-
Cisco IOS CMTS Cable Software Configuration Guide, Release 12.2SC
- Part 1: Cisco CMTS Router Basics
- Part 2: Advanced Mode DOCSIS Set-Top Gateway
-
Part 3: Cable Interface: Downstream and Upstream Features
-
Configuring Downstream Cable Interface Features on the Cisco CMTS Routers
-
Configuring Upstream Cable Interface Features on the Cisco CMTS Routers
-
CM Steering on the Cisco CMTS Routers
-
DOCSIS 2.0 A-TDMA Modulation Profiles for the Cisco CMTS Routers
-
DOCSIS 3.0 Downstream Bonding for Bronze Certification
-
Dynamic Bandwidth Sharing on the Cisco CMTS Router
-
IGMP-Triggered VDOC Broadcast Support on the Cisco CMTS Routers
-
Load Balancing and Dynamic Channel Change on the Cisco CMTS Routers
-
RSVP-Based Video on Demand Support Over DOCSIS
-
M-CMTS DEPI Control Plane
-
S-CDMA and Logical Channel Support on the Cisco CMTS Routers
-
Spectrum Management and Advanced Spectrum Management for the Cisco CMTS Routers
-
Support for Extended Frequency Ranges
-
Upstream Scheduler Mode for the Cisco CMTS Routers
-
Wideband Modem Resiliency
-
- Part 4: Cable Interface: Security Features
- Part 5: Cable Monitoring Features
- Part 6: Cisco CMTS Router Services
- Part 7: High Availability Features
-
Part 8: Layer 2 and VPN Features
-
Cisco uBR7200 Series MPLS VPN Cable Enhancements
-
EtherChannel on the Cisco CMTS Routers
-
Generic Routing Encapsulation on the Cisco CMTS Routers
-
L2VPN Support Over Cable
-
MPLS Pseudowire for Cable L2VPN
-
Point-to-Point Protocol over Ethernet Support on the Cisco CMTS Routers
-
Service Flow Mapping to MPLS-VPN on the Cisco CMTS Routers
-
Transparent LAN Service over Cable
-
- Part 9: Layer 3 and Interface Bundle Features
- Part 10: PacketCable and PacketCable Multimedia Features
- Part 11: QoS Features
-
Part 12: Traffic Management and Other Management Features
-
Control Point Discovery for the Cisco CMTS Routers
-
IPDR Streaming Protocol on the Cisco CMTS Routers
-
Managing Cable Modems on the Hybrid Fiber-Coaxial Network
-
Maximum CPE or Host Parameters for the Cisco CMTS Routers
-
PXF Divert Rate Limit Enhancement on the Cisco CMTS Routers
-
Subscriber Management Packet Filtering for DOCSIS 2.0
-
Subscriber Traffic Management for the Cisco CMTS Routers
-
Usage Based Billing for the Cisco CMTS Routers
-
-
Part 13: Troubleshooting on the Cisco CMTS Routers
-
Cable IPC Statistics Collection Tool
-
Cisco CMTS Static CPE Override
-
Flap List Troubleshooting for the Cisco CMTS Routers
-
GOLD Health Monitoring for the Cisco UBR10012 Universal Broadband Router
-
Resolving Common Image Installation Problems
-
SEA Health Monitoring for the Cisco UBR10012 Routers
-
Troubleshooting the System
-
- Part 14: Appendix A
- Part 15: Appendix B
-
Glossary
Table Of Contents
Subscriber Management Packet Filtering Extension for DOCSIS 2.0
Prerequisites for Configuring Subscriber Management Packet Filtering
Restriction for Configuring Subscriber Management Packet Filtering
Information About Configuring Subscriber Management Packet Filtering
How to Configure Subscriber Management Packet Filtering
Defining the Upstream and Downstream MTA Filter Group
Defining the Upstream and Downstream STB Filter Group
Defining the Upstream and Downstream PS Filter Group
Configuration Examples for Subscriber Management Packet Filtering
Configuring the Filter Group: Example
Defining the Upstream and Downstream MTA Filter Group: Example
Defining the Upstream and Downstream STB Filter Group: Example
Defining the Upstream and Downstream PS Filter Group: Example
Feature Information for Subscriber Management Packet Filtering
Subscriber Management Packet Filtering Extension for DOCSIS 2.0
First Published: December 17, 2008Last Updated: November 16, 2009The Cisco universal broadband router supports management of data packet filtering based on the subscriber's preferences and criteria. Packet filtering enhances security to the cable network by allowing only the specific packets to flow to the Customer Premise Equipment (CPE) while dropping the unwanted data packets from the cable network.
Finding Feature Information
Your software release may not support all the features documented in this module. For the latest feature information and caveats, see the release notes for your platform and software release.
Use Cisco Feature Navigator to find information about platform support and Cisco IOS, Catalyst OS, and Cisco IOS XE software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Contents
•
Prerequisites for Configuring Subscriber Management Packet Filtering
•
•
•
•
•
Prerequisites for Configuring Subscriber Management Packet Filtering
Table 1shows the hardware compatibility prerequisites for the subscriber management packet filtering feature.
The software prerequisites for the subscriber management packet filtering feature are:
•
•
Restriction for Configuring Subscriber Management Packet Filtering
•
Information About Configuring Subscriber Management Packet Filtering
A filter group specifies what filters are applied to the packets going to or coming from each specific CM or CPE device. It defines the rules or criteria to filter or drop a packet. Every packet that has to be filtered can either be accepted to send or filtered to be dropped. The criteria to filter a packet depends on the subscriber's preferences. The filter group can be applied to different subscriber management groups.
Cable subscriber management can be established using the following configuration methods:
•
•
The process of configuring the subscriber management packet filtering is:
1.
2.
3.
4.
Note
How to Configure Subscriber Management Packet Filtering
This section describes the configuration tasks that are performed to manage subscriber packet filtering on the Cisco CMTS platforms. You can use the command-line interface (CLI) commands to complete the configuration.
See the following sections for the configuration tasks.
1.
2.
3.
4.
Configuring the Filter Group
This section describes the tasks to configure the packet filter group. Follow the summary steps to complete the configuration.
To create, configure, and activate a DOCSIS filter group that filters packets on the basis of the TCP/IP and UDP/IP headers, use the cable filter group command in global configuration mode.
SUMMARY STEPS
1.
2.
3.
DETAILED STEPS
Defining the Upstream and Downstream MTA Filter Group
This section describes the configuration tasks to define the upstream and downstream subscriber management filter groups for an embedded Multimedia Terminal Adaptor (eMTA.) Follow the summary steps to complete the configuration.
SUMMARY STEPS
1.
2.
3.
DETAILED STEPS
Defining the Upstream and Downstream STB Filter Group
This section describes the configuration tasks to define the upstream and downstream subscriber management filter groups for a Set-Top Box (STB.) Follow the summary steps to complete the configuration.
SUMMARY STEPS
1.
2.
3.
DETAILED STEPS
Defining the Upstream and Downstream PS Filter Group
This section describes the configuration tasks to define the upstream and downstream subscriber management filter groups for a Portal Server (PS.) Follow the summary steps to complete the configuration.
SUMMARY STEPS
1.
2.
3.
DETAILED STEPS
Configuration Examples for Subscriber Management Packet Filtering
This section describes a sample configuration example for configuring the subscriber management packet filtering.
•
•
•
•
Configuring the Filter Group: Example
The following example shows configuration of a filter group that drops packets with a source IP address of 10.7.7.7 and a destination IP address of 10.8.8.8, and a source port number of 2000 and a destination port number of 3000. All protocol types and ToS and TCP flag values are matched:
Router(config)# cable filter group 10 index 10 src-ip 10.7.7.7Router(config)# cable filter group 10 index 10 src-mask 255.255.0.0Router(config)# cable filter group 10 index 10 dest-ip 10.8.8.8Router(config)# cable filter group 10 index 10 dest-mask 255.255.0.0Router(config)# cable filter group 10 index 10 ip-proto 256Router(config)# cable filter group 10 index 10 src-port 2000Router(config)# cable filter group 10 index 10 dest-port 3000Router(config)# cable filter group 10 index 10 tcp-flags 0 0Router(config)# cable filter group 10 index 10 match-action dropDefining the Upstream and Downstream MTA Filter Group: Example
The following example shows configuration of an upstream and downstream MTA filter group.
Router#configure terminalRouter(config)#cable submgmt default filter-group mta downstream 10Defining the Upstream and Downstream STB Filter Group: Example
The following example shows configuration of an upstream and downstream STB filter group.
Router#configure terminalRouter(config)#cable submgmt default filter-group stb downstream 20Defining the Upstream and Downstream PS Filter Group: Example
The following example shows configuration of an upstream and downstream portal server filter group.
Router#configure terminalRouter(config)#cable submgmt default filter-group ps downstream 10Additional References
The following sections provide references related to configuring the subscriber management packet filtering feature.
Related Documents
CMTS Command Reference
Cisco IOS CMTS Cable Command Reference, at the following URL:
http://www.cisco.com/en/US/docs/ios/cable/command/reference/cbl_book.htmlCisco uBR10012 Universal Broadband Router Documentation
Cisco uBR10012 Universal Broadband Router Hardware Installation Guide, at the following URL:
http://www.cisco.com/en/US/docs/cable/cmts/ubr10012/installation/guide/hig.htmlCisco uBR10012 Universal Broadband Router Software Configuration Guide, at the following URL:
http://www.cisco.com/en/US/docs/cable/cmts/ubr10012/configuration/guide/scg.htmlCisco uBR10012 Universal Broadband Router Release Notes
http://www.cisco.com/en/US/products/hw/cable/ps2209/prod_release_notes_list.html
Standards
MIBs
None
To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
RFCs
Technical Assistance
Command Reference
For information about commands, see the Cisco IOS CMTS Command Reference at http://www.cisco.com/en/US/docs/ios/cable/command/reference/cbl_book.html. For information about all Cisco IOS commands, use the Command Lookup Tool at http://tools.cisco.com/Support/CLILookup or the Cisco IOS Master Command List, All Releases, at http://www.cisco.com/en/US/docs/ios/mcl/allreleasemcl/all_book.html.
Feature Information for Subscriber Management Packet Filtering
Table 2 lists the features in this module and provides links to specific configuration information. Only features that were introduced or modified in Cisco IOS Release 12.2(33)SCB or a later release appear in the table.
Not all commands may be available in your Cisco IOS software release. For release information about a specific command, see the command reference documentation.
Use Cisco Feature Navigator to find information about platform support and software image support. Cisco Feature Navigator enables you to determine which Cisco IOS, Catalyst OS, and Cisco IOS XE software images support a specific software release, feature set, or platform. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Note
CCDE, CCENT, CCSI, Cisco Eos, Cisco HealthPresence, Cisco IronPort, the Cisco logo, Cisco Nurse Connect, Cisco Pulse, Cisco SensorBase, Cisco StackPower, Cisco StadiumVision, Cisco TelePresence, Cisco Unified Computing System, Cisco WebEx, DCE, Flip Channels, Flip for Good, Flip Mino, Flipshare (Design), Flip Ultra, Flip Video, Flip Video (Design), Instant Broadband, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn, Cisco Capital, Cisco Capital (Design), Cisco:Financed (Stylized), Cisco Store, Flip Gift Card, and One Million Acts of Green are service marks; and Access Registrar, Aironet, AllTouch, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Lumin, Cisco Nexus, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, Continuum, EtherFast, EtherSwitch, Event Center, Explorer, Follow Me Browsing, GainMaker, iLYNX, IOS, iPhone, IronPort, the IronPort logo, Laser Link, LightStream, Linksys, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, PCNow, PIX, PowerKEY, PowerPanels, PowerTV, PowerTV (Design), PowerVu, Prisma, ProConnect, ROSA, SenderBase, SMARTnet, Spectrum Expert, StackWise, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0910R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
© 2009 Cisco Systems, Inc. All rights reserved.
