Cisco Cisco Packet Data Gateway (PDG)
This enhancement is applicable to 19.2.3 and later releases.
Important
Feature Changes
With this enhancement, the Server Name Indication (SNI) rule variable is added as an optional field in EDRs
for detection of TLS/SSL flows. The SNI field in the TLS/SSL handshake is used to determine the type of
TLS/SSL flow being setup. The tls sni keyword is added to the rule-variable CLI command in the EDR
Format Configuration mode. When this rule variable is configured and a valid SNI name is detected in the
flow, the SNI field is populated in the EDR.
for detection of TLS/SSL flows. The SNI field in the TLS/SSL handshake is used to determine the type of
TLS/SSL flow being setup. The tls sni keyword is added to the rule-variable CLI command in the EDR
Format Configuration mode. When this rule variable is configured and a valid SNI name is detected in the
flow, the SNI field is populated in the EDR.
Previous Behavior: The SNI rule variable was not supported in EDR.
New Behavior: A new EDR rule variable "tls sni" is added to configure SNI for TLS/SSL flows.
Command Changes
rule-variable
The tls keyword is added to this command to configure the SNI rule variable for TLS/SSL flows in EDR.
configure
active-charging service service_name
edr-format format_name
rule-variable tls sni priority priority
end
end
Notes:
• tls sni: Specifies the TLS/SSL SNI field.
• priority priority: Specifies the CSV position of the field (protocol rule) in the EDR. priority must be
an integer from 1 through 65535.
Performance Indicator Changes
show active-charging edr-format all
This command will display the new EDR rule variable if configured.
show configuration
This command will display the new EDR rule variable if configured.
Release Change Reference, StarOS Release 19
59
ADC Changes in Release 19
SNI Rule Variable Support in EDR