Cisco Cisco IOS Software Release 12.2(33)SB
1-14
Cisco 10000 Series Router Lawful Intercept Configuration Guide
OL-3426-03
Chapter 1 Lawful Intercept Overview
Information About Lawful Intercept
The Lawful Intercept feature supports the Communications Assistance for Law Enforcement
Act (CALEA), which describes how service providers in the United States must support lawful intercept.
Currently, lawful intercept is defined by the following standards:
Act (CALEA), which describes how service providers in the United States must support lawful intercept.
Currently, lawful intercept is defined by the following standards:
•
Telephone Industry Association (TIA) specification J-STD-025
•
Packet Cable Electronic Surveillance Specification (PKT-SP-ESP-101-991229)
For information about Cisco’s lawful intercept solution, contact your Cisco account representative.
Feature History for Lawful Intercept
Refer to
Benefits of Lawful Intercept
Lawful intercept has the following benefits:
•
Allows multiple LEAs to run a lawful intercept on the same target without each other’s knowledge.
•
Does not affect subscriber services on the router.
•
Cannot be detected by the target.
•
Allows LEAs to perform lawful intercepts without the knowledge of service providers.
•
Uses Simple Network Management Protocol Version 3 (SNMPv3) and security features like the
View-based Access Control Model (SNMP-VACM-MIB) and User-based Security Model
(SNMP-USM-MIB) to restrict access to lawful intercept information and components.
View-based Access Control Model (SNMP-VACM-MIB) and User-based Security Model
(SNMP-USM-MIB) to restrict access to lawful intercept information and components.
•
Hides information about lawful intercepts from all but the most privileged users. An administrator
must set up access rights to enable privileged users to access lawful intercept information.
must set up access rights to enable privileged users to access lawful intercept information.
•
Provides two secure interfaces for performing an intercept: one for setting up the wiretap and one for
sending the intercepted traffic to the mediation device.
sending the intercepted traffic to the mediation device.
•
In Cisco IOS Release 12.2(31)SB2 and later releases, intercept taps are supported on the following
PPPoX sessions using Layer 2 RADIUS-based taps:
PPPoX sessions using Layer 2 RADIUS-based taps:
–
PPPoA
–
PPPoE
–
PPPoEoA
–
PPPoEoVLAN
–
PPPoEoQinQ
Cisco IOS Release
Description
Release 12.3(7)XI
This feature was integrated in Cisco IOS Release 12.3(7)XI and
implemented on the Cisco 10000 series router for the PRE2.
implemented on the Cisco 10000 series router for the PRE2.
Release 12.2(28)SB
This feature was enhanced to support RADIUS-based lawful intercept and
the CISCO-TAP2-MIB replaces the CISCO-TAP-MIB.
the CISCO-TAP2-MIB replaces the CISCO-TAP-MIB.
Release 12.2(28)SB2
This feature was integrated in Cisco IOS Release 12.2(28)SB2.
Release 12.2(31)SB2
This feature was enhanced to include the
CISCO-USER-CONNECTION-TAP-MIB and integrated into Cisco IOS
Release 12.2(31)SB2.
CISCO-USER-CONNECTION-TAP-MIB and integrated into Cisco IOS
Release 12.2(31)SB2.