Diameter Routing

Use Case Guide

Diameter Routing Use Case Guide
Table Of Contents
Introduction ............................................................................................................................................................................................................................... 1
Sonus Diameter Signaling Controller Overview ................................................................................................................................................................ 1
Centralized Routing ..................................................................................................................................................................................................................2
Deployment of Multiple HSSs in Either an LTE/EPC or IMS Network .......................................................................................................................... 4
PCRF Binding ............................................................................................................................................................................................................................ 5
Roaming to Non-LTE Network Providers ............................................................................................................................................................................ 6
Roam Steering ...........................................................................................................................................................................................................................7
Security Inter-Network Topology Hiding ............................................................................................................................................................................ 8
Security TLS .............................................................................................................................................................................................................................. 9
Security IPsec ........................................................................................................................................................................................................................... 9
Routing Segmentation ............................................................................................................................................................................................................10
Glossary ..................................................................................................................................................................................................................................... 11
About Sonus .............................................................................................................................................................................................................................. 12
1
Diameter Routing Use Case Guide
Introduction
Today, mobile network operators are faced with the challenges of building 4G LTE/EPC networks to meet the demands of
subscriber devices such as smartphones and tablets, and the always on applications they support. As IMS and LTE
infrastructures are deployed, new elements such as policy servers, gateways, session controllers and charging systems are
interconnected. These new elements interwork via Diameter protocol to exchange critical network and services information.
Diameter signaling capabilities support all subscriber services, both revenue generating and non-revenue generating; thus its
criticality to the overall network performance and stability cannot be underestimated. The sheer volume and complexity of
this Diameter trafc places staggering demands on core signaling elements, causing serious concerns about the reliability
of the network. Many issues have arisen in the initial stages of network deployment, including network scalability, exponential
increases in signaling trafc, network outages, compatibility of interconnected network elements, and others too numerous
to mention.
Sonus Diameter Signaling Controller (DSC) Overview
The Sonus Diameter Signaling Controller (DSC) provides a exible, robust carrier-grade solution to the Diameter routing
dilemma. The Sonus DSC provides essential functions of centralized core and edge routing for Diameter protocol elements
widely used in the all-IP, service-oriented IMS and Long Term Evolution (LTE) architecture networks.
These functions include:
Diameter Routing Agent (DRA) as Specied by 3GPP
Diameter Edge Agent (DEA) as Specied by GSMA
Subscription Location Function (SLF)
Inter Working Function (IWF)
The Sonus DSCs exible and open architecture allows network planners the ability to make intelligent deployment decisions.
Diameter features can be deployed separately or within the same unit.
Extensible and Flexible Routing
Sonus developed the Sonus DSC to be a exible routing engine with advanced screening capabilities, providing the ability
to route and screen on any AVP in the message. Architected for extensibility, as well as straightforward evolution to future
Diameter applications, this high-powered platform makes the Sonus DSC ideal for LTE/EPC and IMS networks.
World-Class Support
Sonus provides a vast array of support services, including network planning, engineering, installation and training. The support
organization has a vast degree of expertise in network routing and protocols in mission-critical networks such as SS7. These
services are offered on an a la carte basis and can be tailored to meet individual customer requirements.
2
Centralized Routing
Problem: The architecture of the LTE/EPC network denes a large quantity of network elements, each with its own functionality. Each
network element can have multiple interfaces to other elements, based on the procedures and information exchanged. Additionally, the
peer concepts of the Diameter protocol and the connection-oriented methodologies of the Stream Control Transmission Protocol (SCTP)
signicantly increase the complexity and quantity of routing rules within the network. As the network continues to evolve and grow,
additional routing rules have to be provisioned in every network element. The routing complexity inherent within this mesh-type network
presents a twofold problem. First, the large task of maintenance and administration of routing rules on individual nodes directly affects
the consistency and scalability of the network. Second, placing the routing responsibility on the individual network elements can degrade
the network elements ability to perform its primary function.
Figure 1: LTE/EPC Network
IMS
HPMN
VPMN
Non-3GPP
Gxb
Rx
Rf
Ro
Sh
Ro
S6d S6a
S13
S6a
S6b SWd
SWa
SWm
STa
Gx
Gy Gz
Gxc
S9
SWx
Gxa
Cx
Cx
OCS
OFCS
H-PCRF
V-PCRF
ePDG SGSN
AAA
3GPP
AAA Proxy
P-GW
S-GW
AS
S-CSCF
I-CSCF
P-CSCF
Non Trusted
Non-3GPP
Trusted
Non-3GPP
MME
EIR
MME
HSS
3
Diameter Routing Use Case Guide
Figure 2: LTE/EPC Network with Sonus DSC
Solution: Sonus Diameter Signaling Controller provides a more efcient and scalable network architecture. By placing the Sonus DSC
in the core of the network, routing is centralized, reducing the quantity and complexity of inter-network and intra-network routing. Also,
since the routing responsibility is removed from individual network elements, their expensive resources are freed up to perform their
primary function, thus reducing network-wide capital expenditures.
Benefits: The benets realized from a network topology including a Sonus DSC are numerous:
Simplies Connectivity
Maintenance/Provisioning
Congestion Management
Routing/Trafc Management
Network Protection
Security Firewalls
Topology Hiding
HPMN
VPMN
Non-3GPP
S6d
S6a
Gx
Gxc
S9
IMS
STa
SWa
SWd
Non Trusted
Non-3GPP
Trusted
Non-3GPP
S6a
Gy
Gz
Sh
Ro
Cx
Ro
Cx
Rf
Rx
SWx
S6b
Gxb
OCS
OFCS
H-PCRF
AAA P-GW
MME
V-PCRF
ePDG
SGSN
3GPP
AAA Proxy
S-GW
MMC
AS
S-CSCF
I-CSCF
P-CSCF
HSS
Gxa
Cost-Effective and Flexible Network Deployment
Scalability
Load Balancing
Session Routing and Control
Interoperability
Value-Added Services
Roaming Management
Roam Steering
4
Deployment of Multiple HSSs in Either
an LTE/EPC or IMS Network
Diameter
HSS Routing Info
HSS-A
HSS-B
AS
I-CSCF
AAA
MME
S-CSCF

Figure 3: Multiple HSSs with No Diameter Router
Problem: Home Subscriber Servers (HSSs)
are deployed in LTE/EPC and IMS networks.
In IMS networks, HSSs are responsible for
subscriber-specic authorizations, service
proles and preferences. In LTE/EPC networks,
the HSS is responsible for Mobile Authentication
and other HLR-like functionalities. Either
an increase in numbers of subscribers or the
need for network diversication can drive
network operators to deploy multiple HSSs.
In networks that contain multiple HSSs, the
subscriber identity is used to route to the
appropriate HSS containing a particular
subscribers information. Each node requesting
the subscriber information would have to
be provisioned with routing information,
including subscriber identity and the HSSs
address containing the subscribers prole.
Solution: By deploying the Sonus
Diameter Signaling Controller with
Subscription Locator Functionality,
a more efcient routing methodology
can be used. The Sonus DSC with
SLF would be provisioned with
subscriber identity and mapping to
the appropriate HSS.
Benefits: The benets realized from
a network topology containing a Sonus
DSC with SLF functionality include:
More Efcient Routing
Enables a More Reliable
Network Multiple HSSs
Reduces Operations Expenditures
Less Routing Rules to Administer
Increases Network Scalability
Diameter
HSS Routing Info
HSS-B
HSS-A
DRA with SLF
AS
I-CSCF
AAA
MME
S-CSCF

Figure 4: Multiple HSSs with Sonus DSC
5
Diameter Routing Use Case Guide
PCRF Binding
Problem: The Policy Charging Rules Function (PCRF) is becoming increasingly more important in managing network operators
resources while balancing the subscribers network data utilization experience. As network operators push to increase their Annual
Revenue Per User (ARPU) by offering tiered data plans and the introduction of Voice over LTE (VoLTE), the role of the PCRF is one
of the most critical within the network. The PCRF is used for the authorization of a subscribers bandwidth allocation based on multiple
factors, including the subscribers past usage, the level of service a subscriber has purchased, and the amount of resources currently
available in the network. When a subscriber establishes an IP/data session (IP-CAN) within the network, a PCRF is assigned to authorize
the session and maintain a Quality of Service (QoS) for the session. IP-CAN/PCRF binding ensures the initial PCRF assigned for the
session is responsible for maintaining the rules and QoS during the life of the session. Multiple PCRFs are deployed in the network,
based on either network scalability requirements or PCRF vendor product architectures. This type of network topology requires an
IP-CAN/PCRF binding capability within the network.
Solution: By deploying the Sonus Diameter Signaling Controller including IP-CAN/PCRF binding capabilities, multiple PCRFs can
be provisioned in the network. The exibility provided by the Sonus DSC enables efcient network design to meet the needs of
both operators and subscribers. The Sonus DSC IP-CAN/PCRF binding functionality can be integrated with any of the Sonus DSC
functionalities or deployed on a standalone basis.
Benefits: The benets realized from a network topology containing a Sonus DSC with the IP-CAN/PCRF binding functionality include:
Network Scalability
Network Design Flexibility

Figure 5: PCRF Binding with Sonus DSC
P-GW
S-GW
P-CSCF
Trusted
Non-3GPP
V-PCRF
PCRF
PCRF
PCRF
PCRF
PCRF
PCRF
6
Solution: The deployment of the Sonus Diameter Signaling Controller, complete with the Inter Working Function (IWF), solves the
problem of subscribers roaming from an LTE/EPC Diameter signaling protocol network to a non-LTE network by providing the translation
and mapping capability required for communication between Diameter-based networks and SS7-based networks.
Benefits: The benets realized from a network topology containing a Sonus DSC with the SS7/Diameter IWF include:
Smooth Migration to
LTE/EPC Network Topologies
Better Roaming Capabilities
Roaming to Non-LTE Network Providers
Problem: When mobile network operators start their deployment of LTE/EPC, it is important to provide subscribers with the widest
breadth of coverage possible. In order to provide the coverage required by the subscribers, the home network (LTE/EPC) provider might
have roaming agreements with non-LTE networks such as 2G or 3G operators. The home network provider would have provided its
customers with multi-mode handsets to facilitate this roaming. Since the 2G/3G networks are SS7 signalingbased, and the LTE/EPC
networks are Diameter signalingbased, an interworking function is required to translate from the Diameter signaling protocol in
the LTE network to the SS7/MAP signaling protocol used in the 2G/3G networks. Without this translation/interworking function, it is
impossible for a subscriber to roam from an LTE/EPC/Diameter network to a 2G/3G/SS7/MAP network.
Figure 7: Roaming to Non-LTE Network with Sonus DSC
Diameter
SS7/MAP
Home LTE/EPC Network
Visited 2G/3G Network
HSS HLR
MME
DRA IWF
LTE Subscriber LTE Subscriber
Information
SGSN
Diameter - MAP
Interworking
Diameter
SS7/MAP
Home LTE/EPC Network
Visited 2G/3G Network
HSS HLR
MME
SGSN
Figure 6: Roaming to Non-LTE Network
Increased Subscriber Satisfaction
Reduced Churn
Increased Revenues
7
Diameter Routing Use Case Guide
LTE Subscriber
VPLMN A
MME SGSN PCRF
VPLMN B
MME SGSN PCRF
VPLMN C
MME SGSN PCRF
x
HPMN
HSS
hPCRF
Roam Steering
Problem: As mobile operators address the business challenges of trying to increase ARPU and decrease subscriber churn, some of the
most critical factors they face are roaming management, roaming agreements and QoS while roaming. To maintain nancial margins,
mobile operators must be able to negotiate equitable roaming agreements and subsequently manage subscriber roaming to meet the
conditions of the roaming agreements. Additionally, subscriber roaming satisfaction directly correlates to a reduction in churn. Currently
most of the Steering of Roaming (SoR) solutions are SS7-based and are not deployable in LTE/EPC networks without major modications.
Solution: The deployment of the Sonus DSC as a Diameter Edge Agent as recommended by GSMA (PRD IR.88 LTE Roaming
Guidelines 3.0) provides a single point of interface to all interconnected networks, whether directly connected or connected through
a Hub Provider. Diameter messages used for Roam Steering pass from the VPLMNs through the Sonus DSC acting as a Diameter Edge
Agent. The Diameter messages are passed to the Roam Steering application registered with the UDR, where they are acted upon and the
resultant message sent back to the UDR for routing.
Benefits: The benets realized from a network
topology containing a Sonus DSC acting as a
Diameter Edge Agent with Roam Steering include:
More Efcient Routing
Higher Roaming Revenues
Better Roaming Capabilities
Increased Subscriber Satisfaction
Reduced Churn
Increased Revenues

Figure 8: Roam Steering with Sonus DSC
The following explanation is represented in Figure 8 (above). LTE Subscriber turns on their phone in an area served by VPLMN A,
VPLMN B and VPLMN C. Both VPLMN A and VPLMN B have roaming agreements with LTE Subscribers HPLMN; however, the
agreement with VPLMN B calls for a higher percentage of trafc than VPLMN A. The LTE Subscriber handset sends a registration
message to its HPLMN through VPLMN A and the message is received by the Sonus Diameter Signaling Controller in the HPLMN. The
Sonus DSC forwards the registration message to the Roam Steering application, which checks the subscriber, roaming conditions and
roaming agreement parameters. The Roam Steering application nds that VPLMN B is the optimum roaming provider for both itself
and the subscriber. The Roam Steering application sends rejection messages to the UDR for routing to VPLMN A and ultimately to
the LTE Subscribers handset. The rejection message is received by the LTE Subscribers handset. The LTE Subscribers handset
sends a registration message to its HPLMN through VPLMN B and the message is received by the Sonus DSC in the HPLMN. The
UDR forwards the registration message to the Roam Steering application which checks the subscriber, roaming conditions and roaming
agreement parameters. The Roam Steering application sees that the registration is for VPLMN B and that it is the chosen provider.
The Roam Steering application lets the registration process continue to its completion.
8
IMS
HPMN
VPMN
Non-3GPP
Gxb
Rx
Rf
Ro
Sh
Ro
S6d S6a
S13
S6a
S6b SWd
SWa
SWm
STa
Gx
Gy Gz
Gxc
S9
SWx
Gxa
Cx
Cx
OCS
OFCS
H-PCRF
ePDG SGSN
AAA
3GPP
AAA Proxy
P-GW
S-GW
AS
S-CSCF
I-CSCF
P-CSCF
Non Trusted
Non-3GPP
MME
EIR
MME
HSS
Trusted
Non-3GPP
V-PCRF
Security
Inter-Network
Topology Hiding
Problem: During the design phase of an
LTE/EPC network, service providers might
decide to interconnect other networks at
the individual network element level, using
the topology shown in Figure 9. When
using this interconnection scheme, both
the visited and home networks topology
are totally open to each other, including
node types, addresses, etc. In this open
type of interconnection, if a malicious
hacker is able to compromise a trusted
node within the network, access can be
gained to most other network components
and then further attacks mounted based
on the information gained.
Solution: The deployment of the Sonus
Diameter Signaling Controller as a
Diameter Edge Agent as recommended
by GSMA (PRD IR.88 LTE Roaming
Figure 9: LTE/EPC Network
Figure 10: Sonus DSC/Diameter Edge Agent
Guidelines 3.0) provides a single point of interface to all interconnected networks, whether directly connected or connected through a
Hub Provider. This single point of contact for all interconnected networks enables Topology Hiding, thus increasing the security of
the network by protecting the nodes/addresses from being exported to foreign networks.
Benefits: The benets realized from a network topology containing the Sonus DSC deployed as a Diameter Edge Agent include:
Better Network Security
More Efcient Inter-Network Routing
HPMN
S6a
HSS
SGSN
MME
vPCRF
VPMN
S6d
S9
hPCRF
9
Diameter Routing Use Case Guide
Security TLS
Problem: Although there are a large number of security mechanisms specied for the EPC network, security challenges continue
to exist due to the open nature of the architecture. Protocols used in the EPC, including Diameter, Stream Control Transmission
Protocol (SCTP) and GPRS Tunneling Protocol (GTP), have specied security improvements. However, security vulnerabilities still
exist and can be introduced in the network design phase, the implementation phase or the operations/conguration phase.
Solution: The deployment of a Sonus Diameter Signaling Controller with its inherent Transport Layer Security (TLS) capability
signicantly increases the security of the control/signaling plane. TLS is a cryptographic protocol that provides security for IP
communications. TLS encrypts packets within a segment of network connections at the application layer, using asymmetric
cryptography for key exchange, symmetric encryption for privacy and message authentication codes for message integrity.
Benefits: The benets realized from a network topology including a Sonus DSC including TLS include:
Increased Network Control/Signaling Plane Security
Increased Network Reliability
Hop by Hop Security
Network Address Translator (NAT) Traversal
Security IPsec
Problem: Although there are a large number of security mechanisms specied for the EPC network, security challenges continue to
exist due to the open nature of the architecture. Protocols used in the EPC, including Diameter, Stream Control Transmission Protocol
(SCTP) and GPRS Tunneling Protocol (GTP), have specied security improvements. However, security vulnerabilities still exist and can
be introduced in the network design phase, the implementation phase or the operations/conguration phase.
Solution: The deployment of a Sonus DSC with its inherent IP Security (IPsec) capability signicantly increases the security of the
control/signaling plane. IPsec is a protocol suite used to secure IP communications by using authentication and encryption of IP
packets during the communications session. IPsec has the capability to establish mutual authentication at the beginning of a session
and to negotiate cryptographic keys used during the session. IPsec (RFCs 2401, 2406, 2409, 2411) is a protocol suite that runs at the
networking layer (L3). It provides condentiality, integrity protection, data origin authentication and replay protection of each message
by encrypting and signing every message.
Benefits: The benets realized from a network topology containing a Sonus DSC with IPsec include:
Increased Network Control/Signaling Plane Security
Increased Network Reliability
10
Routing Segmentation
Problem: The deployment of LTE/EPC by network service providers has uncovered issues and opportunities directly related to
routing messages to other interconnected networks. One of the key opportunities is for an LTE/EPC network operator to resell inter-
network connection and message transport capabilities to other operators. The combination of a complex LTE/EPC network, numerous
interconnected networks, and vendors wide diversity of equipment presents service providers with the challenge of setting up routing
rules, shaping trafc and handling Diameter protocol inconsistencies on an interconnected network basis. The deployment of separate
Diameter routers has been investigated; however, this signicantly increases the operations and capital cost. Another solution is having
consolidated routing rules for both intra-network and inter-network trafc. This massive routing conguration leads to complexity and
increases the chances of errors when making routing/trafc rules changes.

UDR
LTE/EPC LTE/EPC
HSS
P-GW eNodeB
S-GW
MME
IMS
HSS
AS
CSCF
IMS
HSS
AS
CSCF
HSS
P-GW eNodeB
S-GW
MME
LTE/EPC LTE/EPC
HSS
P-GW eNodeB
S-GW
MME
IMS
HSS
AS
CSCF
IMS
HSS
AS
CSCF
HSS
P-GW eNodeB
S-GW
MME
Virtual
Virtual
Virtual
Virtual
Benefits: The benets realized from a network topology containing a Sonus DSC are numerous:
Simplies Routing
Maintenance/Provisioning
Congestion Management
Routing/Trafc Management
Figure 11: Roam Steering with Sonus DSC
Solution: The Sonus Diameter Signaling Controller, built on Sonuss network-proven Dynamic Routing Engine, provides more efcient,
exible and scalable Diameter routing solutions. The Sonus DSC enables the denition of separate Diameter Routing Agents within
a single Sonus DSC. Each of these virtual Sonus DSCs has its own separate routing and screening rules which include the ability to
shape trafc on a per-peer basis. This shaping includes trafc ow control, throttling and congestion per peer. Sonuss industry-proven,
exible routing concept provides increased control, as well as ease of implementation, and it opens the door to increased service
provider revenues.
Load Balancing
Session Routing and Control
Interoperability
Network Protection
Topology Hiding
Cost-Effective and Flexible
Network Deployment
Value-Added Services
11
Diameter Routing Use Case Guide
Glossary
2G Second Generation
3G Third Generation
3GPP Third Generation Project Partnership
4G Fourth Generation
AAA Authentication Authorization Accounting
ARPU Annual Revenue Per User
AS Application Server
AVP Attribute Value Pair
DEA Diameter Edge Agent
DRA Diameter Routing Agent
DSC Diameter Signaling Controller
EPC Evolved Packet Core
EPDG Evolved Packet Data Gateway
GPRS General Packet Radio Service
GSMA GSM Association
GTPQ GPRS Tunneling Protocol
HPLMN Home Public Land Mobile Network
HLR Home Location Register
HSS Home Subscriber Server
I-CSCF Interrogating Call Session Control Function
IETF Internet Engineering Task Force
IMS IP Multimedia Subsystem
IP Internet Protocol
IP-CAN Internet Protocol Connection Access Network
IPsec Internet Protocol Security
IWF Inter Working Function
LTE Long Term Evolution
MAP Mobile Application Part
MME Mobility Management Entity
NAT Network Address Translator
OCS Online Charging System
OEM Original Equipment Manufacturer
OFCS Off Line Charging System
OPex Operations Expenditures
PCRF Policy and Charging Rules Function
P-CSCF Proxy Call Session Control Function
P-GW PDN Gateway Packet Data Network Gateway
PRD Permanent Reference Document
QoS Quality of Service
RFC Request for Comment
S-CSCF Serving Call Session Control Function
SBC Session Border Controller
SCTP Stream Control Transmission Protocol
SGSN Serving GPRS Support Node
S-GW Serving Gateway
SLF Subscription Locator Function
SoR Steering of Roaming
SS7 Signaling System Seven
TLS Transport Layer Security
VoLTE Voice over Long Term Evolution
VPLMN Visited Public Land Mobile Network
12
About Sonus
Sonus is a global supplier of advanced, high availability network communications solutions. Its Diameter and SS7 Signaling Systems
provide tightly integrated signaling and advanced routing capabilities and applications that uniquely span the mission-critical
demands of both existing and next-generation 4G LTE and IMS telecommunications networks. From VoIP to SIP, session border
controllers to session management, the world communicates better on Sonus Networks. Since 1997, Sonus has built some of the
worlds most advanced IP communications networksboth as the preferred technology partner to the worlds largest service
providers, and as a trusted partner to Global 500 enterprises that require secure, real-time communications. Today, Sonus solutions
drive more VoIP trafc than any other vendor: over one billion minutes every day.
DS-1401 5/28
4 Technology Park Drive
Westford, MA 01886
U.S.A.
Tel: +1-855-GO-SONUS
Sonus North American
Headquarters
1 Fullerton Road #02-01
One Fullerton
Singapore 049213
Singapore
Tel: +65-68325589
Sonus APAC Headquarters
Edison House
Edison Road
Dorcan, Swindon
Wiltshire
SN3 5JX
Tel: +44-14-0378-8114
Sonus EMEA Headquarters
The content in this document is for informational purposes only and is subject to change by Sonus Networks without notice. While reasonable efforts have been made in the preparation
of this publication to assure its accuracy, Sonus Networks assumes no liability resulting from technical or editorial errors or omissions, or for any damages resulting from the use of
this information. Unless specically included in a written agreement with Sonus Networks, Sonus Networks has no obligation to develop or deliver any future release or upgrade or any
feature, enhancement or function.
Copyright 2014 Sonus Networks, Inc. All rights reserved. Sonus is a registered trademark of Sonus Networks, Inc. All other trademarks, service marks, registered trademarks or
registered service marks may be the property of their respective owners.
To learn more, call Sonus at 855-GO-SONUS
or visit us online at www.sonus.net