Cisco Cisco IOS Software Release 12.2(33)SB

This chapter describes how to configure lawful intercept. This is necessary to ensure that unauthorized 
users cannot perform lawful intercepts or access information related to intercepts. 

This chapter contains the following sections: 

 

To configure support for lawful intercept, the following prerequisites must be met: 

You must be logged in to the router with the highest access level (level-15). To log in with level-15 
access, enter the enable command and specify the highest-level password defined for the router. 

You must issue commands in global configuration mode at the command-line interface (CLI). 

(Optional) It might be helpful to use a loopback interface for the interface through which the router 
communicates with the mediation device. 

Consider the following security issues as you configure the router for lawful intercept: 

SNMP notifications for lawful intercept must be sent to UDP port 161 on the mediation device, not 
port 162 (which is the SNMP default). See the 

 for instructions.

The only users who should be allowed to access the Lawful Intercept MIBs are the mediation device 
and system administrators who need to know about lawful intercepts on the router. In addition, these 
users must have authPriv or authNoPriv access rights to access the Lawful Intercept MIBs. Users 
with NoAuthNoPriv access cannot access the Lawful Intercept MIBs.