The NetMaut RADIUS Server authenticates and authorizes subscribers accessing a mobile network via gateways (GGSN, PGW), which require the RADIUS protocol for setting up the connection.
The RADIUS Server may be deployed for the following functions:
- authentication and authorization based on user names and passwords (may be relevant in enterprise business)
- allocation of IP addresses
- setting of billing plans and charging identifiers (if the default at the gateway is not sufficient)
- setting of session timeouts
If the RADIUS Server is involved in setting up the session, it can determine how the session is controlled and how the volume and time quota used up during the session are managed.
‘Control’ here refers to configuration of the session (Quality of Service, bandwidths, redirects etc.), while managing the quota is usually referred to as ‘Quota Handling’ or ‘Calculation’.
Integration of the NetMaut RADIUS Server
The NetMaut RADIUS Server uses the RADIUS protocol for the communication with the gateways (GGSN, PGW).
Session control takes place via
- manufacturer specific QoS attributes
- RADIUS filter lists
- gateway ACLs
- „Change of Authorization“ or „Packet of Disconnect“
Quota management takes place by RADIUS accounting and respective configuration of the accounting intervals.
Why not NASREQ?
In a pure Diameter environment the RADIUS Server is replaced by a Diameter NASREQ Server. We at Acctopus hold such a Diameter NASREQ Server but we experienced that gateway manufacturers do not keep up this strategy consequently. Moreover Diameter accounting ended up in a dead-end at the IETF and 3GPP which means that no consistent implementations exist.
Therefore we recommend our customers to use a RADIUS Server until EPC can do without the legacy IP allocation via NASREQ or RADIUS. This will probably take a while considering the facts that gateway interaction in cases of failover is not specified yet and IPv6 networks are not implemented completely so far.