CN115002933B - A session establishment system, method, electronic device and storage medium - Google Patents
A session establishment system, method, electronic device and storage medium Download PDFInfo
- Publication number
- CN115002933B CN115002933B CN202210751425.0A CN202210751425A CN115002933B CN 115002933 B CN115002933 B CN 115002933B CN 202210751425 A CN202210751425 A CN 202210751425A CN 115002933 B CN115002933 B CN 115002933B
- Authority
- CN
- China
- Prior art keywords
- session
- user equipment
- network element
- configuration information
- anchor point
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 37
- 230000004913 activation Effects 0.000 claims abstract description 49
- 238000004891 communication Methods 0.000 claims description 21
- 238000004590 computer program Methods 0.000 claims description 9
- 238000007726 management method Methods 0.000 description 41
- 239000003795 chemical substances by application Substances 0.000 description 15
- 238000010586 diagram Methods 0.000 description 10
- 230000011664 signaling Effects 0.000 description 4
- 230000009471 action Effects 0.000 description 3
- 230000003993 interaction Effects 0.000 description 3
- 238000012423 maintenance Methods 0.000 description 3
- 230000008569 process Effects 0.000 description 3
- 230000010354 integration Effects 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 230000002093 peripheral effect Effects 0.000 description 2
- 238000013439 planning Methods 0.000 description 2
- 238000011176 pooling Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 239000007787 solid Substances 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008901 benefit Effects 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 230000009977 dual effect Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000000802 evaporation-induced self-assembly Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000004927 fusion Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 239000013307 optical fiber Substances 0.000 description 1
- 230000002265 prevention Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 238000000926 separation method Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W76/00—Connection management
- H04W76/10—Connection setup
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/08—Configuration management of networks or network elements
- H04L41/0803—Configuration setting
- H04L41/0813—Configuration setting characterised by the conditions triggering a change of settings
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W8/00—Network data management
- H04W8/18—Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
- H04W8/20—Transfer of user or subscriber data
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Databases & Information Systems (AREA)
- Computer And Data Communications (AREA)
Abstract
The embodiment of the disclosure provides a session establishment system, a session establishment method, an electronic device and a storage medium, wherein the system comprises: the service equipment comprises a service anchor point, an access management network element and a session control network element; user equipment, which is used to send the session establishment request to the access management network element when the registration authentication is passed; an access management network element for forwarding a session establishment request to a session control network element; the session control network element acquires subscription information and relay agent information of user equipment; selecting a target service anchor point; generating first configuration information and second configuration information; respectively sending first configuration information and second configuration information to a target service anchor point and an access management network element; the access management network element forwards the second configuration information to the user equipment; the user equipment sends a session activation request to a target service anchor point; the target traffic anchor establishes a session with the user equipment. The user registration authentication flow and session establishment flow can be decoupled, and service expandability is enhanced.
Description
Technical Field
The present disclosure relates to the field of communications technologies, and in particular, to a session establishment system, a session establishment method, an electronic device, and a storage medium.
Background
In the prior art, session establishment of a fixed user equipment is realized based on a network tunnel protocol (Point-to-Point Protocol Over Ethernet, PPPOE) or IpoE (IP over Ethernet, a broadband access authentication system) in which a Point-to-Point protocol is encapsulated in an Ethernet frame, access authentication is tightly coupled with session establishment, authentication needs to be performed when each subscription session of a user accesses the fixed user equipment, and service scalability is not strong.
Disclosure of Invention
An object of an embodiment of the present disclosure is to provide a session establishment system, a session establishment method, an electronic device, and a storage medium, so as to enhance service scalability. The specific technical scheme is as follows:
According to a first aspect of embodiments of the present disclosure, there is provided a session establishment system, the system comprising:
The system comprises user equipment and service equipment, wherein the service equipment comprises a service anchor point, an access management network element and a session control network element;
The user equipment is used for sending a session establishment request to the access management network element under the condition that the registration authentication is passed;
The access management network element is configured to forward the session establishment request to the session control network element;
the session control network element is configured to obtain subscription information and relay agent information of the user equipment after receiving the session establishment request when the user equipment registration authentication passes; selecting a target service anchor point for providing session service for the user equipment from the service anchor points according to the subscription information and the relay agent information of the user equipment; generating first configuration information required by the target service anchor point for providing session service for the user equipment, and generating second configuration information required by the user equipment for accessing the target service anchor point; sending first configuration information to the target service anchor point and sending second configuration information to the access management network element;
The access management network element is further configured to forward the second configuration information to the user equipment;
The user equipment is further configured to configure itself according to the second configuration information, and based on the configuration of itself, send a session activation request to the target service anchor point;
The target service anchor point is configured to configure itself according to the first configuration information, and establish a session with the user equipment based on its configuration and the session activation request.
In a possible implementation manner, the access management network element is further configured to send, after the user equipment registration authentication passes, a first message indicating that the user equipment registration authentication passes to the session control network element, so that the session control network element marks that the user equipment registration authentication passes; and sending a second message representing that the user equipment registration authentication passes to the user equipment so as to enable the user equipment to mark that the user equipment registration authentication passes.
In one possible implementation manner, the service device further includes: a DHCP server and a subscription information server;
the DHCP server is used for storing relay agent information of the user equipment;
The subscription information server is used for storing subscription information of the user equipment;
The session control network element is specifically configured to obtain subscription information of the user equipment from the subscription information server, and obtain relay proxy information of the user equipment from the DHCP server.
In a possible implementation manner, the first configuration information and the second configuration information both comprise session identification; the session activation request comprises the session identifier;
The target service anchor point is specifically configured to add the session identifier in the first configuration information to a session list; after receiving the session activation request, inquiring the session list based on the session identifier in the session activation request; under the condition that the session identifier in the session activation request is inquired in the session list and the session resource of the target service anchor point allows new session to be added, establishing a session with the user equipment; otherwise, rejecting the session with the user equipment.
According to a second aspect of embodiments of the present disclosure, there is provided a session establishment method, the method comprising:
the access management network element receives a session establishment request sent by user equipment and forwards the session establishment request to a session control network element;
When the user equipment registration authentication passes, the session control network element receives the session establishment request and acquires subscription information and relay agent information of the user equipment; selecting a target service anchor point for providing session service for the user equipment from all service anchor points according to the subscription information and relay agent information of the user equipment; generating first configuration information required by the target service anchor point for providing session service for the user equipment, and generating second configuration information required by the user equipment for accessing the target service anchor point; sending first configuration information to the target service anchor point and sending second configuration information to the access management network element; wherein the service anchor point, the access management network element and the session control network element all comprise service equipment;
The access management network element receives the second configuration information and forwards the second configuration information to the user equipment; the user equipment configures the user equipment according to the second configuration information, and sends a session activation request to the target service anchor point based on the configuration of the user equipment;
The target service anchor point configures itself according to the first configuration information, and establishes a session with the user equipment based on the configuration of itself and the session activation request.
In one possible embodiment, the method further comprises:
After the user equipment registration authentication passes, the access management network element sends a first message indicating that the user equipment registration authentication passes to the session control network element so that the session control network element marks that the user equipment registration authentication passes; and sending a second message representing that the user equipment registration authentication passes to the user equipment so as to enable the user equipment to mark that the user equipment registration authentication passes.
In a possible implementation manner, after receiving the session establishment request, the session control network element obtains subscription information and relay agent information of the user equipment;
And after receiving the session establishment request, the session control network element acquires the subscription information of the user equipment from a subscription information server and acquires relay proxy information of the user equipment from a DHCP server.
In a possible implementation manner, the first configuration information and the second configuration information both comprise session identification; the session activation request comprises the session identifier;
The target service anchor point configures itself according to the first configuration information, establishes a session with the user equipment based on the configuration of itself and the session activation request, and comprises:
the target service anchor point adds the session identifier in the first configuration information to a session list; after receiving the session activation request, inquiring the session list based on the session identifier in the session activation request; under the condition that the session identifier in the session activation request is inquired in the session list and the session resource of the target service anchor point allows new session to be added, establishing a session with the user equipment; otherwise, rejecting the session with the user equipment.
According to a third aspect of embodiments of the present disclosure, there is provided an electronic device including a processor, a communication interface, a memory, and a communication bus, wherein the processor, the communication interface, and the memory complete communication with each other through the communication bus;
a memory for storing a computer program;
a processor configured to implement the method steps of any of the second aspects when executing a program stored on a memory.
According to a fourth aspect of embodiments of the present disclosure, there is provided a computer readable storage medium having stored therein a computer program which, when executed by a processor, implements the method steps of any of the second aspects.
The beneficial effects of the embodiment of the disclosure are that:
The embodiment of the disclosure provides a session establishment system, a session establishment method, an electronic device and a storage medium, wherein the system comprises: the system comprises user equipment and service equipment, wherein the service equipment comprises a service anchor point, an access management network element and a session control network element; the user equipment is used for sending a session establishment request to the access management network element under the condition that the registration authentication is passed; the access management network element is configured to forward the session establishment request to the session control network element; the session control network element is configured to obtain subscription information and relay agent information of the user equipment after receiving the session establishment request when the user equipment registration authentication passes; selecting a target service anchor point for providing session service for the user equipment from the service anchor points according to the subscription information and the relay agent information of the user equipment; generating first configuration information required by the target service anchor point for providing session service for the user equipment, and generating second configuration information required by the user equipment for accessing the target service anchor point; sending first configuration information to the target service anchor point and sending second configuration information to the access management network element; the access management network element is further configured to forward the second configuration information to the user equipment; the user equipment is further configured to configure itself according to the second configuration information, and based on the configuration of itself, send a session activation request to the target service anchor point; the target service anchor point is configured to configure itself according to the first configuration information, and establish a session with the user equipment based on its configuration and the session activation request. The user registration authentication flow and session establishment flow can be decoupled, and service expandability is enhanced.
Of course, not all of the above-described advantages need be achieved simultaneously in practicing any one of the products or methods of the present disclosure.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the following description will briefly introduce the drawings that are required to be used in the embodiments or the description of the prior art, and it is apparent that the drawings in the following description are only some embodiments of the present disclosure, and other embodiments may be obtained according to these drawings to those of ordinary skill in the art.
Fig. 1 is a schematic diagram of a architecture of a session establishment system according to an embodiment of the disclosure.
Fig. 2 is an interaction schematic diagram of a session establishment system provided in an embodiment of the present disclosure.
Fig. 3 is a schematic diagram of another architecture of a session establishment system according to an embodiment of the disclosure.
Fig. 4 is an application example diagram of a session establishment system provided in an embodiment of the present disclosure.
Fig. 5 is an application example diagram of a session establishment system in the related art.
Fig. 6 is a flowchart of a session establishment method according to an embodiment of the present disclosure.
Fig. 7 is a flowchart illustrating an example of a session establishment method according to an embodiment of the present disclosure.
Fig. 8 is a schematic structural diagram of an electronic device according to an embodiment of the disclosure.
Detailed Description
The following description of the technical solutions in the embodiments of the present disclosure will be made clearly and completely with reference to the accompanying drawings in the embodiments of the present disclosure, and it is apparent that the described embodiments are only some embodiments of the present disclosure, not all embodiments. Based on the embodiments in the present disclosure, all other embodiments obtained by a person of ordinary skill in the art based on the present disclosure are within the scope of protection of the present disclosure.
In the prior art, session establishment is realized based on PPPoE/IPoE, an access authentication flow of user equipment is tightly coupled with a session establishment flow, authentication and authentication are required to be performed on PPPoE/IpoE user authentication information every time the session is established, and the traditional PPPoE and IPoE are 2 completely different protocol systems, are mutually incompatible, so that service expandability is limited.
In order to solve the above-mentioned problems, embodiments of the present disclosure provide a session establishment system, a session establishment method, an electronic device, and a storage medium, which are described in detail below.
Fig. 1 is a schematic diagram of a architecture of a session establishment system provided in an embodiment of the present disclosure, as shown in fig. 1, including a user device 101 and a service device 102, where the service device 102 includes: the interaction between the access management network element 1021, the session control network element 1022 and the service anchor 1023, the user equipment 101 and the service equipment 102 can realize session establishment.
Specific interaction procedure as shown in fig. 2, in case that the user registration authentication passes, the user equipment 101 sends a session establishment request to the access management network element 1021. The access management network element 1021 receives the session establishment request and then forwards the session establishment request to the session control network element 1022, and the session control network element 1022 obtains subscription information and relay agent information of the user equipment after receiving the session establishment request; selecting a target service anchor point 10231 for providing session service for the user equipment from the service anchor points 1023 according to the subscription information and the relay proxy information of the user equipment; generating first configuration information required by the target service anchor 10231 for providing session services for the user equipment 101, and generating second configuration information required by the user equipment 101 to access the target service anchor 10231; sending the first configuration information to the target service anchor 10231 and the second configuration information to the access management network element 1021; the access management network element 1021 forwards the second configuration information to the user equipment 101, the user equipment 101 configures itself according to the second configuration information, and based on the configuration of itself, sends a session activation request to the target service anchor 10231, the target service anchor 10231 configures itself according to the first configuration information, and establishes a session with the user equipment 101 based on the configuration of itself and the session activation request.
The session Control network element 1022 may obtain subscription information of the ue from the subscription information server and obtain relay proxy information of the ue from a dynamic host configuration protocol (Dynamic Host Configuration Protocol, DHCP) server, where the first configuration information is needed by the target service anchor 10231 to provide session services for the ue 101, and specifically may be a traffic identification forwarding policy, a quality of service (Quality of Service, qoS) policy, a local session table, and information needed by traffic forwarding, such as a terminal service internet protocol Address (Internet Protocol Address, IP), a media access Control Address (MEDIA ACCESS Control Address, MAC), an Address resolution protocol (Address Resolution Protocol, ARP), neighbor discovery protocol (Neighbor Discovery Protocol, NDP) information, and a session identity (identity, ID); the second configuration information may be information required by the user equipment 101 to access the target service anchor 10231, specifically, the traffic identification forwarding policy and the necessary information required for traffic forwarding, such as service IP address (Internet Protocol Address) allocation, IP, MAC, ARP, NDP information of a default gateway, domain name system (Domain NAME SYSTEM, DNS) session ID, and the like.
The conventional PPPoE or IpoE, different service anchors must be located in different domains, corresponding independent bearer channels must be established in the bearer network at the same time, and planning, deployment and maintenance are relatively complex, the session establishment system provided by the embodiments of the present disclosure may perform unified session control on the service anchors according to the session control network element 1022, for example, unified session control is performed on the dedicated hardware anchor point and the virtualized anchor point, virtual and real system management can be realized, service anchor points of cores or edges can be selected according to user requirements, differentiated requirements of different users are met, and richer service forms and service growth points are enabled.
In a possible implementation manner, if a new session type is introduced due to a new service requirement, session establishment may also be implemented based on the session establishment system provided by the embodiments of the present disclosure, which specifically is: according to the new service requirement, generating new first configuration information required by the target service anchor point for providing session service for the user equipment, and generating new second configuration information required by the user equipment for accessing the target service anchor point, then sending the new first configuration information to the target service anchor point and sending the new second configuration information to the access management network element.
In the embodiment of the disclosure, the user equipment sends the session establishment request to the access management network element under the condition that the registration authentication is passed, so that decoupling of the user registration authentication flow and the session establishment flow can be realized, that is, no matter how many subscription sessions the user equipment has, authentication is only required once when the user equipment is accessed to the fixed terminal, after the authentication is passed, anchor selection can be uniformly completed by the session control network element according to subscription information, the service anchor responds to the session establishment request, so that service expandability can be enhanced, richer service characteristics such as roaming of the terminal and richer session types can be realized, the session types include but are not limited to an internet communication protocol fourth version (Internet Protocol version, IPv 4), an internet communication protocol sixth version (Internet Protocol version, IPv 6), an IPv4v6, a traditional Ethernet (Ethernet) session and an unstructured session, and further user experience can be improved.
In a possible implementation manner, the access management network element 1021 is further configured to send, after the user equipment registration authentication is passed, a first message indicating that the user equipment registration authentication is passed to the session control network element 1022, so that the session control network element 1022 marks that the user equipment 101 registration authentication is passed; a second message is sent to the user device 101 indicating that the user device 101 registration authentication passed, such that the user device 101 marks itself as passing. Therefore, after the user equipment registration authentication is passed, the user equipment sends a session establishment request to decouple the user registration authentication flow from the session establishment flow, so that the user registration authentication flow can be enhanced.
In one possible implementation manner, the first configuration information and the second configuration information both include session identifiers; the session activation request comprises a session identifier;
The session identifier included in the first configuration information may be a traffic identification forwarding policy, a QoS policy, a local session table, and necessary information required for traffic forwarding, such as terminal service IP, MAC, ARP, NDP information and session ID, etc. The session identifier included in the second configuration information may be a traffic identification forwarding policy and necessary information required for forwarding the traffic, such as service IP address allocation, IP, MAC, ARP, NDP information of a default gateway, DNS, session ID, and the like.
The target service anchor point is specifically configured to add the session identifier in the first configuration information to the session list; after receiving the session activation request, inquiring a session list based on a session identifier in the session activation request; under the condition that a session identifier in a session activation request is inquired in a session list and a new session is allowed to be added by session resources of a target service anchor point, establishing a session with user equipment; otherwise, the session with the user equipment is refused.
In the embodiment of the disclosure, the protocol flow can be simplified, the configuration information required for session establishment can be uniformly arranged by the session control network element 1022 and issued to the target service anchor 10231 and the user equipment 101, the user equipment 101 only needs to send requests such as session initialization, session termination and the like to the target service anchor, and the configuration information required for session establishment is not required to be negotiated through multiple handshaking, and a plurality of address allocations are simultaneously completed through a uniform signaling flow, for example, in an IPv4/IPv6 dual stack service scene, the allocation of IPv4 and IPv6 addresses can be simultaneously completed based on the uniform signaling flow; whereas in the conventional PPPoE scenario addresses need to be acquired via IPCP (internet protocol control protocol) and IPv6CP (IP control protocol and IPv6 control protocol), respectively, in the conventional IPoE scenario addresses need to be acquired via DHCP and DHCPv6, respectively, said DHCPv6 being a network protocol for configuring IP addresses, IP prefixes and/or other configurations required by IPv6 hosts operating on an IPv6 network.
In one possible implementation, the service device 102 further includes: as shown in fig. 3, a DHCP server 1025 and a subscription information server 1024 are another architecture diagram of the session establishment system provided in the embodiment of the present disclosure, where the DHCP server 1025 stores relay agent information of the user equipment, the subscription information server 1024 stores subscription information of the user equipment, and the session control network element 1022 obtains the subscription information of the user equipment from the subscription information server 1024 and obtains relay agent information of the user equipment from the DHCP server 1025. The relay proxy information may be Option82 (relay proxy information Option 82) information, including information such as access physical ports and access device identifiers of the user equipment, for obtaining the user equipment location and a service anchor selection decision at session establishment.
Fig. 4 is an application example diagram of a session establishment system provided in an embodiment of the present disclosure, S1 indicates that an access management network element notifies a session control network element of user registration authentication passing information, S2 indicates that the access management network element notifies a terminal (equivalent to user equipment in the system shown in fig. 1) of user registration authentication passing information, S3 indicates that the terminal initiates a session establishment request to the access management network element, S4 indicates that the access management network element relays the session establishment request to the session control network element, S5 indicates that the session control network element reads user subscription information from a subscription information server, S6 indicates that the session control network element reads user Option82 information from a DHCP server, the Option82 information is uploaded to the DHCP server when a management address is allocated to the terminal, and S7 indicates that the session control network element selects a service anchor point according to the subscription information, option82 and other information; s8, the session control network element transmits configuration to the service anchor point, wherein the configuration information comprises a flow identification forwarding strategy, a QoS strategy, a local session table and necessary information required by flow forwarding, such as terminal service IP, MAC, ARP, NDP information, session ID and the like; s9, the session control network element transmits configuration to the terminal through the access management network element, wherein the configuration information comprises a flow identification forwarding strategy and necessary information required by flow forwarding, such as service IP address allocation, IP, MAC, ARP, NDP information of a default gateway, DNS, session ID and the like; s10, a session control network element informs a terminal of session configuration ready information through an access management network element; s11, the terminal initiates a session activation request to the service anchor point, wherein the request message carries a session ID; s12, the service anchor point decides whether to accept the session activation request according to the information such as the session ID, the local session table and the like, wherein after the session is activated, the service anchor point allocates session resources for the terminal so as to ensure the efficient utilization of the resources; s13 represents that the service anchor responds to the session activation request in a manner including accepting and rejecting the session activation request.
Fig. 5 is an application example diagram of a session establishment system in the related art, S14 indicates that a terminal initiates an access and session establishment request to a BRAS pool, and sends PPPoE/IPoE signaling messages to the BRAS pool, where the signaling messages include L2 broadcast traffic, S15 indicates that the BRAS pool sends PPPoE/IPoE user authentication information to an AAA (an access server) for authentication, S16 indicates that the AAA authenticates the user authentication information based on information such as a user name, a password, an Option82, and the like, and S17 indicates that the AAA passes the user authentication information or rejects the user authentication information; s18 indicates success or failure of session establishment, in which the BRAS pool accepts the session establishment request, i.e., the session establishment is successful, when the AAA passes the user authentication information, and rejects the session establishment request, i.e., the session establishment failure, when the AAA rejects the user authentication information.
In fig. 4, a service session is carried on an L3VPN (three-layer virtual private network) of an underway, and in fig. 5, the service session is carried on an L2VPN (two-layer virtual private network) of the underway, so that the service session is carried on the L2VPN of the underway and the L2 security risk is brought, thereby increasing the deployment and operation difficulty of the carrier network. In the embodiment of the disclosure, in the scene of service anchor pooling deployment, the service session may be uniformly carried on an L3VPN of an underway, without the need of L2 security issues such as IETF (INTERNET ENGINEERING TASK Force ) RFC8772 (Request For Comments8772, standard document 8772 finally approved by IETF) defined Broadband access server (Broadband Remote ACCESS SERVER, BRAS) Control Plane and User Plane (CU) separation technical system, where the underway needs to deploy an L2VPN to carry the service session, i.e., only one uniform L3VPN needs to be deployed on the underway Plane, so as to avoid L2 security issues such as media access Control Address (MEDIA ACCESS Control ARP, MAC) spoofing, address resolution protocol (Address Resolution Protocol, ARP flooding, etc., and simplify planning, construction and maintenance of the carrier network, and promote service experience.
In the related art shown in fig. 5, option82 is used for binding a user name with an access circuit and for authentication decision, and is mainly used for preventing resource abuse caused by simultaneous login of the same user in multiple places, while in the embodiment of the present disclosure, option82 is mainly used for a session control network element to obtain terminal location information, when the user has an edge anchor requirement, an appropriate service anchor can be selected for the user according to the location information, in the embodiment of the present disclosure, broadband resource abuse prevention is realized by binding a terminal device with information of a non-access layer (Non Access Stratum, NAS) of the user or introducing a mechanism similar to integration of a subscriber identification (Subscriber Identity Module, SIM) card and a machine card, and the user NAS information includes information such as a user identity, a terminal capability, and the like.
In the BRAS pooling deployment scenario, the session establishment system provided by the embodiment of the disclosure can avoid the problem of L2 security, only one unified L3VPN needs to be deployed on the underway layer, and the deployment and operation difficulty of the bearer network are reduced. When a user has the requirements of surfing the internet and VoIP (voice telephone), a surfing business session and a voice business session are required to be established, a business anchor point selection mechanism based on the session establishment system provided by the embodiment of the disclosure, namely a session control network element selects a business anchor point according to user subscription information, registration authentication state and the like, the business anchor point can be flexibly selected as required, a distribution strategy is issued for a terminal, and multi-business fusion bearing can be realized only by deploying a unified underwlay L3VPN on a bearing network; based on the prior art, as in RFC8772, independent L2VPN bearer corresponding services need to be deployed for internet surfing and voice services respectively, implementation and maintenance are complex, and L2 security risks exist. If a user has a time delay sensitive service requirement, the user needs to be anchored at an edge anchor point, and the session establishment system provided by the embodiment of the disclosure can be realized agilely without deploying each service per bearing channel in a bearing network.
Fig. 6 is a flowchart of a session establishment method according to an embodiment of the present disclosure, as shown in fig. 6, including the following steps:
Step S101, the access management network element receives the session establishment request sent by the user equipment and forwards the session establishment request to the session control network element.
Step S102, after receiving a session establishment request, a session control network element acquires subscription information and relay agent information of user equipment under the condition that user equipment registration authentication passes; selecting a target service anchor point for providing session service for the user equipment from the service anchor points according to the subscription information and the relay agent information of the user equipment; generating first configuration information required by a target service anchor point for providing session service for user equipment and generating second configuration information required by the user equipment for accessing the target service anchor point; and sending the first configuration information to the target service anchor point and sending the second configuration information to the access management network element.
Wherein, the service anchor point, the access management network element and the session control network element all comprise service equipment.
Step S103, the access management network element receives the second configuration information and forwards the second configuration information to the user equipment; the user equipment configures itself according to the second configuration information, and sends a session activation request to the target service anchor point based on the configuration of itself.
Step S104, the target service anchor point configures itself according to the first configuration information, and establishes a session with the user equipment based on the configuration of itself and the session activation request.
In the embodiment of the disclosure, no matter how many subscription sessions are provided for the user equipment, authentication and authentication are only required once when the user equipment passes, after authentication, service anchor selection can be uniformly completed by the session control network element according to subscription information, the service anchor responds to a session establishment request, decoupling of a user registration authentication flow and a session establishment flow can be realized, and if a new session type is introduced due to new service requirements, session establishment can be realized based on the session establishment system provided by the embodiment of the disclosure, so that service expandability can be enhanced.
In one possible embodiment, the method further comprises: after the user equipment registration authentication passes, the access management network element sends a first message indicating the user equipment registration authentication to the session control network element so as to enable the session control network element to mark the user equipment registration authentication to pass; and sending a second message indicating that the user equipment registration authentication passes to the user equipment so as to enable the user equipment to mark the self registration authentication to pass.
In a possible implementation manner, after the session control network element receives the session establishment request, acquiring subscription information and relay agent information of the user equipment includes:
After receiving the session establishment request, the session control network element obtains the subscription information of the user equipment from the subscription information server, and obtains relay agent information of the user equipment from the DHCP server. As shown in fig. 7, an access management network element notifies a session control network element and a service anchor point of user registration authentication passing information, a terminal initiates a session establishment request to the access management network element, the access management network element relays the session establishment request to the session control network element, the session control network element reads user subscription information from a subscription information server, reads user Option82 information from a DHCP server, the session control network element selects the service anchor point according to the user subscription information and the user Option82 information, the session control network element issues configuration to the service anchor point, the configuration information includes an amount identification forwarding policy, a QoS policy, a local session table and necessary information for traffic forwarding, the session control network element issues configuration to the access management network element, the configuration information includes the traffic identification forwarding policy and necessary information for traffic forwarding, the terminal initiates a session activation request to the service anchor point, the request message carries a session ID, the service anchor point receives the session request according to the session ID and the local session table, the service anchor point responds to the session activation request, and the response mode includes acceptance or rejection of the session activation request.
In one possible implementation manner, the first configuration information and the second configuration information both include session identifiers; the session activation request comprises a session identifier;
The target service anchor point configures itself according to the first configuration information, establishes a session with the user equipment based on the configuration of itself and the session activation request, and comprises:
The target service anchor point adds the session identifier in the first configuration information to a session list; after receiving the session activation request, inquiring a session list based on a session identifier in the session activation request; under the condition that a session identifier in a session activation request is inquired in a session list and a new session is allowed to be added by session resources of a target service anchor point, establishing a session with user equipment; otherwise, the session with the user equipment is refused.
The disclosed embodiment also provides an electronic device, as shown in fig. 8, comprising a processor 801, a communication interface 802, a memory 803, and a communication bus 804, wherein the processor 801, the communication interface 802, the memory 803 complete communication with each other through the communication bus 804,
A memory 803 for storing a computer program;
The processor 801 is configured to implement the steps of the session establishment method when executing the program stored in the memory 803.
The communication bus mentioned above for the electronic device may be a peripheral component interconnect standard (PERIPHERAL COMPONENT INTERCONNECT, PCI) bus or an extended industry standard architecture (Extended Industry Standard Architecture, EISA) bus, etc. The communication bus may be classified as an address bus, a data bus, a control bus, or the like. For ease of illustration, the figures are shown with only one bold line, but not with only one bus or one type of bus.
The communication interface is used for communication between the electronic device and other devices.
The Memory may include random access Memory (Random Access Memory, RAM) or may include Non-Volatile Memory (NVM), such as at least one disk Memory. Optionally, the memory may also be at least one memory device located remotely from the aforementioned processor.
The processor may be a general-purpose processor, including a central processing unit (Central Processing Unit, CPU), a network processor (Network Processor, NP), etc.; but may also be a digital signal Processor (DIGITAL SIGNAL Processor, DSP), application SPECIFIC INTEGRATED Circuit (ASIC), field-Programmable gate array (Field-Programmable GATE ARRAY, FPGA) or other Programmable logic device, discrete gate or transistor logic device, discrete hardware components.
In yet another embodiment provided by the present disclosure, there is also provided a computer readable storage medium having stored therein a computer program which when executed by a processor implements the steps of any of the above-described session establishment methods.
In yet another embodiment provided by the present disclosure, there is also provided a computer program product containing instructions that, when run on a computer, cause the computer to perform any of the session establishment methods of the above embodiments.
In the above embodiments, it may be implemented in whole or in part by software, hardware, firmware, or any combination thereof. When implemented in software, may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When loaded and executed on a computer, produces a flow or function in accordance with embodiments of the present disclosure, in whole or in part. The computer may be a general purpose computer, a special purpose computer, a computer network, or other programmable apparatus. The computer instructions may be stored in or transmitted from one computer-readable storage medium to another, for example, by wired (e.g., coaxial cable, optical fiber, digital Subscriber Line (DSL)), or wireless (e.g., infrared, wireless, microwave, etc.). The computer readable storage medium may be any available medium that can be accessed by a computer or a data storage device such as a server, data center, etc. that contains an integration of one or more available media. The usable medium may be a magnetic medium (e.g., floppy disk, hard disk, tape), an optical medium (e.g., DVD), or a semiconductor medium (e.g., solid state disk Solid STATE DISK (SSD)), etc.
It is noted that relational terms such as first and second, and the like are used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Moreover, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising one … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
In this specification, each embodiment is described in a related manner, and identical and similar parts of each embodiment are all referred to each other, and each embodiment mainly describes differences from other embodiments. In particular, for the method embodiments, since they are substantially similar to the system embodiments, the description is relatively simple, and reference is made to the description of the method embodiments in part.
The foregoing description is only of the preferred embodiments of the present disclosure, and is not intended to limit the scope of the present disclosure. Any modification, equivalent replacement, improvement, etc. made within the spirit and principles of the present disclosure are included in the protection scope of the present disclosure.
Claims (10)
1. A session establishment system, the system comprising:
The system comprises user equipment and service equipment, wherein the service equipment comprises a service anchor point, an access management network element and a session control network element;
The user equipment is used for sending a session establishment request to the access management network element under the condition that the registration authentication is passed;
The access management network element is configured to forward the session establishment request to the session control network element;
the session control network element is configured to obtain subscription information and relay agent information of the user equipment after receiving the session establishment request when the user equipment registration authentication passes; selecting a target service anchor point for providing session service for the user equipment from the service anchor points according to the subscription information and the relay agent information of the user equipment; generating first configuration information required by the target service anchor point for providing session service for the user equipment, and generating second configuration information required by the user equipment for accessing the target service anchor point; sending first configuration information to the target service anchor point and sending second configuration information to the access management network element;
The access management network element is further configured to forward the second configuration information to the user equipment;
The user equipment is further configured to configure itself according to the second configuration information, and based on the configuration of itself, send a session activation request to the target service anchor point;
The target service anchor point is configured to configure itself according to the first configuration information, and establish a session with the user equipment based on its configuration and the session activation request.
2. The system of claim 1, wherein the access management network element is further configured to send a first message to the session control network element indicating that the user equipment registration authentication passes after the user equipment registration authentication passes, so that the session control network element marks that the user equipment registration authentication passes; and sending a second message representing that the user equipment registration authentication passes to the user equipment so as to enable the user equipment to mark that the user equipment registration authentication passes.
3. The system of claim 1, wherein the service device further comprises: a DHCP server and a subscription information server;
the DHCP server is used for storing relay agent information of the user equipment;
The subscription information server is used for storing subscription information of the user equipment;
The session control network element is specifically configured to obtain subscription information of the user equipment from the subscription information server, and obtain relay proxy information of the user equipment from the DHCP server.
4. The system of claim 1, wherein the first configuration information and the second configuration information each include a session identifier; the session activation request comprises the session identifier;
The target service anchor point is specifically configured to add the session identifier in the first configuration information to a session list; after receiving the session activation request, inquiring the session list based on the session identifier in the session activation request; under the condition that the session identifier in the session activation request is inquired in the session list and the session resource of the target service anchor point allows new session to be added, establishing a session with the user equipment; otherwise, rejecting the session with the user equipment.
5. A method of session establishment, the method comprising:
the access management network element receives a session establishment request sent by user equipment and forwards the session establishment request to a session control network element;
When the user equipment registration authentication passes, the session control network element receives the session establishment request and acquires subscription information and relay agent information of the user equipment; selecting a target service anchor point for providing session service for the user equipment from all service anchor points according to the subscription information and relay agent information of the user equipment; generating first configuration information required by the target service anchor point for providing session service for the user equipment, and generating second configuration information required by the user equipment for accessing the target service anchor point; sending first configuration information to the target service anchor point and sending second configuration information to the access management network element; wherein the service anchor point, the access management network element and the session control network element all comprise service equipment;
The access management network element receives the second configuration information and forwards the second configuration information to the user equipment; the user equipment configures the user equipment according to the second configuration information, and sends a session activation request to the target service anchor point based on the configuration of the user equipment;
The target service anchor point configures itself according to the first configuration information, and establishes a session with the user equipment based on the configuration of itself and the session activation request.
6. The method of claim 5, wherein the method further comprises:
After the user equipment registration authentication passes, the access management network element sends a first message indicating that the user equipment registration authentication passes to the session control network element so that the session control network element marks that the user equipment registration authentication passes; and sending a second message representing that the user equipment registration authentication passes to the user equipment so as to enable the user equipment to mark that the user equipment registration authentication passes.
7. The method of claim 5, wherein the session control network element, after receiving the session establishment request, obtains subscription information and relay agent information of the ue, comprising:
And after receiving the session establishment request, the session control network element acquires the subscription information of the user equipment from a subscription information server and acquires relay proxy information of the user equipment from a DHCP server.
8. The method of claim 5, wherein the first configuration information and the second configuration information each include a session identifier; the session activation request comprises the session identifier;
The target service anchor point configures itself according to the first configuration information, establishes a session with the user equipment based on the configuration of itself and the session activation request, and comprises:
the target service anchor point adds the session identifier in the first configuration information to a session list; after receiving the session activation request, inquiring the session list based on the session identifier in the session activation request; under the condition that the session identifier in the session activation request is inquired in the session list and the session resource of the target service anchor point allows new session to be added, establishing a session with the user equipment; otherwise, rejecting the session with the user equipment.
9. The electronic equipment is characterized by comprising a processor, a communication interface, a memory and a communication bus, wherein the processor, the communication interface and the memory are communicated with each other through the communication bus;
a memory for storing a computer program;
A processor for carrying out the method steps of any one of claims 5-8 when executing a program stored on a memory.
10. A computer-readable storage medium, characterized in that the computer-readable storage medium has stored therein a computer program which, when executed by a processor, implements the method steps of any of claims 5-8.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210751425.0A CN115002933B (en) | 2022-06-28 | 2022-06-28 | A session establishment system, method, electronic device and storage medium |
| PCT/CN2022/129188 WO2024000975A1 (en) | 2022-06-28 | 2022-11-02 | Session establishment system and method, electronic device, and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210751425.0A CN115002933B (en) | 2022-06-28 | 2022-06-28 | A session establishment system, method, electronic device and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN115002933A CN115002933A (en) | 2022-09-02 |
| CN115002933B true CN115002933B (en) | 2024-11-12 |
Family
ID=83020356
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210751425.0A Active CN115002933B (en) | 2022-06-28 | 2022-06-28 | A session establishment system, method, electronic device and storage medium |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN115002933B (en) |
| WO (1) | WO2024000975A1 (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115002933B (en) * | 2022-06-28 | 2024-11-12 | 中国电信股份有限公司 | A session establishment system, method, electronic device and storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101212810A (en) * | 2006-12-27 | 2008-07-02 | 华为技术有限公司 | User equipment switching method and system in wireless network |
| CN111200848A (en) * | 2018-11-19 | 2020-05-26 | 华为技术有限公司 | Communication method and device |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP2708007B1 (en) * | 2011-05-13 | 2016-11-02 | Telefonaktiebolaget LM Ericsson (publ) | Methods, server and proxy agent for dynamically setting up a session between a target resource in a private network and an application on a device |
| CN113923650A (en) * | 2017-04-18 | 2022-01-11 | 华为技术有限公司 | Network access method, device and communication system |
| EP3652981B1 (en) * | 2017-08-14 | 2022-04-13 | Samsung Electronics Co., Ltd. | Method and apparatus for processing anchor user plane function (upf) for local offloading in 5g cellular network |
| CN111770545B (en) * | 2019-04-02 | 2022-08-26 | 华为技术有限公司 | Service flow routing control method, device and system |
| EP3993352A1 (en) * | 2020-10-29 | 2022-05-04 | Juniper Networks, Inc. | Supporting dynamic host configuration protocol-based customer premises equipment in fifth generation wireline and wireless convergence |
| CN115002933B (en) * | 2022-06-28 | 2024-11-12 | 中国电信股份有限公司 | A session establishment system, method, electronic device and storage medium |
-
2022
- 2022-06-28 CN CN202210751425.0A patent/CN115002933B/en active Active
- 2022-11-02 WO PCT/CN2022/129188 patent/WO2024000975A1/en unknown
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101212810A (en) * | 2006-12-27 | 2008-07-02 | 华为技术有限公司 | User equipment switching method and system in wireless network |
| CN111200848A (en) * | 2018-11-19 | 2020-05-26 | 华为技术有限公司 | Communication method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN115002933A (en) | 2022-09-02 |
| WO2024000975A1 (en) | 2024-01-04 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10999094B2 (en) | Title-enabled networking | |
| CN109391940B (en) | Method, equipment and system for accessing network | |
| CN102572830B (en) | Method and customer premise equipment (CPE) for terminal access authentication | |
| US9787632B2 (en) | Centralized configuration with dynamic distributed address management | |
| CN103580980B (en) | The method and device thereof that virtual network finds and automatically configures automatically | |
| JP5602937B2 (en) | Establishing connectivity between relay nodes and configuration entities | |
| US8804562B2 (en) | Broadband network system and implementation method thereof | |
| US11943731B2 (en) | Registration of legacy fixed network residential gateway (FN-RG) to a 5G core network | |
| US20100106791A1 (en) | PROCESSING METHOD AND DEVICE FOR QinQ TERMINATION CONFIGURATION | |
| CN107925626A (en) | SDN securities | |
| CN103685026A (en) | Virtual network access method and system | |
| WO2018019299A1 (en) | Virtual broadband access method, controller, and system | |
| WO2017166936A1 (en) | Method and device for implementing address management, and aaa server and sdn controller | |
| CN114080054A (en) | A PDU session establishment method, terminal device and chip system | |
| JP2012503388A (en) | Method and gateway for providing multiple internet access | |
| CN112654049A (en) | Method for configuring wireless communication coverage extension system and wireless communication coverage extension system for implementing same | |
| CN115002933B (en) | A session establishment system, method, electronic device and storage medium | |
| CN101873330B (en) | Access control method and server for supporting IPv6/IPv4 dual stack access | |
| CN109803028B (en) | A method and apparatus for configuring service flow | |
| WO2011032478A1 (en) | Method, device and terminal for obtaining terminal identifier | |
| US20060193330A1 (en) | Communication apparatus, router apparatus, communication method and computer program product | |
| EP2804346B1 (en) | Method and system for discovering dlna device automatically | |
| CN102067527B (en) | A method and device for assisting the terminal device operation within the network in access network | |
| CN114978747B (en) | Registration authentication method, registration authentication device, electronic equipment and storage medium | |
| EP3301860A1 (en) | Method for interconnecting virtual gateways and corresponding virtual gateway |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |