CN103929504A - Method and system for distributing user addresses in wireless local area network and fixed network interaction - Google Patents
Method and system for distributing user addresses in wireless local area network and fixed network interaction Download PDFInfo
- Publication number
- CN103929504A CN103929504A CN201310012976.6A CN201310012976A CN103929504A CN 103929504 A CN103929504 A CN 103929504A CN 201310012976 A CN201310012976 A CN 201310012976A CN 103929504 A CN103929504 A CN 103929504A
- Authority
- CN
- China
- Prior art keywords
- address
- bng
- request
- distributing
- message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/26—Network addressing or numbering for mobility support
Landscapes
- Engineering & Computer Science (AREA)
- Databases & Information Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a method for distributing user addresses in WLAN and fixed network interaction. The method comprises the steps that after a BNG receives an address request message from UE, the address request message is sent to a corresponding AC, the AC distributes an IP address for the UE, and the BNG is used for feeding the distributed IP address back to the UE. The invention further discloses a system for distributing user addresses in WLAN and fixed network interaction. Through the method and system, user address distribution in WLAN and fixed network interaction can be achieved.
Description
Technical field
The present invention relates to wireless communication technology, relate in particular to the method and system of the mutual middle distributing user of a kind of WLAN (WLAN, Wireless Local Area Networks) and fixed network address.
Background technology
Along with increasingly mature and the universal and user of WLAN (WLAN, Wireless Local Area Networks) the access technology demand to high-speed radio access, domestic and overseas operators is all being greatly developed WLAN business.WLAN access technology, as the shunting means of 2G and 3G, acts on more and more important.
WLAN access technology belongs to the supplementary access way of fixed network access, and how grasp and leading subscriber, by the access situation of WLAN, become the key of carrying out WLAN business effectively in real time.Meanwhile, this will contribute to operator to carry out the network optimization.
WALN network is mainly by subscriber equipment (UE, User Equipment), access node (AP, Access Point,), access controller (AC, Access Controller), wideband network gateway (BNG, Broadband Network Gateway) and AAA server (AAA, Authentication Authorization Accounting) form.Wherein, AP is the bridge that is connected with spider lines and WLAN, and UE accesses outside Internet resources by AP.In prior art, under WLAN and the mutual framework of fixed network, the function of AP, AC and BNG, AAA is cut apart not yet clear and definite, and especially the distributing user address for how, does not also have solution.
Summary of the invention
In view of this, main purpose of the present invention be to provide a kind of WLAN and fixed network mutual in the method and system of distributing user address, can realize at WLAN and fixed network the distribution of station address in alternately.
For achieving the above object, technical scheme of the present invention is achieved in that
The method that the invention provides the mutual middle distributing user of a kind of WLAN and fixed network address, the method comprises:
BNG receives after the address request from UE, described address request is sent to corresponding AC;
Described AC is described UE assignment of the Internet protocol (IP, Internet Protocol) address, and by described BNG, to described UE, returns to the IP address of distribution.
In such scheme, before BNG receives the address request from UE, the method also comprises:
Be attached to after network, between described UE and described AC by the wireless access point control and the configuration protocol (CAPWAP that set up between the accompanying AP of described UE and described AC, Control And Provisioning of Wireless Access Points Protocol) tunnel carries out alternately, completing verification process;
After authentication success, described AC sends described UE authentication success message to described BNG, and described BNG receives after message, preserves the binding relationship of described UE and described AC.
In such scheme, send described UE authentication success message to described BNG before, the method also comprises:
Described AC, according to the positional information of described UE, finds described BNG.
In such scheme, the positional information of described UE is: described AP reports the positional information of described AC; Or be: described AC is according to the configuration relation of self and described AP, the positional information getting.
In such scheme, before described address request is sent to corresponding AC, the method also comprises:
Described BNG, according to the media access control in described address request (MAC, Medium Access Control) address, searches described AC in the binding relationship of preserving at self.
In such scheme, before being described UE distributing IP address, the method also comprises:
Described AC, according to the MAC Address in described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
In such scheme, described AC is described UE distributing IP address, for:
Described AC is described UE distributing IP address according to the positional information of described UE.
In such scheme, for described UE distributes behind IP address, the method also comprises:
Described BNG sends charging request message to AAA, starts charging; Or described AC sends charging request message to described AAA, start charging.
The present invention provides again the method for another kind of WLAN and the mutual middle distributing user of fixed network address, and the method comprises:
AP receives after the address request from UE, described address request is marked, and send to BNG;
Described BNG sends to corresponding AC according to described mark by described address request;
Described AC is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution.
In such scheme, described described address request is marked, for:
The service set (SSID, Service Set Identifier) of selecting according to described UE, marks described address request.
In such scheme, before AP receives the address request from UE, the method also comprises:
Be attached to after network, between described UE and described AC, by the CAPWAP tunnel of setting up between the accompanying AP of described UE and described AC, undertaken alternately, completing verification process.
In such scheme, before being described UE distributing IP address, the method also comprises:
Described AC, according to the MAC Address in described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
In such scheme, described AC is described UE distributing IP address, for:
Described AC, according to the SSID of the positional information of described UE and/or VLAN sign and/or described UE selection, is described UE distributing IP address.
In such scheme, for described UE distributes behind IP address, the method also comprises:
Described BNG sends charging request message to AAA, starts charging; Or described AC sends charging request message to described AAA, start charging.
The present invention also provides the system of a kind of WLAN and the mutual middle distributing user of fixed network address, and this system comprises: UE, BNG and AC; Wherein,
UE, for sending address request to BNG; And receive the IP address of the distribution that AC returns by described BNG;
BNG, for receiving after the address request of UE transmission, sends to corresponding AC by described address request;
AC, for receiving after the address request of BNG transmission, is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution.
In such scheme, described UE, also for attachment to after network, and is undertaken alternately, completing verification process by the CAPWAP tunnel of setting up between self accompanying AP and described AC between described AC;
Described AC, also for after authentication success, sends described UE authentication success message to described BNG;
Described BNG, also, for receiving after the described UE authentication success message of described AC transmission, preserves the binding relationship of described UE and described AC.
In such scheme, send described UE authentication success message to described BNG before, described AC, also, for according to the positional information of described UE, finds described BNG.
In such scheme, before described address request is sent to the AC that described UE is corresponding, described BNG, also, for according to the MAC Address of described address request, searches described AC in the binding relationship of preserving at self.
In such scheme, before being described UE distributing IP address, described AC, also, for according to the MAC Address of described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
In such scheme, this system also comprises: AAA, the charging request message sending for receiving described BNG or described AC;
For described UE distributes behind IP address, described BNG, also for sending charging request message to AAA; Or,
For described UE distributes behind IP address, described AC, also for sending charging request message to AAA.
The present invention provides again the system of another kind of WLAN and the mutual middle distributing user of fixed network address, and this system comprises: UE, AP, BNG and AC; Wherein,
UE, for sending address request to AP; And receive the IP address of the distribution that AC returns by described BNG;
AP, for receiving after the address request of UE transmission, marks described address request, and sends to BNG;
BNG, for receiving after the address request of AP transmission, will send to corresponding AC by described address request according to described mark;
AC, for receiving after the address request of BNG transmission, is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution.
In such scheme, described UE, also for attachment to after network, and is undertaken alternately, completing verification process by the CAPWAP tunnel of setting up between self accompanying AP and described AC between described AC.
In such scheme, before being described UE distributing IP address, described AC, also, for according to the MAC Address of described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
In such scheme, this system also comprises: AAA, the charging request message sending for receiving described BNG;
For described UE distributes behind IP address, described BNG, also for sending charging request message to AAA.
The method and system of distributing user address during WLAN provided by the invention and fixed network are mutual, BNG receives after the address request from UE, described address request is sent to the AC that described UE is corresponding; Described AC is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution; Or AP receives after the address request from described UE, described address request is marked, and send to BNG; Described BNG sends to corresponding AC according to described mark by described address request; Described AC is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution, so, can, under WLAN and the mutual framework of fixed network, effectively realize the distribution of station address.
In addition, be attached to after network, between described UE and described AC, by the CAPWAP tunnel of setting up between the accompanying AP of described UE and described AC, undertaken alternately, complete verification process, so, can, under WLAN and the mutual framework of fixed network, effectively complete verification process.
In addition, for described UE, distributing behind IP address, described BNG sends charging request message to AAA; Or described AC sends charging request message to AAA, thereby trigger charging, so, can, under WLAN and the mutual framework of fixed network, effectively to user, carry out charging control.
Accompanying drawing explanation
Fig. 1 is the method flow schematic diagram of a kind of WLAN of the present invention and the mutual middle distributing user of fixed network address;
Fig. 2 is the method flow schematic diagram of the another kind of WLAN of the present invention and the mutual middle distributing user of fixed network address;
Fig. 3 is the networking scene schematic diagram of embodiment;
Fig. 4 is the method flow schematic diagram that embodiment mono-WLAN and fixed network authenticate in mutual;
Fig. 5 be embodiment bis-WLAN and fixed network mutual in distributing IP address and the method flow schematic diagram that carries out charging;
Fig. 6 be embodiment tri-WLAN and fixed network mutual in distributing IP address and the method flow schematic diagram that carries out charging;
Fig. 7 is the method flow schematic diagram that embodiment tetra-WLAN and fixed network authenticate in mutual;
Fig. 8 be embodiment five WLAN and fixed network mutual in distributing IP address and the method flow schematic diagram that carries out charging;
Fig. 9 is the system configuration schematic diagram of a kind of WLAN of the present invention and the mutual middle distributing user of fixed network address;
Figure 10 is the system configuration schematic diagram of the another kind of WLAN of the present invention and the mutual middle distributing user of fixed network address.
Embodiment
Below in conjunction with drawings and the specific embodiments, the present invention is further described in more detail.
The method of distributing user address during a kind of WLAN of the present invention and fixed network are mutual, as shown in Figure 1, comprises the following steps:
Step 101:BNG receives after the address request from UE, described address request is sent to corresponding AC;
Here, before described address request is sent to corresponding AC, the method can further include:
Described BNG, according to the MAC Address in described address request, searches described AC in the binding relationship of preserving at self.
Before execution step 101, the method can further include:
Be attached to after network, between described UE and described AC, by the CAPWAP tunnel of setting up between the accompanying AP of described UE and described AC, undertaken alternately, completing verification process;
After authentication success, described AC sends described UE authentication success message to described BNG, and described BNG receives after message, preserves the binding relationship of described UE and described AC;
Wherein, in verification process, AP can separate the message for authenticating from described UE with the message field except the message for authenticating from described UE.
Send described UE authentication success message to described BNG before, the method can further include: described AC, according to the positional information of described UE, finds described BNG; Wherein, the positional information of described UE is the positional information that described AP reports described AC; Or described AC is according to the configuration relation of self and described AP, the positional information getting; More specifically, the positional information of described UE refers to: the positional information of described AP.
The MAC Address that described UE authentication success message is at least carried described UE; In the described UE preserving and the binding relationship of described AC, by the MAC Address of described UE, identify described UE.
Step 102: described AC is described UE distributing IP address, and by described BNG, to described UE, return to the IP address of distribution.
Here, described AC is described UE distributing IP address, is specially:
Described AC is described UE distributing IP address according to the positional information of described UE.
Before being described UE distributing IP address, the method can further include:
Described AC, according to the MAC Address in described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
For described UE distributes behind IP address, the method can further include:
Described BNG sends charging request message to AAA, starts charging; Or described AC sends charging request message to described AAA, start charging.
The method of distributing user address during the another kind of WLAN of the present invention and fixed network are mutual, as shown in Figure 2, comprises the following steps:
Step 201:AP receives after the address request from UE, described address request is marked, and send to BNG;
Here, described described address request is marked, is specially:
The SSID selecting according to described UE, marks described address request.
Described mark can be specifically: VLAN sign.
Before execution step 201, the method can further include:
Be attached to after network, between described UE and AC, by the CAPWAP tunnel of setting up between the accompanying AP of described UE and described AC, undertaken alternately, completing verification process;
Wherein, in verification process, described AP can separate the message for authenticating from described UE with the message field except the message for authenticating from described UE.
Step 202: described BNG sends to corresponding AC according to described mark by described address request;
Here, described BNG has configured the mapping table of described mark and AC in advance, particularly, has configured the mapping table of VLAN sign with AC, and described BNG, according to the described mark of configuration and the mapping table of AC, finds corresponding AC.
Step 203: described AC is described UE distributing IP address, and by described BNG, to described UE, return to the IP address of distribution.
Here, described AC is described UE distributing IP address, is specially:
Described AC, according to the SSID of the positional information of described UE and/or VLAN sign and/or described UE selection, is described UE distributing IP address.
Before being described UE distributing IP address, the method can further include:
Described AC, according to the MAC Address in described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
For described UE distributes behind IP address, the method can further include:
Described BNG sends charging request message to AAA, starts charging.
Below in conjunction with embodiment, the present invention is described in further detail again.
As shown in Figure 3, under this scene, UE is 802.1X client to the networking scene of embodiment mono-to embodiment five; UE has access to spider lines by AP, and AP possesses the ability of differentiation 802.11 and 802.1X message; AC is used for managing AP, and issues configuration parameter to AP, and meanwhile, AC serves as 802.1X authenticator and radius client; In addition, AC transmits user's going on line or off line notification message by the interface with BNG to BNG; The transmission of BNG participating user data, and the interface of utilization and AC reports the flow information of UE to AC; AAA is radius server.Wherein, in Fig. 3, solid line represents the transmission trend of signaling flow, that is: signaling flow transmits between AAA, AC, AP, BNG; Dotted line represents the transmission trend of data flow, that is: data flow is transmitted between BNG, AP.
It should be noted that: mutual between the UE describing in embodiment bis-and embodiment tri-and BNG, all the direct forwarding by AP realizes; In embodiment five, describe except the UE of UE to BNG sends address request and other between BNG all mutual, all the direct forwarding by AP realizes.
Embodiment mono-
The application scenarios of the present embodiment is: UE is attached to the process authenticating after network; The method authenticating during the present embodiment WLAN and fixed network are mutual, as shown in Figure 4, comprises the following steps:
Step 401:UE is attached to after network, consults and set up CAPWAP tunnel between AP and AC;
Here, after CAPWAP tunnel is set up, AP is only encapsulated in the 802.1X message from UE and in CAPWAP tunnel, mails to AC, and 802.11 messages from UE are not encapsulated in, does not mail to AC in CAPWAP tunnel; In other words, only the message for authenticating from UE is encapsulated in to CAPWAP tunnel mails to AC to AP.
After CAPWAP tunnel is set up, all messages for authenticating between the UE in subsequent step and AC all send by the CAPWAP tunnel between AP and AC.Particularly, all messages for authenticating that UE sends to AC all send by described CAPWAP tunnel; Accordingly, all messages for authenticating that AC sends to UE also all send by described CAPWAP tunnel.
Step 402:UE sends authentication to AC and starts (EAPoL-Start) message, starts 802.1X authentication access;
Step 403:AC receives after message, to UE, sends identity request (EAP-Identity-Request) message, request UE report of user sign;
Step 404:UE receives after message, to AC, replys identity response (EAP-Identity-Response) message;
Here, described EAP-Identity-Response message comprises user ID.
Step 405:AC receives after message, EAP frame is encapsulated in access request (RADIUS-Access-Request) message, and sends to AAA;
Here, alternatively, AC inserts the MAC Address of UE in RADIUS-Access-Request message.
Step 406:AAA receives after message, to AC, replys access response (RADIUS-Access-Response) message;
Here, described RADIUS-Access-Response message comprises EAP Challenge.
Step 407~408:AC receives after message, and from message, deblocking goes out EAP frame, and sends to UE; UE receives after EAP frame, by EAP frame, to AC, replys;
Here, in the EAP frame of reply, comprise Challenged Password.
Step 409:AC receives after EAP frame, the EAP frame of receiving is encapsulated in RADIUS-Access-Request message, and sends to AAA;
Here, described RADIUS-Access-Request message comprises Challenged Password.
Step 410:AAA receives after message, authenticates, and after authentication success, replys access allow (RADIUS-Access-Accept) message to AC;
Step 411:AC also finds corresponding BNG according to the positional information of UE, to BNG, sends UE authentication success message;
Here, the positional information of described UE is: the positional information that AP reports, or, the positional information that AC obtains according to the configuration relation of self and AP.
The positional information of described UE refers to: the positional information of the AP that UE is accompanying.
Described UE authentication success message is at least carried media access control (MAC, the Medium Access Control) address of UE.
BNG receives after UE authentication success message, preserves the binding relationship of UE and AC; Wherein, particularly, preserve the binding relationship of MAC Address sign with the sign of AC of UE.
Step 412:AC deblocking goes out EAP frame, and sends EAP success (EAP-Success) message to UE.
So far, complete verification process.
Embodiment bis-
The application scenarios of the present embodiment is: after the flow process of embodiment mono-completes, after authentication authorization and accounting success, need to give UE distributing IP address, and carry out charging.The mutual middle distributing IP address of the present embodiment WLAN and fixed network and the method for carrying out charging, as shown in Figure 5, comprise the following steps:
Step 501: after authentication success, UE initiates DHCPv4/v6 address request to BNG;
Here, the MAC Address that described DHCPv4/v6 address request comprises UE.
Step 502:BNG receives after message, according to the MAC Address in described DHCPv4/v6 address request, searches corresponding AC, and described DHCPv4/v6 address request is sent to corresponding AC at self in the binding relationship of preserving;
Here, described binding relationship generates in the verification process of described UE.
While not finding corresponding AC in the binding relationship that BNG preserves at self, can distribute failed message to described UE return address.
Step 503:AC receives after message, distributes corresponding IP address to described UE, and to BNG, return to the IP address of distribution according to the positional information of described UE;
Here, before distributing corresponding IP address according to the positional information of UE to described UE, the method can further include:
AC, according to the MAC Address in DHCPv4/v6 address request, judges that whether described UE is by authentication, after authentication, according to the positional information of described UE, distributes corresponding IP address to described UE.
Wherein, AC has been known the MAC Address of described UE in advance, judge when whether described UE passes through authentication, MAC Address in the MAC Address of the described UE that self is known and DHCPv4/v6 address request compares, the two is identical, think that described UE is by authentication, otherwise, think that described UE is not by authentication.
AC thinks that described UE, not by after authentication, can not be described UE distributing IP address, corresponding, by BNG, to described UE, returns to distribution failure.
Here, when distributing IP address, AP reports the positional information of UE to AC, or AC, according to the configuration relation of self and AP, gets the positional information of described UE.
Step 504:BNG receives behind the IP address of distribution, returns to the IP address of distribution to described UE;
Step 505:BNG sends charging request message to AAA;
Here, in described charging request message, carry user profile, wherein, described user profile can be specifically IP address and/or user ID and/or the MAC Address of UE.
When practical application, also can first perform step 505, then perform step 604, also can perform step simultaneously 504 with step 505, in other words, the execution of step 504 and step 505 does not have sequencing.
Step 506:AAA receives after charging request message, to BNG, replys charge response message.
Here, AAA replys after charge response message to BNG, shows that charging starts.
Embodiment tri-
The application scenarios of the present embodiment is: after the flow process of embodiment mono-completes, after authentication authorization and accounting success, need to give UE distributing IP address, and carry out charging.The mutual middle distributing IP address of the present embodiment WLAN and fixed network and the method for carrying out charging, as shown in Figure 6, comprise the following steps:
Step 601: after authentication success, UE initiates DHCPv4/v6 address request to BNG;
Here, the MAC Address that described DHCPv4/v6 address request comprises UE.
Step 602:BNG receives after message, according to the MAC Address in described DHCPv4/v6 address request, searches corresponding AC, and described DHCPv4/v6 address request is sent to corresponding AC at self in the binding relationship of preserving;
Here, described binding relationship generates in the verification process of described UE.
While not finding corresponding AC in the binding relationship that BNG preserves at self, can distribute failed message to described UE return address.
Step 603:AC receives after message, distributes corresponding IP address to described UE, and to BNG, return to the IP address of distribution according to the positional information of described UE;
Before distributing corresponding IP address according to the positional information of UE to described UE, the method can further include:
AC, according to the MAC Address in DHCPv4/v6 address request, judges that whether described UE is by authentication, after authentication, according to the positional information of described UE, distributes corresponding IP address to described UE.
Wherein, AC has been known the MAC Address of described UE in advance, judge when whether described UE passes through authentication, MAC Address in the MAC Address of the described UE that self is known and DHCPv4/v6 address request compares, the two is identical, think that described UE is by authentication, otherwise, think that described UE is not by authentication.
AC thinks that described UE, not by after authentication, can not be described UE distributing IP address, corresponding, by BNG, to described UE, returns to distribution failure.
Step 604:BNG receives behind the IP address of distribution, returns to the IP address of distribution to described UE;
Step 605:AC sends charging request message to AAA;
Here, in described charging request message, carry user profile, wherein, described user profile can be specifically IP address and/or user ID and/or the MAC Address of UE.
When practical application, also can first perform step 605, then perform step 603, also can perform step simultaneously 603 with step 605, in other words, the execution of step 603 and step 605 does not have sequencing.
Step 606:AAA receives after charging request message, to AC, replys charge response message.
Here, AAA replys after charge response message to AC, shows that charging starts.
Embodiment tetra-
The application scenarios of the present embodiment is: UE is attached to the process authenticating after network; The method authenticating during the present embodiment WLAN and fixed network are mutual, as shown in Figure 7, comprises the following steps:
Step 701:UE is attached to after network, consults and set up CAPWAP tunnel between AP and AC;
Here, after CAPWAP tunnel is set up, AP is only encapsulated in the 802.1X message from UE and in CAPWAP tunnel, mails to AC, and 802.11 messages from UE are not encapsulated in, does not mail to AC in CAPWAP tunnel; In other words, only the message for authenticating from UE is encapsulated in to CAPWAP tunnel mails to AC to AP.
After CAPWAP tunnel is set up, all messages for authenticating between the UE in subsequent step and AC all send by the CAPWAP tunnel between AP and AC.Particularly, all messages for authenticating that UE sends to AC all send by described CAPWAP tunnel; Accordingly, all messages for authenticating that AC sends to UE also all send by described CAPWAP tunnel.
Step 702:UE sends EAPoL-Start message to AC, starts 802.1X authentication access;
Step 703:AC receives after message, to UE, sends EAP-Identity-Request message, request UE report of user sign;
Step 704:UE receives after message, to AC, replys EAP-Identity-Response message;
Here, described EAP-Identity-Response message comprises user ID.
Step 705:AC receives after message, EAP frame is encapsulated in RADIUS-Access-Request message, and sends to AAA;
Here, alternatively, AC inserts the MAC Address of UE in RADIUS-Access-Request message.
Step 706:AAA receives after message, to AC, replys RADIUS-Access-Response message;
Here, described RADIUS-Access-Response message comprises EAP Challenge.
Step 707~708:AC receives after message, and from message, deblocking goes out EAP frame, and sends to UE; UE receives after EAP frame, by EAP frame, to AC, replys;
Here, in the EAP frame of reply, comprise Challenged Password.
Step 709:AC receives after EAP frame, the EAP frame of receiving is encapsulated in RADIUS-Access-Request message, and sends to AAA;
Here, described RADIUS-Access-Request message comprises Challenged Password.
Step 710:AAA receives after message, authenticates, and after authentication success, to AC, replys RADIUS-Access-Accept message;
Step 711:AC deblocking goes out EAP frame, and sends EAP-Success message to UE.
So far, complete verification process.
Embodiment five
After the flow process of embodiment tetra-completes, after authentication authorization and accounting success, need to give UE distributing IP address, and carry out charging.The mutual middle distributing IP address of the present embodiment WLAN and fixed network and the method for carrying out charging, as shown in Figure 8, comprise the following steps:
Step 801: after authentication success, UE initiates DHCPv4/v6 address request to AP;
Step 802:AP receives after message, the DHCPv4/v6 address request of receiving is marked, and send to BNG;
Here, described the DHCPv4/v6 address request of receiving is marked, is specially:
The SSID that AP selects according to UE, stamps corresponding mark.Wherein, AP can know according to the interface that receives described DHCPv4/v6 address request the SSID that UE selects.
Described mark can be VLAN sign.
Step 803:BNG receives after message, according to described mark, searches corresponding AC, and send described DHCPv4/v6 address request to corresponding AC at self in the mapping table of preserving;
Here, the mapping table of the upper prior configuration flag of BNG and AC, particularly, has configured the mapping table of VLAN sign with AC.
Step 804:AC receives after message, distributes corresponding IP address to described UE, and to BNG, returns to the IP address of distribution;
Particularly, AC, according to the SSID of the positional information of described UE and/or VLAN sign and/or described UE selection, distributes corresponding IP address to described UE.Wherein, AC can utilize prior art to know the SSID that described UE selects.
Before distributing corresponding IP address to described UE, the method can further include:
AC, according to the MAC Address in DHCPv4/v6 address request, judges that whether described UE is by authentication, after authentication, according to the positional information of described UE, distributes corresponding IP address to described UE.
Step 805:BNG receives behind the IP address of distribution, returns to the IP address of distribution to described UE;
Step 806:BNG sends charging request message to AAA;
Here, in described charging request message, carry user profile, wherein, described user profile can be specifically IP address and/or user ID and/or the MAC Address of UE.
When practical application, also can first perform step 806, then perform step 805, also can perform step simultaneously 805 with step 806, in other words, the execution of step 805 and step 806 does not have sequencing.
Step 807:AAA receives after charging request message, to BNG, replys charge response message.
Here, AAA replys after charge response message to BNG, shows that charging starts.
For realizing the method shown in Fig. 1, the present invention also provides the system of a kind of WLAN and the mutual middle distributing user of fixed network address, and as shown in Figure 9, this system comprises: UE 91, BNG 92 and AC 93; Wherein,
UE 91, for sending address request to BNG 92; And receive the IP address of the distribution that AC 93 returns by described BNG 92;
BNG 92, for receiving after the address request of UE 91 transmissions, described address request sent to corresponding AC 93;
AC 93, for receiving after the address request of BNG 92 transmissions, are described UE 91 distributing IP addresses, and by described BNG 92, to described UE 91, return to the IP address of distribution.
Wherein, before described address request is sent to the AC 93 of described UE 91 correspondences, described BNG 92, also, for according to the MAC Address of described address request, searches described AC 93 in the binding relationship of preserving at self.
Described UE 91, also for attachment to after network, and is undertaken alternately, completing verification process by the CAPWAP tunnel of setting up between self accompanying AP and described AC 93 between described AC 93;
Described AC 93, also for after authentication success, sends described UE 91 authentication success message to described BNG 92;
Described BNG 92, also, for receiving after the described UE 91 authentication success message of described AC 93 transmissions, preserves the binding relationship of described UE 91 and described AC 93.
Before sending described UE 91 authentication success message to described BNG 92, described AC 93, also, for according to the positional information of described UE 91, finds described BNG 92.
Before being described UE 91 distributing IP addresses, described AC 93, also, for according to the MAC Address of described address request, judges that described UE 91, whether by authentication, after authentication, is described UE 91 distributing IP addresses.
This system can further include: AAA, the charging request message sending for receiving described BNG 92 or described AC 93;
For described UE 91 distributes behind IP address, described BNG 92, also for sending charging request message to AAA; Or,
For described UE 91 distributes behind IP address, described AC 93, also for sending charging request message to AAA.
For realizing the method described in Fig. 2, the present invention also provide a kind of WLAN and fixed network mutual in the system of distributing user address, as shown in figure 10, this system comprises: UE 101, AP 102, BNG 103 and AC 104; Wherein,
UE 101, for sending address request to AP 102; And receive the IP address of the distribution that AC 104 returns by described BNG 103;
AP 102, for receiving after the address request of UE 101 transmissions, described address request is marked, and send to BNG 103;
BNG 103, for receiving after the address request of AP 102 transmissions, will described address request be sent to corresponding AC 104 according to described mark;
AC 104, for receiving after the address request of BNG 103 transmissions, are described UE 101 distributing IP addresses, and by described BNG 103, to described UE 101, return to the IP address of distribution.
Wherein, described UE 101, also for attachment to after network, and is undertaken alternately, completing verification process by the CAPWAP tunnel of setting up between self accompanying AP 102 and described AC104 between described AC 104.
Before being described UE 101 distributing IP addresses, described AC 104, also, for according to the MAC Address of described address request, judges that described UE 101, whether by authentication, after authentication, is described UE 101 distributing IP addresses.
This system can further include: AAA, the charging request message sending for receiving described BNG 103;
For described UE 101 distributes behind IP address, described BNG 103, also for sending charging request message to AAA.
The above, be only preferred embodiment of the present invention, is not intended to limit protection scope of the present invention.
Claims (24)
1. a method for the mutual middle distributing user of WLAN (WLAN) and fixed network address, is characterized in that, the method comprises:
Wideband network gateway (BNG) is received after the address request from subscriber equipment (UE), and described address request is sent to corresponding access controller (AC);
Described AC is described UE assignment of the Internet protocol (IP) address, and by described BNG, to described UE, returns to the IP address of distribution.
2. method according to claim 1, is characterized in that, before BNG receives the address request from UE, the method also comprises:
Be attached to after network, between described UE and described AC, by wireless access point control and configuration protocol (CAPWAP) tunnel of setting up between the accompanying access node of described UE (AP) and described AC, undertaken alternately, completing verification process;
After authentication success, described AC sends described UE authentication success message to described BNG, and described BNG receives after message, preserves the binding relationship of described UE and described AC.
3. method according to claim 2, is characterized in that, send described UE authentication success message to described BNG before, the method also comprises:
Described AC, according to the positional information of described UE, finds described BNG.
4. method according to claim 3, is characterized in that, the positional information of described UE is: described AP reports the positional information of described AC; Or be: described AC is according to the configuration relation of self and described AP, the positional information getting.
5. according to the method described in claim 1 to 4 any one, it is characterized in that, before described address request is sent to corresponding AC, the method also comprises:
Described BNG, according to media access control (MAC) address in described address request, searches described AC in the binding relationship of preserving at self.
6. according to the method described in claim 1 to 4 any one, it is characterized in that, before being described UE distributing IP address, the method also comprises:
Described AC, according to the MAC Address in described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
7. according to the method described in claim 1 to 4 any one, it is characterized in that, described AC is described UE distributing IP address, for:
Described AC is described UE distributing IP address according to the positional information of described UE.
8. according to the method described in claim 1 to 4 any one, it is characterized in that, for described UE distributes behind IP address, the method also comprises:
Described BNG sends charging request message to AAA server (AAA), starts charging; Or described AC sends charging request message to described AAA, start charging.
9. a method for the mutual middle distributing user of WLAN and fixed network address, is characterized in that, the method comprises:
AP receives after the address request from UE, described address request is marked, and send to BNG;
Described BNG sends to corresponding AC according to described mark by described address request;
Described AC is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution.
10. method according to claim 9, is characterized in that, described described address request is marked, for:
The service set (SSID) of selecting according to described UE, marks described address request.
11. methods according to claim 10, is characterized in that, before AP receives the address request from UE, the method also comprises:
Be attached to after network, between described UE and described AC, by the CAPWAP tunnel of setting up between the accompanying AP of described UE and described AC, undertaken alternately, completing verification process.
12. according to the method described in claim 9,10 or 11, it is characterized in that, before being described UE distributing IP address, the method also comprises:
Described AC, according to the MAC Address in described address request, judges that described UE, whether by authentication, after authentication, is described UE distributing IP address.
13. according to the method described in claim 9,10 or 11, it is characterized in that, described AC is described UE distributing IP address, for:
Described AC, according to the SSID of the positional information of described UE and/or VLAN sign and/or described UE selection, is described UE distributing IP address.
14. according to the method described in claim 9,10 or 11, it is characterized in that, for described UE distributes behind IP address, the method also comprises:
Described BNG sends charging request message to AAA, starts charging; Or described AC sends charging request message to described AAA, start charging.
During 15. 1 kinds of WLAN and fixed network are mutual, the system of distributing user address, is characterized in that, this system comprises: UE, BNG and AC; Wherein,
UE, for sending address request to BNG; And receive the IP address of the distribution that AC returns by described BNG;
BNG, for receiving after the address request of UE transmission, sends to corresponding AC by described address request;
AC, for receiving after the address request of BNG transmission, is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution.
16. systems according to claim 15, is characterized in that,
Described UE, also for attachment to after network, and is undertaken alternately, completing verification process by the CAPWAP tunnel of setting up between self accompanying AP and described AC between described AC;
Described AC, also for after authentication success, sends described UE authentication success message to described BNG;
Described BNG, also, for receiving after the described UE authentication success message of described AC transmission, preserves the binding relationship of described UE and described AC.
17. systems according to claim 16, is characterized in that, send described UE authentication success message to described BNG before, described AC, also, for according to the positional information of described UE, finds described BNG.
18. according to the system described in claim 15,16 or 17, it is characterized in that, before described address request is sent to the AC that described UE is corresponding, described BNG, also, for according to the MAC Address of described address request, in the binding relationship of preserving at self, search described AC.
19. according to the system described in claim 15,16 or 17, it is characterized in that, before being described UE distributing IP address, described AC, also, for according to the MAC Address of described address request, judges that whether described UE is by authentication, after authentication, it is described UE distributing IP address.
20. according to the system described in claim 15,16 or 17, it is characterized in that, this system also comprises: AAA, the charging request message sending for receiving described BNG or described AC;
For described UE distributes behind IP address, described BNG, also for sending charging request message to AAA; Or,
For described UE distributes behind IP address, described AC, also for sending charging request message to AAA.
During 21. 1 kinds of WLAN and fixed network are mutual, the system of distributing user address, is characterized in that, this system comprises: UE, AP, BNG and AC; Wherein,
UE, for sending address request to AP; And receive the IP address of the distribution that AC returns by described BNG;
AP, for receiving after the address request of UE transmission, marks described address request, and sends to BNG;
BNG, for receiving after the address request of AP transmission, will send to corresponding AC by described address request according to described mark;
AC, for receiving after the address request of BNG transmission, is described UE distributing IP address, and by described BNG, to described UE, returns to the IP address of distribution.
22. systems according to claim 21, is characterized in that,
Described UE, also for attachment to after network, and is undertaken alternately, completing verification process by the CAPWAP tunnel of setting up between self accompanying AP and described AC between described AC.
23. according to the system described in claim 21 or 22, it is characterized in that, before being described UE distributing IP address, described AC, also, for according to the MAC Address of described address request, judges that whether described UE is by authentication, after authentication, it is described UE distributing IP address.
24. according to the system described in claim 21 or 22, it is characterized in that, this system also comprises: AAA, the charging request message sending for receiving described BNG;
For described UE distributes behind IP address, described BNG, also for sending charging request message to AAA.
Priority Applications (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310012976.6A CN103929504A (en) | 2013-01-14 | 2013-01-14 | Method and system for distributing user addresses in wireless local area network and fixed network interaction |
PCT/CN2013/083254 WO2014107969A1 (en) | 2013-01-14 | 2013-09-10 | Method and system for user address allocation in wireless local area network/fixed network interaction |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310012976.6A CN103929504A (en) | 2013-01-14 | 2013-01-14 | Method and system for distributing user addresses in wireless local area network and fixed network interaction |
Publications (1)
Publication Number | Publication Date |
---|---|
CN103929504A true CN103929504A (en) | 2014-07-16 |
Family
ID=51147576
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310012976.6A Pending CN103929504A (en) | 2013-01-14 | 2013-01-14 | Method and system for distributing user addresses in wireless local area network and fixed network interaction |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN103929504A (en) |
WO (1) | WO2014107969A1 (en) |
Cited By (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106559833A (en) * | 2015-09-24 | 2017-04-05 | ***通信集团公司 | A kind of data transmission method, terminal, WAP and system |
CN107113306A (en) * | 2014-12-31 | 2017-08-29 | 班德韦斯克公司 | System and method for controlling the access to wireless service |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP3454520B1 (en) | 2017-09-12 | 2020-11-04 | Cisco Technology, Inc. | Virtual private networks without software requirements |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110173678A1 (en) * | 2008-02-13 | 2011-07-14 | Futurewei Technologies, Inc. | User and Device Authentication in Broadband Networks |
CN102638470A (en) * | 2012-04-20 | 2012-08-15 | 姜宁 | WIFI (wireless fidelity) internet surfing filtering method |
CN102724662A (en) * | 2012-06-05 | 2012-10-10 | 中国联合网络通信集团有限公司 | Method and device for providing differentiated services in broadband wireless network |
-
2013
- 2013-01-14 CN CN201310012976.6A patent/CN103929504A/en active Pending
- 2013-09-10 WO PCT/CN2013/083254 patent/WO2014107969A1/en active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110173678A1 (en) * | 2008-02-13 | 2011-07-14 | Futurewei Technologies, Inc. | User and Device Authentication in Broadband Networks |
CN102638470A (en) * | 2012-04-20 | 2012-08-15 | 姜宁 | WIFI (wireless fidelity) internet surfing filtering method |
CN102724662A (en) * | 2012-06-05 | 2012-10-10 | 中国联合网络通信集团有限公司 | Method and device for providing differentiated services in broadband wireless network |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107113306A (en) * | 2014-12-31 | 2017-08-29 | 班德韦斯克公司 | System and method for controlling the access to wireless service |
CN106559833A (en) * | 2015-09-24 | 2017-04-05 | ***通信集团公司 | A kind of data transmission method, terminal, WAP and system |
CN106559833B (en) * | 2015-09-24 | 2019-10-22 | ***通信集团公司 | A kind of data transmission method, terminal, wireless access point and system |
Also Published As
Publication number | Publication date |
---|---|
WO2014107969A1 (en) | 2014-07-17 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10313323B2 (en) | User equipment identity valid for heterogeneous networks | |
US20100048161A1 (en) | Method, system and apparatuses thereof for realizing emergency communication service | |
WO2015127852A1 (en) | Method and apparatus for establishing wireless local area network tunnel and access network system | |
CN103597779A (en) | Method and apparatus for providing network access to a user entity | |
WO2013107136A1 (en) | Terminal access authentication method and customer premise equipment | |
CN102695236B (en) | A kind of data routing method and system | |
US20130267203A1 (en) | Sending plmn id at a shared wifi access | |
KR20080086127A (en) | A method and apparatus of security and authentication for mobile telecommunication system | |
EP2346275A1 (en) | Communication system, connection control device, mobile terminal, base station control method, service request method, and program | |
CN103384365B (en) | A kind of method for network access, method for processing business, system and equipment | |
CN101959177A (en) | Processing method and device for switching to WiFi network from non-WiFi network | |
CN103428800A (en) | Route selection method and functional network element | |
CN103929504A (en) | Method and system for distributing user addresses in wireless local area network and fixed network interaction | |
WO2018054272A1 (en) | Data transmission method and device, and computer storage medium | |
CN103974223B (en) | Wireless LAN interacted with fixed network in realize certification and charging method and system | |
ES2391993T3 (en) | Assignment of a service flow identifier to a host behind an MS gateway | |
CN103024738A (en) | Seaming service shunt control implementation method and system | |
US20110107403A1 (en) | Communication system, server apparatus, information communication method, and program | |
CN102781093B (en) | The Notification Method and system of a kind of user profile | |
CN103415044A (en) | Method for 3GPP user obtaining QoS signing in WLAN | |
CN102685667A (en) | Method, device and system for transmitting and acquiring position information of access user | |
US20150092786A1 (en) | Session establishment method and apparatus | |
CN101330528B (en) | Mobile IP network optimization system and implementing method thereof | |
CN102413452B (en) | A kind of method and system obtaining ID | |
CN103929726B (en) | Wireless LAN accesses control correlation technique and system in interacting with fixed network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WD01 | Invention patent application deemed withdrawn after publication | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20140716 |