Table Of Contents

SBC Commands on Cisco IOS XR Software

account

action (CAC)

action (NA-DST)

action (RTG-SRC)

activate

active-cac-policy-set

active-call-policy-set

address ipv4

adjacency

adjacency timeout

alias

allow private info

attach

attach-controllers

authentication endpoint

authentication-key

authentication mode

authentication nonce timeout

authentication-realm

billing

blacklist (DoS)

blacklist (sip)

blacklist address-default

blacklist default-port-limit

cache

cac-table

callee-dscp

callee-fax-qos-profile

callee-ip-precedence

callee-ip-TOS

callee-privacy

callee-sig-qos-profile

callee-video-qos-profile

callee-voice-qos-profile

caller-dscp

caller-fax-qos-profile

caller-ip-precedence

caller-ip-TOS

caller-privacy

caller-sig-qos-profile

caller-video-qos-profile

caller-voice-qos-profile

call-policy-set

category (NA-DST)

category (NA-SRC)

clear blacklist

clear services

clear services sbc sbe policy-failure-stats dst-account

clear services sbc sbe policy-failure-stats dst-adjacency

clear services sbc sbe policy-failure-stats src-account

clear services sbc sbe policy-failure-stats src-adjacency

codec

codec-list

codec-list description

codec packetization-period

codecs

complete

congestion-cleared

congestion-threshold

control address aaa

control address h248 (SBE)

control-address h248 ipv4 (DBE)

controller h248

critical-alarm-threshold

dbe-location-id

deact-mode

description

disabled

dst-adjacency

dscp

dtmf-duration

dtmf-relay

early-media-deny

early-media-direction

early-media-timeout

edit-cic

edit

entry

fast-register disable

fast-register-interval

first-cac-scope

first-cac-table

first-call-routing-table

first-number-analysis-table

first-reg-routing-table

force-limited-call-hold

group

h225 timeout

h245-tunnel disable

h248 allow-all-mg

h248-association-timeout

h248-max-term-per-context

h248-media-alert-event

h248-napt-package

h248-preserve-gates

h248-profile

h248-profile-version

h248-tmax

h248-version

header

header-profile (adj-sip)

header-profile (sip)

hold-media-timeout

hunting-trigger

hw-module service sbc location

invite-timeout

ip precedence

ip TOS

ipv4 address

ipv4

key

ldr-check

local-address

local-id host

local-port

location-id

major-alarm-threshold

marking

match-account

match-address

match-adjacency

match-cic

match-domain

match-number

match-prefix

match-type

match-value

max-bandwidth

max-call-rate

max-channels

max-num-calls

max-pdu-size

max-regs

max-regs-rate

max-updates

media-address

media-address port range

media-bypass

media-bypass-forbid

media-gateway

media-timeout

method

method-profile (adj-sip)

method-profile (sip)

minor-alarm-threshold

mode

na-dst-prefix-table

na-src-account-table

nat

network-id

overload-time-threshold

package

pass-body

passthrough

pause

port

port-range

prefix

priority

privacy restrict outbound

qos fax

qos sig

qos video

qos voice

radius

ras retry

ras rrq

ras timeout

reason

redirect-limit

redirect-mode

registration rewrite-register

registration target address

registration target port

remote-address ipv4

resend

resource-priority

resource-priority-set

rtg-carrier-id-table

rtg-dst-address-table

rtg-dst-domain-table

rtg-round-robin-table

rtg-src-account-table

rtg-src-address-table

rtg-src-adjacency-table

rtg-src-domain-table

rtp payload-type nte

secure-media

security

server

service-location preferred-active

show services redundancy

show services sbc dbe addresses

show services sbc dbe controllers

show services sbc dbe h248-profile

show services sbc dbe media-flow-stats

show services sbc dbe media-stats

show services sbc dbe signaling-flow-stats

show services sbc sbe adjacencies

show services sbc sbe adjacency all-authentication-realms

show services sbc sbe adjacency authentication-realms

show services sbc sbe billing

show services sbc sbe blacklist

show services sbc sbe blacklist configured-limits

show services sbc sbe blacklist current-blacklisting

show services sbc sbe cac-policy-set

show services sbc sbe call-policy-set

show services sbc sbe call-policy-sets

show services sbc sbe call-policy-set table entries

show services sbc sbe calls

show services sbc sbe call-stats

show services sbc sbe codec-list

show services sbc sbe gates

show services sbc sbe h323 timers

show services sbc sbe hold-media-timeout

show services sbc sbe hunting-trigger

show services sbc sbe media-gateway-associations

show services sbc sbe media-gateways

show services sbc sbe policy-failure-stats

show services sbc sbe policy-failure-stats dst-account

show services sbc sbe policy-failure-stats dst-adjacency

show services sbc sbe policy-failure-stats src-account

show services sbc sbe policy-failure-stats src-adjacency

show services sbc sbe qos-profiles

show services sbc sbe radius-client-stats

show services sbc sbe radius-server-stats

show services sbc sbe redirect-limit

show services sbc sbe sip essential-headers

show services sbc sbe sip essential-methods

show services sbc sbe sip header-profile

show services sbc sbe sip header-profiles

show services sbc sbe sip method-profile

show services sbc sbe sip method-profiles

show services sbc sbe sip timers

show services sbc sbe vrf

signaling-address ipv4

signaling-peer

signaling-peer-port

signaling-port

sip encryption key

sip home network identifier

sipi

sip inherit profile

sip timer

sip visited network identifier

tcp-connect-timeout

tcp-idle-timeout

tech-prefix

timeout

tls-idle-timeout

transcode-deny

transcoder

transport (h.248)

transport (vdbe)

trigger-period

trigger-size

udp-first-retransmit-interval

udp-max-retransmit-interval

udp-response-linger-period

unexpected-source-alerting

use-any-local-port

vdbe

vrf (interface)

vrf

vrf vpn-id

SBC Commands on Cisco IOS XR Software

---

This section describes session border controller (SBC) commands on Cisco IOS XR software.

---

Note The commands documented in this section use complex modes and submodes. Accordingly, you must be in the correct configuration mode and submode to run each command. The "Examples" section provided for each command shows the hierarchy of modes and submodes required to run the command.

---

account

To define a SIP or H.323 adjacency account on an SBE, use the account command in the appropriate configuration mode. To remove this definition, use the no form of this command.

account account-name

no account account-name

Syntax Description

account-name

Specifies the SBE account name.

Defaults

No account name is associated with the adjacency

Command Modes

Adjacency SIP configuration

Adjacency H.323 configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the H.323 adjacency h323ToIsp42 to account isp42:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 SipToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# account isp42

The following example shows how to configure the SIP adjacency SipToIsp42 to account isp42:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency sip SipToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-sip)# account isp42

action (CAC)

To configure the action to perform after the entry in an admission control table, use the action (CAC) command in CAC configuration mode. To delete the action, use the no form of this command.

action [cac-complete | next-table goto-table-name | cac-complete]

Syntax Description

cac-complete	When an event matches this CAC policy is complete.
goto-table-name	Specifies the table name identifying the next CAC table to process (or cac-complete, if processing should stop).

Defaults

None

Command Modes

CAC configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the action to perform after the entry in the new admission control table MyCacTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cac-table)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cac-table)# action cac-complete

Related Commands

Command	Description
action (RTG-SRC)	Configures the action to take if a routing entry is chosen.
action (NA-DST)	Configures the action to perform after an entry in an admission control table.

action (NA-DST)

To configure the action of an entry in the number analysis table with entries of the table matching a dialed number (prefix or whole number) or the source adjacency or account, use the action (NA-DST) command in the appropriate configuration mode. To delete the action, use the no form of this command.

action [next-table goto-table-name | accept | reject]

no action

Syntax Description

next-table goto-table-name	Specifies the next number analysis table to process, if the event matches this entry.
accept	Configures the call to be accepted if it matches the entry in the table.
reject	Configures the call to be rejected if it matches the entry in the table.

Defaults

None

Command Modes

NA-DST-number-table configuration mode

NA-DST-prefix-table configuration mode

NA-SRC-adjacency-table configuration mode

NA-SRC-account-table configuration mode

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the call to be accepted if it matches the entry in the new number analysis table MyNaTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-dst-number-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# action accept

The following example shows how to configure the call to be accepted if it matches the start of the entry in the new number analysis table MyNaTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-dst-prefix-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# action accept

The following example shows how to configure the call to be accepted if it matches the source adjacency entry in the new number analysis table MyNaTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-src-adjacency-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# action accept

The following example shows how to configure the call to be accepted if it matches the source account entry in the new number analysis table MyNaTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-src-account-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# action accept

Related Commands

Command	Description
action (RTG-SRC)	Configures the action to take if a routing entry is chosen.
action (CAC)	Configures the action to perform after an entry in an admission control table.

action (RTG-SRC)

To configure the action to take if a routing entry is chosen, use the action (RTG-SRC) command in the appropriate configuration mode. To delete the action, use the no form of this command.

action [next-table goto-table-name | complete | reject]

no action

Syntax Description

next-table goto-table-name	Specifies the next routing table to process if the event matches the entry.
complete	Completes the action. This keyword is supported for rtg-round-robin-table routing tables only.
reject	Rejects the indicated action.

Defaults

None

Command Modes

RTG-SRC-address-table configuration

RTG-SRC-adjacency-table configuration

RTG-SRC-account-table configuration

RTG-round-robin-table configuration

RTG-DST-address-table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the match-value of an entry in the new routing table MyRtgTable and if any calls match this criterion, they are rejected.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# rtg-src-address-table MyRtgTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# match-address 1471

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# action reject

The following example shows how to configure the match-value of an entry in the new routing table MyRtgTable and if any calls match this criterion, they are rejected.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# rtg-src-adjacency-table MyRtgTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# match-adjacency 1471

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# action reject

The following example shows how to configure the match-value of an entry in the new routing table MyRtgTable and if any calls match this criterion, they are rejected.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# rtg-src-account-table MyRtgTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# match-account 1471

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# action reject

The following example shows how to configure the match-value of an entry in the new routing table MyRtgTable and if any calls match this criterion, they are rejected.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# rtg-round-robin-table MyRtgTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# match-address 1471

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# action reject

The following example configures the match-value of an entry in the new routing table MyRtgTable and if any calls match this criterion, they are rejected.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# rtg-dst-address-table MyRtgTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# match-address 1471

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-rtgtable-entry)# action complete

Related Commands

Command	Description
action (NA-DST)	Configures the action of an entry in the number analysis table with entries of the table matching a dialed number (prefix or whole number) or the source adjacency or account.
action (CAC)	Configures the action to perform after an entry in an admission control table.

activate

To initiate the SBC service when all SBE or DBE address configuration have been successfully committed, use the activate command in the appropriate configuration mode. To deactivate the SBE service of the SBC, use the no form of this command.

activate

no activate

Syntax Description

This command has no arguments or keywords.

Defaults

None

Command Modes

DBE configuration

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to activate the DBE on the service mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc dbe 

RP/0/0/CPU0:router (config-sbc-dbe)# activate

The following example shows how to activate the SBE on the service mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe 

RP/0/0/CPU0:router (config-sbc-sbe)# activate

Related Commands

Command	Description
deact-mode	Indicates how to implement the deactivation of an SBE.

active-cac-policy-set

To set the active CAC-policy-set within an SBE entity, use the active-cac-policy-set command in SBE configuration mode. To deconfigure the active policy set, leaving the SBE with no active policy set, use the no form of this command.

active-cac-policy-set policy-set-id

no active-cac-policy-set policy-set-id

Syntax Description

policy-set-id

Integer identifying the policy set that should be made active. Range is 1 to 2147483647.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to activate policy set 1 on mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe 

RP/0/0/CPU0:router (config-sbc-sbe)# active-cac-policy-set 1

active-call-policy-set

To set the active routing policy set within an SBE entity, use the active-call-policy-set command in SBE configuration mode. To deconfigure the active routing policy set, leaving the SBE with no active routing policy set, use the no form of this command.

active-call-policy-set policy-set-id

no active-call-policy-set

Syntax Description

policy-set-id

Integer that identifies the policy set that should be made active. Range is 1 to 2147483647.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

If another policy set was previously active, it is made inactive by executing this command. The SBE is created with no active routing policy set; an active routing policy set must be explicitly configured using this command.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to activate policy set 1 on mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe 

RP/0/0/CPU0:router(config-sbc-sbe)# active-call-policy-set 1

address ipv4

To configure the address of the authentication server, use the address ipv4 command in server configuration mode. To remove the address configuration for the authentication server, use the no form of this command.

address ipv4 server-name

no address ipv4 server-name

Syntax Description

server-name

Specifies the DNS name or IP address of the authentication server.

Defaults

None

Command Modes

Server configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure authentication servers acctsvr and acctsvr2 on mySbc for the authentication RADIUS client:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# radius authentication

RP/0/0/CPU0:router(config-sbc-sbe-auth)# server acctsvr

RP/0/0/CPU0:router(config-sbc-sbe-auth-ser)# address ipv4 10.0.0.1

RP/0/0/CPU0:router(config-sbc-sbe-auth-ser)# exit

RP/0/0/CPU0:router(config-sbc-sbe-auth)# server acctsvr2

RP/0/0/CPU0:router(config-sbc-sbe-auth-ser)# address acctsvr2

adjacency

To configure an adjacency for an SBC service, use the adjacency command in SBE mode. To deconfigure the adjacency, use the no form of this command.

adjacency {sip | h323} adjacency name

no adjacency {sip | h323} adjacency name

Syntax Description

sip	Enters the mode of an SBE SIP adjacency.
h323	Enters the mode of an SBE H.323 adjacency.
adjacency name	Specifies the name of the SBE SIP or H.323 adjacency.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section below shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the adjacency command configures a SIP adjacency named sipGW.

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency sip sipGW

The following example shows how the adjacency command configures an H.323 adjacency named 
H323ToIsp42.

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 H323ToIsp42

adjacency timeout

To configure the adjacency retry timeout interval, use the adjacency timeout command in the appropriate configuration mode. To return to the default value, use the no form of this command.

adjacency timeout value

no adjacency timeout value

Syntax Description

value

Specifies the timeout period in milliseconds. Valid values are from 10000 to 30000. The default value is 30 seconds.

Defaults

None

Command Modes

Adjacency H.323 configuration

H.323 configuration

Command History

Release	Modification
Release 3.5.0	This command was introduced on the Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the adjacency timeout command configures adjacency retry timeout in Adjacency H.323 configuration mode.

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# adjacency timeout 10000

The following example shows how the adjacency timeout command configures adjacency retry timeout in H.323 configuration mode.

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# h323

RP/0/0/CPU0:router(config-sbc-sbe-h323)# adjacency timeout 10000

alias

To configure the endpoint alias of an H.323 adjacency, use the alias command in adjacency H.323 configuration mode. To remove this configuration, use the no form of this command.

alias alias-name

no alias

Syntax Description

alias-name

Specifies the alias of the H.323 adjacency endpoint.

Defaults

None

Command Modes

Adjacency H.323 configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the H.323 adjacency h323ToIsp42 endpoint alias to end1:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# alias end1

Related Commands

Command	Description
attach-controllers	Configures a DBE to attach to a controller.

allow private info

To configure an H.323 adjacency to allow private information on messages sent out by the adjacency, use the allow private info command in the H.323 adjacency mode. To disallow private information on messages sent out by the adjacency, use the no form of this command.

allow private info

no allow private info

Syntax Description

This command has no arguments or keywords.

Defaults

None

Command Modes

Adjacency H.323 configuration

Command History

Release	Modification
Release 3.5.1	This command was introduced on the Cisco CRS-1 and Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command. Please note that if you configure the H.323 adjacency to allow private information, then it will allow private information on messages even if the CAC policy is configured to apply privacy service or the user requests privacy service.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the allow private info command is used to configure an H.323 adjacency to allow private information on messages sent by the adjacency.

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323ToIsp422

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# allow private info

Related Commands

Command	Description
privacy restrict outbound	Configures an H.323 adjacency to apply privacy restriction on outbound messages if the user requests it.

attach

To attach an adjacency to an account on an SBE, use the attach command in the appropriate configuration mode. To detach the adjacency from an account on an SBE, use the no form of this command.

attach

no attach force

Syntax Description

force

Executes a forced detach.

Defaults

None

Command Modes

Adjacency H.323 configuration

Adjacency SIP configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Use the force argument to tear all SBE calls down.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to attach the H.323 adjacency to h323ToIsp42:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# attach

attach-controllers

To configure a DBE to attach to a controller, use the attach-controllers command in vDBE configuration mode. To detach from a controller, use the no form of this command.

attach-controllers

no attach-controllers force

Syntax Description

force

Executes a forced detach. In such cases, all calls through this vDBE are immediately torn down.

Defaults

None

Command Modes

vDBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure a DBE to attach to a controller:

RP/0/0/CPU0:router(config)# sbc mySbc dbe vdbe

RP/0/0/CPU0:router(config-sbc-dbe-vdbe)# attach-controllers

authentication endpoint

To configure the H.323 adjacency to use endpoint authentication, use the authentication endpoint command in Adjacency H.323 configuration mode. To remove this configuration, use the no form of this command.

authentication endpoint

no authentication endpoint

Syntax Description

This command has no arguments or keywords.

Defaults

By default, no authentication procedures are performed.

Command Modes

Adjacency H.323 configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the H.323 adjacency h323ToIsp42 to use endpoint authentication:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# authentication endpoint

Related Commands

Command	Description
authentication-key	Configures the H.323 adjacency authentication key.

authentication-key

To configure the H.323 adjacency authentication key, use the authentication-key command in Adjacency H.323 configuration mode. To deconfigure the H.323 adjacency authentication key, use the no form of this command.

authentication-key key

no authentication-key

Syntax Description

key	Specifies the authentication key. (This is valid only when authentication is turned on.)

Defaults

None

Command Modes

Adjacency H.323 configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure H.323 adjacency h323ToIsp42 to use authentication key FG56KJ:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# authentication-key FG56KJ

Related Commands

Command	Description
authentication endpoint	Configures an H.323 adjacency to use endpoint authentication.

authentication mode

To configure the authentication mode for a SIP adjacency, use the authentication mode command in the SIP adjacency mode. To deconfigure the authentication mode, use the no form of this command.

authentication mode {local | remote}

no authentication mode {local | remote}

Syntax Description

local	Configures the Sip adjacency for local authentication.
remote	Configures the SIP adjacency for remote authentication.

Defaults

None

Command Modes

Adjacency SIP configuration

Command History

Release	Modification
Release 3.5.1	This command was introduced on the Cisco CRS-1 and Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the authentication mode command is used to configure the SIP adjacency for local authentication:

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency sip SipToIsp42

RP/0/0/CPU0:router(config-sbe-adj-sip)# authentication mode local

Related Commands

Command	Description
authentication nonce timeout	Configures the authentication nonce timeout for a SIP adjacency.

authentication nonce timeout

To configure the authentication nonce timeout for a SIP adjacency, use the authentication nonce timeout command in the SIP adjacency mode. To deconfigure the authentication nonce timeout, use the no form of this command.

authentication nonce timeout value

no authentication nonce timeout

Syntax Description

value

Specifies the timeout value in seconds. The range of values is 0 to 65535 seconds.

Defaults

The default timeout value is 300 seconds.

Command Modes

Adjacency SIP configuration

Command History

Release	Modification
Release 3.5.1	This command was introduced on the Cisco CRS-1 and Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the authentication nonce timeout command is used to configure the authentication nonce timeout in seconds for a SIP adjacency:

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency sip SipToIsp42

RP/0/0/CPU0:router(config-sbe-adj-sip)# authentication nonce timeout 10

Related Commands

Command	Description
authentication mode	Configures the authentication mode for a SIP adjacency.

authentication-realm

To configure a set of authentication credentials for a specified domain on the specified SIP adjacency, use the authentication-realm command in SIP adjacency configuration mode. To deconfigure the authentication realm on the specified adjacency, use the no form of this command.

authentication-realm {inbound domain | outbound domain username password}

no authentication-realm {inbound domain | outbound domain}

Syntax Description

inbound	Specifies inbound authentication-realm.
outbound	Specifies outbound authentication-realm.
domain	Name of the domain for which the authentication credentials are valid.
username	Username that identifies the SBC in the specified domain.
password	Password to authenticate the username in the specified domain.

Defaults

None

Command Modes

SIP adjacency configuration

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the authentication-realm command configures an authentication realm for the domain example.com on SIP adjacency SipToIsp42:

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency sip SiptoISP42

RP/0/0/CPU0:router(config-sbc-sbe-adj-sip)# authentication-realm outbound example.com 
usersbc passwordsbc

billing

To configure local and remote billing policies, use the billing command in SBE configuration mode. To reset all parameters to their default values, use the no form of this command.

billing {local | remote}

no billing {local | remote}

Syntax Description

local	Configures local billing policies.
remote	Configures remote billing policies.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to enter the local billing mode for mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# billing local

RP/0/0/CPU0:router(config-sbc-sbe-lclbill)#

Related Commands

Command	Description
blacklist address-default	Configures the name of the local or remote directory where to store the billing information.
critical-alarm-threshold	Configures the threshold at which a critical alarm is generated if the CDR file reaches that size.
ldr-check	Configures the time of day to run the long duration check.
local-address	Configures the local IPv4 address.
major-alarm-threshold	Configures the threshold at which a major alarm is generated if the CDR file reaches that size.
minor-alarm-threshold	Configures the threshold at which a minor alarm is generated if the CDR file reaches that size.

blacklist (DoS)

To enter the mode for configuring the event limits of a given source, use the blacklist command in the SBE mode. To return the event limits to the default values, use the no form of this command.

blacklist source

no blacklist source

Syntax Description

source

Specifies the VPN ID, an IP address, or port of a given address. The following values are valid: •global—for all global addresses •VRF name—for all addresses within a given VPN •{ipv4 IP address}—for a global IP address •{VRF name ipv4 IP address}—for a specific VPN IP address •{ipv4 IP address {UDP | TCP} port number}—for a global port •{VRF name ipv4 IP address {UDP | TCP} port number} for a VPN port

Defaults

This field must be configured in one of the forms specified above.

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.5.0	This command was introduced on the Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the blacklist command is used to enter the mode for configuring the event limits for the IP address 25.25.25.5:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# blacklist ipv4 25.25.25.5

Related Commands

Command	Description
reason	Enters a submode for configuring a limit to a specific event type on the source.
timeout	Defines the length of time that packets from the source are blocked, should the limit be exceeded.
trigger-period	Defines the period over which events are considered.
trigger-size	Defines the number of the specified events from the specified source that are allowed before the blacklisting is triggered, and blocks all packets from the source.
show services sbc sbe blacklist current-blacklisting	Lists the limits causing sources to be blacklisted.

blacklist (sip)

To configure SIP header or method blacklist profiles on a Session Initiation Protocol (SIP) message, use the blacklist command in the appropriate configuration mode. To configure the profile as a whitelist, use the no form of this command.

blacklist

no blacklist

Syntax Description

This command has no arguments or keywords.

Defaults

The profile is a whitelist.

Command Modes

SIP header-profile configuration
SIP method-profile configuration

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to use the blacklist command to configure the SIP header profile test1 as a blacklist:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# sip header-profile test1

RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr)# blacklist

The following example shows how to use the blacklist command to configure the SIP method profile test1 as a blacklist:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# sip method-profile test1

RP/0/0/CPU0:router(config-sbc-sbe-sip-mth-prf)# blacklist

blacklist address-default

To enter the mode for configuring the default event limits for the source addresses in a given VPN, use the blacklist command in the SBE mode. To set the values for the VPN to the same as global addresses, use the no form of this command.

blacklist VRF name address-default

no blacklist VRF name address-default

Syntax Description

VRF name

Specifies the VRF of the VPN. To use the default value, this argument is omitted.

Defaults

Event limits are set to the same value for all VPNs.

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.5.0	This command was introduced on the Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the blacklist address-default command is used to enter the mode for configuring the default event limits for all addresses:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# blacklist address-default

Related Commands

Command	Description
blacklist default-port-limit	Enters a submode for configuring the default even limits for the ports of a given address.
reason	Enters a submode for configuring a limit to a specific event type on the source.
timeout	Defines the length of time that packets from the source are blocked, should the limit be exceeded.
trigger-period	Defines the period over which events are considered.
trigger-size	Defines the number of the specified events from the specified source that are allowed before the blacklisting is triggered, and blocks all packets from the source.

blacklist default-port-limit

To enter the mode for configuring the default event limits for the ports of a given address, use the blacklist default-port-limit command in the SBE mode. To remove the event limits set, use the no form of this command.

blacklist {ipv4 IP address | VRF name ipv4 IP address} default-port-limit

no blacklist {ipv4 IP address | VRF name ipv4 IP address} default-port-limit

Syntax Description

ipv4	Specifies IPv4.
IP address	Specifies the IPv4 address.
VRF name	Specifies the VRF of the VPN. To use the default value, this argument is omitted.

Defaults

No event limits are defined for ports.

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.5.0	This command was introduced on the Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the blacklist default-port-limit command is used to enter the mode for configuring the default event limits for the ports of the source address 123.123.2.2:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# blacklist ipv4 123.123.2.2 default-port-limit

Related Commands

Command	Description
blacklist address-default	Enters the mode for configuring the default event limits for the source addresses in a given VPN.
reason	Enters a submode for configuring a limit to a specific event type on the source.
timeout	Defines the length of time that packets from the source are blocked, should the limit be exceeded.
trigger-period	Defines the period over which events are considered.
trigger-size	Defines the number of the specified events from the specified source that are allowed before the blacklisting is triggered, and blocks all packets from the source.

cache

To configure the local or remote billing directory where to store the billing records, use the cache command in the appropriate configuration mode. The billing directory is created under the default billing path. To unset the local or remote billing directory, use the no form of this command.

cache name

no cache

Syntax Description

name	Specifies the local or remote billing directory under the default billing path. See Usage Guidelines.

Defaults

The default drives for billing are:

•harddisk: for local billing

•disk0: for remote billing

After an SBC instance is created:

•A predefined billing directory is mounted onto the Replication Data Service File System (RDSFS).

•The billing directory name contains a prefix followed by _instance-name.

•The billing directory prefix is sbcl for local billing and sbcr for remote billing.

For example, if an SBC instance mysbc is created, the two new RDSFS-mounted billing directories are:

•harddisk:/sbcl_mysbc for local billing

•disk0:/sbcr_mysbc for remote billing

Command Modes

Billing local configuration

Billing remote configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.3.1	The path parameter was changed to the name parameter.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure a cache named mybillingrecords:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# billing local

RP/0/0/CPU0:router(config-sbc-sbe-lclbill)# cache mybillingrecords

cac-table

To create or configure an admission control table, use the cac-table command in CAC-policy-set configuration mode. To delete the admission control table, use the no form of this command.

cac-table table-name

no cac-table table-name

Syntax Description

table-name

Specifies the admission control table.

Defaults

None

Command Modes

CAC-policy-set configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to create the admission control table MyCacTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# 

Related Commands

Command	Description
description	Configures the descriptive text describing an admission control table within the context of an SBE policy set.
match-type	Configures the match-type of an admission control table within the context of an SBE policy set.

callee-dscp

To configure the DSCP to apply to signaling packets sent to the original callee, use the callee-dscp command in CAC table configuration mode. To deconfigure the DSCP and set the DSCP value to 0, use the no form of this command.

callee-dscp dscp

no callee-dscp

Syntax Description

dscp	Specifies the DSCP value with which to mark signaling packets. Range is 0 to 63.

Defaults

dscp: 0

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use DSCP AF41 for packets sent from the SBC to the original callee:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-dscp 34

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

RP/0/0/CPU0:router(config-sbc-sbe)#

callee-fax-qos-profile

To configure the QoS profile to use for media packets sent to the original callee, use the callee-fax-qos-profile command in CAC table configuration mode. To return to the default behavior, use the no form of this command.

callee-fax-qos-profile profile-name

no callee-fax-qos-profile

Syntax Description

profile-name

Specifies a QoS profile.

Defaults

None

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

---

Note This command can be executed only at the per-call scope. CAC policy does not activate if this command is configured at any other scope.

---

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls to the acme account to use the fax QoS profile enterprise for packets sent from the SBC to the original callee:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type dst-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-fax-qos-profile 
enterprise

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

RP/0/0/CPU0:router(config-sbc-sbe)#

callee-ip-precedence

To configure the IP precedence to apply to signaling packets sent to the original callee, use the callee-ip-precedence command in CAC table configuration mode. To remove this configuration and set the IP precedence to its default (which is 0), use the no form of this command.

callee-ip-precedence value

no callee-ip-precedence

Syntax Description

value

Specifies the IP precedence with which to mark signaling packets. Range is 0 to 7.

Defaults

The default value is 0.

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use IP precedence 4 for packets sent from the SBC to the original callee:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-ip-precedence 4

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

callee-ip-TOS

To configure the IP ToS to apply to signaling packets sent to the original callee, use the callee-ip-TOS command in CAC table configuration mode. To return to the default IP ToS (which is 0), use the no form of this command.

callee-ip-TOS value

no callee-ip-TOS

Syntax Description

value

Specifies the IP ToS with which to mark signaling packets. This may be a value of 0 (normal service) or a bitfield consisting of one or more of the following bits OR'ed together: •8: Minimize delay. •4: Maximize throughput. •2: Maximize reliability. •1: Minimize monetary cost.

Defaults

The default value is 0 (normal service).

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use IP ToS 3 for packets sent from the SBC to the original callee:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-ip-TOS 3

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

callee-privacy

To configure the level of privacy processing to perform on messages sent from callee to caller, use the callee-privacy command in CAC table configuration mode. To delete the maximum number of channels in the given entry in the admission control table, use the no form of this command.

callee-privacy [callee_priv_setting]

no callee-privacy

Syntax Description

callee_priv_setting

Indicates specific callee privacy setting. Values are: •never: Never hides the identity. •account-boundary: Hides the identity if caller is different account from callee. •always: Always hides the identity.

Defaults

callee_priv_setting=never

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the entry to always hide callee identity in the new admission control table MyCacTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type dst-prefix

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-entry)# callee-privacy always

callee-sig-qos-profile

To configure the QoS profile to be used for signaling packets sent to the original callee, use the callee-sig-qos-profile command in the CAC policy Admission control table mode. To deconfigure the QoS profile, use the no form of this command.

callee-sig-qos-profile profile-name

no callee-sig-qos-profile profile-name

Syntax Description

profile-name

Specifies the name of the QoS profile. The string default is reserved.

Defaults

None

Command Modes

CAC policy admission control table entry configuration

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the callee-sig-qos-profile command is used to configure the QoS profile named enterprise to be used for signaling packets sent to the original callee.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-sig-qos-profile 
enterprise

callee-video-qos-profile

To configure the QoS profile to use for media packets sent to the original callee, use the callee-video-qos-profile command in CAC table configuration mode. To return to the default behavior, use the no form of this command.

callee-video-qos-profile profile-name

no callee-video-qos-profile

Syntax Description

profile-name

Specifies the QoS profile.

Defaults

None

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

---

Note The callee-video-qos-profile can be executed only at the per-call scope. CAC policy does not activate if configured at any other scope.

---

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use the video QoS profile enterprise for packets sent from the SBC to the original callee:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type dst-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-video-qos-profile 
enterprise

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

callee-voice-qos-profile

To configure the QoS profile to use for media packets sent to the original callee, use the callee-voice-qos-profile command in CAC table configuration mode. To return to the default behavior, use the no form of this command.

callee-voice-qos-profile profile-name

no callee-voice-qos-profile

Syntax Description

profile-name

Specifies the QoS profile.

Defaults

None

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

---

Note This command can be executed only at the per-call scope. CAC policy does not activate if this command is configured at any other scope.

---

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use the voice QoS profile enterprise for packets sent from the SBC to the original callee.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# callee-voice-qos-profile 
enterprise

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-dscp

To configure the DSCP to apply to signaling packets sent to the original caller, use the caller-dscp command in CAC table configuration mode. To deconfigure the DSCP and set the DSCP value to 0, use the no form of this command.

caller-dscp dscp

no caller-dscp

Syntax Description

dscp	Specifies the DSCP value with which to mark signaling packets. Range is 0 to 63.

Defaults

The default value is 0.

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use DSCP AF31 for packets sent from the SBC to the original caller:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-dscp 26

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-fax-qos-profile

To configure the QoS profile to use for media packets sent to the original caller, use the caller-fax-qos-profile command in CAC table configuration mode. To remove this configuration, use the no form of this command.

caller-fax-qos-profile profile-name

no caller-fax-qos-profile

Syntax Description

profile-name

Specifies the QoS profile.

Defaults

None

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

---

Note This command can be executed only at the per-call scope. CAC policy does not activate if this command is configured at any other scope.

---

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use the fax QoS profile enterprise for packets sent from the SBC to the original caller:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-fax-qos-profile 
enterprise

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-ip-precedence

To configure the IP precedence to apply to signaling packets sent to the original caller, use the caller-ip-precedence command in CAC table configuration mode. To return the configuration to the default IP precedence (which is 0), use the no form of this command.

caller-ip-precedence value

no caller-ip-precedence

Syntax Description

value

Specifies the IP precedence with which to mark signaling packets. Range is 0 to 7.

Defaults

The default value is 0.

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

The IP precedence is not be applied until you run the CAC decision process. This means that some initial signaling packets sent to the caller do not receive any particular IP precedence marking. If a DSCP has been configured in this submode, the DSCP value takes precedence, and the IP precedence value is not used.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use IP precedence 3 for packets sent from the SBC to the original caller:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-ip-precedence 3

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-ip-TOS

To configure the IP ToS to apply to signaling packets sent to the original caller, use the caller-ip-TOS command in CAC table configuration mode. To return to the default IP ToS (which is 0), use the no form of this command.

caller-ip-TOS value

no caller-ip-TOS

Syntax Description

value

Specifies the IP ToS with which to mark signaling packets. This may be a value of 0 (normal service) or a bitfield consisting of one or more of the following bits OR'ed together: 8: Minimize delay. 4: Maximize throughput. 2: Maximize reliability. 1: Minimize monetary cost.

Defaults

The default value is 0 (normal service).

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use IP ToS 12 for packets sent from the SBC to the original caller:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-ip-TOS 12

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-privacy

To configure the level of privacy processing to perform on messages sent from caller to callee, use the caller-privacy command in CAC table configuration mode. To delete the maximum number of channels in the given entry in the admission control table, use the no form of this command.

caller-privacy [privacy-setting]

no caller-privacy

Syntax Description

privacy_setting

Indicates specific caller privacy setting. Possible values include: •never: Never hides the identity. •account-boundary: Hides the identity if caller is different account from callee. •always: Always hides the identity.

Defaults

The privacy_setting value is set to never.

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the entry to always hide caller identity in the new admission control table MyCacTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type dst-prefix

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-privacy always

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-sig-qos-profile

To configure the QoS profile to be used for signaling packets sent to the original caller, use the caller-sig-qos-profile command in the CAC policy Admission control table mode. To deconfigure the QoS profile, use the no form of this command.

caller-sig-qos-profile profile-name

no caller-sig-qos-profile profile-name

Syntax Description

profile-name

Specifies the name of the QoS profile. The string default is reserved.

Defaults

None

Command Modes

CAC policy admission control table entry configuration

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the caller-sig-qos-profile command configures the QoS profile named enterprise to be used for signaling packets sent to the original caller.

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-sig-qos-profile 
enterprise

caller-video-qos-profile

To configure the QoS profile to use for media packets sent to the original caller, use the caller-video-qos-profile command in CAC table configuration mode. To remove this configuration, use the no form of this command.

caller-video-qos-profile profile-name

no caller-video-qos-profile

Syntax Description

profile-name

Specifies the Qos profile.

Defaults

None

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

---

Note The caller-video-qos-profile command can be executed only at the per-call scope. CAC policy does not activate if this command is configured at any other scope.

---

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use the video QoS profile enterprise for packets sent from the SBC to the original caller:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# caller-video-qos-profile 
enterprise

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-ent)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

caller-voice-qos-profile

To configure the QoS profile to use for media packets sent to the original caller, use the caller-voice-qos-profile command in CAC table configuration mode. To remove this configuration, use the no form of this command.

caller-voice-qos-profile profile-name

no caller-voice-qos-profile

Syntax Description

profile-name

Specifies the QoS profile.

Defaults

None

Command Modes

CAC table configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

---

Note This command can be executed only at the per-call scope. CAC policy does not activate if this command is configured at any other scope.

---

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure calls from the acme account to use the voice QoS profile enterprise for packets sent from the SBC to the original caller:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-scope call

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# first-cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable match-type src-account

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-entry)# match-value acme

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-entry)# caller-voice-qos-profile 
enterprise

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable-entry)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# exit

call-policy-set

To create a new policy set, use the call-policy-set command in SBE configuration mode. To delete the policy set, use the no form of this command.

call-policy-set policy-set-id

no call-policy-set policy-set-id

Syntax Description

policy-set-id

Specifies the integer that identifies the policy set.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to create an empty policy set, identified by number 1, on mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# exit

RP/0/0/CPU0:router(config-sbc-sbe)#

Related Commands

Command	Description
first-call-routing-table	Configures the name of the first policy table to process when performing the routing stage of policy for new-call events.
first-number-analysis-table	Configures the name of the first policy table to process when performing the number analysis stage of policy.
first-reg-routing-table	Configures the name of the first policy table to process when performing the routing stage of policy for subscriber-registration events.

category (NA-DST)

To configure the entry category in the number analysis table with entries of the table matching a part of or the whole dialed number, use the category command in the appropriate configuration mode. To deconfigure the category of an entry, use the no form of this command.

category category-name

no category category-name

Syntax Description

category-name

Specifies a category to assign to the event.

Defaults

None

Command Modes

NA-DST number configuration

NA-DST prefix configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the category of entry 1 in the new number analysis table MyNaTable matching the whole number:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-dst-number-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# category external

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# exit

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# exit

RP/0/0/CPU0:router(config-sbc-sbe)#

category (NA-SRC)

To configure the entry category in the number analysis table with entries of the table matching the source account or adjacency, use the category command in NA-SRC configuration mode. To deconfigure the entry category in the number analysis table, use the no form of this command.

category category-name

no category category-name

Syntax Description

category-name

Specifies a category to assign to the event.

Defaults

None

Command Modes

NA-SRC account configuration

NA-SRC adjacency configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the category of entry 1 in the new NA table MyNaTable matching the source account:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-src-account-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# entry 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# category external

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable-entry)# exit

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# exit

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# exit

RP/0/0/CPU0:router(config-sbc-sbe)#

clear blacklist

To remove the given source from a blacklist, use the clear blacklist command in the SBE mode.

clear blacklist source

Syntax Description

source

Specifies the source VPN, address, or port to stop blacklisting.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.5.0	This command was introduced on the Cisco XR 12000 Series Router.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how the clear blacklist command is used to remove the specified source address from the blacklist.

RP/0/0/CPU0:router#configure

RP/0/0/CPU0:router(config)# sbc mySbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# clear blacklist ipv4 123.124.1.2

Related Commands

Command	Description
show services sbc sbe blacklist	Lists the limits in force for a specified source.

clear services

To clear call statistics, calls, billing recorded, and cached information, use the clear services command in EXEC mode.

clear services [call-destroy call-index | media-stats | call-stats | flush-cdr-file | radius-client radius-server-stats [client-name | server-name] | radius-client-stats client-name]

Syntax Description

call destroy client-index	Clears the indentified call. (SBE only.)
media-stats	Clears all statistics collected by the media gateway manager of the DBE.
call-stats	Clears all recorded call stats. (SBE only.)
flush-cdr-file	Writes all cached local billing records to disk. (SBE only.)
radius-client radius-server-stats [client-name | server-name]	Clears all statistics for the specified RADIUS server or client. (SBE only.)
radius-client-stats client-name	Clears all statistics fro the specified local RADIUS client. (SBE only.)

Defaults

None

Command Modes

EXEC

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

The media-stats keyword is related to DBE. All other keywords apply to SBE.

Task ID

Task ID	Operations
sbc	read
firewall	read

Examples

The following example shows how to destroy call 5:

RP/0/0/CPU0:router# show services sbc mySbc sbe calls

SBC Service "mySbc"

  Call           State          Type

  -------------------------------------

      1           inactive       data

      2           active         video

      3           activating     audio

      4           active         audio

      5           inactive       unknown

RP/0/0/CPU0:router# show services sbc mySbc sbe call 5 branches

SBC Service "mySbc"

Call: 5

State: inactive

Type: unknown

Branch          Calling Number    Called Number

   1            102 789 767              -

   2                 -             105 659 896

RP/0/0/CPU0:router# clear services sbc mySbc sbe call-destroy 5

The following example shows how to clear all the statistics collected by the media gateway manager of the DBE:

RP/0/0/CPU0:router# clear services sbc mySbc dbe media-stats

The following example shows how to clear all the call statistics by the SBE:

RP/0/0/CPU0:router# clear services sbc mySbc sbe call-stats

The following example shows how to write all cached local billing records to disk:

RP/0/0/CPU0:router# clear services sbc mySbc sbe flush-cdr-file

The following example shows how to clear all the statistics for the specified RADIUS server:

RP/0/0/CPU0:router# clear services sbc mySbc sbe radius-client radius1 radius-server-stats 
acctsvr

The following example shows how to clear all the statistics for the local RADIUS clients:

RP/0/0/CPU0:router# clear services sbc mySbc sbe radius-client-stats readius1

clear services sbc sbe policy-failure-stats dst-account

To clear all of the call setup policy failure statistics for a specified target account, use the clear services sbc sbe policy-failure-stats dst-account command in EXEC mode.

clear services sbc sbc-name sbe policy-failure-stats dst-account name

Syntax Description

sbc-name	Specifies the name of the SBC service.
name	Specifies the target account name from which you want to clear statistics.

Defaults

None

Command Modes

EXEC

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to clear all of the call setup policy failure statistics for an account named AA:

RP/0/0/CPU0:router# clear services sbc mysbc sbe policy-failure-stats dst-account AA

RP/0/0/CPU0:router#

Related Commands

Command	Description
clear services sbc sbe policy-failure-stats dst-adjacency	Clears call setup policy failure statistics for the specified target adjacency.
clear services sbc sbe policy-failure-stats src-account	Clears call setup policy failure statistics for the specified source account.
clear services sbc sbe policy-failure-stats src-adjacency	Clears call setup policy failure statistics for the specified source adjacency.

clear services sbc sbe policy-failure-stats dst-adjacency

To clear all of the call setup failure statistics for a specified target adjacency, use the clear services sbc sbe policy-failure-stats dst-adjacency command in EXEC mode.

clear services sbc sbc-name sbe policy-failure-stats dst-adjacency name

Syntax Description

sbc-name	Specifies the name of the SBC service.
name	Specifies the target adjacency name from which you want statistics cleared.

Defaults

None

Command Modes

EXEC

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to clear all of the policy failure statistics for an adjacency named ZZ:

RP/0/0/CPU0:router# clear services sbc mysbc sbe policy-failure-stats dst-adjacency ZZ

RP/0/0/CPU0:router#

Related Commands

Command	Description
clear services sbc sbe policy-failure-stats dst-account	Clears policy failure statistics for the specified target account.
clear services sbc sbe policy-failure-stats src-account	Clears policy failure statistics for the specified source account.
clear services sbc sbe policy-failure-stats src-adjacency	Clears policy failure statistics for the specified source adjacency.

clear services sbc sbe policy-failure-stats src-account

To clear all the call setup policy failure statistics for a specified source account, use the clear services sbc sbe policy-failure-stats src-account command in EXEC mode.

clear services sbc sbc-name sbe policy-failure-stats src-account name

Syntax Description

sbc-name	Specifies the name of the SBC service.
name	Specifies the source account name from which you want statistics cleared.

Defaults

None

Command Modes

EXEC

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to clear all of the policy failure statistics for a source account named BB:

RP/0/0/CPU0:router# clear services sbc mysbc sbe policy-failure-stats src-account BB

RP/0/0/CPU0:router#

Related Commands

Command	Description
clear services sbc sbe policy-failure-stats dst-adjacency	Clears policy failure statistics for the specified target adjacency.
clear services sbc sbe policy-failure-stats dst-account	Clears policy failure statistics for the specified target account.
clear services sbc sbe policy-failure-stats src-adjacency	Clears policy failure statistics for the specified source adjacency.

clear services sbc sbe policy-failure-stats src-adjacency

To clear all of the call setup failure statistics for a specified source adjacency, use the clear services sbc sbe policy-failure-stats src-adjacency command in EXEC mode.

clear services sbc sbc-name sbe policy-failure-stats src-adjacency name

Syntax Description

sbc-name	Specifies the name of the SBC service.
name	Specifies the source adjacency name from which you want to clear statistics.

Defaults

None

Command Modes

EXEC

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to clear all of the policy failure statistics for an adjacency named YY:

RP/0/0/CPU0:router# clear services sbc mysbc sbe policy-failure-stats src-adjacency YY

RP/0/0/CPU0:router#

Related Commands

Command	Description
clear services sbc sbe policy-failure-stats dst-adjacency	Clears policy failure statistics for the specified target adjacency.
clear services sbc sbe policy-failure-stats dst-account	Clears policy failure statistics for the specified target account.
clear services sbc sbe policy-failure-stats src-account	Clears policy failure statistics for the specified source account.

codec

To add a codec to a codec list, use the codec command in the sbe-codec-list mode. To remove a named codec from a codec list, use the no form of this command.

codec codec-name

no codec codec-name

Syntax Description

codec-name

Specifies the name of a codec. This value must be one of the list of codecs that the SBE is hard-coded to recognize. Otherwise, when you execute this command, the SBE displays an error. The format of the codec name is the same as the string used to represent it in SDP. For example, PCMU or VDVI. A codec can only be added to each list one time.

Defaults

None

Command Modes

sbe-codec-list

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to assign the PCMU codec to the my_codecs codec list.

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mysbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# codec-list my_codecs

RP/0/0/CPU0:router(config-sbc-sbe-codec-list)# codec PCMU

codec-list

To create a codec list, use the codec-list command in the sbe mode. To delete a codec list, use the no form of this command.

codec-list list-name

no codec-list list-name

Syntax Description

list-name

Specifies the name of the codec list.

Defaults

None

Command Modes

sbe

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to enter a submode to create a codec list using the name my_codecs.

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mysbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# codec-list my_codecs

codec-list description

To provide a description of a codec list, use the codec-list description command in sbe mode. To delete the description for the codec list, use the no form of this command.

codec-list description text

no description

Syntax Description

text	An arbitrary text string that describes the codec list.

Defaults

None

Command Modes

sbe

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to provide the my_codecs codec list with a description (Legitimate codecs).

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mysbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# codec-list my_codecs

RP/0/0/CPU0:router(config-sbc-sbe-codec-list)# description Legitimate codecs

codec packetization-period

To set a minimum packetization period for a codec, use the codec packetization-period command in the sbe-codec-list mode. To remove a packetization-period from a codec, use the no form of this command.

codec codec-name packetization-period packet-period

no codec codec-name packetization-period packet-period

Syntax Description

codec-name	Specifies the name of a codec. This value must be one of the list of codecs that the SBE is hard-coded to recognize. Otherwise, when you execute this command, the SBE displays an error. The format of the codec name is the same as the string used to represent it in SDP (for example, PCMU or VDVI).
packet-period	The codec can optionally be followed by a minimum acceptable packetization period in milliseconds as indicated by packetization-period. For example, codec PCMU packetization-period 20 adds the codec PCMU to the list with a minimum acceptable packetization period of 20 ms. The range of packetization period is limited to 0 to 1000 ms.

---

Note For each minimum packetization period, only one codec is allowed to be added to each list, one time only.

---

Defaults

None

Command Modes

sbe

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to set a minimum packetization period for the PCMU and G729 codecs that are in the my_codecs codec list.

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mysbc

RP/0/0/CPU0:router(config-sbc)# sbe

RP/0/0/CPU0:router(config-sbc-sbe)# codec-list my_codecs

RP/0/0/CPU0:router(config-sbc-sbe-codec-list)# codec PCMU packetization-period 20

RP/0/0/CPU0:router(config-sbc-sbe-codec-list)# codec G729 packetization-period 10

codecs

To configure the codecs supported by the media gateway, use the codecs command in Media-gateway configuration mode. To set the codec support to nothing, use the no form of this command.

codecs codec-list

no codecs

Syntax Description

codec-list

Specifies the supported codecs.

Defaults

None

Command Modes

Media-gateway configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to set media gateway 10.0.0.1's supported codecs to m=audio 6000 RTP/AVP 4 and a=rtpmap:0 PCMU/8000 (as defined in RFC 1890):

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# media-gateway ipv4 10.0.0.1 

RP/0/0/CPU0:router(config-sbc-sbe-media-gateway)# codecs "m=audio 6000 RTP/AVP 
4,a=rtpmap:0 PCMU/8000"

complete

To complete the CAC- or call-policy set after committing the full set, use the complete command in the appropriate configuration mode. To change entries, use the no form of this command.

complete

no complete

Syntax Description

This command has no arguments or keywords.

Defaults

None

Command Modes

CAC-policy-set configuration

Call-policy-set configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

The SBC checks that the routing-policy is self-consistent and can be set as the active policy set. When this command is issued, you cannot alter the CAC-policy-set.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to complete a cac-policy set, identified by number 1, on mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# complete

RP/0/0/CPU0:router(config-sbc-sbe)# exit

congestion-cleared

To configure the percentage of system resources used such that the DBE can signal a congestion event has cleared to the SBE, use the congestion-cleared command in vDBE configuration mode. To remove this configuration, use the no form of this command.

congestion-cleared percentage

no congestion-cleared

Syntax Description

percentage

Specifies the percentage of system resources to signal congestion that has passed to the SBE.

Defaults

percentage=60

Command Modes

vDBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the DBE to signal congestion that has passed to the SBE at 90 percent of system resources consumed:

RP/0/0/CPU0:router(config)# sbc mySbc dbe vdbe

RP/0/0/CPU0:router(config-sbc-dbe-vdbe)# congestion-cleared 90

Related Commands

Command	Description
congestion-threshold	Configures the percentage of system resources used such that the DBE signals a congestion event to the SBE.

congestion-threshold

To configure the percentage of system resources used such that the DBE signals a congestion event to the SBE, use the congestion-threshold command in vDBE configuration mode. To remove this configuration, use the no form of this command.

congestion-threshold percentage

no congestion-threshold

Syntax Description

percentage

Specifies the percentage value of system resources to signal congestion to the SBE. Range is 0 to 100.

Defaults

By default, this command assumes that percentage is 60 percent.

Command Modes

vDBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

The DBE tracks service card capacity as a function of number of calls (against a maximum of 2,500 per DBE instance in R0) and bandwidth (where the service card has a maximum forwarding rate of 500,000 packets per second in R0).

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the DBE to signal a congestion event to the SBE at 95 percent of maximum capacity:

RP/0/0/CPU0:router(config)# sbc mySbc dbe vdbe

RP/0/0/CPU0:router(config-sbc-dbe-vdbe)# congestion-threshold 95

Related Commands

Command	Description
congestion-cleared	Configures the percentage of system resources used such that the DBE can signal a congestion event has cleared to the SBE.

control address aaa

To configure an SBE to use a given IPv4 AAA control address when contacting an authentication or billing server, use the control address aaa ipv4 command in sbe configuration mode. To deconfigure the IPv4 AAA control address, use the no form of this command.

control address aaa ipv4 ip_address [vrf vrf-name]

no control address aaa ipv4 ip_address

Syntax Description

ipv4 ip_address	Specifies the IPv4 AAA control address.
vrf	(Optional) Specifies VRF.
vrf-name	(Optional) Specifies the VRF name.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.
Release 3.5.1	This command was modified on the Cisco XR 12000 Series Router to add the VRF keyword option.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the SBE to use address 10.1.0.1 as its AAA control address:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# control address aaa ipv4 10.1.0.1 vrf myvrf

Related Commands

Command	Description
control address h248 (SBE)	Configures IPv4 H.248 control addresses.

control address h248 (SBE)

To configure an SBE to use a given IPv4 H.248 control address, port, or transport for H.248 communications when acting as a media gateway controller, use the control address h248 command in SBE configuration mode. To deconfigure the given IPv4 H.248 control address when acting as a media gateway controller, use the no form of this command.

control address h248 [index value | ipv4 ipv4_ip_address | port port-number | transport transport-type]

no control address h248 [index value | ipv4 ipv4_ip_address | port port-number | transport transport-type]

Syntax Description

index value	Specifies the unique identifier of the H.248 control address to set. Range is 0 to 4294967295.
ipv4 ip_address	Specifies the IPv4 H.248 control address.
port port-number	Specifies the port number.
transport transport-type	Specifies the transport type. Possible values include udp or tcp for underlying transport.

Defaults

None

Command Modes

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to configure the SBE to use address 10.1.0.1 as its H.248 control address:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# control address h248 ipv4 10.1.0.1

Related Commands

Command	Description
control address aaa	Configures AAA control addresses.

control-address h248 ipv4 (DBE)

To configure the control address for vDBE with a specific IPv4 address, use the control-address h248 ipv4 command in the vDBE mode. To return to the default value, use the no form of this command.

control-address h248 ipv4 ipv4_address

no control-address h248 ipv4

Syntax Description

ipv4_address

Specifies the IPv4 address assigned to this H.248 association.

Defaults

None

Command Modes

vDBE

Command History

Release	Modification
Release 3.5.1	The control address h248 command was enhanced to include support for the DBE module on the Cisco XR 12000 Series Router. Only the ipv4_address argument is supported in the vDBE submode.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to configure the local vDBE IPv4 address:

RP/0/0/CPU0:router(config)# sbc mysbc

RP/0/0/CPU0:router(config-sbc)# dbe

RP/0/0/CPU0:router(config-sbc-dbe)# vdbe

RP/0/0/CPU0:router(config-sbc-dbe-vdbe)# control-address h248 ipv4 10.2.0.10

Related Commands

Command	Description
controller h248 [vrf] remote-address ipv4	Configures the remote address for vDBE H.248 controller.

controller h248

To enter the mode for configuring an H.248 controller for a DBE, use the controller h248 command in DBE mode.

controller h248 controller-index

Syntax Description

controller-index

Specifies the index of the media controller. Range is 0 to 4294967295.

Defaults

None

Command Modes

dbe-vdbe

Command History

Release	Modification
Release 3.4.1	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write

Examples

The following example shows how to enter the mode for configuring an H.248 controller for a DBE.

RP/0/0/CPU0:router# configure

RP/0/0/CPU0:router(config)# sbc mysbc

RP/0/0/CPU0:router(config-sbc)# dbe

RP/0/0/CPU0:router(config-sbc-dbe)# vdbe

RP/0/0/CPU0:router(config-sbc-dbe-vdbe)# controller h248 1

critical-alarm-threshold

To configure the threshold at which a critical alarm is generated if the CDR file reaches that size, use the critical-alarm-threshold command in the appropriate configuration mode. To remove this configuration, use the no form of this command.

critical-alarm-threshold threshold

no critical-alarm-threshold

Syntax Description

threshold

Specifies the threshold (in MBs) when the alarm is generated.

Defaults

None

Command Modes

Billing local configuration

Billing remote configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to set the critical alarm threshold to 1000 MB:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# billing local

RP/0/0/CPU0:router(config-sbc-sbe-lclbill)# critical-alarm-threshold 1000

RP/0/0/CPU0:router(config-sbc-sbe-lclbill)# exit

dbe-location-id

To configure an H.323 adjacency to use a given media gateway DBE location when routing media, use the dbe-location-id command in the appropriate configuration mode. To remove this configuration, use the no form of this command.

dbe-location-id dbe-location-id

no dbe-location-id

Syntax Description

dbe-location-id

Specifies the DBE location ID of the DBE. A value of 0 denotes that the adjacency is within the local network.

Defaults

None

Command Modes

Adjacency H.323 configuration

Adjacency SIP configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure H.323 adjacency h323ToIsp42 to use DBE location ID 1:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# dbe-location-id 1

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# exit

deact-mode

To specify the action to take upon DBE or SBE deactivation, use the deact-mode command in the appropriate configuration mode. To revert to the default value, use the no form of this command.

deact-mode deact-type

no deact-mode

Syntax Description

deact-type

Specifies the action to take upon DBE deactivation: •abort: All calls dropped with no signaling. •normal: Service change signalled to SBE, and all calls immediately terminated. •quiesce: No new calls accepted. Deactivation occurs only after existing calls have terminated naturally. Specifies the action to take upon SBE deactivation: •abort: All calls dropped with no signaling. •normal: Existing calls are torn down gracefully. •quiesce: No new calls accepted. Existing calls are allowed to terminate.

Defaults

By default, this command assumes the normal parameter.

Command Modes

DBE configuration

SBE configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to set the DBE to deactivate in quiesce mode to prepare the device for hardware maintenance:

RP/0/0/CPU0:router(config)# sbc mySbc dbe

RP/0/0/CPU0:router(config-sbc-dbe)# deact-mode quiesce

description

To configure descriptive text for a policy set, an adjacency, source and its event limits, or a number analysis table, use the description command in the appropriate configuration mode. To remove this configuration, use the no form of this command.

description description

no description description

Syntax Description

description

Specifies the object you are describing.

Defaults

None

Command Modes

Adjacency H.323 configuration

Adjacency SIP configuration

Call-policy-set configuration

CAC-policy-set configuration

CAC-table configuration

NA-DST configuration

NA-DST-prefix-table configuration

NA-SRC-account-table configuration

NA-SRC-adjacency-table configuration

RTG-DST-address-table configuration

RTG-SRC-address-table configuration

RTG-SRC-adjacency-table configuration

RTG-SRC-account-table configuration

RTG-round-robin-table configuration

SBE blacklist configuration

SIP header-profile configuration

SIP method-profile configuration

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.4.1	This command was modified on the Cisco XR 12000 Series Router to add the following configuration modes: •SIP header-profile configuration •SIP method-profile configuration
Release 3.5.0	This command was modified on the Cisco XR 12000 Series Router to add the SBE-blacklist configuration.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to configure the H.323 adjacency h323ToIsp42 to use the description test adjacency:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency h323 h323ToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-h323)# description test adjacency

The following example shows how to set the SIP adjacency SipToIsp42 to use the description test adjacency:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# adjacency sip SipToIsp42

RP/0/0/CPU0:router(config-sbc-sbe-adj-sip)# description test adjacency

The following example shows how to create a description for number analysis table MyNaTable with entries that match the whole dialed number:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-dst-number-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# description "My first number 
analysis table"

The following example shows how to create an empty policy set, identified by number 1, on mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# description "empty set"

The following example shows how to set the description of an admission control table, MyCacTable:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# cac-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy)# cac-table MyCacTable

RP/0/0/CPU0:router(config-sbc-sbe-cacpolicy-cactable)# description "My first CAC table"

The following example shows how to create a description for number analysis table MyNaTable with entries that match the start of the dialed number:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# na-dst-prefix-table MyNaTable

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy-natable)# description "My first number 
analysis table"

The following example shows how to add a description for a specific source IP address:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# blacklist ipv4 125.12.12.15

RP/0/0/CPU0:router(config-sbc-sbe-blacklist)# description "test"

The following example shows how to create an empty policy set, identified by number 1, on mySbc:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# call-policy-set 1

RP/0/0/CPU0:router(config-sbc-sbe-rtgpolicy)# description "empty set"

The following example shows how to add description text "myheaderprofile" for SIP header profile Profile1:

RP/0/0/CPU0:router(config)# sbc mySbc sbe sip header-profile Profile1

RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# description "myheaderprofile"

RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# commit

The following example shows how to add description text "mymethodprofile" for SIP method profile Profile1:

RP/0/0/CPU0:router(config)# sbc mySbc sbe sip method-profile Profile1

RP/0/0/CPU0:router(config-sbc-sbe-sip-mth-prf)# description "mymethodprofile"

RP/0/0/CPU0:router(config-sbc-sbe-sip-mth-prf)# commit

disabled

To disable the caching and sending of messages for a RADIUS account, use the disabled command in RADIUS accounting configuration mode.

disabled

Syntax Description

This command has no arguments or keywords.

Defaults

None

Command Modes

RADIUS accounting mode (config-sbc-sbe-acc)

Command History

Release	Modification
Release 3.3.0	This command was introduced on the Cisco XR 12000 Series Router.
Release 3.4.0	No modification.
Release 3.5.0	No modification.

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

To use this command, you must be in the correct configuration mode and submode. The "Examples" section shows the hierarchy of modes and submodes required to run the command.

Task ID

Task ID	Operations
sbc	read, write
firewall	read, write

Examples

The following example shows how to stop the sending of messages from the cache for RADIUS client instance radius1:

RP/0/0/CPU0:router(config)# sbc mySbc sbe

RP/0/0/CPU0:router(config-sbc-sbe)# radius accounting radius1

RP/0/0/CPU0:router(config-sbc-sbe-acc)# disabled

Related Commands

Command	Description
radius	Configures a RADIUS client for accounting purposes.

dst-adjacency

To configure the destination adjacency of an entry in a routing table, use the dst-adjacency command in the appropriate configuration mode. To delete the destination adjacency, use the no form of this command.

dst-adjacency target-adjacency

no dst-adjacency target-adjacency

Syntax Description

target-adjacency

Specifies the string that identifies the destination adjacency to use.

Defaults

No