Hi, I´m making analisys about LTE FDD/TDD, however I´d like to know if LTE can provide VPN access (Not using router with IPSec) L2 or MPLS/VPN. If this is possible could you describe a little more about the theme for example what do I need to consider in the planning and deploymeny?
LTE provides a PDN connectivity service, basically IP access to specific packet networks. VPN services would run transparently on top of this; LTE is unaware of VPN.
I agree however, how UE data is isolated from other UE´s? IPSec is the only protocol for VPN over LTE?
Each UE gets its own /64 range of IPv6 address from PDN. so it is unique subnet for each PE and hence they are isolated. They are also isolated within GTP in terms of TEID. Juniper's MX960 ( i donot work for Juniper )outer which can map APN's directly on VRF. You can create a dedicated bearer per APN and map to VRF.
so from there on you can provide for L2 and L3 MPLS vpn services.
Akhilesht, it seems there´s not problem with the VPN from the eNodeB to the EPC using GTP but this don´t isolate the UE. Could you send me reference for the first proposal using an exclusive subnet for each customer mapped to one PE. I appreciatte it.
here is the link for you reference. This clearly talk about unique subnet incase of IPv6. lteuniversity.com/.../ip-addressing-in-lte-part-1-ipv6-address-allocation.aspx