Systems, methods, and devices for performing targeted filtering of network traffic generated by user equipment (UE) devices connected to a customer premise equipment (CPE) device in a communication system that includes a distributed residential gateway. A network server may determine that the communication system includes a UE device that is compromised, misconfigured, or operating outside normal communication parameters, identify the UE device, determine an Internet protocol (IP) address or a media access control (MAC) address of the identified UE device, generate a quarantine request message that includes the IP address or the MAC address of the identified UE device in response to determining that the preconfigured virtual local area network access control list (VACL) on the CPE lists source IP addresses from which the CPE will filter outbound traffic, and send the generated quarantine request message to a bridged residential gateway (BRG) associated with the CPE device.

A method and apparatus for addressing a message sent from a proxy node to a peer node in a communications network. The proxy node receives from a host node a plurality of multipath messages. Each message of the plurality of multipath messages has an address. The proxy node then applies a rule to assign an address for a single flow message towards the peer node. The single flow message comprises each message of the plurality of multipath messages. The single flow message is then sent towards the peer node.

Rather than using a large number of transceivers (transmitter/receiver pairs) operating in parallel, Access Points with multiple channels are used to aggregate, or stack, transmitted response communications, e.g., transmitting multiple acknowledgements (ACKs) in a single packet to one or more sources of received packets. The method includes sending on a plurality of channels, by each of a plurality of respective first nodes, a communication to a second node, receiving on the plurality of channels, by the second node, the communication from each of the plurality of first nodes and sending, by the second node, a transmission that contains a response to each communication that was successfully received from each of the plurality of first nodes. The response to each of the plurality of first nodes is part of a single message sent by the second node.

This application discloses a user terminal keepalive method and apparatus, and relates to the communications field. The method is applied to a broadband access gateway in which a control plane entity and a user plane entity are separated. The broadband access gateway is configured to enable a user terminal to access a network. The method is performed by the user plane entity. The method includes: sending probe packets to the user terminal based on a preset parameter obtained by the user plane entity in advance; and if a probe response packet sent by the user terminal is not received in a preset duration, sending a probe failure message to the control plane entity, where the probe packets are used to check whether a communication link between the user terminal and the user plane entity is faulty, and the probe failure message indicates the control plane entity to perform offline processing on the user terminal.

This application discloses a user terminal keepalive method and apparatus, and relates to the communications field. The method is applied to a broadband access gateway in which a control plane entity and a user plane entity are separated. The broadband access gateway is configured to enable a user terminal to access a network. The method is performed by the user plane entity. The method includes: sending probe packets to the user terminal based on a preset parameter obtained by the user plane entity in advance; and if a probe response packet sent by the user terminal is not received in a preset duration, sending a probe failure message to the control plane entity, where the probe packets are used to check whether a communication link between the user terminal and the user plane entity is faulty, and the probe failure message indicates the control plane entity to perform offline processing on the user terminal.

A system and method provide media content based on a household when out-of-home. A first request for media content is received that originates from a first IP address and includes a first data element identification that is associated with a first user. A determination is made that the first IP address is associated with a first internet connected household (ICH). The first data element identification is aliased with the first ICH. A second request (that includes the first data element identification) for media content is received that originates from a second IP address that corresponds to a non-household IP address. In response to the second request and the aliasing, media content is retrieved (based on the first ICH) and transmitted to the first user at the second IP address.

In one embodiment, an apparatus includes one or more processors and one or more computer-readable non-transitory storage media coupled to the one or more processors. The one or more computer-readable non-transitory storage media include instructions that, when executed by the one or more processors, cause the apparatus to perform operations including receiving a user credential from a remote access client within a network and communicating the user credential to an authentication, authorization and accounting (AAA) server within the network. The operations also include receiving a user attribute from the AAA server and generating a contextual label based on the user attribute. The contextual label includes routing instructions associated with traffic behavior within the network. The operations further include advertising a control message, which includes the contextual label, to the remote access client.

A Dynamic Host Configuration Protocol (DHCP) server includes a memory storing computer-readable instructions, and a processor configured to execute the computer-readable instructions to determine a media access control (MAC) address associated with a client, determine the MAC address associated with the client is a randomized MAC address, and assign an IP address the client from a DHCP IP server pool. The processor assigns an IP address to the client from a DHCP IP server pool using one of identifying, in a DHCP server table, at least one host name of the client and assigning a previously assigned IP address to the at least one host name of the client, and when the host name of the client is not available, assigning the IP address using a first lease with a first duration shorter than a default lease duration used for non-randomized MAC addresses.

Methods, systems, and devices for wireless communications are described that improve privacy in wireless communications, such as communications by a user equipment (UE), which may in some cases be a vehicle UE. For example, various vehicle-to-everything (V2X) transmissions may be unencrypted, and a vehicle may be expected to periodically change one or more identifiers it uses for various communication services. Privacy may be enhanced, for example, via encryption key roll-over, as well as roll-over of one or more other identifiers associated with a UE that may potentially be used by an observer to track the UE. The UE may transmit a message that includes an updated lower layer identifier (e.g., a layer-2 (L2) identifier) to another UE in a V2X unicast communications link, which may trigger a change in identifiers of a set of identifiers and an updated security context. All or a portion of the message may be encrypted.

One embodiment relates to data routing using first and second pieces of IP type equipment, the second piece of equipment being suitable for communicating with a management node of a sensor network. The sensors may have respective IP addresses that are generated by said management node, the node also having a function of routing data in the sensor network. The method includes, in a router, generating an address for the second piece of equipment, verifying the availability of the address in the sensor network from the management node, and if the address is available, requesting the management node to add the second piece of equipment in the sensor network.