Table of Contents
Advertisement
▀ HNB-GW Service Configuration
<
gtpu_ps_svc_name
towards core network.
<
vpn_ctxt_name
context must be used for GTP-U service configuration to provide GTP-U tunnel over Iuh interface towards
HNB.
<
gtpu_iuh_svc_name
towards HNB.
x.509 Certificate Configuration
Use the following example to configure the x.509 certificates on the system to provide security certification between
FAP and SeGW on HNB-GW.
configure
certificate name <x.509_cert_name> pem { data <pem_data_string> | url <pem_data_url>}
private-key pem { [encrypted] data <PKI_pem_data_string> | url <PKI_pem_data_url>}
ca-certificate name <ca_root_cert_name> pem { data <pem_data_string> | url
<pem_data_url>}
exit
crypto template <segw_crypto_template> ikev2-dynamic
authentication local certificate
authentication remote certificate
keepalive interval <dur> timeout <dur_timeout>
certificate <x.509_cert_name>
ca-certificate list ca-cert-name <ca_root_cert_name>
payload <crypto_payload_name> match childsa [match {ipv4 | ipv6}]
ip-address-alloc dynamic
ipsec transform-setlist <ipsec_trans_set>
end
configure
context <vpn_ctxt_name>
subscriber default
ip context-name <vpn_ctxt_name>
ip address pool name <ip_pool_name>
▄ Cisco ASR 5000 Series 3G Home NodeB Gateway Administration Guide
82
> is name of the GTP-U service configured to provide GTP-U tunnel over IuPS interface
> is name of the source context in which HNB-GW service is to be configured. The same
> is name of the GTP-U service configured to provide GTP-U tunnel over Iuh interface
HNB-GW Service Configuration Procedures
OL-25069-03
Advertisement
Table of Contents
