Cisco ASR 5x00 Administration Manual
  1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Gateway
  5. ASR 5x00 Home eNodeB
  6. Administration manual

Cisco ASR 5x00 Administration Manual

Packet data network gateway
Hide thumbs Also See for ASR 5x00:
1
2
Table Of Contents
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
Table of Contents

Advertisement

Quick Links

Download this manual
Cisco ASR 5x00 Packet Data Network Gateway
Administration Guide
Version 15.0
Last Updated November 30, 2013
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883

Advertisement

Table of Contents
loading

Related Manuals for Cisco ASR 5x00

Summary of Contents for Cisco ASR 5x00

  • Page 1 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide Version 15.0 Last Updated November 30, 2013 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883...
  • Page 2 ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. Cisco and the Cisco Logo are trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and other countries. A listing of Cisco's trademarks can be found at www.cisco.com/go/trademarks.

  • Page 3: Table Of Contents

    Accept TCP Connections from DCCA Server................52 Gy Interface Support ........................52 Gn/Gp Handoff Support ........................53 IMS Emergency Bearer Handling ....................... 54 IP Access Control Lists ........................54 IP Address Hold Timers ........................55 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 4 Layer 2 Traffic Management (VLANs) ....................82 Local Policy Decision Engine ......................82 MPLS Forwarding with LDP ....................... 83 NEMO Service Supported ........................83 NEMO Support in GGSN ....................... 83 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 5 Information Required ........................136 Required Local Context Configuration Information ..............136 Required P-GW Context Configuration Information ..............137 Required PDN Context Configuration Information ............... 138 Required AAA Context Configuration Information ............... 139 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 6 Verifying Local QoS Policy ......................197 Configuring X.509 Certificate-based Peer Authentication ..............197 Network Mobility (NEMO) ................199 NEMO Overview ........................... 200 Use Cases ............................200 Features and Benefits ........................201 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 7 Clearing Statistics and Counters ......................229 CoA, RADIUS DM, and Session Redirection (Hotlining) ......231 RADIUS Change of Authorization and Disconnect Message............... 232 CoA Overview ..........................232 DM Overview ............................ 232 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 8 Gx Interface Support ..................273 Rel. 6 Gx Interface ..........................274 Introduction ............................274 Supported Networks and Platforms ..................... 274 License Requirements ......................... 275 Supported Standards ........................275 How it Works ............................ 275 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide viii...
  • Page 9 Usage Monitoring at Session Level ..................... 334 Usage Monitoring at Flow Level ....................334 Usage Reporting ..........................335 Configuring Time Reporting over Gx ....................335 Gy Interface Support ..................337 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 10 Supported LAC Service Configuration for Mobile IP ................395 How The Attribute-based L2TP Configuration for MIP Works............395 Configuring Attribute-based L2TP Support for HA Mobile IP ............396 Configuring Subscriber Profiles for L2TP Support ................398 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 11 Proxy Mobile IP in 3GPP2 Service ....................433 Proxy Mobile IP in 3GPP Service ..................... 433 Proxy Mobile IP in WiMAX Service ....................434 How Proxy Mobile IP Works in 3GPP2 Network .................. 435 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 12 Gathering Statistics .......................... 505 Traffic Policing and Shaping ................. 509 Overview ............................... 510 Traffic Policing ..........................510 Traffic Shaping ..........................510 Traffic Policing Configuration ........................ 511 Configuring Subscribers for Traffic Policing ..................511 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 13 Interface and Port Rules ........................546 S2a Interface Rules .......................... 546 LMA to MAG ..........................546 S5/S8 Interface Rules (GTP) ......................546 P-GW Context and Service Rules ......................547 P-GW Subscriber Rules ........................548 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄ xiii...

  • Page 15: About This Guide

    About this Guide This preface describes the Cisco ASR 5x00 Packet Data Network Gateway Administration Guide, how it is organized, and its document conventions. This preface includes the following sections:  Conventions Used  Supported Documents and Resources  Contacting Customer Support...

  • Page 16: Conventions Used

    Text represented as menu or sub- This typeface represents menus and sub-menus that you access within a software menu names application, for example: Click the File menu, then click New ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 17: Supported Documents And Resources

    Related Product Documentation The following product documents are also available and work in conjunction with the P-GW:  Cisco ASR 5x00 Gateway GPRS Support Node Administration Guide  Cisco ASR 5x00 HRPD Serving Gateway Administration Guide  Cisco ASR 5x00 Mobility Management Entity Administration Guide ...

  • Page 18: Obtaining Documentation

    The most current Cisco documentation is available on the following website: http://www.cisco.com/cisco/web/psa/default.html Use the following path selections to access the P-GW documentation: Products > Wireless > Mobile Internet> Network Functions > Cisco PGW Packet Data Network Gateway ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide xviii...

  • Page 19: Contacting Customer Support

    Use the information in this section to contact customer support. Refer to the support area of http://www.cisco.com for up-to-date product documentation or to submit a service request. A valid username and password are required to access this site. Please contact your Cisco sales or service representative for additional information.

  • Page 21: Pdn Gateway Overview

    Chapter 1 PDN Gateway Overview The Cisco® ASR 5x00 provides wireless carriers with a flexible solution that functions as a Packet Data Network (PDN) Gateway (P-GW) in 3GPP2 Long Term Evolution-System Architecture Evolution (LTE-SAE) and evolved High Rate Packet Data (eHRPD) wireless data networks.

  • Page 22: Product Description

    P-GW for accessing multiple PDNs. The P-GW performs policy enforcement, packet filtering for each user, charging support, lawful interception and packet screening. Figure 1. P-GW in the Basic E-UTRAN/EPC Network ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 23  P-GW includes the function of a Local Mobility Anchor (LMA) according to draft-ietf-netlmm-proxymip6, if PMIP-based S5 or S8 is used.  The P-GW includes the function of a DSMIPv6 Home Agent, as described in draft-ietf-mip6-nemo-v4traversal, if S2c is used. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 24: Platform Requirements

    ▀ Product Description Platform Requirements The P-GW service runs on a Cisco® ASR 5x00 chassis running StarOS. The chassis can be configured with a variety of components to meet specific network deployment requirements. For additional information, refer to the Installation Guide for the chassis and/or contact your Cisco account representative.

  • Page 25: Network Deployment(S)

    Supported P-GW Interfaces in the E-UTRAN/EPC Network The following figure displays a sample network deployment of a P-GW, including all of the interface connections with other 3GPP Evolved-UTRAN/Evolved Packet Core network devices. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 26: Supported Logical Network Interfaces (Reference Points)

    P-CSCF attributes and DNS attributes in PBU (Proxy-MIP Binding Update) and PBA (Proxy-MIP Binding Acknowledgement) messages as part of the P-CSCF discovery performed by the WLAN UEs. S5/S8 Interface ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 27 IP address AVPs based IP allocation. With this support, based on the Pool name and APN name received from AAA server, the selection of a particular IP pool from the configuration is made for assigning the IP address. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 28 PDN and/or an internal IMS service provisioning network. Supported protocols:  Transport Layer: TCP, UDP  Network Layer: IPv4, IPv6  Data Link Layer: ARP  Physical Layer: Ethernet ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 29 The Gy reference interface enables online accounting functions on the P-GW in accordance with 3GPP Release 8 and Release 9 specifications. Supported protocols:  Transport Layer: TCP  Network Layer: IPv4, IPv6  Data Link Layer: ARP  Physical Layer: Ethernet Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 30 Features and Functionality - Base Software section of this chapter. Supported protocols  Transport Layer: UDP, TCP  Tunneling: GTP: GTP-C (signaling channel)  Network Layer: IPv4, IPv6  Data Link Layer: ARP  Physical Layer: Ethernet Rf Interface ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 31: Pdn Gateway Supporting Ehrpd To E-Utran/Epc Connectivity

    The following figure displays the specific network interfaces supported by the P-GW in an eHRPD network. Refer to Supported Logical Network Interfaces (Reference Points) for detailed information about each interface. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 32 P-GW Interfaces Supporting eHRPD to E-UTRAN/EPC Connectivity The following figure displays a sample network deployment of a P-GW in an eHRPD Network, including all of the interface connections with other 3GPP Evolved-UTRAN/Evolved Packet Core network devices. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 33: Supported Logical Network Interfaces (Reference Points)

     GTP: IPv4 or IPv6 GTP-C (signaling channel) and GTP-U (bearer channel)  PMIPv6: IPv6 GRE or IP-in-IP  Network Layer: IPv4, IPv6  Data Link Layer: ARP  Physical Layer: Ethernet Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 34 The S6b interface on the P-GW or GGSN can be manually disabled to stop all message traffic to the 3GPP AAA during overload conditions. When the interface is disabled, the system uses locally configured APN-specific parameters including: Framed-Pool, Framed-IPv6-Pool, Idle-Timeout, Charging-Gateway-Function-Host, Server-Name (P-CSCF ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 35 PDN and/or an internal IMS service provisioning network. Supported protocols:  Transport Layer: TCP, UDP  Network Layer: IPv4, IPv6  Data Link Layer: ARP  Physical Layer: Ethernet Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 36  Data Link Layer: ARP  Physical Layer: Ethernet For more information on Rf accounting, refer to the section in the Features and Functionality - Base Software section of this chapter. Gy Interface ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 37  Physical Layer: Ethernet For more information on the Gy interface and online accounting, refer to Gy Interface Support in the Features and Functionality - Base Software section of this chapter. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 38: Features And Functionality - Base Software

    Local Break-Out  LTE Video Calling  Management System Overview  MPLS EXP Marking of User Plane Traffic  Mobile IP Registration Revocation  MTU Size PCO  Multiple PDN Support ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 39: 3Gpp R9 Volume Charging Over Gx

     When all PCC rules for which usage monitoring is enabled for a particular usage monitoring key are removed or deactivated,  When usage monitoring is explicitly disabled by the PCRF,  When an IP CAN session is terminated or,  When requested by the PCRF. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 40: Aaa Server Groups

     Password maintenance, e.g. periodic forced password changes These measures are applicable to the ASR 5x00 and the Web Element Manager since both require password authentication. A subset of these guidelines where applicable to each platform will be implemented. A known subset of guidelines, such as certificate authentication, are not applicable to either product.

  • Page 41: Assume Positive For Gy-Based Quota Tracking

    This simplifies the post-processing of statistical data since it can be formatted to be parsed by external, back-end processors. When used in conjunction with the Web Element Manager, the data can be parsed, archived, and graphed. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 42 A specific directory can be configured by the administrative user or the default directory can be used. Regardless, the directory can be on a local file system or on an NFS-mounted file system on the Web Element Manager server. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 43: Congestion Control

    In the StarOS 9.0 release and later, the Cisco EPC core platforms support one or more EPS bearers (default plus dedicated). An EPS bearer is a logical aggregate of one or more Service Data Flows (SDFs), running between a UE and a P-GW in the case of a GTP-based S5/S8 interface, and between a UE and HSGW (HRPD Serving Gateway) in case of a PMIP-based S2a interface.

  • Page 44: Dhcp Support

    PDN type. The UE defers the allocation of IPv4 addresses based upon its needs, and relinquishes any IPv4 addresses to the global pool once it is done. The P-GW may employ any IPv4 address scheme (local pool or external DHCP server) when providing an IPv4 address on demand. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 45: Dhcpv6 Support

    GGSNs are capable of handling the additional control plane loads introduced of part of direct tunnel deployment. The Cisco GGSN and SGSN offer massive control plane transaction capabilities, ensuring system control plane capacity will not be a capacity limiting factor once direct tunnel is deployed.

  • Page 46: Domain Based Flow Definitions

    The following matrix may be used to determine the Diffserv markings used based on the configured traffic class and Allocation/Retention Priority: Table 1. Default DSCP Value Matrix Allocation Priority Traffic Handling Priority af21 af21 af21 af21 af21 af21 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 47: Gtp-U On Per Apn Basis

    Info AVP is used to identify the subscriber access terminal to the policy server. The Gx reference interface supports the following capabilities:  Authorize the bearer establishment for a packet flow Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 48: Enhanced Charging Service (Ecs)

     Deep Packet Inspection: inspection of layer 7 and 7+ information. Deep packet inspection functionality includes:  Detection of URI (Uniform Resource Identifier) information at level 7 (e.g., HTTP, WTP, RTSP Uniform Resource Locators (URLs)). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 49 Support for the Enhanced Charging Service requires a service license; the ECS license is included in the P-GW session use license. For more information on ECS, refer to the Enhanced Charging Service Administration Guide. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 50: Content Analysis Support

    Content Service Steering Content Service Steering (CSS) directs selective subscriber traffic into the ECS subsystem (In-line services internal to the system) based on the content of the data presented by mobile subscribers. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 51: Support For Multiple Detail Record Types

    The Diameter Credit Control Application (DCCA) is used to implement real-time credit-control for a variety of end user services such as network access, Session Initiation Protocol (SIP) services, messaging services, download services etc. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 52: Accept Tcp Connections From Dcca Server

    In the simplest possible installation, the system exchanges Gy Diameter messages over Diameter TCP links between itself and one “prepay” server. For a more robust installation, multiple servers would be used. These servers may ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 53: Gn/Gp Handoff Support

    (UE) moves across different access technologies. Cisco's P-GW supports inter-technology mobility handover between 4G and 3G/2G access. Interworking is supported between the 4G and 2G/3G SGSNs, which provide only Gn and Gp interfaces but no S3, S4 or S5/S8 interfaces. These Gn/Gp SGSNs provide no functionality introduced specifically for the evolved packet system (EPS) or for interoperation with the E-UTRAN.

  • Page 54: Ims Emergency Bearer Handling

     All subscriber sessions facilitated by a specific context Important: For more information on IP access control lists, refer to the IP Access Control Lists chapter in the System Administration Guide. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 55: Ip Address Hold Timers

     IPv6 flows (Supported on all Diameter QoS and Charging interfaces as well as Inline Services (e.g. ECS) Local Break-Out Provides a standards-based procedure to enable LTE operators to generate additional revenues by accepting traffic from visited subscribers based on roaming agreements with other mobile operators. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 56: Lte Video Calling

    In addition, all management is performed out-of-band for security and to maintain system performance. Cisco's O&M module offers comprehensive management capabilities to the operators and enables them to operate the system more efficiently. There are multiple ways to manage the system either locally or remotely using its out-of-band management interfaces.
  • Page 57 Figure 7. Element Management Methods Important: P-GW management functionality is enabled by default for console-based access. For GUI-based management support, refer to the Web Element Management System section in this chapter. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 58: Mpls Exp Marking Of User Plane Traffic

    3GPP defined a new PCO option in Release 10 specifications for the network to be able to provide an IPv4 MTU size to the UE. P-GW supports an option to configure a IPv4 Link MTU size in the APN profile. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 59: Multiple Pdn Support

    P-GW supports handoffs between the GTP-based S5/S8 (GTPv2-C / GTPv1-U) and PMIPv6 S2a tunneled connections. It also provisions IPv4, IPv6, or dual stack IPv4/IPv6 PDN connections from a common address Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 60: Online/Offline Charging

    For more information on handoff interfaces, refer to the Supported Logical Network Interfaces (Reference Points) section in this chapter. Online/Offline Charging The Cisco EPC platform offers support for online and offline charging interactions with external OCS and CGF/CDF servers. Online Charging Gy/Ro Reference Interfaces The StarOS 9.0 online prepaid reference interface provides compatibility with the 3GPP TS 23.203, TS 32.240, TS...

  • Page 61: Offline Charging

    Gy reference interface to adjunct OCS servers (See Online Charging description above). Rf Reference Interface The Cisco EPC platforms also support the Rf reference interface to enable direct transfer of charging files from the CTF function of the P-GW to external CDF/CGF servers. This interface uses Diameter Accounting Requests (Start, Stop,...

  • Page 62: Peer Gtp Node Profile Configuration Support

    The S2a interface uses IPv6 for both control and data. During the PDN connection establishment procedures the P-GW allocates the IPv6 Home Network Prefix (HNP) via Proxy Mobile IPv6 signaling to the HSGW. The HSGW returns the ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 63: Qos Bearer Management

    Flow Templates (TFT's) in the downlink direction for mapping inbound Service Data Flows (SDFs) to EPS bearers. The P-GW maps the traffic based on the downlink TFT to the S5/S8 bearer. The Cisco PDN GW offers all of the following...

  • Page 64: Radius Support

    RADIUS server implementations (i.e. RADIUS servers which are located in the corporate network, and not in the operator's network) where the NAS-IP ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 65: S-Gw Restoration Support

    AAA Interface Administration and Reference. S-GW Restoration Support Use of S-GW Restoration requires that a valid license key be installed. Contact your Cisco account representative for information on how to obtain a license. S-GW Restoration helps in handling the S-GW failure in the EPC network in a graceful manner. It allows affected PDNs due to S-GW failure to be restored by selecting another S-GW to serve the affected PDNs, thus avoiding unnecessary flooding of signaling for PDN cleanup.

  • Page 66: Srvcc Ps-To-Cs Handover Indication Support

    Trace files for active calls are buffered as XML files using non-volatile memory on the local dual redundant hard drives on the ASR 5x00 platform. The Trace Depth defines the granularity of data to be traced. Six levels are defined including Maximum, Minimum and Medium with ability to configure additional levels based on vendor extensions.

  • Page 67: 3Gpp Tracing To Intercept Random Subscriber

     S5/S8: Trace Session Activation (New message defined in TS 32.422) Performance Goals: As subscriber level trace is a CPU intensive activity the max number of concurrently monitored trace sessions per Cisco P-GW is 32. Use in a production network should be restricted to minimize the impact on existing services.

  • Page 68: Ue Time Zone Reporting

    APN configuration dictates all aspects of a session at the P-GW. Different policies imply different APNS. After basic APN selection, however, internal re-selection can occur based on the following parameters:  Service name  Subscriber type  MCC-MNC of IMSI  Domain name part of username (user@domain) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 69 PDN Gateway Overview Features and Functionality - Base Software ▀  S-GW address Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 70: Features And Functionality - Inline Service Support

     Content Filtering ICAP Interface: This solution is appropriate for mobile operators with existing installations of Active Content Filtering external servers. The service continues to harness the DPI functions of the ASR 5x00 platform to extract events of interest. However in this case, the extracted requests are transferred via the Integrated Content Adaptation Protocol (ICAP) with subscriber identification information to the external ACF server which provides the category rating database and content decision functions.

  • Page 71: Icap Interface

    WAP (WAP1.x or WAP2.0) or Web session, the subsequent GET/POST request is detected by the deep packet inspection function. The URL of the GET/POST request is extracted by the local DPI engine on the ASR 5x00 platform and passed, along with subscriber identification information and the subscriber request, in an ICAP message to the Application Server (AS).

  • Page 72: Mobile Video Gateway

    Gateway in 2.5G, 3G, and 4G wireless data networks. The Cisco Mobile Video Gateway consists of new software for the ASR 5x00. The Mobile Video Gateway is the central component of the Cisco Mobile Videoscape. It employs a number of video optimization techniques that enable mobile operators to enhance the video experience for their subscribers while optimizing the performance of video content transmission through the mobile network.

  • Page 73: Network Address Translation (Nat)

     Bulk statistics for mobile video The Cisco CAE is an optional component of the Cisco Mobile Videoscape. It runs on the Cisco UCS (Unified Computing System) platform and functions in a UCS server cluster to bring additional video optimization capabilities to the Mobile Videoscape.

  • Page 74: Peer-To-Peer Detection

    (for example, content-based premium billing, QoS modifications, and other similar treatments). Cisco’s P2P detection technology makes use of innovative and highly accurate protocol behavioral detection techniques. Important: For more information on peer-to-peer detection, refer to the Application Detection and Control Administration Guide.

  • Page 75: Traffic Performance Optimization (Tpo)

    The TPO inline service uses a combination of TCP and HTTP optimization techniques to improve TCP performance over wireless links. Important: For more information on TPO, refer to the Traffic Performance Optimization Administration Guide. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 76: Features And Functionality - External Application Support

    This architecture allows remote clients with Java-enabled web browsers to manage one or more systems via the server component which implements the CORBA interfaces. The server component is fully compatible with the fault-tolerant Sun® Solaris® operating system. The following figure demonstrates various interfaces between the Cisco Web Element Manager and other network components. Figure 8.

  • Page 77: Features And Functionality - Optional Enhanced Feature Software

    User Location Information Reporting Always-On Licensing Use of Always On Licensing requires that a valid license key be installed. Contact your Cisco account representative for information on how to obtain a license. Traditionally, transactional models have been based on registered subscriber sessions. In an “always-on” deployment model, however, the bulk of user traffic is registered all of the time.

  • Page 78: Common Gateway Access Support

    IP address regardless of the access technology. Dynamic RADIUS Extensions (Change of Authorization) Use of Dynamic RADIUS Extensions (CoA and PoD) requires that a valid license key be installed. Contact your Cisco account representative for information on how to obtain a license.

  • Page 79: Gre Protocol Interface Support

    GTP Throttling Use of GTP and Diameter Interface Throttling requires that a valid license key be installed. Contact your Cisco account representative for information on how to obtain a license. This feature will help control the rate of incoming/outgoing messages on P-GW/GGSN. This will help in ensuring P- GW/GGSN doesn’t get overwhelmed by the GTP control plan messages.

  • Page 80: Inter-Chassis Session Recovery

    The ASR 5x00 provides industry leading carrier class redundancy. The systems protects against all single points of failure (hardware and software) and attempts to recover to an operational state when multiple simultaneous failures occur.

  • Page 81: Ip Security (Ipsec) Encryption

    These capabilities are insured through use of cryptographic techniques. The Cisco P-GW supports IKEv1 and IPSec encryption using IPv4 addressing. IPSec enables the following two use cases:  Encryption of S8 sessions and EPS bearers in roaming applications where the P-GW is located in a separate administrative domain from the S-GW ...

  • Page 82: Lawful Intercept

    The feature use license for Lawful Intercept on the P-GW is included in the P-GW session use license. The Cisco Lawful Intercept feature is supported on the P-GW. Lawful Intercept is a licensed-enabled, standards-based feature that provides telecommunications service providers with a mechanism to assist law enforcement agencies in monitoring suspicious individuals for potential illegal activity.

  • Page 83: Mpls Forwarding With Ldp

     Overlapping of IP addresses in different APNs. When deployed, the MPLS backbone automatically negotiates routes using the labels binded with the IP packets. Cisco P-GW as an LSR learns the default route from the connected provider edge (PE), while the PE populates its routing table with the routes provided by the P-GW.

  • Page 84: Overcharging Protection Support

    Overcharging Protection Support Use of Overcharging Protection requires that a valid license key be installed. Contact your Cisco account representative for information on how to obtain a license. Overcharging Protection helps in avoiding charging the subscribers for dropped downlink packets while the UE is in idle mode.

  • Page 85: Smartphone Tethering Detection Support

     Lower the IP Precedence: The packet’s ToS bit is set to “0”, thus downgrading it to Best Effort, prior to passing the packet. Note that if the packet’s ToS bit was already set to “0”, this action is equivalent to “Transmit”. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 86: User Location Information Reporting

     Update Bearer Request: The CRA IE is included with the appropriate Action field if the Location Change Reporting mechanism is to be started or stopped for the subscriber in the MME. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 87 Information on configuring User Location Information (ULI) Reporting support is located in the Configuring Optional Features on the MME section of the Mobility Management Entity Configuration chapter in the Mobility Management Entity Administration Guide. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 88: How The Pdn Gateway Works

    PDN Connection Release Initiated by HSGW  PDN Connection Release Initiated by P-GW Initial Attach with IPv6/IPv4 Access This section describes the procedure of initial attach and session establishment for a subscriber (UE). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 89 The HSGW establishes A10s and respond back to the eAN/PCF with an A11 RRP. The UE performs LCP negotiation with the HSGW over the established main A10. The UE performs EAP over PPP. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 90: Pmipv6 Lifetime Extension Without Handover

    PMIPv6 Lifetime Extension without Handover This section describes the procedure of a session registration lifetime extension by the P-GW without the occurrence of a handover. Figure 10. PMIPv6 Lifetime Extension (without handover) Call Flow ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 91: Pdn Connection Release Initiated By Ue

    The UE decides to disconnect from the PDN and sends a PPP VSNCP-Term-Req with PDNID=x. The HSGW starts disconnecting the PDN connection and sends a PPP-VSNCP-Term-Ack to the UE (also with PDNID=x). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 92: Pdn Connection Release Initiated By Hsgw

    The UE is attached to the EPC and has a PDN connection with the P-GW for PDN-ID=x and APN with assigned HNP. The HSGW MAG service triggers a disconnect of the PDN connection for PDNID=x. The HSGW sends a PPP VSNCP-Term-Req with PDNID=x to the UE. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 93: Pdn Connection Release Initiated By P-Gw

    Table 6. PDN Connection Release by the P-GW Call Flow Description Step Description The UE is attached to the EPC and has a PDN connection with the P-GW for PDN-ID=x and APN with assigned HNP. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 94: Gtp Pdn Gateway Call/Session Procedures In An Lte-Sae Network

    The following topics and procedure flows are included:  Subscriber-initiated Attach (initial)  Subscriber-initiated Detach Subscriber-initiated Attach (initial) This section describes the procedure of an initial attach to the EPC network by a subscriber. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 95 Request message to the new MME contained in a S1-MME control message (Initial UE message) together with the Selected Network and an indication of the E-UTRAN Area identity, a globally unique E-UTRAN ID of the cell from where it received the message to the new MME. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 96 The UE sends the Radio Bearer Establishment Response to the eNodeB. In this message, the Attach Complete message (EPS Bearer Identity) is included. The eNodeB forwards the Attach Complete (EPS Bearer Identity) message to the MME. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 97: Subscriber-Initiated Detach

    The active EPS Bearers in the S-GW regarding this particular UE are deactivated by the MME sending a Delete Bearer Request (TEID) message to the S-GW. The S-GW sends a Delete Bearer Request (TEID) message to the P-GW. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 98 If Switch Off indicates that the detach is not due to a switch off situation, the MME sends a Detach Accept message to the The MME releases the S1-MME signalling connection for the UE by sending an S1 Release command to the eNodeB with Cause = Detach. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 99: Supported Standards

     3GPP TS 22.115: Service aspects; Charging and billing  3GPP TS 23.003: Numbering, addressing and identification  3GPP TS 23.007: Restoration procedures  3GPP TS 23.060. General Packet Radio Service (GPRS); Service description; Stage 2 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 100: Release 8 3Gpp References

    3GPP2 support; any specifications that are unique to 3GPP2 are listed under 3GPP2 References.  3GPP TR 21.905: Vocabulary for 3GPP Specifications  3GPP TS 23.003: Numbering, addressing and identification  3GPP TS 23.007: Restoration procedures ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 101: 3Gpp2 References

     RFC 768: User Datagram Protocol (STD 6).  RFC 791: Internet Protocol (STD 5).  RFC 1701, Generic Routing Encapsulation (GRE)  RFC 1702, Generic Routing Encapsulation over IPv4 networks Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 102  Internet-Draft (draft-ietf-netlmm-grekey-option-01.txt): GRE Key Option for Proxy Mobile IPv6, work in progress  Internet-Draft (draft-ietf-netlmm-pmip6-ipv4-support-02.txt) IPv4 Support for Proxy Mobile IPv6  Internet-Draft (draft-ietf-netlmm-proxymip6-07.txt): Proxy Mobile IPv6  Internet-Draft (draft-ietf-mext-binding-revocation-02.txt): Binding Revocation for IPv6 Mobility, work in progress ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 103: Object Management Group (Omg) Standards

    PDN Gateway Overview Supported Standards ▀  Internet-Draft (draft-meghana-netlmm-pmipv6-mipv4-00.txt) Proxy Mobile IPv6 and Mobile IPv4 interworking Object Management Group (OMG) Standards  CORBA 2.6 Specification 01-09-35, Object Management Group Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 105: Pdn Gateway Configuration

    Configuring the System as a Standalone PMIP P-GW in an LTE-SAE Network  Configuring the System as a Standalone PMIP P-GW Supporting an eHRPD Network  Configuring Optional Features on the P-GW Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 106: Configuring The System As A Standalone Egtp P-Gw

    Used when configuring static IP routes from the management interface(s) to a specific network. Security The name or names of the security administrator with full rights to the system. administrator name Security Open or encrypted passwords can be used. administrator password ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 107: Required P-Gw Context Configuration Information

    MCC number: The mobile country code (MCC) portion of the PLMN’s identifier (an integer value between 100 and 999). MNC number: The mobile network code (MNC) portion of the PLMN’s identifier (a 2 or 3 digit integer value between 00 and 999). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 108: Required Pdn Context Configuration Information

    Deny/permit type The types are:   by host IP address  by IP packets  by source ICMP packets  by source IP address masking  by TCP/UDP packets ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 109: Required Aaa Context Configuration Information

    The following table lists the information that is required to configure the AAA context on a P-GW. Table 12. Required Information for AAA Context Configuration Required Description Information Gx Interface Configuration (to PCRF) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 110 1 on the card in slot 17. A single physical port can facilitate multiple interfaces. Gateway IP Used when configuring static IP routes from the interface(s) to a specific network. address Gy Diameter Endpoint Configuration ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 111 1 on the card in slot 17. A single physical port can facilitate multiple interfaces. Gateway IP Used when configuring static IP routes from the interface(s) to a specific network. address Rf Diameter Endpoint Configuration Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 112: How This Configuration Works

    The following figure and supporting text describe how this configuration with a single source and destination context is used by the system to process a subscriber call originating from the GTP LTE network. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 113: Egtp P-Gw Configuration

    7. The S5/S8 data plane tunnel is established and the P-GW can forward and receive packets to/from the PDN. eGTP P-GW Configuration To configure the system to perform as a standalone eGTP P-GW: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 114: Initial Configuration

    Modifying the Local Context section. Step 2 Create the context where the eGTP service will reside by applying the example configuration in the Creating and Configuring an eGTP P-GW Context section. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 115: Modifying The Local Context

    <name> encrypted password <password> ftp ip route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name> exit port ethernet <slot#/port#> no shutdown bind interface <lcl_cntxt_intrfc_name> local Creating and Configuring an eGTP P-GW Context Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 116 <ipv4_address> priority <num> node-alive enable exit policy accounting <rf_policy_name> -noconfirm accounting-level {level_type} accounting-event-trigger interim-timeout action stop-start operator-string <string> cc profile <index> interval <seconds> exit exit subscriber default exit port ethernet <slot_number/port_number> no shutdown ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 117 <ipv4_address> dns secondary <ipv4_address> ip access-group <name> in ip access-group <name> out mediation-device context-name <pgw_context_name> ip context-name <pdn_context_name> ipv6 access-group <name> in ipv6 access-group <name> out active-charging rulebase <name> Notes: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 118 Use the following example to create and configure AAA groups supporting RADIUS and Rf accounting: configure context <pgw_context_name> -noconfirm aaa group <rf-radius_group_name> radius attribute nas-identifier <id> radius accounting interim interval <seconds> radius dictionary <name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 119 <gtpu_service_name> gtpc bind address <s5s8_interface_address> Notes:  Co-locating a P-GW service on the same ASR 5x00 requires that the command uses the gtpc bind address same IP address the P-GW service is bound to. Creating and Configuring a GTP-U Service...

  • Page 120: P-Gw Service Configuration

    Configuring the P-GW Service Use the following example to configure the P-GW service: configure context <pgw_context_name> pgw-service <pgw_service_name> -noconfirm plmn id mcc <id> mnc <id> associate egtp-service <egtp_service_name> associate qci-qos-mapping <name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 121: P-Gw Pdn Context Configuration

     QCI-QoS mapping configurations are created in the AAA context. Refer to the Configuring QCI-QoS Mapping section for more information.  Co-locating a P-GW service on the same ASR 5x00 requires the configuration of the associate pgw- command within the P-GW service.

  • Page 122: Active Charging Service Configuration

    Active Charging Service Configuration Use the following example to enable and configure active charging: configure require active-charging optimized-mode active-charging service <name> ruledef <name> <rule_definition> <rule_definition> exit ruledef default ip any-match = TRUE ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 123 <name> <action> <action> exit charging-action icmp billing-action egcdr exit charging-action qci3 content-id <id> billing-action egcdr qos-class-identifier <id> allocation-retention-priority <priority> tft-packet-filter qci3 exit charging-action static service-identifier <id> billing-action egcdr Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 124  Routing and/or charging rule definitions can be created/configured. The maximum number of routing rule definitions that can be created is 256. The maximum number of charging rule definitions is 2048. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 125: Policy Configuration

    <gy_interface_name> ipv6 address <address> exit interface <gz_interface_name> ip address <ipv4_address> exit interface <rf_interface_name> ip address <ipv4_address> exit subscriber default exit ims-auth-service <gx_ims_service_name> p-cscf discovery table <#> algorithm round-robin Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 126 <gy_cfg_name> realm <name> address <ocs_ipv4_or_ipv6_addr> route-entry peer <gy_cfg_name> exit diameter endpoint <rf_cfg_name> use-proxy origin realm <realm_name> origin host <name> address <rf_ipv4_address> peer <rf_cfg_name> realm <name> address <ofcs_ipv4_or_ipv6_addr> route-entry peer <rf_cfg_name> exit exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 127 Use the following example to create and map QCI values to enforceable QoS parameters: configure qci-qos-mapping <name> qci 1 user-datagram dscp-marking <hex> qci 3 user-datagram dscp-marking <hex> qci 9 user-datagram dscp-marking <hex> exit Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 128: Verifying And Saving The Configuration

    Verify your DHCP Service configuration by following the steps in the DHCP Service Configuration Verification section. Step 4 Save your configuration as described in the Verifying and Saving Your Configuration chapter. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 129: Dhcp Service Creation

     Multiple DHCP can be configured by entering command multiple times. A maximum of 20 dhcp server DHCP servers can be configured.  The command and command work in conjunction with dhcp detect-dead-server max-retransmissions each other. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 130: Dhcp Service Configuration Verification

    DHCP Dead consecutive Failure:5 DHCP T1 Threshold Timer: DHCP T2 Threshold Timer: DHCP Client Identifier: Not Used DHCP Algorithm: Round Robin DHCP Servers configured: Address: 150.150.150.150 Priority: 1 DHCP server rapid-commit: disabled ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 131: Dhcpv6 Service Configuration

    Use the following example to create the DHCPv6 service to support DHCP-based address assignment: configure context <dest_ctxt_name> dhcpv6-service <dhcpv6_svc_name> bind address <ipv6_address> port <port> Notes:  To ensure proper operation, DHCPv6 functionality should be configured within a destination context. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 132: Dhcpv6 Server Parameter Configuration

    Use the following example to configure the DHCPv6 client parameters to support DHCPv6-based address assignment: configure context <dest_ctxt_name> dhcpv6-service <dhcpv6_svc_name> dhcpv6-client server-ipv6-address <ipv6_addr> port <port> priority <priority> max-retransmissions <max_number> server-dead-time <dead_time> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 133: Dhcpv6 Profile Configuration

    { AAA | LOCAL | PDN-DHCP } priority <priority> dhcpv6-server-preference <pref_value> enable dhcpv6-server-unicast enable dhcpv6-server-reconf exit dhcp-client-profile <client_profile> client-identifier { IMSI | MSISDN } enable rapid-commit-dhcpv6 enable dhcp-message-spray request dhcp-option dns-address request dhcp-option netbios-server-address request dhcp-option sip-server-address Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 134: Associate Dhcpv6 Configuration

     sip-server-address Associate DHCPv6 Configuration Use the following example to associate the DHCPv6 profile with an APN: configure context <dest_ctxt_name> apn <apn_name> dhcpv6 service-name <dhcpv6_svc_name> server-profile <server_profile> client- profile <client_profile> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 135: Dhcpv6 Service Configuration Verification

    O_FLAG DHCPv6 Servers configured: Address: 2092::192:90:92:40 Priority: 1 enabled Step 2 Verify the DHCPv6 service status by entering the following command in Exec Mode: show dhcpv6 status service dhcpv6_service_name Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 136: Configuring The System As A Standalone Pmip P-Gw In An Lte-Sae Network

    Used when configuring static IP routes from the management interface(s) to a specific network. Security The name or names of the security administrator with full rights to the system. administrator name ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 137: Required P-Gw Context Configuration Information

    Multiple names are needed if multiple P-GW services will be used. LMA Service Configuration LMA Service An identification string from 1 to 63 characters (alpha and/or numeric) by which the LMA service will be Name recognized by the system. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 138: Required Pdn Context Configuration Information

    Readdress or The types are  redirect type readdress server  redirect context  redirect css delivery-sequence  redirect css service  redirect nexthop SGi Interface Configuration (To/from IPv4 PDN) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 139: Required Aaa Context Configuration Information

    For example, port 17/1 identifies connector number 1 on the card in slot 17. A single physical port can facilitate multiple interfaces. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 140 An identification string from 1 to 255 characters (alpha and/or numeric) by which the S6b origin host is recognized by the system. Origin host The IP address of the S6b interface. address ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 141 Multiple names are needed if multiple interfaces will be configured. IP address and IPv4 or IPv6 addresses assigned to the interface. subnet Multiple addresses and subnets are needed if multiple interfaces will be configured. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 142: How This Configuration Works

    The following figure and supporting text describe how this configuration with a single source and destination context is used by the system to process a subscriber call originating from the PMIP LTE network. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 143: P-Mip P-Gw (Lte) Configuration

    7. The S5/S8 data plane tunnel is established and the P-GW can forward and receive packets to/from the PDN. P-MIP P-GW (LTE) Configuration To configure the system to perform as a standalone P-MIP P-GW in an LTE-SAE network environment, review the following graphic and subsequent steps. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 144: Initial Configuration

    Modifying the Local Context section. Step 2 Create the context where the P-GW service will reside by applying the example configuration in the Creating and Configuring a P-MIP P-GW Context section. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 145 Use the following example to create a P-GW context, create an S5/S8 IPv6 interface (for data traffic to/from the S-GW), and bind the S5/S8 interface to a configured Ethernet port: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 146 Command Line Interface Reference for more information on this command. Creating and Configuring APNs in the P-GW Context Use the following configuration to create an APN: configure context <pgw_context_name> -noconfirm ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 147 <seconds> radius dictionary <name> radius mediation-device accounting server <address> key <key> diameter authentication dictionary <name> diameter accounting dictionary <name> diameter authentication endpoint <s6b_cfg_name> diameter accounting endpoint <rf_cfg_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 148 MAG and a MIP binding is terminated, the LMA can send a revocation message to the MAG. Creating a P-GW PDN Context Use the following example to create a P-GW PDN context and Ethernet interface, and bind the interface to a configured Ethernet port. configure ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 149: P-Gw Service Configuration

    P-GW and a 3GPP AAA server over the S6b interface. Configuring a Static IP Route Use the following example to configure static IP routes for data traffic between the P-GW and the S-GW: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 150: P-Gw Pdn Context Configuration

    <name> range <start_address end_address> public <priority> subscriber default ip access-list <name> redirect css service <name> any permit any exit ipv6 access-list <name> redirect css service <name> any permit any exit aaa group default ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 151: Active Charging Service Configuration

    Use the following example to enable and configure active charging: configure require active-charging optimized-mode active-charging service <name> ruledef <name> <rule> <rule> exit ruledef default ip any-match = TRUE exit ruledef icmp-pkts icmp any-match = TRUE exit ruledef qci3 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 152 <id> billing-action rf qos-class-identifier <id> allocation-retention-priority <priority> tft packet-filter qci3 exit charging-action static service-identifier <id> billing-action rf qos-class-identifier <id> allocation-retention-priority <priority> tft packet-filter qci3 exit rulebase default ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 153: Aaa And Policy Configuration

    PCRF: configure context <aaa_context_name> -noconfirm interface <s6b_interface_name> ip address <ipv4_address> exit interface <gx_interface_name> ipv6 address <address> exit interface <gy_interface_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 154 <s6b_cfg_name> realm <name> address <aaa_ipv4_addr> route-entry peer <s6b_cfg_name> exit diameter endpoint <gx_cfg_name> origin realm <realm_name> origin host <name> address <aaa_ctx_ipv6_address> peer <gx_cfg_name> realm <name> address <pcrf_addr> route-entry peer <gx_cfg_name> exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 155 <s6b_interface_name> <aaa_context_name> exit port ethernet <slot_number/port_number> no shutdown bind interface <gx_interface_name> <aaa_context_name> exit port ethernet <slot_number/port_number> no shutdown bind interface <gy_interface_name> <aaa_context_name> exit port ethernet <slot_number/port_number> no shutdown Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 156: Verifying And Saving The Configuration

    Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 157: Configuring The System As A Standalone Pmip P-Gw Supporting An Ehrpd Network

    Used when configuring static IP routes from the management interface(s) to a specific network. Security The name or names of the security administrator with full rights to the system. administrator name Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 158: Required P-Gw Context Configuration Information

    MCC number: The mobile country code (MCC) portion of the PLMN’s identifier (an integer value between 100 and 999). MNC number: The mobile network code (MNC) portion of the PLMN’s identifier (a 2 or 3 digit integer value between 00 and 999). LMA Service Configuration ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 159: Required Pdn Context Configuration Information

    Deny/permit type The types are:   by host IP address  by IP packets  by source ICMP packets  by source IP address masking  by TCP/UDP packets Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 160: Required Aaa Context Configuration Information

    The following table lists the information that is required to configure the AAA context on a P-GW. Table 20. Required Information for AAA Context Configuration Required Description Information Gx Interface Configuration (to PCRF) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 161 1 on the card in slot 17. A single physical port can facilitate multiple interfaces. Gateway IP Used when configuring static IP routes from the interface(s) to a specific network. address S6b Diameter Endpoint Configuration Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 162 Origin host The IP address of the Rf interface. address Peer name The Rf endpoint name described above. Peer realm name The Rf origin realm name described above. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 163: How This Configuration Works

    The following figure and supporting text describe how this configuration with a single source and destination context is used by the system to process a subscriber call originating from the GTP LTE network. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 164: P-Mip P-Gw (Ehrpd) Configuration

    7. The S5/S8 data plane tunnel is established and the P-GW can forward and receive packets to/from the PDN. P-MIP P-GW (eHRPD) Configuration To configure the system to perform as a standalone P-MIP P-GW in an eHRPD network environment, review the following graphic and subsequent steps. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 165: Initial Configuration

    Modifying the Local Context section. Step 2 Create the context where the P-GW service will reside by applying the example configuration in the Creating and Configuring a P-MIP P-GW Context section. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 166 Use the following example to create a P-GW context, create an S2a IPv6 interface (for data traffic to/from the HSGW), and bind the S2a interface to a configured Ethernet port: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 167 PDN-QCI, QCI, and subscriber. Refer to the Accounting Profile Configuration Mode Commands chapter in the Command Line Interface Reference for more information on this command. Creating and Configuring APNs in the P-GW Context Use the following configuration to create an APN: configure Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 168 Use the following example to create and configure AAA groups supporting RADIUS and Rf accounting: configure context <pgw_context_name> -noconfirm aaa group <rf-radius_group_name> radius attribute nas-identifier <id> radius accounting interim interval <seconds> radius dictionary <name> radius mediation-device accounting server <address> key <key> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 169  Enabling revocation provides for MIP registration revocation in the event that MIP revocation is negotiated with a MAG and a MIP binding is terminated, the LMA can send a revocation message to the MAG. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 170: P-Gw Service Configuration

     QCI-QoS mapping configurations are created in the AAA context. Refer to the Configuring QCI-QoS Mapping section for more information.  External authorization is performed by the 3GPP AAA server through the S6b interface. Internal authorization (APN) is default. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 171: P-Gw Pdn Context Configuration

    <name> range <start_address end_address> public <priority> subscriber default exit ip access-list <name> redirect css service <name> any permit any exit ipv6 access-list <name> redirect css service <name> any permit any exit aaa group default exit Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 172: Active Charging Service Configuration

    Use the following example to enable and configure active charging: configure require active-charging optimized-mode active-charging service <name> ruledef <name> <rule_definition> <rule_definition> exit ruledef <name> <rule_definition> <rule_definition> exit charging-action <name> <action> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 173: Aaa And Policy Configuration

     A rule base is a collection of rule definitions and associated charging actions. AAA and Policy Configuration Step 1 Configure AAA and policy interfaces by applying the example configuration in the Creating and Configuring the AAA Context section. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 174 <#> algorithm round-robin p-cscf table <#> row-precedence <#> ipv6-address <pcrf_adr> policy-control diameter origin endpoint <gx_cfg_name> diameter dictionary <name> diameter host-select table <#> algorithm round-robin diameter host-select row-precedence <#> table <#> host <gx_cfg_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 175 <rf_cfg_name> exit diameter endpoint <gy_cfg_name> use-proxy origin realm <realm_name> origin host <name> address <aaa_ip_address> connection retry-timeout <seconds> peer <gy_cfg_name> realm <name> address <ocs_ip_addr> route-entry peer <gy_cfg_name> exit exit Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 176 Use the following example to create and map QCI values to enforceable QoS parameters: configure qci-qos-mapping <name> qci 1 user-datagram dscp-marking <hex> qci 3 user-datagram dscp-marking <hex> qci 9 user-datagram dscp-marking <hex> exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 177: Verifying And Saving The Configuration

    Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 178: Configuring Optional Features On The P-Gw

    The following example configures a crypto ACL (Access Control List), which defines the matching criteria used for routing subscriber data packets over an IPSec tunnel: configure context <pgw_context_name> -noconfirm ip access-list <acl_name> permit tcp host <source_host_address> host <dest_host_address> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 179: Creating And Configuring An Ipsec Transform Set

    IP header. This is the default setting for IPSec transform sets configured on the system. Creating and Configuring an IKEv2 Transform Set The following example configures an IKEv2 transform set: configure context <pgw_context_name> -noconfirm ikev2-ikesa transform-set <ikev2_transform-set_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 180: Creating And Configuring A Crypto Map

    <crypto_map_name> ikev2-ipv4 match address <acl_name> peer <ipv4_address> authentication local pre-shared-key key <text> authentication remote pre-shared-key key <text> ikev2-ikesa transform-set list <name1> . . . name6> payload <name> match ipv4 lifetime <seconds> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 181: Configuring Apn As Emergency

    You may also configure the P-CSCF FQDN server name for the APN. configure context <pgw_context_name> -noconfirm apn <name> emergency-apn timeout emergency-inactivity <seconds> p-cscf fqdn <fqdn> Notes:  By default, an APN is assumed to be non-emergency. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 182: Configuring Common Gateway Access Support

    7. Save your configuration as described in the Verifying and Saving Your Configuration chapter. Diameter Endpoint Configuration Use the following example to configure the Diameter endpoint: configure context <pgw_ctxt_name> -noconfirm diameter endpoint <s6b_endpoint_name> origin host <host_name> address <ip_address> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 183: Aaa Group Configuration

    > is name of the P-GW service which is already created on the system. pgw_svc_name DNS Client Configuration Use the following example to enable the S6b interface on P-GW service with 3GPP AAA/HSS: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 184: Duplicate Call Accept Configuration

    > is name of the P-GW service which is already created on the system. pgw_svc_name Common Gateway Access Support Configuration Verification 1. Verify that your common gateway access support is configured properly by entering the following command in Exec Mode: show pgw-service all ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 185: Configuring Dynamic Node-To-Node Ip Security On The S5 Interface

    Creating and Configuring an IPSec Transform Set The following example configures an IPSec transform set, which is used to define the security association that determines the protocols used to protect the data on the interface: configure Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 186: Creating And Configuring An Ikev2 Transform Set

    <sec> prf sha1 Notes:  The encryption algorithm, , or Advanced Encryption Standard Cipher Block Chaining, is the aes-cbc-128 default algorithm for IKEv2 transform sets configured on the system. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 187: Creating And Configuring A Crypto Template

    Binding the S5 IP Address to the Crypto Template The following example configures the binding of the S5 interface to the crypto template: configure context <pgw_ingress_context_name> -noconfirm gtpu-service <gtpu_ingress_service_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 188: Configuring The Gtp Echo Timer

    The following examples describe the configuration of the default eGTP-C and GTP-U interface echo timers: eGTP-C configure configure context <context_name> egtp-service <egtp_service_name> gtpc echo-interval <seconds> gtpc echo-retransmission-timeout <seconds> gtpc max-retransmissions <num> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 189  The following diagram describes a failure and recovery scenario using default settings of the three gtpc commands in the example above:  The multiplier (x2) is system-coded and cannot be configured. GTP-U configure configure context <context_name> gtpu-service <gtpu_service_name> echo-interval <seconds> echo-retransmission-timeout <seconds> max-retransmissions <num> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 190: Dynamic Gtp Echo Timer Configuration

     The multiplier (x2) is system-coded and cannot be configured. Dynamic GTP Echo Timer Configuration The following examples describe the configuration of the dynamic eGTP-C and GTP-U interface echo timers: eGTP-C configure configure context <context_name> egtp-service <egtp_service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 191 (RTT) of six seconds:  The multiplier (x2) and the 100 second maximum are system-coded and cannot be configured. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 192  The following diagram describes a failure and recovery scenario using default settings of the three gtpc commandsin the example above and an example round trip timer (RTT) of six seconds: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 193: Configuring Gtpp Offline Accounting On The P-Gw

    Configuring GTPP Offline Accounting on the P-GW By default the P-GW service supports GTPP accounting. To provide GTPP offline charging, configure the P-GW with the example parameters below: configure gtpp single-source context <ingress_context_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 194 <index> buckets <num> cc profile <index> interval <seconds> cc profile <index> volume total <octets> exit exit context <ingress_context_name> apn apn associate accounting-policy <gz_policy_name> exit interface <gz_interface_name> ip address <address> exit exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 195: Configuring Local Qos Policy

    The following configuration example enables a local QoS policy on the P-GW: configure local-policy-service <name> -noconfirm ruledef <ruledef_name> -noconfirm condition priority <priority> <variable> match <string_value> condition priority <priority> <variable> match <int_value> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 196: Binding A Local Qos Policy

    Binding a Local QoS Policy The following configuration example binds the previously configured local QoS policy: configure ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 197: Verifying Local Qos Policy

    <cert_name> pem url <cert_pem_url> private-key pem url <private_key_url> ca-certificate name <ca_cert_name> pem url <ca_cert_url> Notes:  The commands specify the X.509 certificate name ca-certificate list ca-cert-name certificate and CA certificate to be used. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 198  The commands authentication local certificate authentication remote certificate enable X.509 certificate-based peer authentication for the local and remote nodes. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 199: Network Mobility (Nemo)

    It is recommended that you select the configuration example that best meets your service model and configure the required elements for that model, as described in the Cisco ASR 5x00 Packet Data Network Gateway Administration Guide, before using the procedures in this chapter.

  • Page 200: Nemo Overview

    3. Moveable - Applications that need to maintain Dynamic Mobile Network Routing (DMNR) service operational while moving and crossing PDSN boundaries, such as public safety vehicles. Service continuity is handled by the mobility protocols (Mobile IP in 3G and GTP in LTE). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 201: Features And Benefits

    NEMO includes the following features:  Collocated-Care-of-Address mode The Cisco NEMO MR is expected to use the Collocated-Care-of-Address mode to establish a NEMO MIPv4 session with NEMO4G-HA and as one of the IP endpoints of the NEMO GRE Tunnel for the transport of user traffic.

  • Page 202: Nemo Mr Authorization

    HA accepts the LAN prefixes (up to eight) encoded in the first Cisco-specific NVSE (vendor-type = 9). NEMO4G-HA is not expected to process the other two Cisco-specific NVSEs with vendor-type = 49, which carry the Internal Interface ID of the MR's Roaming Interface and the MR's Roaming Interface Bandwidth in Kbps, respectively.

  • Page 203: Session Interactions

    Forced Fragmentation E-PGW forces IP packet fragmentation even for IP packets with the DF-bit set. Redundancy/Reliability The LTE NEMO solution supports intra-chassis Session Redundancy (SR) and Inter-Chassis Session Redundancy (ICSR) functionalities. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 204: Lte Nemo Call Flow

    Figure 18. NEMOv4 Call Flow 1. The Cisco MR eHWIC establishes first a connection to the IMS PDN to register to the LTE Network. The eHWIC's User Id must be properly provisioned on the HSS/SPR to be successfully authenticated. 2. After the Cisco MR eHWIC registers with the LTE network and establishes a connection to the IMS PDN, then it connects to the appropriate Enterprise PDN based on the locally configured Enterprise APN.
  • Page 205 LAN prefixes will be encoded in the same Cisco NVSE extension currently used in the NEMO solution for 3G. The Cisco NVSE included in the NEMOv4 MIP RRQ is in the form of a TLV.  N-MHAE - Mandatory NEMO MN-HA Authentication Extension that includes the SPI and the authenticator computed using a pre-shared Key.

  • Page 206: Engineering Rules

     Up to 5k host routes spread across multiple VRFs per BGP process. Limited to 6000 pool routes per chassis.  Up to 1024 VRFs per chassis. Supported Standards  IETF RFC 3025 (February 2001) “Mobile IP Vendor/Organization Specific Extensions”  IETF RFC 1191 (November 1990) “Path MTU Discovery” ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 207: Nemo Configuration

    10.1.1.1 255.255.255.0 private vrf corp1 nexthop-forwarding-address 192.168.1.2 overlap vlanid 50 router bgp 100 address-family ipv4 vrfcorp1 neighbor192.168.1.2 remote-as 300 neighbor 192.168.1.2 allow-default-vrf-connection redistribute connected Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 208: Create A Vrf

    Use this example to first create a VRF on the router and assign a VRF-ID. configure context <context_name> -noconfirm ip vrf <vrf_name> ip pool <pool_name> <pool_address> private vrf <vrf_name> nexthop-forwarding-address <ip_address> overlap vlanid <vlan_id> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 209: Set Neighbors And Address Family

    <type> vrf <vrf_name> redistribute connected exit redistribute connected Configure and Enable NEMO in APN Profile Use this example to configure and enable NEMO in an APN profile. configure context <context_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 210: Create A Nemo Ha

    Create a NEMO HA Use this example to create a NEMO HA. configure context <context_name> ha-service <ha_service_name> mn-ha-spi spi-number <number> encrypted secret <enc_secret> authentication mn-aaa noauth encapsulation allow keyless-gre bind address <ip_address> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 211: Configuring Subscriber Session Tracing

    This chapter discusses following topics for feature support of Subscriber Session Tracing in LTE service:  Introduction  Supported Standards  Subscriber Session Tracing Functional Description  Subscriber Session Trace Configuration  Verifying Your Configuration Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 212: Introduction

    Maximum, Minimum and Medium with ability to configure additional levels based on vendor extensions. Important: Only Maximum Trace Depth is supported in the current release. The following figure shows a high-level overview of the session-trace functionality and deployment scenario: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 213: Supported Functions

     Trace of specific subscriber identified by IMSI  Trace of UE identified by IMEI(SV)  Ability to specify specific functional entities and interfaces where tracing should occur.  Scalability and capacity Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 214  Active pushing of files to the TCE  Passive pulling of files by the TCE  1 TCE support per context  Trace Session Recovery after Failure of Session Manager ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 215: Supported Standards

     3GPP TS 32.423 V8.2.0 (2009-09): 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; Telecommunication management; Subscriber and equipment trace: Trace data definition and management (Release 8) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 216: Subscriber Session Trace Functional Description

    (typically when the subscriber or UE under trace initiates a connection). A failure to activate a trace (due to max exceeded or some other failure reason) results in a notification being sent to the TCE indicating the failure. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 217: Management Activation

    The maximum level of detail results in the entire control message getting traced and forwarded to the TCE. The medium and minimum define varying subsets of the control messages Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 218: Trace Scope

    The S-GW support tracing of the following interfaces with the following trace capabilities: Interface Name Remote Device Trace Signaling (De)Activation RX Trace Signaling (De)Activation TX S1-U eNodeB SGSN P-GW (Intra-PLMN) P-GW (Inter-PLMN) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 219: P-Gw

    The P-GW support tracing of the following interfaces with the following trace capabilities: Interface Name Remote Device Trace Signaling (De)Activation RX Trace Signaling (De)Activation TX S2abc Various NEs S-GW (Intra-PLMN) AAA Server/Proxy S-GW (Inter-PLMN) Policy Server Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 220: Subscriber Session Trace Configuration

    > is the configured Trace Id to be used for this trace collection instance. It is composed of trace_ref_id MCC (3 digit)+MNC (3 digit)+Trace Id (3 byte octet string).  < > is the IP address of Trace collection Entity in IPv4 notation. ip_address ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 221: Trace File Collection Configuration

    > is the location/path on the trace collection entity (TCE) where trace files will be stored on TCE. For string more information, refer to the command in the Command Line Interface Reference. session trace Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 222: Verifying Your Configuration

    The output of this command displays the summary of trace references for all network elements: Trace Reference: 310012012345 Trace Reference: 310012012346 Trace Reference: 310012012345 Trace Reference: 310012012346 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 223 Configuring Subscriber Session Tracing Verifying Your Configuration ▀ Trace Reference: 310012012347 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 225: Monitoring The Service

    In addition to the CLI, the system supports the sending of Simple Network Management Protocol (SNMP) traps that indicate status and alarm conditions. Refer to the SNMP MIB Reference for a detailed listing of these traps. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 226: Monitoring System Status And Performance

    Verify IPv4 pools have been created and are available context egress_pgw_context_name show ip pool summary Verify IPv6 pools have been created and are available context egress_pgw_context_name show ipv6 pool summary View LMA Service Information ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 227 View NAT realms assigned to this user show subscriber full username user_name |grep -i nat View active charging flows for a specific NAT IP address show active-charging flows full nat required nat-ip ip_address Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 228 Verify “Create Session Request” and “Create Session Response” categories are incrementing  Verify “Total Data Stats:” are incrementing eHRPD:  Verify lma-sessions are present  Verify “Binding Updates Received:” categories are incrementing ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 229: Clearing Statistics And Counters

    (PPP, MIPHA, MIPFA, etc.). Statistics and counters can be cleared using the CLI command. Refer to the Command Line Reference for clear detailed information on using this command. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 231: Coa, Radius Dm, And Session Redirection (Hotlining)

    Important: Not all functions, commands, and keywords/variables are available or supported for all network function or services. This depends on the platform type and the installed license(s). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 232: Radius Change Of Authorization And Disconnect Message

    License Requirements The RADIUS Change of Authorization (CoA) and Disconnect Message (DM) are licensed Cisco features. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 233: Enabling Coa And Dm

     If 3GPP service is configured the following attributes are used for different identifiers:  3GPP-IMSI: International Mobile Subscriber Identification (IMSI) number should be validated and matched with the specified IMSI for specific PDP context. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 234: Coa And Dm Error-Cause Attribute

    The following error causes are sent in NAK messages when a CoA or DM request fails:  401 - Unsupported Attribute  402 - Missing Attribute  403 - NAS Identification Mismatch  404 - Invalid Request  405 - Unsupported Service ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 235: Viewing Coa And Dm Statistics

    0 Current pseudo auth requests 0 Total null-username auth requests (rejected) 0 Total aaa acct completed 0 Total aaa acct purged 0 Total acct keepalive success 0 Total acct keepalive timeout Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 236 357 Total gtpp charg success 0 Total gtpp charg failure 0 Total gtpp charg cancel 0 Total gtpp charg purg 0 Total prepaid online requests 0 Current prepaid online requests ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 237 0 Total aaamgr purged requests 0 SGSN: Total db records 0 SGSN: Total sub db records 0 SGSN: Total mm records 0 SGSN: Total pdp records 0 SGSN: Total auth records Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 238: Session Redirection (Hotlining)

    License Requirements The Session Redirection (Hotlining) is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 239: Session Limits On Redirection

    View the redirected session entries for a subscriber by entering the following command: show subscribers debug-info { callid <id> | msid <id> | username <name> } The following command displays debug information for a subscriber with the MSID 0000012345: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 240 Total flush (svc change): 0 Total out-of-seq pkt drop: 0 Total out-of-seq arrived: 0 IPv4 Reassembly Statistics: Success: 0 In Progress: 0 Failure (timeout): 0 Failure (no buffers): 0 Failure (other reasons): 0 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 241 Sessmgr Instance: 7 Primary callline: Redundancy Status: Original Session Checkpoints Attempts Success Last-Attempt Last-Success Full: 27 26 15700ms 15700ms Micro: 76 76 4200ms 4200ms Current state: SMGR_STATE_CONNECTED FSM Event trace: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 242 Added: 0 Deleted: 0 Revoked for use by different subscriber: 0 Peer callline: Redundancy Status: Original Session Checkpoints Attempts Success Last-Attempt Last-Success Full: 0 0 0ms 0ms Micro: 0 0 0ms 0ms ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 243 Success: 0 In Progress: 0 Failure (timeout): 0 Failure (no buffers): 0 Failure (other reasons): 0 Redirected Session Entries: Allowed: 2000 Current: 0 Added: 0 Deleted: 0 Revoked for use by different subscriber: 0 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 245: Direct Tunnel

     PDN Gateway (P-GW) Important: Direct tunnel is a licensed Cisco feature. A separate feature license is required for configuration. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 246: Direct Tunnel Feature Overview

    A direct tunnel is achieved upon PDN context activation in the following ways:  3G network: The SGSN establishes a user plane (GTP-U) tunnel directly between the RNC and the GGSN, using an Updated PDN Context Request toward the GGSN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 247  LTE network: The SGSN establishes a user plane tunnel (GTP-U tunnel over an S12 interface) directly between the RNC and the S-GW, using an Update PDN Context Request toward the S-GW. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 248 The SGSN/S-GW platform capabilities ensure control plane capacity will not be a limiting factor with direct tunnel deployment. The following figure illustrates the logic used within the SGSN/S-GW to determine if a direct tunnel will be setup. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 249 Direct Tunnel Direct Tunnel Feature Overview ▀ Figure 21. Direct Tunneling - Establishment Logic Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 250: Direct Tunnel Configuration

    Before beginning any of the following procedures, you must have completed (1) the basic service configuration for the SGSN, as described in the Cisco ASR Serving GPRS Support Node Administration Guide, and (2) the creation and configuration of a valid operator policy, as described in the Operator Policy chapter in this guide.

  • Page 251: Enabling Setup Of Gtp-U Direct Tunnels

    The following is an example of the commands used to ensure that direct tunneling, to a GGSN(s) identified in the APN profile, is enabled: config apn-profile <profile_name> remove direct tunnel Notes: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 252: Enabling Direct Tunnel Per Imei

    The following is an example of the commands used to ensure that restrictive configuration is removed and direct tunnel for the RNC is enabled: config context <ctx_name> iups-service <service_name> rnc id <rnc_id> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 253: Verifying The Sgsn Direct Tunnel Configuration

    IMEI Profile Name : imeiprofile1 Validity : Invalid APN NI homers1 APN Profile Name : apnprofile1 Validity : Valid APN NI visitors2 APN Profile Name : apnprofile2 Validity : Invalid Notes: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 254 Use the following command to display and verify the direct tunnel configuration in the IMEI profile: show imei-profile full name <profile_name> The output of this command displays all of the configuration, including direct tunnel for the specified IMEI profile. IMEI Profile Name = imeiprofile1 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 255: Configuring S12 Direct Tunnel Support On The S-Gw

    Use the following example to configure this feature: configure context <egress_context_name> -noconfirm interface <s12_interface_name> ip address <s12_ipv4_address_primary> ip address <s12_ipv4_address_secondary> exit exit port ethernet <slot_number/port_number> no shutdown bind interface <s12_interface_name> <egress_context_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 256 <sgw_service_name> -noconfirm associate egress-proto gtp egress-context <egress_context_name> egtp-service <s12_egtp_egress_service_name> Notes:  The S12 interface IP address(es) can also be specified as IPv6 addresses using the command. ipv6 address ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 257: Gre Protocol Interface

    Important: GRE protocol interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 258: Introduction

    ▀ Introduction Introduction GRE protocol functionality adds one additional protocol on Cisco’s multimedia core platforms (ASR 5000 or higher) to support mobile users to connect to their enterprise networks through Generic Routing Encapsulation (GRE). GRE tunnels can be used by the enterprise customers of a carrier 1) To transport AAA packets corresponding to an APN over a GRE tunnel to the corporate AAA servers and, 2) To transport the enterprise subscriber packets over the GRE tunnel to the corporation gateway.

  • Page 259: Supported Standards

     RFC 1701, Generic Routing Encapsulation (GRE)  RFC 1702, Generic Routing Encapsulation over IPv4 networks  RFC 2784, Generic Routing Encapsulation (GRE)  RFC 2890, Key and Sequence Number Extensions to GRE Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 260: Supported Networks And Platforms

    This feature supports all systems with StarOS Release 9.0 or later running GGSN and/or SGSN service for the core network services. The P-GW service supports this feature with StarOS Release 12.0 or later. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 261: Licenses

    Licenses ▀ Licenses GRE protocol interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 262: Services And Application On Gre Interface

    GRE Protocol Interface ▀ Services and Application on GRE Interface Services and Application on GRE Interface GRE interface implementation provides the following functionality with GRE protocol support. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 263: How Gre Interface Support Works

    (or get reattached), but instead the packet is forwarded as is to the VPN manager or kernel respectively. In case of all other GRE tunneled packets the IPV4 and GRE header are stripped off before sending the packet for a new flow lookup. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 264 GRE Protocol Interface ▀ How GRE Interface Support Works Figure 23. Ingress Packet Processing on GRE Interface ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 265: Egress Packet Processing On Gre Interface

    How GRE Interface Support Works ▀ Egress Packet Processing on GRE Interface Figure given below provides a flow of process for outgoing packets on GRE interface: Figure 24. Egress Packet Processing on GRE Interface Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 266: Gre Interface Configuration

    Virtual Routing And Forwarding (VRF) Configuration This section provides the configuration example to configure the VRF in a context: configure context <vpn_context_name> -noconfirm ] ip vrf <vrf_name> ip maximum-routes <max_routes> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 267: Gre Tunnel Interface Configuration

    For more information on interface configuration refer System Administration Guide.  < > is a globally reachable IP address to be used as a destination address. global_ip_address Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 268: Enabling Ospf For Vrf

    > is the name of the VRF which is preconfigured in context configuration mode. vrf_name  < > is the network IP address with sub-net mask to be used for IP pool. internal_ip_address/mask ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 269: Associating Apn With Vrf

    > is name of a predefined tunnel type IP interface which is to be used for GRE tunnel tunnel_intfc_name interface.  < > is the name of the VRF which is preconfigured in context configuration mode. vrf_name Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 270: Verifying Your Configuration

    UP (Bound to local address 1.1.1.1 (foo1), remote address 5.5.5.5) IP Address: 10.1.1.1 Subnet Mask: 255.255.255.0 Intf Name: foo3 Intf Type: Tunnel (GRE) Description: IP State: DOWN (<state explaining the reason of being down>) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 271 Verify that GRE keep alive is configured properly by entering the following command in Exec Mode: show ip interface gre-keepalive The output of this command displays the configuration of the keepalive for GRE interface configured in a context. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 273: Gx Interface Support

     Rel. 6 Gx Interface  Rel. 7 Gx Interface  Rel. 8 Gx Interface  Rel. 9 Gx Interface  Assume Positive for Gx  Time Reporting Over Gx Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 274: Rel. 6 Gx Interface

    Gx Interface Support ▀ Rel. 6 Gx Interface Rel. 6 Gx Interface Rel. 6 Gx interface support is available on the Cisco ASR chassis running StarOS 8.0 and later releases for the following products:  GGSN  IPSG Important: In 14.0 and later releases, Rel. 6 Gx interface functionality is not supported on the chassis.

  • Page 275: License Requirements

    Rel. 6 Gx Interface ▀ License Requirements The Rel. 6 Gx interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.
  • Page 276 Figure 25. Rel. 6 Gx IMS Authorization Call Flow Table 22. Rel. 6 Gx IMS Authorization Call flow Description Step Description IMS subscriber (MN) sends request for primary PDP context activation/creation. Session manager allocates IP address to MN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 277: Configuring Rel. 6 Gx Interface

    In many cases, other optional commands and/or keyword options are available. Refer to the Command Line Interface Reference for complete information regarding all commands. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 278: Configuring Ims Authorization Service At Context Level

    Diameter dictionary to use, contact your Cisco account representative.  Optional: To configure the quality of service (QoS) update timeout for a subscriber, in the IMS Authorization Service Configuration Mode, enter the following command: qos-update-timeout <timeout_duration> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 279: Verifying Ims Authorization Service Configuration

    Configuring IMS Authorization Service at Context Level section. configure context <context_name> apn <apn_name> ims-auth-service <imsa_service_name> Notes:  must be the name of the context in which the IMS Authorization service was configured. <context_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 280: Verifying Subscriber Configuration

    Verify the IMS Authorization Service configuration for subscriber(s) by entering the following command: show subscribers ims-auth-service <imsa_service_name> must be the name of the IMS Authorization Service configured for IMS authentication. <imsa_service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 281: Rel. 7 Gx Interface

    Gx Interface Support Rel. 7 Gx Interface ▀ Rel. 7 Gx Interface Rel. 7 Gx interface support is available on the Cisco ASR chassis running StarOS 8.1 or StarOS 9.0 and later releases for the following products:  GGSN  IPSG This section describes the following topics: ...
  • Page 282 ECS. The Gy protocol related functions are handled within the DCCA module (at the ECS). The following figure shows the interaction between components within the Gateway. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 283: Supported Networks And Platforms

    License Requirements The Rel. 7 Gx interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 284: Terminology And Definitions

    SUCCESSFUL_RESOURCE_ALLOCATION ( 22 ) event trigger will be sent under the following conditions:  When a rule is installed successfully (and the event trigger is armed by PCRF and resource- allocation-notification is enabled). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 285 QoS is in-line with the “Authorized QoS” per IP CAN Bearer.  Policy Provisioning for Authorized QoS Per SDF: The provisioning of authorized QoS per SDF is a part of PCC rule provisioning procedure. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 286  PCC Rule Error Handling: If the installation/activation of one or more PCC rules fails, the PCEF includes one or more Charging-Rule-Report AVP(s) in either a CCR or an RAA command for the affected PCC rules. Within each Charging-Rule-Report AVP, the PCEF identifies the failed PCC ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 287: Charging Control

     Provisioning of Default Charging Method: In this release, the default charging method is sent in CCR-I message. For this, new AVPs Online/Offline are sent in CCR-I message based on the configuration. Charging Correlation Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 288: Policy And Charging Control (Pcc) Rules

     Service Identifier: The service identifier is used to identify the service or the service component the SDF relates  Service Data Flow Filter(s): The service flow filter(s) is used to select the traffic for which the rule applies. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 289: Pcc Procedures Over Gx Reference Point

    PCEF. For example, in response to information provided to the PCRF via the Rx reference point, or in response to an internal trigger within the PCRF. To provision PCC rules without a request from the PCEF, the Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 290 Uplink IP packets which do not match any PCC rule of the corresponding IP CAN bearer are discarded. Selecting a PCC Rule and IP CAN Bearer for Downlink IP Packets ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 291: Volume Reporting Over Gx

    Rel. 7 Gx interface. License Requirements The Volume Reporting over Gx is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 292: Feature Overview

    In 12.0 and later releases, enabling and disabling session usage in a single message from PCRF is supported. This is supported only if the monitoring key is associated at session level. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 293: Usage Reporting

     Usage Threshold Reached: PCEF records the subscriber data usage and checks if the usage threshold provided by PCRF is reached. This is done for both session and rule level reporting. For session-level reporting, the actual usage volume is compared with the usage volume threshold. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 294 IP-CAN session level (if enabled) and at service data flow level (if enabled) This is the default behavior. In the case of standard implementation, this must be enabled by CLI configuration. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 295: How Rel. 7 Gx Works

    Important: In 14.0 and later releases, the DPCA and the IMSA will be acting as one module within the Policy Server interface application. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 296 IMSA allocates resources for the IP CAN session and the bearer, and selects the PCRF to contact based on the user's selection key (for example, msisdn). IMSA requests the DPCA module to issue an auth request to the PCRF. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 297 Based on the PCEF bearer binding for the PCC rules at Step 18, the outcome could be one or more network-initiated PDP context procedures with the UE (Network Requested Update PDP Context (NRUPC) / Network Requested Secondary PDP Context Activation (NRSPCA)). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 298: Configuring Rel. 7 Gx Interface

    { 1 | 2 } row-precedence <precedence_value> { address <ip_address> | ipv6-address <ipv6_address> } [ secondary { address <ip_address> | ipv6-address <ipv6_address> } ] policy-control diameter origin endpoint <endpoint_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 299  Optional: To configure the Quality of Service (QoS) update timeout for a subscriber, in the IMS Authorization Service Configuration Mode, enter the following command: qos-update-timeout <timeout_duration> Important: This command is obsolete in release 11.0 and later releases. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 300: Verifying The Configuration

    Change to the context where you enabled IMS Authorization service by entering the following command: context <context_name> Step 2 Verify the IMS Authorization service’s configurations by entering the following command: show ims-authorization service name <imsa_service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 301: Applying Ims Authorization Service To An Apn

    Verify the IMS Authorization service configuration for subscriber(s) by entering the following command: show subscribers ims-auth-service <imsa_service_name> must be the name of the IMS Authorization service configured for IMS authentication. <imsa_service_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 302: Configuring Volume Reporting Over Gx

    Information and statistics specific to policy control in IMS show ims-authorization policy-control statistics Authorization service. Information and statistics specific to the authorization servers used for show ims-authorization servers ims-auth- service IMS Authorization service. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 303 Information on all group of ruledefs configured in the system. Information on policy gate counters and status. show ims-authorization policy-gate { counters | status } This command is no longer an option in StarOS release 11.0 and beyond. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 304: Rel. 8 Gx Interface

    Gx Interface Support ▀ Rel. 8 Gx Interface Rel. 8 Gx Interface Rel. 8 Gx interface support is available on the Cisco ASR chassis running StarOS 10.0 or StarOS 11.0 and later releases. This section describes the following topics: ...
  • Page 305 ECS. The Gy protocol related functions are handled within the DCCA module (at the ECS). The following figure shows the interaction between components within the Gateway. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 306: Terminology And Definitions

    HA/PDSN Rel. 8 Gx PCC Architecture within PCEF License Requirements The HA/PDSN Rel. 8 Gx interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 307: Event Reporting

    The PCEF combines the different sets of authorized QoS information, that is the information received from the PCRF and the information corresponding to the predefined PCC rules. The PCRF knows the authorized QoS Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 308: Other Features

    PCEF triggers a REVALIDATION_TIMEOUT event. When installed, the PCC rule is inactive. If Rule-Activation-Time / Rule-Deactivation-Time is specified, then the PCEF sets the rule active / inactive after that time. Charging Control ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 309  Dynamic PCC Rules: Rules dynamically provisioned by the PCRF to the PCEF via the Gx interface. These PCC rules may be either predefined or dynamically generated in the PCRF. Dynamic PCC rules can be activated, modified, and deactivated at any time. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 310 Provisioning of PCC Rules The PCRF indicates, via the Rel. 8 Gx reference point, the PCC rules to be applied at the PCEF. This may be using one of the following procedures: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 311 If PCC is enabled, the PCEF selects a PCC rule for each received downlink IP packet within an IP-CAN session by evaluating the packet against downlink SDF filters of PCRF-provided or predefined active PCC rules of the IP-CAN session in the order of precedence of the PCC rules. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 312: How It Works

    Important: In 14.0 and later releases, the DPCA and the IMSA will be acting as one module within the Policy Server interface application. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 313 IMSA allocates resources for the IP-CAN session, and selects the PCRF to contact based on the user's selection key (for example, round-robin). IMSA requests the DPCA module to issue an auth request to the PCRF. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 314: Configuring Ha/Pdsn Rel. 8 Gx Interface Support

    To configure HA/PDSN Rel. 8 Gx Interface functionality: 1. At the context level, configure IMSA service for IMS subscribers as described in the Configuring IMS Authorization Service at Context Level section. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 315 <end_result_code> ] } } { continue | retry-and-terminate | terminate } exit exit diameter endpoint <endpoint_name> [ -noconfirm ] origin realm <realm_name> use-proxy origin host <host_name> address <ip_address> no watchdog-timeout response-timeout <timeout_duration> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 316 Use the following example to apply IMSA service functionality to subscriber template within the context previously configured in the Configuring IMS Authorization Service at Context Level section. configure context <context_name> subscriber default encrypted password <encrypted_password> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 317: Gathering Statistics

    Information and statistics specific to the authorization servers used for show ims-authorization servers ims-auth- service IMS Authorization service. show ims-authorization service all Information of all IMS Authorization service. show ims-authorization service statistics Statistics of IMS Authorization service. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 318: P-Gw Rel. 8 Gx Interface Support

     In case the SDF is tunnelled at the BBERF, the PCEF shall inform the PCRF about the mobility protocol tunnelling header of the service data flows at IP-CAN session establishment. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 319: Terminology And Definitions

    This section describes the 3GPP Rel. 9 Volume Reporting over Gx feature. License Requirements The Volume Reporting over Gx is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.
  • Page 320 After DPCA parses the AVPs IMSA updates the information to ECS. Once ECS is ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 321 PCEF reports the accumulated usage for that monitoring key within the same CCR command if the Charging-Rule-Report AVP was included in a CCR command; Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 322 PCEF for that IP CAN session and and the usage accumulated between the CCR-CCA will be discarded. For information on how to configure the Volume Reporting over Gx feature, see the Configuring Volume Reporting over Gx section. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 323: Rel. 9 Gx Interface

    This section describes the 3GPP Rel. 9 Volume Reporting over Gx feature. License Requirements The Volume Reporting over Gx is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.
  • Page 324 PCRF. If a new usage threshold is not provided by the PCRF in the acknowledgement of an IP-CAN Session modification where its usage was reported, then usage monitoring does not continue in the PCEF for that IP CAN session. Usage Monitoring ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 325 PCRF, the rest of the monitoring keys’ usage is reported to PCRF. On Tx expiry/TCP link error, unreported usage is stored at ECS. Any future successful interaction with PCRF for the session will send unreported UMI to PCRF. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 326 PCEF sends a CCR to request PCC rules and reports all accumulated usage for all enabled monitoring keys since the last report (or since usage reporting was enabled if the usage was not yet ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 327 PCEF for that IP CAN session and and the usage accumulated between the CCR-CCA will be discarded. For information on how to configure the Volume Reporting over Gx feature, see the Configuring Volume Reporting over Gx section. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 328: Assume Positive For Gx

    Important: Use of Gx Assume Positive requires that a valid license key be installed. Contact your Cisco account representative for information on how to obtain a license. The failure handling behavior is enhanced to ensure that the subscriber service is maintained in case of PCRF unavailability.

  • Page 329: Default Policy On Ccr-I Failure

    Enabled. The following command level fields are configurable per APN and per RAT Type:  AMBR  UL  DL  QCI  ARP  Priority Level  QCI Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 330: Gx Back Off Functionality

    Reference for complete information regarding all commands. Configuring Local Policy Service at Global Configuration Level Use the following example to configure Local Policy Service at global configuration level for subscribers: configure local-policy-service LOCAL_PCC ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 331 1 event fallback ruledef 2G_RULE actiondef time continue rule priority 2 event new-call ruledef 2G_RULE actiondef action1 rule priority 3 event location-change ruledef 2G_RULE actiondef action1 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 332: Configuring Failure Handling Template At Global Configuration Level

    <context_name> ims-auth-service <service_name> associate local-policy-service <lp_service_name> associate failure-handling <failure-handling-template-name> Verifying Local Policy Service Configuration To verify the local policy service configuration, use this command: show local-policy statistics service <service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 333: Time Reporting Over Gx

    No separate license is required for Time Reporting over Gx feature. This feature can be enabled as part of "Policy Interface" license. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 334: Limitations

    This results in the usage monitoring being done for all the rules associated with that monitoring key. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 335: Usage Reporting

    Configuring Time Reporting over Gx This section describes the configuration required to enable Time Reporting over Gx. To enable Time Reporting over Gx, use the following configuration: configure active-charging service <ecs_service_name> rulebase <rulebase_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 336 PCEF. If this option is not usage configured, the behavior is to send the time usage information as part of event update but not reset at PCEF. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 337: Gy Interface Support

    Gy Interface Support This chapter provides an overview of the Gy interface and describes how to configure the Gy interface. Gy interface support is available on the Cisco system running StarOS 9.0 or later releases for the following products:  GGSN ...

  • Page 338: Introduction

    The following figure shows the Gy interface between CTF/Gateway/PCEF/Client running ECS and OCS (CDF/Server). Within the PCEF/GW, the Gy protocol functionality is handled in the DCCA module (at the ECS). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 339: License Requirements

    Gy Architecture License Requirements The Gy interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 340: Features And Terminology

    Debit Units Request to the OCS. The CTF may either specify a service identifier (centralised unit determination) or the number of units requested (decentralised unit determination). For refund purpose, the CTF sends a Debit Units Request to the OCS as well. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 341: Re-Authorization

    The Diameter Base Protocol maintains the underlying connection between the Diameter Client and the Diameter Server. The connection between the client and server is TCP based. There are a series of message exchanges to check the status of the connection and the capabilities. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 342: Diameter Credit Control Application

    The Diameter Credit Control Application (DCCA) is a part of the ECS subsystem. For every prepaid customer with Diameter Credit Control enabled, whenever a session comes up, the Diameter server is contacted and quota for the subscriber is fetched. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 343: Quota Behavior

    The envelope for CTP includes the last base time interval which contains no traffic. The size of the envelope is not constant as it was in Parking meter. The end of the envelope can only be determined retrospectively. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 344 The default quota is applicable only to the initial request and is not regranted during the course of the session. If subscriber disconnects and reconnects, the default quota will be applied again for the initial request. Requesting Quota ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 345 Rating Group or Rating Group and Service ID combination. Default Quota Handling  If default quota is set to 0, no data is passed/reported. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 346  Rating condition change:  Cellid change: Applicable only to GGSN and P-GW implementations.  LAC change: Applicable only to GGSN and P-GW implementations.  QoS change  RAT change ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 347 Quota-Consumption-Time expiry where there was traffic. The server may request envelope reports for just time or time and volume. Reporting the quota back to the server, is controlled by Envelope AVP with Envelope-Start-Time and Envelope-End-Time along with usage information. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 348 If the MSCC AVP is missing in CCA-Update it is treated as invalid CCA and the session is terminated.  Credit Control Answer - Terminate (CCA-T) The following figure depicts the call flow for a simple call request in the GGSN/P-GW/IPSG Gy implementation. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 349 Features and Terminology ▀ Figure 34. Gy Call Flow for Simple Call Request for GGSN/P-GW/IPSG The following figure depicts the call flow for a simple call request in the HA Gy implementation. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 350 RSU or Rating-Group AVP so that the server does not give any more quotas. If the Final-Action AVP is RESTRICT_ACCESS, then according to the settings in Restriction-Filter-Rule AVP or Filter-Id AVP. GY sends CCR-Update to the server with used quota. Triggers ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 351 The Final-Unit-Indication AVP can be present in the CCA from the server to indicate that the given quota is the final quota from the server and the corresponding action as specified in the AVP needs to be taken. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 352  Terminate: On any Tx expiry, the session is taken down.  Continue: On any Tx expiry, the session is still established, but without quota management.  Retry and Terminate: On any Tx expiry, the session is taken down. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 353: Unsupported Avps

    If there is an invalid answer from the server, Gy action is dependent on the CCFH setting:  In case of continue, the MIP session context is continued without further control from Gy. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 354: Supported Avps

     CC-Total-Octets (AVP Code: 421): Gy does not support this AVP in RSU.  Credit-Control-Failure-Handling (AVP Code: 427)  Final-Unit-Action (AVP Code: 449): Supported at Multiple-Services-Credit-Control grouped AVP level and not at command level. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 355  3GPP-Charging-Id (AVP Code: 2)  3GPP-GGSN-MCC-MNC (AVP Code: 9)  3GPP-GPRS-QoS-Negotiated-Profile (AVP Code: 5)  3GPP-IMSI-MCC-MNC (AVP Code: 8)  3GPP-NSAPI (AVP Code: 10)  3GPP-PDP-Type (AVP Code: 3) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 356  Trigger (AVP Code: 1264)  Trigger-Type (AVP Code: 870)  Unit-Quota-Threshold (AVP Code: 1226)  Volume-Quota-Threshold (AVP Code: 869)  Supported Diameter AVPs specified in 3GPP TS 32.299 V8.1.0: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 357: Unsupported Avps

     CC-Correlation-Id  CC-Money  CC-Sub-Session-Id  CC-Unit-Type (AVP Code: 454)  Check-Balance-Result  Cost-Information (AVP Code: 423)  Cost-Unit (AVP Code: 445)  Credit-Control  Currency-Code (AVP Code: 425) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 358  3GPP-MS-TimeZone (AVP Code: 23)  3GPP-PDSN-MCC-MNC  Authorised-QoS  Access-Network-Information  Adaptations  Additional-Content-Information  Additional-Type-Information  Address-Data  Address-Domain  Addressee-Type  Address-Type  AF-Correlation-Information  Alternate-Charged-Party-Address  Application-provided-Called-Party-Address  Application-Server ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 359  Destination-Interface  Domain-Name  DRM-Content  Early-Media-Description  Event  Event-Type  Expires  File-Repair-Supported  IM-Information  IMS-Charging-Identifier (ICID)  IMS-Communication-Service-Identifier  IMS-Information  Incoming-Trunk-Group-ID  Interface-Id  Interface-Port Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 360  MBMS-Information  MBMS-User-Service-Type  Media-Initiator-Flag  Media-Initiator-Party  Message-Body  Message-Class  Message-ID  Message-Size  Message-Type  MMBox-Storage-Requested  MM-Content-Type  MMS-Information  Node-Functionality  Number-Of-Participants  Number-Of-Received-Talk-Bursts ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 361 The PCEF/GW ignores this AVP if no PS free format data is stored for the online charging session.  PS-Free-Format-Data (AVP Code: 866)  PS-Furnish-Charging-Information (AVP Code: 865)  RAI (AVP Code: 909)  Read-Reply-Report-Requested  Received-Talk-Burst-Time  Received-Talk-Burst-Volume  Recipient-Address Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 362  Service-Specific-Type  SIP-Method  SIP-Request-Timestamp  SIP-Response-Timestamp  SM-Discharge-Time  SM-Message-Type  SM-Protocol-Id  SMSC-Address  SMS-Information  SMS-Node  SM-Status  SM-User-Data-Header  Submission-Time  Talk-Burst-Exchange  Talk-Burst-Time ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 363: Plmn And Time Zone Reporting

    To enable the PLMN and Time Zone Reporting feature, the PCRF shall send the Trigger AVP (Trigger Type 1, Trigger Type 2) at the command level in a CCA. The Event-based Gy session will be terminated in the following scenarios: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 364: Interworking Between Session-Based Gy And Event-Based Gy

    OCS becomes unreachable due to transport connection failure or gives an impression that OCS is unreachable owing to slow response for Diameter request messages. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 365 Also, any unreported usage from the time, server retried CCR-U sent till CCA-I is received, will be reported immediately by triggering CCR-U with usages for the same. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 366 For more information on the commands introduced in support of this feature, see the Credit Control Configuration Mode Command chapter in the Command Line Interface Reference. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 367: Configuring Gy Interface Support

    <endpoint_name> origin realm <realm> origin host <diameter_host> address <ip_address> peer <peer> realm <realm> address <ip_address> exit exit active-charging service <ecs_service_name> credit-control [ group <cc_group_name> ] diameter origin endpoint <endpoint_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 368: Configuring Ha / Pdsn Gy Interface Support

     For more information on configuring ECS rulebases, refer to the ACS Rulebase Configuration Mode Commands chapter in the Command Line Interface Reference. Configuring HA / PDSN Gy Interface Support To configure HA / PDSN Gy interface support, use the following configuration: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 369 [ group <cc_group_name> ] diameter origin endpoint <endpoint_name> diameter peer-select peer <peer> realm <realm> diameter pending-timeout <timeout> diameter session failover diameter dictionary <dictionary> failure-handling initial-request continue failure-handling update-request continue failure-handling terminate-request continue Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 370: Configuring Plmn And Time Zone Reporting

    PLMN and Time Zone Reporting feature: To enable PLMN and Time Zone Reporting through subscriber-template, use the following configuration: configure context <context_name> subscriber name <subscriber_name> dns primary <primary_ipaddress> dns secondary <secondary_ipaddress> ip access-group test in ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 371 In a scenario where the triggers are configured through the CLI command and another set of triggers are also received from Gx, then the triggers from Gx will have a higher priority. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 372: Configuring Server Unreachable Feature

    This section explains how to gather Gy related statistics and configuration information. In the following table, the first column lists what statistics to gather, and the second column lists the action to perform. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 373 Statistics of the Credit Control show active-charging credit-control statistics application, DCCA. States of the Credit Control application's show active-charging credit-control session-states [ rulebase <rulebase_name> ] [ content-id <content_id> ] sessions, DCCA. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 375: Icap Interface Support

    Administration Guide, before using the procedures in this chapter. The following products currently support ICAP interface functionality:  GGSN  P-GW Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 376: Icap Interface Support Overview

    This guarantees the appropriate interworking between the external application and content-based billing. In particular, this guarantees that charging will be applied to the appropriate request in case of redirection, and ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 377: Failure Action On Retransmitted Packets

    GET request. It is possible that the HTTP server sends the response for the permitted GET request. Hence there is a race condition and the subscriber may be able to view the web page even thought the rating was redirect or content insert. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 378: Supported Networks And Platforms

    RTSP client and the server regarding this flow termination. Supported Networks and Platforms This feature supports ST16 and Cisco Chassis for the core network services configured on the system. License Requirements External Content Filtering Server support through Internet Content Adaptation Protocol (ICAP) interface is a licensed Cisco feature.

  • Page 379: Configuring Icap Interface Support

    Use the following example to create the ICAP server group and bind the IP addresses: configure context <icap_ctxt_name> [ -noconfirm ] content-filtering server-group <icap_svr_grp_name> [ -noconfirm ] origin address <ip_address> Notes:  is local IP address of the CFSG endpoint. <ip_address> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 380: Configuring Icap Server And Other Parameters

    Use the following example to configure the content filtering mode to ICAP server mode in the ECS rulebase for content filtering: configure require active-charging [ optimized-mode ] active-charging service <acs_svc_name> [ -noconfirm ] rulebase <rulebase_name> [ -noconfirm ] content-filtering mode server-group <cf_server_group> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 381: Configuring Charging Action For Icap Server Group

    The following is a sample output. In this example, an ICAP Content Filtering server group named was configured. icap_cfsg1 Content Filtering Group: icap_cfsg1 Context: icap1 Origin Address: 1.2.3.4 ICAP Address(Port): 1.2.3.4(1344) Max Outstanding: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 382 Content Filtering Group Connections: NONE Total content filtering groups matching specified criteria: Step 2 Verify any configuration error in your configuration by entering the following command in Exec Mode: show configuration errors ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 383: L2Tp Access Concentrator

    Important: The L2TP Access Concentrator is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 384: Applicable Products And Relevant Sections

    RADIUS and Subscriber Profile Attributes Used  Configuring Local Subscriber Profiles for L2TP Support  Tunneling All Subscribers in a Specific Context Without Using RADIUS Attributes  Configuring LAC Services ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 385: Supported Lac Service Configurations For Pdsn Simple Ip

    Figure 37. LAC Service Configuration for SIP Attribute-based Tunneling This section describes the working of attribute-based tunneling and its configuration. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 386: How The Attribute-Based L2Tp Configuration Works

    This section provides a list of the steps required to configure attribute-based L2TP support for use with PDSN Simple IP applications. Each step listed refers to a different section containing the specific instructions for completing the required procedure. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 387: Pdsn Service-Based Compulsory Tunneling

    PDSN service-based compulsory tunneling requires the modification of one or more PDSN services and the configuration of one or more LAC services. The following figure and the text that follows describe how PDSN service-based compulsory tunneling is performed using the system. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 388: Configuring L2Tp Compulsory Tunneling Support For Pdsn Simple Ip

    Simple IP applications. Each step listed refers to a different section containing the specific instructions for completing the required procedure. Important: These instructions assume that the system was previously configured to support subscriber data sessions as a PDSN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 389 Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 390: Supported Lac Service Configurations For The Ggsn And P-Gw

    LAC will try other LNS addresses received from AAA server in Access-Accept message. If all available peer-LNS are exhausted, LAC service will reject the call ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 391: Transparent Ip Pdp Context Processing With L2Tp Support

    The APN configuration indicates such things as the IP address of the LNS, the system destination context in which a LAC service is configured, and the outbound username and password that will be used by the LNS to authenticate incoming Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 392: Non-Transparent Ip Pdp Context Processing With L2Tp Support

    2. The GGSN determines whether or not it is configured with an APN identical to the one specified in the message. If so, it determines how to process the session based on the configuration of the APN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 393: Ppp Pdp Context Processing With L2Tp Support

    The following figure and the text that follows describe how non-transparent IP PDP contexts are processed when L2TP tunneling is enabled. Figure 43. PPP PDP Context Call Processing with L2TP Tunneling Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 394: Configuring The Ggsn Or P-Gw To Support L2Tp

    3. Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration save configuration files, refer to the System Administration Guide and the Command Line Interface Reference. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 395: Supported Lac Service Configuration For Mobile Ip

    LAC Service Configuration for MIP How The Attribute-based L2TP Configuration for MIP Works The following figure and the text that follows describe how Attribute-based tunneling for MIP is performed using the system. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 396: Configuring Attribute-Based L2Tp Support For Ha Mobile Ip

    Profiles for L2TP Support section of this chapter. Step 2 Configure one or more LAC services according to the information and instructions located in the Configuring LAC Services section of this chapter. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 397 Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 398: Configuring Subscriber Profiles For L2Tp Support

    Important: If the LAC service and egress interface are configured in the same context as the core service or HA service, this attribute is not needed. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 399: Radius Tagging Support

    Configuring Local Subscriber Profiles for L2TP Support This section provides information and instructions for configuring local subscriber profiles on the system to support L2TP. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 400: Configuring Local Subscriber

    These instructions are used to verify the L2TP configuration. Step 1 Verify that your L2TP configurations were configured properly by entering the following command in Exec Mode in specific context: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 401: Tunneling All Subscribers In A Specific Context Without Using Radius Attributes

    RADIUS-based subscribers. This is especially useful when you have separate source/AAA contexts for specific subscribers. To configure the profile for the subscriber named default, follow the instructions above for configuring a local subscriber and enter the name default. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 402: Configuring Lac Services

    Use the following example to create the LAC service and bind the service to an IP address: configure context <dst_ctxt_name> [-noconfirm] lac-service <service_name> bind address <ip_address> Notes:  < > is the destination context where you want to configure the LAC service. dst_ctxt_name ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 403: Configuring Lns Peer

    192.168.2.1 First Retransmission Timeout: 1 (secs) Max Retransmission Timeout: 8 (secs) Max Retransmissions: Max Sessions: 500000 Max Tunnels: 32000 Max Sessions Per Tunnel: Data Sequence Numbers: Enabled Tunnel Authentication: Enabled Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 404 L2TP Access Concentrator ▀ Configuring LAC Services Keep-alive interval: Control receive window: 16 Max Tunnel Challenge Length: Proxy LCP Authentication: Enabled Load Balancing: Random Service Status: Started Newcall Policy: None ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 405: Modifying Pdsn Services For L2Tp Support

    { l2tp | none } Notes:  < > is the name of the source context containing the PDSN service, which you want to source_ctxt_name modify for L2TP support. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 406: Verifying The Pdsn Service For L2Tp Support

    Verify that your PDSN is configured properly by entering the following command in Exec Mode in specific context: show pdsn-service name pdsn_service_name The output of this command is a concise listing of PDSN service parameter settings as configured. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 407: Modifying Apn Templates To Support L2Tp

    > is the name of the pre-configured APN template which you want to modify for the L2TP support. apn_name  < > is the IP address of LNS server node and < > is the IP address of system lns_address local_ip_address which is bound to LAC service. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 408: Configuring Outbound Authentication

    Verify that your APN configurations were configured properly by entering the following command in Exec Mode in specific context: show apn name apn_name The output is a concise listing of APN parameter settings as configured. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 409: Mobile Ip Registration Revocation

    Important: This license is enabled by default; however, not all features are supported on all platforms and other licenses may be required for full functionality as described in this chapter. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 410: Overview

    If revocation is enabled at the FA, but an FA-HA SPI is not configured at the FA for a certain HA, then FA does not send Revocation Support Extension for a call to that HA. Therefore, the call may come up without Revocation support negotiated. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 411 Also note that Revocation support extension is included in the initial, renewal or handoff RRQ/RRP messages. The Revocation extension is not included in a Deregistration RRQ from the FA and the HA will ignore them in any Deregistration RRQs received. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 412: Configuring Registration Revocation

    System Administration Guide and the Command Line Interface Reference. Configuring HA Services Configure HA services to support MIP Registration Revocation by applying the following example configuration: configure context <context_name> ha-service <ha_service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 413 Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 415: Multi-Protocol Label Switching (Mpls) Support

    This chapter includes following sections:  Overview  Supported Standards  Supported Networks and Platforms  Licenses  Benefits  Configuring BGP/MPLS VPN with Static Labels  Configuring BGP/MPLS VPN with Dynamic Labels Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 416: Overview

    When forwarding subscriber packets in the upstream direction to the PE, the CE encapsulates packets with MPLS headers that identify the upstream VRF (the label sent with the NLRI) and the immediate next hop. When the PE receives a packet it swaps the label and forward. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 417: Chassis As Mpls-Ce Connected To Asbr

     Up to 250 virtual routing tables per context.  Up to 5000 “host routes” spread across multiple VRFs per BGP process. Limited to 6000 pool routes per chassis.  Up to 1024 VRFs per chassis. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 418: Supported Standards

     RFC 3032, MPLS Label Stack Encoding Important: One or more sections of above mentioned IETF are partially supported for this feature. For more information on Statement of Compliance, contact your Cisco account representative. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 419: Supported Networks And Platforms

    Multi-Protocol Label Switching (MPLS) Support Supported Networks and Platforms ▀ Supported Networks and Platforms This feature supports all ASR5x00 platforms with StarOS Release 9.0 or later running with network function services. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 420: Licenses

    ▀ Licenses Licenses Multi-protocol label switching (MPLS) is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 421: Benefits

    MPLS provides networks with a more efficient way to manage applications and move information between locations. MPLS prioritizes network traffic, so administrators can specify which applications should move across the network ahead of others. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 422: Configuring Bgp/Mpls Vpn With Static Labels

    The base configuration, as described in the Routing chapter in this guide, must be completed prior to attempt the configuration procedure described below. Important: The feature described in this chapter is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. Important: Commands used in the configuration samples in this section provide base functionality to the extent that the most common or likely commands and/or keyword options are presented.

  • Page 423: Set Neighbors And Enable Vpnv4 Route Exchange

    IP pools into BGP. address-family redistribute This takes any routes from another protocol and redistributes them using the BGP protocol. configure context <context_name> router bgp <as_number> address-family ipv4 <type> vrf <vrf_name> redistribute connected Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 424: Configure Ip Pools With Mpls Labels

    > applies DHCP over MPLS traffic. in_mpls_label_value output < out_mpls_label_value1 Bind AAA Group for Corporate Servers Use this example to bind AAA server groups with MPLS labels for input and output in Corporate network. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 425 Interface Administration Reference for more information on AAA group configuration.  Optional keyword < > nexthop-forwarding-address ip_address mpls-label input < > < > associates AAA group for MPLS in_mpls_label_value output < out_mpls_label_value1 traffic. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 426: Configuring Bgp/Mpls Vpn With Dynamic Labels

    Create VRF with Route-distinguisher and Route-target Use this example to first create a VRF on the router and assign a VRF name. The second command creates the ip vrf route-distinguisher and route-target. configure ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 427: Set Neighbors And Enable Vpnv4 Route Exchange

    Use this example to set the neighbors and address family to exchange VPNv4 routing information with a peer router. configure context <context_name> mpls bgp forwarding router bgp <as_number> neighbor <ip_address> remote-as <AS_num> address-family vpnv4 neighbor <ip_address> activate neighbor <ip_address> send-community both exit interface <bind_intfc_name> ip address <ip_addr_mask_combo> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 428: Configure Address Family And Redistributed Connected Routes

    Use this example to bind DHCP service with dynamic MPLS labels in Corporate network. configure context <dest_ctxt_name> interface <intfc_name> loopback ip vrf forwarding <vrf_name> ip address <bind_ip_address subnet_mask> exit dhcp-service <dhcp_svc_name> dhcp ip vrf <vrf_name> bind address <bind_ip_address> dhcp server <ip_address> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 429: Bind Aaa Group For Corporate Servers

    Use this example to modify the configured IP VRF to support QoS mapping. configure context <context_name> ip vrf <vrf_name> mpls map-dscp-to-exp dscp <dscp_bit_value> exp <exp_bit_value> mpls map-exp-to-dscp exp <exp_bit_value> dscp <dscp_bit_value> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 431: Proxy-Mobile Ip

    How Proxy Mobile IP Works in 3GPP Network  How Proxy Mobile IP Works in WiMAX Network  How Proxy Mobile IP Works in a WiFi Network with Multiple Authentication  Configuring Proxy Mobile-IP Support Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 432: Overview

    Proxy Mobile IP provides mobility for subscribers with MNs that do not support the Mobile IP protocol stack. Important: Proxy Mobile IP is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.

  • Page 433: Proxy Mobile Ip In 3Gpp2 Service

    MN (i.e. the MN is only responsible for maintaining the IP PDP context with the GGSN, no Agent Advertisement messages are communicated with the MN). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 434: Proxy Mobile Ip In Wimax Service

    In addition, simultaneous Mobile and Simple IP sessions will not be supported for an MN by the FA that is currently facilitating a Proxy Mobile IP session for the MN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 435: How Proxy Mobile Ip Works In 3Gpp2 Network

    Scenario 1: AAA server and PDSN/FA Allocate IP Address The following figure and table display and describe a call flow in which the MN receives its IP address from the AAA server and PDSN/FA. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 436 Mobile Node (MN) secures a traffic channel over the airlink with the RAN through the BSC/PCF. The PCF and PDSN/FA establish the R-P interface for the session. The PDSN/FA and MN negotiate Link Control Protocol (LCP). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 437: Scenario 2: Ha Allocates Ip Address

    The PDSN and the AAA server stop accounting for the session. Scenario 2: HA Allocates IP Address The following figure and table display and describe a call flow in which the MN receives its IP address from the HA. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 438 Table 30. HA Assigned IP Address Proxy Mobile IP Call Flow Description Step Description Mobile Node (MN) secures a traffic channel over the airlink with the RAN through the BSC/PCF. The PCF and PDSN/FA establish the R-P interface for the session. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 439 The PDSN/FA and the PCF terminate the R-P session. The HA and the AAA server stop accounting for the session. The PDSN and the AAA server stop accounting for the session. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 440: How Proxy Mobile Ip Works In 3Gpp Network

    This section contains call flows displaying successful Proxy Mobile IP session setup scenarios in 3GPP network. The following figure and the text that follows describe a a sample successful Proxy Mobile IP session setup call flow in 3GGP service. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 441 Proxy Mobile IP Call Flow in 3GPP Table 31. Proxy Mobile IP Call Flow in 3GPP Description Step Description The mobile station (MS) goes through the process of attaching itself to the GPRS/UMTS network. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 442 The MS can terminate the data session at any time. To terminate the session, the MS sends a Deactivate PDP Context Request message that is received by the SGSN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 443 Note that, though not shown in this example, the GGSN could optionally be configured to send partial CDRs while the PDP context is active. For each accounting message received from the GGSN, the CG responds with an acknowledgement. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 444: How Proxy Mobile Ip Works In Wimax Network

    Scenario 1: AAA server and ASN GW/FA Allocate IP Address The following figure and table display and describe a call flow in which the MN receives its IP address from the AAA server and ASN GW/FA. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 445 Table 32. AAA/ASN GW Assigned IP Address Proxy Mobile IP Call Flow Description Step Description Mobile Node (MN) secures a traffic channel over the airlink with the BS. The BS and ASN GW/FA establish the R6 interface for the session. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 446: Scenario 2: Ha Allocates Ip Address

    The ASN GW and the AAA server stop accounting for the session. Scenario 2: HA Allocates IP Address The following figure and table display and describe a call flow in which the MN receives its IP address from the HA. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 447 The BS and ASN GW/FA establish the R6 interface for the session. The ASN GW/FA and MN negotiate Link Control Protocol (LCP). Upon successful LCP negotiation, the MN sends an EAP Authentication Request message to the ASN GW/FA. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 448 The ASN GW/FA and the BS terminate the R6 session. The HA and the AAA server stop accounting for the session. The ASN GW and the AAA server stop accounting for the session. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 449: How Proxy Mobile Ip Works In A Wifi Network With Multiple Authentication

    The following figures describe a Proxy-MIP session setup using CHAP authentication (EAP-MD5), but also addresses a PAP authentication setup using EAP-GTC when EAP-MD5 is not supported by either PDIF or MS. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 450 MS receives PDIF address from DNS MS sets up IKEv2/IPSec tunnel by sending IKE_SA_INIT Request to PDIF. MS includes SA, KE, Ni, NAT- DETECTION Notify payloads in the IKEv2 exchange. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 451 MS does the second authentication by sending the IKE_AUTH Request with IDi payload to include the NAI. This NAI may be completely different from the NAI used in the first authentication. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 452 However, here they deviate because the MS does not support EAP-MD5 authentication, but EAP-GTC. In response to the EAP-MD5 challenge, the MS instead responds with legacy-Nak with EAP-GTC. The diagram below picks up at this point. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 453 The attribute content in the Access Accept message is encoded as EAP payload with EAP success when PDIF sends the IKE_AUTH Response to the MS. The MS and PDIF now have a secure IPSec tunnel for communication. Pdif sends an Accounting START message. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 454: Configuring Proxy Mobile-Ip Support

    { encrypted secret enc_secret | secret secret } [ description string ][ hash- algorithm { hmac-md5 | md5 | rfc2002-md5 } | replay-protection { timestamp | nonce } | timestamp-tolerance tolerance ] authentication mn-ha allow-noauth ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 455: Verify The Fa Service Configuration

    When configured, Proxy MIP HA Failover provides a mechanism to use a specified alternate Home Agent for the subscriber session when the primary HA is not available. Use the following configuration example to configure the Proxy MIP HA Failover: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 456: Configuring Ha Services

    . For additional information on how to verify and save configuration save configuration files, refer to the System Administration Guide and the Command Line Interface Reference. To verify the configuration of the HA service: context <context_name> show ha-service name <ha_service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 457: Configuring Subscriber Profile Radius Attributes

    Simultaneous- Regardless of the configuration of this SIP-MIP attribute, the FA facilitating the Proxy Mobile IP session will not allow simultaneous Simple IP and Mobile IP sessions for the MN. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 458: Configuring Local Subscriber Profiles For Proxy-Mip On A Pdsn

    PDSN (i.e. 0.0.0.0). This rule can be enabled by entering the inter-pdsn-handoff command. require ip-address  Optional: If you have enabled the Proxy-MIP HA Failover feature, use the mobile-ip home-agent alternate command to specify the secondary, or alternate HA. ha_address ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 459: Configuring Local Subscriber Profiles For Proxy-Mip On A Pdif

    This is an optional configuration. In addition, attributes returned from the subscriber’s profile for non-transparent IP PDP contexts take precedence over the configuration of the APN. These instructions assume that you are at the root prompt for the Exec mode: [local]host_name# Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 460 Step 8 Verify that your APNs were configured properly by entering the following command: show apn { all | name <apn_name> } Keyword Description Displays configuration information for all configured APN. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 461 Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 463: Rf Interface Support

    This chapter provides an overview of the Diameter Rf interface and describes how to configure the Rf interface. Rf interface support is available on the Cisco system running StarOS 10.0 or later releases for the following products:  Gateway GPRS Support Node (GGSN) ...

  • Page 464: Introduction

    CSCF, S-GW, HSGW, P-GW and GGSN with CCF is Rf interface. Rf interface for EPC domain is as per 3GPP standards applicable to the PS Domain (e.g. 32.240, 32.251, 32.299, etc.). ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 465 The following figure shows the Rf interface between CTF and CDF. Figure 56. Logical Offline Charging Architecture The Rf offline charging architecture mainly consists of three network elements — CCF, CTF and Diameter Dynamic Routing Agent (DRA). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 466: Charging Collection Function

    CCF from a pool of CCFs. License Requirements The Rf interface support is a licensed Cisco feature. A separate feature license may be required. Contact your Cisco account representative for detailed information on specific licensing requirements. For information on installing and verifying licenses, refer to the Managing License Keys section of the Software Management Operations chapter in the System Administration Guide.
  • Page 467 Rf Interface Support Introduction ▀  3GPP TS 32.299 V9.6.0 (2010-12) 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; Telecommunication management; Charging management; Diameter charging applications (Release 9) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 468: Features And Terminology

    Table 38. Accounting Request Messages Triggered by SIP Methods or ISUP Messages for P-CSCF and S-CSCF Diameter Message Triggering SIP Method/ISUP Message ACR [Start] SIP 200 OK acknowledging an initial SIP INVITE ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 469: Event Based Charging

    During a session, a network element may transmit multiple ACR Interims' depending on the proceeding of the session. In this scenario, CTF asks the CDF to store session related charging data. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 470: Diameter Base Protocol

    DPR, the peer sends DPA and puts the connection state to “DO NOT WANT TO TALK TO YOU” state and there is no way to get the connection back except for reconfiguring the peer again. A timeout value for retrying the disconnected peer must be provided. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 471: Timer Expiry Behavior

    The CCF closes a CDR when it detects that expected Diameter ACRs for a particular session have not been received for a period of time. The exact behavior of the CCF is operator configurable. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 472: How It Works

    The CDF returns Accounting-Answer (ACA) message with Accounting-Record-Type AVP set to EVENT_RECORD to the CTF in order to inform that charging information was received. The following figure and table explain the simple Rf call flow for session based charging. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 473 The CTF sends a Accounting-Request (ACR) with Accounting-Record-Type AVP set to STOP_RECORD to the CDF. The CDF updates the CDR accordingly and closes the CDR. The CDF returns Accounting-Answer (ACA) message with Accounting-Record-Type set to STOP_RECORD to the CTF. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 474: Configuring Rf Interface Support

    Enabling Rf Interface in Active Charging Service To enable the billing record generation and Rf accounting, use the following configuration: configure active-charging service <service_name> rulebase <rulebase_name> billing-records rf active-charging rf { rating-group-override | service-id-override } Notes: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 475: Configuring Ggsn / P-Gw Rf Interface Support

     The policy can be configured in any context.  For information on configuring accounting levels/policies/modes/event triggers, refer to the Accounting Policy Configuration Mode Commands chapter in the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 476  Management Intervention (Stop)  RAT Change  UE Timezone Change  Serving Node PLMN Change  Max Number of Changes in Charging conditions  Volume Limit  Time Limit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 477 (Interim), final Record (Stop) or AII trigger (Interim) trigger. Stop Abnormal Abnormal Abnormal Release When PDN/IP session is Release Release closed, C-C in both level will have Abnormal Release. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 478 Charging profile and the Charging-Characteristics AVP will carry this charging profile that will passed on from the HSS/AAA to P-GW/GGSN through various interfaces. The charging profile will be provisioned in the HSS. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 479 Change requires an online counter for the charging side change. The Max Number of implementation of this Changes in Change Condition is Charging dependent on Conditions). implementation of Online Charging update. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 480 Max Number of GW/GGSN and the Changes in container will be in a ACR Charging Interim/Stop sent for partial Conditions). record (Interim), final Record (Stop) or AII trigger (Interim) trigger. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 481 Data-Containers (1 for each change condition) are populated in the ACR Interim. [4] CCF creates the partial record. Stop Management Management intervention Intervention will close the PDN session from P-GW/GGSN. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 482: Configuring Hsgw Rf Interface Support

    | serving-nodes num | tariff time1 min hrs [ time2 min hrs...time4 min hrs ] | volume { downlink octets { uplink octets } | total octets | uplink octets { downlink octets } } } max-containers { containers | fill-buffer } exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 483 Stop Normal Release Normal Normal Normal Normal When PDN Release Release for Release Release session/PDN all bearers Session per QCI is closed, C-C in both level will have Normal Release. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 484 Stop Abnormal Release Abnorm Abnormal Abnorm Abnormal When PDN Release for Release session/PDN Release all bearers Release Session per QCI is closed, C-C in both level will have Abnormal Release. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 485 HSGW and the container will be in a Interim/Stop sent for partial record (Interim), final Record (Stop) or AII trigger (Interim) trigger. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 486 (if Max CC partial record (Interim), provisione final Record (Stop) or AII trigger (Interim) trigger.For APN-AMBR change, containers (TDVs) for all existing non-GBR bearers will be cached. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 487 Charging- Characteristi cs AVP will carry this charging profile that will passed on from the HSS/AAA to HSGW through various interfaces. The charging profile will provisioned in the HSS. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 488 Charging MaxCCC (if MaxCC will be in a Conditions is reached (if MaxCC configured) Interim/Stop sent for configured) partial record (Interim), final Record (Stop) or AII trigger (Interim) trigger. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 489 RAT Change is not applicable, as S-GW will be changed and old S- GW will send a Normal Release. UE Timezone Change Timezone not reported in eHRPD accounting. Tariff Time Change Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 490 Change ) of Changes in Charging Conditions set at S-GW = 2. [2] When Change Condition 1 takes place ACR[interim ] is sent and Traffic-Data- Volumes added to the UDR. (continued) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 491 Information and the second Change Condition 2 is populated in the Traffic-Data- Volumes. [4] CCF creates the partial record. Management Management Intervention intervention will close the PDN session from P-GW. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 492: Configuring P-Cscf/S-Cscf Rf Interface Support

    <endpoint_name> diameter accounting server <server_name> priority <priority> exit diameter endpoint <endpoint_name> origin realm <realm_name> use-proxy ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 493: Enabling Charging For Sip Methods

    To enable the charging only for INVITE SIP method, use the following configuration: configure context vpn cscf service pcscf no charging exclude invite Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 494: Configuring S-Gw Rf Interface Support

     For an S-GW session, the containers will be cached when the event trigger is one of the following:  QOS_CHANGE  FLOW_INFORMATION_CHANGE  LOCATION_CHANGE Similarly, if the event trigger is one of the following, the containers will be released: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 495 Stop Normal Release Normal Normal Normal Normal When PDN Release Release for Release Release session/PDN all bearers Session per QCI is closed, C-C in both level will have Normal Release. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 496 Stop Abnormal Abnorm Abnormal Abnorm Abnormal When PDN Release Release for Release session/PDN Release all bearers Release Session per QCI is closed, C-C in both level will have Abnormal Release. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 497 S-GW and the container will be in a ACR Interim/Stop sent for partial record (Interim), final Record (Stop) or AII trigger (Interim) trigger. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 498 ACR Conditions Interim/Stop sent for partial record (Interim), final Record (Stop) or AII trigger (Interim) trigger.For APN-AMBR change, containers (TDVs) for all existing non-GBR bearers will be cached. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 499 AVP will carry the charging profile identifier that is passed from HSS to S-GW via MME. The charging profile value can be configured in the HSS on a per APN basis. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 500 HSS to S-GW via MME. The charging profile value can be configured in the HSS on a per APN basis. Serving Node Change ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 501 MME owned by a rural operator. With S-GW relocation, the old S-GW terminates the Diameter charging session & the new S-GW starts a Diameter charging session (S- GW-Change included). Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 502 Change Timezon Timezone Timezon Timezone Change for change all bearers Tariff Time Change Service Idled Out ServiceSpecificU This is Online nit Limit charging related, so not applicable for Offline charging. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 503 Conditions set at S-GW = 2. [2] When Change Condition 1 takes place no ACR[interim] is sent, but S- GW will store the container data for this change condition. (continued) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 504 Billing Mediation system is not confused with the usage data sequence. [4] CCF creates the partial record. Management Management Intervention intervention will close the PDN session from P-GW. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 505: Gathering Statistics

    Message Stats : Total MA Requests: 0 Total MA Answers: 0 MAR - Retries: 0 MAA Timeouts: 0 MAA - Dropped: 0 Total SA Requests: 0 Total SA Answers: 0 Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 506 STR - Retries: 0 Message Error Stats: Diameter Protocol Errs: 0 Bad Answers: 0 Unknown Session Reqs: 0 Bad Requests: 0 Request Timeouts: 0 Parse Errors: 0 Request Retries: 0 Session Stats: ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 507 ACR-Interim Retries : 0 ACA-Interim Timeouts: 0 ACR-Event: 0 ACA-Event: 0 ACR-Stop : 0 ACA-Stop: 0 ACR-Stop Retries : 0 ACA-Stop Timeouts: 0 ACA-Dropped : 0 AC Message Error Stats: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 508 Rf Interface Support ▀ Configuring Rf Interface Support Diameter Protocol Errs: 0 Bad Answers: 0 Unknown Session Reqs: 0 Bad Requests: 0 Request Timeouts: 0 Parse Errors: 0 Request Retries: 0 ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 509: Traffic Policing And Shaping

    Appendix L Traffic Policing and Shaping This chapter describes the support of per subscriber Traffic Policing and Shaping feature on Cisco’s Chassis and explains the commands and RADIUS attributes that are used to implement this feature. The product Administration Guides provide examples and procedures for configuration of basic services on the system. It is recommended that you select the configuration example that best meets your service model, and configure the required elements for that model, as described in the respective product Administration Guide, before using the procedures in this chapter.

  • Page 510: Overview

    Important: Traffic Shaping is not supported on the GGSN, P-GW, or SAEGW. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 511: Traffic Policing Configuration

    Step b To apply the specified limits and actions to the uplink (data from the subscriber): configure context <context_name> subscriber name <user_name> qos traffic-police direction uplink Notes: Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 512: Configuring Apn For Traffic Policing In 3Gpp Networks

    100,000 bps (e.g. 8700000, 8800000, 8900000, ... 16000000) Step 1 Set parameters by applying the following example configurations: Step a To apply the specified limits and actions to the downlink (the Gn direction): configure ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 513 Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 514: Traffic Shaping Configuration

    Step b To apply the specified limits and actions to the uplink (data to the subscriber): configure context <context_name> subscriber name <user_name> qos traffic-shape direction uplink ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 515: Configuring Apn For Traffic Shaping In 3Gpp Networks

    From 576,000 to 8,640,000 64,000 (e.g. 576000, 640000, 704000, ... 86400000) From 8,700,000 to 16,000,000 100,000 bps (e.g. 8700000, 8800000, 8900000, ... 16000000) Step 1 Set parameters by applying the following example configurations. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 516  If the received uplink or downlink data rates are 0 and traffic policing is disabled, the default of 64 kbps is used. When enabled, the APN configured values are used. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 517 Save your configuration to flash memory, an external memory device, and/or a network location using the Exec mode command . For additional information on how to verify and save configuration files, refer to the save configuration System Administration Guide and the Command Line Interface Reference. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 518: Radius Attributes

    Specifies the downlink exceed action to perform. Exceed-Action (or SN1-Tp-Dnlk- Exceed-Action) SN-Tp-Dnlk- Specifies the downlink violate action to perform. Violate-Action (or SN1-Tp-Dnlk- Violate-Action) SN-QoS-Tp-Uplk Enable/disable traffic policing in the downlink direction. (or SN1-QoS-Tp- Uplk) ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 519: Traffic Policing For Umts Subscribers

    Table 48. RADIUS Attributes Required for Traffic Policing Support for UMTS Subscribers Attribute Description SN-QoS- Specifies the QOS Conversation Traffic Class. Conversation-Class (or SN1-QoS- Conversation-Class) SN-QoS-Streaming- Specifies the QOS Streaming Traffic Class. Class (or SN1-QoS- Streaming-Class) Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 520 Direction, Burst-Size, Committed-Data-Rate, Peak-Data-Rate, Exceed-Action, and Violate-Action from (or SN1-QoS-Traffic- the RADIUS server. Policy) This attribute can be sent multiple times for different traffic classes. If Class is set to 0, it applies across all traffic classes. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 521: P-Gw Sample Configuration Files

    Standalone PMIPv6 PDN Gateway Supporting an eHRPD Network In each configuration example, commented lines are labeled with the number symbol (#) and variables are identified using italics within brackets (< >). variable Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 522: Standalone Egtp Pdn Gateway

    # Configure ASR 5000 cards # Activate the PSCs card <slot_number> mode active psc exit card <slot_number> mode active psc exit # Repeat for the number of PSCs in the system ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 523 <name> encrypted password <password> ftp aaa group default exit administrator <name> encrypted password <password> ftp ip route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name> exit port ethernet <slot#/port#> no shutdown bind interface <lcl_cntxt_intrfc_name> local exit enable Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 524 <string> gtpp dictionary <name> gtpp trigger egcdr max-losdv gtpp egcdr losdv-max-containers <number> gtpp server <ipv4_address> priority <num> gtpp server <ipv4_address> priority <num> node-alive enable ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 525 <pgw_context_name> ip context-name <pdn_context_name> ipv6 access-group <name> in ipv6 access-group <name> out active-charging rulebase <name> exit aaa group <gz_acct_apn_name> bearer-control-mode mixed selection-mode sent-by-ms accounting-mode gtpp gtpp group default accounting-context <aaa_context_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 526 <gtpu_service_name> gtpc bind address <s5s8_interface_ip_address> exit gtpu-service <gtpu_service_name> bind ipv4-address <s5s8_interface_ip_address> # note alternative IPv6 address: bind ipv6-address <s5s8_interface_ip_address> exit pgw-servers <pgw_service_name> -noconfirm associate egtp-service <egtp_service_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 527 <name> range <start_address end_address> public <priority> subscriber default ip access-list <name> redirect css service <name> any permit any exit ipv6 access-list <name> redirect css service <name> any permit any exit Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 528 <name> ruledef <name> <rule_definition> <rule_definition> exit ruledef default ip any-match = TRUE exit ruledef icmp-pkts icmp any-match = TRUE exit ruledef qci3 icmp any-match = TRUE exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 529 <id> billing-action egcdr qos-class-identifier <id> allocation-retention-priority <priority> tft-packet-filter qci3 exit charging-action static service-identifier <id> billing-action egcdr qos-class-identifier <id> allocation-retention-priority <priority> tft-packet-filter qci3 exit rulebase default exit rulebase <name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 530 <aaa_context_name> -noconfirm interface <gx_interface_name> ipv6 address <address> # note alternative IPv4 address: ip address <ipv4_address> exit interface <gy_interface_name> ipv6 address <address> # note alternative IPv4 address: ip address <ipv4_address> exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 531 <#> table <#> host <gx_cfg_name> exit exit diameter endpoint <gx_cfg_name> origin realm <realm_name> origin host <name> address <aaa_context_ip_address> peer <gx_cfg_name> realm <name> address <pcrf_ip_addr> route-entry peer <gx_cfg_name> exit diameter endpoint <gy_cfg_name> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 532 <gy_interface_name> <aaa_context_name> exit port ethernet <slot_number/port_number> no shutdown bind interface <gz_interface_name> <aaa_context_name> exit port ethernet <slot_number/port_number> no shutdown bind interface <rf_interface_name> <aaa_context_name> exit # QCI-QoS mapping ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 533 P-GW Sample Configuration Files Standalone eGTP PDN Gateway ▀ qci-qos-mapping <name> qci 1 user-datagram dscp-marking <hex> qci 3 user-datagram dscp-marking <hex> qci 9 user-datagram dscp-marking <hex> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 534: Standalone Pmipv6 Pdn Gateway Supporting An Ehrpd Network

    Config file must end with “no autoconfirm” to return the CLI to its default setting. configure autoconfirm # Configure ASR 5000 cards # Activate the PSCs card <slot_number> mode active psc exit card <slot_number> mode active psc exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 535 <name> encrypted password <password> ftp aaa group default exit administrator <name> encrypted password <password> ftp ip route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name> exit port ethernet <slot#/port#> no shutdown bind interface <lcl_cntxt_intrfc_name> local exit Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 536 <ipv6_address> tunnel-mode ipv6ip source interface <name> destination address <ipv4_or_ipv6_address> exit exit exit policy accounting <rf_policy_name> -noconfirm accounting-level {level_type} accounting-event-trigger interim-timeout action stop-start operator-string <string> exit subscriber default exit ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 537 <name> diameter authentication endpoint <s6b_cfg_name> diameter accounting endpoint <rf_cfg_name> diameter authentication server <s6b_cfg_name> priority <num> diameter accounting server <rf_cfg_name> priority <num> exit aaa group default radius attribute nas-ip-address address <ipv4_address> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 538 <ipv6_addr/prefix> next-hop <sgw_addr> interface <pgw_sgw_intrfc_name> exit port ethernet <slot_number/port_number> no shutdown bind interface <s2a8_interface_name> <pgw_context_name> exit # PDN context configuration context <pdn_context_name> -noconfirm interface <pdn_sgi_ipv4_interface_name> ip address <ipv4_address> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 539 <slot_number/port_number> no shutdown bind interface <pdn_ipv4_interface_name> <pdn_context_name> exit port ethernet <slot_number/port_number> no shutdown bind interface <pdn_ipv6_interface_name> <pdn_context_name> exit # Enabling active charging require active-charging optimized-mode Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 540 ▀ Standalone PMIPv6 PDN Gateway Supporting an eHRPD Network active-charging service <name> ruledef <name> <rule_definition> <rule_definition> exit ruledef <name> <rule_definition> <rule_definition> exit charging-action <name> <action> <action> exit charging-action <name> <action> <action> exit rulebase default exit rulebase <name> <rule_base> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 541 <s6b_interface_name> ip address <ipv4_address> # note alternative IPv6 address: ipv6 address <address> exit interface <rf_interface_name> ip address <ipv4_address> # note alternative IPv6 address: ipv6 address <address> exit subscriber default exit Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 542 <gy_cfg_name> realm <name> address <ocs_ip_addr> route-entry peer <gy_cfg_name> exit diameter endpoint <s6b_cfg_name> origin realm <realm_name> origin host <name> address <aaa_context_ip_address> peer <s6b_cfg_name> realm <name> address <3gpp_aaa_ip_addr> route-entry peer <s6b_cfg_name> ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...
  • Page 543 <slot_number/port_number> no shutdown bind interface <rf_interface_name> <aaa_context_name> exit # QCI-QoS mapping qci-qos-mapping <name> qci 1 user-datagram dscp-marking <hex> qci 3 user-datagram dscp-marking <hex> qci 9 user-datagram dscp-marking <hex> Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...
  • Page 544 P-GW Sample Configuration Files ▀ Standalone PMIPv6 PDN Gateway Supporting an eHRPD Network ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 545: P-Gw Engineering Rules

    This appendix provides PDN Gateway-specific engineering rules or guidelines that must be considered prior to configuring the ASR 5x00 for your network deployment. General and network-specific rules are located in the appendix of the System Administration and Configuration Guide for the specific network type.

  • Page 546: Interface And Port Rules

     P-GW preserves an IP address between S2a interface (PMIPv6) and S5/S8 interface (GTP) when the user moves between Wi-Fi and LTE if a common P-GW is used as the anchor point between the two services. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

  • Page 547: P-Gw Context And Service Rules

     There are a maximum of 8 P-GW assignment tables per context and per chassis.  The total number of entries per table and per chassis is limited to 256. Cisco ASR 5x00 Packet Data Network Gateway Administration Guide ▄...

  • Page 548: P-Gw Subscriber Rules

    ▀ P-GW Subscriber Rules P-GW Subscriber Rules The following engineering rule applies to subscribers configured within the system:  Default subscriber templates may be configured on a per P-GW service. ▄ Cisco ASR 5x00 Packet Data Network Gateway Administration Guide...

Table of Contents