-
Cisco IOS XR Session Border Controller Configuration Guide Release 3.6
-
About This Guide
-
About SBC Deployment Models
-
SBC Configuration Prerequisites
-
Implementing SBC Adjacencies
-
Configuring SIP Method Profiles
-
Configuring Header Profiles
-
Restricting Codecs
-
SIP Tel URI Support
-
SIP Timer
-
H.323 Support
-
H.323-SIP Interworking
-
Implementing SBC Policies
-
Tracking Policy Failure Statistics
-
Implementing SBC Firewall Traversal and NAT
-
Implementing SBC Interworking DTMF
-
SIP 3xx Redirect Responses
-
SIP Call Hold
-
SIP Call Transfer
-
Encrypted SIP Signaling
-
SIP Outbound Authentication
-
SIP Inbound Authentication
-
SIP-I Transparency and Profile Support
-
SIP Configuration Flexibility
-
Implementing SBC QoS (Marking)
-
DoS Prevention and Dynamic Blacklisting
-
Unexpected Source Address Alerting
-
Implementing SBC Billing
-
Implementing SBC Redundancy (High Availability)
-
Implementing SBC Multi-VRF
-
Implementing SBC Transcoding
-
Configuring DBE Overload Reporting
-
Media Address Pools
-
Early Media
-
Fax Support
-
Nine-Tier Termination Name Hierarchy
-
Multiple Streams in a H.248.1 v3 Termination
-
DBE Signaling Pinhole Support
-
IPv6 Support on the DBE
-
Extension of H.248 Termination Wildcarding
-
Optional H.248 Ginfo Package
-
H.248.1 v3 Support
-
H.248 Traffic Management (Tman)
-
Context Attribute Descriptor Support
-
H.248 Historical Event Notification
-
H.248 Segmentation Package Support
-
H.248 Configurable T-Max
-
H.248 Configurable VRF
-
Implementing H.248 nt/qualert Events
-
H.248 Gateway Profile Configuration
-
Interim Authentication Header Support
-
IP NAPT Traversal Support
-
MGC-Controlled Gateway-Wide Properties
-
MGC-Specified Local Addresses and Ports
-
Optional Local and Remote Descriptors
-
Provisioned Inactivity Timer
-
Disabling RTP Flows
-
Discarded Packet Statistics
-
IPv4/IPv6 Voice Clipping Avoidance
-
Interleaving and Non-Interleaving VOD
-
Secure Media Support
-
RADIUS VPN Support
-
Configurable Base Root Package
-
MGC Information Package Support
-
Ia Profile Support
-
Integration of Resource Management and SIP
-
P-CSCF Support
-
IBCF Processing Support
-
End-to-End SBC Configuration Example on a Cisco XR 12000 Series Router
-
Additional Information about Billing Support
-
Index
-
Feedback
Table Of Contents
Restrictions for Configuring Header Profiles
Information About Header Profiles
How to Configure Header Profiles
Example of Configuring Header Profiles
Example of Applying Header Profiles
Configuring Header Profiles
You can configure the SBC with header whitelist and blacklist profiles on Session Initiation Protocol (SIP) messages. These profiles are used to control which headers are passed through (whitelists) and which headers are discarded (blacklists) on Session Initiation Protocol (SIP) messages. This feature helps to avoid misusing the SBE or SIP adjacency by SIP users and improves the efficiency of SIP calls.
Feature History for Header Profiles
Release 3.4.1
This feature was introduced on the Cisco XR 12000 Series Router.
Release 3.5.0
No modification.
Release 3.6.0
No modification.
Contents
This module contains the following sections:
•
Restrictions for Configuring Header Profiles
•
•
Restrictions for Configuring Header Profiles
•
•
•
•
•
•
Information About Header Profiles
After you configure a profile, you can assign it for a default application. Any SIP adjacency can apply it to signaling for that adjacency.
You can add or remove headers from profiles at any time. Headers configured on a profile must contain characters that are valid for a SIP header.
Profiles cannot be deleted while any adjacency is using them. You can see which adjacencies are using a profile by entering the following show command:
show services sbc <sbc-name> sbe sip header-profile <name>Table 3 lists the fixed set of essential SIP headers, which are not permitted to be configured on any profile.
Profiles are an optional part of the configuration. If no profile is applicable to a given SIP signal, then the essential headers are processed and all other headers are not forwarded.
How to Configure Header Profiles
You first configure the header profiles and then apply them as explained in the following sections:
Configuring Header Profiles
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
DETAILED STEPS
Step 1
configure
Example:RP/0/0/CPU0:router# configure
Enables global configuration mode.
Step 2
sbc service-name sbe sip
Example:RP/0/0/CPU0:router(config)# sbc mysbc sbe sip
Enters the submode for configuring the header profile.
Use the service-name argument to define the name of the service.
Step 3
header-profile profile-name
Example:RP/0/0/CPU0:router(config-sbc-sbe-sip)# header-profile profile1
Configures a header profile.
If you enter the name default, the default profile is configured. This profile is used for all adjacencies which do not have a specific profile configured.
Step 4
blacklist
Example:RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# blacklist
Configures a profile to be a blacklist.
The no version of this command configures the profile to be a whitelist.
Note
Step 5
header name
Example:RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# header test1
Configures the profile to contain the header test1.
Step 6
description text
Example:RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# description blacklist profile
Adds a description for the specified profile.
The no form of this command removes the description.
This description is displayed when the show command is used for this profile and is displayed for each profile when displaying a summary of all profiles.
Step 7
commit
Example:RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# commit
Saves configuration changes. Use the commit command to save the configuration changes to the running configuration file and remain within the configuration session.
Step 8
exit
Example:RP/0/0/CPU0:router(config-sbc-sbe-sip-hdr-prf)# exit
Exits the header profile mode to the sbe mode.
Step 9
show services sbc sbc-name sbe sip-header-profile name
Example:RP/0/0/CPU0:router(config-sbc-sbe)# show services sbc mysbc sbe sip header-profile profile1
Displays details for the header profile with the designated name.
Use name default to view the default profile.
Step 10
show services sbc sbc-name sbe sip header-profiles
Example:RP/0/0/CPU0:router(config-sbc-sbe)# show services sbc mysbc sbe sip header-profiles
Displays a list of all configured header profiles.
Step 11
show services sbc sbc name sbe sip essential-headers
Example:RP/0/0/CPU0:router(config-sbc-sbe)# show services sbc mysbc sbe sip essential-headers
Displays a list of the essential headers listed in Table 3.
Applying Header Profiles
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
DETAILED STEPS
Examples of Header Profiles
This section provides a sample configuration and output for header profiles.
Example of Configuring Header Profiles
The following example shows the commands and output generated when you configure the header profiles.
RP/0/0/CPU0:node3(config)#sbc umsbc-node3 sbeRP/0/0/CPU0:node3(config-sbc-sbe)#sip header-profile test1RP/0/0/CPU0:node3(config-sbc-sbe-sip-hdr)#blacklistRP/0/0/CPU0:node3(config-sbc-sbe-sip-hdr)#header abcdRP/0/0/CPU0:node3(config-sbc-sbe-sip-hdr)#commitRP/0/0/CPU0:node3#sh services sbc umsbc-node3 sbe sip header-profilesHeader profiles for SBC service "umsbc-node3"Name In use====================================test1 Yesdefault YesRP/0/0/CPU0:node3#sh services sbc umsbc-node3 sbe sip header-profile test1Header profile "test1"Type: BlacklistHeaders:abcdIn use by: Not in use with any adjacenciesExample of Applying Header Profiles
The following example shows the commands and output generated when you are applying a header profile to an SBC.
RP/0/0/CPU0:node3#conf tRP/0/0/CPU0:node3(config)#sbc umsbc-node3 sbeRP/0/0/CPU0:node3(config-sbc-sbe)#adjacency sip sipp-10RP/0/0/CPU0:node3(config-sbc-sbe-adj-sip)#header-profile inbound test1RP/0/0/CPU0:node3(config-sbc-sbe-adj-sip)#header-profile outbound test1RP/0/0/CPU0:node3(config-sbc-sbe-adj-sip)#commitRP/0/0/CPU0:node3#sh services sbc umsbc-node3 sbe sip header-profile test1Header profile "test1"Type: BlacklistHeaders:abcdIn use by:Adjacency: sipp-10 (in, out)show running-configsbc umsbc-node3service-location preferred-active 0/6/CPU0sbeactivatesip header-profile test1blacklistheader abcd!adjacency sip sipp-10header-profile inbound test1header-profile outbound test1signaling-address ipv4 88.88.109.8signaling-port 5060remote-address ipv4 10.10.105.222/32security trusted-encryptedsignaling-peer 10.10.105.222signaling-peer-port 5060account sip-customerAdditional References
The following sections provide references related to configuring header profiles.
Related Documents
Standards
No new or modified standards are supported by this feature, and support from existing standards has not been modified by this feature.
—
MIBs
—
To locate and download MIBs using Cisco IOS XR software, use the Cisco MIB Locator found at the following URL and choose a platform under the Cisco Access Products menu:
RFCs
RFC 2833
RTP Payload for DTMF Digits, Telephony Tones and Telephony Signals
RFC 3261
SIP: Session Initiation Protocol
Technical Assistance