Content for TS 24.139 Word version: 18.0.0

5.1 General 5.2 UE reflective QoS procedures 5.3 Network procedures for supporting QoS 5.4 Enabling UE reflective QoS function 6.1 Tunnel management procedures over S2b 6.2 Tunnel management procedure over S2c 7.1 General 7.2 UE procedure 7.3 Network procedure

5 Supporting QoS p. 8

5.1 General p. 8

When interworking with a fixed broadband access network, DSCP marking is used for setting QoS as specified in IETF RFC 2474.

For downlink traffic, the 3GPP network sets the DSCP value on the outer header of each IP packet on a per-flow basis. When tunnelling the IP packet to the UE, the network copies the DSCP value from the inner IP header to the new outer IP header.

For uplink traffic, the reflective QoS on uplink traffic is optionally supported by the UE when accessing a fixed broadband access network. The reflective QoS is achieved by creating a DSCP marking rule based on the received downlink traffic.

The BBF network performs QoS treatment and QoS remapping based on DSCP value of the outer IP header.

5.2 UE reflective QoS procedures p. 9

5.2.1 General p. 9

A UE may support the UE reflective QoS function for uplink traffic.

For a UE supporting UE reflective QoS function, and if UE reflective QoS function is enabled by the network, the UE shall create uplink DSCP marking rules based on the received downlink traffic. Each uplink DSCP marking rule contains a n-tuple rule which is created based on the corresponding n-tuple of the received downlink traffic. The UE shall use the uplink DSCP marking rules to set the DSCP field of the outer IP header of the outgoing IP packets.

The UE reflective QoS function is enabled by the network as specified in subclause 5.4.

5.2.2 DSCP marking rule p. 9

The DSCP marking rules contains following parameter values:

Source IP address;
Destination IP address;
Source port number;
Destination port number;
Protocol type;
DSCP marking value; and
Timestamp.

The source IP address refers to the IP address used by the UE as source IP address when generating IP traffic.

The destination IP address refers to the IP address of the data packets destined for the UE.

The source port number refers to the port number used by the UE as source port number when generating IP traffic.

The destination port number refers to the port number of the data packets destined for the UE.

The protocol type is a value among the internet protocol numbers as defined in IANA. In case of IPv4, the protocol type value is the value of the outer IP header protocol type field. In case of IPv6, the protocol type value is the value of the last next header field.

The timestamp is the time that the DSCP marking rule was created or the last time the DSCP marking rule was applied.

5.2.3 Maintaining DSCP marking rules p. 9

The DSCP marking table is created when the first DSCP marking rule is created based on the received downlink IP packet.

Depending on the protocol type, the n-tuple is either a 5-tuple (including: source IP address, destination IP address, source port number, destination port number, and protocol type) or a 3-tuple (including source IP address, destination IP address, and protocol type).

The lifetime of the DSCP marking table is same as the associated PDN connection.

A UE may remove the expired entries from the table based on the timestamp. How long the entry shall be maintained in the table is an implementation specific value.

5.2.4 Receiving an IP packet p. 10

When receiving an IP packet, the UE shall perform a lookup in the DSCP marking table based on the n-tuple of the IP header. If tunnel is established between the UE and the network, the lookup is performed after the tunnel de-capsulation.

If no matching entry is found, a new entry shall be created as follows:

The source IP address of the new entry is the destination IP address of the received packets;
The source port number of the new entry is the destination port number of the received packets;
The destination IP address of the new entry is the source IP address of the received packets;
The destination port number of the new entry is the source port number of the received packets;
The protocol type value is either the value of the last protocol type field in IPv4 case, or the value of the last next header field in case of IPv6;
The DSCP field is set as same as the DSCP field of the received outer IP header; and
The timestamp is set.

If a matching entry is found, the timestamp shall be set.

5.2.5 Sending an IP packet p. 10

When sending an IP packet, the UE shall perform a lookup in the DSCP marking table based on the n-tuple of the IP header. If a tunnel is established between the UE and the network, the lookup is performed before the tunnel encapsulation.

If a matching entry is found, the UE shall set the DSCP marking value of the IP header of the packet according to the matched DSCP marking rule and set the timestamp of the entry. If there is already a value of the DSCP field in the IP header of the packet set by the UE application, it shall be overwritten by the DSCP marking value from the DSCP marking rule.

If no matching entry is found, the UE shall not modify the DSCP field of the IP header of the packet.

If a tunnel is established between the UE and the network, the UE shall copy the DSCP value from the IP header of the original packet into the new outer header at the tunnel encapsulation before forwarding it to the network.

5.3 Network procedures for supporting QoS p. 10

The 3GPP network shall create DSCP marking rules per QoS flow based on policies as defined in TS 23.139.

When tunnelling the UE downlink traffic, the network shall copy the DSCP value from the received IP header into the new outer header before forwarding to the UE.

Optionally, the network may perform DSCP marking remapping based on the operator's policy.

5.4 Enabling UE reflective QoS function p. 10

5.4.1 General p. 10

The UE indicates its support of UE reflective QoS function to the network. When the UE explicit indication is received, the network provides the reflective QoS Indication to the UE which indicates that the UE reflective QoS function shall be enabled or disabled.

For trusted fixed broadband access network, the indication is provided at 3GPP based access authentication before an IP address is allocated to the UE. For un-trusted fixed broadband access network, if the 3GPP based access authentication is performed the indication is provided at 3GPP based access authentication before an IP address is allocated to the UE, or it is provided during IKEv2 signalling for IPsec tunnel establishment with the ePDG. For DSMIPv6 based access procedure, the indication is provided during IKEv2 signalling for IPsec tunnel establishment with the PDN-GW/HA.

5.4.2 UE procedure p. 11

5.4.2.1 Sending Reflective QoS Indication (RQSI) to 3GPP AAA server p. 11

During EAP-AKA and EAP-AKA' based authentication, UE may provide an explicit indication to the 3GPP AAA server about the supporting of UE reflective QoS function. The explicit indication is sent using an attribute in the EAP-AKA and EAP-AKA' protocols, which extends these protocols as specified in Section 8.2 of RFC 4187. This attribute is provided in EAP-Response/AKA-Challenge and the corresponding EAP-AKA' message payload.

If the UE reflective QoS function is supported, the UE shall provide the RQSI using AT_RQSI_IND attribute in EAP-AKA or EAP-AKA'. This indication is provided if the UE receives the AT_RESULT_IND attribute within the EAP-Request/AKA-Challenge message, or the EAP-Request'/AKA-Challenge' message when EAP-AKA' is used. If the UE provides the AT_RQSI_IND attribute within the EAP-Response/AKA-Challenge message payload, or the EAP-Response'/AKA-Challenge' message payload when EAP-AKA' is used, the UE shall also provide the AT_RESULT_IND attribute within the message.

The detailed coding of this attribute is described in subclause 8.1.1.

5.4.2.2 Receiving the RQSI from 3GPP AAA server p. 11

The UE shall only enable the UE reflective QoS function if enabled by the network.

If the Reflective QoS Indication is received at 3GPP based access authentication which indicates the UE reflective QoS function is enabled, the UE may:

perform the UE reflective QoS function on all traffic for the attached fixed broadband access network that enabled the UE reflective QoS function; and
disable the UE reflective QoS function, when:
1. the UE/network initiated detachment from the attached fixed broadband access network; or
2. the UE moves away from the attached fixed broadband access network coverage.

If the Reflective QoS Indication is received at 3GPP based access authentication during the attachment of the fixed broadband access network:

the UE need not provide an explicit indication during IKEv2 signalling for IPsec tunnel establishment with ePDG or DSMIPv6 bootstrapping with PDN-GW/HA; and
the UE shall ignore the Reflective QoS Indication if it is received during IKEv2 signalling for IPsec tunnel establishment with ePDG or DSMIPv6bootstrapping with PDN-GW/HA .

If the Reflective QoS Indication is received during IKEv2 signalling for IPsec tunnel establishment with ePDG which indicates that the UE reflective QoS function is enabled, the UE shall:

perform the UE reflective QoS function on all tunneled traffic for the attached ePDG that enabled the UE reflective QoS function; and
disable the UE reflective QoS function, when:
1. the PDN connection over the attached ePDG is released or handover to another access network occurs;
2. the UE/network initiated detachment from the attached fixed broadband access network; or
3. the UE moves away from the attached fixed broadband access network coverage;

If the Reflective QoS Indication is received during IKEv2 signalling for IPsec tunnel establishment with ePDG and DSMIPv6 is used as selected mobility protocol (see subclause 6.3.3 of TS 24.302):

the UE need not provide an explicit indication during DSMIPv6 bootstrapping with PDN-GW/HA; and
the UE shall ignore the Reflective QoS Indication if it is received during DSMIPv6 bootstrapping with PDN-GW/HA.

For DSMIPv6 over a fixed broadband access network, if the Reflective QoS Indication is received during DSMIPv6 bootstrapping with PDN-GW/HA which indicates that the UE reflective QoS function is enabled, the UE shall:

perform the UE reflective QoS function for all DSMIPv6 traffic for the attached PDN-GW/HA that enabled the UE reflective QoS function; and
disable the UE reflective QoS function, when:
1. the PDN connection with the attached PDN-GW/HA is released or handover to another access;
2. the UE/network initiated detachment from the attached fixed broadband access network; or
3. the UE moves away from the attached fixed broadband access network coverage;

The UE shall not enable the UE reflective QoS function, if:

the received Reflective QoS Indication indicates that the UE reflective QoS function is disabled; or
the Reflective QoS Indication is not received from the 3GPP AAA.

If the UE reflective QoS function is not enabled, the DSCP marking value of the outer IP header performed by the UE is implementation specific.

5.4.3 Network procedure p. 12

5.4.3.1 RQSI from 3GPP AAA server to UE p. 12

A 3GPP AAA server supporting RQSI, shall include the AT_RESULT_IND attribute within the EAP-Request/AKA-Challenge and corresponding EAP-AKA' message payload.

If the UE provided an explicit indication as described in subclause 5.4.2.1, the 3GPP AAA server shall inform the UE of its decision of the UE reflective QoS function by invoking an EAP-Request/AKA-Notification dialogue when EAP-AKA is used or an EAP-Request'/AKA-Notification' dialogue when EAP-AKA' is used. The UE reflective QoS function decision is sent to the UE by using the AT_ RQSI_RES attribute.

The UE reflective QoS function decision is made by the 3GPP AAA server based on the capabilities of the UE, the type of access, the access identity and local policies.

The detailed coding of this attribute is described in subclause 8.1.1.

6 Tunnel management procedure p. 12

6.1 Tunnel management procedures over S2b p. 12

6.1.1 General p. 12

The purpose of tunnel management procedures is to establish or disconnect an end-to-end tunnel between the UE and the ePDG for S2b access to 3GPP Evolved Packet Core (EPC) via a fixed broadband access network.

The tunnel management procedures and ePDG selection procedure specified in TS 24.302, clause 7 are applied. In addition, the procedures specified in this subclause shall be supported.

6.1.2 UE procedures p. 13

6.1.2.1 Tunnel establishment p. 13

Once the ePDG has been selected, the UE shall initiate the IPsec tunnel establishment procedure using the IKEv2 protocol as specified in TS 24.302, subclause 7.2.2 with the following additions:

if the UE supports Reflective QoS, the UE shall provide the RQSI using AT_ RQSI_IND attribute as defined in subclause 8.1.1.1 within the IKE_AUTH request message;
if MOBIKE is supported, the UE shall include the MOBIKE_SUPPORTED notification in the IKE_AUTH request message;
in an IPv4 fixed broadband access network, NAT may be deployed, e.g. a UE may locate behind a Residence Gateway in which a NAT function is enabled. The UE shall support the NAT detection function as specified in RFC 5996; and
if NAT is detected between the UE and the ePDG,
- the UE shall invoke the IKEv2 NAT traversal procedure as specified in RFC 5996;
- the UE shall use UDP encapsulated for ESP as specified in RFC 5996; and
- the UE may send the NAT-keepalive packet to keep NAT mapping alive as defined in the RFC 3948.

6.1.2.2 Tunnel modification p. 13

The UE shall support the tunnel modification procedure specified in TS 24.302, subclause 7.2.3.

The tunnel modification procedure may be triggered if the UE local IP address or the NAT UDP port number or both have been reassigned. For instance, the Residence Gateway NAT function may be restarted for some reasons. As the result of the NAT restart, the UE local IP address and the mapping of the NAT UDP port number may be reassigned.

If the UE detects that the local IP address or the NAT UDP port number or both are reassigned, the UE shall:

disconnect the tunnel as specified in subclause 6.1.2.3 and re-initiate the tunnel establishment procedure as specified in subclause 6.1.2.1; or
use MOBIKE for recovering the IKEv2 SA as specified in RFC 4555.

If MOBIKE is supported, the UE shall support the tunnel modification procedure specified in TS 24.302, subclause 7.2.3 with the following additions:

the UE shall perform the Dead Peer Detection (DPD) procedure to detect if NAT mapping have changed as specified in RFC 4555;
if NAT remapping is detected, the UE shall update the IKEv2 security association with the new allocated local IP address, and shall then send an INFORMATIONAL request containing the UPDATE_SA_ADDRESSES notification to the ePDG; and
when the UE receives an INFORMATIONAL request with a COOKIE2 notification present, the UE shall copy the notification to the COOKIE2 notification of an INFORMATIONAL response and send it to the ePDG.

6.1.2.3 Tunnel disconnection p. 13

The procedure of tunnel disconnection initiated by the UE is specified TS 24.302.

6.1.2.4 Support of reflective QoS p. 14

The UE may support reflective QoS for uplink traffic as specified in subclause 5.2.

If reflective QoS is supported and IPsec anti-replay feature specified in RFC 4301 is implemented, the UE should create dedicated child SA for each IP flow which has the same DSCP marking value. If not, the UE may choose to increase the IPsec anti-replay window size or use any other implementation-specific method to avoid the sequence issue.

6.1.3 ePDG procedure p. 14

6.1.3.1 Tunnel establishment p. 14

Upon receipt of an IKE_AUTH request message from the UE requesting the establishment of a tunnel, the ePDG shall perform the tunnel establishment procedure as specified in TS 24.302 with the following additions:

the ePDG shall support the NAT detection function as defined in section 2.23 of RFC 5996;
if MOBIKE_SUPPORTED notification is received, the ePDG shall include the MOBIKE_SUPPORTED notification in the IKE_AUTH response message;
if NAT is detected between the UE and the ePDG, the ePDG shall use UDP encapsulated for ESP as defined in RFC 5996; and
the ePDG shall send the RQSI on whether Reflective QoS shall be applied within the IKE_AUTH response message to the UE if received from the 3GPP AAA Server.

6.1.3.2 Tunnel modification p. 14

If MOBIKE applies, the ePDG shall perform the tunnel modification procedure as defined in TS 24.302, subclause 7.4.2.

If MOBIKE does not apply, the ePDG shall perform the procedure for UE initiated disconnection as defined in subclause 6.1.3.3, followed by the tunnel establishment procedure as defined in subclause 6.1.3.1.

6.1.3.3 Tunnel disconnection p. 14

The procedure of tunnel disconnection initiated by the ePDG is as specified TS 24.302.

6.1.3.4 Support of QoS p. 14

When receiving a downlink data packet for a UE, the ePDG shall copy the DSCP marking value from the received IP header into the new IPSec header before forwarding to the UE, as specified in subclause 5.3.

If the anti-replay feature specified in RFC 4301 is implemented, the ePDG should create a dedicated child SA for each IP flow which has the same DSCP marking value; or, the ePDG may choose to increase the IPsec anti-replay window size or use any other implementation-specific method to avoid the out of sequence issue.

Optionally, the ePDG may perform DSCP marking remapping based on the operator's policy.

6.2 Tunnel management procedure over S2c p. 14

6.2.1 S2c procedure over trusted fixed broadband access network p. 14

6.2.1.1 General p. 14

The purpose of tunnel management procedures is to establish or disconnect an end-to-end tunnel between the UE and the HA for S2c access to 3GPP Evolved Packet Core (EPC) via a trusted fixed broadband access network.

The tunnel management procedures specified in TS 24.303 clause 5 are applied. In addition, the procedures specified in this subclause shall be supported.

6.2.1.2 UE procedure p. 15

6.2.1.2.1 Dual-Stack Mobile IPv6 initial attach p. 15

Once the HA has been selected, the UE shall initiate the Dual-Stack Mobile IPv6 initial attach procedure specified in TS 24.303, subclause 5.1 with the following additions:

if the UE supports Reflective QoS, the UE may provide the RQSI using AT_ RQSI_IND attribute as defined in subclause 8.1.1.1 within the IKE_AUTH request message;
If MOBIKE is supported, the UE shall include the MOBIKE_SUPPORTED notification in the IKE_AUTH request message;
in an IPv4 fixed broadband access network, NAT may be deployed, e.g. a UE may locate behind a Residence Gateway in which a NAT function is enabled. The UE shall support the NAT detection function as specified in RFC 5996 and RFC 4555;
If NAT is detected between the UE and the HA,
- the UE shall invoke the IKEv2 NAT traversal procedure as specified in RFC 5996;
- the UE shall use UDP-Encapsulated ESP as defined in RFC 5996 and RFC 4555; and
- the UE may send the NAT-keepalive packet to keep NAT mapping alive as defined in RFC 3948 and RFC 4555.

6.2.1.2.2 Dual-Stack Mobile IPv6 handover p. 15

The Dual-Stack Mobile IPv6 handover procedure shall be triggered if the UE local IP address has been reassigned, or the UE moves from one link to another link.

The UE procedure of Dual-Stack Mobile IPv6 handover is specified in TS 24.303, subclause 5.2.

If the UE detects that the local IP address or the NAT UDP port number or both are reassigned, the UE shall update the mobility tunnel with the HA by initiating the Dual-Stack Mobile IPv6 handover.

6.2.1.2.3 Dual Stack Mobile IPv6 Re-Registration p. 15

The UE procedure of Dual-Stack Mobile IPv6 Re-Registration is specified in TS 24.303, subclause 5.3.

6.2.1.2.4 Dual-Stack Mobile IPv6 detach p. 15

The UE procedure of Dual-Stack Mobile IPv6 detach is specified in TS 24.303, subclause 5.4.

6.2.1.2.5 Support of reflective QoS p. 15

The UE may support UE Reflective QoS function for uplink traffic as specified in subclause 5.2.

If UE Reflective QoS function for uplink traffic is enabled, S2c data integrity protection is used and the IPsec anti-replay feature specified in RFC 4301 is implemented, the UE should create dedicated child SA for each IP flow which has the same DSCP marking value; or, the UE may choose to increase the IPsec anti-replay window size or use any other implementation-specific method to avoid the sequence issue.

6.2.1.3 HA procedure p. 16

6.2.1.3.1 Dual-Stack Mobile IPv6 initial attach p. 16

Upon receipt of an IKE_AUTH request message from the UE requesting the establishment of a tunnel, the HA shall perform the Dual-Stack Mobile IPv6 initial attach procedure as specified in TS 24.303, subclause 5.1 with the following additions:

the HA shall support the NAT detection function as defined in section 2.23 of RFC 5996 and in RFC 4555;
if MOBIKE_SUPPORTED notification is received, the HA shall include the MOBIKE_SUPPORTED notification in the IKE_AUTH response message; and
if NAT is detected between the UE and the HA, the HA shall use UDP encapsulated for ESP as defined in RFC 5996.

6.2.1.3.2 Dual-Stack Mobile IPv6 handover p. 16

The Dual-Stack Mobile IPv6 handover procedure shall be triggered if the UE local IP address has been reassigned, or the UE moves from one link to another link.

The HA procedure of Dual-Stack Mobile IPv6 handover is specified in TS 24.303, subclause 5.2.

6.2.1.3.3 Dual Stack Mobile IPv6 Re-Registration p. 16

The HA procedure of Dual-Stack Mobile IPv6 Re-Registration is specified in TS 24.303, subclause 5.3.

6.2.1.3.4 Dual-Stack Mobile IPv6 detach p. 16

The HA procedure of Dual-Stack Mobile IPv6 detach is specified in TS 24.303, subclause 5.4.

6.2.1.3.5 Support of QoS p. 16

The HA shall set per QoS flow DSCP marking on the IP outer header as specified in subclause 5.3.

If S2c data integrity protection is used and the IPsec anti-replay feature specified in RFC 4301 is implemented, the HA should create a dedicated child SA for each IP flow which has the same DSCP marking value. Or, the UE may choose to increase the IPsec anti-replay window size or use any other implementation-specific method to avoid the out of sequence issue.

6.2.2 S2c procedure over un-trusted fixed broadband access network p. 16

6.2.2.1 General p. 16

The purpose of tunnel management procedures is to establish or disconnect an end-to-end tunnel between the UE and the HA for S2c access to 3GPP Evolved Packet Core (EPC) via an un-trusted fixed broadband access network.

The tunnel management procedures specified in TS 24.303 clause 5 are applied. The additional procedures specified in this subclause shall also be supported.

6.2.2.2 UE procedure p. 16

The UE tunnel management procedure of the IPsec tunnel with ePDG is specified in subclause 6.1.2.

The UE tunnel management procedure of Dual-Stack Mobile IPv6 tunnel with the HA is specified in subclause 6.2.1.2.

The UE may support the UE reflective QoS for uplink traffic on the IPsec header as specified in subclause 6.1.2.4.

6.2.2.3 ePDG Procedure p. 17

The ePDG tunnel management procedure of the IPsec tunnel is specified in subclause 6.1.3.

The ePDG procedure for the support of QoS is specified in subclause 6.1.3.4.

6.2.2.4 HA Procedure p. 17

The HA tunnel management procedure of Dual-Stack Mobile IPv6 tunnel is specified in subclause 6.2.1.3.

The HA procedure for the support of QoS is specified in subclause 6.2.1.3.5.

7 Non-seamless WLAN Offload p. 17

7.1 General p. 17

A non-seamless offload capable UE selects a fixed broadband access network for non-seamless WLAN offload as specified in TS 23.139.

7.2 UE procedure p. 17

The UE may use any local IP address(es) for non-seamless WLAN offload traffic regardless of the selected IP mobility protocol. The UE local IP address allocation procedure is specified in BBF TR-146 [17].

The UE may support the UE reflective QoS for non-seamless WLAN offload uplink traffic as specified in subclause 5.2. The UE reflective QoS function may be enabled by the network at EAP-AKA and EAP-AKA' based access authentication, during IKEv2 signalling for IPsec tunnel establishment with the ePDG, or during DSMIPv6 bootstrapping with PDN-GW/HA, as specified in subclause 5.4.

7.3 Network procedure p. 17

At EAP-AKA and EAP-AKA' based access authentication, during IKEv2 signalling for IPsec tunnel establishment with the ePDG, or during DSMIPv6 bootstrapping with PDN-GW/HA, the 3GPP AAA server may enable the UE reflective QoS function. The fixed broadband access network may provide QoS on the non-seamless WLAN offload traffic after successful 3GPP based access authentication.

When forwarding a downlink data packet to a UE, the fixed broadband access network may set the DSCP value on the outer IP header of each IP packet at per-flow basis as specified in subclause 5.3.