We use machine learning technology to do auto-translation. Click "English" on top navigation bar to check Chinese version.
LTE and 5G Data Network Breakout Designs on Amazon Web Services
When Communication Service Providers (CSP) deploy Long Term Evolution (LTE) or 5G network functions on Amazon Web Services, they are presented with different options for user plane data network breakout through the SGi (for LTE) or N6 (for 5G) interface. 3GPP defines SGi Interface as the reference point between the Packet Data Network (PDN) Gateway – S-GW and P-GW and the data network. Furthermore, N6 is defined as the reference point between the User Plane Function (UPF) and the data network. PDN can be a public external (e.g., Internet) data network, private packet data network (e.g., VPN), or intra operator packet data network.
This post covers data network breakout options for LTE or 5G UPFs on Amazon Web Services in a non-roaming scenario. The term UPF refers to nodes such as SGW-U, PGW-U, TDF-U, and UPF as mentioned on 3GPP TS 29.244. PGW-U will be referred to in this document as P-GW.
Figure 1: The SGi interface between the PDN Gateway, the P-GW, and data network (Internet) for LTE
Figure 2: The N6 interface between the UPF and data network (Internet) for a 5G
Solution Designs
LTE or 5G networks on Amazon Web Services are operated by CSP as either Public Networks or Private Networks. Each network type can process different types of use cases: Enhanced Mobile Broad Band (eMBB) which usually relates with the Public Network’s consumer market, Ultra Reliable Low Latency Communications (URLLC) with strict requirements on latency like use cases related to autonomous vehicles, and Massive Machine Type Communications (mMTC) which involve supporting numerous devices sending data. Whatever the use case concerned, user plane traffic would involve exiting the P-GW or UPF to terminate to an application. There are different methods for reaching the data network when running network functions on Amazon Web Services. We discuss the different breakout architectures using a 5G UPF function as reference.
Design 1: User plane breakout to public data network (e.g., Internet) via Amazon Web Services Internet Gateway
Design 2: User plane breakout to public data network (e.g., Internet) via CSP’s on- premises network
This design shows N6 traffic routed back to an on-premises network. This approach hairpins user plane traffic to and from the UPF located on Amazon Web Services. CSP using this type of architecture can continue to leverage their existing ISP connection to the internet or their private connections toward their enterprise customers. The VPC routing table for the N6 ENI subnet has the
Design 3: User plane breakout to private data network via Amazon Site-to-Site VPN
The previous architecture is typical for private network use cases where N6 traffic from the UPF terminates toward a third-party location via a secure VPN connection using
Design 4: User plane breakout to private data network on Amazon Web Services via VPC Peering
The previous architecture is also typical for private network use cases where the 5G network functions and the use case application both run on Amazon Web Services on each of their own VPCs. The two VPCs are interconnected using VPC peering. A VPC peering connection is a networking connection between two VPCs that enable traffic routing between them using private IPv4 addresses or IPv6 addresses. Instances or workers in either VPC can communicate with each other as if they are within the same network. When N3 traffic arrives from on-premises to the UPF on Amazon Web Services, the UPF will do an NAT to translate the UEIP to the UPF ENI IP before sending out to the N6 interface. N6 data network traffic from the UPF is routed toward the application VPC using VPC peering as the next hop. Fully Qualified Domain Name (FQDN) application addresses are resolved by associating the network function VPC with an
Design 5: User plane breakout to private data network on Amazon Web Services via Transit Gateway
The architecture above is another typical use case for private networks. The 5G network functions and the use case application both run on Amazon Web Services on their own VPCs. The two VPCs are interconnected using a Transit Gateway via VPC attachment. More details on VPC attachment can be found
Design 6: User plane breakout to private data network on Amazon Web Services using subnet sharing via Amazon Web Services Resource Access Manager
The previous architecture is another private network use case where N6 data network traffic from the UPF, which runs on an account, is sent to an application running on another account. Both the N6 interface of the UPF and application interface are sitting on the same subnet. Subnet sharing is made possible using
Conclusion
There are multiple designs for how LTE or 5G user plane traffic can breakout to the internet or to an application for a non-roaming scenario. Amazon Web Services offers various services that enable CSP to send SGi or N6 traffic toward an application for both public and private network use cases. In choosing an architecture design, factors like latency, application entry point or access point, and use case should be considered. Visit
The mentioned AWS GenAI Services service names relating to generative AI are only available or previewed in the Global Regions. Amazon Web Services China promotes AWS GenAI Services relating to generative AI solely for China-to-global business purposes and/or advanced technology introduction.