HUAWEI PDSN9660 V800R005 Product Description

PDSN9660 Product Description
HUAWEI PDSN9660 Packet Data Serving Node Product Description

Document Version 02 (2007-04-30) Product Version V800R005
Huawei Technologies Co., Ltd. provides customers with comprehensive technical support and service. Please feel free to contact our local office or company headquarters.
Huawei Technologies Co., Ltd.

Address: Administration Building, Huawei Technologies Co., Ltd., Bantian, Longgang District, Shenzhen, P. R. China Postal Code: 518129 Website: http://www.huawei.com
Copyright 2007 Huawei Technologies Co., Ltd. All Rights Reserved.

No part of this manual may be reproduced or transmitted in any form or by any means without prior written consent of Huawei Technologies Co., Ltd.
Trademarks
and other Huawei trademarks are the trademarks or registered trademarks of Huawei Technologies Co., Ltd. in the Peoples Republic of China and certain other countries.
All other trademarks and trade names mentioned in this document are the property of their respective holders.
Notice
The information in this manual is subject to change without notice. Every effort has been made in the preparation of this manual to ensure accuracy of the contents, but all statements, information, and recommendations in this manual do not constitute the warranty of any kind, express or implied.
Table of Contents
Chapter 1 Introduction to the PDSN ............................................................................................... 1 1.1 Functions of the PDSN ......................................................................................................... 1 1.2 Position of the PDSN in the CDMA Network ........................................................................ 1 1.3 Interfaces of the PDSN ......................................................................................................... 5 Chapter 2 Product Features ............................................................................................................ 7 2.1 Carrier-Class Platform .......................................................................................................... 7 2.2 High Reliability ...................................................................................................................... 7 2.3 High Security......................................................................................................................... 8 2.4 High Capacity........................................................................................................................ 8 2.5 Customizable O&M System.................................................................................................. 8 Chapter 3 System Structure .......................................................................................................... 11 3.1 Cabinet................................................................................................................................ 11 3.2 Subrack............................................................................................................................... 15 3.3 Board .................................................................................................................................. 17 3.3.1 SRU.......................................................................................................................... 17 3.3.2 SPU .......................................................................................................................... 18 3.3.3 LPU .......................................................................................................................... 18 Chapter 4 Services and Functions ............................................................................................... 19 4.1 Routing................................................................................................................................ 19 4.2 R-P Interface and Multiple Service Instance ...................................................................... 19 4.3 Simple IP and Mobile IP ..................................................................................................... 21 4.3.1 Simple IP .................................................................................................................. 21 4.3.2 Mobile IP .................................................................................................................. 22 4.3.3 MIP Agent................................................................................................................. 23 4.4 Foreign Agent ..................................................................................................................... 23 4.5 Accounting .......................................................................................................................... 24 4.6 PPS..................................................................................................................................... 25 4.7 Mobile VPN ......................................................................................................................... 25 4.8 Security Policy .................................................................................................................... 26 4.8.1 Protocol Security Authentication .............................................................................. 26 4.8.2 IPSec........................................................................................................................ 27 4.8.3 Packet Filtering and ACL ......................................................................................... 28 4.8.4 Pi Redirection ........................................................................................................... 28 4.9 QoS..................................................................................................................................... 28 4.10 Multiple Compression Technologies................................................................................. 29 4.11 Lawful Interception............................................................................................................ 29
Commercial in Confidence i
PDSN9660 Product Description 4.12 Others Services and Functions......................................................................................... 29 Chapter 5 Reliability ....................................................................................................................... 31 5.1 Hardware Reliability............................................................................................................ 31 5.2 Software Reliability ............................................................................................................. 31 5.3 Networking Reliability ......................................................................................................... 32 Chapter 6 Operation and Maintenance......................................................................................... 33 6.1 O&M Structure .................................................................................................................... 33 6.1.1 BAM.......................................................................................................................... 34 6.1.2 LMT .......................................................................................................................... 34 6.1.3 M2000 ...................................................................................................................... 34 6.2 O&M Functions ................................................................................................................... 34 6.2.1 Data Configuration Management ............................................................................. 34 6.2.2 Interface Tracing ...................................................................................................... 35 6.2.3 Performance Management....................................................................................... 35 6.2.4 Alarm Management.................................................................................................. 35 6.2.5 Log Management ..................................................................................................... 36 Chapter 7 Technical Specifications.............................................................................................. 37 7.1 System Performance .......................................................................................................... 37 7.2 Physical and Electrical Specifications................................................................................. 38 7.3 Reliability Specifications ..................................................................................................... 38 7.4 Compliant Safety Standards ............................................................................................... 39 7.5 EMC Specifications............................................................................................................. 39 7.6 Environmental Requirements ............................................................................................. 39 7.6.1 Storage Environment ............................................................................................... 39 7.6.2 Transportation Environment..................................................................................... 42 7.6.3 Operation Environment ............................................................................................ 44 Chapter 8 Installation ..................................................................................................................... 47 8.1 System Installation.............................................................................................................. 47 8.2 System Expansion and Upgrade ........................................................................................ 47 Appendix Acronyms and Abbreviations ..................................................................................... 49
Commercial in Confidence
ii
Chapter 1 Introduction to the PDSN

This chapter describes the functions and the structure of the Packet Data Serving Node (PDSN), and its position and application on the CDMA network. It mainly includes the following contents: Functions of the PDSN Position of the PDSN in the CDMA Network Interfaces of the PDSN
1.1 Functions of the PDSN

The Huawei PDSN9660 complies with the Telecommunications Industry Association/Electronics Industry Association (TIA/EIA) standards. It performs the functions of both the PDSN and the Foreign Agent (FA). The PDSN is one of the core network elements in a CDMA system. As a gateway device for an MS to access an external Public Data Network (PDN), the PDSN is located at the joint connecting the CDMA core network-packet switching (CN-PS) domain with the external PDN. It connects the MS to an IP network, providing packet services to the MS. For the access of mobile IP, in addition to the function of a gateway device between the CDMA network and the external PDN, the PDSN also integrates the function of the FA. The PDSN/FA serves as both a gateway device and an FA of the network accessed by the MS.
1.2 Position of the PDSN in the CDMA Network

Figure 1-1 shows the position of the PDSN in a CDMA network.
Page 1 of 53
M2000
PDSN/FA AAA HA PS Domain SMC BTS SCP MSC/VLR/ SSP/IP BSC CS Domain Internet BTS AN AAA TSC DPS IGWB Trunking Domain PSTN/PLMN/ISDN HLR/AC Service Network
GLMS GMSC
SMT VPN
Figure 1-1 Networking of Huawei CDMA 1X/1xEV-DO/digital trunking system Table 1-1 lists the functions of the elements in the CDMA network. Table 1-1 Functions of the elements in the CDMA network Element Base Transceiver Station (BTS) Function The BTS is used to transmit and receive radio signals and to implement the communication between the mobile network and the MS. Huawei provides a series of the BTS products.
Page 2 of 53
PDSN9660 Product Description Element Function The BSC is used to implement the following functions: Base Station (BSC) Controller Controlling and managing the BTSs Setting up and releasing call connections Implementing power control Managing radio resources Implementing handoffs to ensure reliable radio connections The MSC is used to implement the following functions: Call setup Route selection Call control Radio resource allocation Mobility management Location registration Channel switching within switching area Bill generation Service coordination with the PSTN SS7 interface and network interface The VLR is a dynamic database. It stores the temporary information of the subscribers currently in its MSC area. This information contains all the data to set up calls. The VLR is integrated with the MSC physically. The SSP is used to detect intelligent service requests, to communicate with the SCP, and to respond to the service request from the SCP. It allows the service logics in the SCP to process the calls. An SSP provides call control and service switching. The SSP is integrated with the MSC/VLR physically. Both the IP and the SCP are integrated with the MSC physically as a network functional unit. Through the internal interface, the IP provides dedicated resource for the SSP to implement intelligent services. The HLR is a database for mobile subscriber management. It stores the subscription information, which contains subscription data and subscriber states, the MS location information, the MDN, the IMSI (MIN) and so on. The AC is a functional entity used to manage the information necessary for mobile subscriber authentication. It is integrated with the HLR physically. The SMC is used to store and forward short messages. It also provides supplementary services related to short message.
Mobile Switching Center (MSC)
Visitor Location Register (VLR)
Service (SSP)
Switching
Point
Intelligent Peripheral (IP)
Home Location Register (HLR)/Authentication Center (AC)
Message Center (SMC)
Page 3 of 53
PDSN9660 Product Description Element Function The SCP is the core component of the intelligent network. It implements the following functions: Service (SCP) Control Point Storing the subscriber data and service logics Receiving the query requests from the SSP and querying the database to carry out decoding Initiating service logics according to the call event reported by the SSP and setting up intelligent calls by sending call control instructions to the SSP according to service logics The GMSC requests the routing information of a called subscriber and provides interconnection and settling between networks. The PDSN is a gateway used to connect the mobile network and the IP backbone network. It provides the access of packet data service for mobile subscribers. The HA provides the interface between the mobile network and the Internet. It is an auxiliary node for mobile subscribers to access the Internet. It supports downlink data forwarding in the mobile IP tunnel mode and uplink data forwarding through reverse tunnel. The AAA server is a high-performance remote verification server for dial-in subscribers. It provides authentication, authorization, accounting, and data value-added services. It supports multiple types of databases, powerful agent, and flexible operations. The TSC is used to process trunk call signaling and to implement trunk call media distribution. A TSC can be connected with multiple PCFs. The GLMS is used to manage the information about: Group and Management (GLMS) List Server Trunk group Trunk service subscribers Subscriber trunk service Dispatcher Virtual Private Network (VPN) The iGWB is used to collect, store, filter, sort, and send bills. The DPS is used to implement the following functions: Call setup and voice conversion between the Dispatcher (DPT) and the MSE Call transfer and connection between the DPT and the PSTN/PLMN Short message transfer between the DPT and the mobile terminal Transfer of session control command for the DPT Transfer of trunk session state information
Page 4 of 53
Gateway Mobile Switching Center (GMSC) Packet Data Serving Node (PDSN)
Home Agent (HA)
Authentication, Authorization Accounting (AAA)
and
Trunk Switching (TSC)
Center
iGateway Bill (iGWB)
Dispatcher Server (DPS)
PDSN9660 Product Description Element Function The DPT is connected with the MSE through the DPS. It provides a user interface for the dispatcher to carry out dispatching management. The dispatcher can carry out group call, broadcast call, private call, short message transmission, forced insertion, and forced release. In addition, the dispatcher can be used to view the states of subscribers and groups in real time. The SMT enables the VPN manager and the VPN operator to manage the data of subscribers, groups, location areas, and so on. The M2000 is the centralized management platform for Huawei mobile network, and it supports the following functions: iManager M2000 (M2000) Centralized fault management Centralized performance management Centralized configuration management Centralized topology management Centralized security management System management
Dispatcher (DPT)
Service Maintenance Terminal (SMT)
1.3 Interfaces of the PDSN

Figure 1-2 shows the standard and open signaling interfaces the PDSN9660 provides. As shown in the figure, the PDSN9660 supports the R-P interface and Pi interface. It can be flexibly connected with any standard PCF, AAA Server and any other network entities.
AAA Server
PCF
R-P
PDSN
Pi
IP Network
PDN
PCF: Packet Control Function PDN: Public Data Network AAA: Authentication, Authorization and Accounting Server
Figure 1-2 Interfaces of the PDSN9660 Table 1-2 lists the interfaces of the PDSN and their properties.
Page 5 of 53
PDSN9660 Product Description Table 1-2 Interfaces of the PDSN and their properties Interface R-P Peer PDSN-PCF Protocol 3GPP2 A.S0001-A and 3GPP2 P.S0001-B RFC2865 RCF2866 and Physical Features FE/GE
Pi
AAA-PDSN
FE/GE
Pi
PDSN-PDN
3GPP2 A.S0001-A and 3GPP2 P.S0001-B
FE/GE
Page 6 of 53
Chapter 2 Product Features

This chapter describes the following features of the PDSN9660: Carrier-Class Platform High Reliability High Security High Capacity Customizable O&M System
2.1 Carrier-Class Platform

The hardware platform of the PDSN9660 is a Universal Switching Router (USR) of Huawei. The USR is a compact, carrier-class network switching device based on proven industry standards. The software of the PDSN9660 is developed on the Versatile Routing Platform (VRP) of Huawei. The PDSN9660 inherits the basic technologies of data communications, such as integrated routing technology, IP Quality of Service (QoS), Virtual Private Network (VPN) and security technology, greatly expands and improves the functions based on the wireless communication applications. Based on both the hardware platform that is rendered by the USR, featuring high reliability and high data handling capability, and the software platform that integrates seamlessly wireless communications technologies and data communications technologies, the PDSN9660 provides ideal and flexible solutions to wireless data communications for CDMA network operators.
2.2 High Reliability

During the product design of the PDSN9660, the reliability design has been taken into full consideration in the three aspects of hardware, software and networking so that normal operation of the product is effectively guaranteed. Hardware reliability The system adopts advanced network processor technology, supports the functions of online plugging and active/standby redundancy backup of key boards. It is powered by double-channel power supply system, which is protected by overvoltage and overcurrent measurement. Software reliability The system provides such functions as overload control, traffic control, resource check and self fault detection. These functions ensure the system to operate stably. The
Commercial in Confidence Page 7 of 53
PDSN9660 Product Description special accounting record buffer function guarantees a reliable accounting system. The hot patch technology guarantees the software running reliably. Networking reliability Networking reliability is guaranteed by the following functions: The router backup and router load sharing function can eliminate the single-point fault on the network so that a network of high reliability is guaranteed. The Eth-Trunk is able to eliminate the influence on services results from failure of a single port.
2.3 High Security

The same as reliability, security is also the topic carriers and final customers focus on. The PDSN provides excellent security features for the system and subscribers through the following technologies: Strict verification of operator identity PPP security verification by the PAP and the CHAP modes Packet filtration and the ACL mechanism to filter each packet on the defined items Pi interface redirect functionality, which is used to eliminate datagram attacks between the mobile users belonging to one PDSN IPSec protocol, which provides IP packets with high-quality, interoperable, and cryptology-based security
2.4 High Capacity

Once devices are applied to use, the quick increase of subscribers and services brings improvement to the revenue of the carriers, while the growth of devices leads to the increase of the cost of the carriers. To protect the valid investment of the carriers, the PDSN is designed and provides a large capacity of up to 300,000 subscribers.
2.5 Customizable O&M System

The PDSN9660 provides powerful operation and maintenance (O&M) functions, including: Diversified Management Methods User-Friendly Graphic Interface Tracing Functions Customizable Performance Measurement Functions Remote Management Real-Time Fault Management Comprehensive Online Help
Page 8 of 53
I. Diversified Management Methods

The O&M system of the PDSN allows you to build a desired network management system based on your network structure, management requirements, and investment scale. Based on a client/server distributed processing system, the PDSN provides maintenance functions that can be implemented through: Graphic user interface (GUI) client Centralized network maintenance interface Man-machine language (MML) The PDSN supports local and remote maintenance that can be carried out by multiple users at the same time.
II. User-Friendly Graphic Interface

The PDSN provides a user-friendly O&M interface with a navigation tree. The interface features both the simplicity of the MML operations and the convenience of the GUI. The O&M system provides a graphic topology view of the network structure and an equipment status panel to simplify operations. Frequently-used commands are available in menus.
III. Tracing Functions

The PDSN provides the following tracing functions: Signaling tracing Interface tracing Subscriber tracing Message explanation
IV. Customizable Performance Measurement Functions

The PDSN displays performance measurement data in lists and graphics. It also supports real-time performance monitoring.
V. Remote Management
The PDSN supports various remote management functions, including: Online software patching Online debugging Remote maintenance Dynamic data setting
Page 9 of 53
VI. Real-Time Fault Management

The PDSN can receive and display network equipment fault reports. It provides real-time audible or visual alarms through topology view, alarm panel, alarm box, mobile phones, and so on. The PDSN provides detailed fault reports. Its fault management system has leveled-filtering functions. This enables you to determine the cause of the fault quickly. When the cause of the fault is determined, you can handle the fault with the help of alarm handling suggestions in the online help.
VII. Comprehensive Online Help

The online help provides information on MML commands, O&M system, boards, alarm handling, and so on. Therefore, the users can be familiar with the O&M of the devices quickly.
Page 10 of 53
Chapter 3 System Structure

This chapter describes the features of the PDSN on hardware and functions from the aspect of system structure. The PDSN can be physically divided by the following three levels: Cabinet Subrack Board
3.1 Cabinet
The PDSN9660 uses the N68-22 cabinet. This cabinet complies with the IEC297 standard. It uses 48 V direct current (DC) power supply. Its capacity is 46 U. Figure 3-1 shows the front view of an N68-22 cabinet.
Page 11 of 53
Figure 3-1 Front view of an N68-22 cabinet Figure 3-2 shows an overall configuration of the PDSN9660 in the FE networking.
Page 12 of 53
Power distribution box (2 U) LAN switch (1 U) Cabling rack of the LAN switch (1 U) LAN switch (1 U) Cabling rack of the LAN switch (1 U) Router/LAN switch (3 U) Cabling rack (1 U) Router/LAN switch (3 U) Cabling rack (1 U) Dummy panel (1 U)
PDSN9660 subrack (18 U)
High-capacity fiber rack (1 U) Dummy panel (3 U) Dummy panel (2 U) Firewall (3 U) Dummy panel (1 U) Firewall (3 U)
Figure 3-2 Assembly diagram of the cabinet in the FE networking Figure 3-3 shows an overall configuration of the PDSN9660 in the GE networking.
Page 13 of 53
Power distribution box (2 U) Cabling rack of the LAN switch (1 U) LAN switch (3 U) Cabling rack of the LAN switch (1 U) Cabling rack of the LAN switch (1U ) LAN switch (3 U) Cabling rack of the LAN switch (1 U) Dummy panel (1 U) Dummy panel (2 U) Fiber management tray on the right side
PDSN9660 subrack (18 U)
High-capacity fiber rack (1 U) Dummy panel (1 U) Dummy panel (2 U) Dummy panel (2 U) Firewall (3 U) Dummy panel (1 U)
Firewall (3 U)
Figure 3-3 Assembly diagram of the cabinet in the GE networking Among these components: The PDSN9660 subrack is mandatory. Main service boards are mounted in the subrack.
PDSN9660 Product Description The router and LAN switch (3 U) is optional. When the interfaces of an LPU of the PDSN9660 do not meet the needs for networking, for example, when E1 mode is used for networking with the PCF, you can use the interfaces and functions of a router to meet the need. If a user needs the NAT function, but the router from which data goes out does not provide such a function, you can use the NAT function provided by the router or the firewall of the PDSN cabinet. If the interface type of the LPU boards is Gigabit Ethernet (GE), a GE LAN switch can be configured based on the need of networking. The LAN switch is optional. In actual networking, the management of the device can be performed by the LAN switch. When the PDSN9660 networks with other Huawei wireless devices such as HA, the LAN switch can be shared. The Firewall is optional. It is a security device placed between the PDSN9660 and the external PDN. If customers have special demands on security, they can purchase other security devices separately. To improve the networking reliability, you can configure double LAN switches, routers and firewalls and make them work in active and standby mode.
3.2 Subrack
Figure 3-4 shows the front view of the subrack in full configuration. The design of the PDSN9660 subrack complies with the IEC297 standard. Its height is 797.3 mm (18 U), and size is 797.3 mm (H) 482.6 mm (W) 420 mm (D).
Page 15 of 53
(1) LPU/SPU slots (slots 1 to 4) (3) LPU/SPU slots (slots 5 to 8) (5) ESD-preventive wrist strap jack (7) Power supply module (9) Traverse cable trough (11) Board cage
(2) SRU slots (slots 9 and 10) (4) Air exhaust vent (6) Pulled handle on both sides (8) Air intake vent (10) ESD-preventive wrist strap jack (12) Fan module
Figure 3-4 Front view of the subrack in full configuration As shown in Figure 3-4, a subrack includes: Service boards Power module Fan shelf Cabling troughs
Page 16 of 53
3.3 Board
Typical board arrangement of the PDSN9660 is shown in Figure 3-5.
L P U
L P U
S P U
S P U
S R U
S R U
S P U
S P U
S P U
S P U
10
SRU: Switching and routing unit SPU: Service processing unit LPU: Line interface processing unit
Figure 3-5 Boards of the PDSN9660 The PDSN9660 subrack mainly includes the following three types of boards: SRU SPU LPU
3.3.1 SRU
The SRU is the core of the system management. SRUs are in active and standby redundancy backup mode. The whole PDSN9660 system needs only two SRUs, one is active and the other is standby. They are fixedly inserted in slots 9 and 10 of a PDSN subrack. The main functions of the SRU are as follows: The SRU collects routing information and produces routing table according to the network topology and user-defined scheme. Then it delivers the routing table to the LPU boards and SPU boards. The SRU is an O&M agent of the PDSN9660. It manages the PDSN9660 system according to the operators commands and collects the system running parameters for the operator. The SRU is the packet switching center of the PDSN9660. It receives packets from the LPU and processes the packets according to the control information carried by them, and then it delivers the packets to the SPU for further processing. The packets having been processed by the SPU should also go through the SRU before being forwarded to the LPU.
Page 17 of 53
3.3.2 SPU
The SPU provides all service processing functionalities of the PDSN9660. A PDSN9660 can be configured up to three pairs of SPUs, with each pair being in active and standby backup design, located in slots 3 and 4, 5 and 6 and 7 and 8. The capacity of the PDSN9660 is up to the processing capability of SPUs. The maximum processing capability of one pair of SPUs is 100,000 concurrent PPP connections. The maximum processing capability of a PDSN9660 is 300,000 concurrent PPP connections.
3.3.3 LPU
The LPU provides physical interfaces to the external network elements such as the PCF, PDN and AAA server, including the following types: Fast Ethernet (FE, 10/100 Mbit/s) interface Gigabit Ethernet (GE, 1000 Mbit/s) interface A PDSN9660 is designed with two LPUs, which are in slots 1 and 2 and are used to cooperate with remote networking devices. The LPU is only in charge of packet forwarding instead of any service processing. All service processing functions are performed by SPUs. The routing table information of LPUs is deployed by SRUs.
Page 18 of 53
Chapter 4 Services and Functions

This chapter describes the following services and functions of the PDSN9660: Routing R-P Interface and Multiple Service Instance Simple IP and Mobile IP Foreign Agent Accounting PPS Mobile VPN Security QoS Multiple Compression Technologies Lawful Interception Others The PDSN is an indispensable network entity in the CDMA2000 network. Its main function is to forward packets between a CDMA2000 network and a packet network, that is, to connect an MS to the external PDN by PPP for providing data service and providing packets with the route of the next hop.
4.1 Routing
From the aspect of the PDN, as a gateway device between the CDMA2000 and the PDN, the PDSN is equivalent to a router that can address all users IP on the CDMA2000 network. The PDSN9660 supports all currently popular routing protocols, including: Static routing RIP OSPFv2 IS-IS BGP-4 Routing policies Active and standby routing
4.2 R-P Interface and Multiple Service Instance

PDSN9660 supports the deployment of EV-DO Rev.A. When an MS launches a data call, namely, an A10 session, namely, data channel, is set up between the PCF and the
PDSN9660 Product Description PDSN through the Radio-PDSN (R-P) interface. Through this R-P interface, a PPP session is set up between the MS and the PDSN. Data packets are then transmitted through the PPP connection. One PPP session corresponds to one R-P session. An R-P session contains multiple R-P connections and one R-P connection corresponds to one service instance. Each R-P session contains one Main Service Instance and multiple Auxiliary Service Instances. In other words, on the PDSN, multiple A10 connections can be established through the R-P interface to provide services to meet various user demands. For EV-DO Rev.A, the packet data service connections can be categorized into main service connections and auxiliary service connections. The resources are allocated to each connection. The main service connection is set up when the packet data service is initially established. The main service connection provides best-effort QoS attribute. The auxiliary service connection is usually used to bear the service with special QoS requirement. The QoS of the auxiliary service connection is based on the requests of the subscriber and restricted by the subscribed QoS in AAA server or PDSN local QoS configuration. The terminal can set up one or multiple auxiliary service connections and request suitable QoS for each application.
Note: The R-P interface is an interface between the radio access network and the packet core network. To be specific, it is an interface between the PCF and the PDSN. There are two types of R-P interfaces, A10 and A11. A10: It is used to transmit users data. The upmost layer of the A10 protocol stack is the GRE layer, which encapsulates the upper layer PPP data into GRE frames for transmission. A11: It is used to transmit the signals between PDSN and PCF so as to establish or release A10 connections. Meanwhile, the PCF can also deliver accounting parameters by means of A11 messages.
For PDSN9660, multiple service connections support is very full since it supports MIP, MIP Agent and charging, etc. Moreover, the handoff between 1X, EV-DO Rev.0 and EV-DO Rev.A networks is supported. Establishing or deleting A10 connections: The PDSN9660 supports A10 connections launched by the PCF. Both the PCF and the PDSN9660 can actively delete A10 connections. Updating A10 connections periodically: The PCF sends A11 registration messages periodically to ask for updating A10 connections and the PDSN9660 updates A10 connections correspondingly.
PDSN9660 Product Description Multiple Service Instance: An MS can support up to six service instances. Each service instance has it own RLP and QoS parameter setting so different instances can bear different services such as voice service and non-voice service. Establishing and maintaining the GRE tunnel: It establishes the GRE tunnel between the PCF and the PDSN9660 and maintains the tunnel. PPP negotiation: Based on RFC1661, the PDSN9660 establishes, maintains or terminates PPP sessions with MSs. Supporting switching between PCFs that are under the same PDSN9660: When an MS moves to a different BSC, the PDSN9660 enables switching between PCFs and maintains PPP sessions with MSs and up-layer services such as FTP and WWW services.
4.3 Simple IP and Mobile IP

The PDSN9660 can make an MS access the external PDN. It enables two access modes, the simple IP mode and the mobile IP mode.
4.3.1 Simple IP
By the simple IP access mode, when an MS launches a packet service, the PDSN assigns an IP address to the MS while a PPP connection is established. When the packet service is over, it releases this IP address. It is easy to enable the simple IP access mode. The IP address of an MS is assigned only when it is needed. As a result, the demand for the amount of IP addresses is small. However, the simple IP mode only supports packet services that are initialized by an MS. If it switches from one PDSN to another, the MS has to interrupt the currently ongoing packet service and to set up a PPP connection with the new PDSN. Under the simple IP mode, the CN-PS has two main networking entities, the PDSN and the AAA server. The basic service flow of the simple IP mode that is implemented by the PDSN is described as follows: 1) 2) 3) 4) 5) An MS launches a packet service request, establishing a PPP link through the RAN, MS and PDSN9660. The PDSN9660 communicates with the AAA server for authentication of the MS. Having passed the authentication, the MS obtains an address assigned by the PDSN9660 or from the AAA server at the request of the PDSN9660. The PDSN9660 then connects the MS to the external PDN in IP mode, collecting accounting information and sending it to the AAA server for accounting. If the subscriber initiatively gets offline or has not made any operation for a long time, the PDSN9660 launches a flow to release the IP address currently held by the MS.
4.3.2 Mobile IP
The simple IP only supports packet services that are initiatively launched by an MS. When the MS moves from one network to another (or it switches from one PDSN to another), the existing packet service will be interrupted and the IP address must be reassigned or renegotiated. To solve the problem of more and more frequent MS mobility, Huawei CDMA2000 packet service solution has enabled mobile IP (or MIP). The mobile IP technology is a solution for providing mobility on the IP network. This solution enables a node to keep its available communication free of interruption even if the node switches from one network to another and makes the IP address (or a home address) a permanent one for connecting with any other networks. That is, when an MS switches from one PDSN to another, the original IP address and session are still kept and the ongoing packet service remains uninterrupted. Under MIP structure, apart from the PDSN and AAA server, the HA is also one of the networking entities of the packet-switched core network. At the same time, the PDSN is also integrated with the FA function. The MIP service flow of the PDSN9660 is as follows: 1) 2) An MS launches a packet service request, setting up a PPP link with the PDSN9660/FA through the RAN. The PDSN9660/FA sends agent advertisement messages, declaring its FA services. Such a message carries certain IP address of PDSN9660/FA. This address serves as the foreign agent care-of address of the MS. 3) The MIP-enabled MS sends registration requests to the HA through PDSN9660/FA, broadcasting its care-of address, that is, the information of the current location. 4) By means of the authentication message between the PDSN9660/FA and the AAA server, the PDSN9660/FA verifies whether the MS is lawful and assigns a dynamic HA for it. When the MS passes the authentication, the PDSN9660/FA then will forward the registration request message of the MS to the HA. 5) The HA checks the validity of the registration request, assigning a home address for the MS, creating a mobile binding table (that is, the mapping relation between the home address and the foreign agent care-of address), setting up a tunnel to the PDSN9660/FA, and then sending registration reply message to the PDSN9660/FA. The PDSN9660/FA then forwards the registration reply message to the MS. 6) The HA announces the reachability of the network prefix of the MS home address so as the packets destined to the MS home address route to the home network. The HA delivers these packets to the PDSN9660/FA through the tunnel. The original packets will be singled out from the tunnel at the PDSN9660/FA and forwarded to the MS.
PDSN9660 Product Description 7) In the reverse direction, the data packets which are sent from the MS follow only the simple IP forwarding flow; instead of the HA, they go directly to the destination node on the PDN through the PDSN9660/FA, a default router. However, if reverse tunnel has been applied for, the packets can also reach the HA through the reverse tunnel between the PDSN9660/FA and the HA and then are forwarded through the HA.
4.3.3 MIP Agent

The MIP agent solution can be used to solve the problem caused by the shortage of commercial MIP clients. The MIP agent of the PDSN9660 is integrated with the PPP function so that the PDSN9660/FA can perform registration, update and maintenance of the MIP for the MS. Therefore, no more MS software is needed to support the MIP. The MIP agent services flow realized by the PDSN9660 is as follows: 1) 2) The PDSN/FA collects the authentication request of the MS and then forwards that to the AAA Server for authentication. The following are two circumstances: If the authentication result shows that the MS is an MIP Agent subscriber, step 3) is followed. If the PDSN/FA cannot judge whether the MS is an MIP Agent through the authentication result, it will continue to conduct a judgment according to the domain configuration information of the MS. If the MIP agent flag bit of the domain where the MS exists shows enabled, the MS is then confirmed as an MIP agent subscriber and step 4) is followed. 3) If the MS is successfully authenticated to use the MIP agent service provided by the PDSN/FA, the AAA server returns both the registration data of the MS and the address of the HA. 4) 5) 6) 7) 8) The PDSN/FA looks up the registration data of the MS that is bund with the domain where the MS exists and the address of the HA. The PDSN/FA uses this information and other data to send a registration request (RRQ) to the HA for the MS. If the registration is successful, the HA will send a registration response (RRP) that contains the IP address to the PDSN/FA. The PDSN/FA assigns the IP address obtained from the RRP to the MS through the IPCP. Between the HA and the PDSN/FA, a tunnel is set up for bearing the uplink and downlink packets of the MS.
4.4 Foreign Agent

Under MIP structure, the PDSN9660 not only serves as a gateway device between the CDMA2000 and the PDN, but also integrates with FA function. The FA can provide an
PDSN9660 Product Description MS with a foreign agent care-of address, be in charge of routing of a registered MS and forward the packets from the HA through the tunnel to the MS. The FA functions that are supported by the PDSN9660 are as follows: Sending agent advertisements: By sending agent advertisement messages, the FA helps an MS know whether it has moved away from its home network and provides the MS with foreign agent care-of address and other information. Handling registration messages: The FA judges the validity of each field of the registration message from the MS. If the FA requires to be authenticated, it can send the registration message to the AAA server for authentication and forward the lawful registration message to the HA for further treatment. Authentication extension: The registration is a process vulnerable for being attacked. This demands a compulsory authentication to the registration messages between an MS and the HA. The PDSN9660/FA supports the authentication extension of registration messages, including the authentication between an MS and the FA and that between the FA and the HA. Supporting both forward tunneling and reverse tunneling: The PDSN9660/FA carries the IP traffic between an MS and the HA through a tunnel. At the forward tunnel (a tunnel with the HA as the start point and the FA as the end point), the FA decapsulates the IP packets from the HA and sends them to an MS. At the reverse tunnel (a tunnel with the FA as the start point and the HA as the end point), the FA encapsulates the packets from an MS and forwards them to the HA through the tunnel. The PDSN9660/FA supports three types of tunnel encapsulation: IP in IP encapsulation, minimum encapsulation and GRE encapsulation. Packet delivery: The FA obtains packets that are forwarded from the HA through the forward tunnel and delivers them to an MS. It can also forward the packets from an MS by following the simple IP forwarding procedure or through a reverse tunnel.
4.5 Accounting
The PDSN9660 can collect accounting information based on data service duration or data traffic. When an MS has passed the authentication and starts a data service, the PDSN9660 will receive the accounting information from the PCF and that collected by itself. Then it merges them into a Usage Data Record (UDR) and sends it to the accounting server through the RADIUS protocol. The accounting server then records this information and generates call detail records. To ensure accounting reliability, the PDSN9660 can re-send accounting messages and buffer call detail records. When it cannot get response from the accounting server, the PDSN9660 re-sends accounting messages to prevent the call detail records from missing. If it has re-sent for many times but the accounting server still fails to respond, the PDSN9660 buffers the records to the hard disk. When the communications to the
PDSN9660 Product Description accounting server becomes normal again, the PDSN9660 will send the buffered records to the accounting server.
4.6 PPS
The PrePaid Service (PPS) means that a subscriber can enjoy certain services by prepaying a sum of money. The services refers to a certain service duration or a certain amount of data volume. Under PPS, the usage of the resource (the service duration or data volume) that is bought by the subscriber will be traced in real time and the consumed part will be deducted from the subscribers account in real time. Huawei CDMA2000 packet prepaid service system includes the following networking entities: the PDSN9660, AAA server, PPS server and SCP. The PDSN9660 PPS system features the following: Supervising the call fee and accounting according to the activated subscribers session duration. Supervising the call fee and accounting according to the traffic volume. Supervising the call fee and accounting according to both the activated subscribers session duration and the traffic volume. Switching between the time-based charging rate and traffic volume-based charging rate. Executing charging rate favor for subscribers, based on the time duration or the time division. Distributing money by slicing it into small units to avoid applying excessive quota once. In this case, if the abnormality occurs, only one segment of quota is affected. Controlling subscribers fee precisely, and enabling many users to share the same account simultaneously for packet services.
4.7 Mobile VPN

The Mobile Virtual Private Network (MVPN) is a mobile data network on which VPN services are enabled. By setting up a private network based on the public packet switching network, the MVPN can make remote mobile users access an enterprise network under security. This can save a large sum of money used to spend on renting expensive private lines. It also features high security, reliability and manageability. Based on a CDMA2000 network, you can make an MS access an enterprise network securely and reliably by setting up a private tunnel between the PDSN and the enterprise VPN gateways, and by applying remote user authentication and tunnel data encryption technologies. The PDSN9660 supports tunneling technologies such as Muti-Protocol Label Switching (MPLS), Layer 2 Tunneling Protocol L2TP (L2TP) and Generic Routing Encapsulation (GRE). The operator can provide customers flexibly with a most suitable secure solution by establishing a VPN.
I. MPLS L3 VPN
The MPLS L3 VPN can provide VPN technology through the IP backbone network. It uses the MPLS LSP to forward data packets on the IP backbone networks, but the MPLS LSP must be highly reliable. The MPLS L3 VPN distributes the VPN routes through BGP on the IP backbone networks to separate traffic between different VPN members. The PDSN9660 supports the MPLS L3 VPN and conforms to the definition in IETF RFC 2547.
II. L2TP VPN

L2TP tunnel is a kind of layer 2 tunneling technology. It uses IP networks to establish an L2TP tunnel and encapsulates data into PPP for delivery through the L2TP tunnel. The PDSN9660 has the L2TP Access Concentrator (LAC) function and supports building VPN through L2TP tunnel for transporting PPP packets for an MS. The L2TP tunnel conforms to the definition in RFC 2661.
III. GRE VPN

The GRE tunnel is a kind of layer 3 tunneling technology, enabling encapsulation of any network layer protocol over another network layer protocol. The PDSN9660 supports GRE tunneling. The IP network protocol can be used by GRE to transmit upper layer protocols so as to provide VPN functionality. The GRE tunnel conforms to the definitions in RFC 1702 and RFC 1701. Figure 4-1 shows an example of network interconnection by establishing a VPN between the PDSN9660 and the PDN through the GRE.
PCF MS RAN Backbone Network PDSN Internet Router Intranet
GRE Tunnel
Figure 4-1 PDSN9660 creates a VPN with the GRE
4.8 Security Policy

The design of the PDSN9660 has fully considered the implementation of the security policies.
4.8.1 Protocol Security Authentication

The PDSN9660 supports the following protocol security authentication: In simple IP connection, the PDSN9660 carries out authentication and authorization to an MS by interacting with the AAA server. The PDSN9660
PDSN9660 Product Description supports two authentication modes, PAP and CHAP. The authentication is performed when an MS carries out PPP negotiations with the PDSN9660. In mobile IP connection, the PDSN9660 needs to communicate with the AAA server to perform certification and authorization for the MS, and also needs to carry out authentication to the registration message between an MS and the HA. The PDSN9660/FA supports authentication extension of the registration message, including authentication between an MS and the FA, and that between the FA and the HA. The PDSN9660 provides more than one authenticating methods, such as plain text authentication, MD5 and HMAC-MD5, for major routing protocols, namely, RIP v2, OSPF, IS-IS and BGP. As the Telnet protocol does not support any secure certification, all contents transferred by TCP are in plain text, which has hidden security problem. The PDSN9660 supports the Secure Shell protocol (SSH). When the subscriber telnet to the PDSN, SSH can provide security of the information and powerful certification functions. Therefore, the PDSN will not be attacked by the IP address fraud or plain password interception.
4.8.2 IPSec
IP Security protocol (IPSec) suite is a series of protocols defined by the IETF. It provides high-quality, interoperable and cryptology-based security for IP data packets. The two sides of communication perform encryption and data source authentication on IP layer to assure confidentiality, data integrity, data origin authentication and anti-replay for packets when they are being transmitted on networks. IPSec implements the above aims through Authentication Header (AH) security protocol and Encapsulating Security Payload (ESP) security protocol. Moreover, the Internet Key Exchange (IKE) provides auto-negotiation key exchange and Security Association (SA) setup and maintenance services for IPSec so as to simplify the use and management of IPSec. The PDSN9660 supports IPSec on R-P interface, Pi interface, physical interfaces and operation and maintenance interfaces. It can set up IPSec tunnels to the following entities of the PCF, AAA server, HA, router or maintenance host, authenticate or encrypt the data stream going between them so as to ensure security of the data. The PDSN9660 supports the following IPSec functions: Implement MD5 and SHA-1 authentication algorithms Implement DES, 3DES and AES encryption algorithms Supporting two IPSec modes: the transmitting mode and the tunneling mode Implement AH and ESP protocols and supporting binding of AH and ESP Manually Configuring security associations or automatically negotiating security associations through IKE
PDSN9660 Product Description Realizing IPSec VPN by binding VRF to the interface where the IPSec situates The above features are implemented by means of a hardware encryption card so as to ensure high performance.
4.8.3 Packet Filtering and ACL

The PDSN9660 provides packet filtering and Access Control List (ACL) mechanism, filtering each packet according to the defined conditions (for example, by comparing whether the source address of a packet, or the destination address of it or other items conform to the rules). This can effectively avoid illegal invasion or ill-intentioned attacks.
4.8.4 Pi Redirection
Generally, the PDSN carries out routing search to the inner layer of IP packets that are obtained by decapsulation of the packets from an MS. If the addresses in the packets are destined to other MSs in the same PDSN, the PDSN will directly encapsulate and forward the downlink packets rather than letting them go through Pi interface. This has brought about an issue of security: the datagram attacks among the mobile users in the same PDSN cannot be prohibited. The Pi redirecting function of the PDSN9660 can solve the above problem. When forwarding uplink packets from the MS, the PDSN9660 is required to redirect them to Pi even if they are destined to other mobile users under its administration. After being filtered by the firewall that connects Pi interface, the packets are retransmitted to the PDSN9660 and then encapsulated and forwarded by the PDSN9660.
4.9 QoS
The CDMA2000 can provide subscribers with service quality of different levels. When contracting a data service, a subscriber chooses a needed service quality and has it saved to the subscribers configuration file on the authentication server. The PDSN9660 supports QoS tag setting. That is, the PDSN9660 first obtains subscribers packet service QoS parameters issued from the authentication server. Then, it maps the negotiated QoS parameter into the differentiated service priority of the IP network and fills it into the ToS field or DSCP field at the head of the subscribers packets and finally forwards them to the external PDN. Relying on this, the external network implements IP QoS queue scheduling so as to guarantee the QoS of the subscribers packet service. In addition, as an enhanced router, the PDSN9660 supports the following QoS features such as traffic policing, traffic shaping, queue scheduling and congestion control. They are implemented by hardware, which results in high performance.
4.10 Multiple Compression Technologies

The bandwidth resource of a wireless network is precious. When the bandwidth is the same, compression can effectively provide a higher data transfer rate. The PDSN9660 supports TCP/IP header compression method, the Lempel-Ziv Stacker (Stac LZS) and the Microsoft Point-to-Point Compression (MPPC) method.
4.11 Lawful Interception

The lawful interception in the mobile communication field refers to the monitoring and surveillance, by an authorized state organ, against a mobile subscriber for all its communicating activities. The PDSN9660 supports the function of lawful interception and provides lawful interception interfaces to establish connection with the Lawful Interception Gateway (LIG), and then chooses the required attributes of the object for monitoring through this connection. After the above-mentioned procedures have completed, the system can start monitoring the objects events, such as establishing, switching and releasing packet sessions; and then transmit the data packets of the monitored object.
4.12 Others Services and Functions

The PDSN9660 also supports the following services and functions: Multiple IP address assigning modes Under simple IP access mode, an MS obtains an IP address during the PPP negotiation phase. The PDSN9660 can assign an IP address from the local address pool or by asking the AAA server. The address assigned to an MS can be either a public IP address or a private IP address. If it is a private IP address, it must be transformed by the NAT server. Under mobile IP access mode, the home address of an MS is assigned by the HA. This address can be either a public IP address or a private IP address. If it is a private IP address, a reverse tunnel must be set up between the PDSN9660 and the HA. Supporting Network Time Protocol (NTP) As the NTP client, the PDSN9660 can enable network time synchronization with the NTP Server. Supporting SNMP V1, SNMP V2 and SNMP V3 The Simple Network Management Protocol (SNMP) is used to manage nodes in the network community. It aims to ensure the transportation of management information between any two elements, which facilitates the network administrator to search for information between any nodes of the network so that the following things can be done: Modification
PDSN9660 Product Description Fault location Fault diagnosis Capacity plan Report generation
Page 30 of 53
Chapter 5 Reliability
The PDSN9660 is designed on the basis of comprehensive reliability analysis. It uses advanced protection mechanisms to ensure reliability. This chapter describes the reliability of the PDSN from the following aspects: Hardware Reliability Software Reliability Networking Reliability
5.1 Hardware Reliability

The hardware platform of the PDSN9660 is based on the USR, which is the core router of the fifth generation, orienting to the next generation of IP network. It uses the NP technology that is currently advanced in the industry. Most of the functions can be realized with one or two chipset, which greatly reduces the influence to the system that results from unstable chipset operation. All key boards, including SRUs and SPUs, support online plugging and active/standby redundancy backup functions. When an active board is abnormal or unplugged, the standby one will automatically take over instantly and become the active, making the service flow free of interruption. The double-channel 48 V power supply mode is adopted, providing the load sharing function. Overvoltage and overcurrent protection measure is adopted for the board power input and external interfaces. The applied measures satisfy requirements of the ITU-T G.703 Recommendation Annex B and relative specifications. The flash memory element is used so that both the programs and static data can be saved permanently, convenient for quick recovery of both the programs and data.
5.2 Software Reliability

System overload control: When the CPUs are overloaded, the system can shut down some less necessary functions by means of the overload control function, or adjust the access volume of users to prevent the system from breaking down due to overload. You can preset the modules and threshold for the overload control. Traffic control: The PDSN9660 automatically checks whether the system load is greater than expected, and then takes different traffic control measures according to the load extents. With this function, the system is guaranteed not to break down
Page 31 of 53
PDSN9660 Product Description while running overlarge traffic or suffering from malicious attacks. Even if in such case, the system can be restored to a normal and stable state in a short time. System resource check: This function can compare data in the system database with the current running data; if inconsistent, the data can be restored with this function. Self fault detection and recovery: When the system (either software or hardware) malfunctions, some detection measures should be taken to find the faults for fault isolation and system recovery from faults. The system can take certain measures (such as automatic switchover with normal boards, automatic reset of abnormal board) to remove some malfunctions CDRs buffer: This is to ensure the accounting reliability. If a communication fault occurs between the PDSN and the AAA Server, or if the PDSN9660 has re-sent CDRs for many times but the AAA server still fails to respond, the PDSN9660 buffers the records to the hard disk. When the communication with the accounting server becomes normal again, the PDSN9660 will send the buffered CDRs to the accounting server. Board lock and system shutdown: This can refuse the access of new users and delete the old users. Some services handled by the boards and system will cease step by step, rather than being halted suddenly. Hot patch technology: It supports hot patches for online software, which does not affect reliable operation of the software.
5.3 Networking Reliability

Networking reliability is guaranteed by the following functions: Router backup and router load sharing: In networking, single-point fault on the network can be eliminated so that a network of high reliability is guaranteed. Eth-Trunk: The PDSN9660 can bundle many Ethernet ports into one Eth-Trunk port, which works as an ordinary Ethernet port. The bundled port can send data in active and standby mode. Even if one port fails to work, the service can still go without interruption.
Page 32 of 53
Chapter 6 Operation and Maintenance

The O&M is the basic requirements for the users to complete device management and maintenance. The flexible and convenient O&M methods can reduce the cost of the running and maintaining of the devices. This chapter mainly describes the components and functions of the O&M system of the PDSN9660 from the following aspects: O&M Structure O&M Functions
6.1 O&M Structure

The O&M system of the PDSN9660 is based on the Client/Server structure. Figure 6-1 shows the O&M structure of the PDSN9660.
LAN
PDSN/BAM
LAN
PSTN MODEM
PDSN LMT
M2000 Server
LAN
PDSN LMT M2000 Client M2000 Client
Figure 6-1 O&M structure of the PDSN9660
Page 33 of 53
6.1.1 BAM
The Back Administrative Module (BAM) is the server of the O&M system based on the TCP/IP. It implements the following functions: Analyzing and processing the commands from the client Processing data loading request and alarm information from the equipment
6.1.2 LMT
The Local Maintenance Terminal (LMT) is the client of the O&M system based on the TCP/IP. It supports the Man-Machine Language (MML) mode and the Graphic User Interface (GUI) mode. The LMT enables you to perform routine operation and maintenance for the PDSN. It provides interfaces for the connection with the alarm box to provide audible and visual alarms. The LMT supports remote operation and maintenance through the Public Switched Telephone Network (PSTN).
6.1.3 M2000
The M2000 is a centralized management system for the Huawei mobile network products. It is a platform implementing centralized management for Huawei mobile network products. The M2000 communicates with the PDSN through the TCP/IP protocol. An M2000 system is composed of one M2000 server and multiple M2000 clients. The LMT can be integrated into the M2000 system as an M2000 client. This enables the LMT user to use the topological management function of the M2000 to monitor and manage the entire mobile network.
6.2 O&M Functions

The operation and maintenance functions of the PDSN9660 are as follows: Data Configuration Management Interface Tracing Performance Management Alarm Management Log Management
6.2.1 Data Configuration Management

The data configuration management of the PDSN9660 is implemented by MML commands provided in the LMT. The LMT has a GUI MML interface with the following easy-to-use features:
PDSN9660 Product Description Command history Predictive text input Search of command key words Parameter prompt The MML commands enable you to configure and modify data, and to query information. The PDSN9660 system receives and analyzes MML commands, executes them and returns processing results to the LMT.
6.2.2 Interface Tracing

The interface tracing function of the PDSN9660 is implemented by the LMT. You can use the Maintenance window of the LMT to trace and review the interface and user. You can create interface or signaling tracing tasks to monitor the R-P interface, Pi interface and users in real time. The traced messages can be reviewed online or offline. These messages include that of the previous versions. Subscriber and signaling tracing helps you locate faults conveniently.
6.2.3 Performance Management

The performance management of the PDSN9660 is implemented by the M2000. The PDSN9660 generates the performance measurement files of the GLMS and the TSC, and provides the FTP service. The M2000 is used as the FTP client to receive the performance measurement file for performance management. The M2000 provides a convenient and comprehensive operation environment. This enables you to carry out performance management for the entire network as needed. With the performance management provided by the M2000, you can create, modify, query a performance measurement task and manage the measurement results. The information collected from performance measurement is a very important reference for performance assessment and network optimization.
6.2.4 Alarm Management

The alarm management of the PDSN9660 is implemented by the LMT and the centralized alarm management system of the M2000. The PDSN9660 sends the alarm information to the LMT or the M2000, and saves the alarm information in alarm files. The PDSN9660 collects the alarm information and divide the information by type and severity. After this processing, the PDSN9660 sends the alarm information to the LMT or the M2000. The LMT or M2000 displays the alarm information in GUI, providing the location, cause, and troubleshooting suggestions.
Page 35 of 53
6.2.5 Log Management

Based on the contents, the log can be divided into user operation log and system operation log. The former records information such as user name, commands executed, execution time and so on for the convenience of fault analysis and responsibility division. The latter records some state information during system operation for the convenience of system maintenance and fault locating. The system also provides the User Operation Log query function.
Page 36 of 53
Chapter 7 Technical Specifications

The chapter describes the following technical specifications of the PDSN9660: System Performance Physical and Electrical Specifications Reliability Specifications Compliant Safety Standards EMC Specifications Environmental Requirements
7.1 System Performance

Table 7-1 lists the system performance specifications of the PDSN9660. Table 7-1 PDSN9660 system performance specifications Item Maximum number of registered subscribers acceptable at the same time Number of PPP connections for packet data service Number of PPP connections can be activated at the same time for packet data service Packet data throughput 300,000 The PDSN supports up to three pairs of SPUs. Each pair supports up to 100,000 subscribers. 300,000 The PDSN supports up to three pairs of SPUs. Each pair supports up to 100,000 links. 300,000 The PDSN supports up to three pairs of SPUs. Each pair supports to the activation of up to 100,000 connections. 3 Gbit/s 600 Mbit/s IPSec throughput The PDSN supports up to three pairs of SPUs. Each pair supports up to 200 Mbit/s of throughput. 300,000 Number of MIP subscribers The PDSN supports up to three pairs of SPUs. Each pair supports up to 200 Mbit/s of throughput. 1,000,000 PPS 1,000 4,000
Page 37 of 53
Performance
Packet transfer capacity Number of domains Number of GRE VPN tunnels

PDSN9660 Product Description Item Number of L2TP tunnels Number of IPSec tunnels 6,000 5,000 Performance
7.2 Physical and Electrical Specifications

Table 7-2 lists the physical and electrical specifications of the PDSN9660. Table 7-2 Physical and electrical specifications of the PDSN9660 Item Cabinet Dimensions Total weight Weight capacity of floor Power input Power consumption Low-End Sun Solution N68-22 cabinet H: 2,200 mm W: 600 mm D: 800 mm 300 kg > 600 kg/m
2
48 V (40 V to 60 V) < 1,400 W (FE networking) < 1,600 W (GE networking) 65 dBA (The actual temperature.) noise depends on the
SPL noise
7.3 Reliability Specifications

Table 7-3 lists the reliability specifications of the PDSN9660. Table 7-3 Reliability specifications of the PDSN9660 Item System repair rate Availability Mean time between failures (MTBF) Mean time to repair (MTTR), excluding the time spent on journey Annual mean failure time
Specification 3% 99.999% 461,000 hours 1 hour < 5 minutes

Page 38 of 53
PDSN9660 Product Description Item Board switchover time Board restart time System restart time Start time from system power-on to service-ready Specification < 6 seconds < 9 minutes < 15 minutes < 12 minutes
7.4 Compliant Safety Standards

The PDSN9660 meets the following safety standards: UL1950 CE Mark CUL/CSA 22.2 NO 950M93 IEC950 TUV EN60950
7.5 EMC Specifications

The PDSN9660 meets the following Electromagnetic Compatibility (EMC) standards: EN300386-2 EN55022 EN50082-1 EN61000-3-2 EN61000-3-3
7.6 Environmental Requirements

Environmental requirements include the requirements for the storage, transportation, and operation of the equipment. The environmental requirements comply with the following two standards: ETS 300019: Equipment Engineering (EE), Environmental Conditions and Environmental Tests for Telecom Equipment IEC 60721: Classification of Environmental Conditions
7.6.1 Storage Environment

This section describes the climatic, waterproof, biological, air purity, and mechanical stress requirements for equipment storage.
Page 39 of 53
I. Climatic Requirements
Table 7-4 lists the climatic requirements for equipment storage. Table 7-4 Climatic requirements for equipment storage Item Temperature Temperature change rate Relative humidity Altitude Air pressure Solar radiation Heat radiation Wind speed 40C to + 70C 1 C/min 8% to 100% 5,000 m 70 kPa to 106 kPa 1,120 W/s 600 W/s 30 m/s
o
Range
II. Waterproof Requirements

The equipment is usually stored in a room where: There is no water on the ground. No water (such as water from auto fire-fighting devices and air-conditioner) may damage the package. If the equipment has to be placed outdoor, make sure that: The package is intact. Waterproof measures are applied to prevent rain from entering the package. There is no water on the ground, and water cannot enter the package. The package is not exposed to direct sunlight.
III. Biological Requirements

Ensure that the place for equipment storage is free of: Fungus or mildew Rodents such as rats
IV. Air Purity Requirements

The air should be free from explosive, conductive, magnetic conductive or corrosive dust. The density of physically active materials must comply with the requirements listed in Table 7-5.
PDSN9660 Product Description Table 7-5 Requirements for physically active materials in storage environment Physically Active Material Suspending dust Falling dust Sand mg/m mg/mh mg/m Unit 5.00 20.0 300 Density
Note: Suspending dust: Diameter 75 m Falling dust: 75 m Diameter 150 m Sand: 150 m Diameter 1,000 m
The density of chemically active materials must comply with the requirements listed in Table 7-6. Table 7-6 Requirements for chemically active materials in storage environment Chemically Active Material SO2 H2S NO2 NH3 Cl2 HCl HF O3 mg/m mg/m mg/m mg/m mg/m mg/m mg/m mg/m Unit 0.30 0.10 0.50 1.00 0.10 0.10 0.01 0.05 Density
V. Mechanical Stress Requirements

Table 7-7 lists the mechanical stress that the equipment can endure during storage. Table 7-7 Requirements for mechanical stress in storage environment Item Offset Sinusoidal vibration Accelerated speed Frequency range Sub-Item 7.0 mm None 2 Hz to 9 Hz Range None 20.0 m/s 9 Hz to 200 Hz
Page 41 of 53
PDSN9660 Product Description Item Unsteady impact Sub-Item Impact response spectrum II Static payload 250 m/s 5 kPa Range
Note: Impact response spectrum: The maximum acceleration response curve generated by the equipment under specified impact excitation. Impact response spectrum II means that the duration of semi-sine impact response spectrum is 6 ms. Static payload: The capability of the equipment in package to bear the pressure from the top in normal pile-up method.
7.6.2 Transportation Environment

This section describes the climatic, waterproof, biological, air purity, and mechanical stress requirements for equipment transportation.
Table 7-8 lists the climatic requirements for equipment transportation. Table 7-8 Climatic requirements for equipment transportation Item Altitude Air pressure Temperature Temperature change rate Humidity Solar radiation Heat radiation Wind speed 5,000 m 70 kPa to 106 kPa 40C to + 70C 3C/min 50% to 100% 1,120 W/s 600 W/s 30 m/s Range
II. Waterproof Requirements

Before transporting the equipment, make sure that: The package is intact. Waterproof measures are applied to prevent rain water from entering the package. There is no water inside the transportation vehicle.
III. Biological Requirements

Ensure that the vehicle is free of: Fungus or mildew Rodents such as rats
IV. Air Purity Requirements

The air should be free from explosive, conductive, magnetic conductive or corrosive dust. The density of physically active materials must comply with the requirements listed in Table 7-9. Table 7-9 Requirements for physically active materials in transportation environment Physically Active Material Suspending dust Falling dust Sand mg/m mg/mh mg/m Unit Density No requirement 3.0 100
Note: Suspending dust: Diameter 75 m Falling dust: 75 m Diameter 150 m Sand: 150 m Diameter 1,000 m
The density of chemically active materials must comply with the requirements listed in Table 7-10. Table 7-10 Requirements for chemically active materials in transportation environment Chemically Active Material SO2 H2S NO2 NH3 Cl2 HCl HF O3 mg/m mg/m mg/m mg/m mg/m mg/m mg/m mg/m Unit 0.30 0.10 0.50 1.00 0.10 0.10 0.01 0.05 Density
Page 43 of 53
V. Mechanical Stress Requirements

Table 7-11 lists the mechanical stress that the equipment can endure during transportation. Table 7-11 Requirements for mechanical stress in transportation environment Item Sub-item Offset Sinusoidal vibration Accelerated speed Frequency range Spectrum density of accelerated speed Frequency range Impact response spectrum II Static payload 7.5 mm 2 Hz to 9 Hz 20.0 m/s 9 Hz to 200 Hz Range 40.0 m/s 200 Hz 500 Hz to
Random vibration
10 m/s
3 m/s
1 m/s
2 Hz to 9Hz
9 Hz to 200 Hz
200 Hz 500 Hz
to
Unsteady impact
300 m/s 10 kPa
7.6.3 Operation Environment

This section describes the climatic, waterproof, biological, air purity, and mechanical stress requirements for equipment operation.
Table 7-12 and Table 7-13 list the climatic requirements for equipment operation. Table 7-12 Requirements for temperature and humidity in operation environment Temperature Normal Safe Relative Humidity Normal Safe
Page 44 of 53
PDSN9660 Product Description Temperature 15C to 30C 0C to 45C Relative Humidity 40% to 75% 20% to 90%
Note: The values are measured 1.5 m above the floor and 0.4 m in front of the equipment, without protective panels in front of or behind the cabinet. Safe operation refers to continuous operation for no more than 48 hours or accumulated operation of no more than 15 days in a year.
Table 7-13 Requirements for other climatic factors in operation environment Item Altitude Air pressure Temperature change rate Solar radiation Heat radiation Wind speed 4,000 m 70 kPa to 106 kPa 3C/min 700 W/m 600 W/m 1 m/s Range
II. Biological Requirements

Ensure that the place for equipment operation is free of: Fungus or mildew Rodents such as rats
III. Air Purity Requirements

The air should be free from explosive, conductive, magnetic conductive or corrosive dust. The density of physically active materials must comply with the requirements listed in Table 7-14. Table 7-14 Requirements for physically active materials in operation environment Physically Active Material Dust particles Unit Particles/ m 3 x 10
4
Density
(Visible dust should not accumulate on the desktop within three days)
Page 45 of 53
PDSN9660 Product Description Physically Active Material Unit Density
Note: Dust particles: Diameter 5 m
The density of chemically active materials must comply with the requirements listed in Table 7-15. Table 7-15 Requirements for chemically active materials in operation environment Chemically Active Material SO2 H2S NH3 Cl2 mg/m mg/m mg/m mg/m Unit 0.20 0.006 0.05 0.01 Density
IV. Mechanical Stress Requirements

Table 7-16 lists the mechanical stress that the equipment can endure during operation. Table 7-16 Requirements for mechanical stress in operation environment Item Offset Sinusoidal vibration Accelerated speed Frequency range Unsteady impact Impact response spectrum II Static payload Sub-item 3.5 mm 2 Hz to 9 Hz 100 m/s 0 Range 10.0 m/s 9 Hz to 200 Hz
Page 46 of 53
Chapter 8 Installation
This chapter describes the installation of the PDSN9660 from the following aspects: System Installation System Expansion and Upgrade
8.1 System Installation

The PDSN9660 system is assembled in the factory. Before delivery, all internal cables of cabinets are connected and the system is pre-commissioned based on the site conditions. On site, engineers only need to install cabinets, insert boards, and connect minicomputers and external cables to cabinets according to the instructions in the installation manual. Interfaces for external cables, such as power cables, transmission cables, and signal cables, are on the top of the cabinet with remarkable silk-screen marks. Before delivery, the software of the PDSN9660 is installed and parameters are set based on site configuration. After the hardware is installed, the system is ready to operate upon power-on. All these efforts save installation time on site, enabling operators to build networks and to deliver services relatively quickly.
8.2 System Expansion and Upgrade

I. System Expansion
The PDSN9660 supports two modes of capacity expansion without interrupting ongoing services. Software capacity expansion As the service traffic grows, the system may need expansion. To do so, the carrier only needs to buy a license file. Loading the license file into the system will expand the system capacity. Such a way of capacity expansion does not interrupt ongoing services. Hardware capacity expansion A PDSN9660 subrack admits up to three pairs of SPUs. Adding more SPUs can expand the system capacity. The SPU is hot swappable; thus capacity expansion does not interrupt ongoing services.
Page 47 of 53
II. System Upgrade

Switching over the active and the standby boards and upgrading these boards separately can also upgrade the PDSN9660 system without interrupting ongoing services or changing the original data configuration.
Page 48 of 53
Appendix Acronyms and Abbreviations

3GPP2 3rd Generation Partnership Project 2
A AAA AC ACL AES AH Authentication, Authorization and Accounting Authentication Center Access Control List Advanced Encryption Standard Authentication Header
B BAM BGP BSC BSS Back Administration Module Border Gateway Protocol Base Station Controller Base Station Subsystem
C CDMA CHAP CPU Code Division Multiple Access Challenge Handshake Authentication Protocol Central Processing Unit
D DC DES DPS DPT DSCP Direct Current Data Encryption Standard Dispatcher Server Dispatcher DiffServ Code Point
E EIA
Electronics Industry Association

Page 49 of 53
PDSN9660 Product Description EMC ESP ETS Electromagnetic Compatibility Encapsulating Security Payload European Telecommunication Standards
F FA FE FTP Foreign Agent Fast Ethernet File Transfer Protocol
G GB GE GLMS GMSC GRE GUI Gigabit Gigabit Ethernet Group and List Management Server Gateway Mobile Switching Center Generic Routing Encapsulation Graphic User Interface
H HA HDLC HLR Home Agent High level Data Link Control Home Location Register
I IEC IETF IKE IMSI IP IPSec ISDN IS-IS ISUP International Electro Commission Internet Engineering Task Force Internet Key Exchange International Mobile Subscriber Identity Internet Protocol IP Security Protocol Integrated Services Digital Network Intermediate System-to-Intermediate System ISDN User Part
Page 50 of 53
PDSN9660 Product Description ITU-T International Telecommunication Standardization Sector Union Telecommunication
L L2TP LAC LAN LIG LMT LPU LSP LZS Layer 2 Tunneling Protocol L2TP Access Concentrator Local Area Network Lawful Interception Gateway Lifecycle Management Team; Local Maintenance Terminal Line interface Processing Unit Label Switching Path Lempel-Ziv Stacker compression algorithm
M MAP MC MD5 MDN MIN MIP MML MPLS MPPC MRTIE MS MSC MTBF MTTR MVPN Mobile Application Part Message Center Message Digest 5 Mobile Directory Number Mobile Identification Number Mobile IP Man-Machine Language Multi-Protocol Label Switching Microsoft Point-to-Point Compression Maximum Relative Time Interval Error Mobile Station Mobile Switching Center Mean Time Between Failure Mean Time To Repair Mobile Virtual Private Network
N NAT NMS
Network Address Translation Network Management System

Page 51 of 53
PDSN9660 Product Description NP NTP Network Processing Network Time Protocol
O OAM OMC OSPF Operation, Administration and Maintenance Operation & Maintenance Center Open Shortest Path First
P PAP PCF PDN PDSN PIN PLMN PPP PPS PSTN Password Authentication Protocol Packet Control Function Public Data Network Packet Data Serving Node Personal Identification Number Public Land Mobile Network Point-to-Point Protocol Prepaid Service Public Switched Telephone Network
Q QoS Quality of Service
R RADIUS RAN RFC RIP R-P Remote Authentication Dial in User Service Radio Access Network Request for Comments Routing Information Protocol RN-PDSN
S SAU SCP SDH

Signaling Access Unit Service Control Point Synchronous Digital Hierarchy

Page 52 of 53
PDSN9660 Product Description SHA SMT SNMP SPU SRU SSP Secure Hash Algorithm Service Maintenance Terminal Simple Network Management Protocol Service Processing Unit Switch Routing Unit Service Switching Point
T TCP TIA ToS TUP Transport Control Protocol Telecommunications Industry Association Type of Service Telephone User Part
U UDR UI USR Usage Data Record Unit interval Universal Switching Router
V VLR VPN VRF VRP Visitor Location Register Virtual Private Network Virtual Route Forward Versatile Routing Platform
W WAP WWW Wireless Application Protocol World Wide Web
Page 53 of 53

HUAWEI PDSN9660 V800R005 Product Description

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

HUAWEI PDSN9660 V800R005 Product Description

Uploaded by

Copyright:

Available Formats

PDSN9660 Product Description

HUAWEI PDSN9660 Packet Data Serving Node Product Description

Huawei Technologies Co., Ltd.

Copyright 2007 Huawei Technologies Co., Ltd. All Rights Reserved.

PDSN9660 Product Description

PDSN9660 Product Description

Chapter 1 Introduction to the PDSN

1.1 Functions of the PDSN

1.2 Position of the PDSN in the CDMA Network

PDSN9660 Product Description

Mobile Switching Center (MSC)

Visitor Location Register (VLR)

Intelligent Peripheral (IP)

Home Location Register (HLR)/Authentication Center (AC)

Message Center (SMC)

Home Agent (HA)

Authentication, Authorization Accounting (AAA)

Trunk Switching (TSC)

iGateway Bill (iGWB)

Dispatcher Server (DPS)

Service Maintenance Terminal (SMT)

1.3 Interfaces of the PDSN

3GPP2 A.S0001-A and 3GPP2 P.S0001-B

PDSN9660 Product Description

Chapter 2 Product Features

2.1 Carrier-Class Platform

2.2 High Reliability

2.3 High Security

2.4 High Capacity

2.5 Customizable O&M System

PDSN9660 Product Description

I. Diversified Management Methods

II. User-Friendly Graphic Interface

III. Tracing Functions

IV. Customizable Performance Measurement Functions

PDSN9660 Product Description

VI. Real-Time Fault Management

VII. Comprehensive Online Help

PDSN9660 Product Description

Chapter 3 System Structure

PDSN9660 Product Description

PDSN9660 Product Description

PDSN9660 subrack (18 U)

PDSN9660 Product Description

PDSN9660 subrack (18 U)

PDSN9660 Product Description

PDSN9660 Product Description

PDSN9660 Product Description

PDSN9660 Product Description

Chapter 4 Services and Functions

4.2 R-P Interface and Multiple Service Instance

4.3 Simple IP and Mobile IP

PDSN9660 Product Description

4.3.3 MIP Agent

4.4 Foreign Agent

4.7 Mobile VPN

PDSN9660 Product Description

II. L2TP VPN

III. GRE VPN

Figure 4-1 PDSN9660 creates a VPN with the GRE

4.8 Security Policy

4.8.1 Protocol Security Authentication

4.8.3 Packet Filtering and ACL