Escolar Documentos
Profissional Documentos
Cultura Documentos
SIGTRAN Protocol
V03
ZTE University
NGN Course Team
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
1
Objectives
Upon the completion of this chapter, you
will be able to:
Understand the history and components of
SIGTRAN protocol stack
Understand the concept of SCTP
Understand the concept of M3UA
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
2
Agenda:
SIGTRAN Protocol Suite
SCTP Protocol
M3UA Protocol
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
3
Part1
SIGTRAN protocol Suite
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
4
Objectives
Upon completion of this chapter, you
should be able to:
Understand the function of SIGTRAN protocol
suite
Understand the structure of SIGTRAN protocol
suite
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
5
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
6
SS7 link
STP
Today
MSC
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
IP-STP
univ.zte.com.cn
7
IP network requirements
Good quality network in place or available
VPN or firewall solutions for security
QoS for time-critical SS7 messages
SS7 for standard voice call (ISUP) is a timecritical application
Ensure sufficient bandwidth available for SS7
Public internet not recommended for SS7 over
IP
Reliable?
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
8
SIGTRAN
ISDN
IUA
SCTP
IP
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
9
Structure of SIGTRAN
Transportation layer
SCTP is adopted provide reliable
information transportation over IP
network.
User adaption
layer
univ.zte.com.cn
10
Position of Sigtran in
ZTE Softswitch
SCN
SCN
SIGTRAN
Media
stream
RTP
stream
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
Media
stream
univ.zte.com.cn
11
Part2
SCTP Protocol
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
12
Objectives
Upon completion of this chapter, you
should be able to:
Understand the concept of SCTP
Understand the message of SCTP
Understand the communication flow of SCTP
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
13
UDP
TCP
SCTP
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
USCTP
univ.zte.com.cn
14
SCTP in SIGTRAN
TCAP
TUP/ISUP
M3UA
SCCP
MTP3
M2UA
ISDN
M2PA
SUA
IUA
SCTP
IP
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
15
Need
QoS
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
16
No application specific
Control of protocol
parameters
Strict order or
Transmission control
TCP
Limitations
Limited scope of
TCP socket
Vulnerable for
DoS attack
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
17
Unreliable
No congestion control
No acknowledgement
UDP
Limitations
Multi-casting adds
Unnecessary traffic
too many
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
18
Network-level fault
tolerance
SCTP
Advantages
Protection against
flooding
Protection against
attacks
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
19
Definations in SCTP
SCTP End Point: Identified by IP
+port, just like TCP
Association (SCTP link ):A logic
connection set up through 4-way
hand shake, C/S mode.
Stream: there could be multi
streams in one Association. Stream
is a logic channel from one point
to another point.
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
20
Common Header
Verification Tag
Chunk #1
Packet Checksum
Chunk Type
Chunk Flags
Chunk Length
Chunk #n
xx Type = 0
U
unordered
beginning of
fragments
E
Ending fragments
xx
if unknown,then
U B E
Chunk Length
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
21
7 8
EndpointB
EndpointA
DATA
SACK
univ.zte.com.cn
22
10
11
12 13
EndpointB
DATA
SACK
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
23
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
24
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
25
Security of SCTP
The theory of DoS Attack:
The basic Dos attack is to occupy service
resource as more as possible by normal service
request, so that the normal user can not get
response.
To avoid being attacked, SCTP adopt :tag, cookie
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
26
SYN seq=x
EndpointB
SYN Flooding: the client sends out a lot of SYN message, and the
server can not get the ACK (the third message ) after it sends out SYN
+ACK (the second message ).The three-way handshake can not be finished, so
the server will use much memory resource for the half-connection, and send
SYN +ACK again and again.
In this example ,the client use a phony IP address.
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
27
Association Initiation
Create TCB
Send INIT
Start init-timer
Cookie wait
Receive INIT
Create Cookie
Send INIT-ACK
Start cookie-timer
Receive ACK
Stop init timer
Send Cookie-Echo
Start cookie-timer
Close
Cookie-Echoed
Receive Cookie-Echo
Stop cookie timer
Create TCB
Send Cookie-ACK
Receive Cookie-ACK
Stop Cookie-Timer
Established
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
28
Multi-homing
Both ends may have multiple IP-addresses (+ port number)
IPv4 or IPv6 or mixed
Periodic heartbeats
a.a.a.1
a.a.a.2
b.b.b.1
b.b.b.2
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
29
Data transfer
Packet no longer than the path MTU Multiple chunk in a packet
Two sequence numbers in each chunk
globalTSN for the association
Separate sequence numbers for each stream
U = unordered
Bundle, deliver immediately
BE =
10 beginning of fragments
00 middle chunk
01 end of fragments
11 no fragments
xx Type = 0
U B E
Chunk Length
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
30
Flow Control
Checksum in common header
Window based flow control (as in TCP)
Window size advertised (rcwnd) in each SACK
Selective ACK
To primary path
Describes possible tags
Fast-retransmission
Missing in 4 consecutive SACK
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
31
univ.zte.com.cn
32
Receive SHUTDOWN
Stop accepting new data
Shutdown
received
Cookie wait
Receive SHUTDOWN-ACK
Stop shutdown timer
Send SHUTDOWN-COMPLETE
Established
Closed
Receive SHUTDOWN-COMPLETE
Send SHUTDOWN-ACK
Stop shutdown-timer
ZTE University
Closed
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
33
Summary
Reliable transportation
Multi-stream
Multi-homing
Flow control
Congestion control
Initiate and shutdown flow
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
34
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
35
Part3
M3UA Protocol
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
36
Objectives
Upon completion of this chapter, you
should be able to:
Understand the concept of M3UA
Understand the messages in M3UA
Understand the signaling message flow of
M3UA
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
37
SCN
SS7
STP
SS7
Interworking
Function
M3UA
SS7
IP
NGN
MGC
SIP
AS
H.248
SSP
MG
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
38
SCTP in SIGTRAN
TCAP
TUP/ISUP
M3UA
SCCP
MTP3
M2UA
ISDN
M2PA
SUA
IUA
SCTP
IP
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
39
M3UA Position
SEP
SG
ISUP
ISUP NIF
MTP3
MTP3
M3UA
M3UA
MTP2
MTP2
SCTP
SCTP
MTP1
MTP1
IP
IP
PSTN
MGC/SS
ISUP
IP
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
40
Terminology
AS: A logical entity serving a specific Routing
Key
ASP: A process instance of an application server
Routing key: A routing key describes a set of SS7
parameters and parameter values that uniquely
define the range of signaling traffic to be handled
by a particular AS.
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
41
Routing key
of M3UA
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
42
AS & ASP
MGC/SS
AS
SG
Mode
ASP
MGC/SS
AS1
SG
ASP1
AS
P1
ASP2
Mode
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
43
M3UA Messages
Management (MGMT) Message
Transfer Messages
SS7 Signalling Network Management (SSNM)
Message
ASP State Maintenance (ASPSM) Messages
ASP Traffic Maintenance (ASPTM) Messages
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
44
Invalid Version
Unexpected Message
Protocol Error
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
45
Reserved
Application Server Inactive
Application Server active
Application Server Pending
Others
Insufficient ASP resources active in AS
Alternative ASP active
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
46
ASPSM messages
Reserved
1
2
3
4
5
6
ASP Up (UP)
ASP Down (DOWN)
Heartbeat (BEAT)
ASP Up Ack (UP ACK)
ASP Down Ack (DOWN ACK)
Heatbeat Ack (BEAT ACK)
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
47
ASPTM messages
0
1
2
3
4
Reserved
ASP Active (ACTIVE)
ASP Inactive (INACTIVE)
ASP Active Ack (ACTIVE ACK)
ASP Inactive Ack (INACTIVE ACK)
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
48
ASP
ASP UP
ASP UP ACK
ASP ACTIVE
ASP ACTIVE ACK
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
49
ASP1
ASP2
ASP3
ASP UP
ASP UP Ack
ASP UP
ASP UP Ack
ASP UP
ASP UP Ack
ASP Active(Ldshr)
ASP Active Ack
ASP Active(Ldshr)
ASP Active Ack
ZTE University
ASP Active(Ldshr)
ASP Active Ack
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
50
ASP Inactive
ASP1
ASP2
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
51
SSNM message
Reserved
Destination Unavailable (DUNA)
Destination Available (DAVA)
Destination State Audit (DAUD)
SS7 Network Congestion State (SCON)
Destination User Part Unavailable (DUPU)
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
52
SG
MTP3
TFC
TFC
TFC
TFC
SS
MTP3
M3UA
M3UA
TFC
SCON
SCON
TFC
TFC
SCON
SCON
SCONSCONSCON
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
53
SEP/STP
SG
MTP3
TFP
TFP
TFP
TFP
MTP3
M3UA
TFP
DUNA
TFP
TFP
DUNA
DUNA
SS
M3UA
DUNA
DUNA
DUNA
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
54
SEP/STP
SG
MTP3
MTP3
TFA/TFR
TFA/TFR
TFA/TFR
TFA/TFR
TFA/TFR TFA/TFR
SS
M3UA
DAVA
M3UA
DAVA
DAVA
DAVA
DAVADAVADAVA
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
55
SEP/STP
MTP3
SG
MTP3
UPU
SS
M3UA
M3UA
DUPU
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
56
SEP/STP
MTP3
SG
MTP3
OTHER
SS
M3UA
M3UA
DUNA/DAVA
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
57
SEP/STP
MTP3
SG
MTP3
M3UA
SS
DAUD
M3UA
DAVA/DUNA/SCON
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
58
SEP/STP
MTP3
SG
MTP3
TFP
SS
M3UA
M3UA
INACTIVE
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
59
SEP/STP
MTP3
SG
MTP3
SS
M3UA
M3UA
INACTIVE
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
60
SEP/STP
MTP3
SG
MTP3
TFA
SS
M3UA
M3UA
ACTIVE
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
61
SEP/STP
MTP3
SG
MTP3
SS
M3UA
M3UA
ACTIVE
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
62
ASP Status
ALTERNATE
ASP
TAKEOVER
ASP-ACTIVE
OR
ASP-STANDBY
ASP
ACTIVE
ASP DOWN/
SCTP CDI
ASP
INACT
ASP-INACT
ASP
UP
ASP DOWN/
SCTP CDI
ASP-DOWN
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
63
AS Status
One ASP trans ACTIVE
AS-INACT
AS-ACTIVE
Tr Trigger
at least one
ASP in INACT
one ASP
trans
to INACT
all ASP
trans to
DOWN
AS-PENDING
(queueing)
AS-DOWN
Tr Trigger no ASP
in INACT state
ZTE University
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
64
ZTE University
Thank
you!
TheinformationcontainedinthefileissolelypropertyofZTEcorporation.Anykindofdisclosingwithoutpermissionisprohibited.
univ.zte.com.cn
65