Moby Dick Consolidated System Integration Plan
Moby Dick Consolidated System Integration Plan
Moby Dick Consolidated System Integration Plan
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
D0103v1.doc Version 1 6.7.2003<br />
The IPSec and Mobile-Ipv6 functionality within the kernel is provided by a software package called<br />
SWAMP. It is accompanied by a userspace library called liburp, which aids in writing a User-<br />
Registration-Protocol handler program.<br />
The major component of SWAMP consists of patches to the Linux kernel version 2.4.16 which provides<br />
IPSec and Mobile-Ipv6 functionality. SWAMP is not an implementation from-scratch. It merely takes<br />
two existing projects for providing support for these technologies in the Linux kernel and integrates them.<br />
It is not possible to apply them independently to the same kernel.<br />
The liburp provides a simplified interface to the IPSec functionalities of the kernel, since the native API<br />
exposed by IPSec (called PFKey) is quite complex and its fully generic behaviour is not needed in<br />
<strong>Moby</strong><strong>Dick</strong>.<br />
In addition, the liburp package provides a kernel module, called pep6_kmod, and an API to control this<br />
module from userspace. This module implements simple but powerful packet filtering functions. Using<br />
this, a user-space program (such as the AAA Attendant in <strong>Moby</strong><strong>Dick</strong>) can implement access control<br />
based on user authentication.<br />
Since the Mobile -Ipv6 functionality is the same as that provided by the MIPL implementation by HUT, it<br />
is not described here.<br />
4.2.2.3 Fast Handover Module / MIPL<br />
The fast handover module (FHM) is responsible for fast handover procedures in the access router.<br />
QoS manager<br />
AAA<br />
Attendan<br />
t<br />
Fast Handover<br />
module<br />
QoS<br />
attendant<br />
PEP<br />
DSCP<br />
TABLE<br />
Enhanced IPv6 stack<br />
Standard IPv6 stack<br />
Internal interface<br />
IPSec<br />
Diffserv<br />
Packet filter<br />
Kernel space<br />
User space<br />
Figure 32: Fast Handover module and its relationship with other modules<br />
Figure 32 shows the fast handover module and the interfaces between this module and others in the AR<br />
architecture.<br />
Communication between the FHM and the AAAC attendant is for the following purposes:<br />
• The FHM will inform the AAAC attendant when a MT is expected to execute a handover to this<br />
AR, i.e. a Handover Initiate message has been received and the nCoA proposed has been<br />
checked and is correct.<br />
• The FHM will inform the AAAC attendant when a handover procedure has ended with the<br />
result of a MT finishing using the AR services, this will allow the AAAC attendant to finish the<br />
accounting for this MT and sending the pending accounting information to the AAAC server.<br />
Communication between the FHM and the QoS attendant is for the following purpose:<br />
• The FHM will send a message to the QoS attendant in the oAR when a MT is expected to<br />
execute a handover to the nAR. QoS attendant will indicate the PEP to perform a QoS context<br />
transfer using the QoS infrastructure.<br />
• Also the QoS attendant tells the FHO module of the availability or not of QoS resources in the<br />
nAR during the FHO process.<br />
The fast handover module on the access router is mainly responsible for the inter-access router<br />
communication and the bi-casting of data, which is destined for the mobile node, during the handover<br />
process. Conceptually, MIPL is not required on the access router, but currently, the fast handover<br />
modules accesses functionalities of the mobility module and therefore the MIPL module is mentioned<br />
here in combination with the fast handover module. Again the sending and receiving functions of the<br />
(enhanced) IPv6 stack are to be made accessible without explicit interface specification. Interactions to<br />
other modules than the IPv6 stack are not required on the access router.<br />
D0103v1.doc 47 / 168