Patent Application
20080046571
In the following, the present invention will be described in greater detail with reference to the accompanying drawings, in which
The present invention is described herein with reference to particular non-limiting examples. A person skilled in the art will appreciate that the invention is not limited to these examples, and may be more broadly applied.
In particular, the present invention is described in relation to DHCP as a known dynamic host configuration scheme. As such, the description of the embodiments given herein specifically refers to terminology which is directly related to DHCP. Such terminology is however only used in the context of the presented examples, and does not limit the invention in any way. That is, all aspects of the present invention are similarly applicable for a dynamic host configuration being based on another scheme, as long as that has a comparable underlying concept.
In
The mobile terminal of
According to an embodiment of the present invention, in general terms being referred to as encapsulation-based DHCP, the mobile DHCP client node is enabled to perform an encapsulated DHCP messaging with its home DHCP server through different domains and intermediary devices blocking DHCP traffic (illustrated by solid line arrows).
For inter-domain dynamic host configuration according to the present embodiment, the mobile terminal encapsulates a DHCP message generated and transfers the encapsulated DHCP message through the communication system. The encapsulated messaging is applicable between a client and a relay agent or server, and between a relay agent and another relay agent or server.
An encapsulation procedure used in this embodiment is based on a protocol, whose transmission is supported by the intermediary devices, e.g. firewalls, as well as access and transport networks. Thereby, the encapsulation provides for a transparent DHCP traversal through firewalls, networks address translators (NAT), network access port translators (NAPT) and other kinds of middle-box devices. Stated in other words, the encapsulation-based DHCP enables a (reliable) exchange of host configuration messages between DHCP entities (i.e. client, relay agent, server) in independent (separated) DHCP frameworks.
The encapsulated message is decapsulated at a destination entity or at a relay entity, which uses the same (but inverted) encapsulation procedure.
In principle, an encapsulation of host configuration messages can be performed at a client entity or at a relay agent entity, and a respective decapsulation of encapsulated host messages can be performed at a relay agent entity or at a server entity. Thus, in an example scenario with a client, two relay agents and a server, the following basic use cases of encapsulation-based DHCP messaging according to Table 1 are possible in the present embodiment.
That is, any combination of encapsulated and non-encapsulated (i.e. standard) messaging on each individual link is possible. Accordingly, the respective apparatuses and entities involved are configured correspondingly according to an embodiment of the present invention.
Pursuant to alternative implementations, the use of encapsulation can be pre-configured or can be agreed upon dynamically (by negotiation) between respective apparatuses or entities.
According to a present implementation, the encapsulation is performed by an encapsulation procedure being based a protocol of layer 4 or above according to the OSI (Open Systems Interconnection) reference model. One example of such a layer 4+protocol is HTTP (Hypertext Transfer Protocol). The encapsulation procedure used does preferable not utilize any IP address or port number in layers 4 to 7, if transparency to application level gateways (ALG) of NAT or NAPT is desired. In detail, the encapsulation procedure involves a standalone set of protocols of different layers, e.g. IP+TCP (Transport Control Protocol)+HTTP. Moreover, if the encapsulation procedure used is secured, e.g. by using HTTPS, the encapsulated DHCP message is secured as well.
From firewall or middle-box perspective, if HTTP is used as encapsulation protocol, a method according to a firewall enhancement protocol (FEP) as defined in RFC 3093 may be used to get traversal through firewalls. The firewall enhancement protocol defines for example how to encode IP and TCP headers and to what HTTP messages they are to be used.
In
In the context of the present embodiment, it is to be noted that, due to the nature of the used addressing in DHCP, it is possible that source addresses of the inner and outer IP header are not equal (i.e. DHCP message creation point may be different from its encapsulation point) and therefore a relay agent and a server need to be able to do necessary mapping between the different source addresses for a possible response. Correspondingly, the destination addresses may be different, representing the case in which a DHCP message destination point is different from its decapsulation point.
The thus proposed method is compliant to current standards, does not add any new message delivery points, and thus maintains the overall signaling path. If provided optionally, additional message delivery points are used for encapsulation/decapsulation, which are not visible to the DHCP framework.
Stated in general terms, there is provided a method of dynamic host configuration in a communication system comprising a plurality of domains being separated from each other by intermediary devices blocking host configuration messages, wherein a source entity and a destination entity of a host configuration message are located in different domains, the method comprising the steps of obtaining (i.e. receiving or generating) a host configuration message to be transferred to the destination entity, encapsulating the obtained host configuration message based on an encapsulation procedure, and transferring the encapsulated host configuration message toward the destination entity.
Embodiments of the present invention are directed to respective apparatuses which are configured to perform the above methods. Such apparatuses are provided for a client entity, a relay agent entity, and a server entity.
In the following, the apparatuses of the present embodiments (although not shown) are described by way of the functions carried out at them, respectively. However, it is to be understood that the present invention also comprises respectively configured and arranged functional elements, apparatuses, devices and means. In the following, only those functions and/or means are described, which are relevant for the description of the present embodiments, thus omitting generally known functions and/or means of the respective apparatuses or entities.
As the following schematic flow charts are self-explaining for a skilled person, a detailed description thereof will not be given herein.
Embodiments of the present invention are also directed to an enhanced host (or client) for dynamic host configuration, e.g. an enhanced DHCP host (or client). An enhanced host according to present embodiments is suited to be applied in a scenario as exemplarily illustrated in
According to certain embodiments, the DHCP host enables a pervasive (inter-domain) use of dynamic host configuration, e.g. according to DHCP, in hosts regardless of its current location in the communication system. In this embodiment, the enhanced DHCP host basically acts as a mobile node, not as a mobile router. That is, pervasive DHCP usage refers to additional functions on a mobile node side of a host (or client), which particularly relate to use cases and circumstances where standard DHCP is not successfully applicable. These are for example:
According to
According to the first alternative, this is achieved by utilizing the capability of DHCP relay agents to be allowed, unlike DHCP clients, to communicate with other trusted DHCP relay agents and servers with their global unicast addresses. That is, when pervasive DHCP use is needed, instead of a normal sending operation, the local DHCP client means delivers messages to the local relay agent means for relaying (referred to as alternative 1).
Because this relay agent functionality is strictly for the pervasive DHCP usage, it is transparent to a local DHCP framework, i.e. it is not used with a local DHCP framework.
This method as such is however vulnerable to possible middle-box filtering, such as firewalls, on the packet path and therefore is particularly feasible in cases where security and reliability of the packet path has been established in advance, such as over IP-IP tunnels or in local trusted networks.
According to
Hence, the second alternative of pervasive DHCP usage is effected by using encapsulation, for example an encapsulation-based DHCP method as described above in connection with the first overall embodiment. That is, when pervasive DHCP usage is needed, instead for normal relaying, the relay agent means delivers DHCP messages to the encapsulator or encapsulation means (referred to as alternative 2).
This alternative requires no existing secure connectivity or existing reliable transport on the packet path, but it can provide those itself. Therefore, it can be applied in any network.
It is evident from
In order to perform the decision process as illustrated in
According to the present embodiment, although not illustrated explicitly, the first decider or decision means may be arranged at the local DHCP client means or at the local DHCP relay agent means, in which case all DHCP messages are redirected via the local relay agent means. In the former case, the second decider or decision means may be arranged at the local DHCP client means, at the local DHCP relay agent means or at the local encapsulation means (encapsulator). In the later case, the second decider or decision means may be arranged at the local DHCP relay agent means or at the local encapsulation means (encapsulator).
The decision making in both stages may be based on the will of an application to originate the signaling, and/or policies and/or rules at the host apparatus, and/or an active third party entity in the host apparatus.
It is to be noted that the enhanced DHCP host apparatus of
As regards additional functionality of the local relay agent means of
In general, as is obvious from the foregoing, in order to be enabled to receive DHCP response messages from a DHCP server (either directly or via a remote relay agent), the enhanced DHCP host apparatus further comprises a decapsulator or decapsulating means for receiving an encapsulated DHCP message from a remote relay agent apparatus or server apparatus and for decapsulating the received encapsulated host configuration message. Then, the relay agent means is further configured to receive a DHCP message and to determine whether or not the received message is destined for the local client means.
According to further certain embodiments, an enhanced DHCP host enables DHCP service for connected adjacent (proximity) networks such as MANET or PAN, when the enhanced DHCP host acts as a mobile router (MR) instead of or in addition to acting as a mobile node (MN) as described above.
A DHCP service for connected adjacent networks, when the host operates in MR mode, refers to functions both on the MN- and/or the MR-side of the enhanced DHCP host architecture, that can enable use of the same DHCP service for nodes in a network behind the MR as well as on the MN-side.
In
Further to the devices and/or means of the MN side, the enhanced DHCP host of the present embodiment further comprises a mobile router (MR) side. On the MR side, the host comprises server means (i.e. a committer) for committing a dynamic host configuration of network nodes (not shown) connected to the MR-side of the host apparatus. This is indicated by arrow numbered 4 in
An interface between the MR-side and the MN-side can be used to trigger configuration requests in the DHCP client means of the MN-side, i.e. DHCP requests of nodes in a connected adjacent network to the server means of the MR-side can trigger DHCP requests to the MN-side, e.g. to the client means (indicated by a dashed line arrow denoted with control). Moreover, this triggered request can trigger requests also to non-DHCP frameworks via a management interface being indicated in the right upper corner of the host. The management interface serves for importing new parameters to a DHCP service, exporting received parameters to an external framework, and/or requesting parameters from an external framework.
Nodes in the connected adjacent network are required to support standard DHCP and, if they do, the respective DHCP framework must be configured properly. But, if nodes support pervasive use of DHCP as defined and described hereinabove, no other DHCP entities are required to enable DHCP service. However, in the latter case nodes in the network must be aware of the address of a mobile router acting as DHCP server (which however should be a common functionality for mobile networks).
According to further certain embodiments, an enhanced DHCP host enables adaptive multi-access support for dynamic host configuration, e.g. according to DHCP. This functionality refers both to the mobile node (MN) side as well as to the mobile router (MR) side of the enhanced DHCP host, and is independent from the implementation of any one of the above-mentioned functionalities.
For the purpose of the present embodiment, adaptive multi-access support refers to functions in the host apparatus, that enable a seamless DHCP service in a multi-access host, namely in case of interface handovers. To this end, there is provided a multi-access mapping entity for adapting the host apparatus to the actual interface used for dynamic host configuration, e.g. according to DHCP. In detail, socket layer functions of DHCP client/relay agent/server are adapted to changes in physical and/or virtual interfaces, which includes monitoring changes in interfaces and implementing proper mapping functions for this purpose. Thereby, the enhanced DHCP host of the present embodiment is, in its DHCP transactions, not interface specific any more, and is adjustable to changing conditions, which is particularly beneficial in dynamic network environments.
While the illustrated multi-access mapping entity handles the handover issues in the system, also certain logical changes take place in the DHCP entities, namely in the client. An enhanced DHCP client (or host) of a present embodiment is thus configured to “see” (i.e. recognize) all logical interfaces (i.e. virtual and physical interfaces) of the host as concurrent interfaces (i.e. as one single interface) at all times. This means that transactions are not tied to specific interfaces in the client entity and receiving reply message from a “wrong” interface alone is not a valid reason to discard the received message in the client. In practice, this may be achieved by using a common transaction ID space for all logical interfaces. Stated in other words, the client means (acting as a processor) is further configured to operate in such a way that a dynamic host configuration is associated with any interface, instead of only one interface per transaction.
However, the client means preferably also maintains a functionality to handle interface specific configurations received in DHCP messages, even in a multi-access environment.
In contrast to the above solution for a multi-access architecture, prior DHCP entities usually are interface specific at least on logical level. For example, a DHCP client's transaction ID pools are interface-specific. In multi-access host architecture such an approach easily leads to discarding of DHCP reply messages in the client due to unknown and/or faulty transaction IDs, when interface handover takes place in the middle of a DHCP transaction. In other words, standard DHCP expects to receive reply from the same interface that the originating request was sent to. Also in standard DHCP, interface specific configurations received from a certain interface are configurations of that receiving interface by default and should not be used in other interfaces. Problems and drawbacks related with these prior art solutions are solved by the present embodiment.
In general, it is to be noted that respective functional elements according to above-described embodiments can be implemented by any known devices or means, either in hardware and/or software, respectively, if it is only adapted to perform the described functions of the respective parts. The mentioned method steps can be realized in individual functional blocks or by individual devices, or one or more of the method steps can be realized in a single functional block or by a single device.
Furthermore, method steps likely to be implemented as software code portions and being run using a processor at one of the entities are software code independent and can be specified using any known or future developed programming language such as e.g. C, C++, and Assembler. Method steps and/or devices or means likely to be implemented as hardware components at one of the peer entities are hardware independent and can be implemented using any known or future developed hardware technology or any hybrids of these, such as MOS, CMOS, BICMOS, ECL, TTL, etc, using for example ASIC components or DSP components, as an example. Generally, any method step is suitable to be implemented as software or by hardware without changing the idea of the present invention. Devices and means can be implemented as individual devices, but this does not exclude that they are implemented in a distributed fashion throughout the system, as long as the functionality of the device is preserved. Such and similar principles are to be considered as known to those skilled in the art.
In accordance with embodiments of the present invention, there is provided pervasive dynamic host configuration in a communication system comprising a plurality of domains being separated from each other by intermediary devices blocking host configuration messages, including encapsulation-based dynamic host configuration messaging and an enhanced host apparatus for dynamic host configuration.
Even though the invention is described above with reference to the examples according to the accompanying drawings, it is clear that the invention is not restricted thereto. Rather, it is apparent to those skilled in the art that the present invention can be modified in many ways without departing from the scope of the inventive idea as disclosed in the appended claims.
| Number | Date | Country | Kind |
|---|---|---|---|
| EP 06119028.6 | Aug 2006 | EP | regional |
