MIPv6HA Service Configuration Mode Commands


MIPv6HA Service Configuration Mode Commands
 
 
The MIPv6 HA Service Configuration Mode is used to create and manage MIPv6 access privileges.
 
Important: The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).
 
aaa accounting
Configures the sending of subscriber session AAA accounting by the HA service.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
aaa accounting
no aaa accounting
Usage
Enabling the HA service will send all accounting data (start, stop, and interim) to the configured AAA servers.
The chassis is shipped from the factory with the AAA accounting enabled.
Important: In order for this command to function properly, AAA accounting must be enabled for the context in which the HA service is configured using the aaa accounting subscriber radius command.
AAA accounting for the HA service can be disabled using the no version of the command.
Example
The following command disables aaa accounting for the HA service:
no aaa accounting
 
bind
Designates the address of the MIPv6HA service and specifies the maximum number of subscribers that can access this service over the interface.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
bind address IPv6_address [ max-subscribers count ]
no bind address
address
Specifies the IPv6 address (address) of the MIPv6HA service. The IPv6 address size is 128 bits. The preferred IPv6 address representation is: xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx where each x is a hexadecimal digit representing 4 bits.
max-subscribers count
Default: 3000000
Specifies the maximum number of subscribers that can access this service on this interface.
count can be configured to any integer value between 0 and 3,000,000.
 
default
Restore default values assigned for specified parameter.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
default { aaa | refresh-advice-option | refresh-interval-percent | reg-lifetime | sequence-number-validate | setup-timeout | simul-bindings | subscriber | timestamp-replay-protection }
aaa
Restores the aaa setting configured by the aaa command to its default of enabled.
refresh-advice-option
Restores the refresh-advice-option setting to its default of disabled.
refresh-interval-percent
Restores the refresh-interval-percent setting to its default of 75.
reg-lifetime
Restores the Mobile IP session registration lifetime setting configured by the reg-lifetime command to its default: 600 seconds.
sequence-number-validate
Restores the sequence-number-validate setting to its default of enabled.
setup-timeout
Restore the maximum amount of time allowed for setting up a session to the default: 60 seconds.
simul-bindings
Restores the simultaneous bindings setting to its default: 1.
subscriber
Configures settings for the default subscriber.
timestamp-replay-protection
Restores the timestamp-replay-protection scheme according to RFC 4285.
Usage
After the system has been modified from its default values, this command is used to set/restore specific parameters to their default values.
Example
The following command is used to return the simultaneous bindings setting parameter to it’s default value:
default simul-bindings
 
end
Exits the HA service configuration mode and returns to the Exec mode.
Product
All
Privilege
Security Administrator, Administrator
Syntax
end
Usage
Change the mode back to the Exec mode.
 
exit
Exits the HA service configuration mode and returns to the context configuration mode.
Product
All
Privilege
Security Administrator, Administrator
Syntax
exit
Usage
Return to the context configuration mode.
 
refresh-advice-option
Configures inclusion of refresh advice option in Binding Acknowledgement sent by Home Agent (HA).
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
refresh-advice-option
Usage
Includes the refresh advice option in the binding acknowledgements sent by the home agent. Default is disabled.
 
refresh-interval-percent
Configures percentage of the granted lifetime to be used in the refresh interval mobility option in Binding Acknowledgement sent by Home Agent (HA).
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
refresh-interval-percent value
value
value represents a percentage. Default is 75.
Usage
Use this command to configure the amount of the granted lifetime to be used in the refresh interval mobility option in Binding Acknowledgement sent by Home Agent (HA).
Example
The following command sets the refresh-interval-percent value to 50%:
refresh-interval-percent 50
 
reg-lifetime
Specifies the longest registration lifetime that the HA service will allow in any Registration Request message from the mobile node.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
reg-lifetime time
no reg-lifetime
no
Sets the registration lifetime to infinite.
time
Specifies the registration lifetime.
time is measured in seconds and can be configured to any integer value between 1 and 262140. Default is 600.
Usage
Use to limit a mobile nodes lifetime. If the mobile node requests a shorter lifetime than what is specified, it is granted. However, Per RFC 2002, should a mobile node request a lifetime that is longer than the maximum allowed by this parameter, the HA service will respond with the value configured by this command as part of the Registration Reply.
The chassis is shipped from the factory with the registration lifetime set to 600 seconds.
Example
The following command configures the registration lifetime for the HA service to be 2400 seconds:
reg-lifetime 2400
The following command configures an infinite registration lifetime for MIPv6 calls:
no reg-lifetime
 
sequence-number-validate
Configures sequence number validation of the received MIPV6 control packet by the Home Agent (HA) according to RFC 3775.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
sequence-number-validate
Usage
Use this command to configure the sequence number validation of the received MIPV6 control packet by the Home Agent (HA) as per RFC 3775. Default is enabled.
 
setup-timeout
The maximum amount of time allowed for session setup.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
setup-timeout seconds
seconds
Default: 60 seconds
The maximum amount of time, in seconds, to allow for setup of a session. must be an integer from 1 through 1000000. Default is 60 seconds.
Usage
Use this command to set the maximum amount of time allowed for setting up a session.
Example
To set the maximum time allowed for setting up a session to 5 minutes (300 seconds), enter the following command:
setup-timeout 300
 
simul-bindings
Specifies the maximum number of “care-of” addresses that can simultaneously be bound for the same user as identified by NAI and Home address.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
simul-bindings number
number
Configures maximum number of "care of" addresses that can be simultaneously bound for the same user as identified by their NAI and home address.
number can be configured to any integer value between 1 and 3. Default is 1.
Usage
The chassis is shipped from the factory with the simultaneous sessions set to 1.
Per RFC 2002, the HA service creates a mobile binding record (MBR) for each subscriber session it is facilitating. Each MBR is associated with a care-of address. As the mobile node roams, it is possible that the session will be associated with a new care of address.
Typically, the HA service will delete an old binding and create a new one when the information in the Registration Request changes. However, the mobile could request that the HA maintains previously stored MBRs. This command allows you to configure the maximum number of MBRs that can be stored per subscriber if the requested.
Example
The following command configures the service to support up to 2 addresses per subscriber:
simul-bindings 2
 
timestamp-replay-protection tolerance
Designates timestamp replay protection scheme as per RFC 4285.
Product
PDSN, HA
Privilege
Security Administrator, Administrator
Syntax
timestamp-replay-protection tolerance
tolerance
Defines the acceptable difference in timing (between timestamps) before rejecting packet, in seconds. tolerance must be an integer between 0 and 65535. The default is 7 seconds.
Usage
Use this command to define the acceptable difference in timing (between timestamps) before rejecting packet.
 
 

Cisco Systems Inc.
Tel: 408-526-4000
Fax: 408-527-0883