IR.40 - Guidelines for IP Addressing and AS Numbering for GRX/IPX ...
IR.40 - Guidelines for IP Addressing and AS Numbering for GRX/IPX ...
IR.40 - Guidelines for IP Addressing and AS Numbering for GRX/IPX ...
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
<strong>IR.40</strong> - <strong>Guidelines</strong> <strong>for</strong> <strong>IP</strong> <strong>Addressing</strong> <strong>and</strong> <strong>AS</strong> <strong>Numbering</strong> <strong>for</strong><br />
<strong>GRX</strong>/<strong>IP</strong>X Network Infrastructure <strong>and</strong> User Terminals<br />
5.0<br />
30 December 2010<br />
This is a binding/non-binding permanent reference document of the GSM Association.<br />
Security Classification – NON-CONFIDENTIAL GSMA Material<br />
Copyright Notice<br />
Copyright © 2010 GSM Association<br />
Antitrust Notice<br />
The in<strong>for</strong>mation contain herein is in full compliance with the GSM Association’s antitrust compliance policy.<br />
V5.0 Page 1 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Table of Contents<br />
1 Introduction .............................................................................................4<br />
1.1 Overview .............................................................................................4<br />
1.2 Scope ..................................................................................................4<br />
1.3 Definition of Acronyms <strong>and</strong> Abbreviations ..........................................5<br />
1.4 Definition of Terms ..............................................................................7<br />
1.5 Document Cross-References ..............................................................7<br />
2 General guidelines ..................................................................................8<br />
3 <strong>IP</strong> <strong>Addressing</strong> policy guidelines <strong>for</strong> <strong>GRX</strong>/<strong>IP</strong>X Network Infrastructure9<br />
3.1 General requirements .........................................................................9<br />
3.2 Policy guideline details .......................................................................9<br />
3.2.1 <strong>Addressing</strong> <strong>for</strong> <strong>IP</strong>X/<strong>GRX</strong> network infrastructure ..................................9<br />
3.2.2 Utilising existing assigned public address space ................................9<br />
3.2.3 Requesting new Public address space ............................................. 10<br />
3.2.4 Notification of infrastructure address assignment to GSMA .............. 10<br />
3.2.5 Notification of infrastructure address assignment to <strong>GRX</strong>/<strong>IP</strong>X Provider(s)<br />
10<br />
3.3 Guidance notes ................................................................................. 10<br />
3.3.1 LIR registration .................................................................................. 10<br />
3.3.2 Requesting Public <strong>IP</strong> address space ................................................ 11<br />
4 <strong>AS</strong>N guidelines <strong>for</strong> Network Infrastructure ........................................ 11<br />
4.1 General requirements ....................................................................... 11<br />
4.2 <strong>AS</strong>N range ........................................................................................ 11<br />
4.3 Policy guideline details ...................................................................... 11<br />
5 <strong>IP</strong>v4 <strong>Addressing</strong> Policy guidelines <strong>for</strong> User Terminals ..................... 12<br />
5.1 General requirements ....................................................................... 12<br />
5.2 <strong>IP</strong> <strong>Addressing</strong> <strong>for</strong> GPRS/UMTS ........................................................ 13<br />
5.2.1 Overview ........................................................................................... 13<br />
5.2.2 GPRS/UMTS Access Point Name (APN) .......................................... 14<br />
5.2.3 Address assignment responsibilities ................................................. 14<br />
5.2.4 <strong>IP</strong> <strong>Addressing</strong> strategy ...................................................................... 15<br />
5.2.5 Summary of Services ........................................................................ 16<br />
5.2.6 Terminal Limitations .......................................................................... 16<br />
5.2.7 Detailed Description of Services ....................................................... 16<br />
5.2.8 MT Public Address Space request <strong>and</strong> approval guideline details.... 17<br />
5.2.9 MT <strong>IP</strong>v4 addressing guidelines <strong>for</strong> GPRS Roaming services ........... 19<br />
5.3 IMS/S<strong>IP</strong> <strong>IP</strong> <strong>Addressing</strong> ..................................................................... 19<br />
V5.0 Page 2 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
5.3.1 Overview ........................................................................................... 19<br />
5.3.2 <strong>IP</strong> Traffic from a UT ........................................................................... 20<br />
5.3.3 M<strong>and</strong>atory Policy <strong>for</strong> UT <strong>IP</strong> Address Ranges .................................... 20<br />
6 Annex A: Internet Registry System ..................................................... 20<br />
6.1 Overview ........................................................................................... 20<br />
6.2 ICANN ............................................................................................... 21<br />
6.3 Address Supporting Organisation (<strong>AS</strong>O) .......................................... 21<br />
6.4 Regional Internet Registry (RIR) ....................................................... 22<br />
6.5 National Internet Registries ............................................................... 23<br />
6.6 Delegated Registries ......................................................................... 23<br />
6.7 Local Internet Registries ................................................................... 23<br />
6.8 End Users ......................................................................................... 23<br />
7 Annex B: RIR Public <strong>IP</strong> address request web links ........................... 24<br />
8 Annex C: <strong>IP</strong> addressing factors <strong>for</strong> GPRS/UMTS services using <strong>IP</strong>v4<br />
addressing ...................................................................................................... 25<br />
8.1 Introduction ....................................................................................... 25<br />
8.2 Version of <strong>IP</strong> addresses .................................................................... 25<br />
8.3 Public/Private addressing ................................................................. 26<br />
8.3.1 Address management <strong>and</strong> general use ............................................ 26<br />
8.3.2 Benefits of Private addressing .......................................................... 26<br />
8.3.3 Disadvantages of Private addressing ................................................ 27<br />
8.4 Con<strong>for</strong>mance to RIR policies ............................................................ 27<br />
8.5 PDP contexts .................................................................................... 28<br />
8.6 The Access Point Name (APN) ......................................................... 28<br />
8.7 Static <strong>and</strong> Dynamic addressing ......................................................... 29<br />
8.8 Network Address Translation (NAT) ................................................. 29<br />
8.8.1 Overview ........................................................................................... 29<br />
8.8.2 NAT limitations .................................................................................. 29<br />
9 Annex D - Examples of Network designs <strong>for</strong> GPRS/UMTS services 30<br />
9 ....................................................................................................................... 38<br />
10 Document Management ....................................................................... 38<br />
10.2 Other In<strong>for</strong>mation .............................................................................. 41<br />
V5.0 Page 3 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
1 Introduction<br />
1.1 Overview<br />
The <strong>GRX</strong> Network was first established in 2000 <strong>for</strong> the purpose of GPRS roaming <strong>and</strong> only<br />
GSM operators were allowed to connect to it. Since then other services have been added<br />
such as UMTS roaming <strong>and</strong> MMS interworking.<br />
With the development of IMS <strong>and</strong> S<strong>IP</strong>-related services the GSMA has recognised the need<br />
to involve organisations outside the GSM/UMTS community <strong>and</strong> has facilitated the <strong>GRX</strong><br />
network evolving into the <strong>IP</strong>X concept. Organisations outside the GSMA membership will be<br />
allowed to connect <strong>for</strong> the purpose of IMS/S<strong>IP</strong> interworking <strong>and</strong> other similar services. This<br />
document has been updated to reflect the fact that non-GSM organisations may connect to<br />
the <strong>IP</strong>X. Terminology has also been changed:<br />
• an organisation connecting to the <strong>IP</strong>X network is known as a “Service Provider”.<br />
• the term “User Terminal” is now used in place of “Mobile Terminal” where<br />
appropriate.<br />
All organisations connected to the <strong>IP</strong>X network, irrespective of whether they are GSM<br />
operators or not, will need to adhere to a common set of <strong>IP</strong> addressing rules <strong>and</strong> related<br />
guidelines that are described in this document.<br />
The GSMA worked closely with the all the RIR communities (R<strong>IP</strong>E NCC, ARIN <strong>and</strong> APNIC)<br />
to develop <strong>and</strong> produce the early versions of this document. This was essential to help<br />
ensure that the proposed guidelines to the Service Providers associated with requesting<br />
<strong>and</strong> implementing Public addresses are aligned with the existing policies <strong>and</strong> procedures of<br />
the RIR community.<br />
Annex A provides an overview on the Internet Registry System <strong>and</strong> its hierarchical<br />
architecture, ranging from the overall co-ordinating body (ICANN) to the end user.<br />
Annex B identifies some useful web links <strong>for</strong> each RIR associated with their services <strong>and</strong><br />
Public <strong>IP</strong> address request policies <strong>and</strong> procedures.<br />
This document is produced <strong>and</strong> maintained by the GSMA. However, unlike other documents<br />
produced by this organisation, its intended readership extends beyond its members to also<br />
include the RIR community. Hence the style <strong>and</strong> language used in this document has<br />
attempted to accommodate this wider audience wherever possible.<br />
The respective party can submit any changes/comments to this document as follows:-<br />
• GSMA members: mailto:iregpacket@infocentre.gsm.org (using existing change<br />
request procedures)<br />
• RIRs: via the authors of this document or directly to the GSMA via the GSM World<br />
web site mailto:info@gsmworld.com.<br />
It should be noted that this document been assigned an "Unrestricted" classification so that<br />
it can be distributed within the Public Domain. This document will be made available on the<br />
Public GSM World web site http://www.gsmworld.com/about/index.html.<br />
1.2 Scope<br />
This document provides addressing-related guidelines to organisations wishing to connect<br />
to the <strong>GRX</strong> network <strong>and</strong> its successor, the <strong>IP</strong>X. It covers the following areas related to<br />
addressing: -<br />
1. <strong>IP</strong>v4 addressing <strong>for</strong> the GPRS <strong>and</strong> UMTS network infrastructure<br />
2. Network infrastructure <strong>for</strong> other <strong>IP</strong>X network services such as MMS <strong>and</strong><br />
IMS/S<strong>IP</strong>.<br />
V5.0 Page 4 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
3. Autonomous System (<strong>AS</strong>) <strong>Numbering</strong> of the <strong>IP</strong> network associated with a<br />
Service Provider’s network infrastructure<br />
4. <strong>IP</strong>v4 addressing <strong>for</strong> User Terminals (UTs)<br />
These guidelines describe how Service Providers can request <strong>IP</strong>v4 addresses <strong>and</strong><br />
Autonomous System Numbers (<strong>AS</strong>N) <strong>for</strong> use with their networks using procedures that are<br />
aligned with the Internet Registry System <strong>and</strong> the GSM Association (GSMA).<br />
In association with item 4 above, some guidelines are also provided <strong>for</strong> consideration by the<br />
Regional Internet Registry (RIR) communities to assist with their existing procedures <strong>for</strong><br />
processing Public <strong>IP</strong>v4 address space requests received from Service Providers.<br />
<strong>IP</strong>v6 addressing is not currently in the scope of this document. However, the generic<br />
guideline principles presented in this document can still be extended <strong>and</strong> applied.<br />
Administration <strong>and</strong> Governance procedures <strong>for</strong> the <strong>IP</strong>X network are being established. For<br />
the time being these new procedures are out of scope <strong>and</strong> this document refers throughout<br />
to the GSMA.<br />
The above items will be brought into the scope of this document at a later stage.<br />
1.3 Definition of Acronyms <strong>and</strong> Abbreviations<br />
Acronym /<br />
Abbreviation<br />
Description<br />
AfriNIC African Network In<strong>for</strong>mation Centre<br />
APN Access Point Name<br />
APNIC Asia Pacific Network In<strong>for</strong>mation Centre<br />
ARIN American Registry <strong>for</strong> Internet Numbers<br />
<strong>AS</strong> Autonomous System<br />
<strong>AS</strong>N Autonomous System Number<br />
<strong>AS</strong>O Address Supporting Organisation<br />
<strong>AS</strong>P Application Service Provider<br />
BGP Border Gateway Protocol<br />
DNS Domain Name System<br />
DR Delegated Registry<br />
FNO Fixed Network Operator<br />
GGSN Gateway GPRS Support Node<br />
GPRS General Packet Radio Service<br />
<strong>GRX</strong> GPRS Roaming eXchange<br />
HPLMN Home PLMN<br />
IANA Internet Assigned Number Authority<br />
V5.0 Page 5 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Acronym /<br />
Abbreviation<br />
Description<br />
ICANN Internet Corporation <strong>for</strong> Assigned Names <strong>and</strong> Numbers<br />
IETF Internet Engineering Task Force<br />
<strong>IP</strong> Internet Protocol<br />
IR Internet Registry<br />
ISP Internet Service Provider<br />
LACNIC Latin American Continent Network In<strong>for</strong>mation Centre<br />
LAN Local Area Network<br />
LIR Local Internet Registry<br />
MoU Memor<strong>and</strong>um of Underst<strong>and</strong>ing<br />
MT Mobile Terminal<br />
NAT Network Address Translation<br />
NIR National Internet Registry<br />
PC Personal Computer<br />
PDN Packet Data Network<br />
PDP Packet Data Protocol<br />
PLMN Public L<strong>and</strong> Mobile Network<br />
PRD Permanent Reference Document<br />
R<strong>IP</strong>E NCC Réseaux <strong>IP</strong> Européens Network Coordination Centre<br />
RFC Request <strong>for</strong> Comments<br />
RIR Regional Internet Registry<br />
SGSN Serving GPRS Support Node<br />
SSL Secure Socket Layer (protocol)<br />
UT User Terminal<br />
VLSM Variable Length Subnet Mask<br />
VPLMN Visited PLMN<br />
WAP Wireless Access Protocol<br />
WTLS Wireless Transport Layer Security<br />
V5.0 Page 6 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
1.4 Definition of Terms<br />
Term Description<br />
Public<br />
Address<br />
Private<br />
Address<br />
Service<br />
Provider<br />
PLMN<br />
Operator<br />
Registered <strong>IP</strong>v4 address [12].<br />
Unregistered <strong>IP</strong>v4 address [5].<br />
A business entity entering into a contractual relationship with one or more <strong>IP</strong>X<br />
provider(s). Thus, "Service Provider" includes MNOs, FNOs (<strong>for</strong> example, fixed<br />
broadb<strong>and</strong> operators <strong>and</strong> NGNs), ISPs, <strong>AS</strong>Ps <strong>and</strong> so on.<br />
A mobile network operator offering GPRS / UMTS services. This term is used where<br />
the document applies specifically to this type of operator <strong>and</strong> not to the more<br />
general "Service Provider".<br />
<strong>IP</strong>X Provider A business entity (such as an <strong>IP</strong> Carrier) offering <strong>IP</strong> interconnect capability <strong>for</strong> one<br />
or many <strong>IP</strong>X Services compliant with the <strong>IP</strong>X requirements.<br />
1.5 Document Cross-References<br />
Ref<br />
Document<br />
Number<br />
Title<br />
1 N/A Ripe-185: European Internet Registry Policies <strong>and</strong> Procedures;<br />
R<strong>IP</strong>E Local Internet Registry Working Group<br />
http://www.ripe.net/docs/ripe-185.html<br />
2 IETF RFC 1930 "<strong>Guidelines</strong> <strong>for</strong> creation, selection <strong>and</strong> registration of an<br />
Autonomous System"<br />
3 GSMA PRD IR.21 "GSMA roaming database, structure <strong>and</strong> updating procedures"<br />
4 GSMA PRD IR.34 "Inter-Service Provider <strong>IP</strong> Backbone <strong>Guidelines</strong>"<br />
5 IETF RFC 1918 Address allocation <strong>for</strong> Private Internets<br />
6 3GPP TS 23.060 General Packet Radio Service (GPRS); Service description; Stage<br />
2<br />
7 N/A OMA WAP related specifications:<br />
8 GSMA PRD IR.33 GPRS Roaming <strong>Guidelines</strong><br />
Wireless Application Protocol Push Architectural Overview<br />
Wireless Application Protocol Push Proxy Gateway Service<br />
Specification<br />
http://www.openmobilealliance.org/Technical/wapindex.aspx<br />
http://www.openmobilealliance.org/tech/affiliates/LicenseAgreeme<br />
nt.asp?DocName=/wap/wap-250-pusharchoverview-20010703a.pdf<br />
http://www.openmobilealliance.org/tech/affiliates/LicenseAgreeme<br />
nt.asp?DocName=/wap/wap-249-ppgservice-20010713-a.pdf<br />
9 IETF RFC 3027 Protocol complications with the <strong>IP</strong> Network Address Translator<br />
V5.0 Page 7 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Document<br />
Ref Title<br />
Number<br />
10 IETF RFC 2993 Architectural implications of NAT<br />
11 3GPP TS 29.061 Interworking between PLMN supporting GPRS PDN<br />
12 IETF RFC 791 Internet Protocol<br />
13 GSMA PRD IR.88 LTE Roaming <strong>Guidelines</strong><br />
2 General guidelines<br />
The guidelines presented in this document are based upon the following two fundamental<br />
requirements:<br />
1. Existing request policies <strong>and</strong> procedures operated by the RIRs must be adhered to<br />
when Service Providers request Public <strong>IP</strong> address space <strong>and</strong> Public <strong>AS</strong>N.<br />
a. Each service provider must individually submit a request <strong>for</strong> Public <strong>IP</strong><br />
address space <strong>and</strong> Public <strong>AS</strong>N in accordance with these policies <strong>and</strong><br />
procedures.<br />
b. Private addresses must be used wherever possible <strong>for</strong> UT addressing where<br />
<strong>IP</strong>v4 addressing is needed.<br />
c. Public addresses are only used <strong>for</strong> UT addressing <strong>for</strong> services where it can<br />
be demonstrated that the use of Private addresses is not feasible or<br />
practical.<br />
d. Public addresses will not be issued <strong>for</strong> purposes that this document has<br />
shown can be supported using Private addresses, unless the requestor can<br />
demonstrate otherwise.<br />
2. Public address space must be conservatively <strong>and</strong> efficiently used<br />
a. Private addressing must be used wherever possible. Public addressing must<br />
only be considered where it is not possible or practical to support Private<br />
addressing.<br />
b. Dynamic <strong>IP</strong> addressing should be deployed wherever possible to conserve<br />
both the Public <strong>and</strong> Private address space available.<br />
c. Wherever possible, utilise any previously assigned spare Public address<br />
space be<strong>for</strong>e requesting new Public addresses.<br />
The following has been agreed between the GSMA <strong>and</strong> the RIR communities in relation to<br />
the guidelines presented in this document above:<br />
1. <strong>IP</strong>v4 addressing guidelines <strong>for</strong> network infrastructure <strong>and</strong> User Terminals:<br />
a. Public addresses are requested from RIRs <strong>for</strong> this purpose using the existing<br />
RIR request policies <strong>and</strong> procedures.<br />
2. <strong>AS</strong>N guidelines:<br />
a. Public (registered) <strong>AS</strong>Ns are requested <strong>for</strong> use in the network infrastructure<br />
using their existing request policies <strong>and</strong> procedures.<br />
b. Private (unregistered) <strong>AS</strong> Numbers can be requested from the GSMA via the<br />
following email address: "as_number@gsm.org".<br />
V5.0 Page 8 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
3 <strong>IP</strong> <strong>Addressing</strong> policy guidelines <strong>for</strong> <strong>GRX</strong>/<strong>IP</strong>X Network<br />
Infrastructure<br />
3.1 General requirements<br />
This section of the document provides guidelines to Service Providers to request <strong>and</strong> use<br />
Public <strong>IP</strong>v4 <strong>and</strong> <strong>IP</strong>v6 addresses <strong>for</strong> their network infrastructure. <strong>Guidelines</strong> covering the<br />
issue <strong>and</strong> use of <strong>IP</strong>v6 addressing is considered work in progress in this version of the<br />
present document.<br />
It is essential that all Service Providers adopt these guidelines <strong>and</strong> adhere to the<br />
procedures <strong>and</strong> processes of the Internet Registry System in order <strong>for</strong> interworking on the<br />
<strong>IP</strong>X network to operate successfully.<br />
These guidelines do not guarantee that a Service Provider will be assigned public <strong>IP</strong><br />
address space. Address space assignment will be assessed on an individual request basis<br />
as per the existing request policies <strong>and</strong> procedures of the Internet Registry System.<br />
Service Providers will have one or more <strong>IP</strong> networks to host their services offered on the<br />
<strong>IP</strong>X network, whether GPRS/UMTS roaming, IMS/S<strong>IP</strong>, MMS etc.<br />
GSMA PRD IR.34 [4] provides further technical details on the <strong>IP</strong>X network.<br />
Each <strong>IP</strong>-addressable network element involved in the above services on the <strong>IP</strong>X network<br />
must be uniquely addressed.<br />
When the <strong>GRX</strong> network was first proposed, investigations conducted by the GSMA with the<br />
Internet community identified that Public addresses would provide the most practical<br />
solution to meet its addressing requirements. This addressing solution has been carried<br />
<strong>for</strong>ward as the <strong>GRX</strong> has evolved into the <strong>IP</strong>X.<br />
3.2 Policy guideline details<br />
3.2.1 <strong>Addressing</strong> <strong>for</strong> <strong>IP</strong>X/<strong>GRX</strong> network infrastructure<br />
Public <strong>IP</strong> address space must be used on all network elements involved in the <strong>GRX</strong>/<strong>IP</strong>X<br />
network by Service Providers <strong>and</strong> <strong>IP</strong>X Providers.<br />
Any Public <strong>IP</strong> addresses used on the <strong>IP</strong>X network must not duplicate Public <strong>IP</strong> addresses<br />
used on the public Internet.<br />
Private <strong>IP</strong>v4 address space (as defined in IETF RFC 1918 [5]), rather than Public <strong>IP</strong>v4<br />
address space, can <strong>and</strong> should be used wherever possible within Service Providers' internal<br />
network <strong>and</strong> <strong>IP</strong>X Providers' internal network. This is recommended in order to reduce the<br />
amount of Public <strong>IP</strong>v4 address space required from RIRs. Use of <strong>IP</strong>v6 address space within<br />
the Service Provider's internal network is <strong>for</strong> further study.<br />
3.2.2 Utilising existing assigned public address space<br />
Service Providers may already have Public address space which has previously been<br />
assigned to them. To help conserve the Public address space, wherever possible, service<br />
providers should utilise any such existing address space <strong>for</strong> addressing their network<br />
infrastructure be<strong>for</strong>e requesting new Public addresses <strong>for</strong> this purpose.<br />
Note that if the assignment of Public address space is changed <strong>for</strong> another purpose than it<br />
was originally requested <strong>for</strong>, the details of this change of address usage should be notified<br />
by the Service Provider to the organisation which made the original address allocation. This<br />
could be the LIR, NIR, DR, RIR, or an ISP. In case of any doubt, the RIR should be<br />
in<strong>for</strong>med.<br />
V5.0 Page 9 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
3.2.3 Requesting new Public address space<br />
New Public address space assignment must be requested by Service Providers <strong>and</strong> <strong>IP</strong>X<br />
Providers from the appropriate LIR/NIR/DR using existing procedures supported by its<br />
respective serving RIR.<br />
This document can be used as part of the request submitted by the Service Provider as a<br />
source of reference to help explain the requirement <strong>for</strong> Public address space.<br />
The LIR/NIR/DR selected should be one that is served by one of the three RIRs that is<br />
responsible <strong>for</strong> serving the country of the requesting Service Provider.<br />
The <strong>IP</strong> address space request policies <strong>and</strong> procedures can be obtained from the respective<br />
RIR's home web sites as defined in Annex A.<br />
3.2.4 Notification of infrastructure address assignment to GSMA<br />
It is the Service Provider's responsibility to notify their interconnect/roaming partner Service<br />
Provider(s) of the Public <strong>IP</strong> address range(s) assigned to their network infrastructure <strong>for</strong> all<br />
the <strong>IP</strong> based services they operate on the <strong>GRX</strong>/<strong>IP</strong>X network. This must be done so that the<br />
other Service Provider can configure the appropriate security mechanisms at the edge of<br />
their network.<br />
For Service Providers who are members of the GSMA, GSMA PRD IR.21 [3] should be<br />
used <strong>for</strong> notifying the GSMA <strong>and</strong> other Service Providers of the Public address range(s)<br />
being used by that Service Provider. It is the responsibility the Service Providers to maintain<br />
<strong>and</strong> keep this in<strong>for</strong>mation up to date. Other mechanisms may be used, but these are outside<br />
the scope of the present document.<br />
3.2.5 Notification of infrastructure address assignment to <strong>GRX</strong>/<strong>IP</strong>X Provider(s)<br />
It is the Service Provider's responsibility to notify their <strong>GRX</strong>/<strong>IP</strong>X Provider(s) of the Public <strong>IP</strong><br />
address range(s) assigned to their network infrastructure <strong>for</strong> all the <strong>IP</strong> based services they<br />
operate on the <strong>GRX</strong>/<strong>IP</strong>X network. This must be done so that the <strong>GRX</strong>/<strong>IP</strong>X Provider can<br />
configure the appropriate security mechanisms within their network.<br />
Note that a Service Provider must not include any <strong>IP</strong> address ranges used <strong>for</strong> User<br />
Terminals in the range of infrastructure <strong>IP</strong> addresses notified to the <strong>IP</strong>X Provider(s). This<br />
point is explained more fully in section 5.3.3.<br />
<strong>GRX</strong>/<strong>IP</strong>X Providers must ensure that they do not include routing in<strong>for</strong>mation <strong>for</strong> User<br />
Terminal <strong>IP</strong> address ranges on their networks. This provides an extra layer of security<br />
against attacks initiated from User Terminals.<br />
3.3 Guidance notes<br />
3.3.1 LIR registration<br />
<strong>GRX</strong>/<strong>IP</strong>X network connectivity is normally provided by international data carriers. These<br />
organisations are usually already established as LIRs. Hence, they will already have the<br />
necessary administration in place to process requests <strong>for</strong> Public <strong>IP</strong> addresses from the<br />
Service Providers.<br />
A Service Provider may belong to an organisation that already has an ISP as part of its<br />
constituent, <strong>and</strong> this ISP is likely to be registered as an LIR (or member) of the respective<br />
RIR. In this case, the ISP may be in a position to provide the necessary administration to<br />
process requests <strong>for</strong> Public <strong>IP</strong> addresses from its associated network operator. This may be<br />
V5.0 Page 10 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
the preferred option <strong>for</strong> larger Service Providers. Smaller Service Providers may elect to<br />
request their address space requirements from their <strong>GRX</strong>/<strong>IP</strong>X Provider, or from the ISP<br />
associated with another Service Provider that is registered as an LIR.<br />
3.3.2 Requesting Public <strong>IP</strong> address space<br />
Annex B provides some useful in<strong>for</strong>mation on requesting Public <strong>IP</strong> address space <strong>for</strong> the<br />
different RIRs.<br />
4 Autonomous System Number guidelines <strong>for</strong> Network<br />
Infrastructure<br />
4.1 General requirements<br />
This section of the document provides guidelines to Service Providers to request <strong>and</strong> assign<br />
an Autonomous System Number (<strong>AS</strong>N) to their network infrastructure.<br />
The total <strong>IP</strong> network of a Service Provider connected to the <strong>GRX</strong>/<strong>IP</strong>X Network is considered<br />
as an Autonomous System (<strong>AS</strong>).<br />
Each <strong>AS</strong> may have an associated <strong>AS</strong> Number (<strong>AS</strong>N) to uniquely identify it. This identifier is<br />
used in the routing process to interconnect the <strong>IP</strong> networks of other service providers across<br />
the <strong>IP</strong>X network.<br />
A service provider can elect to use either a Public or a Private <strong>AS</strong>N, the only proviso being<br />
that a Private <strong>AS</strong>N must never be advertised on the Internet.<br />
More in<strong>for</strong>mation on <strong>AS</strong> numbers, mainly oriented towards their use on the Internet is<br />
available in IETF RFC 1930 [2].<br />
4.2 <strong>AS</strong>N range<br />
The <strong>AS</strong>N is defined as a 16 bit integer, hence limited to 65535 unique values.<br />
The Internet Registry System has divided the <strong>AS</strong>N space <strong>for</strong> Public <strong>and</strong> Private uses as<br />
follows:<br />
• Public <strong>AS</strong>N range: 0 through to 64511<br />
• Private <strong>AS</strong> number range: 64512 through to 65535 (i.e. 1024 values)<br />
4.3 Policy guideline details<br />
The following sections describe the policy guidelines <strong>and</strong> provide guidance notes <strong>for</strong><br />
Service Providers to request <strong>and</strong> implement a Public or Private <strong>AS</strong>N <strong>for</strong> their network<br />
infrastructure.<br />
1. The need <strong>for</strong> use of an <strong>AS</strong>N depends on a Service Provider’s connectivity to the<br />
<strong>GRX</strong>/<strong>IP</strong>X network.<br />
• If a Service Provider exchanges routing in<strong>for</strong>mation with one or more <strong>GRX</strong>/<strong>IP</strong>X<br />
Providers, <strong>for</strong> example using BGP, use of an <strong>AS</strong>N is m<strong>and</strong>atory.<br />
• Otherwise use of an <strong>AS</strong>N is optional although there is minimal benefit from using<br />
an <strong>AS</strong>N in this case.<br />
2. A Service Provider can elect to use either a Public <strong>AS</strong>N or a Private <strong>AS</strong>N (as defined<br />
in section 4.2) <strong>for</strong> their network. The following must be noted:<br />
• Private <strong>AS</strong>Ns must not be advertised on the global Internet.<br />
V5.0 Page 11 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• A Service Provider can decide to change their assigned Private <strong>AS</strong>N to a Public<br />
<strong>AS</strong>N (or vice-a-versa) at a later stage if so desired.<br />
• There is no obligation <strong>for</strong> a Service Provider to use a Public <strong>AS</strong>N if a Public <strong>IP</strong><br />
addressing scheme has been deployed in its network i.e. a Private <strong>AS</strong>N can be<br />
assigned to a Service Provider's network even though its network elements have<br />
been assigned Public addresses.<br />
• If the Service Provider already uses an <strong>AS</strong>N on the public Internet, their <strong>AS</strong>N used<br />
on the <strong>GRX</strong>/<strong>IP</strong>X network will normally be the same. If the Service Provider has<br />
multiple <strong>AS</strong>Ns on the public Internet they should re-use one of these on the<br />
<strong>GRX</strong>/<strong>IP</strong>X network.<br />
• Any <strong>AS</strong>N used by a Service Provider must be unique within the <strong>IP</strong>X network.<br />
3. The GSMA will administer the assignment of Private <strong>AS</strong>Ns to its members.<br />
4. A Service Provider can request a Private <strong>AS</strong>N from the GSMA via the following<br />
email address: as_number@gsm.org<br />
5. A Service Provider can request a Public <strong>AS</strong>N from their respective RIR. Details of<br />
the <strong>AS</strong>N request process can be obtained from the home web site of the RIR, as<br />
listed in Annex A.<br />
6. The present document can be used as part of the request submitted by the Service<br />
Provider as a source of reference to help explain the requirement <strong>for</strong> a Public <strong>AS</strong>N.<br />
7. It is the Service Provider's responsibility to notify their interconnect/roaming partner<br />
Service Provider(s) of the <strong>AS</strong>N assigned to their network. For Service Providers who<br />
are members of the GSMA, GSMA PRD IR.21 [3] should be used <strong>for</strong> this purpose. It<br />
is the responsibility the Service Providers to maintain <strong>and</strong> keep this in<strong>for</strong>mation up to<br />
date. Other mechanisms may be used, but these are outside the scope of the<br />
present document.<br />
8. It is the Service Provider's responsibility to notify their <strong>GRX</strong>/<strong>IP</strong>X Provider(s) of the<br />
<strong>AS</strong>N assigned to their network.<br />
9. It is recognised that with the introduction of the <strong>IP</strong>X concept <strong>and</strong> an increased<br />
number of Service Providers wishing to connect, the available stock of private <strong>AS</strong>Ns<br />
is relatively small. Future recommendations in this is area have been identified as an<br />
area <strong>for</strong> further study.<br />
5 <strong>IP</strong>v4 <strong>Addressing</strong> Policy guidelines <strong>for</strong> User Terminals<br />
5.1 General requirements<br />
This section of the document will provide guidelines to Service Providers on <strong>IP</strong>v4<br />
addressing <strong>for</strong> User Terminals (UT).<br />
Service Providers will require <strong>IP</strong> addresses <strong>for</strong> assignment to the UTs. One or more <strong>IP</strong><br />
addresses may be required per UT. The number <strong>and</strong> type of addresses assigned to the UT<br />
will depend upon the capability of the UT <strong>and</strong> the services supported by the Service<br />
Provider. The following types of <strong>IP</strong>v4 address can be used <strong>for</strong> this purpose: -<br />
• Public address space<br />
• Private address space<br />
It is recognised that it will not be possible to assign every UT with a Public <strong>IP</strong>v4 address as<br />
this would exhaust the available supply. Service Providers must share the responsibility <strong>for</strong><br />
applying the guidelines presented in this document to ensure that the available Public<br />
address space is used conservatively <strong>and</strong> efficiently in accordance with the policies laid out<br />
V5.0 Page 12 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
by the RIRs. The GSMA there<strong>for</strong>e recommends that Service Providers adopt the following<br />
general policy: -<br />
• Private <strong>IP</strong>v4 addresses are used wherever possible <strong>for</strong> UT addressing where <strong>IP</strong>v4<br />
addressing is needed.<br />
• Public <strong>IP</strong>v4 addresses are only used <strong>for</strong> UT addressing <strong>for</strong> services where it can be<br />
demonstrated that the use of Private <strong>IP</strong>v4 addresses is not feasible or practical.<br />
Service Providers will be responsible <strong>for</strong> submitting their own request(s) <strong>for</strong> Public <strong>IP</strong>v4<br />
address space to the appropriate Internet Registry. These requests should be in<br />
accordance with the existing policies <strong>and</strong> procedures of the relevant RIR.<br />
5.2 <strong>IP</strong> <strong>Addressing</strong> <strong>for</strong> GPRS/UMTS<br />
This section applies to PLMN operators only.<br />
5.2.1 Overview<br />
All GPRS/UMTS User Terminals (UTs) require an <strong>IP</strong> address in order to connect to the<br />
desired packet data network, e.g. Internet or corporate LAN. If a UT can support more than<br />
one simultaneous active connection, then one <strong>IP</strong> address will be required <strong>for</strong> each of these<br />
connections. The <strong>IP</strong> address(es) will be assigned to the UT <strong>for</strong> at least the duration the<br />
connection is maintained.<br />
For simplicity, the descriptions in this document assume a single <strong>IP</strong> address is assigned to<br />
the UT device. In reality, the <strong>IP</strong> address will be assigned to each activated Packet Data<br />
Protocol (PDP) context established by the UT <strong>and</strong> not the UT device itself, with multiple<br />
PDP contexts per UT possible. PDP contexts <strong>and</strong> their association with <strong>IP</strong> addresses are<br />
explained further in Annex C.<br />
Either a Public or Private <strong>IP</strong> address can be assigned to the UT to establish the data<br />
connection. The type of address assigned will depend upon how the service has been<br />
designed <strong>and</strong> how it is configured <strong>and</strong> implemented in the network by the PLMN operator.<br />
Annex C provides a summary of some key factors that should be considered when PLMN<br />
operators are planning <strong>and</strong> designing GPRS/UMTS services.<br />
Annex D provides some examples <strong>and</strong> guidelines on how Private <strong>IP</strong>v4 addressing can be<br />
used <strong>for</strong> UTs in conjunction with some of the main currently known GPRS services, such as<br />
the following: -<br />
• Internet Web Server Access Service<br />
• 'St<strong>and</strong>ard' Internet WAP Service<br />
• WAP 'Push' Service<br />
• Web/POP Email services<br />
Annex D also provides examples of those Internet services that require Public addresses.<br />
PLMN operators should note that the network design examples provided in Annex D are not<br />
m<strong>and</strong>atory. These are intended to offer examples of how a network can be designed. It will<br />
be up to each PLMN operator on how they design <strong>and</strong> implement a service <strong>for</strong> their<br />
network. However, PLMN operators must adhere to the principles of conserving public <strong>IP</strong><br />
address space <strong>and</strong> its efficient usage (e.g. dynamically assigned).<br />
It is the long-term intention of this document to also include other examples of UT <strong>IP</strong><br />
addressing <strong>and</strong> network designs <strong>for</strong> as many services/applications as possible. This will<br />
help provide guidelines to PLMN operators to design their networks with some uni<strong>for</strong>mity,<br />
offering potential benefits <strong>for</strong> interworking of these services between different PLMN<br />
V5.0 Page 13 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
operators, particularly when used in the <strong>IP</strong>X environment. PLMN operators are thus actively<br />
encouraged to contribute towards the up-keep of this document, particularly if they require<br />
Public addresses.<br />
5.2.2 GPRS/UMTS Access Point Name (APN)<br />
In GPRS/UMTS the Access Point Name (APN) is the logical name <strong>for</strong> an <strong>IP</strong> address that<br />
will be associated with the PDP context of the Mobile Terminal (MT). This APN <strong>IP</strong> address<br />
will be used to create the logical connection between the MT <strong>and</strong> the PLMN GPRS<br />
terminating node (GGSN) that provides the connectivity to the required external packet data<br />
network. Annex C provides further in<strong>for</strong>mation on the definition of the APN.<br />
For example, in order <strong>for</strong> a MT to request a connection to the Genie ISP, the following APN<br />
will be used: APN = wap.genie.co.uk. This APN will have an associated <strong>IP</strong> address that will<br />
be used to create a logical connection via the GPRS PLMN to the GGSN that provides the<br />
physical connection to the Genie ISP.<br />
This section will provide guidelines on the parties responsible <strong>for</strong> assigning this APN <strong>IP</strong><br />
address that will be associated with the MT <strong>for</strong> requesting connections to different types of<br />
services.<br />
5.2.3 Address assignment responsibilities<br />
The general responsibility <strong>for</strong> assigning <strong>IP</strong> addresses to the MT (associated with the APN)<br />
can be summarised as follows:<br />
• A PLMN operator could provide the following types of access to the MT user via its<br />
st<strong>and</strong>ard "Gi" interface on the GGSN:<br />
• Access to a Private network, e.g. Corporate LAN/Intranet<br />
• Access to the Internet via an ISP<br />
• In both cases above, the MT is given either Public or Private <strong>IP</strong> address belonging to<br />
the Intranet/ISP address space. Hence, providing addresses to MTs will typically be<br />
the responsibility of the Intranet/ISP <strong>and</strong> not the PLMN operator. However, the<br />
PLMN operator will have a responsibility to work with <strong>and</strong> advise the Intranets/ISPs<br />
on the MT connectivity <strong>and</strong> addressing requirements associated with the services to<br />
be supported.<br />
• The PLMN operator will be responsible <strong>for</strong> providing <strong>IP</strong> address associated with one<br />
particular type of Service APN, named "Internet" - see later.<br />
Note. The GSM st<strong>and</strong>ards also use the terminology of "transparent access" <strong>and</strong><br />
"non-transparent" access associated with the different types of access to the Internet. For<br />
the purpose of this document, taking into consideration that the audience of this document<br />
extends beyond the GSMA members, this terminology will not be used. The 3GPP<br />
st<strong>and</strong>ards, specifically 3GPP TS 29.061 [11], should be referred to if further details are<br />
required on this subject.<br />
The ISP can be a part of/have a close relationship to the PLMN operator’s organisation, or<br />
be completely independent of it.<br />
Note that there are special APNs that are the exception to this rule on responsibilities.<br />
These are the APNs of type 'Service APN' <strong>and</strong> are assigned a default name e.g. “internet”,<br />
"IMS". Such APNs are intended only <strong>for</strong> roaming customers who are visiting another<br />
network away from home <strong>and</strong> wish to gain local access to specific service types e.g.<br />
general Internet connectivity, IMS services. Provisioning of Service APNs are the<br />
V5.0 Page 14 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
responsibility of the network operator, working in conjunction with any required 3 rd parties<br />
e.g. the ISP.<br />
Further in<strong>for</strong>mation associated with the Service APN can be found in GSMA PRD IR.33 [8]<br />
<strong>and</strong> GSMA PRD IR.88 [13]. Note that there is currently only Service APN: "Internet".<br />
The MT <strong>IP</strong> addressing assignment responsibility is represented by the following diagram.<br />
GPRS<br />
MT<br />
MT <strong>IP</strong> address<br />
APN to connect to<br />
requested<br />
network/service<br />
PLMN Operator’s<br />
GPRS network<br />
SGSN GGSN<br />
Gi-interface Terminating network/service<br />
provider responsible <strong>for</strong> assigning <strong>IP</strong><br />
address to MT requesting connection<br />
Gi interface<br />
normal APN<br />
“Internet” Service APN<br />
(Roamers only)<br />
Corporate<br />
Network<br />
ISP<br />
Other third<br />
party<br />
Figure 1: MT <strong>IP</strong> address assignment responsibility<br />
In the above diagram the MT user can request access to various types of network/services,<br />
each being identified by the Access Point Name (APN) sent by the MT. For example:<br />
• APN=wap.genie.co.uk (to request WAP service access offered by the ISP, "Genie").<br />
The MT <strong>IP</strong> address is “owned” by the Genie ISP (Private)<br />
• APN=email.xyz.co.uk (to request access to email services from the corporate, "xyz").<br />
The MT <strong>IP</strong> address is “owned” from the corporate's allocated address space (Public<br />
or Private)<br />
• APN=internet (<strong>for</strong> roamers only – to request local access to the Internet). The MT<br />
address is “owned” by the network (Public)<br />
5.2.4 <strong>IP</strong> <strong>Addressing</strong> strategy<br />
GPRS/UMTS potentially supports many types of services <strong>and</strong> applications. The type of <strong>IP</strong><br />
address assigned to the MT to access these services can depend upon many factors. One<br />
key factor is that the type of address can be dependent upon the type of service offered <strong>and</strong><br />
how the PLMN operator has configured it in their network.<br />
The guidelines recommend that Private addresses will be used wherever possible where<br />
<strong>IP</strong>v4 addresses are required <strong>for</strong> assignment to the MT.<br />
The largest Private address range (10.0.0.0/8) allows <strong>for</strong> approx. 16.8 million host<br />
addresses that can be actively assigned to the MT by each network PLMN operator. This<br />
may become an issue <strong>for</strong> larger PLMN operators where data services are widely used.<br />
There are several potential solutions to this scaling problem, but which are currently outside<br />
of the scope of this document. A more immediate issue is not associated with the amount of<br />
addresses available, but on the limitations of the network devices such as NAT <strong>and</strong> WAP<br />
gateways (described later) <strong>and</strong> the actual GPRS network infrastructure in terms of h<strong>and</strong>ling<br />
large volumes of addresses/traffic while still delivering adequate per<strong>for</strong>mance.<br />
V5.0 Page 15 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
It should be noted that there are also benefits to be gained in association with the use of<br />
Private addressing, such as providing significant security advantages. These benefits are<br />
described further in Annex C.<br />
5.2.5 Summary of Services<br />
The table below summarises the main types of GPRS/UMTS service <strong>and</strong> the <strong>IP</strong>v4<br />
addressing type recommended <strong>for</strong> it. Each of the services identified will be later described<br />
in more detail.<br />
Note that PLMN operators may have services that do not fit into these categories. Any such<br />
service that requires Public addressing will need to demonstrate its justification as per the<br />
normal request policies <strong>and</strong> procedures of the Internet Registry from which they are<br />
requested.<br />
No Service Address Type Notes<br />
1 Direct Corporate LAN access Company Use company address scheme.<br />
In practice, most companies today<br />
use private addressing.<br />
2 Internet access– WAP only Private No justification <strong>for</strong> public.<br />
3 Internet access– WAP with other<br />
NAPT-compatible applications<br />
Private<br />
4 'Open' Internet access Public Service is defined as open<br />
access.<br />
5 “Internet” service APN Public Used only by roamers, i.e.<br />
customers outside their home<br />
PLMN.<br />
Table 1: Summary of GPRS/UMTS Services <strong>and</strong> their <strong>IP</strong> <strong>Addressing</strong><br />
5.2.6 Terminal Limitations<br />
An important point to note is that most MTs available today, <strong>and</strong> expected to become<br />
available over the next few years, only have WAP capability or a combination of WAP plus<br />
NAT-compatible applications. They are incapable of having new applications loaded, so<br />
there can’t be any surprises <strong>for</strong> the GPRS operator. This does not apply to PC <strong>and</strong> PDA<br />
users. For those users who wish to load new applications on their PC or PDA that are not<br />
compatible with NAT, must have open Internet access available to them.<br />
5.2.7 Detailed Description of Services<br />
The type of <strong>IP</strong>v4 address (i.e. Private or Public) to be assigned to a MT depends upon the<br />
type of service required. There will be different types of user groups that will require different<br />
types of services. The main services are listed below, <strong>and</strong> described further in Annex D.<br />
1. Direct Corporate LAN access user group<br />
• To provide access to a user's corporate LAN, e.g. <strong>for</strong> document retrieval,<br />
corporate email access<br />
V5.0 Page 16 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• PLMN operator will typically provide direct Gi-connectivity (i.e. from the GGSN) to<br />
the user's corporate LAN via a leased line, <strong>for</strong> example<br />
• All addresses used within the corporate LAN are provided <strong>and</strong> maintained<br />
internally by the corporate. Most corporations typically use Private addressing <strong>for</strong><br />
their internal network.<br />
2. Internet access users groups. Different types of Internet access will be required <strong>for</strong><br />
different types of user groups e.g.:<br />
a. WAP-only access user group<br />
• Expected to <strong>for</strong>m the initial majority of user-types <strong>for</strong> GPRS<br />
• Gi-connectivity required to a WAP gateway, with typically an onward connection to<br />
WAP servers (local or Internet-based)<br />
• This service can be supported using Private addresses, e.g. via use of proxy on<br />
WAP gateway or with NAT. Use of Public address space cannot be justified <strong>for</strong><br />
this group.<br />
b. WAP & NAT-compatible Internet application, e.g. web access or POP3 email<br />
• This service can be supported using Private addresses, e.g. via use of proxy on<br />
the WAP gateway or NAT. All the widely used Internet applications – web, ftp,<br />
POP3 email, newsgroups are compatible with typical NAT implementations.<br />
• IETF RFC 3027 [9] explains in more detail which type of applications are<br />
considered to be NAT compatible<br />
c. 'Open' Internet access group<br />
• To provide a connection to an 'open' Internet port; onward connection to the<br />
required final destination network is then progressed via the user's applications,<br />
• Gi-connectivity required to ISP that will provide the access to the Internet<br />
• Corporate users requiring access via the Internet to a corporate gateway, typically<br />
using <strong>IP</strong>sec VPN software , would fit into this group<br />
• This service must be provided using Public addresses<br />
• The number of customers that this service will be offered to is currently estimated<br />
to be less than 20% of the total GPRS users<br />
d. “Internet” Service APN <strong>for</strong> roamers<br />
• Technically this is the same as <strong>for</strong> the "Open Internet access group" above, but it<br />
is used differently. This service is intended only <strong>for</strong> customers roaming into a<br />
visited network who wish to gain local access to the Internet.<br />
• This service must be served using Public addresses<br />
• Addresses must be dynamically assigned<br />
• This service is not considered applicable in the case of most “national” roaming<br />
scenarios, i.e. when the customers of a particular network operator roam on to the<br />
network of a “partner” competitor operator in the same country when outside the<br />
coverage area of their home network.<br />
• The number of customers estimated to use this service is only expected to be a<br />
small percentage of the total GPRS roamers (currently estimated to be less than<br />
10% of roamers as not all PLMN operators will be offering this service to their<br />
customers when roaming).<br />
5.2.8 MT Public Address Space request <strong>and</strong> approval guideline details<br />
The following guidelines have been agreed <strong>for</strong> use by the network operators <strong>and</strong> the<br />
Internet Registries in conjunction with Public <strong>IP</strong>v4 address space associated with the Mobile<br />
Terminals.<br />
V5.0 Page 17 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
5.2.8.1 Network Operator guidelines<br />
Note 1. There is insufficient available address space <strong>for</strong> all network operators to assign<br />
every MT a Public <strong>IP</strong> address as the default.<br />
Note 2. Each network operator will be responsible <strong>for</strong> submitting their own request(s) <strong>for</strong><br />
Public <strong>IP</strong> address space requirements to the appropriate Internet Registry in accordance<br />
with the existing request policies <strong>and</strong> procedures supported by the relevant RIR.<br />
Note 3. Each network operator will be responsible <strong>for</strong> designing <strong>and</strong> implementing services,<br />
<strong>and</strong> <strong>for</strong> <strong>IP</strong> address deployment in their own network. However, all operators have a shared<br />
responsibility to adhere to the principles of conserving Public <strong>IP</strong> address space <strong>and</strong> its<br />
efficient usage.<br />
• Annex A describes the Internet Registry System.<br />
• Annex B provides a summary of the main web links associated with the <strong>IP</strong> address<br />
request procedures <strong>for</strong> each RIR.<br />
• Annex D provides some examples <strong>and</strong> guidelines on how various types of services<br />
could be designed <strong>and</strong> implemented by network operators. Note that implementation<br />
of these designs are not m<strong>and</strong>atory - see Note 3 above.<br />
The following guidance is provided <strong>for</strong> note <strong>and</strong> consideration by the network operator when<br />
requesting Public address space from the appropriate Internet Registry: -<br />
• The request must demonstrate <strong>and</strong> justify the requirement <strong>for</strong> Public addresses<br />
• Identify any ef<strong>for</strong>ts the network operator is making to contribute towards the<br />
conservation of Public address space, e.g.: -<br />
• Identify the quantity of Private addresses being used <strong>for</strong> existing or planned<br />
services in relation to the quantity of Public addresses now being requested.<br />
• Identify any use of dynamic addressing to demonstrate efficient usage of<br />
addresses, e.g. the volume of users expected to share the requested Public<br />
address space.<br />
• Requests <strong>for</strong> Public addresses <strong>for</strong> use with GPRS services identified in these<br />
guidelines that have been shown can be supported using Private addressing may be<br />
rejected unless the network operator can otherwise justify.<br />
• E.g. Public addresses cannot be justified <strong>for</strong> WAP-only services. Note that <strong>for</strong> this<br />
particular case, requests will be rejected by the Internet Registry unless there are<br />
exceptional circumstances that can be satisfactorily explained<br />
• This PRD <strong>IR.40</strong> document can be used as part of the request submitted by the<br />
network operator as a source of reference to help explain the requirement <strong>for</strong> Public<br />
address space.<br />
5.2.8.2 Internet Registry guidelines<br />
The Internet Registry receiving a request <strong>for</strong> Public address space from a network operator<br />
will process it according it is existing procedures to determine if the request will be approved<br />
or rejected. To assist the Internet Registries with this activity, the GSMA also proposes the<br />
following additional guidelines <strong>for</strong> their consideration:<br />
1. Main GPRS services requiring Public address<br />
• “Open Internet Access”<br />
• “Internet” Service APN (<strong>for</strong> roamers)<br />
V5.0 Page 18 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
In both the above cases, the numbers of customers expected to take up these services is<br />
expected to be relatively small compared to NAT-compatible WAP <strong>and</strong> web services.<br />
2. Other services that require Public addresses<br />
• Internet Registry to apply their normal rules <strong>for</strong> assessment<br />
5.2.9 MT <strong>IP</strong>v4 addressing guidelines <strong>for</strong> GPRS Roaming services<br />
5.2.9.1 General requirements<br />
This section of the document will provide guidelines <strong>for</strong> <strong>IP</strong>v4 addressing of MTs <strong>for</strong> GPRS<br />
roaming services.<br />
The guidelines will again show that Private addressing can be used to meet the majority of<br />
the MT addressing requirements. WAP-based services will be used as the main type of<br />
service to demonstrate the generic principles of <strong>IP</strong> addressing <strong>for</strong> MTs in the roaming<br />
environment.<br />
The guidelines will be based upon the following two roaming generic scenarios as defined in<br />
GSMA PRD IR.33 [8]:<br />
• Roaming scenario 1- MS registered on VPLMN using VSGSN <strong>and</strong> HGGSN<br />
• i.e. MT User in the visited (i.e. <strong>for</strong>eign) country requests access to services via the<br />
home country's GGSN, i.e. HGGSN<br />
• Roaming scenario 2 - MS registered on VPLMN using VSGSN <strong>and</strong> VGGSN<br />
• i.e. MT User in the visited country request access to services via the visited<br />
country's GGSN, i.e. VGGSN<br />
5.2.9.2 Roaming scenario support options<br />
The choice of roaming service options available to the MT user will be influenced by the<br />
type of roaming scenarios supported by the PLMN operator. The roaming scenario options<br />
as defined in GSMA PRD IR.33 [8] will depend upon factors such as the following: -<br />
• Roaming service agreement between the PLMN operator of the home <strong>and</strong> visited<br />
countries, i.e. the type of services that are agreed to be supported between two<br />
network operators when subscribers from the other network are roaming in their<br />
network.<br />
• Subscription status, i.e. MT user will need to subscribe to the roaming services<br />
supported.<br />
• Network configuration, e.g. the PLMN operator could configure their network to only<br />
support roaming scenario 1, hence all in-bound roamers in a visited network can<br />
only access services via the HGGSN. This type service restriction will be identified<br />
<strong>and</strong> agreed as part of the roaming service agreement policy.<br />
Annex D provides some examples on how roaming with WAP-based services could be<br />
implemented <strong>for</strong> roaming scenario 1 <strong>and</strong> scenario 2.<br />
5.3 IMS/S<strong>IP</strong> <strong>IP</strong> <strong>Addressing</strong><br />
This section applies to Service Providers as defined in Section 1.4.<br />
5.3.1 Overview<br />
All IMS/S<strong>IP</strong> User Terminals (UTs) require an <strong>IP</strong> address in order to communicate with other<br />
users <strong>and</strong> services.<br />
V5.0 Page 19 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Depending on the design of a Service Provider’s network <strong>and</strong> the services being offered<br />
there will normally be two types of traffic from a UT:<br />
i) Communication with a S<strong>IP</strong> server (S-CSCF) in their Service Provider’s network.<br />
ii) (optionally) Peer-peer traffic to a UT in the same network <strong>and</strong>/or a different Service<br />
Provider’s network. There are some variations where a UT may exchange traffic with a<br />
server in a different network.<br />
For flow i) the UT needs only a private <strong>IP</strong> address. S<strong>IP</strong> signalling will be generated by the<br />
S<strong>IP</strong> server <strong>and</strong> use the S<strong>IP</strong> server’s <strong>IP</strong> address – which will normally be a public <strong>IP</strong> address.<br />
For flow ii) the design of IMS/S<strong>IP</strong> service on the <strong>IP</strong>X network has been arranged so that<br />
peer-peer traffic is always carried in a GRE tunnel. This has advantages in the areas of<br />
security <strong>and</strong> <strong>IP</strong> routing.<br />
5.3.2 <strong>IP</strong> Traffic from a UT<br />
Traffic from UTs will always traverse the <strong>IP</strong>X network either within a S<strong>IP</strong> signalling flow or in<br />
a GRE tunnel. That is, it is never carried directly on the <strong>IP</strong>X.<br />
5.3.3 M<strong>and</strong>atory Policy <strong>for</strong> UT <strong>IP</strong> Address Ranges<br />
Because, as described in the previous section, traffic from a UT is never carried directly on<br />
the <strong>IP</strong>X there does not need to be routing in<strong>for</strong>mation <strong>for</strong> UTs on the <strong>IP</strong>X network. To<br />
improve security <strong>and</strong> simplify <strong>IP</strong>X management this fact has been converted into a<br />
m<strong>and</strong>atory policy <strong>for</strong> the <strong>IP</strong>X:<br />
“Routing in<strong>for</strong>mation <strong>for</strong> <strong>IP</strong> address ranges used by UTs will never be added to the <strong>IP</strong>X<br />
network”.<br />
Normally Service Providers will notify their <strong>IP</strong>X Provider about the <strong>IP</strong> ranges used by their<br />
infrastructure <strong>and</strong> relevant routing in<strong>for</strong>mation will be added to the <strong>IP</strong>X by the <strong>IP</strong>X Provider.<br />
Without this routing in<strong>for</strong>mation they cannot communicate. Service Providers connected to<br />
the <strong>IP</strong>X should ensure that the <strong>IP</strong> address ranges used by IMS/S<strong>IP</strong> infrastructure are<br />
separate from <strong>IP</strong> ranges used by IMS/<strong>IP</strong> UTs.<br />
By keeping Infrastructure <strong>and</strong> UT <strong>IP</strong> ranges separate, IMS/S<strong>IP</strong> traffic can be carried on the<br />
<strong>IP</strong>X network while also ensuring that even if there is a mis-configuration somewhere, traffic<br />
from a rogue UT cannot be carried on the <strong>IP</strong>X network. This dramatically reduces the<br />
potential <strong>for</strong> an attack on the <strong>IP</strong>X infrastructure that has been initiated from user terminals.<br />
Where a Service Provider uses Network Address Translation (NAT) <strong>for</strong> traffic from UTs the<br />
same rule applies. That is, <strong>IP</strong> address ranges used <strong>for</strong> NAT of UT traffic must be kept<br />
separate from <strong>IP</strong> address ranges used by the remainder of their IMS/S<strong>IP</strong> network<br />
infrastructure.<br />
6 Annex A: Internet Registry System<br />
6.1 Overview<br />
The Internet Registry system has been established to primarily administer <strong>and</strong> manage the<br />
available public Internet address space on a worldwide basis. It is comprised of various<br />
hierarchically organised bodies, including an overall co-ordinating body (ICANN), the<br />
Address Supporting Organisation (<strong>AS</strong>O) <strong>and</strong> the Regional Internet Registries (RIR). RIRs<br />
are classified according to their primary function <strong>and</strong> territorial scope within the hierarchical<br />
structure <strong>and</strong> can be organised as Regional IRs (RIR), National IRs (NIR), Delegated<br />
Registries (DR) <strong>and</strong> Local IRs (LIR) as depicted in Figure x<br />
V5.0 Page 20 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Regional<br />
Internet<br />
Registries<br />
Local<br />
Internet<br />
Registries<br />
ISP<br />
6.2 ICANN<br />
Figure 2: A mobile phone<br />
The Internet Corporation <strong>for</strong> Assigned Names <strong>and</strong> Numbers (ICANN) (http://www.icann.org)<br />
is a technical co-ordination body <strong>for</strong> the Internet <strong>and</strong> has authority over all number <strong>and</strong><br />
domain name spaces used in the Internet. ICANN was created in October 1998 by a broad<br />
coalition of the Internet's business, technical, academic <strong>and</strong> user communities, <strong>and</strong><br />
assumed responsibility <strong>for</strong> a set of technical functions that were previously per<strong>for</strong>med under<br />
US government contract by IANA <strong>and</strong> other groups.<br />
ICANN co-ordinates the assignment of the three identifiers listed below that must be<br />
globally unique <strong>for</strong> the Internet to function.<br />
• Internet domain names<br />
• <strong>IP</strong> Address numbers - ICANN allocates public Internet address space to RIRs<br />
• Protocol parameters <strong>and</strong> port numbers<br />
ICANN<br />
<strong>AS</strong>O<br />
Overall co-ordinating body<br />
Address Supporting Organisation<br />
R<strong>IP</strong>E NCC APNIC ARIN<br />
NIR<br />
National Internet<br />
Registry<br />
LIR LIR LIR<br />
ISP<br />
ISP ISP ISP<br />
Delegated<br />
Registry<br />
ISP ISP<br />
EU EU EU EU EU EU EU EU EU EU EU EU<br />
In addition, ICANN co-ordinates the stable operation of the Internet's root server system.<br />
6.3 Address Supporting Organisation (<strong>AS</strong>O)<br />
The <strong>AS</strong>O is run by the Address Council of nine members, with three members from each of<br />
the three Regional Internet Registries (RIRs). The work is governed by a Memor<strong>and</strong>um of<br />
Underst<strong>and</strong>ing (MoU) which defines the functions as:<br />
V5.0 Page 21 of 41<br />
Possible<br />
Future RIRs<br />
Internet<br />
Service<br />
Providers<br />
End<br />
Users
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• Definition of global policies <strong>for</strong> the distribution <strong>and</strong> registration of Internet address<br />
space (currently <strong>IP</strong>v4 <strong>and</strong> <strong>IP</strong>v6);<br />
• Definition of global policies <strong>for</strong> the distribution <strong>and</strong> registration of identifiers used in<br />
Internet inter-domain routing (currently BGP autonomous system numbers)<br />
• Definition of global policies concerning the part of the DNS name space which is<br />
derived from the Internet address space <strong>and</strong> the inter-domain routing identifiers<br />
(currently in-addr.arpa <strong>and</strong> ip6.int).<br />
6.4 Regional Internet Registry (RIR)<br />
The Regional Internet Registries have operated <strong>for</strong> some years under the authority of IANA,<br />
but are now recognised within the ICANN framework.<br />
There are currently five RIRs: R<strong>IP</strong>E NCC, ARIN, APNIC, AfriNIC <strong>and</strong> LACNIC. Each RIR<br />
serves <strong>and</strong> represents its members <strong>for</strong> specific geographic areas as identified in the table<br />
below.<br />
Each RIR may have different local structures organised to serve the Internet community.<br />
For example, APNIC supports NIRs in addition to LIRs, <strong>and</strong> similarly ARIN supports DRs.<br />
The RIR will be responsible <strong>for</strong> the allocation of <strong>IP</strong> address space to all the LIRs/NIRs it<br />
serves, <strong>and</strong> registering those allocations <strong>and</strong> subsequent assignments in a<br />
publicly-available "who-is" database.<br />
RIR Areas Served Reference<br />
R<strong>IP</strong>E NCC<br />
Europe<br />
http://www.ripe.net<br />
(Réseaux <strong>IP</strong> Européens The Middle East<br />
Network Co-ordination<br />
Centre)<br />
Central Asia<br />
African countries located north<br />
of the Equator<br />
ARIN<br />
(American Registry <strong>for</strong><br />
Internet Numbers)<br />
APNIC<br />
(Asia Pacific Network<br />
In<strong>for</strong>mation Centre)<br />
AfriNIC<br />
(African Network<br />
In<strong>for</strong>mation Centre)<br />
LACNIC<br />
(Latin American Continent<br />
Network In<strong>for</strong>mation<br />
Centre)<br />
North America<br />
South America<br />
Caribbean<br />
African countries located south<br />
of the Equator<br />
Entire Asia Pacific region,<br />
including 62<br />
economies/countries/regions in<br />
South <strong>and</strong> Central Asia, South-<br />
East Asia, Indochina <strong>and</strong><br />
Oceania<br />
To serve the African region<br />
Start-up operations day not yet<br />
known<br />
To serve the Latin American<br />
region<br />
Start-up operations day not yet<br />
known<br />
Table 2: RIRs <strong>and</strong> their served areas<br />
http://www.arin.net<br />
http://www.apnic.net<br />
http://www.afrinic.org<br />
http://www.lacnic.org<br />
V5.0 Page 22 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
6.5 National Internet Registries<br />
NIRs are only operated <strong>and</strong> supported in the APNIC organisational structure.<br />
NIRs provide registration <strong>and</strong> allocation services <strong>for</strong> members (generally ISPs) organised on<br />
a national basis. NIRs operate in Japan (JPNIC), Korea (KRNIC), China (CNNIC), Taiwan<br />
(TWNIC) <strong>and</strong> in Indonesia (APJII). All of these NIRs operate within the APNIC policy<br />
framework <strong>and</strong> receive their resources directly from APNIC.<br />
6.6 Delegated Registries<br />
Delegated Registries are only operated <strong>and</strong> supported in the ARIN organisational structure,<br />
<strong>and</strong> are equivalent in functionality to the NIRs <strong>for</strong> APNIC.<br />
There are two Delegated Registries in the ARIN region, which are as follows: -<br />
• RNP - Brazillian Registry<br />
• NIC-Mexico - Mexican Registry<br />
6.7 Local Internet Registries<br />
LIRs are established under the authority of an RIR.<br />
The LIR holds allocations of address space <strong>for</strong> assignment to end-users. LIRs are typically<br />
operated by Internet Service Providers (ISP) <strong>and</strong> serve the customers of those ISPs as well<br />
as the customers of smaller ISPs who are connected to the rest of Internet through the<br />
larger ISP. Other organisations such as large international Enterprises can also operate as<br />
an LIR.<br />
In the ARIN region, the term ISP is used in place of the term "LIR".<br />
6.8 End Users<br />
End users are part of the IR system to the extent that they need to con<strong>for</strong>m to the policies<br />
<strong>and</strong> processes associated with this system.<br />
<strong>Addressing</strong> <strong>and</strong> deployment plans must be documented <strong>and</strong> submitted by the end user to<br />
their applicable LIR/NIR/DR in accordance with the respective address request<br />
policy/process of that LIR/NIR. Additional in<strong>for</strong>mation may be required from the end user in<br />
order <strong>for</strong> the IR to make any necessary address assignment decisions.<br />
An appropriate LIR or NIR/DR should be selected by the end user to permit aggregation of<br />
routing in<strong>for</strong>mation to be optimised <strong>and</strong> most efficiently deployed.<br />
End users will be expected to plan their networks to use a minimum amount of address<br />
space.<br />
Note 1. LIRs are typically operated by ISPs, with each ISP allocated a specific range of<br />
addresses <strong>for</strong> assignment to its end users. Hence, changing ISPs will require the end user<br />
to renumber their networks into the address space of the new ISP.<br />
Note 2. Address assignments are made <strong>for</strong> specific purposes <strong>and</strong> should not be suballocated<br />
or sub-assigned other than as documented with IR by the end user. Any change to<br />
the registered deployment plans must be notified by the end user to their assigning IR.<br />
V5.0 Page 23 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Note 3. End users should adopt techniques such as Variable Length Subnet Masking<br />
(VLSM) <strong>and</strong> use appropriate technologies that ensure their assigned address space is used<br />
efficiently.<br />
7 Annex B: RIR Public <strong>IP</strong> address request web links<br />
Reference Notes<br />
http://www.ripe.net/ripencc/new-mem Contains useful in<strong>for</strong>mation on how to become a<br />
member of the R<strong>IP</strong>E NCC <strong>and</strong> how to request<br />
address space<br />
http://www.ripe.net/ripencc/memservices/registration/index.html<br />
R<strong>IP</strong>E registration services/templates (e.g. ripe-141)<br />
associated with submitting address space<br />
requirements to a LIR.<br />
http://ripe.net/ripe/docs/ripe-141.html Note: LIRs do not have to use ripe-141 <strong>for</strong> their<br />
internal operations, but if a significant amount of<br />
addresses is required, then the LIR will have to<br />
submit the request to the NCC <strong>for</strong> a second opinion.<br />
In this case the request needs to be in a specific<br />
<strong>for</strong>mat that is described in document ripe-141.<br />
http://ripe.net/ripe/docs/ripe-185.html European <strong>IP</strong> Address Space Request Form.<br />
Identifies the in<strong>for</strong>mation that will be required by the<br />
LIR when address space is requested by the end<br />
user. Further details on these requirements can be<br />
found in [1]<br />
Table 3: R<strong>IP</strong>E NCC <strong>IP</strong> address space request web links<br />
Reference Notes<br />
http://www.arin.net/regserv.html Registration Services<br />
http://www.arin.net/regserv/initial-isp.html ISP <strong>Guidelines</strong> <strong>for</strong> Requesting Initial <strong>IP</strong> Address<br />
Space<br />
http://www.arin.net/regserv/ipassignment.html<br />
Internet Protocol (<strong>IP</strong>) Assignment <strong>Guidelines</strong> <strong>for</strong><br />
End Users<br />
Table 4: ARIN <strong>IP</strong> address space request web links<br />
Reference Notes<br />
http://www.apnic.net/registration.html APNIC Registration Services<br />
http://www.apnic.net/apnic-bin/ispaddress-request.pl <br />
http://ftp.apnic.net/apnic/docs/ispaddress-request<br />
To request address space allocation as an APNIC<br />
member<br />
Text version of above, i.e. APNIC-065 - APNIC<br />
Internet Service Provider Internet Address Request<br />
Form<br />
V5.0 Page 24 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Reference Notes<br />
http://www.apnic.net/membersteps.html Step by step guide to the membership application<br />
procedure<br />
http://www.apnic.net/docs/add-managepolicy.html<br />
http://www.apnic.net/apnic-bin/secondopinion-request.pl<br />
APNIC-076: Policies <strong>for</strong> address space<br />
management in the Asia Pacific region<br />
Second opinion request <strong>for</strong>m <strong>for</strong> customer<br />
assignments.<br />
http://www.apnic.net/faq/awfaq.html Assignment Window Q&A<br />
Table 5: APNIC <strong>IP</strong> address space request web links<br />
In<strong>for</strong>mation on AfriNIC <strong>and</strong> APNIC will be added in a future version of the present<br />
document.<br />
8 Annex C: <strong>IP</strong> addressing factors <strong>for</strong> GPRS/UMTS services<br />
using <strong>IP</strong>v4 addressing<br />
8.1 Introduction<br />
This section applies mainly to PLMN Operators. The following sections are relevant to<br />
Service Providers: 10.1, 10.2, 10.3, 10.7.<br />
Some of the main factors that should be taken into consideration by a PLMN operator <strong>for</strong><br />
addressing Mobile Terminals (MTs) in conjunction with GPRS services that use <strong>IP</strong>v4<br />
addressing are listed below. Each item is described further in the proceeding sections.<br />
• Version of <strong>IP</strong> addresses<br />
• Public or Private addressing<br />
• Con<strong>for</strong>mance to RIR policies<br />
• PDP contexts<br />
• APN<br />
• Dynamic or Static addresses<br />
• Transparent/Non-transparent access<br />
• NAT<br />
8.2 Version of <strong>IP</strong> addresses<br />
There are two versions of the Internet Protocol that are currently available:<br />
i) <strong>IP</strong>v4<br />
• Uses a 32 bit (4 x 8 byte) address structure<br />
• Theoretically provide up to 232 = 4.3 billion addresses<br />
ii) <strong>IP</strong>v6 - uses a 128 bit address structure<br />
• Uses a 128 bit address structure<br />
V5.0 Page 25 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• Theoretically provide up to 2128 = 3.4x1038 addresses<br />
Although networks can be created using one or both technologies, <strong>IP</strong>v4 is the version that is<br />
currently predominantly used in most private networks <strong>and</strong> the Internet. However, the<br />
remaining available <strong>IP</strong>v4 address space will eventually become exhausted, <strong>and</strong> the<br />
introduction of <strong>IP</strong>v6 is inevitable. <strong>IP</strong>v6 address space has already been allocated to the<br />
RIRs, <strong>and</strong> the RIRs have been allocating address space to the ISPs.<br />
Initial deployment of GPRS <strong>and</strong> UMTS networks is expected to use <strong>IP</strong>v4. At least one<br />
GPRS vendor has announced to use <strong>IP</strong>v6 <strong>for</strong> its core network infrastructure, but this will<br />
require <strong>IP</strong>v6 compatible MTs are <strong>IP</strong>v6 interworking with other networks.<br />
Compatibility issues are considered as the main constraint that is associated with the<br />
introduction of <strong>IP</strong>v6 into the Internet today, but new tools <strong>and</strong> mechanisms are becoming<br />
available that can aid with the migration process, e.g. <strong>IP</strong>v6 with embedded <strong>IP</strong>v4 addresses.<br />
However, as the majority of <strong>IP</strong>-based systems currently use <strong>IP</strong>v4, this initial guideline<br />
document will predominantly concentrate on this version of the protocol. <strong>Guidelines</strong><br />
associated with the use of <strong>IP</strong>v6 can be included in subsequent versions.<br />
It should be noted that considering the amount of <strong>IP</strong> addresses that <strong>IP</strong>v6 will offer, the same<br />
restrictions <strong>and</strong> limitations associated with <strong>IP</strong>v4 will probably no longer be relevant.<br />
8.3 Public/Private addressing<br />
8.3.1 Address management <strong>and</strong> general use<br />
The <strong>IP</strong> address space is controlled <strong>and</strong> managed by the RIRs, which has segregated the<br />
<strong>IP</strong>v4 address space into the Public <strong>and</strong> Private address ranges as described below.<br />
• Public address space<br />
• Used on the Internet<br />
• Requested via the respective RIR serving the PLMN operator's area (see Annex<br />
B)<br />
• Note that there is insufficient address space to assign a fixed Public <strong>IP</strong>v4 address<br />
to each MT to meet the <strong>for</strong>ecasted requirements over the next few years.<br />
Private address space<br />
• Private address ranges defined in IETF RFC 1918 [5]<br />
• Largest address range is: 10.0.0.0/8<br />
• Provides <strong>for</strong> 224 = 16.8 million (approx.) host <strong>IP</strong> addresses that can be actively<br />
assigned to the MT by each PLMN.<br />
• Must not be used on the Internet (Internet routing devices are normally configured<br />
to ignore these range of addresses)<br />
• Do not have to be requested from any RIR<br />
• Can be used in Private networks <strong>for</strong> any purpose<br />
8.3.2 Benefits of Private addressing<br />
Some of the key benefits associated with Private addressing are as follows:<br />
1. Protection of Public address space<br />
• Use of Private addressing helps to protect the depletion of the Public address space.<br />
This effectively enables more Public address space to be made available to those<br />
services where it is absolutely required.<br />
2. Rapid deployment<br />
V5.0 Page 26 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• There is no requirement to follow a request process <strong>for</strong> Private addresses from the<br />
RIRs, as is the case <strong>for</strong> Public addresses. This has benefits if an operator has a<br />
sudden increase in dem<strong>and</strong> <strong>for</strong>, say the WAP service. In this case, it would be<br />
relatively easy to rapidly provision additional addresses from the Private address<br />
range without any dependency on an external registry.<br />
3. Security factors<br />
• NAT will be typically implemented with additional security measures, e.g. Firewall. In<br />
this way, Internet users cannot access users on the Private NAT side, <strong>and</strong> hence<br />
these users are provided some security from unwanted traffic <strong>and</strong> 'malicious'<br />
Internet users. However, it should also be noted that NAT can also limit deployment<br />
of some security solutions (e.g. <strong>IP</strong>sec). IETF RFC 2993 [10] <strong>and</strong> IETF 3027 [9] provide<br />
further in<strong>for</strong>mation associated with NAT deployment <strong>and</strong> security considerations.<br />
• Protection from unwanted traffic to the MT user will be required. This becomes<br />
increasingly important, particularly when considering billing will be typically based<br />
upon the data exchanged by the MT user, who does not want to be charged <strong>for</strong><br />
receiving unsolicited data traffic.<br />
8.3.3 Disadvantages of Private addressing<br />
Some of the disadvantages associated with Private addressing are as follows: -<br />
1. NAT must be used<br />
• The limitations associated with NAT are described in a later section.<br />
2. Limitations on Private address range<br />
• The 10.0.0.0/8 Private address range can offer approximately 16.8 million host<br />
addresses <strong>for</strong> assignment to the MT. Hence, there will be insufficient Private<br />
addresses available if a PLMN operator requires more than 16 million customers to<br />
be simultaneously connected to, say the WAP service that uses Private addresses.<br />
However, although this scenario requires further investigation, the situation is<br />
considered solvable from an addressing perspective. More serious problems are<br />
likely to encountered from a network infrastructure scaling perspective to h<strong>and</strong>le this<br />
volume of connections long be<strong>for</strong>e any difficulties from an <strong>IP</strong> addressing perspective<br />
become apparent<br />
8.4 Con<strong>for</strong>mance to RIR policies<br />
Any use of Public address space <strong>for</strong> MTs must con<strong>for</strong>m to the existing <strong>IP</strong> address space<br />
request policies <strong>and</strong> procedures defined by the RIRs.<br />
Public addresses can be requested from the RIR serving the area of the requesting user.<br />
The relevant procedures <strong>for</strong> this process are provided in Annex B of this document. The<br />
requestor must be able to meet the criteria <strong>for</strong> the issue of these addresses be<strong>for</strong>e any<br />
address space is allocated <strong>and</strong> assigned to them. This criteria is predominately associated<br />
with the requestor being able to demonstrate conservation <strong>and</strong> effective utilisation of the<br />
Public address space requested.<br />
The RIRs will reject requests <strong>for</strong> public addresses if they are to be used <strong>for</strong> services that<br />
have been shown can met with Private addressing by the guidelines in this document,<br />
unless the requesting operator can demonstrate otherwise.<br />
V5.0 Page 27 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
8.5 PDP contexts<br />
The generic requirement <strong>for</strong> a GPRS-based service is to establish a PDP context (i.e.<br />
logical connection) between the MT <strong>and</strong> the Packet Data Network (PDN) that will provide<br />
the access to the services requested by the user, e.g. Internet <strong>for</strong> access to WAP-servers,<br />
corporate LAN <strong>for</strong> access to corporate servers/email. To establish a MT-initiated PDP<br />
context, a source <strong>and</strong> destination <strong>IP</strong> address will be required <strong>for</strong> the following: -<br />
• Source <strong>IP</strong> address: To identify the originating MT<br />
• Destination <strong>IP</strong> address: To identify the destination PDN<br />
Each PDP context will require an <strong>IP</strong> address. Hence, the <strong>IP</strong> address is assigned to the PDP<br />
context established by the MT <strong>and</strong> not the MT device itself.<br />
Each MT can have one or more PDP contexts active at one time, e.g. to establish one<br />
connection to, say the Internet, another connection to the user's corporate site. It thus<br />
follows that more than one <strong>IP</strong> address can be simultaneously associated with an individual<br />
MT. The number of simultaneous PDP contexts supported will generally be a function of the<br />
PLMN network capability, the functionality of the MT, <strong>and</strong> the services the user has<br />
subscribed to.<br />
The MT will serve the 'client' device or application. Some examples of the clients include: -<br />
• MT-internal web browser application software<br />
• External PC-type device connected to the MT<br />
The MT will be responsible <strong>for</strong> the following activities in relation to the <strong>IP</strong> address, the PDP<br />
context <strong>and</strong> the client: -<br />
• Provide the user-side end-termination point <strong>for</strong> the PDP context<br />
• Provide an 'association' between the PDP context <strong>and</strong> the client from an <strong>IP</strong><br />
addressing perspective.<br />
The same <strong>IP</strong> address will remain assigned to the PDP context <strong>for</strong> the duration it remains<br />
active. Once the PDP context has been de-activated, e.g. MT is turned off, if the address<br />
had been dynamically assigned, it can then be released <strong>for</strong> assignment to another PDP<br />
context of, say another MT.<br />
8.6 The Access Point Name (APN)<br />
The APN is the logical name used identify the user’s <strong>and</strong> network’s desired routing access<br />
preference. it is used to create the logical connection between MS <strong>and</strong> the GGSN that<br />
provides the connectivity to the requested external PDN, e.g. ISP or a Corporate LAN.<br />
The APN consists of both:<br />
Network ID – points to the access point within a GPRS PLMN<br />
Operator ID – points to a GPRS PLMN<br />
The complete APN shall be of the <strong>for</strong>mat:<br />
. mnc.mcc.gprs<br />
Network Id Operator Id<br />
MNC = Mobile Network Code<br />
MCC = Mobile Country Code<br />
V5.0 Page 28 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Further details on the APN is provided in documents GSMA PRD IR.33 [8] <strong>and</strong> 3GPP TS<br />
23.060 [6].<br />
8.7 Static <strong>and</strong> Dynamic addressing<br />
The 3GPP st<strong>and</strong>ards, in particular 3GPP TS 23.060 [6], allow <strong>IP</strong> addresses to be either<br />
statically assigned (i.e. fixed address) or dynamically assigned to the GPRS MT <strong>for</strong> each<br />
activated PDP context, which is referred to as the PDP address. These addresses can be<br />
assigned to the MT in three ways as summarised below:<br />
1. The Home PLMN (HPLMN) operator assigns a PDP address permanently to the MT<br />
(i.e. static address)<br />
2. The Home PLMN operator assigns a PDP address to the MT on activation of the<br />
PDP context (dynamic HPLMN PDP address)<br />
3. The Visited PLMN (VPLMN) operator assigns a PDP address to the MT on<br />
activation of the PDP context (dynamic VPLMN PDP address)<br />
It is the Home PLMN operator that defines in the subscription whether dynamic or HPLMN<br />
or VPLMN PDP address can be used.<br />
There are no services <strong>for</strong> GPRS currently identified with a requirement to use Public<br />
address space with static addressing. This is considered to be an unlikely scenario, <strong>and</strong><br />
services should be developed to avoid this type of <strong>IP</strong> address requirement because of its<br />
highly undesirable impact on the available Public <strong>IP</strong> address space.<br />
8.8 Network Address Translation (NAT)<br />
8.8.1 Overview<br />
The NAT function allows a private network that uses Private <strong>IP</strong>v4 addresses to interconnect<br />
to a global <strong>IP</strong> network (e.g. Internet) using Public <strong>IP</strong> addresses.<br />
The NAT function is normally incorporated on a device that is situated on the border-device<br />
(e.g. firewall) of the private network. The unregistered source address of packets received<br />
by the NAT function from the private network is replaced with a registered address - usually<br />
the registered address of the device supporting the NAT function. On receiving a response<br />
packet from the external network, e.g. Internet, the NAT function can use the port numbers<br />
<strong>and</strong> sequence numbers contained in the packet header to determine which device<br />
originated the source packet within the private network. The NAT function then replaces<br />
destination address of the received packet with the unregistered <strong>IP</strong> address of this device to<br />
route it to this destination.<br />
The NAT function can be provided as a st<strong>and</strong>-alone NAT device or more typically<br />
incorporated into another network edge device, e.g. firewall device.<br />
8.8.2 NAT limitations<br />
There are a number of limitations associated with the use of NAT. IETF RFC 3027 [9] also<br />
defines some of the main protocol complications associated with NAT.<br />
Some of the general limitations associated with NAT are listed below, but it is beyond the<br />
scope of this paper to elaborate further on them.<br />
1. NAT can be used where connections are initiated by a user on the private network<br />
side of the NAT. However, NAT cannot resolve a Private address if the request has been<br />
initiated from the Public network side of the NAT, e.g. <strong>for</strong> 'push-based' services where<br />
remote servers may send un-requested messages to users. A typical example <strong>for</strong> this in<br />
PLMN-based services is when mail arrives at the mail server <strong>and</strong> a 'mail waiting' notification<br />
needs to be sent to the recipient that is located on the private network side of the network.<br />
However, there are alternative solutions to overcome this type of limitation (see section on<br />
V5.0 Page 29 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
'WAP push services'), allowing Private addresses to still support this type of push-based<br />
service.<br />
2. NAT device can typically support up to 4000 simultaneous active sessions. Multiple<br />
NAT devices can be supported to increase the number of sessions but there are issues<br />
associated with NAT scalability <strong>and</strong> the management of large numbers of these devices <strong>and</strong><br />
active sessions.<br />
3. NAT does provide some benefits to security, as it will make it difficult <strong>for</strong> unwanted<br />
users to directly access devices located on the private network side. However, NAT does<br />
also have the potential to interrupt the end-to-end nature of Internet applications. This could<br />
interfere with some aspects of end-to-end security <strong>and</strong> other end-to-end functions, such as<br />
the following examples:<br />
• Certain types of the security protocol <strong>IP</strong>Sec cannot be used in conjunction with NAT.<br />
• End-to-end applications associated with connection control, lawful intercept, quality<br />
of service <strong>and</strong> duration-based-billing could be interrupted.<br />
4. NAT imposes topology restrictions <strong>and</strong> other constraints on the protocols <strong>and</strong><br />
applications that run across NATs.<br />
9 Annex D - Examples of Network designs <strong>for</strong> GPRS/UMTS<br />
services<br />
The following sections will provide some guidelines on how Private <strong>IP</strong>v4 addressing can be<br />
used <strong>for</strong> MTs in conjunction with some of the current main GPRS/UMTS services.<br />
9.1 Internet Web Server Access Service<br />
This guideline shows how Private <strong>IP</strong>v4 addressing can be used <strong>for</strong> the MTs to provide<br />
access to Internet web servers via an ISP using NAT. However, it should be noted that as<br />
stated earlier, users requiring 'open' Internet port access will require Public addresses.<br />
Access to Internet web servers is achieved via an Internet Service Provider (ISP). Giconnectivity<br />
from the PLMN operator's GGSN to the ISP will be required. The connection<br />
between the PLMN operator <strong>and</strong> the ISP can be considered as a private network. Private<br />
addressing can thus be used between the PLMN operator <strong>and</strong> the ISP.<br />
The connection between the ISP <strong>and</strong> the network hosting the Internet web servers is a<br />
public network, on which Public addressing must be used.<br />
Some <strong>for</strong>m of address translation will be required to provide connectivity between the<br />
private network <strong>and</strong> the public network. How this translation process is implemented will<br />
ultimately be the responsibility of the ISP.<br />
The following diagram illustrates an example of how a privately addressed MT can request<br />
access to Internet web servers via an ISP using NAT. The NAT function, which can be built<br />
into a firewall device, is deployed at the ISP's network edge. In this case, the role of the<br />
firewall is similar to that of a web proxy server. Annex C provides an overview of the NAT<br />
functionality <strong>and</strong> describes some of the limitations associated with it.<br />
V5.0 Page 30 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
GPRS<br />
MT<br />
10.4.202.136<br />
(Private)<br />
PLMN<br />
Web request<br />
From: 10.4.202.136<br />
To: 193.34.122.58<br />
Web response<br />
From: 193.34.122.58<br />
To: 10.4.202.136<br />
In relation to the above diagram:<br />
Private network Public network<br />
10.122.23.45<br />
Private<br />
ISP<br />
NAT/<br />
Firewall<br />
158.230.100.101<br />
Registered<br />
Web request<br />
From<br />
158.230.100.101<br />
To: 193.34.122.58<br />
Web response<br />
From 193.34.122.58<br />
To: 158.230.100.101<br />
Private <strong>IP</strong> <strong>Addressing</strong> Public <strong>IP</strong> <strong>Addressing</strong><br />
Internet<br />
193.34.122.58<br />
Registered<br />
Internet<br />
Web Server<br />
Figure 3: MT Private addressing <strong>for</strong> Internet Web access<br />
• The MT is assigned a Private address (can be dynamically assigned)<br />
• NAT is used to provide the address translation function between the private network<br />
side <strong>and</strong> the public network side.<br />
• The private 10.0.0.0/8 address range is used on the private network side This<br />
address range can provide 224 = 16.8 million host addresses. However, the actual<br />
number of hosts, i.e. MTs supported on the private network side, will be dependent<br />
upon the capability of the device providing the NAT function (also refer to Annex C,<br />
NAT limitations).<br />
9.2 'St<strong>and</strong>ard' Internet WAP Service<br />
This guideline shows how Private <strong>IP</strong>v4 addressing can be used <strong>for</strong> the MTs to provide the<br />
'st<strong>and</strong>ard' (i.e. 'pull') GPRS WAP service. The <strong>for</strong>thcoming version of WAP v1.2 supports<br />
'push' technology, which will be dealt with later. The WAP technical specifications<br />
associated with this service can be obtained from the OMA's web site [7].<br />
The MT must be equipped with a WAP browser to enable access to WAP services. The<br />
WAP browser can only communicate with a WAP Gateway <strong>and</strong> not directly with the WAP<br />
server.<br />
The WAP Gateway <strong>and</strong> WAP servers are normally provided in the ISP's domain. The<br />
following diagram illustrates one option on how this could be implemented.<br />
V5.0 Page 31 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
WAP<br />
MT<br />
PLMN<br />
Encoded<br />
WAP request<br />
Binary<br />
WML<strong>for</strong>mat<br />
Encoded WAP<br />
response<br />
Private network Public network<br />
WAP<br />
Gateway<br />
(Proxy)<br />
WAP<br />
response<br />
Local WAP<br />
Server<br />
WAP<br />
request<br />
ISP<br />
NAT/<br />
Firewall<br />
WAP<br />
request<br />
WAP<br />
response<br />
Private <strong>IP</strong> <strong>Addressing</strong> Public <strong>IP</strong> <strong>Addressing</strong><br />
Internet<br />
Internet<br />
WAP Server<br />
Figure 4: 'St<strong>and</strong>ard' Internet WAP Service provision example<br />
In relation to the above diagram:<br />
• The WAP MT is assigned a Private address (e.g. supplied by the ISP of the serving<br />
WAP Gateway)<br />
• The Local WAP server could be the same physical machine as the WAP gateway or<br />
a st<strong>and</strong>-alone system as shown in the above diagram. This can be located on the<br />
Private network interfacing to the PLMN, hence can be assigned a Private address.<br />
• Access may also be required to an Internet WAP server, e.g. provided by another<br />
ISP. This will be located on the public network <strong>and</strong> thus assigned a Public address.<br />
• The NAT function can be provided as part of the ISP's firewall to access the Internet.<br />
The NAT can provide Private/Public address translations <strong>for</strong> <strong>IP</strong> traffic to traverse the<br />
private <strong>and</strong> public network domains.<br />
9.3 WAP 'Push' Service<br />
This guideline shows provides a brief overview of the WAP Push service functionality, <strong>and</strong><br />
how Private <strong>IP</strong>v4 addressing can be used <strong>for</strong> the MTs to provide this service. The WAP<br />
technical specifications associated with this service can be obtained from the WAP Forum's<br />
web site [7].<br />
9.3.1 Overview<br />
The WAP Push service allows in<strong>for</strong>mation content to be sent to the user by a server to<br />
which the user is connected without a previous user action. However, the WAP provider (i.e.<br />
host ISP of WAP server) will initially set up the user's WAP service requirements. They<br />
should also implement various security measures to ensure that only authorised WAP<br />
pushes reach the user's MT. This will include the user's (otherwise known as 'client')<br />
address <strong>for</strong> the push.<br />
V5.0 Page 32 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
9.3.2 Client/User address <strong>for</strong>mat<br />
The client (or User) address is composed of the client specifier <strong>and</strong> a Push Proxy Gateway<br />
(PPG) specifier. Technical specifications associated with the addressing requirements are<br />
available from the WAP Forum [7]. A summary of this in<strong>for</strong>mation is provided below.<br />
The generic <strong>for</strong>mat of the client address is:<br />
wappush-address = "/Type=""@"<br />
There are four different types of addresses that can be used: User, PLMN, <strong>IP</strong>v4 <strong>and</strong> <strong>IP</strong>v6.<br />
The following table provides a summary of these address types with typical examples.<br />
Address<br />
Type<br />
Typical<br />
Application<br />
USER User-defined<br />
identifier <strong>for</strong><br />
john.smith@btcell<br />
net.net served by<br />
the Genie ISP <strong>for</strong><br />
WAP services<br />
PLMN Device address<br />
<strong>for</strong> a phone<br />
number<br />
(MSISDN):<br />
+447711234567<br />
<strong>for</strong> wireless<br />
mobile network,<br />
e.g. BT Cellnet<br />
which has an<br />
association with<br />
Genie ISP to<br />
provide access to<br />
WAP services<br />
<strong>IP</strong>v4 Device address<br />
<strong>for</strong> an <strong>IP</strong>v4<br />
address served<br />
by the Genie ISP<br />
<strong>for</strong> WAP services<br />
<strong>IP</strong>v6 Device address<br />
<strong>for</strong> an <strong>IP</strong>v6<br />
address served<br />
by the Genie ISP<br />
<strong>for</strong> WAP services<br />
Client Address Example<br />
WAPPUSH=john.smith@btcellnet.net/TYPE=USER<br />
@ppg.genie.co.uk<br />
WAPPUSH=+447711234567/TYPE=PLMN@ppg.g<br />
enie.co.uk<br />
WAPPUSH=10.123.123.123/TYPE=<strong>IP</strong>V4@ppg.ge<br />
nie.co.uk<br />
WAPPUSH=<br />
FEDC:BA98:7654:3210:FEDC:BA98:7654:3210/TY<br />
PE=<strong>IP</strong>V6@ppg.genie.co.uk<br />
Table 6: WAP push address examples<br />
9.3.3 Generic WAP Push functionality<br />
The following diagram shows the basic elements associated with the WAP push<br />
functionality.<br />
V5.0 Page 33 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
WAP<br />
MT<br />
MSISDN<br />
E.g. +447711234567<br />
Encoded WAP<br />
message<br />
Push Over-The-<br />
Air (OTA)<br />
protocol<br />
In relation to the above diagram:<br />
WAP Push Proxy<br />
Gateway (PPG)<br />
E.g.<br />
ppg.genie.co.uk<br />
Push Access<br />
Protocol (PAP)<br />
WAP push message to<br />
+447711234567@ppg.genie.co.uk<br />
Figure 5: Generic WAP Push functionality<br />
Internet WAP<br />
Push Initiator<br />
• The Push Proxy Gateway (PPG) provides the access point <strong>for</strong> content pushes to the<br />
mobile network<br />
• It is the PPG that communicates with WAP phone <strong>and</strong> not the Push Initiator<br />
• The owner of the PPG is typically the PLMN operator's serving ISP<br />
• The PPG is responsible <strong>for</strong> access control, e.g. authentication, security, client<br />
control, etc.<br />
• Note that the PPG functionality may also be built into 'st<strong>and</strong>ard' (pull) WAP<br />
gateway functionality; provides benefits such as shared resources <strong>and</strong> shared<br />
sessions over-the-air.<br />
• All addresses are relative to the PPG.<br />
• Any push addressing scheme can be used that is recognised by the PPG<br />
• The addressing scheme can be associated with the type of address used, i.e. four<br />
address-types are specified<br />
• The Push Access Protocol (PAP) is used to push the contents from the Push Initiator<br />
to the PPG.<br />
• The Push Over-The-Air (OTA) protocol is part of the Push Framework that is<br />
responsible <strong>for</strong> transporting content from the PPG to the WAP MT.<br />
9.3.4 Service provision example<br />
The following diagram shows an example of how the WAP Push service could be provided<br />
using the phone number (MSISDN) assigned to the User's WAP phone.<br />
V5.0 Page 34 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
WAP<br />
MT<br />
MSISDN<br />
E.g. +447711234567<br />
PLMN<br />
Encoded WAP<br />
message<br />
Push Over-The-<br />
Air (OTA)<br />
protocol<br />
Private network Public network<br />
WAP Push Proxy<br />
Gateway (PPG)<br />
E.g.<br />
ppg.genie.co.uk<br />
Local WAP<br />
Push<br />
Initiator<br />
In relation to the above diagram:<br />
PAP<br />
ISP<br />
NAT/<br />
Firewall<br />
Push Access<br />
Protocol (PAP)<br />
WAP push message to<br />
+447711234567@ppg.genie.co.uk<br />
Private <strong>IP</strong> <strong>Addressing</strong> Public <strong>IP</strong> <strong>Addressing</strong><br />
Figure 6: WAP-Push Service provision example<br />
Internet<br />
Internet WAP<br />
Push Initiator<br />
• Push message originates at the WAP Push Initiator, <strong>and</strong> is sent to the PPG specified<br />
in the destination address of the push message using the Push Access Protocol<br />
• The receiving PPG <strong>for</strong>wards the message to the MT using Push OTA protocol.<br />
• The MT has been identified using its phone number (MSISDN: +447711234567)<br />
9.4 Web/POP Email services<br />
Internet Web <strong>and</strong> POP email services are completely user-driven services, i.e. no 'pushtype'<br />
service is required. These types of services are fully compatible with Private <strong>IP</strong><br />
addressing, <strong>and</strong> can be implemented in conjunction with NAT. The servers providing the<br />
Internet Web <strong>and</strong> POP services can be located either within the Private network, or<br />
anywhere else on the Internet that is reachable via NAT.<br />
9.5 Other Internet services requiring Public addresses<br />
There will be some Internet services that are not suitable <strong>for</strong> use with Private addressing.<br />
For example, <strong>IP</strong>Sec VPNs will not work properly via NAT. These types of services will<br />
require Public addresses to be assigned to the MTs used to access these services.<br />
However, the number of users in this category are expected to be relatively small, currently<br />
estimated to be less than 20% of the total users requiring a Public <strong>IP</strong>v4 address <strong>for</strong> the MT.<br />
This figure is expected to reduce further as terminal devices become more sophisticated,<br />
<strong>and</strong> Web <strong>and</strong> WAP browsers provide encryption that is compatible with NAT <strong>and</strong> proxying<br />
(e.g. Secure Socket Layer (SSL) protocol <strong>and</strong> Wireless Transport Layer Security (WTLS)).<br />
V5.0 Page 35 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
9.6 Roaming with WAP-based services<br />
9.6.1 General factors<br />
The majority of GPRS customers are expected to use WAP-based h<strong>and</strong>sets to access WAP<br />
services. These h<strong>and</strong>sets are expected to be issued to customers with a pre-configured<br />
APN <strong>and</strong> WAP server <strong>IP</strong> address that are associated with the WAP services provided by<br />
their PLMN operator.<br />
• The APN <strong>and</strong> WAP gateway address are not expected to be changed by the user<br />
• The same settings will be used when the user is roaming.<br />
Hence, the MT is expected to always connect to the same WAP gateway, irrespective of its<br />
location in the world.<br />
As shown elsewhere in this document, the same Private <strong>IP</strong>v4 addressing principles used <strong>for</strong><br />
WAP services in the non-roaming environment can also be applied <strong>for</strong> roaming. The only<br />
aspect that will have changed is the connectivity from the MT to the WAP gateway. The<br />
proceeding sections will provide examples on how the WAP service could be implemented<br />
9.6.2 WAP implementation example <strong>for</strong> Roaming Scenario 1<br />
The following diagram shows an example of how a WAP service could be provided <strong>for</strong><br />
roaming scenario 1. This is likely to be the st<strong>and</strong>ard model.<br />
WAP<br />
MT<br />
Private <strong>IP</strong><br />
address<br />
Home<br />
PLMN<br />
GGSN<br />
Encoded WAP<br />
request/response<br />
Inter-PLMN (roaming)<br />
backbone network<br />
Encoded WAP<br />
request/response<br />
“Home”<br />
APN<br />
SGSN<br />
WAP<br />
Gateway<br />
(Proxy)<br />
Visited<br />
PLMN<br />
Home ISP Internet<br />
NAT/<br />
Firewall<br />
WAP<br />
request/response<br />
Public <strong>IP</strong> <strong>Addressing</strong><br />
Internet<br />
WAP Server<br />
Figure 7: WAP implementation example <strong>for</strong> Roaming Scenario 1<br />
In relation to the above diagram:<br />
V5.0 Page 36 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• Connectivity between the SGSN serving the MT in the visited PLMN <strong>and</strong> the GGSN<br />
in the home PLMN which serves the “Home APN” is provided via the Inter-PLMN<br />
(roaming) backbone network [4].<br />
• The WAP MT is assigned a Private address (e.g. supplied by the ISP of serving<br />
WAP Gateway)<br />
• All WAP access functionality is as per the guideline <strong>for</strong> the 'St<strong>and</strong>ard' Internet WAP<br />
Service<br />
9.6.3 WAP implementation example <strong>for</strong> Roaming Scenario 2<br />
The following diagram shows an example of how a WAP service could be provided <strong>for</strong><br />
roaming scenario 2 using the “Internet” Service APN. This scenario is not recommended.<br />
WAP<br />
MT<br />
Public <strong>IP</strong><br />
address<br />
Home<br />
PLMN<br />
GGSN<br />
Encoded WAP<br />
request/response<br />
Not involved at <strong>IP</strong> level<br />
SGSN<br />
Visited<br />
PLMN<br />
GGSN<br />
WAP<br />
Gateway<br />
(Proxy)<br />
“Internet”<br />
APN<br />
Home ISP<br />
NAT/<br />
Firewall<br />
Encoded WAP<br />
request/response<br />
WAP<br />
request/response<br />
Public <strong>IP</strong> <strong>Addressing</strong><br />
Internet<br />
Internet<br />
WAP Server<br />
Figure 8: WAP implementation example <strong>for</strong> Roaming Scenario 2<br />
In relation to the above diagram:<br />
• Connectivity to the WAP gateway in the home ISP providing is provided from the<br />
GGSN in the visited PLMN via the Internet.<br />
• The Service APN: "Internet" can be used to request "open" access to the Internet<br />
from the MT via a GGSN in the visited PLMN<br />
• A Public <strong>IP</strong> address must be dynamically assigned to the MT by the "Internet"<br />
Service APN.<br />
• Note that the WAP gateway will need to be accessible from the Internet to accept<br />
incoming requests from the MT. This is scenario is considered to be undesirable<br />
from a security perspective, e.g. increases risk of denial-of-service attacks on the<br />
WAP server from unwanted users on the Internet.<br />
V5.0 Page 37 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
• Note also that with present terminals there is no easy way of configuring the<br />
“Internet” APN into the h<strong>and</strong>set<br />
The WAP service provider will not have control <strong>for</strong> the quality of service <strong>for</strong> the routing via<br />
the Internet, i.e. between the visited PLMN <strong>and</strong> the serving WAP gateway in the home<br />
country. The combination of disadvantages mentioned above mean that this scenario is not<br />
recommended.<br />
10 Annex E - Examples of Network designs <strong>for</strong> IMS/S<strong>IP</strong> services<br />
This section will be added at a later date.<br />
11 Document Management<br />
11.1 Document History<br />
Version Date Brief Description of Change<br />
Draft A 21 st June<br />
2000<br />
Issue 1.0 11 th July<br />
2000<br />
Issue 1.1 21 st July<br />
2000<br />
Issue 1.2 15 August<br />
2000<br />
Issue 1.3 31 st August<br />
2000<br />
First Draft<br />
Incorporated various comments<br />
from R<strong>IP</strong>E NCC <strong>and</strong> feedback<br />
received at GPRSWP #10<br />
• Amendment to title<br />
• New references [9] - [5]<br />
• Document scope incorporated<br />
within<br />
section<br />
a new 'Introduction'<br />
• Section 5.1: New Note 1<br />
• Section 5.2: Amendment to<br />
Note 2<br />
Various comments from APNIC,<br />
ARIN <strong>and</strong> R<strong>IP</strong>E NCC:<br />
• Section 1: Note to [3] <strong>and</strong><br />
[4]; new [12] - [18]<br />
• Section 3: Various<br />
amendments to entire<br />
section<br />
• Section 4: New Figure 1,<br />
various amendments to<br />
entire section; New<br />
Sections 4.4 <strong>and</strong> 4.5<br />
• Section 5: Various<br />
amendments to most of<br />
this section<br />
• Section 6: Minor<br />
amendments to section<br />
6.3<br />
New meeting document number<br />
GPRS 54/00 instead of GPRS<br />
Approval<br />
Authority<br />
Editor /<br />
Company<br />
V5.0 Page 38 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Version Date Brief Description of Change<br />
Rev 0 5 th<br />
September<br />
2000<br />
Rev 1 6 th<br />
September<br />
2000<br />
Rev 0<br />
PRD<br />
<strong>IR.40</strong> vsn<br />
3.0.1<br />
PRD<br />
<strong>IR.40</strong> vsn<br />
3.0.2<br />
PRD<br />
<strong>IR.40</strong> vsn<br />
3.0.3<br />
9 th Oct<br />
2000<br />
21 May<br />
2001<br />
46/00<br />
Conversion of GPRS Doc 54/00 to<br />
IREG 062/00<br />
Changes to:<br />
• Title<br />
• Section 3.1: Note 2<br />
deleted as no longer<br />
relevant<br />
• Section 6.3: Changes to<br />
Item 4; Note 5 deleted,<br />
The following changes were<br />
made:<br />
• New meeting document<br />
number GPRS Doc<br />
060/00; assigned as PRD<br />
<strong>IR.40</strong> (proposed vsn<br />
3.0.1)<br />
• Corrections to dates in<br />
'Document History'<br />
• Section 3.1, new Note 3:<br />
Contact details <strong>for</strong> RIRs to<br />
notify GSMA of proposed<br />
changes to this document.<br />
Document structure completely reorganised,<br />
with new section added<br />
<strong>for</strong> <strong>IP</strong> addressing <strong>for</strong> Mobile<br />
Terminals<br />
• Internet Registry System<br />
overview moved to new<br />
Annex A<br />
• RIR address request web<br />
links moved to new Annex<br />
B<br />
• Addition of new <strong>IP</strong><br />
addressing guidelines <strong>for</strong><br />
mobile terminals<br />
• New Annex C: <strong>IP</strong><br />
addressing factors <strong>for</strong><br />
consideration when<br />
designing guidelines <strong>for</strong><br />
GPRS/UMTS-based<br />
services using <strong>IP</strong>v4<br />
addressing<br />
7 Aug 2001 Document updated to reflect<br />
comments received from RIRs <strong>for</strong><br />
sections related to "<strong>IP</strong> addressing<br />
<strong>for</strong> mobile terminals".<br />
General changes to most of<br />
document to help clarify <strong>and</strong><br />
rationalise the guidelines.<br />
Approval Editor /<br />
Authority Company<br />
V5.0 Page 39 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Version Date Brief Description of Change<br />
PRD<br />
<strong>IR.40</strong> vsn<br />
3.0.4<br />
10 Aug<br />
2001<br />
v3.0.5 16 Aug<br />
2001<br />
Proposed<br />
v3.1.0<br />
17 Aug<br />
2001<br />
v3.1.0 21 Sept<br />
2001<br />
Examples of network designs <strong>for</strong><br />
GPRS services moved from<br />
document body to a New Annex D<br />
Minor updates to document as<br />
result of comments received on<br />
v3.0.3 at Packet#3 meeting on 8<br />
Aug 2001.<br />
Following sections updated with<br />
review comments received from<br />
PacketWP:<br />
• Changed text to provide<br />
further clarification<br />
• 5.5.3, Item 2.2 change to<br />
service title<br />
• 5.6 Changed text to<br />
provide further clarification<br />
• New reference<br />
documents: [10], [11],<br />
[12] & [31]<br />
• 10.1 Correction to state<br />
3.4x10 38 addresses<br />
• 10.2.2 Changes to item 3<br />
• 10.2.3 Item 1 details on<br />
NAT limitations moved out<br />
to a later section<br />
specifically on NAT; Item<br />
2 - Changed text <strong>for</strong><br />
further clarification<br />
• 10.4 deleted " only one<br />
PDP context per MT is<br />
typically supported"<br />
• 10.6 Changed text to<br />
provide further clarification<br />
Document submitted to IREG <strong>for</strong><br />
approval as proposed version<br />
3.1.0 with following minor text<br />
changes from v3.0.5:<br />
• Section 1.4 - Note 3, typo<br />
correction <strong>for</strong><br />
info@gsmworld.com<br />
• Section 2.3 - Correction to<br />
date of R<strong>IP</strong>E meeting<br />
• Section 8.3 - clarification<br />
to text describing <strong>AS</strong>O<br />
members.<br />
Document approved at IREG #41<br />
with a document classification of<br />
Approval Editor /<br />
Authority Company<br />
V5.0 Page 40 of 41
GSM Association Non- Confidential<br />
Official Document <strong>IR.40</strong><br />
Version Date Brief Description of Change<br />
v4.0.0 30 March<br />
2007<br />
5.0 22 October<br />
2010<br />
11.2 Other In<strong>for</strong>mation<br />
"Unrestricted - Public"<br />
Major round of updates to support<br />
needs of <strong>IP</strong>X network:<br />
• Include non-mobile<br />
networks <strong>and</strong> terminals<br />
• Made clear that addresses<br />
cannot duplicate any on<br />
Internet<br />
• Clarify when <strong>AS</strong>Ns are<br />
required<br />
• Include rules <strong>for</strong> notifying<br />
<strong>IP</strong>X Networks about <strong>IP</strong><br />
address ranges used<br />
• Update terminology to be<br />
consistent with other <strong>IP</strong>X<br />
documents<br />
• Made clear that addresses<br />
cannot duplicate any on<br />
Internet<br />
New template applied, <strong>IP</strong>v6<br />
in<strong>for</strong>mation updated <strong>and</strong> other<br />
numerous minor fixes.<br />
Type Description<br />
Document Owner IREG Packet<br />
Editor / Company Massimo Chiavacci<br />
Approval Editor /<br />
Authority Company<br />
V5.0 Page 41 of 41<br />
Kim Fullbrook /<br />
Telefonica-O2<br />
Packet #46 Massimo<br />
Chiavacci /<br />
Telecom Italia<br />
It is our intention to provide a quality product <strong>for</strong> your use. If you find any errors or<br />
omissions, please contact us with your comments. You may notify us at prd@gsm.org<br />
Your comments or suggestions & questions are always welcome.