Sonstiges: |
- Nachgewiesen in: USPTO Patent Grants
- Sprachen: English
- Patent Number: 10278,226
- Publication Date: April 30, 2019
- Appl. No: 15/594582
- Application Filed: May 13, 2017
- Assignees: ARRIS Enterprises LLC (Suwanee, GA, US)
- Claim: 1. A non-transitory computer-readable storage medium for use in conjunction with a wireless services gateway, the computer-readable storage medium storing a program module to authenticate wireless user equipment, wherein, when executed by the wireless services gateway, causes the wireless services gateway to perform one or more operations comprising: receiving, from an input node of an interface circuit of the wireless services gateway, a Dynamic Host Configuration Protocol (DHCP) request associated with the wireless user equipment; assigning an Internet Protocol (IP) address to the wireless user equipment; providing, to an output node of an interface circuit of the wireless services gateway, a DHCP offer/acknowledge message with the assigned IP address intended for the wireless user equipment; redirecting communication associated with the wireless user equipment to a web portal server for authentication; obtaining, via the input node, authentication information associated with the web portal server regarding the wireless user equipment; and forwarding, via the output node, the authentication information intended for an authentication server.
- Claim: 2. The computer-readable storage medium of claim 1 , wherein, when the authentication occurs, the one or more operations comprise: establishing a tunnel by communicating, to the output node and from the input node, tunnel packets associated with a data service gateway, wherein the tunnel packets comprise the assigned IP address; receiving, from the input node, a data packet associated with the wireless user equipment; encapsulating the data packet, wherein the encapsulating leaves the IP address in the data packet unchanged; and providing, via the output node, the encapsulated packet intended for the data service gateway.
- Claim: 3. The computer-readable storage medium of claim 2 , wherein the one or more operations comprise: receiving, from the input node, another encapsulated data packet associated with the data service gateway; and de-encapsulating the other encapsulated data packet, wherein the de-encapsulating leaves the IP address in the encapsulated data packet unchanged; and providing, to the output node, the other data packet associated with the wireless user equipment.
- Claim: 4. The computer-readable storage medium of claim 1 , wherein, when the authentication fails, the one or more operations comprise revoking a DHCP offer/acknowledge message associated with the wireless user equipment.
- Claim: 5. The computer-readable storage medium of claim 4 , wherein the DHCP offer/acknowledge message comprises a DHCP lease.
- Claim: 6. The computer-readable storage medium of claim 1 , wherein the one or more operations comprise: receiving, from the input node, a translation packet associated with a Gateway General Packet Radio Service (GPRS) Support Node (GGSN), the translation packet including a new IP address assigned to the wireless user equipment; and translating the IP address of the wireless user equipment with the assigned new IP address.
- Claim: 7. The computer-readable medium of claim 1 , wherein the one or more operations comprise: receiving, from the input node, data packets associated with the wireless user equipment; and routing the data packets to at least a wide area network by a breakout.
- Claim: 8. The computer-readable medium of claim 7 , wherein the breakout comprises at least one of: a breakout between an access point and the wireless services gateway; a breakout at the wireless services gateway; a breakout between the wireless services gateway and at least the wireless service provider network; and a breakout after the wireless service provider network.
- Claim: 9. The computer-readable medium of claim 1 , wherein the one or more operations comprise determining whether to route the data traffic by the breakout based at least in part on a predefined routing policy.
- Claim: 10. The computer-readable medium of claim 1 , wherein the wireless services gateway comprises a data log interface and the one or more operations comprise: providing, to the output node, data-log packets associated with an access point; communicating with a local data log; and communicating with an event handler.
- Claim: 11. A method for authenticating a wireless user equipment, comprising: by a wireless services gateway: receiving, from an input node of an interface circuit of the wireless services gateway, a Dynamic Host Configuration Protocol (DHCP) request associated with the wireless user equipment; assigning an Internet Protocol (IP) address to the wireless user equipment; providing, to an output node of an interface circuit of the wireless services gateway, a DHCP offer/acknowledge message with the assigned IP address intended for the wireless user equipment; redirecting communication associated with the wireless user equipment to a web portal server for authentication; obtaining, via the input node, authentication information associated with the web portal server regarding the wireless user equipment; and forwarding, via the output node, the authentication information intended for an authentication server.
- Claim: 12. The method of claim 11 , wherein, when the authentication occurs, the method comprises: establishing a tunnel by communicating, to the output node and from the input node, tunnel packets associated with a data service gateway, wherein the tunnel packets comprise the assigned IP address; receiving, from the input node, a data packet associated with the wireless user equipment; encapsulating the data packet, wherein the encapsulating leaves the IP address in the data packet unchanged; and providing, via the output node, the encapsulated packet intended for the data service gateway.
- Claim: 13. The method of claim 12 , wherein the method comprises: receiving, from the input node, another encapsulated data packet associated with the data service gateway; and de-encapsulating the other encapsulated data packet, wherein the de-encapsulating leaves the IP address in the encapsulated data packet unchanged; and providing, to the output node, the other data packet associated with the wireless user equipment.
- Claim: 14. The method of claim 11 , wherein, when the authentication fails, the method comprises revoking a DHCP offer/acknowledge message associated with the wireless user equipment.
- Claim: 15. The method of claim 11 , wherein the method comprises: receiving, from the input node, a translation packet associated with a Gateway General Packet Radio Service (GPRS) Support Node (GGSN), the translation packet including a new IP address assigned to the wireless user equipment; and translating the IP address of the wireless user equipment with the assigned new IP address.
- Claim: 16. The method of claim 11 , wherein the method comprises: receiving, from the input node, data packets associated with the wireless user equipment; and routing the data packets to at least a wide area network by a breakout.
- Claim: 17. The method of claim 16 , wherein the breakout comprises at least one of: a breakout between an access point and the wireless services gateway; a breakout at the wireless services gateway; a breakout between the wireless services gateway and at least the wireless service provider network; and a breakout after the wireless service provider network.
- Claim: 18. The method of claim 11 , wherein the method comprises determining whether to route the data traffic by the breakout based at least in part on a predefined routing policy.
- Claim: 19. The method of claim 11 , wherein the wireless services gateway comprises a data log interface and the method comprises: providing, to the output node, data-log packets associated with an access point; communicating with a local data log; and communicating with an event handler.
- Claim: 20. A wireless services gateway, comprising: an interface circuit configured to communicate with an access point, a web portal server and an authentication server, wherein the wireless services gateway is configured to: receive, from an input node of the interface circuit, a Dynamic Host Configuration Protocol (DHCP) request associated with wireless user equipment; assign an Internet Protocol (IP) address to the wireless user equipment; provide, to an output node of the interface circuit, a DHCP offer/acknowledge message with the assigned IP address intended for the wireless user equipment; redirect communication associated with the wireless user equipment to the web portal server for authentication; obtain, via the input node, authentication information associated with the web portal server regarding the wireless user equipment; and forward, via the output node, the authentication information intended for an authentication server.
- Claim: 21. The wireless services gateway of claim 20 , wherein, when the authentication occurs, the wireless services gateway is configured to: establish a tunnel by communicating, to the output node and from the input node, tunnel packets associated with a data service gateway, wherein the tunnel packets comprise the assigned IP address; receive, from the input node, a data packet associated with the wireless user equipment; encapsulate the data packet, wherein the encapsulating leaves the IP address in the data packet unchanged; and provide, via the output node, the encapsulated packet intended for the data service gateway.
- Claim: 22. The wireless services gateway of claim 21 , wherein the wireless services gateway is configured to: receive, from the input node, another encapsulated data packet associated with the data service gateway; and de-encapsulate the other encapsulated data packet, wherein the de-encapsulating leaves the IP address in the encapsulated data packet unchanged; and provide, to the output node, the other data packet associated with the wireless user equipment.
- Claim: 23. The wireless services gateway of claim 20 , wherein, when the authentication fails, the wireless services gateway is configured to revoke a DHCP offer/acknowledge message associated with the wireless user equipment.
- Patent References Cited: 8116264 February 2012 Lim ; 2006/0064589 March 2006 Taniguchi ; 2007/0204330 August 2007 Townsley ; 2008/0281973 November 2008 Yang ; 2009/0070337 March 2009 Romem ; 2009/0135795 May 2009 Lim ; 2010/0041364 February 2010 Lott ; 2010/0185537 July 2010 Bari ; 2012/0036361 February 2012 Tyhurst ; 2013/0097418 April 2013 Bhatt ; 2013/0139221 May 2013 Gundavelli
- Primary Examiner: Cho, Hong S
- Attorney, Agent or Firm: Wiener, Stewart M. ; Stupp, Steven E.
|