Title of Invention

ETHERNET DSL ACCESS MULTIPLEXER AND METHOD PROVIDING DYNAMIC SERVICE SELECTION AND END-USER CONFIGURATION

Abstract An Ethernet Digital Subscriber Line Access Multiplexer, DSLAM, (33) and method of dynamically creating a service binding in the Ethernet DSLAM based on a service selection made by an end-user (31). The end-user may use the PPPoE or IEEE802.1X access protocols to provide login credentials indicating the desired service. The login credentials are validated towards a RADIUS server (40), and this server configures the Ethernet DSLAM (33) with the attributes of the service binding, including an identified Permanent Virtual Circuit, PVC, (12) to carry the desired service. The Ethernet DSLAM may map service-VLANs to user MAC addresses (34), or may map service-VLANs to user-VLANs (62) to establish the service binding. The Ethernet DSLAM uses the identified PVC for downstream traffic for the corresponding service binding and thereby trains" a learning bridge network terminal to use the correct PVC for upstream traffic.
Full Text FORM 2
THE PATENTS ACT, 1970
(39 of 1970)
&
The Patents Rules, 2003
COMPLETE SPECIFICATION
(See section 10, rule 13)
"ETHERNET DSL ACCESS MULTIPLEXER AND
METHOD PROVIDING DYNAMIC SERVICE SELECTION AND END-USER CONFIGURATION"
TELEFONAKTIEBOLAGET LM ERICSSON (publ), a Swedish Company, of SE-164 83 Stockholm,
SWEDEN. _.——-^

The following specification particularly describes the invention and the manner in which it is to be performed.

WO 2005/060208 2, PCT/SE2003/001982
ETHERNET DSL ACCESS MULTIPLEXER AND METHOD
PROVIDING DYNAMIC SERVICE SELECTION
AND END-USER CONFIGURATION
5
BACKGROUND OF THE INVENTION
Technical Field of the Invention
The present invention relates generally to digital
10 communication systems. More particularly, and not by way of limitation, the invention is directed to an Ethernet Digital Subscriber Line Access Multiplexer (DSLAM) and method providing dynamic service selection and end-user configuration of service bindings.
15
Description of Related Art
Ethernet is a packet-based transmission protocol that is primarily used in local area networks (LANs). Ethernet
20 is the common name for the IEEE 802.3 industry specification. Data is transmitted in Ethernet frames. Each frame includes a preamble with 64 bits utilized for synchronization. A Start of Frame Delimiter (SFD), a destination address, a source address, and a length/type
25 identifier follow the preamble. Media Access Control (MAC) client data, together with a Packet Assembler/Disassembler (PAD) may vary in length from 46 to 1500 bytes (octets). A Frame Check Sequence (FCS) adds four more octets. The frame size is counted from the destination address to the FCS,
30 inclusive, and thus may vary between 64 and 1518 octets, not including a Virtual Local Area Network (VLAN) tag, which adds 4 octets.
When establishing a data session between -an end-user device and a service provider, a service binding creates a
35 logical connection between the end-user device and a service

WO 2005/060208 3 PCT/SE2OO3/0O1982
provided by some form of service provider, for example, a Network Service Provider or Application Service Provider. Two types of service bindings currently in use in the industry are referred to herein as the basic service binding
5 and the advanced service binding. The basic service binding is established in an Ethernet DSLAM between a VLAN within the Access Domain and an Asynchronous Transfer Mode (ATM) Permanent Virtual Circuit (PVC) on the local DSL loop. The advanced service binding is created in a Broadband Remote
10 Access Server (BRAS) between the IP client and the service. The basic service binding may also be combined with the BRAS-based advanced service binding.
FIG. 1 is a simplified block diagram illustrating a basic service binding. The IEEE has developed a standard
15 for Ethernet access control, IBEE802.1x. Originally this standard was intended for switched Ethernet networks, but during the standardization process it was adapted to be used for wireless LANs (IBEE802.il). However, the basic principles are still considered applicable for controlling
20 access to switched Ethernet. IEEE802.1x is an integrated part of the Windows XP operating system. Future versions of other operating systems may also include the feature, making this a commonly accepted login interface.
A basic service binding is created by assigning an
25 IEEE802.1Q VLAN ID of a Service VLAN (S-VLAN) 11a, lib to a subscriber line PVC 12a, 12b. An IEEE802.1p priority value is also associated with this binding, and is used to ensure Quality of Service (QpS) within the Access Domain 13. The Ethernet DSLAM 14 tags upstream traffic, from the Customer
30 Premises Equipment (CPE) /Network Terminal (NT) 15 to the S-VLAN, with the assigned VLAN ID and priority value before forwarding the traffic upstream. Downstream Ethernet traffic, from the S-VLAN to the CPE/NT is mapped by the Ethernet DSLAM to the correct PVC by inspecting the VLAN ID,

WO 2005/060208 // PCT/SE2W3/001982

802.lp priority, and destination MAC address. Each subscriber line may have multiple PVCs corresponding to different services.
FIG. 2 is a simplified block diagram illustrating an
5 advanced service binding. Services 16, 17 connect through a BRAS 18 to an access domain 19 and the Ethernet DSLAM 14, which connects through a local loop 21 to the CPE/NT 15. The service bindings made in a BRAS are often based on the Point-to-Point Protocol (PPP) as the access protocol. With
10 this protocol, a session is initiated from the end-user device (CPE/NT) towards the BRAS. During this session establishment, the service binding is created, typically based on the login credentials supplied by the end-user's CPE/NT.
15 FIG. 3 is a simplified block diagram illustrating a basic service binding combined with the BRAS-based advanced service binding. The basic service binding portion is again created by assigning an IEEE802.1Q VLAN ID of an S-VLAN 11a, lib to a subscriber line PVC 12a, 12b. An IEEE802.1p
20 priority value is also associated with this binding, and is used to ensure QoS within the access domain 13. The Ethernet DSLAM 14 tags upstream traffic, from the CPE/NT 15 to the S-VLAN, with the assigned VLAN ID and priority value before forwarding the traffic upstream. Downstream Ethernet
25 traffic from the S-VLAN to the CPE/NT is mapped by the Ethernet DSLAM to the correct PVC by inspecting the VLAN ID, 802.lp priority, and destination MAC address. Each subscriber line may have multiple PVCs corresponding to different services. The advanced service binding portion
30 includes BRASS 18a, 18b which connect respective S-VLANs 11a, lib to services 22-25.

WO 2005/060208 5 f>CTf$.V2MW SUMMARY OF THE INVENTION
There are problems, however, with the basic, advanced, and consequently, the combined service bindings. The problems with the basic service binding method are as
5 follows:
• Inflexible mapping: A limitation with the VLAN-per-Service method is that end-users are semi-statically allocated to specific services. The FVC-VLAN mapping and other service characteristics (e.g., connection bandwidth)
10 performed by the Ethernet DSLAM are controlled by the operation and maintenance (O&M) system, and only the O&M system can change these service bindings. The change of service can be made manually by the O&M operator, or by using the northbound interface of the O&M system. In the
15 latter case, the end-user may be able to change the service binding on-line via a web-based service selection server that interfaces with the O&M system. The problem with tbat solution is that it assumes a connection exists to the server in order to perform the service selection, and
20 furthermore it assumes that all end-user devices have an interface for displaying service options and selecting the desired service.
- Low access granularity: Any end-user device connected to a specific PVC will be associated with the corresponding
25 S-VLAN. However, it may be useful to be able to map different devices towards different services, although the devices share the same PVC, for example if only a single PVC is supported by the CPE modem (a very common situation today).
30 -No access authentication: Virtually any device attached to a PVC is granted access to the corresponding S-VLAN. However, it is desirable to be able to validate end-user devices individually.

WO 2IM>5rt>60208

6

PCT/SE2W3/001982

• Not future proof: The future standard for Ethernet
access (EFMO seems to be moving away from ATM (i.e., the
PVC-based service mapping cannot be used anymore, and an
alternative approach is necessary).
5 The main problem with the advanced (BRAS-based) service binding method is that it is a centralized approach with all access intelligence collected in one node, and with all traffic streams going though this node. This means that:
• Single point of failure: The BRAS is a single point
10 of failure, typically affecting thousands of end-users in
case of a node failure.
Poor downward scalability: Even in a minimum configuration, a BRAS typically does not represent an economically reasonable access solution for small groups of
15 end-users. The cost per end-user is simply too high.
- Poor upward scalability: As end-users put higher and higher load on their broadband access connections, the performance requirements of the BRAS will increase dramatically to a level for which they are not designed.
20 -Inefficient multicast support: A centralized approach using PPP as the access protocol does not efficiently support multicast. Other problems pertaining to PPP inclixde protocol overhead, and difficulties in mapping quality-of-service indicators between different protocol layers.
25 Thus there is a particular need for an Ethernet DSLAM and service binding method that overcome the problems of the prior art. The present invention provides such a DSLAM and method.
The present invention is designed to combine
30 advantageous elements of each of the existing service binding methods. The invention dynamically creates the service binding in the Ethernet DSLAM based on a service selection made by the end-user. Thus, the traditional BRAS is not required to create the dynamic service binding. The

WO 2005/060208 PCT/SE 2003/001982
end-user may use the PPPoE or IEEE802.1X access protocols to provide login credentials indicating the desired service. The login credentials are validated towards a RADIUS server, and this server configures the Ethernet DSLAM with the
5 attributes of the service binding.
One of these attributes is the local loop PVC to carry the desired service. The Ethernet DSLAM uses this PVC for downstream traffic for the corresponding service binding(s) and thereby "trains" a learning bridge CPE NT with multiple
10 PVCs so that this modem will use the correct PVC for upstream traffic.
Thus, in one aspect, the invention is directed to an Ethernet DSLAM for providing dynamic service selection and end-user configuration of service bindings in a digitalis communication system. The Ethernet DSLAM includes means for receiving login credentials and a service request from an end-user device; means for authenticating the login credentials through an authentication server; and means for receiving from the authentication server, a plurality of
20 attributes for configuring the Ethernet DSLAM to provide a service binding corresponding to the requested service. The attributes including an identification of an access network for the requested service, and an identification of a Permanent Virtual Circuit (PVC) on a local DSL loop
25 associated with the end-user device. The Ethernet DSLAM also includes means for training a bridging network terminal (NT) having a plurality of PVCs to utilize the identified PVC for sending upstream traffic from the end-user terminal to the Ethernet DSLAM. The training means includes means
30 for sending initial downstream traffic from the Ethernet DSLAM to the end-user device utilizing the identified PVC.
In another aspect, the invention is directed to an Ethernet DSLAM that includes a plurality of subscriber ports for receiving login credentials and service requests from


WO 2005/060208 PCT/SE 2003/001982
end-user devices, and for communicating data traffic to and
from the end-user devices. An identified subscriber port
communicates with an identified end-user device. The
Ethernet DSLAM also includes a traffic mapper that maps data
5 traffic between a plurality of Service Virtual Local Area
Networks (S-VLANs) and the subscriber ports. A RADIUS
client in the DSLAM sends login credentials and a service
request received from the identified end-user device to an
external RADIUS server for authentication and receives from
10 the external RADIUS server, a plurality of attributes for configuring the Ethernet DSLAM to provide a service binding corresponding to the requested service. The attributes include an identification of an S-VLAN through which the requested service is accessed, and an identification of a
15 PVC on a local DSL loop associated with the end-user device. A Service Selection Controller in the DSLAM receives the attributes from the RADIUS client and sends mapping control information to the traffic mapper, thereby enabling the traffic mapper to establish a service binding between the
20 identified end-user device and the S-VLAN through which the requested service is accessed.
In yet another aspect, the invention is directed to a method of providing dynamic service selection and end-user configuration of service bindings in a digital communication
25 system. The method includes the steps of sending login credentials and a service request from an end-user device to an Ethernet DSLAM; sending the login credentials and service request from the Ethernet DSLAM to an authentication server; and sending from the authentication server to the Ethernet
30 DSLAM, a plurality of service binding attributes. The attributes include an identification of an access network for the requested service, and an identification of a PVC on a local DSL loop associated with the end-user device. The Ethernet DSLAM utilizes the service binding attributes to

WO 2005/060208 PCT/SE 2003/001982
configure a service binding corresponding to the requested 5-Service. "'-^Initial downstream traffic is sent from the Ethernet DSLAM to the end-user device utilizing the identified PVC, thereby training a bridging NT having a
5 plurality of PVCs to utilize the identified PVC for sending upstream traffic from the end-user terminal to the Ethernet DSLAM.
In still yet another aspect, the invention is directed to a method of providing dynamic service selection and end-
10 user configuration of service bindings in a digital communication system. The method includes the steps of configuring in an Ethernet DSLAM, a plurality of subscriber ports for communicating with a plurality of end-user devices; receiving login credentials and a service request
15 from an identified end-user device utilizing an identified subscriber port; and sending the login credentials and the service request from a RADIUS client in the Ethernet DSLAM to an external RADIUS server for authentication. This is followed by receiving from the external RADIUS server, a
20 plurality of attributes for a service binding corresponding to the requested service. The attributes include an identification of an S-VLAN through which the requested service is accessed, and an identification of a PVC on a local DSL loop associated with the end-user device. This is
25 followed by configuring the Ethernet DSLAM to provide the service binding corresponding to the requested service; and mapping data traffic by the Ethernet DSLAM between the S-VLAN through which the requested service is accessed and the identified subscriber port communicating with the identified
30 end-user device.

WO 2005/060208 PCT/SE 2003/001982
BRIEF DESCRIPTION OF THE DRAWINGS
In the following, the essential" features of the invention will be described in detail by showing preferred embodiments, with reference to the figures of the attached
5 drawings.
FIG. 1 (Prior Art) is a simplified block diagram illustrating an existing basic service binding;
FIG. 2 (Prior Art) is a simplified block diagram illustrating an existing advanced service binding; 10 FIG. 3 (Prior Art) is a simplified block diagram illustrating the existing basic service binding combined with the existing advanced service binding;
FIG. 4 is a simplified block diagram illustrating service bindings between end-user devices and service-VLANS
15 in accordance with the MAC granularity embodiment of the present invention;
FIG. 5 is a functional block diagram illustrating a Service Selection Handler (SSH) and its context in the Ethernet DSLAM;
20 FIG. 6 is a functional block diagram illustrating functional roles when utilizing the IEEE802.1x method of creating a service binding in the Ethernet DSLAM;
FIG. 7 is a protocol stack of an end-user device using PPPoE for service selection;
25 FIG. 8 is a simplified block diagram illustrating service bindings between user-VLANs and service-VIANS ii accordance with the VLAN granularity embodiment of the present invention; and
FIGS. 9A-9C are drawings illustrating three different
30 methods of appending VLAN tags in upstream traffic at the end-user's premises.

WO WO 2005/060208 PCT/SE 2003/001982

DETAILED DESCRIPTION OF THE INVENTION
In the following description, for purposes of explanation and not limitation, specific details are set forth, such as particular embodiments, circuits, signal
5 formats etc. in order to provide a thorough understanding of the present invention. It will be apparent to one skilled in the art that the present invention may be practiced in other embodiments that depart from these specific details.
The present invention may provide two types of service bindings, MAC granularity and VLAN granularity. MAC granularity service bindings are made between service-VLANs
15 and end-user devices with MAC addresses visible to the Ethernet DSLAM. VLAN granularity service bindings are made between service-VLANs and end-user VLANs visible to the Ethernet DSLAM. Thus, the end-user must use an Ethernet bridging network terminal (NT) to enable bindings of either
20 type. If the end-user uses a routing NT, only the MAC address of this NT is visible to the Ethernet DSLAM, and the end-user VLANs are not visible through the router. Thus only a single service binding can be established, common for all devices behind the routing NT.
25 The following description will initially describe the invention using the MAC granularity type of service bindings. However, most of this description is also applicable to the VLAN granularity solution based on end-user VLANs. Specific issues pertaining to service bindings
30 based on end-user VLANs are then discussed.
FIG. 4 is a simplified block diagram illustrating service bindings between end-user devices 3la-31c having MAC addresses MAC-1, MAC-2, and MAC-3, respectively, and service-VLANS 11a, lib in accordance with the MAC
35 granularity embodiment of the present invention. An Ethernet bridging NT 32 enables S-VLAN/MAC address bindings.

WO 2005/060208 PCT/SE 2003/001982
An Ethernet DSLAM 33 includes a mapping function 34, which maps S-VLANs to MAC addresses, and vice versa. The mapping function may be implemented in the Ethernet DSLAM as a new software-based function, referred to herein as a Service
5 Selection Handler (SSH) 34.
FIG. 5 is a functional block diagram illustrating the Service Selection Handler (SSH) 34 and its context in the Ethernet DSLAM 33. The primary task of the SSH is to create service bindings between end-user device MAC addresses
10 (represented by subscriber ports 35) and the S-VLANs lla, lib. To do this, the SSH implements a RADIUS client function 36, similar to the functionality of a BRAS. The RADIUS client interacts with a remotely located RADIUS server 40, either directly or through a local proxy RADIUS
15 server 37. The local RADIUS server sends traffic via a RADIUS VLAN 38 in the Access Domain to a Traffic Mapping function 42 in the Ethernet DSLAM 33. The SSH also includes a Dynamic Host Configuration Protocol (DHCP) server 39 and a Service Selection Controller 41, which sends mapping control
20 instructions to the Traffic Mapping function 42 for mapping traffic to the various subscriber ports 35.
Several different ways of creating a service binding in the Ethernet DSLAM are possible: IEEE802.1x, PPPoE, HTTP/web interface, and Dynamic Host Configuration Protocol (DHCP)
25 option-90. For all methods, the service may implicitly be selected based on the login credentials provided by the end-user device. In the MAC granularity embodiment, it is chosen to focus on IEEE802.1x and PPPoE.
When using either IEEE802.1X or PPPoE, the SSH 34
30 receives the login credentials from the end-user device 31a-31c, and validates the credentials against the remotely located RADIUS server 40. This may be done via the proxy RADIUS server 37. The RADIUS server (or the proxy) also informs the SSH about the S-VLAN ID corresponding to the

WO 2005/ credentials. The SSH then enables upstream traffic from the device's MAC address to the appointed S-VLAN, and vice versa for downstream traffic.
By using different login credentials, the end-user is
5 thereby able to select a preferred service. Similar to a traditional BRAS, the domain portion of the username may be used as the selection criteria. For example, joe@ispl.com and joe@isp2.com are usernames that may be utilized for accessing two different Internet Service Providers (ISPs).
10 FIG. 6 is a functional block diagram illustrating functional roles when utilizing the IEEE802.1X method of creating a service binding in the Ethernet DSLAM 33. There are three major entities involved in the IEKE802.1x structure, a Supplicant 45, an Authenticator 46, and an
15 Authentication Server 47. The Supplicant is an entity requesting access to a service. The Authenticator is an entity that enforces authentication before allowing access to the requested service. The Authentication Server is an entity that performs the actual authentication of the
20 Supplicant on behalf of the Authenticator. For Ethernet DSL Access, the Supplicant is the end-user device, the Authenticator is the Ethernet DSLAM 33, and the Authentication Server is the RADIUS server 40. Protocol stacks for the Supplicant and Authenticator are illustrated
25 at the bottom of FIG. 6.
IEEE802.1x adopts the Extensible Authentication Protocol (BAP) 48 as the mechanism for exchange of authentication messages. Between the Supplicant 45 and the Authenticator 46, EAP messages are encapsulated in Ethernet
30 frames using the EAP over LAN (EAPOL) protocol 49. EAP is also a fundament for PPP access, and is described in RFC2284.
To initiate a session, the Supplicant 45 sends a Start-message to the Authenticator 46, using a multicast address

WO 2005/060208 PCT/SE 2003/001982
defined by the 802.lx standard. The Authenticator requests the Supplicant to send the login credentials, and relays the Supplicant's response towards the Authentication Server 47. The Authentication Server and the Supplicant can then
5 exchange further login information directly, with the Authenticator merely relaying information. If the login procedure ends successfully, the Authenticator enables the MAC address corresponding to the Supplicant, and creates a service binding 51 towards the S-VLAN 11 pointed out by the
10 Authentication Server.
The end-user device 31a-31c is then able to access an S-VLAN lla, lib, and can issue a DHCP request towards a DHCP server 52 located within that S-VLAN in order to obtain an IP configuration. However, the device may already have
15 issued several DHCP requests (for example, as a part of its initialization phase), but without being able to access any S-VLAN and thus no DHCP server. In order to keep the DHCP client "alive and agile* until the service binding is established, the Ethernet DSLAM 33 answers the DHCP requests
20 with a temporary configuration and a very short lease time, encouraging the end-user device to renew its IP address in a short period of time, for example, within a few seconds. The DHCP request following a service binding creation will not be acknowledged by the local DHCP server 39 (FIG. 5),
25 thus revoking the temporarily address and forcing the client (end-user device) to broadcast a DHCP discover message. This time, the DHCP traffic is not intercepted by the local DHCP server 39, but instead passes on to the S-VLAN 11 where the "real" DHCP server 52 answers. It should be noted that
30 in new and future DHCP clients, a DHCP ForceRenew message may be utilized by the local DHCP server to make the DHCP client perform an immediate DHCP renewal instead of waiting for lease timeout. The ForceRenew feature is described in RFC3203.

WO 2005/»>602*>8

15

PCT7SE2003/H2

An alternative method of providing login credentials is to Utilize PPPoE. As previously discussed, PPPoE has Some severe drawbacks, but the present invention does not suffer from these drawbacks because the invention only uses PPPoE
5 between the end-user device 3 la-31c and the Ethernet DSLAM 33, and only for establishing and terminating sessions. End-user payload traffic is conveyed without PPPoE as IP directly over Ethernet.
FIG. 7 is a protocol stack of an end-user device 31
10 using PPPoE for service selection. To create a service binding, the end-user device broadcasts a PPPoE initiation message 55 toward the Ethernet DSLAM 33. The SSH 34 in the Ethernet DSLAM terminates this message and establishes a PPPoE "connection", using the device MAC address. Via the
15 PPPoE connection (right side of PIG. 7 including the PPPoE Session Client 56 and underlying PPPoE protocol stack 57), the user submits login credentials and is validated against the RADIOS server 40 (FIG. 5) . If there is a successful validation, the SSH enables Ethernet traffic between the
20 PPPoE connection's MAC address and the appointed S-VLAN 11. Then, as with the IEEE802.1x method, the IP stack of the device (left side of FIG. 7 including Applications 58 and underlying IP protocol stack 59) can issue a DHCP request towards the S-VLAN 11, and obtain IP configuration from a
25 DHCP server 52.
Note specifically that the end-user device 31 does not send any IP traffic via its PPPoE interface. Therefore, this interface is configured with a non-routable IP address (e.g. in the 169.254.0.0/16 network) during the service
30 binding. This service selection method may be limited to utilization with end-user PCs, since it requires the dual stack" functionality depicted in FIG. 7. Note also, that PPP also uses the EAP protocol for authentication, giving an access functionality of the IP-DSLAM almost identical with

WO 205/020X 21 PCT/SE20O3/82

GRANULARITY
UPSTREAM TRAFFIC FORMAT MAC GRANULARITY VLAN GRANULARITY
Untagged Service binding: Source MAC «-+ S-VLAN Service binding: Source MAC ♦* S-VLAN
VLAN tagged Service binding: Source MAC «- S-VLAN Service binding: U-VLAN -» S-VLAN
Table 1
The following steps are taken to configure the Ethernet
5 DSLAM 33 with the response from the RADIUS server 37. The Access Network Provider defines services with a name, a S-VLAN, a Class of Service (CoS) value (Ethernet priority), and the Access Service Provider (s) who are allowed to use this service in their offerings to end-users. The Access
10 Service Provider assigns services to end-users, and may customize these services to fit individual end-users. The customization includes PVC settings, bandwidth settings, and filter settings.
The RADIUS client 36 in the Ethernet DSLAM 33 requests
15 validation of an end-user by issuing a dataset of {end-user ID, username, password} towards the Local RADIUS Server 37. There is one Local RADIUS server per access domain, but the Local RADIUS Server may interface with remotely located RADIUS servers 40 belonging to various service providers.
20 For each service the end-user is allowed to access, the Access Service Provider has already registered a number of service attributes, such as:
Service name;
Domain name used by the end-user to point out the 25 requested service;
Virtual Path Identifier/Virtual Circuit Identifier (VPl/VCI) values for the PVC used for this service;
Bandwidth for the PVC used for this service;
Filter settings;

WO 2005/060208 PCT/SE 2003/001982
MAC granularity/VLAN granularity;
Service duration;
Charging information;
Authentication;
Password (in case of local authentication done by the Access Service Provider); and/or
Remote RADIUS Server IP address or Fully Qualified Domain Name (FQDN) in case of authentication against a remote RADIUS server.
10 Upon successful validation, the relevant service attributes are sent from the local RADIUS server 37 to the Ethernet DSLAM 33 for establishing the service binding.
The present invention thus provides an Ethernet
bridging DSLAM 33 with BRAS functionality. With the present
15 invention, no central BRAS is required, thus solving the
disadvantages of this node and eliminating the cost for this
node. Instead, a BRAS solution is created that is scalable
both upwards and downwards, efficiently supporting
multicast, and with little end-user impact in case of
failure (compared to failure of a centralized BRAS) . A true
multi-service scenario (including multiple PVCs) is
supported with a simple CPE NT that needs no configuration
by the end-user. Additionally, the access methods (PPPoE
and IEEE802.1X) are equivalent to today's methods, so for
end-users the implementation is familiar.
Although preferred embodiments of the present invention have been illustrated in the accompanying drawings and described in the foregoing Detailed Description, it is understood that the invention is not limited to the
30 embodiments disclosed, but is capable of numerous rearrangements, modifications, and substitutions without departing from the scope of the invention. The specification contemplates any all modifications that fall

WO 2005/060208 PCT/SE 2003/001982
within the scope of the invention defined by the following claims.

WO 2005/060208 PCT/SE 2003/001982
WHAT IS CLAIMED IS:
1. An Ethernet Digital Subscriber Line Access Multiplexer (DSLAM) for providing dynamic service selection
5 and end-user configuration of service bindings in a digital communication system, said Ethernet DSLAM comprising:
means for receiving login credentials and a service request from an end-user device;
means for authenticating the login credentials through 10 an authentication server;
means for receiving from the authentication server, a plurality of attributes for configuring the Ethernet DSLAM to provide a service binding corresponding to the requested service, said attributes including an identification of an
15 access network for the requested service, and an identification of a Permanent Virtual Circuit (PVC) on a local DSL loop associated with the end-user device; and
means for training a bridging network terminal (NT) having a plurality of PVCs to utilize the identified PVC for
20 sending upstream traffic from the end-user terminal to the Ethernet DSLAM, said training means including means for sending initial downstream traffic from the Ethernet DSLAM to the end-user device utilizing the identified PVC.
25 2. The Ethernet DSLAM of claim 1, wherein the end-user device has a Media Access Control (MAC) address, and the requested service is accessed through a Service Virtual Local Area Network (S-VLAN) , and the Ethernet DSLAM includes means for mapping the S-VLAN for the requested service to
30 the MAC address for the end-user device.
3. The Ethernet DSLAM of claim 1, wherein the means for receiving login credentials and a service request from an end-user device includes a User Virtual Local Area

WO 2005/060208 PCT/SE 2003/001982
Network (U-VLAN) through which the Ethernet DSLAM communicates with the end-user device, and the requested service is accessed through a Service Virtual Local Area Network (S-VLAN), and the Ethernet DSLAM includes means for
5 mapping the S-VLAN for the requested service to the U-VLAN for the end-user device.
4. The Ethernet DSLAM of claim 1, wherein the means
for authenticating includes a RADIUS client that
10 communicates with an external RADIUS authentication server.
5. An Ethernet Digital Subscriber Line Access
Multiplexer (DSLAM) for providing dynamic service selection
and end-user configuration of service bindings in a digital
15 communication system, said Ethernet DSLAM comprising:
a plurality of subscriber ports for receiving login credentials and service requests from end-user devices, and for communicating data traffic to and from the end-user devices, wherein an identified subscriber port communicates
20 with an identified end-user device;
a traffic mapper that maps data traffic between a plurality of Service Virtual Local Area Networks (S-VLANs) and the subscriber ports;
a RADIUS client that sends login credentials and a
25 service request from the identified end-user device to an external RADIUS server for authentication and receives from the external RADIUS server, a plurality of attributes for configuring the Ethernet DSLAM to provide a service binding corresponding to the requested service, said attributes
30 including an identification of an S-VLAN through which the requested service is accessed, and an identification of a Permanent Virtual Circuit (PVC) on a local DSL loop associated with the end-user device; and

WO 2005/060208 PCT/SE 2003/001982
a Service Selection Controller that receives the attributes from the RADIUS client and sends mapping control information to the traffic mapper, thereby enabling the traffic mapper to establish a service binding between the
5 identified end-user device and the S-VLAN through which the requested service is accessed.
6. The Ethernet DSLAM of claim 5, wherein the service
binding is established utilizing the IEEE802.lx protocol.
10
7. The Ethernet DSLAM of claim 5, wherein the
service binding is established utilizing the Point-to-Point
Protocol over Ethernet (PPPoE) protocol.
15 8. The Ethernet DSLAM of claim 5, further comprising a Dynamic Host Configuration Protocol (DHCP) server that answers DHGP requests sent by the identified end-user device prior to establishment of the service binding, said DHCP server sending a temporary configuration and a short lease
20 time to the identified end-user device.
9. The Ethernet DSLAM of claim 8, wherein the DHCP
server ignores DHCP requests sent by the identified end-user
device after establishment of the service binding, thereby
25 forcing the end-user device to broadcast a DHCP discover message which is passed on to a second DHCP server in the S-VIAN through which the requested service is accessed.
10. A method of providing dynamic service selection
30 and end-user configuration of service bindings in a digital
communication system, said method comprising the steps of:
sending login credentials and a service request from an end-user device to an Ethernet Digital Subscriber Line Access Multiplexer (DSLAM) ;

WO 2005/060208 PCT/SE 2003/001982
sending the login credentials and service request from the Ethernet DSLAM to an authentication server;
sending from the authentication server to the Ethernet DSLAM, a plurality of service binding attributes, said
5 attributes including an identification of an access network for the requested service, and an identification of a Permanent Virtual Circuit (PVC) on a local DSL loop associated with the end-user device;
utilizing the service binding attributes by the
10 Ethernet DSLAM to configure a service binding corresponding to the requested service; and
training a bridging network terminal (NT) having a plurality of PVCs to utilize the identified PVC for sending upstream traffic from the end-user terminal to the Ethernet
15 DSLAM, said training step including sending initial downstream traffic from the Ethernet DSLAM to the end-user device utilizing the identified PVC.
11. The method of claim 10, wherein the end-user
20 device has a Media Access Control (MAC) address, and the
requested service is accessed through a Service Virtual Local Area Network (S-VLAN) , and the step of utilizing the service binding attributes by the Ethernet DSLAM to configure a service binding includes mapping by the Ethernet
25 DSLAM, the S-VLAN for the requested service to the MAC address for the end-user device.
12. The method of claim 10, wherein the Ethernet DSLAM
communicates with the end-user device through a User Virtual
30 Local Area Network (U-VLAN) , and the requested service is accessed through a Service Virtual Local Area Network (S-VLAN) , and the step of utilizing the service binding attributes by the Ethernet DSLAM to configure a service binding includes mapping by the Ethernet DSLAM, the S-VLAN

WO 2005/060208 PCT/SE 2003/001982
for the requested service to the U-VLAN for the end-user device.
13. The method of claim 10, wherein the step of
5 sending the login credentials and service request from the
Ethernet DSLAM to an authentication server includes sending the login credentials and service request from a RADIUS client in the Ethernet DSLAM to an external RADIUS authentication server.
10
14. A method of providing dynamic service selection
and end-user configuration of service bindings in a digital
communication system, said method comprising the steps of:
configuring in an Ethernet Digital Subscriber Line 15 Access Multiplexer (DSLAM), a plurality of subscriber ports
for communicating with a plurality of end-user devices;
receiving login credentials and a service request from
an identified end-user device utilizing an identified
subscriber port;
20 sending the login credentials and the service request
from a RADIUS client in the Ethernet DSLAM to an external
RADIUS server for authentication;
receiving from the external RADIUS server, a plurality
of attributes for a service binding corresponding to the
25 requested service, said attributes including an
identification of a Service Virtual Local Area Network (S-
VLAN) through which the requested service is accessed, and
an identification of a Permanent Virtual Circuit (FVC) on a
local DSL loop associated with the end-user device;
30 configuring the Ethernet DSLAM to provide the service
binding corresponding to the requested service; and
mapping data traffic by the Ethernet DSLAM between the
S-VLAN through which the requested service is accessed
29 PCT/SE 2003/001982
the identified subscriber port communicating with the identified
end-user device.
15. The method of claim 14, wherein the service
5 binding is established utilizing the IEEE802.1X protocol.
16. The method of claim 14, wherein the service
binding is established utilizing the Point-to-Point Protocol
over Ethernet (PPPoE) protocol.
10
17. The method of claim 14, further comprising the
steps of:
receiving by the Ethernet DSIAM, a Dynamic Host Configuration Protocol (DHCP) request from the identified
15 end-user device prior to establishment of the service binding; and
sending an answer to the end-user device from a DHCP server in the Ethernet DSLAM, wherein the answer includes a temporary configuration and a short lease time.
20
18. The method of claim 14, further comprising the
steps of:
receiving by the Ethernet DSLAM, a Dynamic Host Configuration Protocol (DHCP) request from the identified
25 end-user device;
determining by the Ethernet DSLAM, whether the service binding has been established;
upon determining that the service binding has not been
established, sending an answer to the end-user device from a
30 DHCP server in the Ethernet DSLAM, wherein the answer
includes a temporary configuration and a short lease time;
and
upon determining that the service binding has been established, ignoring the DHCP request, thereby forcing the

WO 2005/060208 PCT/SE 2003/001982
end-user device to broadcast a DHCP discover message which is passed on to a second DHCP server in the S-VLAN through which the requested service is accessed.
19. An Ethernet Digital Subscriber Line Access Multiplexer (DSLAM) and a method of providing dynamic service selection and end-user configuration of service bindings in a digital communication system substantially as herein described with reference to the accompanying drawings.


Dated this 20th of April, 2006.


MAHUA GHOSH
OF K & S PARTNERS AGENT FOR THE APPLICANTS


ABSTRACT
An Ethernet Digital Subscriber Line Access Multiplexer, DSLAM, (33) and method of dynamically creating a service binding in the Ethernet DSLAM based on a service selection made by an end-user (31). The end-user may use the PPPoE or IEEE802.1X access protocols to provide login credentials indicating the desired service. The login credentials are validated towards a RADIUS server (40), and this server configures the Ethernet DSLAM (33) with the attributes of the service binding, including an identified Permanent Virtual Circuit, PVC, (12) to carry the desired service. The Ethernet DSLAM may map service-VLANs to user MAC addresses (34), or may map service-VLANs to user-VLANs (62) to establish the service binding. The Ethernet DSLAM uses the identified PVC for downstream traffic for the corresponding service binding and thereby trains' a learning bridge network terminal to use the correct PVC for upstream traffic.

Documents:

464-mumnp-2006-abstract(18-08-2008).doc

464-mumnp-2006-abstract(18-08-2008).pdf

464-MUMNP-2006-ABSTRACT(18-8-2008).pdf

464-mumnp-2006-abstract.pdf

464-mumnp-2006-cancelled pages(18-08-2008).pdf

464-MUMNP-2006-CANCELLED PAGES(18-8-2008).pdf

464-MUMNP-2006-CLAIMS(18-8-2008).pdf

464-mumnp-2006-claims(granted)(18-08-2008).doc

464-mumnp-2006-claims(granted)(18-08-2008).pdf

464-mumnp-2006-claims.pdf

464-mumnp-2006-correspondance received.pdf

464-mumnp-2006-correspondence(15-01-2009).pdf

464-MUMNP-2006-CORRESPONDENCE(18-8-2008).pdf

464-MUMNP-2006-CORRESPONDENCE(19-1-2009).pdf

464-mumnp-2006-correspondence(ipo)-(15-04-2008).pdf

464-mumnp-2006-description (complete).pdf

464-MUMNP-2006-DESCRIPTION(COMPLETE)-(24-4-2006).pdf

464-mumnp-2006-drawing(18-08-2008).pdf

464-MUMNP-2006-DRAWING(18-8-2008).pdf

464-mumnp-2006-form 1(02-01-2007).pdf

464-MUMNP-2006-FORM 1(2-1-2007).pdf

464-mumnp-2006-form 1(24-04-2006).pdf

464-mumnp-2006-form 18(07-12-2006).pdf

464-mumnp-2006-form 2(24-4-2006).pdf

464-mumnp-2006-form 2(granted)-(18-08-2008).doc

464-mumnp-2006-form 2(granted)-(18-08-2008).pdf

464-MUMNP-2006-FORM 2(TITLE PAGE)-(24-4-2006).pdf

464-mumnp-2006-form 26(16-04-2007).pdf

464-mumnp-2006-form 26(16-08-2005).pdf

464-mumnp-2006-form 26(24-04-2006).pdf

464-mumnp-2006-form 26(29-06-2006).pdf

464-mumnp-2006-form 3(19-01-2009).pdf

464-MUMNP-2006-FORM 3(19-1-2009).pdf

464-mumnp-2006-form 3(20-04-2006).pdf

464-mumnp-2006-form 3(20-12-2006).pdf

464-mumnp-2006-form 5(20-04-2006).pdf

464-mumnp-2006-form-pct-isa-210(24-04-2006).pdf

464-mumnp-2006-form1.pdf

464-mumnp-2006-form2.doc

464-mumnp-2006-form2.pdf

464-mumnp-2006-form3.pdf

464-mumnp-2006-form5.pdf

464-mumnp-2006-petition under rule 137(18-08-2008).pdf

464-MUMNP-2006-PETITION UNDER RULE 137(18-8-2008).pdf

464-mumnp-2006-petition under rule 137(19-01-2009).pdf

464-MUMNP-2006-PETITION UNDER RULE 137(19-1-2009).pdf

464-MUMNP-2006-POWER OF ATTORNEY(4-5-2007).pdf

abstract1.jpg


Patent Number 228695
Indian Patent Application Number 464/MUMNP/2006
PG Journal Number 10/2009
Publication Date 06-Mar-2009
Grant Date 09-Feb-2009
Date of Filing 24-Apr-2006
Name of Patentee TELEFONAKTIEBOLAGET LM ERICSSON (publ)
Applicant Address SE-164 83 Stockholm, SWEDEN
Inventors:
# Inventor's Name Inventor's Address
1 MELSEN, Torben Istedgade 4, DK-7500 Holstebro, Denmark
PCT International Classification Number H04L29/06 H04L12/28 H04L12/24
PCT International Application Number PCT/SE2003/001982
PCT International Filing date 2003-12-16
PCT Conventions:
# PCT Application Number Date of Convention Priority Country
1 NA