There are several types of virtual private network (VPN) services such as remote access VPN (or client-to-server VPN)@ site-to-site VPN@ community-based VPN@ etc. This Recommendation focuses on the mobile VPN framework in NGN based on the host-based mobility framework in which mobile UEs are directly involved in the VPN. The mobile VPN framework is based on the mobility-related ITU-T Recommendations [ITU-T Q.1706]@ [ITU-T Q.1707]@ [ITU-T Q.1708]@ [ITU-T Q.1709] and [ITU-T Y.2018]@ as well as on the VPN requirements described in [ITU-T Y.2215]. This Recommendation covers the following: ?C requirements of mobile VPN; ?C mobile VPN architecture in terms of high-level functions@ functional architecture and reference points; ?C high-level mobile VPN procedures based on host-based mobility.