[go: up one dir, main page]

WO2013023591A1 - Method and device for selecting policy server - Google Patents

Method and device for selecting policy server Download PDF

Info

Publication number
WO2013023591A1
WO2013023591A1 PCT/CN2012/080161 CN2012080161W WO2013023591A1 WO 2013023591 A1 WO2013023591 A1 WO 2013023591A1 CN 2012080161 W CN2012080161 W CN 2012080161W WO 2013023591 A1 WO2013023591 A1 WO 2013023591A1
Authority
WO
WIPO (PCT)
Prior art keywords
gateway
policy server
access address
aaa
policy
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2012/080161
Other languages
French (fr)
Chinese (zh)
Inventor
尤建洁
金利忠
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Publication of WO2013023591A1 publication Critical patent/WO2013023591A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1001Protocols in which an application is distributed across nodes in the network for accessing one among a plurality of replicated servers
    • H04L67/1004Server selection for load balancing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/50Network services
    • H04L67/51Discovery or management thereof, e.g. service location protocol [SLP] or web services

Definitions

  • this method configures a single (usually based on IP address segments to configure the corresponding policy server), is not flexible, and cannot implement multiple policy servers for a certain user (ie, based on IP address segments may be Indexing multiple policy servers)
  • different policy servers may be deployed in the network according to the specific functions to be implemented. In this case, IP address configuration cannot be implemented.
  • the present invention provides a method and apparatus for selecting a policy server, so as to solve at least the problem that a plurality of policy servers cannot be implemented for a certain user by statically configuring a corresponding policy server based on an IP address segment in the related art. Specific issues to be implemented to deploy different policy servers.
  • the selecting device of the policy server comprises: a receiving module, configured to receive a policy server access address from an authentication, authorization, and accounting server AAA in an International Standards Organization Broadband Forum BBF network, and identification information of the UE; And setting a binding relationship between the identifier information of the UE and the policy server access address; the selecting module is configured to select a policy server for the UE according to the binding relationship.
  • the above selection device is one of the following: a broadband network gateway; a security agent or a gateway.
  • the receiving module is configured to directly receive the policy server access address from the AAA and the identity information of the UE when the selecting device is a broadband network gateway.
  • the BBF AAA After receiving the RADIUS Accounting Start message, the BBF AAA starts charging.
  • the charging may be the statistics user online time.
  • Step S410 The BBF AAA sends the locally stored policy server access address and user information (such as an IP address, a user name, and the like) of the authenticated user to the BNG, and the BNG maintains the binding relationship between the user and the policy server access address.
  • Step S412 The BBF AAA sends the above-mentioned authenticated user information (such as an IP address, a username, etc.) and/or related QoS parameters (such as bandwidth, priority, etc.) to the policy server according to the locally stored policy server access address of the user. .
  • Step S606 The security agent/gateway sends the request to the selected policy server.
  • Step S608 The policy server performs policy decision, including checking authorization, checking resource availability, formulating policies, and the like.
  • Step S610 The policy server returns a response message to the security agent/gateway.
  • Step S612 The security agent/gateway replies to the PCRF with a response message.
  • 7 is a flow chart of a method for selecting a policy server according to a preferred embodiment 3 of the present invention. As shown in FIG. 7, the user equipment UE initiates a resource request by using the transport layer signaling, and the BNG sends the user's request message to the correct policy server according to the saved policy server address or the statically configured policy.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

Disclosed are a method and a device for selecting policy server. In the method, when a UE passes verification in a BBF network, a gateway in a BBF network receiving the access address of an AAA policy server and the identifier information of a UE from the BBF network; the gateway establishing a binding relationship between the identifier information of the UE and the access address of the policy server; and when the UE initiates a service request, the gateway selecting a policy server for the UE according to the binding relationship. By means of the present invention, a different policy server is capable of being deployed dynamically according to the request of a user and according to the functions to be implemented specifically and the use of a user becomes more convenient.

Description

策略服务器的选择方法及装置 技术领域 本发明涉及通信领域, 具体而言, 涉及一种策略服务器的选择方法及装置。 背景技术 随着网络技术的发展和用户对业务的需求, 用户终端设备逐渐多模化, 可以选择 在不同类型的接入网络接入, 以承载多样性的业务。 不同的网络连接具有不同的特性 和传输能力, 以便能够更好地满足用户对业务多样性的需求。 目前, 多模用户可以实 现不同类型的无线访问网络之间的无缝连接, 如蜂窝的通用移动通信系统 (Universal Mobile Telecommunications System, 简称为 UMTS)、 增强型数据速率 GSM演进技术 (Enhanced Data Rate for GSM Evolution , 简称为 EDGE)、 通用分组无线服务技术 (General Packet Radio Service, 简称为 GPRS) 与 IEEE 802.11 中的无线局域网络 (Wireless Local Area Networks, 简称为 WLAN) 之间的无缝连接。 WLAN可在小范 围的家庭和热点区域提供很高的数据速率; 而蜂窝网络虽然可以提供更高的灵活性和 无处不在的覆盖, 但其缺点在于数据速率较低。 如果能够结合两者的优点, 用户将会 从中获益。 在 WLAN访问点的覆盖范围内, 多模用户利用 WLAN进行数据访问和网 络电话 (Voice over Internet Protocol , 简称为 VoIP) 的应用, 同时, 多模用户还能使 用重叠的蜂窝网络, 进行语音呼叫或媒体访问。 目前, 国际性标准组织宽带论坛 (Broadband Forum, 简称为 BBF) 正在进行固 定移动融合 (Fixed Mobile Convergence, 简称为 FMC) 的标准化工作, 研究的场景包 括移动用户通过家庭网关(Residential Gateway, 简称为 RG)从 BBF网络接入, 并访 问移动或固网的业务。 由于网络的异构性, 当移动用户在 BBF网络接入时, 在用户认 证、 地址分配及计费方面与普通 BBF用户存在差异。 图 1是根据相关技术的 BBF网络中的一种策略控制架构图。如图 1所示, 宽带网 络网关 (Broadband Network Gateway, 简称为 BNG) 是宽带网络的控制设备; 认证、 授权和计费服务器 (Authentication Authorization Accounting, 简称为 AAA) 用于存储 用户数据; 策略决策点 (Policy Decision Point, 简称为 PDP)是固网中的策略服务器, 负责制定策略并下发给传输设备 (如 BNG) 安装执行; 安全代理 /网关 (Security Proxy/Gateway) 负责屏蔽 BBF 网络的内部拓扑; 用户驻地设备 (Customer Premises Equipment, 简称为 CPE) 是用户驻地设备。 用户设备 UE 向应用功能 (Application Function, 简称为 AF) 实体发起业务请求。 图 2是根据相关技术的 BBF网络中的另一种策略控制架构图。如图 2所示, 策略 控制和计费规则功能(Policy Control and Charging Rules Function, 简称为 PCRF)是移 动网络中的策略服务器, 用户设备 UE向 PCRF发起业务请求。 现有技术存在的问题在于, 当用户设备 (User Equipment , 简称为 UE) 在 BBF 网络接入认证后, 发起需要服务质量(Quality of Service, 简称为 QoS)保证的业务时, 需要策略服务器制定相关的策略发送给传输设备执行。 现有技术通过静态配置的方法 选择为用户提供服务的策略服务器。一方面, 此种方法配置单一(通常基于 IP地址段 来配置相应的策略服务器)、不具有灵活性, 并且, 无法实现多个策略服务器为某个用 户使用的情况 (即基于 IP地址段可能会索引出多个策略服务器); 另一方面, 网络中 有可能会根据具体所要实现的功能来部署不同的策略服务器,此时通过 IP地址配置将 无法实现。 发明内容 本发明提供了一种策略服务器的选择方法及装置, 以至少解决相关技术中基于 IP 地址段来静态配置相应的策略服务器所造成的无法实现多个策略服务器为某个用户使 用以及无法根据具体所要实现的功能来部署不同的策略服务器的问题。 根据本发明的一个方面, 提供了一种策略服务器的选择方法。 根据本发明的策略服务器的选择方法包括: 当用户设备 UE在国际性标准组织宽 带论坛 BBF网络中通过认证后, BBF网络中的网关接收来自于 BBF网络中认证、 授 权和计费服务器 AAA的策略服务器接入地址以及 UE的标识信息; 网关建立 UE的标 识信息和策略服务器接入地址的绑定关系; 当 UE发起业务请求时, 网关根据绑定关 系为 UE选择策略服务器。 在上述 BBF网络中的网关接收来自于 AAA的策略服务器接入地址以及 UE的标 识信息之前, 还包括: AAA预先保存或根据预设配置确定策略服务器接入地址。 在网关根据绑定关系为 UE选择策略服务器之后, 网关将 UE发起的业务请求发 送至策略服务器。 上述网关为以下之一: 宽带网络网关; 安全代理或网关。 当上述网关为宽带网络网关时, 宽带网络网关接收来自于 AAA的策略服务器接 入地址以及 UE的标识信息包括:宽带网络网关直接接收来自于 AAA的策略服务器接 入地址以及 UE的标识信息。 当 UE发起业务请求时, 还包括: 宽带网络网关通过传输层信令接收来自于 UE 发起的业务请求。 当上述网关为安全代理或网关时, 网关接收来自于 AAA的策略服务器接入地址 以及 UE的标识信息包括:安全代理或网关经由策略服务器接收来自于 AAA的策略服 务器接入地址以及 UE的标识信息。 上述安全代理或网关经由策略服务器接收来自于 AAA的策略服务器接入地址以 及 UE的标识信息包括:策略服务器接收来自于 AAA根据策略服务器接入地址发送的 UE的标识信息; 安全代理或网关接收来自于策略服务器的策略服务器接入地址及 UE 的标识信息。 当 UE发起业务请求时, 还包括: 网关经由应用功能 AF实体接收 UE发起的业务 请求。 当 UE发起业务请求时, 还包括: 网关经由策略控制和计费规则功能 PCRF接收The present invention relates to the field of communications, and in particular to a method and apparatus for selecting a policy server. BACKGROUND With the development of network technologies and the demand of users for services, user terminal devices are gradually multi-modeled, and can be accessed in different types of access networks to carry diverse services. Different network connections have different characteristics and transmission capabilities to better meet the user's needs for business diversity. At present, multi-mode users can realize seamless connection between different types of wireless access networks, such as cellular Universal Mobile Telecommunications System (UMTS) and Enhanced Data Rate for Enhanced Data Rate for (Enhanced Data Rate for GSM Evolution (abbreviated as EDGE), a general packet radio service (General Packet Radio Service, GPRS for short) and a seamless connection between Wireless Local Area Networks (WLAN) in IEEE 802.11. WLANs provide high data rates in a small range of homes and hotspots; while cellular networks offer greater flexibility and ubiquitous coverage, they have the disadvantage of lower data rates. If you can combine the advantages of both, users will benefit from it. Within the coverage of WLAN access points, multi-mode users use WLAN for data access and Voice over Internet Protocol (VoIP) applications. At the same time, multi-mode users can use overlapping cellular networks for voice calls or Media access. At present, the International Standards Organization Broadband Forum (BBF) is working on the standardization of Fixed Mobile Convergence (FMC). The research scenarios include mobile users through the Residential Gateway (Residential Gateway, RG for short). Access from the BBF network and access mobile or fixed network services. Due to the heterogeneity of the network, when the mobile user accesses the BBF network, there is a difference between the user authentication, the address allocation and the charging and the ordinary BBF user. 1 is a diagram of a policy control architecture in a BBF network according to the related art. As shown in Figure 1, a Broadband Network Gateway (BNG) is a control device for a broadband network; an Authentication, Authorization, and Accounting (AAA) is used to store user data; (Policy Decision Point, or PDP for short) is a policy server in the fixed network. It is responsible for formulating policies and delivering them to the transmission equipment (such as BNG) for installation and execution. The security proxy/gateway (Security Proxy/Gateway) is responsible for shielding the internal topology of the BBF network. ; Customer Premises (Customer Premises Equipment, referred to as CPE) is the customer premises equipment. The user equipment UE initiates a service request to an Application Function (AF) entity. 2 is a diagram of another policy control architecture in a BBF network according to the related art. As shown in FIG. 2, the Policy Control and Charging Rules Function (PCRF) is a policy server in the mobile network, and the user equipment UE initiates a service request to the PCRF. A problem exists in the prior art when a user equipment (User Equipment, UE for short) initiates a service that requires a Quality of Service (QoS) guarantee after the BBF network access authentication. The policy is sent to the transmitting device for execution. The prior art selects a policy server that provides services to users through a static configuration method. On the one hand, this method configures a single (usually based on IP address segments to configure the corresponding policy server), is not flexible, and cannot implement multiple policy servers for a certain user (ie, based on IP address segments may be Indexing multiple policy servers) On the other hand, different policy servers may be deployed in the network according to the specific functions to be implemented. In this case, IP address configuration cannot be implemented. SUMMARY OF THE INVENTION The present invention provides a method and apparatus for selecting a policy server, so as to solve at least the problem that a plurality of policy servers cannot be implemented for a certain user by statically configuring a corresponding policy server based on an IP address segment in the related art. Specific issues to be implemented to deploy different policy servers. According to an aspect of the present invention, a method of selecting a policy server is provided. The method for selecting a policy server according to the present invention includes: after the user equipment UE is authenticated in the International Standards Organization Broadband Forum BBF network, the gateway in the BBF network receives the policy from the authentication, authorization, and accounting server AAA in the BBF network. The server access address and the identification information of the UE; the gateway establishes a binding relationship between the identifier information of the UE and the policy server access address; when the UE initiates the service request, the gateway selects the policy server for the UE according to the binding relationship. Before the gateway in the BBF network receives the policy server access address from the AAA and the identifier information of the UE, the method further includes: the AAA pre-storing or determining the policy server access address according to the preset configuration. After the gateway selects the policy server for the UE according to the binding relationship, the gateway sends the service request initiated by the UE to the policy server. The above gateway is one of the following: a broadband network gateway; a security agent or gateway. When the gateway is a broadband network gateway, the broadband network gateway receives the policy server access address from the AAA and the identifier information of the UE, and the broadband network gateway directly receives the policy server access address from the AAA and the identifier information of the UE. When the UE initiates the service request, the method further includes: the broadband network gateway receiving the service request initiated by the UE by using the transport layer signaling. When the gateway is a security proxy or a gateway, the gateway receives the policy server access address from the AAA and the identifier information of the UE, and the security proxy or the gateway receives the policy server access address from the AAA and the identifier information of the UE via the policy server. . The foregoing security agent or gateway receiving the policy server access address from the AAA and the identity information of the UE via the policy server includes: the policy server receives the identity information of the UE sent by the AAA according to the policy server access address; the security agent or the gateway receives the The policy server access address of the policy server and the identification information of the UE. When the UE initiates the service request, the method further includes: the gateway receiving the UE-initiated service request via the application function AF entity. When the UE initiates the service request, the method further includes: the gateway receiving, by using the policy control and charging rule function PCRF

UE发起的业务请求。 当上述网关为安全代理或网关时, 在 BBF网络中的网关接收来自于 AAA的策略 服务器接入地址以及 UE的标识信息之前, 还包括: 安全代理或网关预先保存 UE的 标识信息与策略服务器之间的静态对应关系。 当 UE发起业务请求时, 还包括: 安全代理或网关根据静态对应关系为 UE选择 策略服务器。 根据本发明的另一方面, 提供了一种策略服务器的选择装置。 根据本发明的策略服务器的选择装置包括: 接收模块, 设置为接收来自于国际性 标准组织宽带论坛 BBF网络中认证、 授权和计费服务器 AAA的策略服务器接入地址 以及 UE的标识信息; 建立模块, 设置为建立 UE的标识信息和策略服务器接入地址 的绑定关系; 选择模块, 设置为根据绑定关系为 UE选择策略服务器。 上述选择装置为以下之一: 宽带网络网关; 安全代理或网关。 上述接收模块, 设置为在选择装置为宽带网络网关时, 直接接收来自于 AAA的 策略服务器接入地址以及 UE的标识信息。 上述接收模块, 设置为在选择装置为安全代理或网关时, 经由策略服务器接收来 自于 AAA的策略服务器接入地址以及 UE的标识信息。 通过本发明, 采用由网关建立的 UE的标识信息和策略服务器接入地址的绑定关 系, 当 UE发起业务请求时, 网关根据绑定关系为 UE选择策略服务器, 解决了相关 技术中基于 IP 地址段来静态配置相应的策略服务器所造成的无法实现多个策略服务 器为某个用户使用以及无法根据具体所要实现的功能来部署不同的策略服务器的问 题, 进而达到了根据用户的请求, 动态地、 根据具体所要实现的功能部署不同的策略 服务器, 用户使用更方便的效果。 附图说明 此处所说明的附图用来提供对本发明的进一步理解, 构成本申请的一部分, 本发 明的示意性实施例及其说明用于解释本发明, 并不构成对本发明的不当限定。 在附图 中: 图 1是根据相关技术的 BBF网络中的一种策略控制架构图; 图 2是根据相关技术的 BBF网络中的另一种策略控制架构图; 图 3是根据本发明实施例的策略服务器的选择方法的流程图; 图 4是根据本发明优选实施例的策略服务器的选择方法中的注册流程图; 图 5是根据本发明优选实施例 1的策略服务器的选择方法流程图; 图 6是根据本发明优选实施例 2的策略服务器的选择方法流程图; 图 7是根据本发明优选实施例 3的策略服务器的选择方法流程图; 以及 图 8是根据本发明实施例的策略服务器的选择装置的结构框图。 具体实施方式 下文中将参考附图并结合实施例来详细说明本发明。 需要说明的是, 在不冲突的 情况下, 本申请中的实施例及实施例中的特征可以相互组合。 图 3是根据本发明实施例的策略服务器的选择方法的流程图。 如图 3所示, 该方 法主要包括以下处理: 步骤 S302:当 UE在 BBF网络中通过认证后, BBF网络中的网关接收来自于 BBF 网络中 AAA的策略服务器接入地址以及 UE的标识信息; 步骤 S304: 网关建立 UE的标识信息和策略服务器接入地址的绑定关系; 步骤 S306: 当 UE发起业务请求时, 网关根据绑定关系为 UE选择策略服务器。 相关技术中,现有的策略服务器的选择方法是基于 IP地址段来静态配置相应的策 略服务器。 由此造成的后果是无法实现多个策略服务器为某个用户使用以及无法根据 具体所要实现的功能来部署不同的策略服务器。 在图 3所示的策略服务器的选择方法 中, 当用户设备 UE在 BBF网络中通过认证后, BBF网络中的网关接收来自于 BBF 网络中 AAA的策略服务器接入地址以及 UE的标识信息; 网关建立 UE的标识信息和 策略服务器接入地址的绑定关系; 当 UE发起业务请求时, 网关根据绑定关系为 UE 选择策略服务器。由此解决了相关技术中基于 IP地址段来静态配置相应的策略服务器 所造成的无法实现多个策略服务器为某个用户使用以及无法根据具体所要实现的功能 来部署不同的策略服务器的问题。 进而达到了根据用户的请求, 动态地、 根据具体所 要实现的功能部署不同的策略服务器, 用户使用更方便的效果。 优选地, 在 BBF网络中的网关接收来自于 AAA的策略服务器接入地址以及 UE 的标识信息之前, 还包括: AAA预先保存或根据预设配置确定策略服务器接入地址。 需要说明的是, 在具体实施过程中, AAA可以将预先保存的策略服务器地址发送 给网关, 其中, 该预先保存的策略服务器地址可以是在用户设备签约时, 为用户设备 配置的策略服务器的地址。 A service request initiated by the UE. When the gateway is a security proxy or a gateway, before the gateway in the BBF network receives the policy server access address from the AAA and the identifier information of the UE, the method further includes: the security proxy or the gateway pre-saves the identifier information of the UE and the policy server. Static correspondence between the two. When the UE initiates the service request, the method further includes: the security agent or the gateway selecting the policy server for the UE according to the static correspondence. According to another aspect of the present invention, a selection device for a policy server is provided. The selecting device of the policy server according to the present invention comprises: a receiving module, configured to receive a policy server access address from an authentication, authorization, and accounting server AAA in an International Standards Organization Broadband Forum BBF network, and identification information of the UE; And setting a binding relationship between the identifier information of the UE and the policy server access address; the selecting module is configured to select a policy server for the UE according to the binding relationship. The above selection device is one of the following: a broadband network gateway; a security agent or a gateway. The receiving module is configured to directly receive the policy server access address from the AAA and the identity information of the UE when the selecting device is a broadband network gateway. The receiving module is configured to receive the policy server access address from the AAA and the identity information of the UE via the policy server when the selecting device is a security agent or a gateway. With the present invention, the binding relationship between the identity information of the UE and the policy server access address established by the gateway is adopted. When the UE initiates the service request, the gateway selects the policy server for the UE according to the binding relationship, and solves the related technology based on the IP address. The problem of statically configuring the corresponding policy server to implement multiple policy servers for a certain user and failing to deploy different policy servers according to the specific functions to be implemented, thereby achieving dynamic, Deploying different policy servers based on the specific functions to be implemented, the user uses more convenient effects. BRIEF DESCRIPTION OF THE DRAWINGS The accompanying drawings, which are set to illustrate,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, In the drawings: FIG. 1 is a policy control architecture diagram in a BBF network according to the related art; FIG. 2 is another policy control architecture diagram in a BBF network according to the related art; FIG. 3 is a diagram according to an embodiment of the present invention. FIG. 4 is a flowchart of a registration in a method for selecting a policy server according to a preferred embodiment of the present invention; FIG. 5 is a flowchart of a method for selecting a policy server according to a preferred embodiment 1 of the present invention; 6 is a flowchart of a method for selecting a policy server according to a preferred embodiment 2 of the present invention; FIG. 7 is a flowchart of a method for selecting a policy server according to a preferred embodiment 3 of the present invention; and FIG. 8 is a policy server according to an embodiment of the present invention. A block diagram of the selection device. BEST MODE FOR CARRYING OUT THE INVENTION Hereinafter, the present invention will be described in detail with reference to the accompanying drawings. It should be noted that the embodiments in the present application and the features in the embodiments may be combined with each other without conflict. 3 is a flow chart of a method of selecting a policy server according to an embodiment of the present invention. As shown in FIG. 3, the method mainly includes the following processing: Step S302: After the UE passes the authentication in the BBF network, the gateway in the BBF network receives the policy server access address from the AAA in the BBF network and the identification information of the UE; Step S304: The gateway establishes a binding relationship between the identifier information of the UE and the policy server access address. Step S306: When the UE initiates a service request, the gateway selects a policy server for the UE according to the binding relationship. In the related art, the selection method of the existing policy server is to statically configure the corresponding policy server based on the IP address segment. The consequence of this is that multiple policy servers cannot be used for a single user and that different policy servers cannot be deployed depending on the specific functionality to be implemented. In the selection method of the policy server shown in FIG. 3, after the user equipment UE passes the authentication in the BBF network, the gateway in the BBF network receives the policy server access address from the AAA in the BBF network and the identification information of the UE; The binding relationship between the identification information of the UE and the access address of the policy server is established. When the UE initiates the service request, the gateway selects the policy server for the UE according to the binding relationship. Therefore, the problem that the corresponding policy server is statically configured based on the IP address segment in the related art cannot implement multiple policy servers for a certain user and cannot deploy different policy servers according to specific functions to be implemented is solved. In turn, according to the user's request, different policy servers are deployed dynamically and according to specific functions to be implemented, and the user uses a more convenient effect. Preferably, before the gateway in the BBF network receives the policy server access address from the AAA and the identifier information of the UE, the method further includes: the AAA pre-storing or determining the policy server access address according to the preset configuration. It should be noted that, in a specific implementation process, the AAA may send the pre-saved policy server address to the gateway, where the pre-saved policy server address may be the address of the policy server configured for the user equipment when the user equipment subscribes. .

AAA还可以根据预定配置(例如, 业务类型和位置信息等)在预先存储的策略服 务器接入地址中确定策略服务器地址, 并将确定的策略服务器地址以及 UE的标识信 息发送至网关, 而网关的主要作用是建立起绑定关系并保存。 优选地, 在网关根据绑定关系为 UE选择策略服务器之后, 网关将 UE发起的业 务请求发送至策略服务器。 优选地, 网关可以为以下之一: 宽带网络网关; 安全代理或网关, 当然, 不限于 上述两种, 其他可以维护绑定关系的网关均在本发明保护范围之内。 以下分别就网关为宽带网络网关和安全代理或网关的两种情况进行描述。 当网关为宽带网络网关时, 上述步骤 S302中, 宽带网络网关接收来自于 AAA的 策略服务器接入地址以及 UE的标识信息包括:宽带网络网关直接接收来自于 AAA的 策略服务器接入地址以及 UE的标识信息。 在优选实施过程中, 当 UE发起业务请求时, 还包括: 宽带网络网关通过传输层 信令接收 UE发起的业务请求。 当网关为安全代理或网关时,上述步骤 S302中,安全代理或网关接收来自于 AAA 的策略服务器接入地址以及 UE的标识信息包括: 安全代理或网关经由策略服务器接 收来自于 AAA的策略服务器接入地址以及 UE的标识信息。 在优选实施过程中, 上述安全代理或网关经由策略服务器接收来自于 AAA的策 略服务器接入地址以及 UE的标识信息可以进一步包括以下处理: The AAA may also determine a policy server address in a pre-stored policy server access address according to a predetermined configuration (eg, service type and location information, etc.), and send the determined policy server address and the identity information of the UE to the gateway, and the gateway The main role is to establish a binding relationship and save. Preferably, after the gateway selects the policy server for the UE according to the binding relationship, the gateway sends the service request initiated by the UE to the policy server. Preferably, the gateway may be one of the following: a broadband network gateway; a security agent or a gateway, of course, not limited to the above two types, and other gateways that can maintain the binding relationship are within the scope of the present invention. The following describes the two scenarios in which the gateway is a broadband network gateway and a security proxy or gateway. When the gateway is a broadband network gateway, in step S302, the broadband network gateway receives the policy server access address from the AAA and the identity information of the UE, including: the broadband network gateway directly receives the policy server access address from the AAA, and the UE Identification information. In a preferred implementation process, when the UE initiates a service request, the method further includes: the broadband network gateway receiving the service request initiated by the UE by using the transport layer signaling. When the gateway is a security proxy or a gateway, in step S302, the security proxy or the gateway receives the policy server access address from the AAA and the identity information of the UE, including: the security proxy or the gateway receives the policy server from the AAA via the policy server. Incoming address and identification information of the UE. In a preferred implementation process, the foregoing security agent or gateway receiving the policy server access address from the AAA and the identity information of the UE via the policy server may further include the following processing:

( 1 ) 策略服务器接收来自于 AAA根据策略服务器接入地址发送的 UE的标识信 息; (1) The policy server receives the identification information of the UE that is sent by the AAA according to the policy server access address;

(2)安全代理或网关接收来自于策略服务器的策略服务器接入地址及 UE的标识 信息。 优选地, 当 UE发起业务请求时, 网关经由固网中 AF接收 UE发起的业务请求。 优选地, 当 UE发起业务请求时, 网关经由移动网中 PCRF接收 UE发起的业务 请求。 优选地, 当网关为安全代理或网关时, 在 BBF网络中的网关接收来自于 AAA的 策略服务器接入地址以及 UE的标识信息之前, 还包括: 安全代理或网关预先保存 UE 的标识信息与策略服务器之间的静态对应关系 (例如, UE的 IP地址段与策略服务器 的静态配置关系)。 优选地, 当 UE发起业务请求时, 还包括: 安全代理或网关根据上述静态对应关 系为 UE选择策略服务器。 图 4是根据本发明优选实施例的策略服务器的选择方法中的注册流程图。 如图 4 所示,用户设备 UE在 BBF网络通过认证并获取 IP地址后, BBF AAA将其存储的 UE 的策略服务器的接入地址推送给 BNG以及安全代理 /网关的过程。 该流程具体包括以 下处理: 步骤 S402: 用户设备 UE接入 BBF网络, 并进行认证; 优选地, 若 UE是支持 802. lx的用户, 则 UE向住宅网关 (Residence Gateway, 简称为 RG)发送认证协议开始报文(基于 EAP协议); RG将收到的 EAP报文封装到 认证接入请求 (基于 RADIUS协议) 报文中, 经由 BNG发送给 BBF AAA。 若 UE归 属于非 BBF网络, 则还涉及 BBF AAA与 UE的归属网络 AAA (Home AAA)的交互。 步骤 S404: 用户设备 UE通过认证; 步骤 S406: BBF网络为其分配 IP地址。 优选地, UE通过向 BNG发送路由请求 (Router Solicitation) 报文 /动态主机设置 协议请求(DHCP Solicit)报文请求 IPv6地址; 或通过动态主机设置协议发现(DHCP Discover) 报文请求 IPv4地址。 DHCP v4/v6服务器负责给用户分配地址。 步骤 S408: BNG发送认证计费开始(RADIUS Accounting Start)报文给 BBF AAA, 收到 RADIUS Accounting Start报文后, BBF AAA开始计费; 其中, 所述计费可以是 统计用户上线时间等。 步骤 S410: BBF AAA将本地存储的上述通过认证的用户的策略服务器接入地址 及用户信息 (如 IP地址、 用户名等) 发送给 BNG, BNG维护用户及其策略服务器接 入地址的绑定关系。 步骤 S412: BBF AAA根据本地存储的用户的策略服务器接入地址将上述通过认 证的用户信息 (如 IP地址、 用户名等) 和 /或相关 QoS参数 (如带宽、 优先级等) 发 送给策略服务器。 优选地, BBF AAA也根据用户的逻辑接入地址和 /或物理接入地址 为用户找到合适的策略服务器地址。 步骤 S414: 策略服务器将自身的接入地址及用户信息 (如 IP地址、 用户名等) 发送给安全代理 /网关 (Security Proxy/Gateway), 安全代理 /网关维护用户及其策略服 务器的绑定关系。 图 5是根据本发明优选实施例 1的策略服务器的选择方法流程图。 如图 5所示, 用户设备向 AF发起业务请求, AF通过安全代理 /网关(Security Proxy/Gateway)将请 求消息发送给正确的策略服务器。 该流程包括以下处理: 步骤 S502: 用户设备 UE发起业务请求, 发送请求消息给 AF, 触发 AF生成资源 初始化请求。 步骤 S504: AF确定所请求业务的 QoS需求参数 (如带宽、 业务类型等), 然后 发送资源请求消息给 BBF网络中的安全代理 /网关(Security Proxy/Gateway)选择正确 的策略服务器 (PDP), 以请求 PDP进行 QoS资源授权和 /或预留。 步骤 S506:安全代理 /网关根据本地存储的用户与策略服务器的绑定关系或静态配 置的策略, 给用户选择正确的策略服务器。 步骤 S508: 安全代理 /网关将请求发送给选出的策略服务器。 步骤 S510: 策略服务器进行策略决策, 包括检查授权、 检查资源可用性, 制定策 略等。 步骤 S512: 策略服务器给安全代理 /网关回复响应消息。 步骤 S514: 安全代理 /网关给 AF回复响应消息。 步骤 S516: AF给 UE回复响应消息。 图 6是根据本发明优选实施例 2的策略服务器的选择方法流程图。 如图 6所示, 移动网络中的策略服务器 PCRF向固定网络中的策略服务器 PDP发起资源请求, PCRF 通过安全代理 /网关 ( Security Proxy/Gateway) 将请求消息发送给正确的策略服务器。 该流程包括以下处理: 步骤 S602:移动网络中的策略服务器 PCRF向固定网络中的策略服务器 PDP发起 资源请求, 该资源请求首先发送给 BBF 网络中的安全代理 /网关 (Security Proxy/Gateway) 选择正确的策略服务器 (PDP), 以请求 PDP进行 QoS资源授权和 / 或预留。 步骤 S604:安全代理 /网关根据本地存储的用户与策略服务器的绑定关系或静态配 置的策略, 给用户选择正确的策略服务器。 步骤 S606: 安全代理 /网关将请求发送给选出的策略服务器。 步骤 S608: 策略服务器进行策略决策, 包括检查授权、 检查资源可用性, 制定策 略等。 步骤 S610: 策略服务器给安全代理 /网关回复响应消息。 步骤 S612: 安全代理 /网关给 PCRF回复响应消息。 图 7是根据本发明优选实施例 3的策略服务器的选择方法流程图。 如图 7所示, 用户设备 UE通过传输层信令发起资源请求, BNG根据保存的用户的策略服务器地址 或静态配置的策略将用户的请求消息发往正确的策略服务器。 该流程包括以下处理: 步骤 S702: 用户设备 UE通过传输层信令发起资源请求。 步骤 S704: BNG收到请求消息后, 根据保存的用户的策略服务器地址或静态配 置的策略为用户选择正确的策略服务器。 步骤 S706: BNG将用户的请求消息发往正确的策略服务器, 请求策略服务器进 行策略决策。 步骤 S708: 策略服务器进行策略决策, 包括检查授权、 检查资源可用性, 制定策 略等。 步骤 S710: 策略服务器给 BNG回复响应消息, 该消息中包含策略信息。 步骤 S712: BNG给 UE回复响应消息。 图 8是根据本发明实施例的策略服务器的选择装置的结构框图。 如图 8所示, 本 发明的策略服务器的选择装置包括: 接收模块 10, 设置为接收来自于 BBF 网络中认 证、 授权和计费服务器 AAA的策略服务器接入地址以及 UE的标识信息; 建立模块 20, 设置为建立 UE的标识信息和策略服务器接入地址的绑定关系; 选择模块 30, 设 置为根据绑定关系为 UE选择策略服务器。 相关技术中,现有的策略服务器的选择装置是基于 IP地址段来静态配置相应的策 略服务器。 由此造成的后果是无法实现多个策略服务器为某个用户使用以及无法根据 具体所要实现的功能来部署不同的策略服务器。 在图 4所示的策略服务器的选择装置 中, 当用户设备 UE在 BBF网络中通过认证后, BBF网络中的网关接收来自于 BBF 网络中 AAA的策略服务器接入地址以及 UE的标识信息; 网关建立 UE的标识信息和 策略服务器接入地址的绑定关系; 当 UE发起业务请求时, 网关根据绑定关系为 UE 选择策略服务器。由此解决了相关技术中基于 IP地址段来静态配置相应的策略服务器 所造成的无法实现多个策略服务器为某个用户使用以及无法根据具体所要实现的功能 来部署不同的策略服务器的问题。 进而达到了根据用户的请求, 动态地、 根据具体所 要实现的功能部署不同的策略服务器, 用户使用更方便的效果。 优选地, 选择装置为以下之一: 宽带网络网关; 安全代理或网关。 优选地, 当选择装置为宽带网络网关时, 其中的接收模块, 设置为直接接收来自 于 AAA的策略服务器接入地址以及 UE的标识信息。 优选地, 当选择装置为安全代理或网关时, 其中的接收模块, 设置为经由策略服 务器接收来自于 AAA的策略服务器接入地址以及 UE的标识信息。 需要注意的是, 上述策略服务器的选择装置中各个模块或单元相互结合的优选工 作方式具体可以参见图 3至图 7的描述, 此处不再赘述。 综上所述, 借助本发明提供的上述实施例, 解决了相关技术中基于 IP地址段来静 态配置相应的策略服务器所造成的无法实现多个策略服务器为某个用户使用以及无法 根据具体所要实现的功能来部署不同的策略服务器的问题。 进而实现了根据用户的请 求, 动态地、 根据具体所要实现的功能部署不同的策略服务器, 用户使用更方便。 显然, 本领域的技术人员应该明白, 上述的本发明的各模块或各步骤可以用通用 的计算装置来实现, 它们可以集中在单个的计算装置上, 或者分布在多个计算装置所 组成的网络上, 可选地, 它们可以用计算装置可执行的程序代码来实现, 从而, 可以 将它们存储在存储装置中由计算装置来执行, 并且在某些情况下, 可以以不同于此处 的顺序执行所示出或描述的步骤, 或者将它们分别制作成各个集成电路模块, 或者将 它们中的多个模块或步骤制作成单个集成电路模块来实现。 这样, 本发明不限制于任 何特定的硬件和软件结合。 以上所述仅为本发明的优选实施例而已, 并不用于限制本发明, 对于本领域的技 术人员来说, 本发明可以有各种更改和变化。 凡在本发明的精神和原则之内, 所作的 任何修改、 等同替换、 改进等, 均应包含在本发明的保护范围之内。 (2) The security agent or gateway receives the policy server access address from the policy server and the identification information of the UE. Preferably, when the UE initiates a service request, the gateway receives the service request initiated by the UE via the AF in the fixed network. Preferably, when the UE initiates a service request, the gateway receives the UE-initiated service request via the PCRF in the mobile network. Preferably, when the gateway is a security proxy or a gateway, before the gateway in the BBF network receives the policy server access address from the AAA and the identifier information of the UE, the method further includes: the security proxy or the gateway pre-save the identifier information and the policy of the UE Static correspondence between servers (for example, the static configuration relationship between the IP address segment of the UE and the policy server). Preferably, when the UE initiates the service request, the method further includes: the security agent or the gateway selecting the policy server for the UE according to the static correspondence. 4 is a registration flow diagram in a method of selecting a policy server in accordance with a preferred embodiment of the present invention. As shown in FIG. 4, after the user equipment UE authenticates and obtains an IP address, the BBF AAA pushes the stored access address of the UE's policy server to the BNG and the security proxy/gateway. The process specifically includes the following processing: Step S402: The user equipment UE accesses the BBF network and performs authentication. Preferably, if the UE is a user supporting 802. lx, the UE sends an authentication protocol start message to the residential gateway (RG) (based on EAP). The RG encapsulates the received EAP packet into the authentication access request (based on the RADIUS protocol) packet and sends it to the BBF AAA via the BNG. If the UE belongs to a non-BBF network, it also involves the interaction of the BBF AAA with the home network AAA (Home AAA) of the UE. Step S404: The user equipment UE passes the authentication; Step S406: The BBF network allocates an IP address for it. Preferably, the UE requests an IPv6 address by sending a Router Solicitation message/Dynamic Host Setting Protocol Request (DHCP Solicit) message to the BNG; or requesting an IPv4 address by using a Dynamic Host Setup Protocol Discovery (DHCP Discover) message. The DHCP v4/v6 server is responsible for assigning addresses to users. Step S408: The BNG sends a RADIUS Accounting Start message to the BBF AAA. After receiving the RADIUS Accounting Start message, the BBF AAA starts charging. The charging may be the statistics user online time. Step S410: The BBF AAA sends the locally stored policy server access address and user information (such as an IP address, a user name, and the like) of the authenticated user to the BNG, and the BNG maintains the binding relationship between the user and the policy server access address. . Step S412: The BBF AAA sends the above-mentioned authenticated user information (such as an IP address, a username, etc.) and/or related QoS parameters (such as bandwidth, priority, etc.) to the policy server according to the locally stored policy server access address of the user. . Preferably, the BBF AAA also finds a suitable policy server address for the user according to the user's logical access address and/or physical access address. Step S414: The policy server sends its own access address and user information (such as IP address, user name, etc.) to the security proxy/gateway (Security Proxy/Gateway), and the security proxy/gateway maintains the binding relationship between the user and its policy server. . FIG. 5 is a flowchart of a method for selecting a policy server according to a preferred embodiment 1 of the present invention. As shown in FIG. 5, the user equipment initiates a service request to the AF, and the AF sends a request message to the correct policy server through a security proxy/gateway (Security Proxy/Gateway). The process includes the following processing: Step S502: The user equipment UE initiates a service request, sends a request message to the AF, and triggers the AF to generate a resource initialization request. Step S504: The AF determines a QoS requirement parameter (such as bandwidth, service type, and the like) of the requested service, and then sends a resource request message to the security proxy/gateway (Security Proxy/Gateway) in the BBF network to select a correct policy server (PDP). The QoS resource authorization and/or reservation is requested by the requesting PDP. Step S506: The security agent/gateway selects the correct policy server for the user according to the binding relationship between the locally stored user and the policy server or the statically configured policy. Step S508: The security agent/gateway sends the request to the selected policy server. Step S510: The policy server performs policy decision, including checking authorization, checking resource availability, formulating policies, and the like. Step S512: The policy server returns a response message to the security agent/gateway. Step S514: The security agent/gateway replies to the AF response message. Step S516: The AF returns a response message to the UE. 6 is a flow chart of a method for selecting a policy server according to a preferred embodiment 2 of the present invention. As shown in FIG. 6, the policy server PCRF in the mobile network initiates a resource request to the policy server PDP in the fixed network, and the PCRF sends the request message to the correct policy server through the security proxy/gateway (Security Proxy/Gateway). The process includes the following processing: Step S602: The policy server PCRF in the mobile network initiates a resource request to the policy server PDP in the fixed network, and the resource request is first sent to the security proxy/gateway (Security Proxy/Gateway) in the BBF network. Policy Server (PDP) to request PDP for QoS resource authorization and/or reservation. Step S604: The security agent/gateway selects the correct policy server for the user according to the binding relationship between the locally stored user and the policy server or the statically configured policy. Step S606: The security agent/gateway sends the request to the selected policy server. Step S608: The policy server performs policy decision, including checking authorization, checking resource availability, formulating policies, and the like. Step S610: The policy server returns a response message to the security agent/gateway. Step S612: The security agent/gateway replies to the PCRF with a response message. 7 is a flow chart of a method for selecting a policy server according to a preferred embodiment 3 of the present invention. As shown in FIG. 7, the user equipment UE initiates a resource request by using the transport layer signaling, and the BNG sends the user's request message to the correct policy server according to the saved policy server address or the statically configured policy. The process includes the following processing: Step S702: The user equipment UE initiates a resource request by using transport layer signaling. Step S704: After receiving the request message, the BNG selects the correct policy server for the user according to the saved policy server address or the statically configured policy. Step S706: The BNG sends the request message of the user to the correct policy server, and requests the policy server to make a policy decision. Step S708: The policy server performs policy decision, including checking authorization, checking resource availability, formulating policies, and the like. Step S710: The policy server sends a response message to the BNG, where the message includes policy information. Step S712: The BNG returns a response message to the UE. FIG. 8 is a structural block diagram of a selection apparatus of a policy server according to an embodiment of the present invention. As shown in FIG. 8, the selection device of the policy server of the present invention includes: a receiving module 10 configured to receive a policy server access address from an authentication, authorization, and accounting server AAA in a BBF network, and identification information of the UE; 20: Set to establish a binding relationship between the identifier information of the UE and the policy server access address; and the selecting module 30 is configured to select a policy server for the UE according to the binding relationship. In the related art, the selection device of the existing policy server statically configures the corresponding policy server based on the IP address segment. The consequence of this is that multiple policy servers cannot be used for a single user and that different policy servers cannot be deployed depending on the specific functionality to be implemented. In the selection device of the policy server shown in FIG. 4, after the user equipment UE passes the authentication in the BBF network, the gateway in the BBF network receives the policy server access address from the AAA in the BBF network and the identification information of the UE; The binding relationship between the identification information of the UE and the access address of the policy server is established. When the UE initiates the service request, the gateway selects the policy server for the UE according to the binding relationship. Therefore, the problem that the corresponding policy server is statically configured based on the IP address segment in the related art cannot implement multiple policy servers for a certain user and cannot deploy different policy servers according to specific functions to be implemented is solved. In turn, according to the user's request, different policy servers are deployed dynamically and according to specific functions to be implemented, and the user uses a more convenient effect. Preferably, the selection device is one of the following: a broadband network gateway; a security agent or a gateway. Preferably, when the selecting device is a broadband network gateway, the receiving module is configured to directly receive the policy server access address from the AAA and the identification information of the UE. Preferably, when the selecting device is a security agent or a gateway, the receiving module is configured to receive the policy server access address from the AAA and the identity information of the UE via the policy server. For details, refer to the descriptions of FIG. 3 to FIG. 7 for details of the preferred working modes of the modules or units in the selection device of the foregoing policy server, and details are not described herein again. In summary, the above embodiments provided by the present invention solve the problem that the corresponding policy server is statically configured based on the IP address segment in the related art, and multiple policy servers cannot be used for a certain user and cannot be implemented according to specific requirements. The ability to deploy different policy server issues. Further, according to the user's request, different policy servers are deployed dynamically and according to specific functions to be implemented, and the user is more convenient to use. Obviously, those skilled in the art should understand that the above modules or steps of the present invention can be implemented by a general-purpose computing device, which can be concentrated on a single computing device or distributed over a network composed of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device, such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein. The steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps are fabricated as a single integrated circuit module. Thus, the invention is not limited to any specific combination of hardware and software. The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc. made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

权 利 要 求 书 Claim 1. 一种策略服务器的选择方法, 包括: 1. A method of selecting a policy server, including: 当用户设备 UE在国际性标准组织宽带论坛 BBF网络中通过认证后,所述 BBF网络中的网关接收来自于所述 BBF网络中认证、 授权和计费服务器 AAA 的策略服务器接入地址以及所述 UE的标识信息;  After the user equipment UE is authenticated in the International Standards Organization Broadband Forum BBF network, the gateway in the BBF network receives the policy server access address from the authentication, authorization and accounting server AAA in the BBF network and the Identification information of the UE; 所述网关建立所述 UE 的标识信息和所述策略服务器接入地址的绑定关 系;  The gateway establishes a binding relationship between the identifier information of the UE and the policy server access address; 当所述 UE发起业务请求时, 所述网关根据所述绑定关系为所述 UE选择 策略服务器。  When the UE initiates a service request, the gateway selects a policy server for the UE according to the binding relationship. 2. 根据权利要求 1所述的方法, 其中, 在所述 BBF网络中的网关接收来自于所述 AAA的策略服务器接入地址以及所述 UE的标识信息之前,还包括:所述 AAA 预先保存或根据预设配置确定所述策略服务器接入地址。 The method according to claim 1, wherein before the gateway in the BBF network receives the policy server access address from the AAA and the identification information of the UE, the method further includes: saving the AAA in advance Or determining the policy server access address according to a preset configuration. 3. 根据权利要求 1所述的方法, 其中, 在所述网关根据所述绑定关系为所述 UE 选择所述策略服务器之后, 所述网关将所述 UE发起的业务请求发送至所述策 略服务器。 The method according to claim 1, wherein after the gateway selects the policy server for the UE according to the binding relationship, the gateway sends the service request initiated by the UE to the policy. server. 4. 根据权利要求 1至 3中任一项所述的方法, 其中, 所述网关为以下之一: 宽带网络网关; 安全代理或网关。 The method according to any one of claims 1 to 3, wherein the gateway is one of the following: a broadband network gateway; a security agent or a gateway. 5. 根据权利要求 4所述的方法, 其中, 当所述网关为所述宽带网络网关时, 所述 宽带网络网关接收来自于所述 AAA 的所述策略服务器接入地址以及所述 UE 的标识信息包括: 5. The method according to claim 4, wherein, when the gateway is the broadband network gateway, the broadband network gateway receives the policy server access address from the AAA and an identifier of the UE Information includes: 所述宽带网络网关直接接收来自于所述 AAA的策略服务器接入地址以及 所述 UE的标识信息。  The broadband network gateway directly receives the policy server access address from the AAA and the identification information of the UE. 6. 根据权利要求 5所述的方法, 其中, 当所述 UE发起业务请求时, 还包括: 所 述宽带网络网关通过传输层信令接收来自于所述 UE发起的业务请求。 The method according to claim 5, wherein, when the UE initiates a service request, the method further includes: the broadband network gateway receiving, by the transport layer signaling, a service request initiated by the UE. 7. 根据权利要求 4所述的方法, 其中, 当所述网关为所述安全代理或网关时, 所 述网关接收来自于所述 AAA的所述策略服务器接入地址以及所述 UE的标识信 息包括: 所述安全代理或网关经由所述策略服务器接收来自于所述 AAA的策略服 务器接入地址以及所述 UE的标识信息。 The method according to claim 4, wherein, when the gateway is the security proxy or gateway, the gateway receives the policy server access address from the AAA and identifier information of the UE include: The security agent or gateway receives a policy server access address from the AAA and identification information of the UE via the policy server. 8. 根据权利要求 7所述的方法, 其中, 所述安全代理或网关经由策略服务器接收 来自于所述 AAA的策略服务器接入地址以及所述 UE的标识信息包括: The method according to claim 7, wherein the security agent or the gateway receives the policy server access address from the AAA and the identifier information of the UE via the policy server, including: 所述策略服务器接收来自于所述 AAA根据所述策略服务器接入地址发送 的所述 UE的标识信息; 所述安全代理或网关接收来自于所述策略服务器的所述策略服务器接入地 址及所述 UE的标识信息。  The policy server receives identification information of the UE sent by the AAA according to the policy server access address; the security proxy or gateway receives the policy server access address and the location from the policy server The identification information of the UE. 9. 根据权利要求 7所述的方法, 其中, 当所述 UE发起业务请求时, 还包括: 所 述网关经由应用功能 AF实体接收所述 UE发起的业务请求。 The method according to claim 7, wherein, when the UE initiates a service request, the method further includes: the gateway receiving the UE-initiated service request via an application function AF entity. 10. 根据权利要求 7所述的方法, 其中, 当所述 UE发起业务请求时, 还包括: 所 述网关经由策略控制和计费规则功能 PCRF接收所述 UE发起的业务请求。 The method according to claim 7, wherein, when the UE initiates a service request, the method further includes: the gateway receiving the service request initiated by the UE by using a policy control and charging rule function PCRF. 11. 根据权利要求 4所述的方法, 其中, 当所述网关为所述安全代理或网关时, 在 所述 BBF网络中的网关接收来自于所述 AAA的策略服务器接入地址以及所述 UE的标识信息之前, 还包括: 所述安全代理或网关预先保存所述 UE的标识信 息与所述策略服务器之间的静态对应关系。 11. The method according to claim 4, wherein, when the gateway is the security proxy or gateway, a gateway in the BBF network receives a policy server access address from the AAA and the UE Before the identification information, the method further includes: the security agent or the gateway pre-preserving a static correspondence between the identification information of the UE and the policy server. 12. 根据权利要求 11所述的方法, 其中, 当所述 UE发起业务请求时, 还包括: 所 述安全代理或网关根据所述静态对应关系为所述 UE选择所述策略服务器。 The method according to claim 11, wherein, when the UE initiates a service request, the method further includes: the security agent or the gateway selecting the policy server for the UE according to the static correspondence. 13. 一种策略服务器的选择装置, 包括: 13. A selection device for a policy server, comprising: 接收模块, 设置为接收来自于国际性标准组织宽带论坛 BBF网络中认证、 授权和计费服务器 AAA的策略服务器接入地址以及 UE的标识信息;  a receiving module, configured to receive a policy server access address and an identification information of the UE from an authentication, authorization, and accounting server AAA in the BBF network of the International Standards Organization Broadband Forum; 建立模块, 设置为建立所述 UE的标识信息和所述策略服务器接入地址的 绑定关系;  Establishing a module, configured to establish a binding relationship between the identifier information of the UE and the access address of the policy server; 选择模块, 设置为根据所述绑定关系为所述 UE选择策略服务器。  And selecting a module, configured to select a policy server for the UE according to the binding relationship. 14. 根据权利要求 13所述的选择装置, 其中, 所述选择装置为以下之一: 14. The selection device according to claim 13, wherein the selection device is one of the following: 宽带网络网关; 安全代理或网关。 Broadband network gateway; security agent or gateway. 15. 根据权利要求 14所述的选择装置, 其中, 所述接收模块, 设置为在所述选择装 置为宽带网络网关时, 直接接收来自于所述 AAA的策略服务器接入地址以及 所述 UE的标识信息。 The selecting device according to claim 14, wherein the receiving module is configured to directly receive a policy server access address from the AAA and the UE when the selecting device is a broadband network gateway. Identification information. 16. 根据权利要求 14所述的选择装置, 其中, 所述接收模块, 设置为在所述选择装 置为安全代理或网关时, 经由所述策略服务器接收来自于所述 AAA的策略服 务器接入地址以及所述 UE的标识信息。 The selecting device according to claim 14, wherein the receiving module is configured to receive a policy server access address from the AAA via the policy server when the selecting device is a security agent or a gateway. And identification information of the UE.
PCT/CN2012/080161 2011-08-15 2012-08-15 Method and device for selecting policy server Ceased WO2013023591A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2011102331077A CN102938756A (en) 2011-08-15 2011-08-15 Selection method and device of policy servers
CN201110233107.7 2011-08-15

Publications (1)

Publication Number Publication Date
WO2013023591A1 true WO2013023591A1 (en) 2013-02-21

Family

ID=47697625

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2012/080161 Ceased WO2013023591A1 (en) 2011-08-15 2012-08-15 Method and device for selecting policy server

Country Status (2)

Country Link
CN (1) CN102938756A (en)
WO (1) WO2013023591A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105357143A (en) * 2015-11-27 2016-02-24 华为技术有限公司 Forwarding method and service routing relay node

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105704089A (en) * 2014-11-25 2016-06-22 中兴通讯股份有限公司 Template-based login user management method, user login method and device
CN111182537A (en) * 2019-12-31 2020-05-19 北京指掌易科技有限公司 Network access method, device and system for mobile application
CN114513819B (en) * 2022-03-28 2025-04-22 中国电信股份有限公司 QoS service providing method, home gateway, communication system and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101150782A (en) * 2007-10-17 2008-03-26 中兴通讯股份有限公司 A selection method for policy billing control server
CN101217789A (en) * 2008-01-10 2008-07-09 中兴通讯股份有限公司 A method for selecting a policy and charging rule function server in a non-roaming scenario
CN101990190A (en) * 2009-07-31 2011-03-23 艾利森电话股份有限公司 Method and device for selecting gateway in mobile communication network as well as system comprising device
CN102098275A (en) * 2009-12-14 2011-06-15 中兴通讯股份有限公司 Method and device for controlling subscriber strategy

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101159563B (en) * 2007-11-02 2011-01-05 中兴通讯股份有限公司 Method and system for selecting strategy charging control server

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101150782A (en) * 2007-10-17 2008-03-26 中兴通讯股份有限公司 A selection method for policy billing control server
CN101217789A (en) * 2008-01-10 2008-07-09 中兴通讯股份有限公司 A method for selecting a policy and charging rule function server in a non-roaming scenario
CN101990190A (en) * 2009-07-31 2011-03-23 艾利森电话股份有限公司 Method and device for selecting gateway in mobile communication network as well as system comprising device
CN102098275A (en) * 2009-12-14 2011-06-15 中兴通讯股份有限公司 Method and device for controlling subscriber strategy

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105357143A (en) * 2015-11-27 2016-02-24 华为技术有限公司 Forwarding method and service routing relay node
CN105357143B (en) * 2015-11-27 2019-10-01 华为技术有限公司 A kind of retransmission method and service routing relay node

Also Published As

Publication number Publication date
CN102938756A (en) 2013-02-20

Similar Documents

Publication Publication Date Title
US8189567B2 (en) Method and nodes for registering a terminal
EP2601815B1 (en) Network initiated alerts to devices using a local connection
US10432632B2 (en) Method for establishing network connection, gateway, and terminal
CN108432295B (en) Method for establishing roaming connections
CN112437104B (en) Method and device for quality of service management, and communication system
US9271318B2 (en) Internet protocol address registration
WO2008003241A1 (en) Method for allocating ip address, dynamic host configuration protocol server and relay method for allocating ip address
CN103095654A (en) Virtual local area network (VLAN) configuration method, wireless access point and network control point
CN103384365B (en) A kind of method for network access, method for processing business, system and equipment
CN101232699A (en) Method and system for determining terminal mobility management type
WO2013023591A1 (en) Method and device for selecting policy server
WO2012142867A1 (en) Authentication notification method and system
CN102781093B (en) The Notification Method and system of a kind of user profile
WO2013000325A1 (en) Bbf network address allocation and strategy execution method and system
CA2661050A1 (en) Dynamic temporary mac address generation in wireless networks
CN103975641B (en) A kind of session establishing method and device
CN117979373A (en) Communication method, system, storage medium and program product
WO2012106984A1 (en) Method and system for accessing mobile core network through trustworthy fixed network
CN103428779B (en) Transmission method, system and the fixed network access gateway of quality of service information
US20250267502A1 (en) Device identification behind a residential gateway (rg)
US20250185085A1 (en) Techniques for on-premise wireless wide area access connectivity equipment sharing in multi-tenant environments
WO2013155938A1 (en) Method and device for informing of user address
WO2007050610A2 (en) Methods and apparatus for use in a packet data network
WO2009129730A1 (en) Method, device and system for registering in universal service interface system
KR20060011354A (en) Mobile IP system and method using dynamic IP allocation based on diameter in broadband wireless access communication system such as WiBro

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 12823504

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 12823504

Country of ref document: EP

Kind code of ref document: A1