Cisco Cisco Packet Data Gateway (PDG) Guida Dell'Amministratore
Service Configuration Procedures
Creating and Configuring HA Services ▀
Cisco ASR 5x00 Home Agent Administration Guide ▄
67
Notes:
<port_number>
must be the UDP port for the Pi interfaces’ IP socket.
A maximum of 2048 FA-HA Security Parameter Index (SPI) can be configured for each HA service.
<lifetime>
must the longest registration lifetime that the HA service allows in any Registration Request
message from the mobile node. An infinite registration lifetime can be configured using the no reg-lifetime
command.
command.
Option: To configure the HA service for controlling the negotiation and sending of the I-bit in revocation
messages, in the HA Service Configuration Mode, enter the following comand. By default, HA will not send I-
bit in revocation message.
bit in revocation message.
revocation negotiate-i-bit
Use the bind address command to bind the service to the Pi interface and specify the maximum number of
subscribers that can access the service. The hardware configuration and features installed can affect the
maximum subscriber sessions that can be supported.
maximum subscriber sessions that can be supported.
Option: To set the maximum period of time to set up a session, in the HA Service Configuration Mode, enter the
following command:
setup-timeout
<seconds>
Create and bind additional HA services to any other interfaces as required.
Verifying HA Service Configuration
Verify that your HA services were created and configured properly by entering the following command:
show ha-service { name service_name | all }
The output is a concise listing of HA service parameter settings similar to the following sample. In this sample, an HA
service named ha1 was configured.
service named ha1 was configured.
Service name: ha1
Context: ha
Bind: Done Max Subscribers: 500000
Local IP Address: 192.168.4.10 Local IP Port: 434
Lifetime: 00h01m40s Simul Bindings: 3
Reverse Tunnel: Enabled
GRE Encapsulation with-key: Enabled Keyless GRE Encapsulation: Disabled
Optimize Tunnel Reassembly: Enabled Setup Timeout: 60 sec
Allow Priv Addr w/o Rev Tunnel: Disabled
WIMAX-3GPP2 Interworking: Disabled SPI(s): MNHA: Remote Addr: 0.0.0.0
Description: Hash Algorithm: HMAC_MD5 SPI Num: 258 Replay Protection: Nonce
Timestamp Tolerance: 100
Description: Hash Algorithm: HMAC_MD5 SPI Num: 258 Replay Protection: Nonce
Timestamp Tolerance: 100
Permit Any Hash Algorithm: Enabled