Presentation is loading. Please wait.

Presentation is loading. Please wait.

Dean Cheng 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext-00 1 1.

Published byGodwin Miles Modified over 8 years ago

Similar presentations

Presentation on theme: "Dean Cheng 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext-00 1 1."— Presentation transcript:

1 Dean Cheng (dean.cheng@huawei.com) 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext-00 1 1

2 Motivation Scenario (in a broadband network)  User configuration is stored on a RADIUS server (user profile)  User’s broadband connection terminates at a BNG  CNG (e.g. NAT44) can be co-located on a BNG Problem to solve  How to leverage the existing RADIUS based infrastructure in broadband network to configure & manage subscriber based CGN parameters? Solution proposed  Pre-configure the CGN related parameters on the RADIUS server as part of the user profile. This information is propagated to the BNG/CGN by RADIUS messages exchange between BNG and RADIUS server.  CGN related user parameters are sent from BNG to RADIUS server. 2

3 Configure NAT44 TCP/UDP Session Limit via RADIUS AAA Server Access Request Service Request NAT44/NAS BNG User profile: Username pwd, IPv4 address, CGN TCP/UDP, Session Limit Access-Accept CGN-Session-Limit (TCP/UDP ports) Service Granted (other parameters) User RADIUSPPPoE/DHCP 3 Account Request CGN-Session-Limit (TCP/UDP ports) (NAT44 external port allocation and IPv4 address assignment)

4 Change NAT44 TCP/UDP Session Limit via RADIUS AAA Server NAT44/NAS BNG User profile: Username pwd, IPv4 address, CGN TCP/UDP, Session Limit User 4 TCP/UDP Port Limit (1024) CoA Request CGN-Session-Limit (TCP/UDP ports) TCP/UDP Port Limit (2048)

5 CGN-Session-Limit Attribute Type - TBD Length – 6 octets ST (3 bit) - 0: The limit as specified is applied to the sum of TCP ports, UDP ports and ICMP identifiers. 1: The limit as specified is applied to the sum of TCP ports and UDP ports. 2: The limit as specified is applied to TCP ports. 3: The limit as specified is applied to UDP ports. 4: The limit as specified is applied to ICMP identifiers. 5-7: Not used. Reserved – set to zero by sender and ignored by receiver. Session Limit - This field contains the maximum number that is imposed to the total number of TCP ports, or UDP ports, or the sum of the two, or ICMP Identifiers, or the sum of the three, depending on the value in the Session Type field, that the specific user can use during CGN operation. 5

6 Report NAT44 TCP/UDP Port Allocation Range via RADIUS AAA Server Access Request Service Request NAT44/NAS BNG User profile: Username pwd, IPv4 address, CGN TCP/UDP, Session Limit Access-Accept Service Granted User RADIUSPPPoE/DHCP 6 Account Request CGN-Session-Range for de-allocation CGN allocates a TCP/UDP port range for the user Account Request CGN-Session-Range for allocation CGN de-allocates a TCP/UDP port range for the user

7 CGN-Session-Range Attribute Type - TBD Length – (12 plus the length of Local Session ID) octets A-bit Flag – 0: The specified range is for allocation. 1: The specified range is for de-allocation. ST (Session Type) 2 bits: 0: The session range is applied to TCP ports. 1: The session range is applied to UDP port range. 2: The session range is applied to both TCP and UDP port range. 3: The session range is applied to ICMP identifier range. 7

8 CGN-Session-Range Attribute (Cont.) Reserved – set to zero by sender and ignored by receiver. External Session Range Start: This field contains the smallest TCP/UDP Port number or the smallest ICMP identifier number in the session range, which contains consecutive TCP/UDP ports or ICMP identifiers, depending on the value of Session Type. External Session Range End: This field contains the largest TCP/UDP Port number or the largest ICMP identifier number in the session range, which contains consecutive TCP/UDP ports or ICMP identifiers, depending on the value of Session Type. External IPv4 Address: This field contains the IPv4 address assigned to the associated subscriber to be used in the external realm. Local Session ID: This is an optional field and if presents, it contains a local session identifier at the customer premise, such as MAC address, interface ID, VLAN ID, PPP sessions ID, VRF ID,etc.The length of this field equals to the total attribute length minus 12 octets. 8

9 NAT44 Port Forwarding Configuration via RADIUS AAA Server Access Request Service Request NAT44/NAS BNG User profile: Username pwd IPv4 address Internal port External port Access-Accept CGN-Port-Forwarding-Map Service Granted (other parameters) Account Request CGN-Port-Forwarding-Map User (Create a port mapping for the user, and associate it with the internal and external IP address) RADIUSPPPoE/DHCP 9

10 Change NAT44 TCP/UDP Port Mapping via RADIUS AAA Server NAT44/NAS BNG User 10 Internal IP Address Port Map (a:X) CoA Request CGN-Port-Forwarding-Map) Internal IP Address Port Map (a:Y)) CoA Response CGN-Port-Forwarding-Map) User profile: Username pwd IPv4 address Internal port External port RADIUSPPPoE/DHCP

11 CGN-Forwarding-Port-Map Attribute Type - TBD Length – Depending on the value of the AF field, the length could be 8, 12 or 24 octets. AF (Address Family)- 2 bits: 0: no internal IP address 1: The internal address is an IPv4 address. 2: The internal address is an IPv6 address. 3: Unused. Reserved – set to zero by sender and ignored by receiver. Internal Port – The internal port for the CGN mapping. External Port – The external port for the CGN mapping. Internal IP address – if exists, contains the internal IPv4 or IPv6 address for the CGN mapping. 11

12 Next Step … Solicit review and assistance from RADEXT WG on the RADIUS elements in the draft Propose as a WG document in BEHAVE WG 12

Download ppt "Dean Cheng 81 st IETF Quebec City RADIUS Extensions for CGN Configurations draft-cheng-behave-cgn-cfg-radius-ext-00 1 1."

Similar presentations

CPSC 441 - Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-

CPSC Network Layer4-1 IP addresses: how to get one? Q: How does a host get IP address? r hard-coded by system admin in a file m Windows: control-panel->network->configuration-
© 2006 Cisco Systems, Inc. All rights reserved.IP6FD v2.0—2-1 IPv6 Operations Defining and Configuring Neighbor Discovery.

© 2006 Cisco Systems, Inc. All rights reserved.IP6FD v2.0—2-1 IPv6 Operations Defining and Configuring Neighbor Discovery.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Addressing the Network – IPv4 Network Fundamentals – Chapter 6.
Umut Girit 200535027.  One of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer.

Umut Girit  One of the core members of the Internet Protocol Suite, the set of network protocols used for the Internet. With UDP, computer.
IPv6 Address Provisioning In IPv6 world there are three provisioning aspects wich are independent of whether the IPv6 node is a Host or CE router: IPv6.

IPv6 Address Provisioning In IPv6 world there are three provisioning aspects wich are independent of whether the IPv6 node is a Host or CE router: IPv6.
Internet Control Message Protocol (ICMP). Introduction The Internet Protocol (IP) is used for host-to-host datagram service in a system of interconnected.

Internet Control Message Protocol (ICMP). Introduction The Internet Protocol (IP) is used for host-to-host datagram service in a system of interconnected.
Chapter 18 RADIUS. RADIUS  Remote Authentication Dial-In User Service  Protocol used for communication between NAS and AAA server  Supports authentication,

Chapter 18 RADIUS. RADIUS  Remote Authentication Dial-In User Service  Protocol used for communication between NAS and AAA server  Supports authentication,
4: Addressing Working At A Small-to-Medium Business or ISP.

4: Addressing Working At A Small-to-Medium Business or ISP.
DHCP: Dynamic Host Configuration Protocol

DHCP: Dynamic Host Configuration Protocol
Dean Cheng Jouni Korhonen Mehamed Boucadair

Dean Cheng Jouni Korhonen Mehamed Boucadair
Network Layer4-1 DHCP: Dynamic Host Configuration Protocol Goal: allow host to dynamically obtain its IP address from network server when it joins network.

Network Layer4-1 DHCP: Dynamic Host Configuration Protocol Goal: allow host to dynamically obtain its IP address from network server when it joins network.
Access Protocols PPP vs. DHCP Chapter 5. Overview PPP DHCP User identities Assignment of IP addresses Assignment of other parameters.

Access Protocols PPP vs. DHCP Chapter 5. Overview PPP DHCP User identities Assignment of IP addresses Assignment of other parameters.
Network Layer4-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.

Network Layer4-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.
Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.

Jun Li DHCP Option for Access Network Information draft-lijun-dhc-clf-nass-option-01.
QUALCOMM Incorporated 1 Protocol Options for BSN- BSMCS Controller Interface Jun Wang, Kirti Gupta 05/16/2005 Notice: Contributors grant a free, irrevocable.

QUALCOMM Incorporated 1 Protocol Options for BSN- BSMCS Controller Interface Jun Wang, Kirti Gupta 05/16/2005 Notice: Contributors grant a free, irrevocable.
Pack-it Technology Highly versatile Internet connectivity solution for non-Internet enabled devices. Seamless interface with RS232, Ethernet, switches,

Pack-it Technology Highly versatile Internet connectivity solution for non-Internet enabled devices. Seamless interface with RS232, Ethernet, switches,
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Planning the Addressing Structure Working at a Small-to-Medium Business.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public ITE PC v4.0 Chapter 1 1 Planning the Addressing Structure Working at a Small-to-Medium Business.
Dean Cheng Jouni Korhonen Mehamed Boucadair

Dean Cheng Jouni Korhonen Mehamed Boucadair
Real-time Flow Management 2 BOF: Remote Packet Capture Extensions Jürgen Quittek NEC Europe Ltd, Heidelberg, Germany Georg Carle GMD.

Real-time Flow Management 2 BOF: Remote Packet Capture Extensions Jürgen Quittek NEC Europe Ltd, Heidelberg, Germany Georg Carle GMD.
1 RFC 4944 - Transmission of IPv6 Packets over IEEE 802.15.4 Networks Speaker: Li-Wen Chen Date: 2010-05-05.

1 RFC Transmission of IPv6 Packets over IEEE Networks Speaker: Li-Wen Chen Date:

Similar presentations

Ads by Google