CN101155046B - Network control system and method for implementing multicast control - Google Patents
Network control system and method for implementing multicast control Download PDFInfo
- Publication number
- CN101155046B CN101155046B CN2006100627935A CN200610062793A CN101155046B CN 101155046 B CN101155046 B CN 101155046B CN 2006100627935 A CN2006100627935 A CN 2006100627935A CN 200610062793 A CN200610062793 A CN 200610062793A CN 101155046 B CN101155046 B CN 101155046B
- Authority
- CN
- China
- Prior art keywords
- multicast
- user
- information
- control system
- network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The invention relates to a NGN technique and discloses a network control system and method of realizing multicast controlling, wherein the said network control system comprises a control functional entity and a multicast replication functional entity. The said method comprises: user sending the request for joining multicast service to the said network control system; the multicast control functional entity generating user multicast authority list and judging whether the multicast control functional entity has the permission of receiving the corresponding multicast service based on the user multicast authority list and sending the judge result to the multicast replication functional entity. The said multicast replication functional entity relays the corresponding multicast traffic flow to user with authority based on the information of the multicast control functional entity. The invention can control, manage and operate the multicast service in NGN network.
Description
Technical Field
The present invention relates to Next Generation Networks (NGNs), and in particular, to a Network control system and method for implementing multicast control in an NGN.
Background
In the process of Next Generation Network (NGN) research, ITU-T and TISPAN respectively propose hierarchical NGN Network structures with substantially the same structure and function. In order to enable a User to implement NGN service Access anytime and anywhere and obtain seamless and high-quality service, ITU-T defines a Network attachment Control system (NACF) in a transport layer of an NGN architecture, and the structure of the ITU-T is shown in fig. 1, and mainly includes a Network Access Control Function entity (Network Access Control FE), an Authentication and Authentication Function entity (Authentication & Authorization FE), a User Profile FE (User Profile FE), a Location Management Function entity (Location Management FE), and the like. The network attachment control system can complete the allocation of the IP address and terminal configuration parameters of the user, the authentication of the user during or before the address allocation procedure, the network access authorization according to the user service list (profile), the access network configuration according to the user service list, the location management, the management of the access network, and the like.
In order to achieve the same purpose, the TISPAN defines a Network Attachment Subsystem (NASS) in the transport layer of the NGN architecture, and completes the allocation of the IP address and the terminal configuration parameter of the user, the authentication of the user during or before the address allocation procedure, the Network access authorization according to the user service list (profile), the access Network configuration according to the user service list, the location management, and the management of the access Network by the NASS.
The architecture of NASS is shown in fig. 2, among many functional entities of NASS, a user Network Gateway Configuration Function (CNGCF) entity provides additional Configuration information such as internal firewall control, QoS, etc. to a user when a client device (CPE) initializes and updates. An Access Relay Function (ARF) entity, which relays between the CPE and the NASS, receives a network access request from the CPE and forwards the CPE's request to the NASS. A Network Access Configuration Function (NACF) entity is mainly responsible for allocating an IP address to a user, providing Network Configuration parameters, and the like, and plays a role of a Dynamic Host Configuration Protocol (DHCP) server or a Remote user Dial-in Authentication service (RADIUS) server. A connection session Location and repetition Function (CLF) entity records the association between the IP address assigned to the CPE and the network Location information provided by the NACF entity, the association between the network Location information and the geographical Location information, and also stores the user identifier to which the IP address is assigned, the user network QoS description, and user parameters related to the user private Location information. A User Access Authorization Function (UAAF) entity performs user authentication and network access Authorization based on a user network list, wherein authentication and Authorization information from the user service list is stored in a Profile Database Function (PDBF) entity. The PDBF entity stores authentication and authorization data for users, as well as a database of information related to network access configurations. An Access Management Function (AMF) entity converts a network Access request sent by a user and sends IP address allocation and a possible network configuration parameter request to an NACF entity; and sending a request to the UAAF entity, and verifying the authorization of the user and the network access by the UAAF entity to obtain the access configuration parameters of the user.
Currently, in both NGN architectures, IP Multimedia Service (IMS) Services and traditional fixed Telephone Network/Integrated Services Digital Network (PSTN/ISDN) Services can be implemented, but these Services cannot support streaming media Services (such as IPTV Services), and especially cannot provide multicast control and copy functions for these streaming media Services.
In a conventional network, there are several schemes that can implement multicast control:
one solution is a multicast control solution that provides a group management protocol that automatically identifies the ports connected to the multicast router once the protocol is activated for use. When the router receives the request of the host for joining the multicast group through the IGMPreport message, the multicast router creates a data packet containing the request type of joining, the multicast group address, the effective MAC address of the host and the like and sends the data packet to the two-layer switch, and when the two-layer switch receives the data packet, the switch is responsible for converting the data packet and changing the forwarding behavior of the multicast group. To this end, the multicast traffic is only sent by the layer two ethernet switch to those ports connected to the appropriate IP multicast client.
The second scheme is a multicast flow Control scheme, which mainly sets a maximum threshold for the number of users joining a multicast group in a multicast flow Control Unit (MTCU), and sets different priorities for different multicast groups, when the MTCU has reached the threshold for forwarding multicast, if a new user joins the multicast group, the MTCU will select the user with the lowest priority to leave through the priority of the user, and let the new user with high priority join the multicast group, thereby achieving the Control of multicast flow.
The third scheme is a controlled multicast scheme, which is mainly applied to a system consisting of a multicast router, an Ethernet switch, a user host connected with the Ethernet switch, a portal server and an AAA server, wherein the system acts on an authentication interface of a user through the portal server, the AAA server acts on the configuration of user multicast authority, and acquires the authority configuration and authentication of a user multicast group through an interface between the multicast router and the AAA server and an interface between the multicast router and the portal service, and then controls the Ethernet switch to carry out multicast forwarding between the Ethernet multicast router and the Ethernet switch.
According to the method, no matter whether the user has the authority to obtain the multicast message or not, the user can obtain the multicast message only by adding the multicast group. Therefore, the network device cannot control the forwarding of the multicast message according to the user authority; the second scheme ensures that the users with high priority added into the multicast group obtain the multicast message firstly by limiting the number of the users in the multicast group, but because the method limits the number of the users added into the multicast group, part of people cannot obtain the multicast information; in the third scheme, a user name and a password must be input through an interface provided by a portal server for authentication, and other access authentication modes are not considered. Secondly, the authority of the user for joining the multicast group must be stored on the AAA server, and the multicast authority configuration of the user is transmitted to the multicast router through the extension of a Radius protocol, and if the user configures and transmits the multicast authority of the user through other modes and other functional entities, the consideration is not given; the scheme does not consider the charging information generated according to the IP multicast flow to be notified to the AAA server; this solution also does not take into account the online status of the user; the scheme does not consider the content of resource admission control, and considers the QOS of IP multicast according to the resource.
Disclosure of Invention
In order to overcome the defects in the multicast control of the NGN, the invention provides a network control system for realizing the multicast control, so that the multicast service can be controlled and forwarded in the NGN in a resource and admission control mode according to the access authority of a user and the authority of a multicast service flow, and the controllable, manageable and operable multicast service is realized.
The invention also provides a method for realizing multicast control in the NGN, which enables the multicast service to be controlled and forwarded in the NGN in a resource admission control mode according to the access authority of the user and the authority of the multicast service stream, and realizes the control, manageability and operation of the multicast service.
The network control system provided by the invention comprises a service control function system, a resource admission control system, an authentication and certification function entity, an access management function entity and an access control function entity, and is characterized by also comprising a multicast control function entity and a multicast replication function entity, wherein,
the multicast control functional entity is used for generating a user multicast authority table and judging whether a user initiating a request for joining a multicast service group has the authority for receiving the corresponding multicast service or not according to the user multicast authority table;
the multicast replication function entity is used for receiving a request initiated by a user for joining the multicast service group, forwarding the request to the multicast control function entity, and replicating and forwarding the multicast message to the user with the authority according to the notification of the multicast control function entity.
Optionally, the multicast control function entity includes:
a multicast information obtaining unit, configured to obtain information corresponding to a multicast group and a multicast service of a user from a user management system in the service control function system;
a resource information obtaining unit, configured to apply for a network resource for a user from a resource admission control system, determine whether the user can obtain a resource for receiving a multicast service, and record network resource information;
a user information obtaining unit, configured to obtain user information from an access management function entity, where the user information includes an MAC address of a user, a VLAN identifier, and a user online status;
the user multicast authority table generating unit is used for generating a user multicast authority table according to the acquired user information and the multicast group information;
and the user permission judging unit is used for judging whether the user initiating the request for joining the multicast service group has the permission for joining the multicast service group.
Optionally, the multicast control function entity further includes:
the storage unit is used for storing the user multicast authority list;
a receiving unit, configured to receive a request for a user to join a multicast service group, where the request is forwarded by a multicast replication functional entity;
and the notification unit is used for sending the authority information of the user to the multicast copy function entity.
Optionally, the multicast control function entity further includes:
and the charging information sending unit is used for sending the user multicast flow statistical information and the user information obtained from the multicast replication functional entity to the authentication and certification functional entity.
Optionally, the multicast replication functional entity includes:
a receiving unit, configured to receive a request for joining a multicast service group sent by a user;
the request message forwarding unit is used for forwarding a request of a user for adding in a multicast service group to a multicast control function entity after acquiring user information;
an authority message receiving unit, configured to receive user authority information corresponding to the requested multicast service, sent by the multicast control function entity;
a user information obtaining unit, configured to obtain, according to the user permission information forwarded by the permission information receiving unit, user copy information requesting to join the multicast service group, where the user copy information includes a multicast group address and a user MAC address;
a multicast replication control list generating unit, configured to generate a multicast replication control list according to the user information obtained by the user information obtaining unit;
a storage unit, configured to store the multicast replication control list;
and the multicast message copying unit is used for copying the multicast message to the user according to the user permission information.
Optionally, the multicast replication function entity further includes:
the multicast message receiving unit is used for receiving the multicast message and forwarding the multicast message to the multicast message copying unit;
and the multicast message forwarding unit is used for forwarding the multicast message copied by the multicast message copying unit to a specific user.
Optionally, the multicast replication functional entity further includes:
and the charging information sending unit is used for sending the user multicast flow statistical information and the user information which are obtained through statistics to the authentication and certification functional entity.
Optionally, when the multicast control function entity generates the user multicast permission table, the following steps are executed:
applying for network resources for users to a resource admission control system, judging whether the users can obtain resources for receiving multicast services, and recording network resource information;
obtaining user information including the MAC address, VLAN identification and user online state of a user through an access management functional entity;
acquiring corresponding information of a user multicast group and a multicast service through a user management system in a service control function system;
acquiring authority information of a user through an access management functional entity or an authentication and certification functional entity;
and associating part or all of the information to form a user multicast authority table.
Optionally, when the multicast replication function entity forwards the packet to the user, the multicast replication function entity performs multicast traffic statistics at the same time, and sends the multicast traffic statistics information and the corresponding user information to the authentication and authentication function entity for charging.
Optionally, when the multicast replication function entity forwards the packet to the user, the multicast replication function entity performs multicast traffic statistics at the same time, and sends the multicast traffic statistics information and the corresponding user information to the multicast control function entity, and the multicast control function entity forwards the information to the authentication and certification function entity for charging.
The method for realizing multicast control provided by the invention comprises the following steps:
A. a user initiates a request for joining a multicast service to a network control system;
B. the multicast control functional entity generates a user multicast authority table, judges whether the user has the authority to receive the corresponding multicast service according to the user multicast authority table, generates user authority information and sends the user authority information to the multicast replication functional entity;
C. the multicast replication functional entity forwards the corresponding multicast service stream to the authorized user according to the notification of the multicast control functional entity.
Optionally, before the step a, a step of accessing the user to the network control system through the relay function entity is further included.
Optionally, before the step a, a step of the user completing network access authentication in the network control system is further included.
Optionally, the network access authentication is performed by an authentication and authorization function entity in the network control system.
Optionally, the step C specifically includes the following steps:
after receiving the user authority information sent by the multicast control function entity, the multicast replication function entity generates a multicast replication control list according to the multicast group information and the user MAC address which are applied by the authorized user to join;
and the multicast copying functional entity copies and forwards the multicast message to the authorized user according to the information in the multicast copying control list.
Optionally, the following step is further included after step C:
the multicast replication functional entity sends the multicast flow statistical information and the user information of a specific user to the authentication and certification functional entity;
and the authentication and certification functional entity charges the user according to the multicast flow statistical information.
Optionally, the following step is further included after step C:
the multicast replication functional entity sends multicast flow statistical information and user information of a specific user to a multicast control functional entity;
the multicast control function entity forwards the information to an authentication and certification function entity in a network control system;
and the authentication and certification functional entity charges the user according to the multicast flow statistical information.
Optionally, the user multicast permission table includes user information, multicast service information, and network resource information.
Optionally, the user information includes a user online status, a user MAC address, a VLAN identifier, and a user right.
Optionally, the step of generating the user multicast permission table by the multicast control function entity specifically includes:
after the multicast control function entity receives the request of the user for joining the multicast service,
applying for network resources for users to a resource admission control system, judging whether the users can obtain resources for receiving multicast services, and recording network resource information;
obtaining user information including the MAC address, VLAN identification and user online state of a user through an access management functional entity;
acquiring corresponding information of a user multicast group and a multicast service through a user management system in a service control function system; acquiring authority information of a user through an access management functional entity or an authentication and certification functional entity;
and associating part or all of the information to form a user multicast authority table.
The invention also provides another method for realizing multicast control, which is characterized by comprising the following steps:
a user initiates a request for joining a multicast service to a network control system;
the resource admission control system checks whether the network control system has applied for network resource reservation for the user, if the network control system has applied for network resource reservation for the user, the multicast replication functional entity forwards the corresponding multicast service stream to the user.
Optionally, the step of the network control system applying for network resource reservation for the user specifically includes:
after the user access authentication, the network control system sends a resource reservation request message to the resource admission control system, wherein the resource reservation request message carries the QoS parameter of the user;
the resource admission control system allocates network resources to the user according to the QoS parameters of the user and the resource allocation strategy of the resource admission control system;
and the resource admission control system feeds back the resource information distributed for the user to the network control system.
Optionally, after the resource admission control system feeds back resource information allocated to the user to the network control system, if the user does not apply for joining the multicast service yet, the resource admission control system allocates the resource to the user who applies for later application after receiving a request for joining the multicast service initiated by another user, but the user who applies for later application must give away the resource occupied by the user who applies for resource reservation when applying for joining the multicast service.
Optionally, after the resource admission control system feeds back the resource information allocated to the user to the network control system, the resource that the user applies for reservation cannot be allocated to other users for use.
Optionally, after the resource admission control system feeds back resource information allocated to the user to the network control system, and after receiving a request for joining a multicast service initiated by a user applying for a reserved resource, the resource admission control system queries whether the user still has permission to acquire the reserved resource, and if so, allocates the reserved resource to the user for occupation.
Optionally, the QoS parameter includes a bandwidth and a service type.
Drawings
FIG. 1 is a block diagram of NACF in the prior art ITU-T NGN architecture.
FIG. 2 is a block diagram of the NASS in the prior art TISPAN NGN architecture;
fig. 3 is a flowchart of a method for implementing multicast control according to an embodiment of the present invention;
fig. 4 is a flowchart of a method for implementing multicast control according to an embodiment of the present invention;
fig. 5 is a structural diagram of a multicast control function entity in the network control system according to the present invention;
fig. 6 is a structural diagram of a multicast replication function entity in the network control system according to the present invention;
fig. 7 is a first structural diagram of a network control system for implementing multicast control according to an embodiment of the present invention;
fig. 8 is a second structure diagram of a network control system for implementing multicast control in the embodiment of the present invention.
Detailed Description
The method of the invention has the following steps: when a user initiates a request for joining a multicast service group to a network control system, a multicast copy functional entity forwards the request message to a multicast control functional entity, the multicast control functional entity judges whether the user has access authority according to a certain rule and instructs the multicast copy functional entity to copy and send a multicast message to the user according to the authority of the user, so that the multicast service can be controlled, managed and operated.
The network control system provided by the invention adds a multicast copy function entity and a multicast control function entity in the existing system, so that the multicast service can be controlled and forwarded in the NGN in a resource access control mode according to the access authority of the user and the authority of the multicast service stream, and the multicast service can be controlled, managed and operated.
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is described in further detail below with reference to the accompanying drawings and examples.
Referring to fig. 3, it is a flowchart of a method for implementing multicast control in the embodiment of the present invention, which is applied to the network attach and control function system shown in fig. 7. The method comprises the following steps:
the method specifically comprises the following steps:
the multicast control function entity applies network resources for users to the resource and admission control function system, judges whether the users can obtain the resources for receiving multicast services, and records the network resource information;
the multicast control functional entity obtains user information such as the MAC address, VLAN identification, user online state and the like of a user through the network access control functional entity;
the multicast control functional entity obtains the corresponding information of the user multicast group and the multicast service through a user management system in the service control functional system;
the multicast control functional entity accesses the control functional entity or the authentication and certification functional entity through the network to acquire the authority information of the user;
the multicast control functional entity associates all or part of the information to form a user multicast authority table.
if the system has no network resource for allocation, the user has not subscribed or registered the multicast service, or the user goes offline immediately after initiating a request for joining the multicast service, the multicast control functional entity considers that the user has no multicast right.
when the multicast control function entity sends the notification message, it sends the multicast service group and MAC address of the user at the same time, the multicast copy function entity builds the multicast copy control list according to the information, and copies the multicast flow and forwards it to the corresponding user. Meanwhile, the multicast replication functional entity can also complete a charging function, namely, flow statistics is carried out when multicast streams are sent to users, and the flow statistics and user information are sent to the authentication and certification functional entity or are sent to the multicast control functional entity first, and then the multicast control functional entity forwards the flow statistics and user information to the authentication and certification functional entity to charge corresponding users.
Referring to fig. 4, it is a flowchart of a second method for implementing multicast control in the embodiment of the present invention, which is applied to the network attachment subsystem shown in fig. 8. The method comprises the following steps:
step 401, a user accesses to a network attachment subsystem NASS through an access relay function entity ARF;
the method specifically comprises the following steps:
the multicast control functional entity applies network resources for users to a resource admission control subsystem RACS, judges whether the users can obtain the resources for receiving multicast services or not, and records network resource information;
the multicast control functional entity obtains user information such as the MAC address, VLAN identification, user online state and the like of a user through a user access authorization functional entity;
the multicast control functional entity obtains the corresponding information of the user multicast group and the multicast service through a service control subsystem and a user management system in an application SCSA;
the multicast control functional entity obtains the authority information of the user through the user access authorization functional entity;
the multicast control functional entity associates all or part of the information to form a user multicast authority table.
if the system has no network resource for allocation, the user has not subscribed or registered the multicast service, or the user goes offline immediately after initiating a request for joining the multicast service, the multicast control functional entity considers that the user has no multicast right.
when the multicast control function entity sends the notification message, it sends the multicast service group and MAC address of the user at the same time, the multicast copy function entity builds the multicast copy control list according to the information, and copies the multicast flow and forwards it to the corresponding user. Meanwhile, the multicast replication functional entity can also complete a charging function, namely, flow statistics is carried out when multicast streams are sent to users, and the flow statistics and user information are sent to the user access authorization functional entity or are sent to the multicast control functional entity firstly, and then the multicast control functional entity forwards the flow statistics and the user information to the user access authorization functional entity to charge corresponding users.
The invention also provides another method for realizing multicast control, which comprises the following steps:
a user initiates a request for joining a multicast service to a network control system;
the resource admission control system checks whether the network control system has applied for network resource reservation for the user, if the network control system has applied for network resource reservation for the user, the multicast replication functional entity forwards the corresponding multicast service stream to the user.
The step of the network control system applying for network resource reservation for the user specifically comprises:
after the user access authentication, the network control system sends a resource reservation request message to the resource admission control system, and the resource reservation request message carries the QoS parameters (including bandwidth, service type and the like) of the user;
the resource admission control system allocates network resources to the user according to the QoS parameters of the user and the resource allocation strategy of the resource admission control system;
and the resource admission control system feeds back the resource information distributed for the user to the network control system.
The method for realizing multicast control comprises the following steps of:
after the resource admission control system feeds back resource information distributed for a user to the network control system, if the user does not apply for joining the multicast service, the resource admission control system distributes the resource to a user who applies for later application after receiving a request for joining the multicast service initiated by other users, but the user who applies for later application must give away the resource occupied by the user who applies for resource reservation when applying for joining the multicast service; and
after the resource admission control system feeds back the resource information allocated to the user to the network control system, the resource which the user applies for reservation can not be allocated to other users for use.
In order to improve the security of the network, the following steps can be realized: after the resource admission control system feeds back the resource information allocated to the user to the network control system, after receiving the request for joining the multicast service initiated by the user applying for the reserved resource, the resource admission control system inquires whether the user still has the right to acquire the reserved resource or not from the network control system, and if so, the reserved resource is allocated to the user to occupy.
The network control system provided by the present invention is described below with reference to fig. 7 and 8.
Fig. 7 is an improvement of a network attach and control function system NACF of ITU-T in the prior art, in which a multicast control function entity MCF and a multicast replication function entity MRF are added, where the multicast replication function entity connects the multicast control function entity and the access relay function entity, and is configured to forward a multicast stream to an authorized user through the access relay function entity according to a notification of the multicast control function entity; the multicast control function entity is connected with the authentication and certification function entity and the network access control function entity, and both the two function entities can provide user information for the multicast control function entity; the multicast control function entity is connected to the resource and admission control system and is used for applying for resources for users; the multicast control function entity is connected to the service control function system and acquires the information of the multicast service group applied by the user. The processing procedure for implementing multicast control in the network control system shown in fig. 7 includes:
the user accesses the network attachment and control function system through the access relay function entity, and after the user authenticates and passes the network attachment and control function system, the user applies for adding the multicast service through the access relay function entity;
the multicast control functional entity MCF is connected to the authentication and certification functional entity to carry out authentication for the sender and the receiver of the multicast user, and transmits the collected statistical information of the multicast stream sent by the sender of the multicast user and the statistical information of the multicast stream received by the receiver to the authentication and certification functional entity, thereby being convenient for charging the user according to the statistical information of the multicast stream;
a multicast control function entity MCF is connected to a Service control function System (SCF) (e.g., a subscriber management system in an IPTV Service system, a home subscriber server in an IMS system, etc.), and the MCF obtains information of a multicast Service group for which a subscriber applies for authorization from the Service control function system SCF (e.g., a corresponding relationship between an IPTV channel and a multicast group address in the IPTV Service system, a priority level formed by the subscriber's level, etc.);
the multicast Control functional entity MCF is connected to a Resource and admission Control functional system (RACF), checks the Resource availability from the RACF according to a specific policy rule, and distributes resources for forwarding the multicast message to an authorized user;
the MCF is connected to the network access functional entity, and obtains user information (such as the online state of a user, an MAC address, a VLAN identification, the authority of the user and the like) from the network access functional entity;
the multicast control functional entity acquires the authority information of the user by interconnecting with the system or the functional entity to form a user multicast authority table, and controls the access of the multicast service of the user according to the user multicast authority table.
The Multicast Replication function entity is connected to the Multicast Control function entity, when a user applies for joining a Multicast group, the Multicast Control function entity sends user information and permission information to the Multicast Replication function entity according to a user Multicast permission List, the Multicast Replication function entity forms a Multicast Replication Control List (MRCL including a Multicast group address, a user MAC address and the like) according to the information of the user applying for joining the Multicast group, and replicates a Multicast service stream to the user according to the user Multicast access List MRCL;
the multicast replication functional entity is connected with the access relay functional entity, and the multicast stream is forwarded to the user equipment with the authority through the access relay functional entity;
the multicast replication functional entity can also perform multicast flow statistics when forwarding the multicast stream and send the statistical information and the user information to the authentication and certification functional entity, or send the statistical information to the multicast control functional entity first, and then the multicast control functional entity sends the flow statistical information and the user information to the authentication and certification functional entity, thereby facilitating the charging of the user.
Fig. 8 is an improvement of the network attachment subsystem NASS in the NGN architecture of TISPAN in the prior art, in which a multicast control function entity MCF and a multicast replication function entity MRF are added, where the multicast replication function entity connects the multicast control function entity and the access relay function entity, and is configured to forward a multicast stream to an authorized user equipment UE through the access relay function entity according to the notification of the multicast control function entity; the multicast control functional entity is connected with a user access authorization functional entity UAAF and an access management functional entity AMF to acquire user information; the multicast control function entity is connected to a resource admission control subsystem RACS and is used for applying for network resources for users; the multicast control function entity is connected to the service control subsystem and the application SCSA, and is used for acquiring the information of the multicast service group applied by the user. The process of implementing multicast control in the network control system shown in fig. 8 includes:
user Equipment (UE) is accessed into a network attachment subsystem (NASS) through an access relay function entity (ARF), user access authentication is carried out by a user access authorization function entity (UAAF), and a user applies for adding multicast service to the NASS through the access relay function entity (ARF);
the multicast control functional entity is connected to the user access authorization function, authenticates the sender and the receiver of the multicast user, transmits the collected statistical information of the multicast stream sent by the sender and the receiver of the multicast user and the statistical information of the multicast stream received by the receiver to the UAAF, and charges the user according to the statistical information of the multicast stream;
the multicast control functional entity is connected to the service control subsystem and an application SCSA (e.g. a user management system in an IPTV service system, a home subscriber server in an IMS system, etc.), and obtains information of a multicast service group for which a user applies for authorization from the SCSA (e.g. a corresponding relationship between an IPTV channel and a multicast address in the IPTV service system, a priority of the user, etc.);
the multicast control functional entity is connected to a resource admission control subsystem RACS, and judges whether the RACS can distribute resources for sending corresponding multicast to users according to a certain strategy;
the multicast control function is connected with the access management function AMF, obtains user information (such as the online state, MAC address, VLAN identification, user authority and the like of a user) from the access management function, can also obtain user access authentication information, and sends a multicast stream according to the online information of the user;
the multicast control functional entity acquires the authority information of the user by interconnecting with the system or the functional entity to form a user multicast authority table, and controls the access of the multicast service of the user according to the user multicast authority table.
The Multicast Replication function entity is connected to the Multicast Control function entity, when a user applies for joining a Multicast group, the Multicast Control function entity sends user information and permission information to the Multicast Replication function entity according to a user Multicast permission List, the Multicast Replication function entity forms a Multicast Replication Control List (MRCL including a Multicast group address, a user MAC address and the like) according to the information of the user applying for joining the Multicast group, and replicates a Multicast service stream to the user according to the user Multicast access List MRCL;
the multicast replication functional entity is connected with an access relay functional entity ARF, and the multicast stream is forwarded to the user equipment with the authority through the access relay functional entity;
the multicast replication functional entity can also perform multicast traffic statistics when forwarding the multicast stream, and send the statistical information and the user information to the user access authorization functional entity, or send the statistical information to the multicast control functional entity first, and then the multicast control functional entity sends the traffic statistical information and the user information to the user access authorization functional entity, thereby facilitating the charging of the user.
As shown in fig. 5, a structure diagram of a multicast control function entity in a network control system according to the present invention, applied to the network control system shown in fig. 7 or fig. 8, includes: the system comprises a receiving unit, a user multicast authority table generating unit, a storage unit, a user authority judging unit, a notifying unit, a resource information acquiring unit, a multicast information acquiring unit, a user information acquiring unit and a charging information sending unit. Wherein,
a receiving unit, configured to receive a request for a user to join a multicast service group, where the request is forwarded by a multicast replication functional entity;
the user multicast permission list generating unit is used for generating a user multicast permission list according to the acquired user information after receiving a request of a user for joining the multicast service;
wherein the step of obtaining user information is as set forth in the method section.
The storage unit is used for storing the user multicast authority list;
a user authority judging unit, which is used for judging whether the user initiating the request for joining the multicast service group has the authority for joining the multicast service group according to the user multicast authority table;
the notification unit is used for sending the authority information of the user obtained by the user authority judgment unit to the multicast copy functional entity;
a multicast information obtaining unit, configured to obtain corresponding information between a multicast group and a multicast service of a user from a user management system in the service control function system in fig. 7 or a service control subsystem and an application SCSA in fig. 8;
a resource information obtaining unit, configured to apply for a network resource for a user from the resource and admission control function system in fig. 7 or the resource admission control subsystem in fig. 8, determine whether the user can obtain a resource for receiving a multicast service, and record network resource information;
a user information obtaining unit, configured to obtain user information such as an MAC address and a VLAN identifier of a user, and a user online status from a network access control functional entity in fig. 7, an authentication and authorization functional entity in fig. 7, or a user access authorization function UAAF in fig. 8;
a charging information sending unit, configured to send the user multicast traffic statistic information and the user information obtained from the multicast replication function entity to the authentication and authorization function entity in fig. 7 or the user access authorization function UAAF in fig. 8.
As shown in fig. 6, a structure diagram of a multicast replication function entity in a network control system according to the present invention, applied to the network control system shown in fig. 7 or fig. 8, includes:
a receiving unit, configured to receive a request for joining a multicast service group sent by a user;
a user information obtaining unit, configured to extract user copy information including a multicast group address and a user MAC address, where the user copy information is used to send a request for joining a multicast service group;
a multicast replication control list generating unit, configured to generate a multicast replication control list according to the user information obtained by the user information obtaining unit;
a storage unit, configured to store the multicast replication control list;
the request message forwarding unit is used for forwarding a request of a user for adding in a multicast service group to a multicast control function entity after acquiring user information;
an authority message receiving unit, configured to receive user authority information corresponding to the requested multicast service, sent by the multicast control function entity;
the multicast message copying unit is used for copying the multicast message to the user after acquiring the user copying information from the storage unit according to the user authority information;
the multicast message receiving unit is used for receiving the multicast message and forwarding the multicast message to the multicast message copying unit;
a multicast message forwarding unit, configured to forward the multicast message copied by the multicast message copying unit to a specific user through the access relay function entity in fig. 7 or the access relay function ARF in fig. 8;
and the charging information sending unit is used for sending the user multicast flow statistical information and the user information which are obtained through statistics to the authentication and certification functional entity.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present invention without departing from the spirit and scope of the invention. Thus, if such modifications and variations of the present invention fall within the scope of the claims of the present invention and their equivalents, the present invention is also intended to include such modifications and variations.
Claims (23)
1. A network control system comprises a service control function system, a resource admission control system, an authentication and certification function entity, an access management function entity and an access control function entity, and is characterized by also comprising a multicast control function entity and a multicast replication function entity, wherein,
the multicast control functional entity is used for generating a user multicast authority table and judging whether a user initiating a request for joining a multicast service group has the authority for receiving the corresponding multicast service or not according to the user multicast authority table;
the multicast control function entity comprises:
a multicast information obtaining unit, configured to obtain information corresponding to a multicast group and a multicast service of a user from a user management system in the service control function system;
a resource information obtaining unit, configured to apply for a network resource for a user from a resource admission control system, determine whether the user can obtain a resource for receiving a multicast service, and record network resource information;
a user information obtaining unit, configured to obtain user information from an access management function entity, where the user information includes an MAC address of a user, a VLAN identifier, and a user online status;
the user multicast authority table generating unit is used for generating a user multicast authority table according to the acquired user information and the multicast group information;
a user permission judging unit, configured to judge whether a user initiating a request for joining a multicast service group has permission to join the multicast service group;
the multicast replication function entity is used for receiving a request initiated by a user for joining the multicast service group, forwarding the request to the multicast control function entity, and replicating and forwarding the multicast message to the user with the authority according to the notification of the multicast control function entity.
2. The network control system of claim 1, wherein the multicast control function further comprises:
the storage unit is used for storing the user multicast authority list;
a receiving unit, configured to receive a request for a user to join a multicast service group, where the request is forwarded by a multicast replication functional entity;
and the notification unit is used for sending the authority information of the user to the multicast copy function entity.
3. The network control system of claim 2, wherein the multicast control function further comprises:
and the charging information sending unit is used for sending the user multicast flow statistical information and the user information obtained from the multicast replication functional entity to the authentication and certification functional entity.
4. The network control system of claim 1, wherein the multicast replication function entity comprises:
a receiving unit, configured to receive a request for joining a multicast service group sent by a user;
the request message forwarding unit is used for forwarding a request of a user for adding in a multicast service group to a multicast control function entity after acquiring user information;
an authority message receiving unit, configured to receive user authority information corresponding to the requested multicast service, sent by the multicast control function entity;
a user information obtaining unit, configured to obtain, according to the user permission information forwarded by the permission information receiving unit, user information requesting to join the multicast service group, where the user information includes a multicast group address and a user MAC address;
a multicast replication control list generating unit, configured to generate a multicast replication control list according to the user information obtained by the user information obtaining unit;
a storage unit, configured to store the multicast replication control list;
and the multicast message copying unit is used for copying the multicast message to the user according to the user permission information.
5. The network control system of claim 4, wherein the multicast replication function further comprises:
the multicast message receiving unit is used for receiving the multicast message and forwarding the multicast message to the multicast message copying unit;
and the multicast message forwarding unit is used for forwarding the multicast message copied by the multicast message copying unit to a specific user.
6. The network control system of claim 5, wherein the multicast replication function further comprises:
and the charging information sending unit is used for sending the user multicast flow statistical information and the user information which are obtained through statistics to the authentication and certification functional entity.
7. The network control system according to claim 1, wherein the multicast control function entity performs the following steps when generating the user multicast permission table:
applying for network resources for users to a resource admission control system, judging whether the users can obtain resources for receiving multicast services, and recording network resource information;
obtaining user information including MAC address, VLAN identification and user online state of a user through an access management functional entity;
acquiring corresponding information of a user multicast group and a multicast service through a user management system in a service control function system;
acquiring authority information of a user through an access management functional entity or an authentication and certification functional entity;
and associating part or all of the information to form a user multicast authority table.
8. The network control system of claim 7, wherein when the multicast replication function entity forwards the message to the user, the multicast replication function entity performs multicast traffic statistics at the same time, and sends the multicast traffic statistics information and the corresponding user information to the authentication and certification function entity for charging.
9. The network control system of claim 7, wherein when the multicast replication function entity forwards the message to the user, the multicast replication function entity performs multicast traffic statistics at the same time, and sends the multicast traffic statistics information and the corresponding user information to the multicast control function entity, and the multicast control function entity forwards the information to the authentication and certification function entity for charging.
10. A method for realizing multicast control is characterized by comprising the following steps:
A. a user initiates a request for joining a multicast service to a network control system;
B. the multicast control functional entity generates a user multicast authority table, judges whether the user has the authority to receive the corresponding multicast service according to the user multicast authority table, generates user authority information and sends the user authority information to the multicast replication functional entity;
the step of generating the user multicast permission list by the multicast control function entity specifically comprises:
after the multicast control function entity receives the request of the user for joining the multicast service,
applying for network resources for users to a resource admission control system, judging whether the users can obtain resources for receiving multicast services, and recording network resource information;
obtaining user information including MAC address, VLAN identification and user online state of a user through an access management functional entity;
acquiring corresponding information of a user multicast group and a multicast service through a user management system in a service control function system;
acquiring authority information of a user through an access management functional entity or an authentication and certification functional entity;
associating the partial or all information to form a user multicast authority table;
C. the multicast replication functional entity forwards the corresponding multicast service stream to the authorized user according to the notification of the multicast control functional entity.
11. The method of claim 10, wherein before said step a, further comprising the step of a user accessing the network control system through a relay function entity.
12. The method of claim 10, wherein before the step a, further comprising the step of the user completing network access authentication in the network control system.
13. The method of claim 12, wherein the network access authentication is performed by an authentication and authorization function entity in a network control system.
14. The method according to claim 10, wherein the step C specifically comprises the steps of:
after receiving the user authority information sent by the multicast control function entity, the multicast replication function entity generates a multicast replication control list according to the multicast group information and the user MAC address which are applied by the authorized user to join;
and the multicast copying functional entity copies and forwards the multicast message to the authorized user according to the information in the multicast copying control list.
15. The method of claim 10, further comprising, after step C, the steps of:
the multicast replication functional entity sends the multicast flow statistical information and the user information of a specific user to the authentication and certification functional entity;
and the authentication and certification functional entity charges the user according to the multicast flow statistical information.
16. The method of claim 10, further comprising, after step C, the steps of:
the multicast replication functional entity sends multicast flow statistical information and user information of a specific user to a multicast control functional entity;
the multicast control function entity forwards the information to an authentication and certification function entity in a network control system;
and the authentication and certification functional entity charges the user according to the multicast flow statistical information.
17. The method according to any of claims 10-16, wherein the user multicast permission table comprises user information, multicast service information and network resource information.
18. The method of claim 17, wherein the user information includes user presence status, user MAC address, VLAN identification, and user permissions.
19. A method for implementing multicast control, comprising:
a user initiates a request for joining a multicast service to a network control system;
the resource admission control system checks whether the network control system has applied for network resource reservation for the user, if the network control system has applied for network resource reservation for the user, the multicast replication functional entity forwards the corresponding multicast service stream to the user;
the step of the network control system applying for network resource reservation for the user specifically comprises:
after the user access authentication, the network control system sends a resource reservation request message to the resource admission control system, wherein the resource reservation request message carries the QoS parameter of the user;
the resource admission control system allocates network resources to the user according to the QoS parameters of the user and the resource allocation strategy of the resource admission control system;
and the resource admission control system feeds back the resource information distributed for the user to the network control system.
20. The method of claim 19, wherein after the resource admission control system feeds back the resource information allocated to the user to the network control system, if the user does not apply for joining the multicast service, the resource admission control system allocates the resource to the user who applies for later application after receiving a request for joining the multicast service initiated by another user, but the user who applies for later application must give away the occupied resource when the user who applies for resource reservation applies for joining the multicast service.
21. The method of claim 19, wherein after the resource admission control system feeds back the resource information allocated to the user to the network control system, the resource that the user applies for reservation cannot be allocated to other users for use.
22. The method of claim 19, wherein the resource admission control system feeds back resource information allocated to the user to the network control system, and after receiving a request for joining the multicast service initiated by a user applying for resource reservation, queries the network control system whether the user still has the right to acquire the reserved resource, and if so, allocates the reserved resource to the user for occupation.
23. A method according to any of claims 19-22, wherein the QoS parameters include bandwidth and traffic type.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2006100627935A CN101155046B (en) | 2006-09-25 | 2006-09-25 | Network control system and method for implementing multicast control |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2006100627935A CN101155046B (en) | 2006-09-25 | 2006-09-25 | Network control system and method for implementing multicast control |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101155046A CN101155046A (en) | 2008-04-02 |
| CN101155046B true CN101155046B (en) | 2011-06-22 |
Family
ID=39256505
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2006100627935A Expired - Fee Related CN101155046B (en) | 2006-09-25 | 2006-09-25 | Network control system and method for implementing multicast control |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101155046B (en) |
Families Citing this family (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102143033B (en) * | 2010-02-02 | 2014-07-30 | 杭州华三通信技术有限公司 | Method and equipment for controlling multicast flow |
| CN102378356B (en) * | 2010-08-16 | 2015-12-16 | 中兴通讯股份有限公司 | A kind of method of multi-link framework and realization attachment and resources control |
| CN101917280A (en) * | 2010-08-19 | 2010-12-15 | 中兴通讯股份有限公司 | Method and system for authenticating and accounting group user for using multicast service |
| NO336150B1 (en) * | 2012-12-19 | 2015-05-26 | Videxio As | Procedure and unit for optimizing large-scale video conferencing |
| CN111448808B (en) | 2018-01-03 | 2022-09-02 | 康维达无线有限责任公司 | Multicast and broadcast services in 5G networks for IoT applications |
| CN109491585B (en) * | 2018-11-05 | 2020-11-13 | 广州小鹏汽车科技有限公司 | Touch control method of vehicle-mounted central control equipment and vehicle-mounted central control equipment |
| CN111447412B (en) * | 2020-03-27 | 2021-09-07 | 浙江信网真科技股份有限公司 | Multi-stream data distribution method and system based on content grading |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1414759A (en) * | 2002-01-30 | 2003-04-30 | 华为技术有限公司 | Controlled group broadcasting system and its realizing method |
| CN1540920A (en) * | 2003-04-23 | 2004-10-27 | 华为技术有限公司 | Method for implementing controllable multicast operation |
| CN1633106A (en) * | 2004-12-16 | 2005-06-29 | 中国科学院计算技术研究所 | A Sender-Oriented Resource Reservation Implementation Method with Backtracking Capability |
| CN1674550A (en) * | 2004-03-24 | 2005-09-28 | 华为技术有限公司 | Realizing method of group broadcasting business |
-
2006
- 2006-09-25 CN CN2006100627935A patent/CN101155046B/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1414759A (en) * | 2002-01-30 | 2003-04-30 | 华为技术有限公司 | Controlled group broadcasting system and its realizing method |
| CN1540920A (en) * | 2003-04-23 | 2004-10-27 | 华为技术有限公司 | Method for implementing controllable multicast operation |
| CN1674550A (en) * | 2004-03-24 | 2005-09-28 | 华为技术有限公司 | Realizing method of group broadcasting business |
| CN1633106A (en) * | 2004-12-16 | 2005-06-29 | 中国科学院计算技术研究所 | A Sender-Oriented Resource Reservation Implementation Method with Backtracking Capability |
Non-Patent Citations (1)
| Title |
|---|
| 许先斌,张驰,袁行船.协调路由和资源预留机制的实时多播协议.计算机工程与设计.2005,26(6),第1532页第2栏第14行-第1533页第1栏第32行. * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101155046A (en) | 2008-04-02 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101572719B (en) | Policy decision-making functional entity, home gateway and method and system for controlling quality of service | |
| EP2124385B1 (en) | Method, device and system for multicast service authorization controlling | |
| CN101155046B (en) | Network control system and method for implementing multicast control | |
| CN101299825B (en) | Method, system and apparatus for implementing multicast load-bearing resource control | |
| WO2008037220A1 (en) | A method, a system and a device for channel authorization of television living broadcast by network | |
| CN101212483B (en) | Method and system for controlling number of user sessions | |
| WO2009114976A1 (en) | Method and system for resource and admission control | |
| WO2007085195A1 (en) | System and method for handling resource request | |
| WO2009146593A1 (en) | Method and system for resource admission control | |
| EP2037637B1 (en) | A service application method and system and a service application agency unit | |
| WO2011015015A1 (en) | Content upload method and content delivery function entity | |
| WO2009155770A1 (en) | Interactive iptv system and content pushing method thereof | |
| CN101489266B (en) | IMS user stage controlling method and system based on signature data | |
| WO2008046336A1 (en) | A system and method for realizing distributed access control in multicast service | |
| CN101005513A (en) | Processing and sending method and system for service quality signal | |
| WO2008151528A1 (en) | Method, apparatus and system for controlling multicast bearing resource | |
| US20070258455A1 (en) | System for distributed architecture for multicast access control | |
| WO2009024096A1 (en) | Resource management apparatus, method and system | |
| CN101360222B (en) | IPTV program generating method and system based on next generation network | |
| CN101426124A (en) | Time shifting method for interactive network television system in next generation communication network | |
| CN101588277B (en) | Interconnection equipment of internet protocol television (IPTV) system based on IP multimedia subsystem (IMS) and methods for starting same, requesting broadcasting of programs and broadcasting program | |
| WO2009100625A1 (en) | Selecting method of policy decision functional entity in resource and admission control system | |
| WO2008131694A1 (en) | Control method, system and apparatus of multicast and broadcast service | |
| WO2009129728A1 (en) | Broadcast/multicast method, apparatus and system | |
| WO2008098504A1 (en) | Method and system for providing multicast service and device for providing multicast service parameter |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20110622 |