Руководство По Устранению Ошибки для Cisco Cisco Tunnel Terminating Gateway (TTG)
Simple IP Configuration Examples
Example 2: Simple IP Using a Single Source Context and Multiple Outsourced Destination Contexts ▀
Cisco ASR 5000 Series Packet Data Serving Node Administration Guide ▄
OL-22939-01
Required Information
Description
PDSN service name
This is an identification string between 1 and 63 characters (alpha and/or numeric) by which the PDSN
service will be recognized by the system.
Multiple names are needed if multiple PDSN services will be used.
PDSN services are configured in the source context.
service will be recognized by the system.
Multiple names are needed if multiple PDSN services will be used.
PDSN services are configured in the source context.
UDP port number for
R-P traffic
R-P traffic
Specifies the port used by the PDSN service and the PCF for communications. The UDP port number
and can be any integer value between 1 and 65535. The default value is 699.
and can be any integer value between 1 and 65535. The default value is 699.
Authentication
protocols used
protocols used
Specifies how the system handles authentication: using a protocol (such as CHAP, PAP, or MSCHAP),
or not requiring any authentication.
or not requiring any authentication.
Domain alias for NAI-
construction
construction
Specifies a context name for the system to use to provide accounting functionality for a subscriber
session. This parameter is needed only if the system is configured to support no authentication.
session. This parameter is needed only if the system is configured to support no authentication.
Security Parameter
Index Information
Index Information
PCF IP address:
Specifies the IP address of the PCF that the PDSN service will be communicating with. The PDSN
service allows the creation of a security profile that can be associated with a particular PCF.
Multiple IP addresses are needed if the PDSN service will be communicating with multiple PCFs.
Specifies the IP address of the PCF that the PDSN service will be communicating with. The PDSN
service allows the creation of a security profile that can be associated with a particular PCF.
Multiple IP addresses are needed if the PDSN service will be communicating with multiple PCFs.
Index:
Specifies the shared SPI between the PDSN service and a particular PCF. The SPI can be configured to
any integer value between 256 and 4294967295.
Multiple SPIs can be configured if the PDSN service is to communicate with multiple PCFs.
Specifies the shared SPI between the PDSN service and a particular PCF. The SPI can be configured to
any integer value between 256 and 4294967295.
Multiple SPIs can be configured if the PDSN service is to communicate with multiple PCFs.
Secret:
Specifies the shared SPI secret between the PDSN service and the PCF. The secret can be between 1 and
127 characters (alpha and/or numeric).
An SPI secret is required for each SPI configured.
Specifies the shared SPI secret between the PDSN service and the PCF. The secret can be between 1 and
127 characters (alpha and/or numeric).
An SPI secret is required for each SPI configured.
Hash-algorithm:
Specifies the algorithm used to hash the SPI and SPI secret. The possible algorithms that can be
configured are MD5 per RFC 1321 and keyed-MD5 per RFC 2002. The default is MD5.
A hash-algorithm is required for each SPI configured.
Specifies the algorithm used to hash the SPI and SPI secret. The possible algorithms that can be
configured are MD5 per RFC 1321 and keyed-MD5 per RFC 2002. The default is MD5.
A hash-algorithm is required for each SPI configured.
Replay-protection process:
Specifies how protection against replay-attacks is implemented. The possible processes are nonce and
timestamp. The default is timestamp with a tolerance of 60 seconds.
A replay-protection process is required for each SPI configured.
Specifies how protection against replay-attacks is implemented. The possible processes are nonce and
timestamp. The default is timestamp with a tolerance of 60 seconds.
A replay-protection process is required for each SPI configured.
Subscriber session
lifetime
lifetime
Specifies the time in seconds that an A10 connection can exist before its registration is considered
expired.
The time is expressed in seconds and can be configured to any integer value between 1 and 65534, or the
timer can be disabled to set an infinite lifetime. The default value is 1800 seconds.
expired.
The time is expressed in seconds and can be configured to any integer value between 1 and 65534, or the
timer can be disabled to set an infinite lifetime. The default value is 1800 seconds.
AAA Interface Configuration
AAA interface name
This is an identification string between 1 and 79 characters (alpha and/or numeric) by which the interface
will be recognized by the system.
Multiple names are needed if multiple interfaces will be configured.
AAA interfaces will be configured in the source context.
will be recognized by the system.
Multiple names are needed if multiple interfaces will be configured.
AAA interfaces will be configured in the source context.
IP address and subnet
These will be assigned to the AAA interface.
Multiple addresses and/or subnets are needed if multiple interfaces will be configured.
Multiple addresses and/or subnets are needed if multiple interfaces will be configured.