WO2010108321A1 - Method, apparatus and system for providing route service for a customer edge device router - Google Patents

Method, apparatus and system for providing route service for a customer edge device router Download PDF

Info

Publication number
WO2010108321A1
WO2010108321A1 PCT/CN2009/071014 CN2009071014W WO2010108321A1 WO 2010108321 A1 WO2010108321 A1 WO 2010108321A1 CN 2009071014 W CN2009071014 W CN 2009071014W WO 2010108321 A1 WO2010108321 A1 WO 2010108321A1
Authority
WO
WIPO (PCT)
Prior art keywords
router
vrf
access
access device
routing
Prior art date
Application number
PCT/CN2009/071014
Other languages
French (fr)
Chinese (zh)
Inventor
罗鹏
Original Assignee
华为技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 华为技术有限公司 filed Critical 华为技术有限公司
Priority to CN200980159438.1A priority Critical patent/CN102362467B/en
Priority to PCT/CN2009/071014 priority patent/WO2010108321A1/en
Publication of WO2010108321A1 publication Critical patent/WO2010108321A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/20Selecting an access point

Definitions

  • the present invention relates to communication technologies, and in particular, to a method, device and system for providing a routing service. Background technique
  • wireless routers With the wide application of wireless communication technologies, routers supporting wireless access have emerged in the industry, referred to as wireless routers, and wireless access technologies are used in the uplink direction.
  • the wireless router can be regarded as a CE Router (Customer Edge Router).
  • the GGSN (Gateway GPRS Support Node) uses the wireless router as an MS (Mobile Station) to route hosts in the station to which the wireless router is connected. Summary of the invention
  • the main technical problem to be solved by the embodiments of the present invention is to provide a method, device and system for providing a routing service, so that an accurate route can be provided for a host in a site connected to a user edge router.
  • an embodiment of the present invention provides a method for providing a routing service, including: determining whether an access device is a user edge device router CE Router, and the CE Router uplink supports wireless access; When it is a CE Router, it provides routes for the site corresponding to the CE Router.
  • the embodiment of the present invention further provides a device for providing a routing service, including: a first unit, configured to determine whether an access device is a user edge device router CE Router, the CE Router uplink supports wireless access; and a second unit And when the first unit determines that the access device is a CE router, providing a routing service for the site corresponding to the CE router.
  • a device for providing a routing service including: a first unit, configured to determine whether an access device is a user edge device router CE Router, the CE Router uplink supports wireless access; and a second unit And when the first unit determines that the access device is a CE router, providing a routing service for the site corresponding to the CE router.
  • the embodiment of the present invention further provides a system for providing a routing service, including: the device that provides the routing service, and the CE router that communicates with the device, where the CE Router supports wireless access.
  • the PE router determines whether the access device is a CE Router, and if so, provides a routing service for the corresponding site. In this way, the problem that only the wireless router can be accessed as a normal MS in the prior art is solved.
  • FIG. 1 is a schematic diagram of a network structure of a solution in the prior art
  • FIG. 2 is a network structure diagram provided by an embodiment of the present invention.
  • FIG. 3 is a flowchart of a method according to an embodiment of the present invention.
  • FIG. 5 is a flowchart of another method according to an embodiment of the present invention.
  • FIG. 6 is a schematic structural diagram of a device according to an embodiment of the present invention. detailed description
  • 3G router 3G Router
  • ADSL Asymmetric Digital Subscriber Line
  • the radio access technology is used in the uplink direction, for example, GPRS (General Packet Radio Service) / UMTS ( Universal Mobile Telecommunications System, /HSPA (High-Speed Packet Access) technology.
  • GPRS General Packet Radio Service
  • UMTS Universal Mobile Telecommunications System
  • HSPA High-Speed Packet Access
  • FIG. 1 it is a schematic structural diagram of a prior art solution, where a 3G router corresponds to one site, and the corresponding network segment of the site is 10.111.1.0/24, and multiple hosts are connected in the network segment (for example, The IP addresses are 10.111.1.1, 10.111.1.2 and 10.111.1.3).
  • the GGSN treats the 3G Router as a normal MS and assigns it an MS IP Address (for example, 200.131.69.83).
  • the 3G router can provide Internet services for hosts in the site through the IP address.
  • the GGSN since the GGSN only knows the IP address of the node (3G Router) and does not have the routing information of the 10.111.1.0/24 network segment, it cannot send the headquarters. The packet is correctly routed to the host under the node. Therefore, the 3G Router cannot be used as the CE Router to access the VPN (Virtual Private Network).
  • the GGSN cannot provide VPN routes for the node.
  • the embodiment of the present invention provides the following solutions.
  • the embodiments of the present invention are applicable to UMTS, WIFI (Wireless Fidelity), WIMAX (Worldwide Interoperability for Microwave Access), HSPA, LTE (long time evolution, long term evolution, etc.) system.
  • WIFI Wireless Fidelity
  • WIMAX Worldwide Interoperability for Microwave Access
  • HSPA High Speed Packet Access
  • LTE Long time evolution, long term evolution, etc.
  • a wireless router (such as a 3G router) can serve as a CE router, and the CE Router belongs to a part of the user network, and interfaces with a PE (Provider Edge, Service Provider Edge Router).
  • the GGSN on the core network side can act as a PE Router, and the PE router belongs to a part of the service provider network connected to the CE router.
  • the CE Router and the PE Router can access the VPN (Virtual Private Network) at the same time.
  • the wireless router that can be used as the CE Router is not limited to the 3G Router.
  • the network device that can be used as the PE router is not limited to the GGSN.
  • it may be a PDSN (Packet Data Serving Node), an ASN GW (Access Service Network Gateway), a PDN. GW (Public Data Network Gateway), Serving GW (Serving Gateway), etc.
  • 3G Routers may be connected to multiple sites (or networks). These sites may be SMEs (Small and medium enterprises) or a network of multiple individual users. Each site has a corresponding network segment.
  • the hosts in the site can be PC (Personal Computer), lapto laptop, MS (Mobile Station), Router Router, PDA (Personal Digital Assistant., Pocket PC). , Workstation workstations, Server servers and other terminal devices that support the TCP/IP protocol.
  • the CE router is a 3G router
  • the PE router is a GGSN
  • the host is a PC.
  • the description is not limited to this.
  • a method for providing a routing service including the following steps: Step A: determining whether the access device is a user edge device router CE Router, and the CE Router uplink supports wireless access; Step B: when determining access When the device is a CE Router, it provides routes for the sites corresponding to the CE Router.
  • the technical solution provided by the embodiment of the present invention provides a method for identifying whether the access device is a CE.
  • the mechanism of the router can be used to provide a route for the corresponding site when the access device is a CE router. This solves the problem that the wireless router cannot access the VPN as a CE in the prior art.
  • the CE router is a 3G router
  • the PE router is a GGSN
  • the host is a PC.
  • FIG. 2 is a schematic diagram of a network structure provided by an embodiment of the present invention
  • FIG. 3 is a schematic flowchart of a method for providing a routing service according to an embodiment of the present invention.
  • Step 301 The GGSN determines whether the access device is a 3G router or a normal access terminal. If it is a 3G router, go to step 302. If it is a normal MS, go to step 305.
  • the method for determining may be: The GGSN determines that the access device is 3G according to the identifier of the access device.
  • the Router is also an ordinary access terminal.
  • the foregoing judgment may be implemented in the process of the 3G Router applying to the GGSN to activate the PDP Context.
  • the basis for the judgment may be the type of the access device (which can be understood as a terminal), and the type of the access device may be mapped to the identifier of the access device, such as IMEI (International Mobile Station Equipment Identity), IMSI (IMSI) International Mobile Subscriber Identity, International Mobile Subscriber Identity). Therefore, the GGSN can judge (or determine/identify) the access device as a 3G Router or an ordinary access terminal according to the identifier of the access device.
  • IMEI International Mobile Station Equipment Identity
  • IMSI International Mobile Subscriber Identity
  • whether the access device is a 3G router information (which can be represented by a mapping relationship between the identifier and the device) can be saved in an external server or configured locally in the GGSN.
  • Figure 2 shows the above two implementations: First, the local configuration mode: The mapping relationship between the IMSI and the 3G Router is saved in the GGSN. In this way, the GGSN can find (or check) the saved mapping relationship after learning the IMSI of the current access device to determine whether the access device corresponding to the IMSI is a 3G Router. Second, the way the mapping relationship is saved on the external server: The mapping between the IMSI and the 3G Router is stored in the external server.
  • the external server can be: Radius (Remote Authentication Dial-In User Service), PCRF (Policy Control and Charging Rules Function) Control and charging rules function nodes) and so on.
  • Radius Remote Authentication Dial-In User Service
  • PCRF Policy Control and Charging Rules Function
  • Control and charging rules function nodes and so on.
  • the mapping relationship may be searched (or checked) in a manner of accessing the external server, and matched with the IMSI of the current access device to determine.
  • the operator may assign a special identification number segment (such as an IMSI number segment) to the 3G router, or may allocate discrete
  • the identification number is given to the 3G Router and the normal MS, which is not limited by the solution of the embodiment of the present invention.
  • the GGSN may also determine whether the access device is a 3G Router by using an access point name (Access Point Name) that the access device requests to access.
  • access point Name access point Name
  • the mapping relationship between the APN and the 3G Router can also be used in the local configuration of the GGSN or the external server, and will not be described in detail.
  • the VRF attribute information of the corresponding site Site can be obtained.
  • the VRF attribute information can be configured locally in advance or from an external server (which can be understood as a user database, such as a Profile Server).
  • the above attribute information may include: VRF name, RT (Route Target), RD (Route Distinguishes).
  • the RD is used to identify a VRF.
  • the RT can also be called a VPN target attribute. It is mainly used to implement communication between different VRFs. For example, it defines which sites a VPN route can receive, and which sites the PE can receive. The route sent. For example, the subsidiary A and the subsidiary B, A and B of the parent company are different (that is, the VRF is different), but the RT is the same, then the other party's route is imported into each other.
  • Step 302 The GGSN generates a VRF for the site corresponding to the 3G router.
  • the GGSN may generate a VRF for the corresponding site of the 3G Router according to the obtained VRF attribute information.
  • VRF VPN Routing/Forwarding instance
  • a VRF is an abbreviation of VPN routing and forwarding instance. It is usually only found on the PE Router. The routing of each site under the same VPN is controlled by VRF. For each site, there is usually a corresponding VRF.
  • a VRF is defined VPN membership of the customer site connected to the PE router.
  • a VPN is a virtual private network, which can help remote users, company branches, business partners and suppliers establish a trusted and secure connection with the company's intranet and ensure data. Safe transmission.
  • a VRF data can include an IP routing table, a derived Cisco Express Forwarding (CEF) table, a set of interfaces that use forwarding tables, a set of rules that control information in the routing table, and routing protocol parameters.
  • CEF Cisco Express Forwarding
  • the GGSN can maintain multiple VRFs. Each VRF can be relatively independent. Different VRFs can be distinguished by VRF RD. A site with the same VRF RD can form a VPN. Different VPNs can communicate or be isolated. In addition, the GGSNs that process different sites may be the same GGSN or may belong to different GGSNs.
  • the corresponding VRF A is generated for the site Site A-1.
  • a VRF can correspond to multiple 3G Router sites.
  • the processing result can be: Sites Site A-1, A-2, and A-3 use the same VRF A to form a VPN A, and Sites Site B-1 and B-2 use the same VRF B to form a common A VPN B.
  • Step 303 The GGSN generates a route of the VRF by using a routing protocol.
  • the GGSN obtains routing information of the 3G Router through a static route or a dynamic routing protocol.
  • the VRF can be understood as a data structure that points to the routing table.
  • the routing information obtained by the GGSN can be configured into the generated VRF, whether through a static route or a dynamic routing protocol.
  • the GGSN configures the routing information of the obtained 3G router to the VRF generated for the corresponding site, that is, the route of the VRF is generated (the route can be periodically updated or falsified).
  • the GGSN and the 3G router can run a static routing protocol and/or a dynamic routing protocol, and the routing information is exchanged by using the routing protocol.
  • the routing information of the 3G router can be obtained from the perspective of the GGSN.
  • the routing information can include 3G.
  • Network information of the site corresponding to the router such as IP address, network mask, next hop address, and hop count.
  • a site corresponding to a 3G router may have one or more network segments. There are multiple IP addresses under one network segment, and one IP address may correspond to one host.
  • the static route is a fixed routing table set in the router.
  • the static route does not change unless the network administrator intervenes.
  • the GGSN can obtain routing information under the corresponding site of the 3G Router through local configuration or an external server, as described above, externally.
  • the server can be a Radius Server, a PCRF, or the like.
  • the network planning that is, the IP address segment
  • Dynamic routing is the process of routing routing information between routers in a network and updating the router table with the received routing information.
  • the GGSN exchanges routing information with the 3G router to update the routing table according to the latest routing information.
  • the dynamic routing protocol can be OSPF (Open Shortest Path First), RIP (Routing Information Protocol), and BGP (Border Gateway Protocol).
  • Step 304 The GGSN provides a routing service for the site corresponding to the 3G router according to the generated route of the VRF.
  • the routing service is a VPN service as an example.
  • the GGSN can be used as a PE router to access the MPLS (Multiprotocol Label Switching) VPN network, and provide MPLS VPN services to the sites (including hosts in the site) of the 3G router, that is, 3G.
  • the site corresponding to the Router forwards the service data.
  • the MPLS VPN is only one type of VPN.
  • the technical solution provided by the embodiment of the present invention is also applicable to the PPTP point-to-point tunneling protocol, the L2F Layer 2 forwarding protocol, the L2TP Layer 2 tunneling protocol, and the GRE (Generic). Routing Encapsulation, Generic Routing Encapsulation Protocol, and VPNs such as IPSec IP Security.
  • Step 305 The GGSN processes the normal access terminal according to an existing process.
  • the GGSN allocates one to the MS.
  • IP Address correspondingly, there is only an absolute route (PDP Context) to the address on the GGSN. Since it is an existing technology, it will not be described again.
  • the technical solution provided by the embodiment of the present invention determines the type of the access device by the PE router. If the access device is a CE router, the routing information is exchanged according to the obtained routing information. The site provides routing.
  • the technical solution provided by the embodiment of the present invention is to use the 3G router as the CE router as a gateway, and the PE router can learn the routing information of the CE router, so that the 3G router can be used as a CE to access the VPN. Therefore, it is possible to support the use of VPN services by connecting multiple networks (such as enterprise networks) or connecting multiple user equipments (mobile devices or fixed devices) under the CE Router, which provides an implementation possibility for the extension of the carrier service. For example, provide some value-added VPN features for SMB customers.
  • the CE router is a 3G router
  • the PE router is a GGSN
  • the host is a PC.
  • Figs. 4 and 5 is a network structure diagram of an embodiment of the present invention
  • FIG. 5 is a schematic flowchart of a method according to an embodiment of the present invention. The program includes the following steps:
  • Step 501 The GGSN determines that the access device is a 3G Router.
  • step 301 is similar to step 301 and will not be described in detail. It should be noted that this embodiment does not pay attention to the case where the access device is a normal MS, and thus is not described.
  • Step 502 The GGSN configures a predefined user policy for the site corresponding to the 3G router.
  • the configured user policy can be static, for example, pre-defined before the PDP is activated.
  • the user policy can be configured locally or by a policy server (Policy Server as shown in Figure 4).
  • the user policy can include any one or a combination of the following policies: Routing Policy / Business Policy / QoS Policy.
  • the configuration policy may be performed for the entire site, or may be performed for a certain network segment (or part of the network segment) of a certain site, or for a specific IP address.
  • the site is associated with the VRF, it can be understood as the configuration of the VRF for the site corresponding to the 3G Router (the user policy can be understood as one of the attributes of the VRF).
  • the implementation of the VRF is specifically described in the previous embodiment, and will not be described again here. If you want to configure the network segment or IP address, you need to know the network information under the site first. (The network information can be statically configured in advance, for example, statically configured locally.)
  • Site MyHome for a VRF
  • QoS: 1M bps etc.
  • Site MyOffice corresponding to a VRF
  • IP address Dynamic (dynamically assigned IP address)
  • QoS: 2M bps etc.
  • the network segment or the IP address is configured as the configuration object, you can configure different routing policies for different network segments or IP addresses on the Router. For example, the network segment of the president's office directly forwards the data of the common employee network segment. Configure an information security check on a server. ⁇ Configure different service policies for different network segments or IP addresses on the Router (for example, whether to allow P2P services, access to the Internet, etc.); IP Address configures different QoS policies (for example, the president's office network segment needs to guarantee 2M bps bandwidth).
  • it may also include:
  • Step 503 The GGSN dynamically updates the configured policy according to the network information of the 3G Router.
  • the routing policy between the GGSN and the 3G router can be dynamically updated according to the network information of the 3G Router. For example, when a network segment/IP address is added, modified, or deleted under the 3G router, the GGSN can exchange the routing information with the 3G router according to the latest network information. The strategy is updated in real time. Of course, due to the characteristics of the routing protocol itself, the GGSN and the 3G Router can periodically exchange routing information.
  • the technical solution provided by the embodiment of the present invention can provide different user policies for the site corresponding to the CE Router, so as to meet different sites (corresponding to different interfaces) on the premise that the access device is a CE router. Differentiated service requirements for the network or user group).
  • multiple user policies can be flexibly combined, and can be configured for site level, network segment level, or specific IP address, further implementing refined differential configuration management.
  • FIG. 6 is a schematic structural diagram of a device.
  • the device includes: a first unit 601, configured to determine whether the access device is a user edge device router CE Router, the CE Router uplink supports wireless access, and a second unit 602, configured to: when the first unit determines that the access device is a CE The router provides routing services for the sites corresponding to the CE Router.
  • the first unit 601 may be implemented by the following sub-units (not shown): for example, the first sub-unit is configured to determine, according to the identifier of the access device, whether the access device is a CE Router; or, The second subunit is configured to determine the access according to the access point name APN that the access device requests to access. Whether the device is a CE Router.
  • the identifier of the access device may be an IMEI or an IMSI, and the mapping between the identifier of the access device and the CE router may be saved locally or in an external server. The method embodiment has been described in detail herein. Let me repeat.
  • the second unit 602 may be implemented by a sub-unit (not shown): the third sub-list generates a route for the VRF generated by the third sub-unit through a routing protocol; and a fifth sub-unit, configured to The route of the VRF generated by the four sub-units forwards the service data for the site corresponding to the CE Router.
  • the specific implementation of the route for generating the VRF may be as follows: The routing information of the 3G router is obtained through the static route or the dynamic routing protocol, and is configured to be generated into the generated VRF. The method embodiment has been described in detail, and will not be described here.
  • the foregoing third sub-unit may be implemented by the following sub-module (shown in the figure): an obtaining sub-module, configured to acquire a CE Router during or after determining whether the access device is a CE Router in the first unit.
  • the VRF attribute information of the corresponding site and a generating submodule, configured to generate a VRF for the site corresponding to the CE Router according to the VRF attribute information acquired by the acquiring submodule.
  • the device may further include: a third unit, configured to configure a corresponding user policy for the site corresponding to the CE router, or configured for different network segments or IP addresses of the site corresponding to the CE Router The corresponding user policy.
  • the user policy includes any one or a combination of the following policies: a routing policy, a business policy, or a QoS policy.
  • the device may further include a fourth unit, configured to dynamically update the user policy configured by the third unit according to the network information under the CE Router.
  • the device can be used as a PE router, and specifically: a GGSN, a PDSN, an ASN GW, a PDN GW, a Serving GW, and the like.
  • a further embodiment of the present invention further provides a system for providing a routing service, including a device for providing a routing service, and a CE router for communicating with the device, where the CE Router supports wireless access.
  • the CE Router can be a wireless router, and the wireless router that can be used as the CE Router is not limited to the 3G Router. For example, it can also support 2G, 2.5G, 4G, and other possible support for other systems in the future. Into the wireless router, it can also support multiple wireless systems at the same time The wireless router that is connected, and it can also be a router that supports both wireless and wired access. In addition, there may be multiple types of networks connected to the wireless router, and there may be multiple types of hosts in the network, which are not described here.
  • the system may also include other network elements, for example, the UMTS system between the 3G Router and the GGSN as shown in FIG. 1 (which may specifically include a base station and a base station control device), as shown in FIG. 2
  • the external server server is configured to save the mapping relationship between the access device identifier/APN and the wireless router, such as the policy server Policy Server in FIG. 4, for storing the user policy, and can be used by the GGSN or other devices providing the routing service for querying.
  • the type of the access device is determined by the PE router. If the access device is a CE router, the routing information is exchanged with the routing information, and the obtained routing information is the corresponding site. Provide routing.
  • the technical solution provided by the embodiment of the present invention is to use the 3G router as the CE router as a gateway, and the PE router can obtain the routing information of the CE router, so that the 3G router can be used as a CE to access the VPN. Therefore, it is possible to support the connection of multiple networks (such as enterprise networks) or connect multiple user equipments (mobile devices or fixed devices) under the CE Router to use VPN services, which provides opportunities for the expansion of carrier services, for example, for SMEs. Customers offer some value-added VPN features.
  • the access device is a CE router
  • different user policies are provided/configured for the site corresponding to the CE router, thereby satisfying different services of different sites (corresponding to different networks or user groups).
  • multiple user policies can be flexibly combined, and can be configured for site level, network segment level, or specific IP address, further implementing refined differential configuration management.
  • receiving in the embodiment of the present invention may be understood as being actively acquired from other modules, or may be receiving information sent by other modules.
  • each functional unit in various embodiments of the present invention may be integrated into one processing module. It is also possible that each unit physically exists alone, or two or more units may be integrated in one module.
  • the above integrated modules can be implemented in the form of hardware or in the form of software functional modules.
  • the integrated modules, if implemented in the form of software functional modules and sold or used as separate products, may also be stored in a computer readable storage medium.
  • the above-mentioned storage medium may be a read only memory, a magnetic disk or an optical disk or the like.

Abstract

A method, apparatus and system for providing route service are provided. The method includes the following steps: the access apparatus is judged whether it is a customer edge device router CE Router, and the CE Router supports wireless access in uplink; when the access apparatus is confirmed as the CE Router, the route service is provided for the site corresponding to the CE Router. According to the technical solution provided by the embodiment of the present invention, the problem of the prior art brought by the fact that the wireless router can only be accessed as the common MS may be resolved.

Description

一种为用户边缘设备路由器提供路由服务的方法、 设备和*** 技术领域  Method, device and system for providing routing service for user edge device router
本发明涉及通信技术, 特别涉及一种提供路由服务的方法、 设备和***。 背景技术  The present invention relates to communication technologies, and in particular, to a method, device and system for providing a routing service. Background technique
随着无线通信技术的广泛应用, 业界出现了支持无线接入的路由器, 简称 无线路由器, 上行方向釆用无线接入技术。 在网络架构中, 该无线路由器可以 视为 CE Router ( Customer Edge Router, 用户边缘路由器)。  With the wide application of wireless communication technologies, routers supporting wireless access have emerged in the industry, referred to as wireless routers, and wireless access technologies are used in the uplink direction. In the network architecture, the wireless router can be regarded as a CE Router (Customer Edge Router).
本发明的发明人在实现本发明的过程中发现, 现有技术至少存在以下问 题:  The inventors of the present invention found in the course of implementing the present invention that the prior art has at least the following problems:
现有技术中, GGSN ( Gateway GPRS Support Node , 网关 GPRS支持节点) 将无线路由器作为 MS ( Mobile Station, 移动台)接入, 而无法对无线路由器 所连接站点内的主机进行路由。 发明内容  In the prior art, the GGSN (Gateway GPRS Support Node) uses the wireless router as an MS (Mobile Station) to route hosts in the station to which the wireless router is connected. Summary of the invention
本发明实施方式要解决的主要技术问题是提供一种提供路由服务的方法、 设备和***, 使得可以为用户边缘路由器所连接站点内的主机提供准确路由。  The main technical problem to be solved by the embodiments of the present invention is to provide a method, device and system for providing a routing service, so that an accurate route can be provided for a host in a site connected to a user edge router.
为解决上述技术问题, 本发明的实施例提供了一种提供路由服务的方法, 包括: 判断接入设备是否是用户边缘设备路由器 CE Router, 该 CE Router上 行支持无线接入; 当确定接入设备是 CE Router时, 为该 CE Router所对应的 站点提供路由。  To solve the above technical problem, an embodiment of the present invention provides a method for providing a routing service, including: determining whether an access device is a user edge device router CE Router, and the CE Router uplink supports wireless access; When it is a CE Router, it provides routes for the site corresponding to the CE Router.
本发明的实施例还提供了一种提供路由服务的设备, 包括: 第一单元, 用 于判断接入设备是否是用户边缘设备路由器 CE Router, 该 CE Router上行支 持无线接入; 以及第二单元, 用于当第一单元确定接入设备是 CE Router时, 为 CE Router所对应的站点提供路由服务。  The embodiment of the present invention further provides a device for providing a routing service, including: a first unit, configured to determine whether an access device is a user edge device router CE Router, the CE Router uplink supports wireless access; and a second unit And when the first unit determines that the access device is a CE router, providing a routing service for the site corresponding to the CE router.
本发明的实施例还提供了一种提供路由服务的***, 包括: 上述提供路由 服务的设备, 以及与该设备通信的 CE Router, 其中, 该 CE Router上行支持 无线接入。 本发明实施方式与现有技术相比, 主要区别及其效果在于: 由 PE Router 判断接入设备是否是 CE Router, 如果是, 则为相应的站点提供路由服务。 这 样, 就解决了现有技术中只能将无线路由器作为普通 MS接入所带来的问题。 附图说明 The embodiment of the present invention further provides a system for providing a routing service, including: the device that provides the routing service, and the CE router that communicates with the device, where the CE Router supports wireless access. Compared with the prior art, the main difference between the embodiment of the present invention and the effect thereof is: The PE router determines whether the access device is a CE Router, and if so, provides a routing service for the corresponding site. In this way, the problem that only the wireless router can be accessed as a normal MS in the prior art is solved. DRAWINGS
图 1是现有技术中解决方案的网络结构示意图;  1 is a schematic diagram of a network structure of a solution in the prior art;
图 2是本发明实施例提供的一种网络结构图;  2 is a network structure diagram provided by an embodiment of the present invention;
图 3是本发明实施例提供的一种方法流程图;  3 is a flowchart of a method according to an embodiment of the present invention;
图 4是本发明实施例提供的另一种网络结构图;  4 is another network structure diagram provided by an embodiment of the present invention;
图 5是本发明实施例提供的另一种方法流程图;  FIG. 5 is a flowchart of another method according to an embodiment of the present invention;
图 6是本发明实施例提供的一种设备的结构示意图。 具体实施方式  FIG. 6 is a schematic structural diagram of a device according to an embodiment of the present invention. detailed description
为使本发明的目的、技术方案和优点更加清楚, 下面将结合附图对本发明 作进一步地详细描述。  In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention will be further described in detail with reference to the accompanying drawings.
目前业界已经出现一些支持无线接入的无线路由器产品, 以下主要以 3G Router ( 3G路由器 )为例进行说明。 其功能与有线 ADSL ( Asymmetric Digital Subscriber Line, 非对称数字用户线) Router有些类似, 区别在于, 上行方向釆 用无线接入技术, 比如, GPRS ( General Packet Radio Service, 通用分组无线 业务 ) /UMTS ( Universal Mobile Telecommunications System, 通用移动通讯系 统) /HSPA ( High-Speed Packet Access , 高速包接入 )技术等。  At present, some wireless router products supporting wireless access have appeared in the industry. The following mainly uses a 3G Router (3G router) as an example. Its function is similar to that of wired ADSL (Asymmetric Digital Subscriber Line) Router. The difference is that the radio access technology is used in the uplink direction, for example, GPRS (General Packet Radio Service) / UMTS ( Universal Mobile Telecommunications System, /HSPA (High-Speed Packet Access) technology.
目前,从核心网侧 GGSN的角度,仅把 3 G Router当作一个普通 MS接入, 为 3G Router分配一个 MS IPAddress。如图 1所示, 为现有技术解决方案的结 构示意图,其中, 3G Router对应一个站点,该站点对应的网段为 10.111.1.0/24, 该网段内连接了多台主机(比如, 其 IP地址分别为 10.111.1.1 , 10.111.1.2和 10.111.1.3 )。 3G Router连接到 GGSN时, GGSN把 3G Router当作普通 MS, 为其分配一个 MS IP Address (比如 200.131.69.83 ), 3G router可以通过该 IP 地址为该站点内的主机提供 Internet业务。但是,由于 GGSN只知道该节点( 3G Router )的 IP地址, 而没有 10.111.1.0/24网段的路由信息, 无法将总部发来的 数据包正确路由到该节点下的主机, 所以 3G Router无法作为 CE Router接入 VPN ( Virtual Private Network, 虚拟私有网络), GGSN也无法为该节点提供 VPN路由。 At present, from the perspective of the GGSN on the core network side, only the 3 G Router is accessed as a normal MS, and an MS IPAddress is assigned to the 3G Router. As shown in FIG. 1 , it is a schematic structural diagram of a prior art solution, where a 3G router corresponds to one site, and the corresponding network segment of the site is 10.111.1.0/24, and multiple hosts are connected in the network segment (for example, The IP addresses are 10.111.1.1, 10.111.1.2 and 10.111.1.3). When the 3G Router is connected to the GGSN, the GGSN treats the 3G Router as a normal MS and assigns it an MS IP Address (for example, 200.131.69.83). The 3G router can provide Internet services for hosts in the site through the IP address. However, since the GGSN only knows the IP address of the node (3G Router) and does not have the routing information of the 10.111.1.0/24 network segment, it cannot send the headquarters. The packet is correctly routed to the host under the node. Therefore, the 3G Router cannot be used as the CE Router to access the VPN (Virtual Private Network). The GGSN cannot provide VPN routes for the node.
为解决上述问题, 本发明实施例提供了如下解决方案。  To solve the above problem, the embodiment of the present invention provides the following solutions.
可以理解的是, 本发明实施例适用于 UMTS , WIFI ( Wireless Fidelity , 无 线高保真 ), WIMAX ( Worldwide Interoperability for Microwave Access, 全球 微波互联接入), HSPA, LTE ( long time evolution, 长期演进)等***。  It can be understood that the embodiments of the present invention are applicable to UMTS, WIFI (Wireless Fidelity), WIMAX (Worldwide Interoperability for Microwave Access), HSPA, LTE (long time evolution, long term evolution, etc.) system.
本发明的一个实施例提供的技术方案中, 无线路由器(比如 3G Router ) 可以作为 CE Router , CE Router属于用户网络的一部分, 并且和 PE ( Provider Edge, 服务商边缘路由器) Router接口。 与此相应的是, 核心网侧的 GGSN 可以作为 PE Router, PE router属于连接 CE路由器的服务提供商网络的一部 分。 CE Router和 PE Router可以同时接入 VPN ( Virtual Private Network, 虚拟 私有网络)。 同样可以理解的是, 可作为 CE Router的无线路由器不限于 3G Router, 比如, 还可以是支持 2G、 2.5G、 4G以及将来可能出现的支持其他制 式无线接入的无线路由器, 还可以是同时支持多种制式无线接入的无线路由 器, 而且, 还可以是同时支持无线和有线接入的路由器。 另一方面, 可作为 PE Router的网络设备也不限于 GGSN, 比如, 还可以是 PDSN ( Packet Data Serving Node,分组数据服务节点), ASN GW( Access Service Network Gateway, 接入业务网络网关), PDN GW ( Public Data Network Gateway, 公共数据网网 关), Serving GW ( Serving Gateway, 服务网关)等。  In a technical solution provided by an embodiment of the present invention, a wireless router (such as a 3G router) can serve as a CE router, and the CE Router belongs to a part of the user network, and interfaces with a PE (Provider Edge, Service Provider Edge Router). Correspondingly, the GGSN on the core network side can act as a PE Router, and the PE router belongs to a part of the service provider network connected to the CE router. The CE Router and the PE Router can access the VPN (Virtual Private Network) at the same time. It can also be understood that the wireless router that can be used as the CE Router is not limited to the 3G Router. For example, it can also support 2G, 2.5G, 4G, and wireless routers that may support other standard wireless access in the future, or both. A wireless router with multiple modes of wireless access, and it can also be a router that supports both wireless and wired access. On the other hand, the network device that can be used as the PE router is not limited to the GGSN. For example, it may be a PDSN (Packet Data Serving Node), an ASN GW (Access Service Network Gateway), a PDN. GW (Public Data Network Gateway), Serving GW (Serving Gateway), etc.
随着 3G Router的推出, 3G Router可能下连接多个站点 (或称网络), 这 些站点可能是 SME ( Small and medium enterprises,中小型企业), 也可能是多 个个人用户组成的网络。 每个站点有相应的网段, 站点中的主机可以是 PC ( Personal Computer,个人计算机 ) , lapto 便携式计算机, MS ( Mobile Station, 移动台) , Router 路由器, PDA ( Personal Digital Assistant. , 掌上电脑) , Workstation工作站, Server服务器等支持 TCP/IP协议的各种终端设备。  With the introduction of 3G Routers, 3G Routers may be connected to multiple sites (or networks). These sites may be SMEs (Small and medium enterprises) or a network of multiple individual users. Each site has a corresponding network segment. The hosts in the site can be PC (Personal Computer), lapto laptop, MS (Mobile Station), Router Router, PDA (Personal Digital Assistant., Pocket PC). , Workstation workstations, Server servers and other terminal devices that support the TCP/IP protocol.
以下实施例中, 主要以 CE Router为 3G Router, PE Router为 GGSN, 主 机为 PC为例进行说明, 但不限于此。  In the following embodiments, the CE router is a 3G router, the PE router is a GGSN, and the host is a PC. The description is not limited to this.
本发明提供的一个实施例: 该实施例中提供了一种提供路由服务的方法, 包括以下步骤: 步骤 A:判断接入设备是否是用户边缘设备路由器 CE Router,该 CE Router 上行支持无线接入; 步骤 B: 当确定接入设备是 CE Router时, 为 CE Router 所对应的站点提供路由。 An embodiment provided by the present invention: In this embodiment, a method for providing a routing service is provided, including the following steps: Step A: determining whether the access device is a user edge device router CE Router, and the CE Router uplink supports wireless access; Step B: when determining access When the device is a CE Router, it provides routes for the sites corresponding to the CE Router.
本发明实施例提供的技术方案, 由于提供了识别接入设备是否是 CE The technical solution provided by the embodiment of the present invention provides a method for identifying whether the access device is a CE.
Router的机制, 所以可以在判断接入设备是 CE Router的情况下, 为相应的站 点提供路由, 解决了现有技术中无线路由器无法作为 CE接入 VPN的问题。 The mechanism of the router can be used to provide a route for the corresponding site when the access device is a CE router. This solves the problem that the wireless router cannot access the VPN as a CE in the prior art.
本发明提供的另一个实施例:  Another embodiment provided by the present invention:
本实施例中, 以 CE Router为 3G Router, PE Router为 GGSN, 主机为 PC 为例进行说明。 在本实施例的描述过程中, 可参考图 2和图 3。 图 2是本发明 实施例提供的一种网络结构图,图 3是本发明实施例提供的提供路由服务的方 法的流程示意图。  In this embodiment, the CE router is a 3G router, the PE router is a GGSN, and the host is a PC. In the description of this embodiment, reference may be made to Figs. 2 and 3. FIG. 2 is a schematic diagram of a network structure provided by an embodiment of the present invention, and FIG. 3 is a schematic flowchart of a method for providing a routing service according to an embodiment of the present invention.
步骤 301 : GGSN判断接入设备是 3G Router还是普通的接入终端, 如果 是 3G Router, 执行步骤 302; 如果是普通的 MS, 则执行步骤 305;  Step 301: The GGSN determines whether the access device is a 3G router or a normal access terminal. If it is a 3G router, go to step 302. If it is a normal MS, go to step 305.
判断的方法可以是: GGSN根据接入设备的标识, 判断接入设备是 3G The method for determining may be: The GGSN determines that the access device is 3G according to the identifier of the access device.
Router还是普通的接入终端。 The Router is also an ordinary access terminal.
具体的, 可以在 3G Router向 GGSN申请激活 PDP Context的过程中实现 上述判断。 判断的依据可以是接入设备(可以理解为终端)的类型, 而接入设 备的类型可以映射为接入设备的标识, 比如 IMEI ( International Mobile Station Equipment Identity , 国际移动台设备标识)、 IMSI ( International Mobile Subscriber Identity, 国际移动用户识别码)。 所以, GGSN可以根据接入设备的 标识, 对接入设备是 3G Router或普通的接入终端进行判断(或称为确定 /识 别)。  Specifically, the foregoing judgment may be implemented in the process of the 3G Router applying to the GGSN to activate the PDP Context. The basis for the judgment may be the type of the access device (which can be understood as a terminal), and the type of the access device may be mapped to the identifier of the access device, such as IMEI (International Mobile Station Equipment Identity), IMSI (IMSI) International Mobile Subscriber Identity, International Mobile Subscriber Identity). Therefore, the GGSN can judge (or determine/identify) the access device as a 3G Router or an ordinary access terminal according to the identifier of the access device.
具体的, 接入设备是否是 3G Router的信息(可以通过标识和设备的映射 关系来体现 )可以保存在外部 Server服务器或者配置在 GGSN本地。 以 IMSI 为例, 图 2示出了上述两种实现方式: 第一种, 本地配置的方式: 将 IMSI和 3G Router的映射关系保存在 GGSN中。 这样, GGSN可以在获知当前接入设 备的 IMSI后, 查找(或称检查)保存的映射关系, 以判断该 IMSI所对应的 接入设备是否是 3G Router。 第二种, 映射关系保存在外部服务器的方式: 将 IMSI和 3G Router的映射关系保存在外部 Server服务器中, 外部服务器可以 是: Radius ( Remote Authentication Dial-In User Service , 远程认证拔号用户月良 务) Server, PCRF ( Policy Control and Charging Rules Function, 策略控制和计 费规则功能节点)等。 相应的, GGSN在需要判断接入设备的类型时, 可以以 访问外部服务器中的方式查找(或称检查)该映射关系, 与当前接入设备的 IMSI进行匹配以进行判断。 Specifically, whether the access device is a 3G router information (which can be represented by a mapping relationship between the identifier and the device) can be saved in an external server or configured locally in the GGSN. Taking the IMSI as an example, Figure 2 shows the above two implementations: First, the local configuration mode: The mapping relationship between the IMSI and the 3G Router is saved in the GGSN. In this way, the GGSN can find (or check) the saved mapping relationship after learning the IMSI of the current access device to determine whether the access device corresponding to the IMSI is a 3G Router. Second, the way the mapping relationship is saved on the external server: The mapping between the IMSI and the 3G Router is stored in the external server. The external server can be: Radius (Remote Authentication Dial-In User Service), PCRF (Policy Control and Charging Rules Function) Control and charging rules function nodes) and so on. Correspondingly, when the GGSN needs to determine the type of the access device, the mapping relationship may be searched (or checked) in a manner of accessing the external server, and matched with the IMSI of the current access device to determine.
可以理解的是, 只要保证接入设备的标识和 3G Router存在相应的映射关 系即可, 具体的, 运营商可以将特殊标识号段 (比如 IMSI号段)分配给 3G Router,也可以分配离散的标识号给 3G Router和普通 MS,这取决于运营商的 策略, 本发明实施例的方案对此不作限定。  It can be understood that, as long as the identifier of the access device and the 3G router have a corresponding mapping relationship, the operator may assign a special identification number segment (such as an IMSI number segment) to the 3G router, or may allocate discrete The identification number is given to the 3G Router and the normal MS, which is not limited by the solution of the embodiment of the present invention.
另外,作为本实施例步骤 301的另一种替代性的实现方式, GGSN也可以 通过接入设备所请求接入的 APN ( Access Point Name,接入点名称)来判断接 入设备是否 3G Router。 具体实现时, 关于 APN和 3G Router的映射关系, 同 样也可以釆用 GGSN本地配置或外部服务器保存的方式, 不再详细描述。  In addition, as an alternative implementation of step 301 in this embodiment, the GGSN may also determine whether the access device is a 3G Router by using an access point name (Access Point Name) that the access device requests to access. In the specific implementation, the mapping relationship between the APN and the 3G Router can also be used in the local configuration of the GGSN or the external server, and will not be described in detail.
在判断的同时或之后 (只是实现上的问题, 本发明对此不作限定), 可以 得到对应站点 Site的 VRF属性信息。该 VRF属性信息可以预先在本地配置或 者从外部服务器(可以理解为用户数据库, 比如 Profile Server ) 中得到。 上述 属性信息可以包括: VRF 名, RT ( Route Target, 路由目标), RD ( Route Distinguishes 路由器标识)等信息。 其中, RD用来标识一个 VRF, RT也可 以称为 VPN目标属性, 主要用来实现不同的 VRF之间的通信, 比如, 定义了 一条 VPN路由可以为哪些 Site所接收, 以及 PE可以接收哪些 Site发送来的 路由。 比如, 同属于一家母公司的子公司 A和子公司 B, A和 B的 RD不同 (即 VRF不同), 但 RT相同, 那么就会相互导入对方的路由。  At the same time or after the judgment (only the problem of implementation, the invention does not limit this), the VRF attribute information of the corresponding site Site can be obtained. The VRF attribute information can be configured locally in advance or from an external server (which can be understood as a user database, such as a Profile Server). The above attribute information may include: VRF name, RT (Route Target), RD (Route Distinguishes). The RD is used to identify a VRF. The RT can also be called a VPN target attribute. It is mainly used to implement communication between different VRFs. For example, it defines which sites a VPN route can receive, and which sites the PE can receive. The route sent. For example, the subsidiary A and the subsidiary B, A and B of the parent company are different (that is, the VRF is different), but the RT is the same, then the other party's route is imported into each other.
步骤 302: GGSN为该 3G Router所对应站点生成 VRF;  Step 302: The GGSN generates a VRF for the site corresponding to the 3G router.
具体的, GGSN可以根据获得的 VRF属性信息,为该 3G Router所对应站 点生成 VRF。  Specifically, the GGSN may generate a VRF for the corresponding site of the 3G Router according to the obtained VRF attribute information.
VRF ( VPN Routing/Forwarding instance )是 VPN路由转发实例的简称, 它通常只存在于 PE Router设备上。同一个 VPN下各个站点的路由是通过 VRF 来控制的。 对于每一个站点, 通常都有一个与之对应 VRF。 一个 VRF定义了 同 PE路由器相连的客户站点的 VPN成员资格, 一个 VPN就是一个虚拟私有 网络, 该可以帮助远程用户、 公司分支机构、 商业伙伴及供应商同公司的内部 网建立可信的安全连接, 并保证数据的安全传输。 一个 VRF数据可以包括 IP 路由表, 一个派生的 Cisco Express Forwarding ( CEF )表, 一套使用转发表 的接口, 一套控制路由表中信息的规则和路由协议参数。 VRF (VPN Routing/Forwarding instance) is an abbreviation of VPN routing and forwarding instance. It is usually only found on the PE Router. The routing of each site under the same VPN is controlled by VRF. For each site, there is usually a corresponding VRF. A VRF is defined VPN membership of the customer site connected to the PE router. A VPN is a virtual private network, which can help remote users, company branches, business partners and suppliers establish a trusted and secure connection with the company's intranet and ensure data. Safe transmission. A VRF data can include an IP routing table, a derived Cisco Express Forwarding (CEF) table, a set of interfaces that use forwarding tables, a set of rules that control information in the routing table, and routing protocol parameters.
值得说明的是, GGSN 可以维护多个 VRF, 每个 VRF可以是相对独立的, 不同 VRF之间可以用 VRF RD标识相区分, 拥有相同 VRF RD标识的站点之 间可以组成一个 VPN。 而不同的 VPN可以进行通信, 也可以隔离。 另外, 对 不同站点进行处理的 GGSN可以是同一个 GGSN, 也可能分属不同的 GGSN。  It is worth noting that the GGSN can maintain multiple VRFs. Each VRF can be relatively independent. Different VRFs can be distinguished by VRF RD. A site with the same VRF RD can form a VPN. Different VPNs can communicate or be isolated. In addition, the GGSNs that process different sites may be the same GGSN or may belong to different GGSNs.
具体到本步骤中, 假设 Site A-1对应一个 3G Router, GGSN获得到该 3G Specifically, in this step, it is assumed that Site A-1 corresponds to a 3G Router, and the GGSN obtains the 3G.
Router的 VRF属性信息后, 为该站点 Site A-1生成对应的 VRF A。 After the VRF attribute information of the router is generated, the corresponding VRF A is generated for the site Site A-1.
可以理解的是, 一个 VRF可以与多个 3G Router站点相对应。 这样, 处 理结果可以是: 站点 Site A-1、 A-2和 A-3使用相同的 VRF A, 共同组成一个 VPN A, 而站点 Site B-1和 B-2使用相同的 VRF B , 共同组成一个 VPN B。  Understandably, a VRF can correspond to multiple 3G Router sites. Thus, the processing result can be: Sites Site A-1, A-2, and A-3 use the same VRF A to form a VPN A, and Sites Site B-1 and B-2 use the same VRF B to form a common A VPN B.
步骤 303: GGSN通过路由协议, 生成该 VRF的路由;  Step 303: The GGSN generates a route of the VRF by using a routing protocol.
本步骤中, GGSN通过静态路由或动态路由协议获取 3G Router的路由信 息。 VRF 可以理解为指向路由表的数据结构, 无论是通过静态路由或动态路 由协议, GGSN获取的路由信息可以配置到生成的 VRF中。 GGSN将获取的 3G Router的路由信息, 配置到为相应 Site生成的 VRF中, 即生成该 VRF的 路由 (该路由可以定时更新或^ ί'爹改)。  In this step, the GGSN obtains routing information of the 3G Router through a static route or a dynamic routing protocol. The VRF can be understood as a data structure that points to the routing table. The routing information obtained by the GGSN can be configured into the generated VRF, whether through a static route or a dynamic routing protocol. The GGSN configures the routing information of the obtained 3G router to the VRF generated for the corresponding site, that is, the route of the VRF is generated (the route can be periodically updated or falsified).
具体的, GGSN与 3G Router可以运行静态路由协议和 /或动态路由协议, 通过这些路由协议交换路由信息, 从 GGSN的角度而言, 可以获得 3G Router 的路由信息,具体的,路由信息可以包括 3G Router所对应站点下的网络信息, 比如 IP地址、 网络掩码、 下一跳地址、 跳数等信息。 而一个 3G Router所对应 的站点下可能有一个或多个网段, 一个网段下面有多个 IP地址, 一个 IP地址 可以对应一个主机。  Specifically, the GGSN and the 3G router can run a static routing protocol and/or a dynamic routing protocol, and the routing information is exchanged by using the routing protocol. The routing information of the 3G router can be obtained from the perspective of the GGSN. Specifically, the routing information can include 3G. Network information of the site corresponding to the router, such as IP address, network mask, next hop address, and hop count. A site corresponding to a 3G router may have one or more network segments. There are multiple IP addresses under one network segment, and one IP address may correspond to one host.
其中,静态路由是在路由器中设置的固定的路由表,除非网络管理员干预, 否则静态路由不会发生变化。 相应的, 如果是静态路由, GGSN可以通过本地 配置或者外部服务器得到 3G Router对应站点下的路由信息, 如前所述, 外部 服务器可以是 Radius Server, PCRF等。 在静态路由的情况下, 3G Router所对 应站点的网络规划 (也就是 IP地址段)需要和网络侧的手动配置保持一致。 动态路由是网络中的路由器之间传递路由信息,利用收到的路由信息更新路由 器表的过程。 具体的, 比如, 当在 3G Router下增加、 修改或者删减一些网段 /IP地址路由时, GGSN通过和 3G Router的路由信息交换,就可以根据最新的 路由信息,及时更新路由表。可以理解的是,动态路由协议可以是 OSPF ( Open Shortest Path First, 开放最短路径优先), RIP ( Routing Information Protocol, 路由信息协议), BGP ( Border Gateway Protocol, 边界网管协议)。 The static route is a fixed routing table set in the router. The static route does not change unless the network administrator intervenes. Correspondingly, if it is a static route, the GGSN can obtain routing information under the corresponding site of the 3G Router through local configuration or an external server, as described above, externally. The server can be a Radius Server, a PCRF, or the like. In the case of a static route, the network planning (that is, the IP address segment) of the site corresponding to the 3G router needs to be consistent with the manual configuration on the network side. Dynamic routing is the process of routing routing information between routers in a network and updating the router table with the received routing information. Specifically, for example, when a network segment/IP address route is added, modified, or deleted under the 3G Router, the GGSN exchanges routing information with the 3G router to update the routing table according to the latest routing information. It can be understood that the dynamic routing protocol can be OSPF (Open Shortest Path First), RIP (Routing Information Protocol), and BGP (Border Gateway Protocol).
步骤 304: GGSN根据生成的 VRF的路由, 为 3G Router所对应的站点提 供路由服务。  Step 304: The GGSN provides a routing service for the site corresponding to the 3G router according to the generated route of the VRF.
本实施例中以路由服务是 VPN业务为例进行描述。 生成 VRF的路由后, GGSN可以作为 PE路由器接入 MPLS ( Multiprotocol Label Switching, 多协议 标记交换 ) VPN网络, 给 3G Router所对应的站点(包括站点内的主机 )提供 MPLS VPN业务, 即, 为 3G Router所对应的站点转发业务数据。  In this embodiment, the routing service is a VPN service as an example. After the route of the VRF is generated, the GGSN can be used as a PE router to access the MPLS (Multiprotocol Label Switching) VPN network, and provide MPLS VPN services to the sites (including hosts in the site) of the 3G router, that is, 3G. The site corresponding to the Router forwards the service data.
可以理解的是, MPLS VPN只是 VPN的一种, 本发明实施例提供的技术 方案, 同样也适合于 PPTP点到点隧道协议、 L2F第二层转发协议、 L2TP第 二层隧道协议、 GRE ( Generic Routing Encapsulation, 通用路由封装协议)和 IPSec IP安全等种类的 VPN。  It can be understood that the MPLS VPN is only one type of VPN. The technical solution provided by the embodiment of the present invention is also applicable to the PPTP point-to-point tunneling protocol, the L2F Layer 2 forwarding protocol, the L2TP Layer 2 tunneling protocol, and the GRE (Generic). Routing Encapsulation, Generic Routing Encapsulation Protocol, and VPNs such as IPSec IP Security.
步骤 305: GGSN对普通接入终端按照现有流程进行处理。  Step 305: The GGSN processes the normal access terminal according to an existing process.
可以理解的是, 如果是一个普通 MS接入, 则 GGSN为该 MS分配一个 It can be understood that if it is a normal MS access, the GGSN allocates one to the MS.
IP Address, 相应的, GGSN上仅有到该地址的绝对路由( PDP Context )。 由于 是现有技术, 不再赘述。 IP Address, correspondingly, there is only an absolute route (PDP Context) to the address on the GGSN. Since it is an existing technology, it will not be described again.
通过上述描述可以看出, 本发明实施例提供的技术方案, 由 PE Router对 接入设备的种类进行确定, 如果接入设备是 CE Router, 则与其进行路由信息 交换, 根据获取的路由信息为相应的站点提供路由。 换句话说, 本发明实施例 提供的技术方案, 将作为 CE Router的 3G Router当成一个网关, PE Router可 以获知 CE Router的路由信息,使得 3G Router可以作为 CE接入 VPN。 所以, 能够支持 CE Router下连接多个网络(比如企业网)或连接多个用户设备(移 动设备或固定设备)使用 VPN业务, 为运营商业务的扩展提供了实现的可能, 比如, 为中小企业客户提供一些增值 VPN特性。 As shown in the above description, the technical solution provided by the embodiment of the present invention determines the type of the access device by the PE router. If the access device is a CE router, the routing information is exchanged according to the obtained routing information. The site provides routing. In other words, the technical solution provided by the embodiment of the present invention is to use the 3G router as the CE router as a gateway, and the PE router can learn the routing information of the CE router, so that the 3G router can be used as a CE to access the VPN. Therefore, it is possible to support the use of VPN services by connecting multiple networks (such as enterprise networks) or connecting multiple user equipments (mobile devices or fixed devices) under the CE Router, which provides an implementation possibility for the extension of the carrier service. For example, provide some value-added VPN features for SMB customers.
本发明提供的再一个实施例, 仍以 CE Router为 3G Router, PE Router为 GGSN, 主机为 PC为例进行说明。 在本实施例的描述过程中, 可参考图 4和 图 5。 图 4是本发明实施例的一种网络结构图, 图 5是本发明实施例的一种方 法流程示意图。 该方案包括如下步骤:  In another embodiment of the present invention, the CE router is a 3G router, the PE router is a GGSN, and the host is a PC. In the description of this embodiment, reference may be made to Figs. 4 and 5. 4 is a network structure diagram of an embodiment of the present invention, and FIG. 5 is a schematic flowchart of a method according to an embodiment of the present invention. The program includes the following steps:
步骤 501: GGSN确定接入设备是 3G Router;  Step 501: The GGSN determines that the access device is a 3G Router.
本步骤和步骤 301类似, 不再详细描述。 值得说明的是, 本实施例对接入 设备是普通 MS的情况不再关注, 故而没有进行描述。  This step is similar to step 301 and will not be described in detail. It should be noted that this embodiment does not pay attention to the case where the access device is a normal MS, and thus is not described.
步骤 502: GGSN为 3G Router所对应站点配置预先定义的用户策略; 可以理解的是, 所配置的用户策略, 可以是静态的, 比如, 在 PDP激活 前预先定义。 而且, 该用户策略可以在本地配置, 也可以由策略服务器(图 4 所示的 Policy Server )提供。 该用户策略可以包括下列策略的任一或其组合: 路由策略 /业务策略 /QoS策略。  Step 502: The GGSN configures a predefined user policy for the site corresponding to the 3G router. It can be understood that the configured user policy can be static, for example, pre-defined before the PDP is activated. Moreover, the user policy can be configured locally or by a policy server (Policy Server as shown in Figure 4). The user policy can include any one or a combination of the following policies: Routing Policy / Business Policy / QoS Policy.
具体的, 配置策略可以针对整个站点进行, 或者, 也可以针对某个站点下 的某个网段(或该网段的部分)进行, 还可以针对某个具体的 IP地址进行。 如果针对整个站点进行, 由于站点和 VRF存在对应关系, 所以, 可以理解为 针对该 3G Router所对应站点的 VRF进行配置 (用户策略可以理解为 VRF的 属性之一)。 具体生成 VRF的实现方式前一个实施例已经进行了描述, 此处不 再赘述。如果要针对网段或 IP地址配置,则需要先获知站点下的网络信息(该 网络信息可以釆用事先静态配置的方式, 比如, 在本地静态配置)。  Specifically, the configuration policy may be performed for the entire site, or may be performed for a certain network segment (or part of the network segment) of a certain site, or for a specific IP address. If the site is associated with the VRF, it can be understood as the configuration of the VRF for the site corresponding to the 3G Router (the user policy can be understood as one of the attributes of the VRF). The implementation of the VRF is specifically described in the previous embodiment, and will not be described again here. If you want to configure the network segment or IP address, you need to know the network information under the site first. (The network information can be statically configured in advance, for example, statically configured locally.)
比如, 如图 4所示, 图中有两个 3G Router, 分别对应站点 Site MyHome 和站点 Site MyOffice。  For example, as shown in Figure 4, there are two 3G Routers in the figure, corresponding to the site Site MyHome and the site Site MyOffice.
如果以站点为整体进行策略配置, 可以举例如下: 可以将 Site MyHome (对应一个 VRF ) 配置为: Internet: enabled (允许接入 Internet业务), P2P: enabled(允许 P2P业务), IP address: dynamic(动态分配 IP地址), QoS: 1M bps, 等; 可以将 Site MyOffice (对应一个 VRF ) 配置为: Internet: disabled (不允 许接入 Internet业务), P2P: disabled (不允许 P2P业务), IP address: dynamic (动态分配 IP地址), QoS: 2M bps, 等。 这样, 就可以实现对不同站点的差 异化策略配置, 以满足不同站点(对应不同的网络或用户群)的差异化服务要 求。 If you configure the policy as a whole, you can do the following: You can configure Site MyHome (for a VRF) as: Internet: enabled (allows access to Internet services), P2P: enabled (allows P2P services), IP address: dynamic ( Dynamic allocation of IP addresses), QoS: 1M bps, etc. Site MyOffice (corresponding to a VRF) can be configured as: Internet: disabled (not allowed to access Internet services), P2P: disabled (P2P service not allowed), IP address: Dynamic (dynamically assigned IP address), QoS: 2M bps, etc. In this way, differentiated policy configurations for different sites can be implemented to meet differentiated services for different sites (corresponding to different networks or user groups). begging.
另一方面, 为网段或 IP地址为配置对象的话, 可以实现: 为 Router下不 同的网段或者 IP Address配置不同的路由策略(比如, 总裁办公室网段直接转 发,普通员工网段的数据路由到一台服务器上先进行信息安全检查);为 Router 下不同的网段或者 IP Address配置不同的业务策略(如是否允许 P2P业务, 是 否允许接入 Internet等);为 Router下不同的网段或者 IP Address配置不同 QoS 策略(如总裁办公室网段需要保证 2M bps的带宽)。  On the other hand, if the network segment or the IP address is configured as the configuration object, you can configure different routing policies for different network segments or IP addresses on the Router. For example, the network segment of the president's office directly forwards the data of the common employee network segment. Configure an information security check on a server. ● Configure different service policies for different network segments or IP addresses on the Router (for example, whether to allow P2P services, access to the Internet, etc.); IP Address configures different QoS policies (for example, the president's office network segment needs to guarantee 2M bps bandwidth).
可选的, 还可以包括:  Optionally, it may also include:
步骤 503: GGSN根据 3G Router下的网络信息对配置的策略进行动态更 新;  Step 503: The GGSN dynamically updates the configured policy according to the network information of the 3G Router.
由于可以实现 GGSN和 3G Router之间的路由交换, 所以, 步骤 502配置 的策略可以根据 3G Router下的网络信息动态更新。 比如, 当在 3G Router下 增加、修改或者删减一些网段 /IP地址时, GGSN通过和 3G Router的路由信息 交换, 就可以根据最新的网络信息, 在必要的情况下, 可以对已经配置的策略 进行实时更新。 当然, 由于路由协议本身的特点, GGSN和 3G Router之间也 可以周期***互路由信息。  The routing policy between the GGSN and the 3G router can be dynamically updated according to the network information of the 3G Router. For example, when a network segment/IP address is added, modified, or deleted under the 3G router, the GGSN can exchange the routing information with the 3G router according to the latest network information. The strategy is updated in real time. Of course, due to the characteristics of the routing protocol itself, the GGSN and the 3G Router can periodically exchange routing information.
通过上述描述可见, 本发明实施例提供的技术方案, 可以在识别接入设备 是 CE Router的前提下, 为该 CE Router所对应的站点提供 /配置不同的用户策 略, 从而满足不同站点 (对应不同的网络或用户群) 的差异化服务要求。  It can be seen from the above description that the technical solution provided by the embodiment of the present invention can provide different user policies for the site corresponding to the CE Router, so as to meet different sites (corresponding to different interfaces) on the premise that the access device is a CE router. Differentiated service requirements for the network or user group).
进一步的, 多种用户策略可以灵活组合, 且能够针对站点级别、 网段级别 或针对具体的 IP地址进行配置, 进一步实现了精细化的差异配置管理。  Further, multiple user policies can be flexibly combined, and can be configured for site level, network segment level, or specific IP address, further implementing refined differential configuration management.
本发明实施例还提供了一种提供路由服务的设备, 如图 6所示, 图 6是设 备的结构示意图。  The embodiment of the present invention further provides a device for providing a routing service. As shown in FIG. 6, FIG. 6 is a schematic structural diagram of a device.
该设备包括: 第一单元 601 , 用于判断接入设备是否是用户边缘设备路由 器 CE Router, CE Router上行支持无线接入; 以及第二单元 602 , 用于当第一 单元确定接入设备是 CE Router时,为 CE Router所对应的站点提供路由服务。  The device includes: a first unit 601, configured to determine whether the access device is a user edge device router CE Router, the CE Router uplink supports wireless access, and a second unit 602, configured to: when the first unit determines that the access device is a CE The router provides routing services for the sites corresponding to the CE Router.
具体的, 第一单元 601可以由如下子单元(图中未示出)来实现: 比如, 第一子单元, 用于根据接入设备的标识, 判断接入设备是否是 CE Router; 或 者, 第二子单元, 用于根据接入设备请求接入的接入点名称 APN, 判断接入 设备是否是 CE Router。 其中, 接入设备的标识可以是 IMEI或 IMSI, 而接入 设备的标识和 CE Router的映射关系可以保存在本地,或外部服务器中,对此, 方法实施例已经进行了详细描述, 此处不再赘述。 Specifically, the first unit 601 may be implemented by the following sub-units (not shown): for example, the first sub-unit is configured to determine, according to the identifier of the access device, whether the access device is a CE Router; or, The second subunit is configured to determine the access according to the access point name APN that the access device requests to access. Whether the device is a CE Router. The identifier of the access device may be an IMEI or an IMSI, and the mapping between the identifier of the access device and the CE router may be saved locally or in an external server. The method embodiment has been described in detail herein. Let me repeat.
具体的, 第二单元 602可以由如下子单元(图中未示出)实现: 第三子单 通过路由协议, 为第三子单元生成的 VRF生成路由; 以及第五子单元, 用于 根据第四子单元生成的 VRF的路由, 为 CE Router所对应的站点转发业务数 据。 其中, 为 VRF生成路由的具体实现方式可以是: 通过静态路由或动态路 由协议获取 3G Router的路由信息, 配置到生成的 VRF中。 对此, 方法实施 例已经进行了详细描述, 此处不再赘述。  Specifically, the second unit 602 may be implemented by a sub-unit (not shown): the third sub-list generates a route for the VRF generated by the third sub-unit through a routing protocol; and a fifth sub-unit, configured to The route of the VRF generated by the four sub-units forwards the service data for the site corresponding to the CE Router. The specific implementation of the route for generating the VRF may be as follows: The routing information of the 3G router is obtained through the static route or the dynamic routing protocol, and is configured to be generated into the generated VRF. The method embodiment has been described in detail, and will not be described here.
进一步的, 上述第三子单元可以由如下子模块(图中为示出)实现: 获取 子模块, 用于在第一单元进行接入设备是否是 CE Router判断过程中或判断之 后, 获取 CE Router所对应站点的 VRF属性信息; 以及, 生成子模块, 用于 根据获取子模块获取的 VRF属性信息, 为 CE Router所对应站点生成 VRF。  Further, the foregoing third sub-unit may be implemented by the following sub-module (shown in the figure): an obtaining sub-module, configured to acquire a CE Router during or after determining whether the access device is a CE Router in the first unit. The VRF attribute information of the corresponding site; and a generating submodule, configured to generate a VRF for the site corresponding to the CE Router according to the VRF attribute information acquired by the acquiring submodule.
另外, 为了实现灵活的用户策略配置, 该设备还可以包括: 第三单元, 用 于为 CE Router所对应站点配置相应的用户策略, 或为 CE Router所对应站点 下不同的网段或 IP地址配置相应的用户策略。 其中, 用户策略包括以下策略 的任一或其组合: 路由策略、 业务策略或 QoS策略。  In addition, in order to implement the flexible user policy configuration, the device may further include: a third unit, configured to configure a corresponding user policy for the site corresponding to the CE router, or configured for different network segments or IP addresses of the site corresponding to the CE Router The corresponding user policy. The user policy includes any one or a combination of the following policies: a routing policy, a business policy, or a QoS policy.
进一步的, 该设备还可以包括第四单元, 用于根据 CE Router下的网络信 息, 对第三单元配置的用户策略进行动态更新。  Further, the device may further include a fourth unit, configured to dynamically update the user policy configured by the third unit according to the network information under the CE Router.
可以理解的是,该设备可以作为 PE Router,具体可以是: GGSN, PDSN, ASN GW, PDN GW, Serving GW等网元。  It can be understood that the device can be used as a PE router, and specifically: a GGSN, a PDSN, an ASN GW, a PDN GW, a Serving GW, and the like.
本发明再一个实施例还提供了一种提供路由业务的***,包括上述设备实 施例所提供的提供路由业务的设备, 以及与该设备通信的 CE Router, 其中, CE Router上行支持无线接入。  A further embodiment of the present invention further provides a system for providing a routing service, including a device for providing a routing service, and a CE router for communicating with the device, where the CE Router supports wireless access.
由于在设备实施例中对该设备进行了详细描述, 此处不再赘述。 另外可以 理解的是, 该 CE Router可以是无线路由器, 而且, 可作为 CE Router的无线 路由器不限于 3G Router, 比如, 还可以是支持 2G、 2.5G、 4G以及将来可能 出现的支持其他制式无线接入的无线路由器,还可以是同时支持多种制式无线 接入的无线路由器,而且,还可以是同时支持无线和有线接入的路由器。另夕卜, 无线路由器下连接的网络可以有多种, 网络中的主机也可以有多种, 此处不再 赘述。 Since the device is described in detail in the device embodiment, details are not described herein again. In addition, it can be understood that the CE Router can be a wireless router, and the wireless router that can be used as the CE Router is not limited to the 3G Router. For example, it can also support 2G, 2.5G, 4G, and other possible support for other systems in the future. Into the wireless router, it can also support multiple wireless systems at the same time The wireless router that is connected, and it can also be a router that supports both wireless and wired access. In addition, there may be multiple types of networks connected to the wireless router, and there may be multiple types of hosts in the network, which are not described here.
另夕卜, 该***中还可以包括其他网元, 比如, 如图 1中所示的 3G Router 和 GGSN之间的 UMTS ***(具体可能包括基站和基站控制设备), 如图 2 中所示的外部服务器 Server, 用于保存接入设备标识 /APN以及无线路由器的 映射关系, 如图 4中的策略服务器 Policy Server, 用于保存用户策略, 可以供 GGSN或其他提供路由服务的设备查询使用。  In addition, the system may also include other network elements, for example, the UMTS system between the 3G Router and the GGSN as shown in FIG. 1 (which may specifically include a base station and a base station control device), as shown in FIG. 2 The external server server is configured to save the mapping relationship between the access device identifier/APN and the wireless router, such as the policy server Policy Server in FIG. 4, for storing the user policy, and can be used by the GGSN or other devices providing the routing service for querying.
综上所述, 在本发明的各实施方式中, 由 PE Router对接入设备的种类进 行确定, 如果接入设备是 CE Router, 则与其进行路由信息交换, 根据获取的 路由信息为相应的站点提供路由。 换句话说, 本发明实施例提供的技术方案, 将作为 CE Router的 3G Router当成一个网关, PE Router可以获知 CE Router 的路由信息,使得 3G Router可以作为 CE接入 VPN。所以,能够支持 CE Router 下连接多个网络(比如企业网)或连接多个用户设备(移动设备或固定设备) 使用 VPN业务, 为运营商业务的扩展提供了实现的可能, 比如, 为中小企业 客户提供一些增值 VPN特性。  In summary, in the embodiments of the present invention, the type of the access device is determined by the PE router. If the access device is a CE router, the routing information is exchanged with the routing information, and the obtained routing information is the corresponding site. Provide routing. In other words, the technical solution provided by the embodiment of the present invention is to use the 3G router as the CE router as a gateway, and the PE router can obtain the routing information of the CE router, so that the 3G router can be used as a CE to access the VPN. Therefore, it is possible to support the connection of multiple networks (such as enterprise networks) or connect multiple user equipments (mobile devices or fixed devices) under the CE Router to use VPN services, which provides opportunities for the expansion of carrier services, for example, for SMEs. Customers offer some value-added VPN features.
另夕卜, 可以在识别接入设备是 CE Router的前提下, 为该 CE Router所对 应的站点提供 /配置不同的用户策略, 从而满足不同站点 (对应不同的网络或 用户群)的差异化服务要求。 进一步的, 多种用户策略可以灵活组合, 且能够 针对站点级别、 网段级别或针对具体的 IP地址进行配置, 进一步实现了精细 化的差异配置管理。  In addition, under the premise that the access device is a CE router, different user policies are provided/configured for the site corresponding to the CE router, thereby satisfying different services of different sites (corresponding to different networks or user groups). Claim. Further, multiple user policies can be flexibly combined, and can be configured for site level, network segment level, or specific IP address, further implementing refined differential configuration management.
本发明实施例中的"接收,,一词可以理解为主动从其他模块获取,也可以是 接收其他模块发送来的信息。  The term "receiving" in the embodiment of the present invention may be understood as being actively acquired from other modules, or may be receiving information sent by other modules.
本领域技术人员可以理解附图只是一个优选实施例的示意图,附图中的模 块或流程并不一定是实施本发明所必须的。  A person skilled in the art can understand that the drawings are only a schematic diagram of a preferred embodiment, and the modules or processes in the drawings are not necessarily required to implement the invention.
本领域普通技术人员可以理解实现上述实施例方法中的全部或部分步骤 可以通过程序来指令相关的硬件完成,所述的程序可以存储于一种计算机可读 存储介质中, 该程序在执行时, 包括方法实施例的步骤之一或其组合。  A person skilled in the art can understand that all or part of the steps of implementing the above embodiments may be performed by a program to instruct related hardware, and the program may be stored in a computer readable storage medium, when executed, Include one of the steps of the method embodiments or a combination thereof.
另外, 在本发明各个实施例中的各功能单元可以集成在一个处理模块中, 也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个模块 中。上述集成的模块既可以釆用硬件的形式实现, 也可以釆用软件功能模块的 形式实现。所述集成的模块如果以软件功能模块的形式实现并作为独立的产品 销售或使用时, 也可以存储在一个计算机可读取存储介质中。 In addition, each functional unit in various embodiments of the present invention may be integrated into one processing module. It is also possible that each unit physically exists alone, or two or more units may be integrated in one module. The above integrated modules can be implemented in the form of hardware or in the form of software functional modules. The integrated modules, if implemented in the form of software functional modules and sold or used as separate products, may also be stored in a computer readable storage medium.
上述提到的存储介质可以是只读存储器, 磁盘或光盘等。  The above-mentioned storage medium may be a read only memory, a magnetic disk or an optical disk or the like.
以上所述仅是本发明的优选实施方式,应当指出,对于本技术领域的普通技术 人员来说, 在不脱离本发明原理的前提下, 还可以做出若干改进和润饰, 这些 改进和润饰也应视为本发明的保护范围。 The above is only a preferred embodiment of the present invention, and it should be noted that those skilled in the art can also make several improvements and retouchings without departing from the principles of the present invention. It should be considered as the scope of protection of the present invention.

Claims

权 利 要 求 Rights request
1、 一种提供路由服务的方法, 其特征在于, 包括:  A method for providing a routing service, comprising:
判断接入设备是否是用户边缘设备路由器 CE Router , 所述 CE Router上 行支持无线接入;  Determining whether the access device is a user edge device router CE Router, and the CE Router supports uplink wireless access;
当确定接入设备是所述 CE Router时, 为所述 CE Router所对应的站点提 供路由服务。  When it is determined that the access device is the CE router, the routing service is provided for the site corresponding to the CE router.
2、 如权利要求 1所述的方法, 其特征在于, 所述判断接入设备是否是所 述 CE Router包括:  The method of claim 1, wherein the determining whether the access device is the CE router comprises:
根据接入设备的标识, 判断接入设备是否是所述 CE Router; 或  Determining, according to the identifier of the access device, whether the access device is the CE Router; or
根据接入设备请求接入的接入点名称 APN, 判断接入设备是否是所述 CE Determining whether the access device is the CE according to the access point name APN that the access device requests to access
Router。 Router.
3、 如权利要求 1或 2所述的方法, 其特征在于, 所述为所述 CE Router 所对应的站点提供路由服务包括:  The method according to claim 1 or 2, wherein the providing a routing service for the site corresponding to the CE Router includes:
为所述 CE Router所对应站点生成虚拟路由转发 VRF;  Generating a virtual route forwarding VRF for the site corresponding to the CE router;
通过路由协议, 生成所述 VRF的路由;  Generating a route of the VRF by using a routing protocol;
根据所述 VRF的路由, 为所述 CE Router所对应的站点转发业务数据。 And forwarding, according to the route of the VRF, service data for a site corresponding to the CE router.
4、 如权利要求 3所述的方法, 其特征在于, 所述为所述 CE Router所对 应站点生成 VRF包括: The method of claim 3, wherein the generating a VRF for the site corresponding to the CE Router comprises:
在进行所述接入设备是否是所述 CE Router判断过程中或判断之后, 获取 所述 CE Router所对应站点的 VRF属性信息;  Obtaining VRF attribute information of the site corresponding to the CE router, in the process of determining whether the access device is the CE router, or after determining;
根据所述 VRF属性信息, 为所述 CE Router所对应站点生成 VRF。  And generating a VRF for the site corresponding to the CE router according to the VRF attribute information.
5、 如权利要求 1所述的方法, 其特征在于, 所述方法还包括:  5. The method of claim 1, wherein the method further comprises:
为所述 CE Router所对应站点配置相应的用户策略, 或为 CE Router所对 应站点下不同的网段或 IP地址配置相应的用户策略;  Configure corresponding user policies for the corresponding sites of the CE router, or configure corresponding user policies for different network segments or IP addresses of the sites corresponding to the CE Router;
其中, 所述用户策略包括以下策略的任一或其组合: 路由策略、 业务策略 或 QoS策略。  The user policy includes any one or a combination of the following policies: a routing policy, a service policy, or a QoS policy.
6、 如权利要求 5所述的方法, 其特征在于, 所述方法还包括:  The method of claim 5, wherein the method further comprises:
根据所述 CE Router下的网络信息,对所述配置的用户策略进行动态更新。 The user policy of the configuration is dynamically updated according to the network information of the CE router.
7、 一种提供路由服务的设备, 其特征在于, 包括: 第一单元, 用于判断接入设备是否是用户边缘设备路由器 CE Router, 所 述 CE Router上行支持无线接入; 以及 7. A device for providing a routing service, comprising: The first unit is configured to determine whether the access device is a user edge device router CE Router, and the CE Router uplink supports wireless access;
第二单元, 用于当所述第一单元确定接入设备是所述 CE Router时, 为所 述 CE Router所对应的站点提供路由服务。  The second unit is configured to provide a routing service for the site corresponding to the CE Router when the first unit determines that the access device is the CE router.
8、 如权利要求 7所述的设备, 其特征在于, 所述第一单元包括: 第一子单元, 用于根据所述接入设备的标识, 判断接入设备是否是所述 CE Router; 或  The device according to claim 7, wherein the first unit comprises: a first subunit, configured to determine, according to an identifier of the access device, whether the access device is the CE Router; or
第二子单元, 用于根据接入设备请求接入的接入点名称 APN, 判断接入 设备是否是所述 CE Router。  The second subunit is configured to determine, according to the access point name APN that the access device requests to access, whether the access device is the CE Router.
9、 如权利要求 7或 8所述的设备, 其特征在于, 所述第二单元包括: 第三子单元, 用于为所述 CE Router所对应站点生成虚拟路由转发 VRF; 第四子单元, 用于通过路由协议, 为所述第三子单元生成的 VRF生成路 由; 以及  The device according to claim 7 or 8, wherein the second unit comprises: a third subunit, configured to generate a virtual route forwarding VRF for the site corresponding to the CE router; and a fourth subunit, Generating a route for the VRF generated by the third subunit by using a routing protocol;
第五子单元, 用于根据所述第四子单元生成的 VRF 的路由, 为所述 CE Router所对应的站点转发业务数据。  And a fifth subunit, configured to forward the service data to the site corresponding to the CE router according to the route of the VRF generated by the fourth subunit.
10、 如权利要求 9所述的设备, 其特征在于, 所述第三子单元包括: 获取子模块, 用于在所述第一单元进行所述接入设备是否是所述 CE The device of claim 9, wherein the third subunit comprises: an obtaining submodule, configured to: in the first unit, whether the access device is the CE
Router判断过程中或判断之后, 获取所述 CE Router所对应站点的 VRF属性 信息; 以及 Obtaining VRF attribute information of the site corresponding to the CE Router during or after the judgment of the router;
生成子模块, 用于根据获取子模块获取的所述 VRF属性信息, 为所述 CE Generating a submodule, configured to obtain, according to the VRF attribute information acquired by the submodule, the CE
Router所对应站点生成 VRF。 The VRF is generated on the site corresponding to the Router.
11、 如权利要求 7所述的设备, 其特征在于, 所述设备还包括:  The device of claim 7, wherein the device further comprises:
第三单元, 用于为所述 CE Router所对应站点配置相应的用户策略, 或为 CE Router所对应站点下不同的网段或 IP地址配置相应的用户策略;  The third unit is configured to configure a corresponding user policy for the corresponding site of the CE router, or configure a corresponding user policy for different network segments or IP addresses of the site corresponding to the CE router;
其中, 所述用户策略包括以下策略的任一或其组合: 路由策略、 业务策略 或 QoS策略。  The user policy includes any one or a combination of the following policies: a routing policy, a service policy, or a QoS policy.
12、 如权利要求 11所述的设备, 其特征在于, 所述设备还包括第四单元, 用于根据所述 CE Router下的网络信息, 对所述第三单元配置的用户策略进行 动态更新。 The device according to claim 11, wherein the device further includes a fourth unit, configured to dynamically update a user policy configured by the third unit according to network information of the CE router.
13、 一种提供路由服务的***, 其特征在于, 包括如权利要求 7至 12任 一项所述的设备, 以及与所述设备通信的 CE Router, 其中, 所述 CE Router 上行支持无线接入。 A system for providing a routing service, comprising: the device according to any one of claims 7 to 12, and a CE router that communicates with the device, wherein the CE Router supports uplink wireless access .
PCT/CN2009/071014 2009-03-26 2009-03-26 Method, apparatus and system for providing route service for a customer edge device router WO2010108321A1 (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN200980159438.1A CN102362467B (en) 2009-03-26 2009-03-26 Method, device and system for providing route service
PCT/CN2009/071014 WO2010108321A1 (en) 2009-03-26 2009-03-26 Method, apparatus and system for providing route service for a customer edge device router

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
PCT/CN2009/071014 WO2010108321A1 (en) 2009-03-26 2009-03-26 Method, apparatus and system for providing route service for a customer edge device router

Publications (1)

Publication Number Publication Date
WO2010108321A1 true WO2010108321A1 (en) 2010-09-30

Family

ID=42780137

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2009/071014 WO2010108321A1 (en) 2009-03-26 2009-03-26 Method, apparatus and system for providing route service for a customer edge device router

Country Status (2)

Country Link
CN (1) CN102362467B (en)
WO (1) WO2010108321A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113067733A (en) * 2021-03-25 2021-07-02 支付宝(杭州)信息技术有限公司 Multi-site configuration control method, device and equipment with privacy protection function

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108923401B (en) * 2018-08-27 2019-11-29 广东电网有限责任公司 A kind of calculation method and device of superconductive current limiter fault resstance and cut-off current

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1414749A (en) * 2002-08-23 2003-04-30 华为技术有限公司 Three layer virtual private network and its construction method
CN1520101A (en) * 2003-01-22 2004-08-11 ��Ϊ�������޹�˾ Method for determining relation between routers at fringe of client site and virtual private network
US20060215578A1 (en) * 2005-03-25 2006-09-28 Lucent Technologies Inc. Method for optimal assignment of customer edge (CE) routers to virtual private network route forwarding (VRF) tables
US20080240125A1 (en) * 2007-03-29 2008-10-02 Verizon Business Network Services Inc. Interconnecting multiple mpls networks

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007141840A1 (en) * 2006-06-05 2007-12-13 Hitachi Communication Technologies, Ltd. Relay network system and terminal adapter

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1414749A (en) * 2002-08-23 2003-04-30 华为技术有限公司 Three layer virtual private network and its construction method
CN1520101A (en) * 2003-01-22 2004-08-11 ��Ϊ�������޹�˾ Method for determining relation between routers at fringe of client site and virtual private network
US20060215578A1 (en) * 2005-03-25 2006-09-28 Lucent Technologies Inc. Method for optimal assignment of customer edge (CE) routers to virtual private network route forwarding (VRF) tables
US20080240125A1 (en) * 2007-03-29 2008-10-02 Verizon Business Network Services Inc. Interconnecting multiple mpls networks

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113067733A (en) * 2021-03-25 2021-07-02 支付宝(杭州)信息技术有限公司 Multi-site configuration control method, device and equipment with privacy protection function
CN113067733B (en) * 2021-03-25 2022-08-26 支付宝(杭州)信息技术有限公司 Multi-site configuration control method, device and equipment with privacy protection function

Also Published As

Publication number Publication date
CN102362467B (en) 2014-12-03
CN102362467A (en) 2012-02-22

Similar Documents

Publication Publication Date Title
JP7252305B2 (en) Data transmission method, device and system
EP3759870B1 (en) Network slicing with smart contracts
WO2020035051A1 (en) Systems and methods for enabling private communication within a user equipment group
JP6509219B2 (en) Methods, systems, and computer readable media for Diameter routing using software defined network (SDN) functionality
US9485192B2 (en) Selectable service node resources
US8549146B2 (en) Stateless forwarding of load balanced packets
US20150350912A1 (en) Residential service delivery based on unique residential apn
JP5412695B2 (en) Method, apparatus and system for mobile virtual private network communication
JP2020519144A (en) Service capability disclosure facility (SCEF) based Internet of Things (IOT) communication method and system
WO2016184368A1 (en) Method, device and system for authorizing service of user
EP3732833B1 (en) Enabling broadband roaming services
US20130227673A1 (en) Apparatus and method for cloud networking
WO2013067904A1 (en) Inter-domain virtual private network interfacing method and device
WO2015169044A1 (en) Session binding method, device and system in roaming scenario
CN110036608B (en) Methods, systems, and computer readable media for priority routing of Diameter messages
JP2018537045A (en) Expansion of customer premises LAN
US20180013717A1 (en) Service Dependent IP Addresses
WO2010108321A1 (en) Method, apparatus and system for providing route service for a customer edge device router
US20220329566A1 (en) Access Control Method, Apparatus, and System
WO2012075768A1 (en) Method and system for monitoring locator/identifier separation network
US9325612B2 (en) Dynamic IPoE clips subscriber method and apparatus
JP5947763B2 (en) COMMUNICATION SYSTEM, COMMUNICATION METHOD, AND COMMUNICATION PROGRAM
US8645564B2 (en) Method and apparatus for client-directed inbound traffic engineering over tunnel virtual network links
EP3907935A1 (en) Customer control of their mobile assets
WO2011100876A1 (en) Method and system for implementling detachment process at network side

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200980159438.1

Country of ref document: CN

121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 09842058

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 09842058

Country of ref document: EP

Kind code of ref document: A1