Cisco Prime Nerk 43 User Guide
Have a look at the manual Cisco Prime Nerk 43 User Guide online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 53 Cisco manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
27-97 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Figure 27-6 LAC Architecture The packets that are exchanged within an L2TP tunnel can be categorized as control packets and data packets. To view the LAC configuration details: Step 1Right-click the required device in the Vision client and choose Inventory. Step 2In the Logical Inventory window, choose Logical Inventory > Context> LAC. The list of LAC services configured in Prime Network is displayed in the content pane. Step 3From the LAC node, choose an LAC service. The LAC service details are displayed in the content pane as shown in Figure 27-7. CPE PPP in L2TP sessionsRetail LNS provider Provider 1 Provider 2 Provider n 320487 L2TP sessions are terminated and placed in a VRF Wholesale LNS provider Cisco 10000 ESR VRF 1 VRF n VRF 2 LACIP transport networkAccess network (ATM or Ethernet)
27-98 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Figure 27-7 LAC Service Details Table 27-65 displays the LAC configuration details. Table 27-65 LAC Configuration Details Field Description Service Name The unique identification string for the LAC service. Status The status of the LAC service, which can be any one of the following: Initiated Running Down Started Nonstarted Unknown Local IP Address The local IP address bound with the LAC service. Max Sessions The maximum number of subscribers connected to this service at any time, which can be any value between 1 and 2500000. This field defaults to 2500000. Max Tunnels The maximum length (in bytes) of the tunnel challenge. NoteThe tunnel challenge is basically used to authenticate tunnels at the time of creation.
27-99 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Max Sessions Per TunnelThe maximum number of sessions that can be handled by a single tunnel at one point of time, which can be any value between 1 and 65535. This field defaults to 512. Max Retransmissions The maximum number of times a control message is retransmitted to a peer, before clearing the tunnel and its sessions. Keep Alive Interval The amount of time after which a keep alive message is sent. Control Receive WindowThe number of control messages the remote peer LNS can send before an acknowledgement is received. Max Tunnel Challenge LengthThe maximum length (in bytes) of the tunnel challenge. First Retransmission TimeoutThe initial timeout before retransmitting a control message. NoteEach tunnel maintains a queue of control messages that must be transmitted to its peer. If an acknowledgement is not received after the specified period, then the control message is retransmitted. Max Retransmission TimeoutThe maximum amount of time between two retransmitted messages. Load Balancing The type of load balancing to select LNS for the LAC service, which can be any one of the following: Balanced Prioritized Random Tunnel Selection Key The selection key to create tunnels between the L2TP service and the LNS server, based on the value of the \u2015Tunnel-Server-Auth-ID\u2016 attribute received from the AAA server. New Call Policy The new call policy for busy-out conditions, which can be any one of the following: None Accept Reject Data Sequence NumbersIndicates whether data sequence numbering for sessions that use the current LAC service is enabled. This option is enabled by default. Tunnel Authentication Indicates whether tunnel authentication is enabled. NoteIf this option is enabled, a configured shared secret is used to ensure that the LAC service is communicating with an authorized peer LNS. The shared secret is configured by the command in the LAC service configuration mode, the command in the subscriber configuration mode, or the Tunnel-Password attribute in the subscribers RADIUS profile. Table 27-65 LAC Configuration Details (continued) Field Description
27-100 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Proxy LCP AuthenticationIndicates whether the option to send proxy LCP authentication parameters to the LNS is enabled. Attribute Hiding Indicates whether certain attributes in control messages sent from the LAC to the LNS is hidden. NoteThe LAC hides these attributes only if the tunnel authentication option is enabled between the LAC and LNS. Framed IP Address SnoopIndicates whether the LAC can detect IPCP packets exchanged between the mobile node and the LNS and extract the framed-I-address assigned to the mobile node. NoteThe address that is extracted is reported in the accounting start/stop messages and will be displayed for each subscriber session. Allow AAA Assigned Host NameIndicates whether the Tunnel-Client-Auth ID assigned by AAA is used as the Host name AVP in the L2TP tunnel setup message. NoteIf the tunnel parameters are not received from the RADIUS server, then the parameters configured in APN are considered for LNS peer selection. When the parameters in APN are considered, the local-hostname configured with the APN command for the LNS peer is used as the LAC Host name. Allow APN in Called NumberIndicates whether the APN name in Called number AVP is sent as part of the Incoming-Call Request (ICRQ) message sent to the LNS. If this keyword is not configured, then the Called number AVP will not be included in the ICRQ message sent to the LNS> Single UDP Port Mode Indicates whether the standard L2TP port 1701 is used as a source port for all L2TP control and data packets that originate from the LAC node. Peer LNS Address Peer LNS Address The IP address of the peer LNS for the current LAC service, which is usually in standard IPv4 dotted decimal notation. Preference The priority of the peer LNS, which can be any number between 1 and 128. This priority is used when multiple peer LNS are configured. Crypto Map The name of crypto map that is configured for the selected context. Description The description of the specified peer LNS. Table 27-65 LAC Configuration Details (continued) Field Description
27-101 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Monitoring the HRPD Serving Gateway (HSGW) The HRPD Serving Gateway (HSGW) is a component in the evolved High Rate Packet Data (eHRPD) mobile network. It is an evolution option for CDMA operators that helps ensure converged mobility and management between HRPD and LTE networks. The HSGW terminates the eHRPD access network interface from the Evolved Access Network (eAN) or Evolved Packet Core Function (ePCF) and routes UE-originated or terminated packet data traffic. It provides interworking with the eAN/ePCF and the PDN Gateway (P-GW) within the Evolved Packet Core (EPC) or LTE/SAE core network. HSGW performs the following functions: Mobility anchoring for inter-eAN handoffs Transport level packet marking in the uplink and the downlink. For example, setting the DiffServ Code Point, based on the QCI of the associated EPS bearer Uplink and downlink charging per UE, PDN, and QCI Downlink bearer binding based on policy information Uplink bearer binding verification with packet dropping of UL traffic that does not comply with established uplink policy MAG functions for S2a mobility (i.e., Network-based mobility based on PMIPv6) Support for IPv4 and IPv6 address assignment EAP Authenticator function Policy enforcement functions defined for the Gxa interface Robust Header Compression (RoHC) Support for VSNCP and VSNP with UE Support for packet-based or HDLC-like framing on auxiliary connections IPv6 SLACC, generating RAs responding to RSs An HSGW also establishes, maintains and terminates link layer sessions to UEs. The HSGW functionality provides interworking of the UE with the 3GPP EPS architecture and protocols. This includes support for mobility, policy control and charging (PCC), access authentication, and roaming. The HSGW also manages inter-HSGW handoffs. The topology of the HSGW network is shown in the following figure:
27-102 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Figure 27-8 HSGW Topology Basic Features of HSGW The basic features supported by HSGW can be categorized as follows: Authentication IP Address Allocation Quality of Service AAA, Policy and Charging The Authentication features supported by HSGW are: EAP over PPP UE and HSGW negotiates EAP as the authentication protocol during LCP HSGW is the EAP authenticator EAP-AKA’ (trusted non-3GPP access procedure) as specified in TS 33.402 EAP is performed between UE and 3GPP AAA over PPP/STa The IP Address Allocation features supported by HSGW are: Support for IPv4 and IPv6 addressing Types of PDNs - IPv4, IPv6 or IPv4v6 IPv6 addressing –Interface Identifier assigned during initial attach and used by UE to generate it’s link local address eNodeBS1-US-GW S1-MMES11 MME MN 320490 PCRF eANePCF MN eHRPD S5/S8Gy S6a S6a A10/A11HSGW S101S103S2aSTa SWx SGi Gxa Gx Rf Rf Gxc3GPP AAA HSS OCS OFCS P-GW Internet Enterprise
27-103 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks –HSGW sends the assigned /64 bit prefix in RA to the UE –Configure the 128-bits IPv6 address using IPv6 SLAAC (RFC 4862) –Optional IPv6 parameter configuration via stateless DHCPv6(Not supported) IPv4 address –IPv4 address allocation during attach –Deferred address allocation using DHCPv4(Not supported) –Option IPv4 parameter configuration via stateless DHCPv4(Not supported) The Quality of Service features supported by HSGW include: HRPD Profile ID to QCI Mapping DSCP Marking UE Initiated Dedicated Bearer Resource Establishment QCI to DSCP Mapping The AAA, Policy and Charging features supported by HSGW include: EAP Authentication (STa) Rf Diameter Accounting AAA Server Groups Dynamic Policy and Charging: Gxa Reference Interface Intelligent Traffic Control Viewing the HSGW Configuration To view the HSGW configuration: Step 1Right-click the required device in the Vision client and choose Inventory. Step 2In the Logical Inventory window, choose Logical Inventory > Context> Mobile > HSGW. The list of HSGW services configured in Prime Network are displayed in the content pane. Step 3From the HSGW node, choose a HSGW service. The HSGW service details are displayed in the content pane as shown in Figure 27-9.
27-104 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Figure 27-9 HSGW Service Details Table 27-66 displays the HSGW service details. Table 27-66 HSGW Service details Field Description Name The name of the HSGW service. Status The status of the service, which can be any one of the following: Started Not Started This field defaults to Not Started. Bind Address The IPv4 address to which the service is bound to. This field defaults to Null if binding is not done. Local IP Port The User Datagram Protocol (UDG) port for the R-P interface of the IP socket. Maximum Subscribers The maximum number of subscriber sessions that the service can support. MAG Service The Mobile Access Gateway (MAG) service associated with the HSGW service. Clicking this link will take you to the relevant MAG service under the MAG node. DNS PGW Context The location of the Domain Name System (DNS) client, which is used to identify the Fully Qualified Domain Name (FQDN) for the peer P-GW. Registration Lifetime The registration lifetime that is configured for all the subscribers. Setup Timeout The maximum amount of time (in seconds) allowed for session setup.
27-105 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks Context Retention TimeoutThe maximum number of time (in seconds) that the UE session context is maintained by the HSGW service before it is torn down. NoteThe UE session context includes the Link Control Protocol (LCP), authentication and the A10 session context for a given UE. Maximum RetransmissionThe maximum number of times the HSGW service will try to communicate with the eAN or PCF before it declares it as unreachable. Network Initiated QoS Indicates whether the Network Initiated QoS feature is supported by the HSGW service. Retransmission TimeoutConfigures the maximum allowable time for the HSGW service to wait for a response from the eAN/PCF before it attempts to communicate with the eAN/PCF again (if the system is configured to retry the PCF), or marks the eAN/PCF as unreachable. QOS Update Policy MismatchSets QOS update parameters for policy mismatches or wait timeouts. Unknown CVSE Policy Configures unknown; CVSE Policy value PCF Monitor Config Enables the monitoring of all the PCFs that have sessions associated with it. Reg Discard on Bad ExtensionConfigures Discard on Bad Extension option Reg Ack Deny Terminate SessionConfigures Acknowledgement Deny Terminate Session option Access Flow Traffic ValidationIf access-flow traffic-validation is enabled for the service and the subscriber, then the flows are checked against the filter rules. If the packets does not match the filter rules, and N violations occur in K seconds, the rp connection is downgraded to best-effort flow, if it is already not a best-effort flow. QOS Update Wait TimeoutSets QOS update parameters for policy mismatches or wait timeouts. UE Initiated QOS Configures the HSGW behavior for UE initiated QOS requests. Context Retention TimerConfigures the maximum number of consecutive seconds that a UE session context (which includes the LCP, authentication and A10 session context for a given UE) is maintained by the HSGW before it is torn down. Reg Update Wait TimeoutConfigures Update Wait Timeout option Reg Discard on GRE Key ChangeConfigures Discard on GRE key change option Unauthorized Flow QoS TimeoutThe amount of time (in seconds) the service must wait before a QoS update is triggered to downgrade an unauthorized flow. SPI tab SPI Number The unique Security Parameter Index (SPI) number, which indicates a security context between the services. Remote Address The IP address of the source service, which can be an IPv4 dotted decimal notation or IPv6 colon separated notation. Table 27-66 HSGW Service details (continued) Field Description
27-106 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 27 Managing Mobile Networks LTE Networks You can also view the following configuration details for a HSGW service: A10/A11 Properties—The A10/A11 interface (also known as R-P interface for RAN-to-PDSN) supports the A10 protocol for user data transport between the PCF and PDSN, and the A11 protocol for the associated signaling. A11 signaling messages are also used for passing accounting related and other information from the PCF to the PDSN. The A10/A11 interfaces support mobility between PCFs under the same PDSN. See Viewing the A10/A11 Configuration Details, page 27-107. GRE Parameters—Generic Routing Encapsulation (GRE) is a tunneling protocol developed by Cisco Systems that can encapsulate a wide variety of network layer protocols inside virtual point-to-point links over an Internet Protocol internetwork. See Viewing the GRE Parameters, page 27-108. IP Source Violation—IP source violations occur when the PDSN receives packets from a subscriber where the source address is not the same as the address given to the subscriber, and hence get discarded. See Viewing the IP Source Violation Details, page 27-110. Viewing the ROHC Properties Details To view the ROHC Properties details for a HSGW service: Step 1Right-click the required device in the Vision client and choose Inventory. Step 2In the Logical Inventory window, choose Logical Inventory > Context > Mobile > HSGW > ROHC Properties. The details are displayed in the content pane. Table 27-68 displays the ROHC properties details. Zone ID The PCF zone id that must be configured for the HSGW service. Netmask The subnet mask of the service. Hash Algorithm The hash algorithm used between the source and destination services. Time Stamp Tolerance The difference (tolerance) in timestamps that is acceptable. If the actual difference in the timestamps exceeds this difference, then the session is rejected. Replay Protection The replay-protection scheme that must be implemented by the service. Description The description of the SPI. PLMN tab PLMN ID The unique id of the Public Land Mobile Network (PLMN), which is used to determine if a mobile station is visiting, roaming, or belongs to the network. Primary Indicates whether the PLMN Id must be used as the default and primary ID. Overload Policies tab IP Address The IP address of an alternate PDSN, which is in the IPv4 dotted decimal notation. Weight The weightage of the IP address, which determines the order in which the IP address is used in case of multiple IP addresses. Table 27-66 HSGW Service details (continued) Field Description