IP mobility in mobile telecommunications system
First Claim
1. A method for arranging data transmission for a mobile node in a telecommunications system comprising a secure network and an insecure network, wherein access between the insecure network and the secure network is arranged via a VPN node and wherein a home agent is established for the mobile node in the secure network, the method comprising:
- arranging at least data transmission from a correspondent host to the mobile node in the secure network by the home agent in response to the mobile node accessing the secure network directly or via a third network other than the insecure network, or arranging data transmission between the mobile node and a correspondent host in the secure network by the VPN node in response to the mobile node accessing the secure network via the insecure network, wherein the VPN node and the home agent are configured to arrange use of the same IP address as an internal address and as a home address for the mobile node for communication with the correspondent host.
1 Assignment
0 Petitions
Accused Products
Abstract
The present invention relates to arranging data transmission for a mobile node in a telecommunications system comprising a secure network and an insecure network. A connection to a secure network for a mobile node may be arranged by a home agent if the mobile node is accessing the secure network directly or via a third network other than the insecure network, or a connection to the secure network may be arranged by a VPN node if the mobile node is accessing the secure network via the insecure network. According to a first aspect of the invention, the VPN node and the home agent are configured to allocate the same IP address as an internal IP address and as a home address.
90 Citations
24 Claims
-
1. A method for arranging data transmission for a mobile node in a telecommunications system comprising a secure network and an insecure network, wherein access between the insecure network and the secure network is arranged via a VPN node and wherein a home agent is established for the mobile node in the secure network, the method comprising:
-
arranging at least data transmission from a correspondent host to the mobile node in the secure network by the home agent in response to the mobile node accessing the secure network directly or via a third network other than the insecure network, or arranging data transmission between the mobile node and a correspondent host in the secure network by the VPN node in response to the mobile node accessing the secure network via the insecure network, wherein the VPN node and the home agent are configured to arrange use of the same IP address as an internal address and as a home address for the mobile node for communication with the correspondent host. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A telecommunications system comprising a secure network, an insecure network, a VPN node for arranging access between the insecure network and the secure network, and a home agent for mobile nodes in the secure network, wherein the system is configured to arrange at least data transmission from a correspondent host to the mobile node in the secure network by a home agent in response to the mobile node accessing the secure network directly or via a third network other than the insecure network,
the system is configured to arrange data transmission between the mobile node and a correspondent host in the secure network by the VPN node in response to the mobile node accessing the secure network via the insecure network, and the VPN node and the home agent are configured to arrange use of the same IP address as an internal address and as a home address for the mobile node for communication with the correspondent host.
- 11. A network element in a telecommunications system, the network element being configured to function as a home agent, wherein, as a response to a need to establish data transmission between a mobile node and a correspondent host by the network element, the network element is configured to arrange as a home address of the mobile node the same IP address as has been arranged by a VPN node as an internal address for communication between the mobile node and the correspondent host.
- 15. A network element in a telecommunications system, the network element being configured to function as a VPN node, wherein, as a response to a need to establish data transmission between a mobile node and a correspondent host by the network element, the network element is configured to arrange as an internal address of the mobile node for communication with the correspondent host the same IP address as what has been arranged by a home agent as a home address of the mobile node.
-
19. A mobile terminal configured to implement VPN protocol layer and Mobile IP protocol layer functions, wherein
the terminal is configured to establish an association with a first node for at least receiving data from a correspondent host in a secure network, the terminal is configured to determine whether or not it is possible to establish an association with a second node for at least receiving data from a correspondent host in a secure network, wherein one of the first and the second node is a VPN node and the other is a home agent, and in response to such an association with the second node being arrangeable, the terminal is configured to adapt an upper layer connection to use the protocol layer functions for communicating with the second node instead of the protocol layer functions for communicating with the first node, and to use the same IP address as was used for communicating with the correspondent host with the first node.
-
24. A computer program product for controlling a mobile terminal, wherein the terminal is configured to establish an association with a first node for at least receiving data from a correspondent host in a secure network, the computer program product comprising:
-
a program code portion causing the mobile terminal to determine whether or not it is possible to establish an association with a second node for at least receiving data from a correspondent host in a secure network, wherein one of the first and the second node is a VPN node and the other is a home agent, and a program code portion causing the mobile terminal, in response to such an association being arrangeable with the second node, to adapt an upper layer connection to use protocol layer functions for communicating with the second node instead of protocol layer functions for communicating with the first node, and to use same IP address as was used for communicating with the correspondent host with the first node.
-
Specification