively notify the other party whether to support the signaling channel of the UDP tunnel includes:
  • the FA/MN sets the identifier of the signaling channel that supports the UDP tunnel in the Type field of the UDP tunnel request message, and sends the UDP tunnel request message to the HA.
  • the HA sets an identifier of the signaling channel that identifies whether it supports the UDP tunnel in the Type field of the UDP tunnel response message, and sends the UDP tunnel response message to the FA/MN.
  • the next header in the channel header of the mobile IP system of the UDP tunnel packet includes a data type identifying the signaling protocol channel; and the channel data of the mobile IP system of the UDP tunnel packet
  • the header includes a specific type of field that identifies the signaling protocol.
  • the receiver determines, according to the content of the Next Head field in the received tunnel packet, a signaling protocol, and determines a specific signaling protocol according to a value of a specific type of the identifier of the identity signaling protocol. Type, the signaling protocol is taken out from the tunnel packet, and is transmitted to the corresponding upper layer protocol processing module for processing according to the specific type of the determined signaling protocol.
  • the address and port mapping table of the tunnel described in step B is a dynamic mapping table established according to the keep-alive message sent between the FA/MN and the HA. .
  • the address and port mapping table of the tunnel described in step B is a statically configured address and a port mapping table.
  • the signaling may be deregistration signaling.
  • the IP network may be an IPv4 network or an IPv6 network.
  • the sender when the present invention transmits signaling between the FA/MN and the HA, the sender encapsulates the signaling data in the user data packet protocol UDP tunnel packet for transmission, and NAT/NAPT Transmitting the received UDP tunnel packet according to the address of the tunnel and the port mapping table, and implementing signaling protocol data traversing the NAT/NAPT device between the HA and the FA/MN;
  • FIG. 1 is a schematic diagram of a process of transmitting a data packet between a MN and a CN in a mobile IP;
  • FIG. 2 is a schematic diagram of a format of a UDP tunnel request message after adding a U field according to an embodiment of the present invention;
  • FIG. 3 is a schematic diagram of a format of a UDP tunnel response message after adding a U field according to an embodiment of the present invention
  • FIG. 5 is a schematic diagram of encapsulating signaling data into a UDP tunnel according to an embodiment of the present invention
  • Figure 6 is a diagram showing the format of a message in which a MIP channel header is added in a specific embodiment of the present invention.
  • BEST MODE FOR CARRYING OUT THE INVENTION The present invention will be further described in detail below with reference to the accompanying drawings.
  • the present invention provides a method for implementing a signaling traversal network address translation device in a mobile IP network.
  • the core of the present invention is: When transmitting signaling between the FA/MN and the HA, the sender encapsulates the signaling data in the UDP tunnel. Send in the package.
  • the corresponding setting for the signaling protocol may be added to the UDP tunnel request and the response message in the registration request of the mobile IP network, so that the FA/MN or the HA knows whether the other party supports signaling through the UDP tunnel data packet.
  • Data that is, whether the other party supports the signaling channel of the UDP tunnel.
  • Specific settings include: Add a field to the Type field in the UDP Tunnel Request message: U, which is used to identify whether the FA/MN supports the signaling channel of the UDP tunnel. In a specific implementation, when the value of the field is 1, the FA/MN supports the signaling channel, and 0 indicates that the FA/MN does not support the signaling channel.
  • the format of the UDP tunnel request message after the U field is added is as shown in FIG. 2.
  • U which is used to identify whether the HA supports the signaling channel of the UDP tunnel. In the specific implementation, it can be used as 1 to indicate support, and 0 to not support.
  • the format of the UDP tunnel response message after the U field is added is shown in Figure 3. If the U field added to the UDP Tunnel Request message is 0, but the field is 1, the field is ignored.
  • the value of the added U field is set according to whether the UDP tunnel is supported by the signaling channel. If the HA does not support the UDP tunnel after receiving the UDP tunnel request message, the HA does not support the UDP tunnel.
  • the channel ignore the value of the U field in the UDP tunnel request message, and set the value of the U field to the signaling channel that does not support the UDP tunnel in the UDP tunnel request message returned to the FA/MN; if the HA supports
  • the signaling channel of the UDP tunnel records whether the FA/MN supports the signaling channel of the UDP tunnel according to the value of the U field, and sets whether the UDP tunnel is supported by the U field of the UDP tunnel response message returned to the FA/MN. Signaling channel information.
  • the FA/MN After receiving the UDP tunnel response message from the HA, the FA/MN ignores the value of the U field in the UDP tunnel response message if it does not support the signaling channel of the UDP tunnel; No-B
  • the NAT/NAPT device When the UDP tunnel packet needs to traverse the NAT/NAPT device, the NAT/NAPT device translates the destination address in the UDP tunnel packet according to the address mapping table or the address and port mapping table set in the device, and passes the corresponding address or address and port. Send it.
  • the address and port mapping of the tunnel are established in the NAT/NAPT device by the keep-alive message. Table.
  • the HA if the HA supports the signaling channel of the UDP tunnel, and determines the signaling channel of the FA/MN supporting the UDP tunnel according to the value of the U field recorded above, the HA will send signaling data to the FA/MN when The signaling data is encapsulated and sent in the tunnel data packet; otherwise, the existing transmission mode is adopted.
  • the signaling data is also encapsulated and sent in the tunnel data packet; otherwise, the normal transmission mode is adopted.
  • the address of the HA is generally a private address.
  • a table or address and port mapping table that is, a legitimate public IP address or public IP address and port configured on a NAT/NAPT device, statically mapped to the HA's private address or private address and port.
  • the MN/FA can communicate normally with the HA hidden behind the NAT/NAPT device.
  • the HA that supports the signaling channel of the UDP tunnel sends signaling protocol data to the FA/MN, and the NAT/NAPT device is used as an example.
  • the specific signaling data transmission process is as shown in FIG. 4, and includes the following Steps:
  • Step 4-1 When transmitting signaling protocol data to the FA/MN, the HA encapsulates the signaling protocol data into the UDP tunnel packet according to the information of the signaling channel of the FA/MN supporting the UDP tunnel recorded therein.
  • the HA directly informs the user of the error message that the signaling protocol data cannot be sent; if the UDP tunnel has been established , HA needs to be based on records Corresponding to whether the FA/MN supports the signaling channel information of the UDP tunnel, and determines whether the signaling protocol data can be encapsulated into the UDP tunnel packet for transmission. If it is determined that the corresponding FA/MN does not support the signaling channel of the UDP tunnel, End this process.
  • the HA will need to encapsulate the signaling protocol data transmitted between the HA and the FA/MN through the NAT/NAPT device to be encapsulated between the original HA and the FA/MN.
  • the tunnel packet used to pass the UDP tunnel of the packet The specific implementation can be based on the encapsulation mode of the original UDP tunnel data. For details, see RFC3519.
  • the above schematic diagram of encapsulating signaling protocol data into a UDP tunnel is shown in FIG. 5.
  • a corresponding setting for the transmitted signaling protocol may be added to the UDP tunnel packet, and the specific settings include:
  • the present invention adds a data type to the field: The specific value is to be determined, and the value represents that the data carried in the tunnel is signaling protocol data.
  • the present invention may also add a D field to the MIP channel header to identify the specific type of signaling protocol.
  • 1 may be used to indicate that the signaling protocol type in the channel is a de-registration signaling protocol.
  • Step 4-2. Determine whether the NAT outlet is set to NAT/NAPT. If yes, go to Step 4-3. Otherwise, go to Step 4-4.
  • Step 4-3 The HA sends the tunnel data packet to the NAP/NAPT device placed at its exit location, and the NAT/NAPT device sets the destination IP address in the external IP header of the tunnel data packet according to the statically configured tunnel address and port mapping table. Replace the address with the corresponding public BP address, or replace the destination IP address and port with the public IP address and port, and forward the tunnel packet, and then Go to Step 4-4.
  • Step 4-4 After receiving the UDP tunnel data packet, the NAP/NAPT device placed at the FA/MN exit location, in its own address mapping table or address and port mapping table, will publicize the public address or public address in the UDP tunnel packet address.
  • the address and port are converted to a private address or a private address and port, and the encapsulated tunnel packet is sent to the FA/MN through a UDP tunnel according to the determined private address or private address and port.
  • Step 4-5 After the FA/MN receives the UDP tunnel packet from the HA, if the value of the field Next Head in the tunnel data message header of the MIP of the tunnel packet is the value corresponding to the protocol channel, the UDP tunnel packet is The signaling protocol packet determines a specific protocol type according to the value of the D field set in the tunnel data message header of the MIP; then, removes the tunnel header, and hands the internal IP packet to the upper layer protocol corresponding to the specific protocol type. The processing module performs processing; if the content of the Next Head field is not identified as a protocol channel, the UDP tunnel packet is a data packet, and then processed according to a normal packet processing manner. After the FA/MN is processed, the signaling response tunnel packet may also be returned to the HA through the UDP tunnel according to the above encapsulation method.
  • the method of the present invention is applicable to an IPv4 network and an IPv6 network.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Ce procédé d'implémentation d'un commutateur de traduction d'adresses de réseau dans un réseau IP mobile permet l'émission d'un signal entre FA/MN et HA, son empaquetage par l'émetteur dans un paquet de tunnel UDP et son envoi. NAT/NAPT reçoit et transmet le paquet de tunnel UDP selon l'adresse du tunnel et le tableau de correspondance de port.
PCT/CN2006/002463 2005-09-28 2006-09-20 Procede d'implementation d'un commutateur de traduction d'adresses de reseau dans un reseau ip mobile Ceased WO2007036140A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN200510105481.3 2005-09-28
CN200510105481A CN100596120C (zh) 2005-09-28 2005-09-28 移动ip网络中实现信令穿越网络地址转换设备的方法

Publications (1)

Publication Number Publication Date
WO2007036140A1 true WO2007036140A1 (fr) 2007-04-05

Family

ID=37390500

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2006/002463 Ceased WO2007036140A1 (fr) 2005-09-28 2006-09-20 Procede d'implementation d'un commutateur de traduction d'adresses de reseau dans un reseau ip mobile

Country Status (2)

Country Link
CN (1) CN100596120C (fr)
WO (1) WO2007036140A1 (fr)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5100414B2 (ja) * 2008-01-24 2012-12-19 キヤノン株式会社 ネットワークデバイス管理装置及びその制御方法、ネットワークシステム、並びにプログラム
CN112751946B (zh) * 2019-10-31 2023-11-24 中国移动通信有限公司研究院 一种隧道建立方法、装置、设备及计算机可读存储介质
CN112437467A (zh) * 2020-10-23 2021-03-02 中国人民解放军61062部队 一种无家乡代理的自组网网络隧道通信方法

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040088537A1 (en) * 2002-10-31 2004-05-06 Microsoft Corporation Method and apparatus for traversing a translation device with a security protocol
CN1595907A (zh) * 2004-06-25 2005-03-16 港湾网络有限公司 语音信令穿透防火墙及网络地址转换器的方法
CN1633100A (zh) * 2003-12-24 2005-06-29 华为技术有限公司 多媒体业务网络地址转换穿越的方法及其系统

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040088537A1 (en) * 2002-10-31 2004-05-06 Microsoft Corporation Method and apparatus for traversing a translation device with a security protocol
CN1633100A (zh) * 2003-12-24 2005-06-29 华为技术有限公司 多媒体业务网络地址转换穿越的方法及其系统
CN1595907A (zh) * 2004-06-25 2005-03-16 港湾网络有限公司 语音信令穿透防火墙及网络地址转换器的方法

Also Published As

Publication number Publication date
CN100596120C (zh) 2010-03-24
CN1863171A (zh) 2006-11-15

Similar Documents

Publication Publication Date Title
JP4431112B2 (ja) 端末及び通信システム
JP3633430B2 (ja) 通信方法、通信システム、通信装置、及び記録媒体
JP5476646B2 (ja) プッシュセッションおよびプッシュシステムを確立するための方法、ならびにそれに関連する装置
JP2009516988A5 (fr)
WO2015109486A1 (fr) Procédé de traitement de tunnel pour paquet, dispositif de commutation et dispositif de commande
WO2007109963A1 (fr) Passerelle de réseau privé virtuel et système de réseau ipv6 et système de réalisation de réseau privé virtuel mobile dans un réseau hybride et procédé correspondant
WO2008080326A1 (fr) Procédé, système et dispositif pour transmettre des informations de transfert intercellulaire indépendant du support
CN101218814B (zh) 用于优化移动vpn通信的方法和装置
US7623500B2 (en) Method and system for maintaining a secure tunnel in a packet-based communication system
JP4607998B2 (ja) 異なるアドレス空間におけるモバイルIPv6のルート最適化
CN104205896A (zh) 有拓扑不准确的源地址的IPv6数据包的自动隧道传输方法
WO2011032447A1 (fr) Procédé, système et terminal de communication permettant d'implémenter une intercommunication entre un nouveau réseau et internet
JP4909357B2 (ja) イーサネット伝送プロトコルを基礎とするデータパケットを少なくとも1つのモバイル通信ユニットと通信システムとの間において伝送する方法
WO2011032417A1 (fr) Procédé et système de déclenchement d'acheminement de message de communication, d'informations et de données et de configuration de routage
WO2007022683A1 (fr) Procede de communication entre le noeud ipv6 mobile et le partenaire de communication ipv4
WO2011044807A1 (fr) Procédé de communication et d'enregistrement de communication anonyme et système émetteur-récepteur de message de données
CN101188542A (zh) 建立ip隧道的方法及系统及分发ip地址的装置
WO2007036140A1 (fr) Procede d'implementation d'un commutateur de traduction d'adresses de reseau dans un reseau ip mobile
WO2008017253A1 (fr) Procédé, système et appareil d'accès à plusieurs hôtes supportant une ip mixte
CN1870633B (zh) 通过双栈移动IPv6节点支持移动IPv4的方法
TWI235570B (en) IP mobility system and method for NAT/NAPT traversal
WO2007022697A1 (fr) Procede de communication entre un associe de communication ipv6 et le noeud mobile ipv6 ainsi que la passerelle de l'agent associe de communication
KR100850512B1 (ko) 무선 통신의 모바일 IPv6 패킷 전송 방법
JP5225300B2 (ja) プライベートネットワークを介したモバイルipの経路制御方法、モバイルルータ及びプログラム
CN102056287A (zh) 一种基于网络的身份标识与位置分离的实现方法及系统

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06791054

Country of ref document: EP

Kind code of ref document: A1