What is MAG? Mobility Access Gateway

Description

The Mobility Access Gateway (MAG) is a critical functional entity within the 3GPP Evolved Packet Core (EPC) architecture, specifically defined for interworking with non-3GPP access networks like Wi-Fi, CDMA2000, or fixed broadband. It operates as a gateway that facilitates IP connectivity and mobility management for User Equipment (UE) attaching via these non-3GPP accesses. The MAG's primary role is to implement Proxy Mobile IPv6 (PMIPv6) as the mobility protocol towards the core network's Packet Data Network Gateway (PGW) or Local Packet Data Network Gateway (L-PGW). When a UE connects via a trusted or untrusted non-3GPP access, the MAG establishes a PMIPv6 tunnel (a bidirectional tunnel) with the PGW, which serves as the Local Mobility Anchor (LMA). This tunnel carries all the UE's data traffic, ensuring the UE maintains the same IP address and continuous session connectivity even when moving between different access points or technologies. For untrusted access, the MAG often integrates with an evolved Packet Data Gateway (ePDG) to establish an IPsec tunnel for securing traffic over the untrusted network. The MAG interacts with the Authentication, Authorization, and Accounting (AAA) infrastructure for subscriber authentication and policy enforcement. Its architecture includes interfaces such as the S2a (for trusted non-3GPP access) and S2b (for untrusted non-3GPP access via ePDG) towards the PGW, and it may also interface with the Policy and Charging Rules Function (PCRF) for dynamic policy control. By managing these tunnels and mobility bindings, the MAG enables seamless handovers, session continuity, and integrated policy enforcement across heterogeneous access networks.

Purpose & Motivation

The MAG was introduced to address the growing need for seamless mobility and integrated service delivery across heterogeneous network environments, particularly as Wi-Fi and other non-3GPP technologies became ubiquitous. Prior to its standardization, integrating non-3GPP accesses with 3GPP core networks was often proprietary, leading to fragmented user experiences and complex network management. The development of the EPC architecture in 3GPP Release 8 aimed to create a unified, all-IP core network that could support multiple access technologies. The MAG, as part of this vision, solves the problem of providing seamless IP mobility and consistent policy enforcement for devices connecting via non-3GPP accesses. It enables operators to offload data traffic to Wi-Fi networks while maintaining core network control over authentication, charging, and quality of service. This was motivated by the industry's shift towards fixed-mobile convergence and the desire to leverage cost-effective access technologies without compromising on security or service continuity. The MAG standardizes the gateway function, ensuring interoperability and simplifying the deployment of multi-access networks.

Classification

Part ofPMIP

Related approaches

Detected Changes Across Releases

from 3GPP Change Requests

Specific changes extracted from the „Change history“ tables of 3GPP specifications (9 CRs across 3 releases). Complements the general historical overview above with the evidence-based evolution of this function.

Studied in Rel-8, normative work from Rel-15.

Rel-15 7 changes

In Release 15, the MAG function's enhancements primarily involved the ePDG, including refined procedures for ePDG selection using 5GS TAI information and for emergency access without a UICC. The release also introduced clarifications for the ePDG's authorization procedures and its handling of IPSEC SAs and certificates during authentication for untrusted non-3GPP access. Furthermore, support for mobility between EPC/ePDG and 5GS was specified.

Enabling ePDG selection using 5GS TAI information TS 23.402CR2984
Correction to ePDG handling of multiple IPSEC SA for untrusted WLAN TS 23.402CR2979
Clarifying the condition when the ePDG sends its certificate to the UE during untrusted non 3gpp access authentication (8.2.2) TS 33.402CR0145
ePDG and TWAN emergency configuration data TS 23.402CR2982
Emergency ePDG selection for UE without UICC TS 23.402CR2986
Authorization procedure initiated by ePDG TS 29.273CR0515

+ 1 more changes

Rel-18 1 change

In Release 18, a specific clarification was introduced for the MAG function regarding the condition for provisioning the ePDG identity to the UE. This update provides more precise guidance on when this critical identifier for untrusted non-3GPP access is supplied during mobility procedures. The change aims to ensure consistent network behavior in scenarios involving mobility between 3GPP and non-3GPP accesses.

Clarification on the condition for provisioning of the ePDG identity to the UE TS 33.402CR0150

Rel-19 1 change

In Release 19, the enhancement for the Mobility Access Gateway (MAG) function specifically involved the ePDG treating the UE with priority. This update introduces a new capability for the ePDG, which acts as a MAG for untrusted non-3GPP access, to apply priority handling during mobility management procedures. The change ensures mechanisms to minimize handover latency and service interruption are applied with consideration for UE priority.

Notes on ePDG treating the UE with priority TS 29.273CR0552

Explore further

Broader topics and technologies where MAG plays a role.

Topics

Authentication (5G-AKA, EAP)EPC (Evolved Packet Core)Policy & Charging Lawful Intercept Management & Operations Core Network

Defining Specifications

3GPP specifications that define or reference MAG, with the latest known release. Sourced from the 3GPP document catalog — see methodology.

Specification	Title	Release
TS 23.402 vj00	EPC for Non-3GPP Access (PMIP)	Rel-19
TS 29.273 vj10	AAA Protocols for Non-3GPP Access in EPS & 5GS NSWO	Rel-19
TS 29.275 vj00	PMIPv6 Mobility & Tunnelling Protocols Stage 3	Rel-19
TS 33.402 vj00	Security for non-3GPP access to EPS	Rel-19