(ZJdOl *2VdI=P *lVdI=s) ...
(8t-ZZd31 JO SUB L lSdIJ) HOdJ
mmw y3Ad3S 139 laodM Ion iaod doi is3a
029^ {\zm 'uvdi=p lLVdi=s) viva H3sn
... NI a3an~l3NI 8t + mm\\ d3Ad3S = S1I8
L isau Hum idod izdan Noissv
(ZVdl) d3Ad3S £Z£"H /
HI ao ZU 'ou
(lVdI=P *3VdI=s) ...
S
509
H3Ad3S m'H 3WVS 01 TIV3 3WVS 01 9NI9N0139 SHVH0V1VQ dl JO AU3AI13Q
Z0l^(lVdl) IVNIM m'H 3d
:S31VNI9Id0 0N3~dVJ N3HM
P 'DM
1
ARRANGEMENT OF DELIVERING
INTERNET PROTOCOL DATAGRAMS FOR
MULTIMEDIA SERVICES TO THE SAME
SERVER
5
BACKGROUND OF THE INVENTION
1. Field of the Invention
This invention relates generally to communication between a network and multiple servers represented by a 10 common Internet Protocol (IP) address. Specifically, this invention relates to the establishment of a multi-media connection for the delivery of IP datagrams belonging to the same multimedia call between an H.323 multi-media terminal and the same H.323 multimedia server. j5
2. Background of the Invention
The personal computer is rapidly becoming a key communication device for millions of users. This trend has accelerated with the increased use of the Internet. Computer communications have typically involved the exchange of 20 electronic mail, however recent advancements have introduced voice and video connectivity. With the increased reliance upon such services, communications providers are in need of standard ways of providing connectivity while cost effectively managing the routing of the incoming multi- 25 media traffic. In addition to providing such manageability, the H.323 real time multi-media communications standards provide for compatibility and any subsequent expansion.
The ITU-T (International Telecommunications Union) H.323 standard defines how a flexible, real-time, interactive 30 set of multimedia communications can be exchanged on packet-based networks. This international standard is the first standard that was provided through the collective input of both traditional telephony communications experts and those from computer communications arena. In addition to 35 fully-interactive media communications such as conferencing, H.323 also has provisions for other forms of communications, such as multimedia streaming. H.323 offers benefits to end-users, developers and service providers of Internet telephony and Internet multi-media applica- 40 tions. The H.323 standard itself provides new business opportunities for valueadded services such as call tracking, multimedia conferencing and multimedia collaboration.
Atypical multi-media networking environment includes a 4J proxy. A proxy allows contact between entities on one side, typically a public networking environment such as the Internet, and a second side, typically a private networking environment. The H.323 proxy typically sits on an enterprise firewall and monitors and processes all H.323 traffic that 5Q travels through the firewall. The proxy ensures that only valid H.323 traffic passes through the firewall.
A Network Address Translator (NAT) is an address proxy that performs a firewall function. The NAT can be thought of as an associating device that translates a source Internet 55 Protocol (IP) address to its own external address and forwards the packet to a destination for a packet delivery external to the private network. For packet traffic incoming into a private network, the NAT translates the destination IP address to an internal address based on information in the 60 packet header, such as the source IP address, source port number or the destination port number.
There is a substantial difference between an H.323 proxy and a NAT in terms of the required processing needs. A NAT performs the address translation based on physical 65 interfaces, source/destination addresses, or ports depending on applications or administrative requirements. This infor
2
mation can be easily and quickly ascertained. As such, the NAT reduces the amount of processing resources necessary to process the call. In comparison, the use of an H.323 proxy requires the call to terminate at the firewall, sort through a substantial amount of user information to determine the call characteristics and then establish a new connection from the H.323 proxy to the server each time a new end-to-end H.323 call is to be established. Therefore, there is additional processing time required whenever the call passes through the H.323 proxy to the destination.
For the multimedia protocol services, the NAT can be placed in front of the group of multi-media servers in the data network for three purposes. First, the NAT is used for security purposes to protect the IP processors in the server from potential security attacks from external networks. For the NAT to perform address translations, it will generally examine incoming packets to determine the translation rule to use. If packet filtering is also part of the rule, the NAT also effectively serves as an access controller as well as its main function to hide the internal addresses from external networks. Second, the NAT shields the growth of internal IP processors from the external networks because the external networks are oblivious of the internal addresses. This simplifies the data that an external gateway finding directory server needs to keep, thus simplifying its administration. Third, the NAT is used to distribute multimedia IP traffic to the IP processors in the server bank.
In the TCP/IP world, applications use what are commonly referred to as "well-known ports" to communicate with each other. A well-known port specifies that a service should or must use a particular port, for example an HTTP server will listen on TCP port 80 by default. When a client application sends out a request to a well-known port for a particular application, the client application assumes that the corresponding server application is "listening" on the well known port associated with that application. For example, the well-known port number for multi-media applications is TCP port 1720. A server application will actively listen for incoming connection requests on TCP port 1720 for a client application requesting a multimedia service. Client applications connect to the well-known destination port to establish a TCP multi-media connection. For H.323 multi-media communications, subsequent TCP connections using dynamic port numbers may be made for further communication controls.
A particular TCP connection is defined by the port and address of both the originating endpoint (or its proxy) and the terminating endpoint (or its proxy). By its very nature, a TCP connection is an application to application connection. ATCP connection is established as an end-to-end medium or lower level transport for other H.323 protocols. All H.323 control protocols are encapsulated within TCP connections. To establish a multi-media transport requires at least three connections with different H.323 control and data transport features. First, a TCP connection is established to transfer H.225 protocol messages. Second, a TCP connection is established to transfer H.245 protocol messages. Third, an unreliable UDP connection is established for the transfer of real time sensitive data packets or another TCP connection is established to transfer data reliably.
It is an object of the present invention to allow a NAT to deliver IP datagrams, i.e. data packets, belonging to the same call to the same H.323 server. It is desirable to perform the IP datagram delivery without the use of a typical H.323 proxy, thereby reducing the resources necessary to process the call and allowing for a "one-to-many distribution." Instead of searching the many layers of user-to-user
3
information, which is required by a typical H.323 proxy, the destination should be quickly and easily ascertainable. Additionally, it is desirable to provide a reusable block of TCP and UDP port numbers and internet protocol addresses associated with independent H.323 servers for processing 5 the end point/terminal H.323 multi-media calls, coupled with a mechanism to randomly select an H.323 processor to process all transactions at the time a particular H.323 multi-media call request is made.
10
SUMMARY OF THE INVENTION
In accordance with one aspect of the invention, the foregoing object is achieved by providing a method and apparatus for establishing a multi-media call between an originating H.323 terminal and an H.323 server through an intermediate device. The H.323 terminal is typically connected to a public network, such as the Internet. The H.323 server is typically part of a private networking environment containing a number of H.323 servers. The intermediate
20
device, a Network Address Translator (NAT), serves as a go-between and substitutes for an H.323 proxy.
In accordance with another aspect of the present invention, incoming multimedia traffic from the Internet is addressed to the globally unique IP address identifying the 2J NAT, not the many addresses of the number of H.323 servers contained in the private network. The "one-to-many distribution" results from the directing of a multimedia call from the globally unique address identifying the NAT to any one of the many private network addresses identifying any one 3Q of the H.323 multi-media servers in the private network. When a call comes into the NAT requesting a multimedia service, the NAT determines the best available server to handle the incoming call based upon an algorithm at an intermediate device. The multi-media call will then be 35 distributed from the "one," the NAT, to one of the "many" H.323 servers.
An aspect of the present invention currently not available with any available H.323 proxy device provides for the same server to be used for the duration of the data transmission 40 after the initial assigning of the server to process the multi-media call. Prior to the step of assigning of a TCP or UDP port uniquely identifying the server, there is a unique cooperation between the NAT and the server for any transmission by a multimedia terminal represented by a port and 45 IP address requesting a multi-media service on a well-known port. Once the request is presented to the NAT for multimedia service on a well-known port, the NAT determines the IP address of the H.323 server processing the call and this IP address is recorded at the NAT for future reference. The 50 NAT associates the port and IP address of the source of the multimedia call with the IP address of the multi-media server handling the call. The NAT will then recognize that any incoming transmission from the particular port and IP address destined for the multi-media well-known port is 55 mapped to the associated destination multi-media server.
In accordance with another aspect of the invention, the H.323 server assigns a TCP port or UDP port uniquely identifying the H.323 server. The identity of the TCP port or UDP port assigned by the H.323 server is transmitted to the 60 originating H.323 terminal for the establishment of the next TCP or UDP connection. For any transmission from the H.323 terminal to the NAT with the designated destination as a particular TCP port or UDP port that is not a well-known port, the NAT performs a calculation using the value of the 65 destination port number to determine the identity of the H.323 server responsible for the processing of the H.323
4
multimedia call. As such, the call will always use the same multi-media server allowing efficient use of resources and reducing the possibility of lost data. Additionally, the calculation process eliminates the typical H.323 proxy and therefore increases the speed of the transmission and lessens the strain on the processing resources. The calculation process eliminates the necessity to search the many layers of the user-to-user information in its entirety for the information to process the multi-media call. The destination multimedia server can be ascertained from the destination TCP or UDP port information.
By substituting a NAT containing the processing capabilities of the present invention for a typical H.323 proxy, a multimedia call originating from an H.323 multi-media terminal will be processed quickly and efficiently by the same H.323 server.
BRIEF DESCRIPTION OF THE DRAWINGS
Features of this invention will be understood best from the following detailed description taken in conjunction with the drawings:
FIG. 1 illustrates a typical network architecture of multiple H.323 servers connected to the Network Address Translator;
FIGS. 2, 3 and 4 illustrate flow diagrams describing the method of establishing and maintaining a multi-media connection between the originating H.323 multi-media terminal and the corresponding H.323 multi-media server;
FIG. 5 is a table illustrating the NAT translation rule for the three possible scenarios;
FIG. 6 illustrates the TCP port, 16 bits in length, divided into two segments.
DETAILED DESCRIPTION OF THE
PREFERRED EMBODIMENT
FIG. 1 shows a data network (100) comprised of a first multi-media service terminal (102), an IP based network (104) which is typically the Internet, a Network Address Translator (NAT) (106) and a bank of servers (108). The bank of servers (108) contains a number of H.323 multimedia servers (110, 112 and 114). Any one of the multimedia servers (110, 112 and 114) can also be referred to as a multi-media gateway. Additionally, the term "peer" can be used to describe the first multimedia service terminal (102) and any one of the multimedia servers (110, 112 or 114) assigned to process the multimedia call. Only three such servers are shown within the bank of servers (108), but those skilled in the art will recognize that any number of servers could be used. In the preferred embodiment, server bank (108) contains a number of H.323 multi-media servers (110, 112 and 114), but server bank (108) could contain a number of 5ESS® Switches or web servers without departing from the intended scope of the invention.
FIG. 1 also illustrates the addressing at the first multimedia service client (102), the NAT (106) and the number of multi-media servers (110, 112 and 114) within the bank of servers (108). Addresses visible to the Internet (104) must be globally unique. As such, the NAT (106) uses globally unique Internet address for its presence on the Internet (104). Further, as shown in FIG. 1, addresses used by the servers are in a private network group and may be reused.
The multi-media service terminal (102) is represented by a globally unique address, and in the example shown the multi-media service terminal is represented by global address 193.151.2.3. The NAT (106) is also represented by
|
