Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

1© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

3© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Building Data Overlay Solutions for GSM and CDMA Wireless Networks

Session WMT-241

444© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

555© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

An Epic Time of Change

• Network technology—TDM to packets

• Business model—facilities to content, Internet

• User behavior—transition personal communications

• Industry structure—vertical to horizontal

666© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Used with Permission, Sept 2000

Sonera’s View

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

777© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

VNOVNO

HybridHybrid

VerticalVertical

RulesRules

Content Content

Wireless Operators at the Data Cross Roads

• Brand recognition and advertising revenue

• Minimal physical infrastructure investment • Minimal technical and maintenance staff• Differentiated services bundling/billing• WAN and data center ecosystem partners

PortalContent aggregationLoad balancingWeb cachingApplication hosting

• Differentiated traffic/billing• Partner/develop content sources• Build WAN transport infrastructure

Internet and walled garden accessCorporate access

• Build data center/management systems• Value-added services billing model

888© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Investment in Data Networking

• While the primary traffic is likely to be voice…

• The primary operator differentiation will be determined by a mobile services framework for data that provides

Value-add services

Personalization/customer experience

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

999© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

2G2G

GSMCkt Swt Data(2.4-9.6kbps)

GSMCkt Swt Data(2.4-9.6kbps)

TDMAT1A/IS-136TDMA

T1A/IS-136

2.5 or 2G Enhancements2.5 or 2G Enhancements

64 Kbps

144Kbps

384Kbps

1 Mbps

Cdma20001xTreme DVUp to 5 Mbps

Cdma20003xRTT

Up to 5 Mbps

IS-136 HSIndoor

2 Mbps

3G

Mobile Wireless Evolution

cdmaOneT1A/IS-95Ckt Swt Data(14.4 Kbps)

cdmaOneT1A/IS-95Ckt Swt Data(14.4 Kbps)

IS-136+Up to

64kbps

IS-136+Up to

64kbps

IS-136 HS Outdoor

Up to 384kbps

IS-136 HS Outdoor

Up to 384kbps

Cdma20001xRTT DV

Up to 144kbps

GPRSUp to

171kbps

GPRSUp to

171kbps

EDGEUp to

384kbps

EDGEUp to

384kbps

Cdma20001xEV HDR DOUp to 2.4 Mbps

WCDMAUp to 2 Mbps (Local)

Up to 384 Kbps (Wide)

101010© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

111111© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

• Global System for Mobile communication (GSM) is a European Telecommunication Standard Institute (ETSI) specification

General Packet Radio Service (GPRS) is a subset of the GSM specifications

• A GPRS capable GSM network generally consists of two portions:

Voice which is a circuit switched network

Data-overlay which is a packet switched network

GSM/GPRS Network Architecture Overview

Links: http://www.3gpp.org/ ; http://www.gsmworld.com/

121212© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

General Packet Radio Service (GPRS)—Fundamentals

• Available today over GSM networks

• Based on the transport/routing of packetized data

• Capacity based on amount of data transmitted rather than connection time

• Works with public data networks using IP

• Supports “bursty” applications such as e-mail, broadcast services, and Web browsing

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

131313© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

SGSN GGSN

PDNInternet

IP

BSC

MSC

PSTNPSTN

MS

BTS

BTS

BTS

BTS

BTS BTS

GSM Network Architecture

141414© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

PDNCorporateInternet

Other PLMNSignalling and Data Interface

Signalling Interface

Gs Gr

GpGn

Gn GiGb

Gd

GcA

E C

D

Gb GaAbis

Um

GPRS Reference Model

GGSNGGSN

Gb

SMS-GMSCSMS-IWMSCSMS-GMSCSMS-IWMSC SMS-CSMS-C

HLRHLRMSC/VLRMSC/VLR

BSCBSC RXCDRRXCDR

BTSBTS BTSBTS

PCUPCU SGSNSGSN GGSNGGSN

SGSNSGSN CGCG

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

151515© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Charging Gateway Function

Charging Gateway Function

Application Server

Application Server

DNS ServerDNS ServerDHCP ServerDHCP Server

Management(SNMP)

Management(SNMP)

Security Server

(RADIUS)

Security Server

(RADIUS)

BTS

BTS

SGSN

FirewallFirewallSGSNBSC

GGSNGGSN

GPRS—Network Elements

Public Land Mobile Network

(PLMN)

Internal Packet

Network

Internal Packet

Network

Border Gateway Router

Border Gateway RouterInternal

Frame Relay Network

Internal Frame Relay

NetworkCorporateIntranet

CorporateIntranet

InternetInternet

Links: http://www.cisco.com/warp/public/779/servpro/solutions/wireless_mobile/gprs.html

161616© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Virtual GGSN

SLB GGSN ComplexHotStandby

GGSN with Server Load Balancing and GTP Scalability

• Cisco SLB appliance front ends the GGSN complex to provide scalable subscriber transport requests

Load balances connections among a GGSN farm

Improves response time

GGSN units provide dynamic feedback to SLB on their load

• Redundancy achieves 99.999% reliability

BSC

BSC

HSRP

SGSN1SGSN1

SGSN2SGSN2

SGSNnSGSNn

GGSN Farm

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

171717© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Cisco GGSN Feature Set

• ETSI-defined feature setNetwork access and subscription control

Mobility management

Internet/intranet/PLMN inter-working

GPRS packet forwarding

Network management

Charging

Quality of Service

• Cisco IOS value-added feature

Multiple RADIUS server support

Multiple DHCP server support

Software upgrade only for migration of 2.5G to 3G GGSN and co-existence

IPv6 ready (GGSNu)

Full IP routing feature set with QoS

Support for overlapping private addressing and Network address translation capability

Access control and IOS firewall functions with IPSec services

Full VPN support

181818© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Customer Driven Approach

GPRS/PDSN Interoperability

• Accomplished

Telecom Italia Mobile Ericsson

Omnitel Nokia

SKT Samsung

LGT LGE

BT/DT Motorola

FT Alcatel

• In processVarious customers Siemens

Nortel (GSM)

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

191919© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

202020© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

EnterpriseSubscribers

Global Network Infrastructure Global Network Infrastructure

BorderGateways

Mobile Network

Operator A

GRX NetworkMobile Network

Operator B

Mobile Network

Operator C

GPRS Roaming Exchange

GPRS Roaming Exchange

Mobile Network

Operator D

Root DNS Servers

BorderGateway

BorderGateway

GRX Network

EnterpriseSubscribers

EnterpriseSubscribers

CentralExchangePoint

GRPS Roaming Network Architecture

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

212121© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Cisco CNR

Visited Networkabc.gprs

Visited Networkabc.gprs

Home Networkxyz.gprs

Home Networkxyz.gprs

V-SGSN

Cisco CNR

GRXGRX

3. DNSRequest

3. DNSRequest

H-GGSN1.1.1.1

1. Activate PDP Context Request

2. DNS Request( APN Name: xyz.gprs )

4. DNSResponse

4. DNSResponse

5. DNS Response( APN Name: xyz.gprsIP Address: 1.1.1.1) Cisco Access

Registrar RADIUS Server6. PDP Context Create Request

7. PDP Context Create Response

XYZ MS

Data Session Setup While Roaming

Permit DNS request from

[VPLMN]

Cisco Network Registrar DNS Entry

xyz.gprs 1.1.1.1abc.gprs 2.2.2.2

:

• Large number of AAA requests per second

• Triggered DNS updates

222222© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Operator-DCE

Operator-ACE

Operator-ACE

Operator-ECE

Operator-CCE

PE PE

PE

Home GRX MPLS VPN

PE/ASBR

Other GRX Provider

PE

PE

Operator-FCE

MP-EBGPPE PE/ASBR

MPLS VPN Implementation

Benefits• Security—MPLS routing paths and network visibility is VPN specific • Flexibility—operators may use private addressing without Network Address Translation• Simplified Network Administration—no need to configure a PVC mesh• Scalability—MPLS solutions scale to very large networks with thousands of devices as well

as extending across Inter -PLMN network segments • Extensive Platform Support—Cisco 2600, 3600, 4000, 7200/7500, 12000, Catalyst 6500

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

232323© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Security—Solution

• Interconnection security issues—Access Control Lists on gateway routers to the InternetEncrypted traffic from operator to corporate sitesMPLS VPN traffic over GRX Provider

• Firewall placement issues—Two levels of firewall security—

Web servers, cache engines, mail servers—loose DMZ protection Content servers and database engines—“locked down” protection

• IDS devices + PIX firewalls to detect and prevent Denial of Service attacks

• Subscriber verification and data encryption/key managementDevice and subscriber access/verification—AAA functionsIKE support with shared Certificate Authority—Encryption functions

GRX Provider

Corporate–Y

Internet

Operator BOperator–A

Corporate–X

Internet

242424© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

252525© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Corporate Email Access via VPN From Home PLMN

Connection Scenario Connection Scenario

Operator A Subscriber Connects At Home PLMN Network to Access Corporate Email

MS—HSGSNHSGSN—HLRUser Validated

PDP Context Activation

HSGSN—HGGSNGTP Tunnel Setup

User Accesses CorporateEmail Server Via L2TP Tunnel with Optional IPSec 3DES Encryption

Pan European Network Infrastructure Pan European Network Infrastructure

Operator A

PLMN DNS

PLMN HLR

PLMN GGSN

PLMN SSGN

HSGSSNTo HGGSN

Tunnel

GPRS Roaming ExchangeGPRS Roaming ExchangeRoot DNS Servers

CentralExchangePoint

PLMN Email Server

EnterpriseSubscribers Operator B

PLMN DNS

PLMN HLR

PLMN GGSNPLMN Email Server

Email/Content ServersEmail/Content Servers

Public Internet

CorporateNetwork

SSGSSG

PLMN SGSN

262626© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Corporate Email Access viaVPN From Visited PLMN

Roaming Scenario Roaming Scenario

Operator A SubscriberConnects At Visited PLMN Network to Access Corporate Email

MS—VSGSNVSGSN—HLRUser Validated

PDP Context Activation

VSGSN—HGGSNGTP Tunnel Setup

User Accesses Corporate Email Server Via L2TP Tunnel with Optional IPSec 3DESEncryption

Operator A

GPRS Roaming ExchangeGPRS Roaming ExchangeRoot DNS Servers

Operator BEmail/Content ServersEmail/Content Servers

Public Internet

CorporateNetwork

SSGSSG

PLMN HLR

PLMN GGSN

PLMN SSGN

CentralExchangePoint

PLMN Email Server

PLMN DNS

PLMN DNS

PLMN GGSNPLMN Email Server

PLMN SGSN

PLMN HLR

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

272727© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

GGSNGGSN

SGSNSGSN

CorporateVPDN

InternetAccess

Extranets

R192.168.2.0,255.255.255.0

R192.168.1.0,255.255.255.0RADIUS/AAA

PORTALPORTALGi

SSGSSGGn

GTP

L2TP VPN TunnelsL2TP VPN Tunnels

Wireless Operator Span and ControlWireless Operator Span and Control SP NetworkSP Network

SSGSSG

Walled Garden

Wireless Operator Portal Strategy

• Multi-homed domain access via portal page

• Differentiated billing and accounting records

• Network Address Translation of IP addresses if necessary

282828© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

292929© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Mobile Station

Visited AccessProvider Network

VLR

VisitedAAA

VisitedAAA

BSC, PCF

R-P Interface A10/A11 MIP/GRE

DNS ServerDNS ServerDHCPServerDHCPServerManagementManagement

PDSN/FA, PDSN/FA,

FirewallFirewall

Home IP NetworkHome IP Network

HomeAAA

HomeAAA

Home ISPPrivate NetworkVisited ProviderHome Provider

Home ISPPrivate NetworkVisited ProviderHome Provider

HLRHLR

Home AccessProvider Network

Home AccessProvider Network

AAAServerAAA

ServerAAA Broker

NetworkAAA Broker

Network

HAHA

SS7Network

IPNetwork

IPNetwork

BTS

Radio Access Network (RAN)

Cisco PDSN Solution

303030© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Packet Data Services

• Internet access services

Through home ISP

Directly from the cdma2000 Service Provider

• Intranet access services

An authorized user can access its private network

A private network can use the non-registered IP address pool for its mobile users

Overlapping non-registered IP address pools from different private networks can be supported

Links: http://www.cisco.com/warp/public/779/servpro/solutions/wireless_mobile/pdsn.html

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

313131© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Standards-Compliant

• 3GPP2 TSG-P standard, Wireless IP NetworkStandard (P.S0001 or TIA/EIA/IS-835)

Defines the overall structure of a cdma2000 network, including enhanced mobile IP, carrier-class accounting, compression, security and authentication

• 3GPP2 TSG-A, Inter-Operability Specification (IOS) for cdma2000 Access Network Interfaces, (A.S0001 or TIA/EIA/IS-2001)

Focuses on the radio side and the interfaces between radio components and the PDSN

Links: http://www.3gpp2.org/

323232© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

PDSN Key Features

• Intelligent PDSN selection with PDSN clusters

Avoids disruptive handoffs and balances call load across PDSNs

• Proxy mobile IP

Allows mobile stations that do not support mobile IP to maintain session connectivity as they move

• Multiple IP flows per mobile station

• Rich set of QoS features

• Extensive security/VPN features

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

333333© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

PDSN1 SessionsMN1MN2PDSN2 SessionsMN5MN7

PDSN1 SessionsMN1MN2PDSN2 SessionsMN5MN7

Mobile StationMobile Node

BSC, PCF

Standards -Compliant A10/A11 Interface

Intelligent PDSN Selection with PDSN Clusters

• Minimizes occurrence of disruptive handoffsMinimizes inter-PDSN handoffs

• Intelligent load balancingBalances sessions (call load) across all PDSNs

• High availability, performance, and scalability

343434© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Mobility Management

• Link layer mobility

Maintains PPP connection within PDSN serving area

Inter-BTS handoff

Inter-BSC handoff

• Network layer mobility

Mobile IP or proxy mobile IP: Maintains IP (session) mobility across PDSN

Inter-PDSN handoff

PPP re-negotiation

HA to guarantee same address for MS

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

353535© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

++

++

Cisco PDSN Benefits

• Value-added feature set:

Sophisticated service authorization

Per user packet filtering

Multiple IP flows/devices

Proxy mobile IP

Secured simple IP and mobile IP VPN

Intelligent PDSN selection

Redundancy and load balancing

• Industry proven IP routing feature set

• Integrated multi-services

• Intelligent network services

L2 and L3 advanced QoS, multicast, security, compression, and encryption

• Access control and firewall

• Advanced traffic management

• DNS, DHCP and AAA support

• Proven technologies with 88% market share

Cisco IOS Value-AddCisco IOS Value-AddTR45.4/6 Defined Feature SetTR45.4/6 Defined Feature Set

363636© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

IPSec Tunneling

PDSN/FA H A

H A

IP

PLPL

IP

PL

RN

PL

R-P

Airlink

LAC

MAC

IP

MACAirlink

LAC

MS PDSN

PL

Link Layer

R-P

PL

IP

PPPPPP PPPPPP Link Layer

Link Layer

Link Layer

IP/IPsecIP/IPsec IP/IPsecIP/IPsec

GRE or IP-in-IPGRE or IP-in-IP

End-to-End IP CommunicationAPPs APPs

End Host

BSC, PCF

BTSMobile Station

Mobility Binding Table:MNCOA1.1.1.310.31.1.11.1.1.710.31.1.1

Mobility Binding Table:MNCOA1.1.1.310.31.1.11.1.1.710.31.1.1

IPNetwork

IPNetwork

GREGRE

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

373737© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

383838© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

cdma2000 Data Network Architecture

CatalystCatalyst

cdma2000 RANcdma2000 RAN

BTS BSC/PCF

MobileStations

(MS)

IP networkIP network

MSC/VLRSS7

PDSN Clusters PDSN Clusters

Pi Interface

HLRHome AccessOperator

HLRHome AccessOperator

Home ISPPrivate NetworkVisited

ProviderHome

Provider

H AH ABroker Network

AAA(AR)AAA(AR)

Visited AAACisco AccessRegistrar (AR)

Visited AAACisco AccessRegistrar (AR)

Home IP Network

HomeAAA (AR)

HomeAAA (AR)

Core IP/MPLSCore IP/MPLS

IP networkIP networkCore

AccessCore

Access

IP NetworkIP Network

Directory

BillingBilling

R-P InterfaceA10/A11MIP/GRE

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

393939© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Overlay VPN with L2Topology Administration

Overlay VPN with L2Topology Administration MPLS-Based VPNMPLS-Based VPN

VPN Network Provisioning

• Add (n-1) links to connect new node

• Reconfigure (n-1) nodes for new topology

• Cost, quality, and time to deliver issues

• Single link to edge router

• Configure single new node

• Update edge router

• Simplified network engineering.

• Initial and ongoing cost savings

Links: http://www.cisco.com/warp/public/732/Tech/mpls/ Sessions: RST-130 (Intro to MPLS)

404040© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

PE

PE

PE

PE

Internet

Corporate-Y

HA

ISP HA

Access Network

AAA

PDSN/FA

RAN

BSC/PCF

CE

HA

BG

MPLS VPN Implementation

• BenefitsMulti-network Multi-traffic separation

ScalableSecure (Only hosts on that network can access VPN)

CE is a standard IP router (BG)Multi-Services network

VPN Extended to other MPLS networks

Sessions: RST-230 (Deploying Large Scale VPN for MPLS) RST-111 (Intro to BGP4)

RAN

BSC/PCF

RAN

BSC/PCF

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

414141© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Solution

Core Network

RAN

RAN

RAN Access NetworkHAAAA

BGPDSN/FA

BSC/PCF

BSC/PCF

BSC/PCF

MTSOCell Site DMZ

Security—Solution

• Interconnection security issues—Access Control Lists on gateway routers to the InternetEncrypted traffic from operator to corporate sites

• Firewall placement issues—Two levels of firewall security—

Web servers, cache engines, mail servers—loose DMZ protection Content Servers and Database engines—“locked down” protection

• IDS devices + PIX firewalls to detect and prevent Denial of Service attacks• Subscriber verification and data encryption/key management

Device and subscriber access/verification—AAA functionsIKE support with shared Certificate Authority—Encryption functions

ISP HA

Corporate-Y

HA

Internet

424242© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

434343© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

SupportsSimple IP

PDSN/FA

HomeAAA

PDSN/FA

VisitedAAA

IP Network

Operator

E-Mail Server

IP Network

VisitedAAA

IP Network

RADIUS

Zone 1

Zone 2

Zone 3

Connection Scenario Connection Scenario

Mobile Station Connects at Zone 2 for Consumer Mail

Ms—PDSNPDSN—AAAUser Validated

IP Address Obtained From PDSN or AAA Server

Data Xfer Ok

User Accesses Local Email Server Messages

Application-level Connectivity May Not Be Maintained As Customer Moves

Consumer Email Services—Simple IP

444444© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

IP Network

Consumer Email Services—Mobile IP and Proxy Mobile IP

SupportsMobile IP,

or supports

only Simple IP if Proxy

Mobile IP

PDSN/FA

PDSN/FA

RADIUS

Connection Scenario Connection Scenario

Mobile Node Connects at Zone 2 for Consumer Mail Via IP-in-IP or GRE Tunnels

MN—PDSNPDSN—AAAUser Validated

AAA—H AIP Address Obtained

MN—FA Mobile IP RegistrationH A-FA Tunnel Est.

Data Xfer OK

User Accesses Local E-Mail Server Messages

Application-level Connectivity Is Maintained As Customer Moves

H A

H A

PDSN/FA

HomeAAA

VisitedAAA

IP Network

E-Mail Server

VisitedAAA

IP NetworkZone 1

Zone 2

Zone 3Operator

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

454545© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

464646© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

EnterpriseSubscribers

GRPS Roaming Network Architecture

Global Network Infrastructure Global Network Infrastructure

BorderGateways

Mobile Network

Operator A

GRX Network

Mobile Network

Operator B

Mobile Network

Operator C

GPRS Roaming Exchange

GPRS Roaming Exchange

Mobile Network

Operator D

Root DNS Servers

CentralExchange

Point

BorderGateway

BorderGateway

EnterpriseSubscribers

EnterpriseSubscribers

GRX Network

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

474747© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

ISP HA

Corporate-Y

HA

Internet

RAN

BSC/PCF

RAN

BSC/PCF

RAN

BSC/PCF

Core NetworkAccess Network

HA

AAA

BGPDSN/FA

MTSOCell Site

Z O N E 1

Zone 2Zone 3

Cdma2000 Data Network Architecture

484848© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

SSGSSG

FirewallFirewall

Servers

High-SpeedInternet Core

ATM,POSFR, DPT

ATM,POSFR, DPT

Cisco GSR, 6500 OSR

Demilitarized Zone“DMZ”

Catalyst 6500

Catalyst 6X00Private VLANsCSS11800

Cache Engines 5XX

Content Load Balancing

Content Load Balancing

RAN GWAccess

HLRVLR

DistributedGGSN/SSG

RADIUS

SSD

ContentHosts

ContentHosts

LDAP

ServiceSelectionGateway

PortalAccessPortal

AccessVLAN

PartitioningVLAN

Partitioning

Data Center Logical Design

Data CenterServer Access

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

494949© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

VersionVersion IHLIHL Total LengthTotal Length

IdentificationIdentification FlagsFlags Fragment OffsetFragment Offset

Time to LiveTime to Live Header ChecksumHeader Checksum

Options (+ Padding)Options (+ Padding)

3232

6464

9898

128128

160160

192192

TCP Sequence NumberTCP Sequence Number

TCP AcknowledgementTCP Acknowledgement

Stat OffsetStat Offset

Checksum (+ Padding)Checksum (+ Padding)

3232

6464

9898

128128

160160

ReservedReserved FlagsFlags Window SizeWindow Size

DataData

IP/TCP Headers

Type of Service

Protocol

Source Address

Destination Address

Data

TCP Source Port TCP Destination Port

505050© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Key IP Elements for Wireless Operator Data Networks

• IP Address Administration

• Filtering and Quality of Service

• Traffic Engineering

• Service Level Agreements

Sessions: IPS-130 (Intro to QoS) ; RST-231 (Deploying MPLS for Traffic Engineering)

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

515151© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Problem—IP Administration Overhead

• Issues include—Address administration that facilitates route summarization and filtering/QoS assignment

Dynamic IP address range assignments

Use of private/public addresses for network devices and subscribers

• Ongoing administration aided by triggered database updates

• IPv6 and IPv4 interoperation?

525252© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Why a Larger Address Space Is Needed

• Overall Internet traffic is still growing at 400%/year world-wide

~320 million users in 2000, ~550 million by 2005

• New Internet appliances for home users will be always-on

• 405 million mobile phone users in 2000, over 1 billion by 2005

UMTS Release 5 is Internet Multimedia, 1/3 of 1B should get connected

• Emerging population/geopolitical and address space

China, India, Japan, Korea needs global IP addresses

How to move to e-Economy without Global Internet access?

• ~1 billion cars in 2010, 15% should get GPS and Yellow Page services

Links: http://www.arin.net/ http://www.apnic.org/ http://www.ripe.net/

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

535353© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Version Traffic Class Flow LabelPayload Length Next Header Hop Limit

Source Address ( 128 Bit Address )

Destination Address ( 128 Bit Address )

32 bits

Shaded Fields Are Absent from IPv6 HeaderShaded Fields Are Absent from IPv6 Header

Version Total Length

32 bits

Prec TOS

Time to Live ProtocolSource Address

Destination Address

IPv6 HeaderIPv6 Header

IPv4 HeaderIPv4 Header

The IPv6 and IPv4 Headers

Fragment OffsetFragment OffsetFlagsFlagsIdentificationIdentificationHeader ChecksumHeader Checksum

PaddingPaddingOptionsOptions

Hdr LenHdr Len

545454© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

IPv4 Enterprise

Edge IPv6 Infrastructure:

IPv6 Enterprise

IPv6 Enterprise

IPv6 over IPv4 Internet:IPv6 over IPv4 Internet:

Mobile DataMobile Data

Mobile DataMobile Data

Translating Gateway

Translating Gateway

IPv6 Enterprise

IPv6 Enterprise

IPv6—IPv4Transport Interoperability

• IPv6 over IPv4 Internet

• Any Cisco IOS 12.2(1)T routers can be used as IPv6 router

6to4 tunnel

IPv4 compatible IPv6

• No impact on existing IPv4 or MPLS infrastructure

Links: http://www.cisco.com/warp/public/732/Tech/ipv6/

Translating Gateway

Translating Gateway

Service ProviderIPv4 or MPLS Backbone

Sessions: RST-102 (Intro to IPv4 and IPv6)

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

555555© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

IP Core Network

WLANHotSpots

2.5G GPRSGGSNSGSN

BTS/BSCITP/Offload

SGSNGGSN

3G RAN andAccess

Node-B/RNC

MNETWOS

Circuit SwitchedSignaling

ITP/Offload

Data Center

Corporate

Walled Garden

Core Network Scalability

PSTN

Internet

Circuit SwitchedSignaling

565656© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

575757© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Summary

• An epic time of changeVoice is still there, but data is the differentiator

• GSM and CDMA data overlaysMobility, sessions, gateway functionality

Roaming, security, and MPLS

• Building an IP core is not trivial

IP brings many benefits

Network should be designed carefully

585858© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Agenda

• Epic Time of Change—Market Overview• Data Overlay for GSM

GPRS Building BlocksInternational Roaming—GRXApplications Examples

• Data Overlay for CDMACDMA Data Overlay Building Blocks

Interconnect ModelsApplications Examples

• IP Infrastructure Requirements• Summary• Glossary and Links

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

595959© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Glossary of Terms

• AAA—Authentication Authorization Accounting

• ACL—Access Control List• API—Application Programming Interface• APN—Access Point Name• ASBR—Autonomous System Boundary

Router• BGP—Border Gateway Protocol• CBWFQ—Class-based Weighted Fair

Queuing• CE—Customer Edge• CG—Charging Gateway• CoS—Class of Service• DiffServ—Differentiated Services• DHCP—Dynamic Host Configuration

Protocol• DNS—Domain Name Server• DMZ—Demilitarized Zone• DoS—Denial of Service• DPT—Dynamic Packet Transport• DSCP—DiffServ Code Points• EBGP—Exterior Border Gateway Protocol

• FR—Frame Relay• FRTS—Frame Relay Traffic Shaping• GGSN—Gateway GPRS Support Node• GRX—GPRS Roaming Exchange• Gi—GGSN/PLMN interface to IP network• Gn—Intra-xGSN(SGSN/GGSN) interface• GTP—GPRS Tunneling Protocol• GTS—General Traffic Shaping• HSRP—Hot Standby Router Protocol• IBGP—Interior Border Gateway Protocol• ICMP—Internet Control Message Protcol• IDS—Intrusion Detection Sensors• IOS—Internet Operating System• IP—Internet Protocol• IPFR—IP Frame Relay• IPSec—IP Security• IPX—International Packet Exchange• ITP—IP Transfer Point

606060© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Glossary of Terms

• L2TP—Layer 2 Tunneling Protocol

• LDAP —Lightweight Directory Access Protocol

• LLQ—Low Latency Queueing

• MN—Mobile Node

• MPLS—Multi-Protocol Label Switching

• MS—Mobile Station

• NMS—Network Management System

• OSPF—Open Shortest Path First

• PDP—Packet Data Protocol

• PE—Provider Edge

• POS—Packet Over Sonet

• PVC—Permanent Virtual Circuit

• QoS—Quality of Service

• RADIUS—Remote Authentication Dial -In User Service

• SGSN—Serving GPRS Support Node

• SLA—Service Level Agreement

• SLB—Server Load Balancing

• SSD—Service Selection Dashboard

• SSG—Service Selection Gateway

• SMS—Short Message Service

• SNMP—Simple Network Management Protocol

• TCP—Transmission Control Protocol

• TDM—Time Division Multiplexing

• TOD—Time of Day

• ToS—Type of Service

• VLAN —Virtual Local Area Network

• VNO—Virtual Network Operator

• VoIP—Voice over Internet Protocol (IP)

• VPDN—Virtual Private Dial -up Network

• VPN—Virtual Private Network

• VTMS—Versatile Traffic Management System

• WAN —Wide Area Network

• WRED—Weighted Random Early Detection

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

616161© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Important Links

• http://www.3gpp.org/

• http://www.3gpp2.org/

• http://www.gsmworld.com

• http://www.cisco.com/warp/public/779/servpro/solutions/wireless_mobile/gprs.html

• http://www.cisco.com/warp/public/779/servpro/solutions/wireless_mobile/pdsn.html

• http://www.cisco.com/warp/public/732/Tech/mpls/

• http://www.cisco.com/warp/public/732/Tech/ipv6/

• http://www.arin.net/

• http://www.apnic.org/

• http://www.ripe.net/

62© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Building Data Overlay Solutions for GSM and CDMA Wireless Networks

Session WMT-241

Copyright © 2001, Cisco Systems, Inc. All rights reserved. Printed in USA.Presentation_ID.scr

63© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1

Please Complete Your Evaluation Form

Session WMT-241

64© 2001, Cisco Systems, Inc. All rights reserved.WMT-2413139_05_2001_c1