Abstract: In accordance with various embodiments, a Home Agent receives a registration request and sends a registration reply having a network mask extension including a network mask associated with the home address of the Mobile Node. Once the Mobile Node has obtained its network mask, it may send packets such as broadcast packets, as well as roam to its Home Agent. Additionally, in accordance with various embodiments, when a Home Agent receives a broadcast packet, it forwards the broadcast packet to a care-of address of the broadcast packet without duplicating the broadcast packet. Instead, the Foreign Agent obtains the subnet from the broadcast packet, identifies the Mobile Node(s) on that subnet, and duplicates the broadcast packet for transmission to the identified Mobile Node(s).

Abstract: Systems and methods are disclosed for receiving a request at a packet gateway to allocate a new bearer for a mobile device on a wireless telecommunications network; identifying, at the packet gateway, existing bearers that have a quality of service (QoS) that can be reduced without dropping the existing bearers; reducing, at the packet gateway, the QoS of the existing bearers; reclaiming resources at the packet gateway that were previously in use by the existing bearers; and allocating the new bearer for the mobile device using the reclaimed resources at the packet gateway without causing any of the existing bearers to be disconnected, wherein the existing bearers have a lower priority than the new bearer, and wherein the existing bearers have previously been designated as capable of being preempted.

Abstract: Various security mechanisms may be used independently, or in combination with one another, to authenticate the identity of a node during the Mobile IP registration process. First, an Access Point receiving a packet from a node verifies that the source MAC address identified in the packet is in the Access Point's client association table. In addition, as a second mechanism, the Access Point ensures that a one-to-one mapping exists for the source MAC address and source IP address identified in the packet in a mapping table maintained by the Access Point. As a third mechanism, a binding is not modified in the mobility binding table maintained by the Home Agent unless there is a one-to-one mapping in the mobility binding table between the source MAC address and the source IP address. Similarly, the Foreign Agent may also maintain a mapping between the source IP address and the source MAC address in its visitor table to ensure a one-to-one mapping between a source IP address and the associated MAC address.

Abstract: The disclosed embodiments enable service policies to be provisioned for a Mobile Node dynamically. A network device receives a message including at least one of one or more attributes of a Mobile IP session and one or more user preferences associated with the Mobile Node. One or more rules to be applied to the Mobile Node may then be identified. One or more of the identified rules are executed according to at least one of one or more of the attributes of the Mobile IP session and one or more of the user preferences associated with the Mobile Node.

Abstract: Methods and apparatus for supporting broadcast traffic in Mobile IP are disclosed. When a Mobile Node registers via a Foreign Agent supporting Mobile IP, the Foreign Agent receives a registration request from a Mobile Node and sends the registration request to a Home Agent. A registration reply received from the Home Agent has a network mask extension including a network mask associated with the home address of the Mobile Node. The Foreign Agent then sends the registration reply to the Mobile Node. Alternatively, the Mobile Node may register via a collocated care-of address, in which case the registration reply is received directly from the Home Agent. Once the Mobile Node has obtained its network mask, it may send packets such as broadcast packets, as well as roam to its Home Agent. Additionally, in accordance with various embodiments, the Foreign Agent duplicates broadcast packets for transmission to Mobile Nodes, rather than receiving the duplicated packets from the Home Agent.

Abstract: A method is provided in one example embodiment and includes communicating a message to a remote data plane element in order to request a data plane resource for hosting a session. The method also includes receiving a response at a network element acknowledging the message. Data plane traffic is managed at the remote data plane element based on enforcement rules. The enforcement rules are provisioned in a table element at the remote data plane element, and the table element reflects a portion of a master table element included in the network element.

Abstract: An example method includes receiving a packet for a flow associated with a subscriber; determining if a home agent element has a context for the flow by communicating a handover query to a network element; assigning an Internet protocol (IP) address for the subscriber in response to the home agent element not having the context for the flow; and creating a session for the subscriber, where the session is created using inter-process communication between the home agent element and the network element. The method can further include maintaining communications with a packet data serving node (PDSN) and an Authentication, Authorization, and Accounting (AAA) element in order to assist in roaming between a Long Term Evolution (LTE) network and a code division multiple access (CDMA) network. The inter-process communication is used to maintain the session for the subscriber when the subscriber is attached to different networks.

Abstract: A method is provided in one example embodiment and includes receiving a data packet transported on a backhaul link at a first network element; identifying whether the data packet is an upstream data packet; identifying whether the data packet matches an internet protocol (IP) access control list (ACL) or a tunnel endpoint identifier; performing a network address translation on the data packet; and offloading the data packet from the backhaul link. In certain implementations, the method can include identifying that the data packet does not match the IP ACL or the tunnel endpoint identifier; and communicating the data packet to a second network element. In other instances, the method can include identifying that the data packet is a downstream data packet; and restoring a tunnel header and tunnel identification based on an IP address of the data packet.

Abstract: A method is provided in one example embodiment and includes communicating an in-band message packet from a first network element; receiving a response to the in-band message from a second network element, the response contains tunnel identification binding data that identifies a tunnel on a backhaul link on which traffic from a user equipment can flow; and receiving instructions from the second network element to offload a received data packet from the backhaul link. In particular instances, the in-band message is set to loopback when the in-band message is sent from the first network element. In other embodiments, the tunnel identification binding data is provided in the payload of the in-band message when the in-band message is sent from the first network element. In other examples, the method can include receiving an assigned Internet protocol (IP) address of the user equipment in the response to the in-band message.

Abstract: A method is provided in one example embodiment and includes receiving a downstream data packet transported on a backhaul link at a first network element, the downstream data packet is associated with a user equipment; identifying whether a downstream tunnel used to communicate the data packet to the user equipment has become dormant; and communicating an in-band message to a second network element that the downstream tunnel is dormant. In other examples, the method can include dropping the data packet when a network address port translation binding has expired or does not exist. In certain implementations, the method can include identifying the downstream tunnel as dormant when an activity timer has expired, or identifying the downstream tunnel as dormant based on a stale state setting.

Abstract: A method is provided in one example embodiment and includes receiving a data packet transported on a backhaul link at a first network element; de-capsulating the data packet; identifying whether the data packet is an upstream data packet; identifying whether the data packet matches an internet protocol (IP) access control list (ACL) or a tunnel endpoint identifier; and offloading the data packet from the backhaul link. In more specific embodiment, the method can include identifying that the data packet does not match the IP ACL or the tunnel endpoint identifier; and communicating the data packet to a second network element. In other examples, the method can include identifying that the data packet is a downstream data packet; identifying a service to be performed for the data packet that cannot be performed at the first network element; and communicating the data packet to a second network element.

Abstract: A method is provided in one example embodiment and includes receiving a data packet over a first link at a first network element; establishing an out-of-band channel over a second link between the first network element and a second network element; and receiving instructions at the first network element to offload the data packet from the first link. In more particular embodiments, the first network element is a mobile enabled router, and the second network element is a gateway general packet radio service support node or a packet data network gateway. The method can also include receiving a discovery message from the second network element, the discovery message triggering the establishment of the out-of-band channel. In certain cases, the data packet is offloaded based on a type of data in the data packet.

Abstract: A method for communicating in a loadbalancing environment is provided that in a particular embodiment includes receiving a request packet from a network access server (NAS) to initiate a communication session. The request packet is then communicated to a tunneling protocol network server (TPNS) and a response packet is received in response to the request packet. The response packet establishes a tunnel that facilitates the communication session and that includes an identification element associated with the TPNS such that a data transfer associated with the communication session is executed between the NAS and the TPNS.

Abstract: The disclosed embodiments enable service policies to be provisioned for a Mobile Node dynamically. A network device receives a message including at least one of one or more attributes of a Mobile IP session and one or more user preferences associated with the Mobile Node. One or more rules to be applied to the Mobile Node may then be identified. One or more of the identified rules are executed according to at least one of one or more of the attributes of the Mobile IP session and one or more of the user preferences associated with the Mobile Node.

Abstract: Methods and apparatuses for conserving addresses. The invention allows a mobile node to manage its own address, shifting responsibility away from the home agent. The home agent is able to detect when a mobile node has already been assigned an address for use of resources on the network. When the home agent recognizes that the mobile address has already been assigned an address, it allows the mobile node to use its already-assigned address in connection with mobile IP services. Additionally, the mobile node can be notified that it is now responsible for renewing the address.

Abstract: The disclosed embodiments enable service policies to be provisioned for a Mobile Node dynamically. A network device receives a message including at least one of one or more attributes of a Mobile IP session and one or more user preferences associated with the Mobile Node. One or more rules to be applied to the Mobile Node may then be identified. One or more of the identified rules are executed according to at least one of one or more of the attributes of the Mobile IP session and one or more of the user preferences associated with the Mobile Node.

Abstract: Methods and apparatus for supporting the management of mobility and addresses by a Customer Premises Edge (CPE) router in a Mobile IP environment are disclosed. When a network prefix is allocated by a DHCP router to the CPE router, the CPE router divides the network prefix among its interfaces, and allocates home addresses to Mobile Nodes connected to its interfaces, as appropriate. The CPE router also assists in performing Duplicate Address Detection (DAD) to ensure that a home address that has been allocated has not already been assigned to another node. Upon completion of registration of a Mobile Node that is connected to one of the interfaces of the CPE router with its Home Agent, the CPE router assists in routing traffic to the Mobile Node. In addition, the CPE router assists in notifying nodes when one of the Mobile Nodes has moved, as well as when one of the Mobile Nodes has de-registered with the Home Agent.

Abstract: An example method is provided and includes receiving a packet associated with a flow, determining a tunnel identifier for the flow, and determining a flow identifier for the flow. The method includes associating the flow identifier and the tunnel identifier to an Internet protocol (IP) address to generate a binding to be used for a network address and port translation (NAPT). In other embodiments, a routing decision is executed based on the binding between the identifiers and the IP address. The flow identifier can be a context identifier (CID), and the tunnel identifier can be a softwire tunnel ID. In yet other embodiments, the packet can be tagged as part of an encapsulation operation, which includes providing information about a network location at which the network address and port translation is to be executed.

Abstract: Communicating packets along a bearer path includes receiving a home network address and a visited network address at an access terminal. The home network address corresponds to a home anchored bearer path anchored at a home network of the access terminal. The visited network address corresponds to a visited anchored bearer path anchored at a visited network. The access terminal determines whether to use the home anchored bearer path or the visited anchored bearer path, and communicates packets using the home network address or the visited network address in accordance with the determination.

Abstract: Communicating packets along a bearer path includes providing a home network address and a visited network address to an access terminal. The home network address corresponds to a home anchored bearer path anchored at a home network of the access terminal, and the visited network address corresponds to a visited anchored bearer path anchored at a visited network. Packets are received from the access terminal. The packets are communicated along the home anchored bearer path if the packets use the home network address. The packets are communicated along the visited anchored bearer path if packets use the visited network address.