Standalone eGTP PDN Gateway
Configuration Sample
# Configuration
file for an ASR 5000 in an eGTP P-GW role
#
# Send P-GW
licenses
configure /flash/flashconfig/<pgw_license_name>.cfg
end
#
# Set system
to not require confirmation when creating new contexts
and/or services.
Config file must end with “no autoconfirm” to
return the
CLI to its default
setting.
#
configure
autoconfirm
#
# Configure
ASR 5000 cards
#
# Activate
the PSCs
card <slot_number>
mode
active psc
exit
card <slot_number>
mode
active psc
exit
# Repeat for
the number of PSCs in the system
end
#
# Modify the
local context for local system management
config
context
local
interface <name>
ip
address <address> <mask>
exit
server
ftpd
exit
ssh
key <key>
length <bytes>
server
sshd
subsystem
sftp
exit
server
telnetd
exit
subscriber
default
exit
administrator
<name>
encrypted password <password>
ftp
aaa
group default
exit
administrator
<name>
encrypted password <password>
ftp
ip
route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name>
exit
port
ethernet <slot#/port#>
no
shutdown
bind
interface <lcl_cntxt_intrfc_name>
local
exit
ntp
enable
server <ip_address>
exit
snmp
engine-id local <id>
snmp
notif-threshold <count>
low <low_count>
period <seconds>
snmp
authentication-failure-trap
snmp
heartbeat interval <minutes>
snmp
community <string>
read-write
snmp
target <name> <ip_address>
system
contact <string>
system
location <string>
# P-GW context
configuration
gtpp
single-source
context <pgw_context_name>
interface <s5s8_interface_name>
ip
address <ipv4_address>
# note alternative
IPv6 address:
ipv6
address <address>
exit
gtpp
group default
gtpp
charging-agent address <gx_ipv4_address>
gtpp
echo-interval <seconds>
gtpp
attribute diagnostics
gtpp
attribute local-record-sequence-number
gtpp
attribute node-id-suffix <string>
gtpp
dictionary <name>
gtpp
trigger egcdr max-losdv
gtpp
egcdr losdv-max-containers <number>
gtpp
server <ipv4_address> priority
<num>
gtpp
server <ipv4_address> priority
<num>
node-alive enable
exit
policy
accounting <rf_policy_name>
-noconfirm
accounting-level {level_type}
accounting-event-trigger
interim-timeout action stop-start
operator-string <string>
cc
profile <index>
exit
subscriber
default
exit
apn <rf_acct_apn_name>
accounting-mode
radius-diameter
associate
accounting-policy <rf_policy_name>
ims-auth-service <gx_ims_service_name>
aaa
group <rf-radius_group_name>
dns
primary <ipv4_address>
dns
secondary <ipv4_address>
ip
access-group <name> in
ip
access-group <name> out
mediation-device
context-name <pgw_context_name>
ip
context-name <pdn_context_name>
ipv6
access-group <name> in
ipv6
access-group <name> out
active-charging
rulebase <name>
exit
aaa
group <gz_acct_apn_name>
bearer-control-mode
mixed
selection-mode
sent-by-ms
accounting-mode
gtpp
gtpp
group default accounting-context <aaa_context_name>
ims-auth-service <gx_ims_service_name>
ip
access-group <name> in
ip
access-group <name> out
ip
context-name <pdn_context_name>
active-charging
rulebase <gz_rulebase_name>
exit
aaa
group default
radius
attribute nas-ip-address address <ipv4_address>
radius
accounting interim interval <seconds>
diameter
authentication dictionary <name>
diameter
accounting dictionary <name>
diameter
authentication endpoint <s6b_cfg_name>
diameter
accounting endpoint <rf_cfg_name>
diameter
authentication server <s6b_cfg_name>
priority <num>
diameter
accounting server <rf_cfg_name>
priority <num>
exit
egtp-service
<egtp_service_name> -noconfirm
interface-type
interface-pgw-ingress
validation-mode
default
associate
gtpu-service <gtpu_service_name>
gtpc
bind address <s5s8_interface_ip_address>
exit
gtpu-service <gtpu_service_name>
bind
ipv4-address <s5s8_interface_ip_address>
# note alternative
IPv6 address:
bind
ipv6-address <s5s8_interface_ip_address>
exit
pgw-servers
<pgw_service_name>
-noconfirm
associate
egtp-service <egtp_service_name>
associate
qci-qos-mapping <name>
fqdn
host <domain_name>
realm <realm_name>
plmn
id mcc <id>
mnc <id>
exit
ipv6
route <ipv6_addr/prefix> next-hop
<sgw_addr>
interface <pgw_sgw_intrfc_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <s5s8_interface_name> <pgw_context_name>
exit
# PDN context
configuration
context
<pdn_context_name>
-noconfirm
interface <pdn_sgi_ipv4_interface_name>
ip
address <ipv4_address>
exit
interface <pdn_sgi_ipv6_interface_name>
ipv6
address <address>
exit
ip
pool <name>
range <start_address
end_address> public <priority>
ipv6
pool <name>
range <start_address
end_address> public <priority>
subscriber
default
ip
access-list <name>
redirect
css service <name> any
permit
any
exit
ipv6
access-list <name>
redirect
css service <name> any
permit
any
exit
aaa
group default
exit
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <pdn_ipv4_interface_name> <pdn_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <pdn_ipv6_interface_name> <pdn_context_name>
exit
# Enabling
active charging
require
active-charging optimized-mode
active-charging
service <name>
ruledef <name>
<rule_definition>
.
.
<rule_definition>
exit
ruledef
default
ip
any-match = TRUE
exit
ruledef icmp-pkts
icmp
any-match = TRUE
exit
ruledef qci3
icmp
any-match = TRUE
exit
ruledef static
icmp
any-match = TRUE
exit
charging-action <name>
<action>
.
.
<action>
exit
charging-action icmp
billing-action
egcdr
exit
charging-action qci3
content-id <id>
billing-action
egcdr
qos-class-identifier <id>
allocation-retention-priority <priority>
tft-packet-filter qci3
exit
charging-action static
service-identifier <id>
billing-action
egcdr
qos-class-identifier <id>
allocation-retention-priority <priority>
tft-packet-filter qci3
exit
rulebase
default
exit
rulebase <name>
<rule_base>
.
.
<rule_base>
exit
rulebase <gx_rulebase_name>
dynamic-rule
order first-if-tied
egcdr
tariff minute <minute> hour
<hour>(optional)
billing-records
egcdr
action
priority 5 dynamic-only
ruledef qci3 charging-action qci3
action
priority 100 ruledef static charging-action static
action
priority 500 ruledef default
charging-action icmp
action
priority 570 ruledef icmp-pkts charging-action icmp
egcdr
threshold interval <interval>
egcdr
threshold volume total <bytes>
exit
exit
# AAA and
policy
context
<aaa_context_name>
-noconfirm
interface <gx_interface_name>
ipv6
address <address>
# note alternative
IPv4 address:
ip
address <ipv4_address>
exit
interface <gy_interface_name>
ipv6
address <address>
# note alternative
IPv4 address:
ip
address <ipv4_address>
exit
interface <gz_interface_name>
ip
address <ipv4_address>
exit
interface <rf_interface_name>
ip
address <ipv4_address>
# note alternative
IPv6 address:
ipv6
address <address>
exit
subscriber
default
exit
ims-auth-service <gx_ims_service_name>
p-cscf
discovery table <#> algorithm
round-robin
p-cscf
table <#>
row-precedence <#>
ipv6-address <pcrf_ipv6_adr>
# note alternative
IPv4 address:
p-cscf
table <#>
row-precedence <#>
ip-address <pcrf_ipv4_adr>
policy-control
diameter
origin endpoint <gx_cfg_name>
diameter
dictionary <name>
diameter
host-select table <#>
algorithm round-robin
diameter
host-select row-precedence <#>
table <#>
host <gx_cfg_name>
exit
exit
diameter
endpoint <gx_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<gx_cfg_name>
realm <name>
address <pcrf_ip_addr>
route-entry
peer <gx_cfg_name>
exit
diameter
endpoint <gy_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<gy_cfg_name>
realm <name>
address <ocs_ip_addr>
route-entry
peer <gy_cfg_name>
exit
diameter
endpoint <rf_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<rf_cfg_name>
realm <name>
address <ofcs_ip_addr>
route-entry
peer <rf_cfg_name>
exit
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <gx_interface_name> <aaa_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <gy_interface_name> <aaa_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <gz_interface_name> <aaa_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <rf_interface_name> <aaa_context_name>
exit
# QCI-QoS
mapping
qci-qos-mapping <name>
qci
1 user-datagram dscp-marking <hex>
qci
3 user-datagram dscp-marking <hex>
qci
9 user-datagram dscp-marking <hex>
end
Standalone PMIPv6 PDN Gateway Supporting an eHRPD Network
Configuration Sample
# Configuration
file for an ASR 5000 in a PMIPv6 P-GW role supporting an eHRPD network
#
# Send P-GW
licenses
configure /flash/flashconfig/<pgw_license_name>.cfg
end
#
# Set system
to not require confirmation when creating new contexts
and/or services.
Config file must end with “no autoconfirm” to
return the
CLI to its default
setting.
#
configure
autoconfirm
#
# Configure
ASR 5000 cards
#
# Activate
the PSCs
card <slot_number>
mode
active psc
exit
card <slot_number>
mode
active psc
exit
# Repeat for
the number of PSCs in the system
end
#
# Modify the
local context for local system management
config
context
local
interface <name>
ip
address <address> <mask>
exit
server
ftpd
exit
ssh
key <key>
length <bytes>
server
sshd
subsystem
sftp
exit
server
telnetd
exit
subscriber
default
exit
administrator
<name>
encrypted password <password>
ftp
aaa
group default
exit
administrator
<name>
encrypted password <password>
ftp
ip
route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name>
exit
port
ethernet <slot#/port#>
no
shutdown
bind
interface <lcl_cntxt_intrfc_name>
local
exit
ntp
enable
server <ip_address>
exit
snmp
engine-id local <id>
snmp
notif-threshold <count>
low <low_count>
period <seconds>
snmp
authentication-failure-trap
snmp
heartbeat interval <minutes>
snmp
community <string>
read-write
snmp
target <name> <ip_address>
system
contact <string>
system
location <string>
# P-GW context
configuration
context <pgw_context_name>
interface <s2a_interface_name>
ipv6
address <ipv6_address>
tunnel-mode
ipv6ip
source
interface <name>
destination
address <ipv4_or_ipv6_address>
exit
exit
exit
policy
accounting <rf_policy_name>
-noconfirm
accounting-level {level_type}
accounting-event-trigger
interim-timeout action stop-start
operator-string <string>
exit
subscriber
default
exit
apn
<name>
accounting-mode
radius-diameter
associate
accounting-policy <rf_policy_name>
ims-auth-service <gx_ims_service_name>
aaa
group <rf-radius_group_name>
dns
primary <ipv4_address>
dns
secondary <ipv4_address>
ip
access-group <name> in
ip
access-group <name> out
mediation-device
context-name <pgw_context_name>
ip
context-name <pdn_context_name>
ipv6
access-group <name> in
ipv6
access-group <name> out
active-charging
rulebase <name>
exit
aaa
group <rf-radius_group_name>
radius
attribute nas-identifier <id>
radius
accounting interim interval <seconds>
radius
dictionary <name>
radius
mediation-device accounting server <address>
key <key>
diameter
authentication dictionary <name>
diameter
accounting dictionary <name>
diameter
authentication endpoint <s6b_cfg_name>
diameter
accounting endpoint <rf_cfg_name>
diameter
authentication server <s6b_cfg_name>
priority <num>
diameter
accounting server <rf_cfg_name>
priority <num>
exit
aaa
group default
radius
attribute nas-ip-address address <ipv4_address>
radius
accounting interim interval <seconds>
diameter
authentication dictionary <name>
diameter
accounting dictionary <name>
diameter
authentication endpoint <s6b_cfg_name>
diameter
accounting endpoint <rf_cfg_name>
diameter
authentication server <s6b_cfg_name>
priority <num>
diameter
accounting server <rf_cfg_name>
priority <num>
exit
lma-service
<lma_service_name>
-noconfirm
no
aaa accounting
revocation
enable
bind
address <s2a_interface_ipv6_address>
exit
pgw-service <pgw_service_name>
associate
lma-service <lma_service_name>
associate
qci-qos-mapping <name>
authorize
external
plmn
id mcc <id>
mnc <id>
exit
ipv6
route <ipv6_addr/prefix> next-hop
<sgw_addr>
interface <pgw_sgw_intrfc_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <s2a8_interface_name> <pgw_context_name>
exit
# PDN context
configuration
context
<pdn_context_name>
-noconfirm
interface <pdn_sgi_ipv4_interface_name>
ip
address <ipv4_address>
exit
interface <pdn_sgi_ipv6_interface_name>
ipv6
address <address>
exit
ip
pool <name>
range <start_address
end_address> public <priority>
ipv6
pool <name>
range <start_address
end_address> public <priority>
subscriber
default
exit
ip
access-list <name>
redirect
css service <name> any
permit
any
exit
ipv6
access-list <name>
redirect
css service <name> any
permit
any
exit
aaa
group default
exit
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <pdn_ipv4_interface_name> <pdn_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <pdn_ipv6_interface_name> <pdn_context_name>
exit
# Enabling
active charging
require
active-charging optimized-mode
active-charging
service <name>
ruledef <name>
<rule_definition>
.
.
<rule_definition>
exit
ruledef <name>
<rule_definition>
.
.
<rule_definition>
exit
charging-action <name>
<action>
.
.
<action>
exit
charging-action <name>
<action>
.
.
<action>
exit
rulebase
default
exit
rulebase <name>
<rule_base>
.
.
<rule_base>
exit
exit
# AAA and
policy
context
<aaa_context_name>
-noconfirm
interface <gx_interface_name>
ipv6
address <address>
# note alternative
IPv4 address:
ip
address <ipv4_address>
exit
interface <gy_interface_name>
ipv6
address <address>
# note alternative
IPv4 address:
ip
address <ipv4_address>
exit
interface <s6b_interface_name>
ip
address <ipv4_address>
# note alternative
IPv6 address:
ipv6
address <address>
exit
interface <rf_interface_name>
ip
address <ipv4_address>
# note alternative
IPv6 address:
ipv6
address <address>
exit
subscriber
default
exit
ims-auth-service <gx_ims_service_name>
p-cscf
discovery table <#> algorithm
round-robin
p-cscf
table <#>
row-precedence <#>
ipv6-address <pcrf_ipv6_adr>
# note alternative
IPv4 address:
p-cscf
table <#>
row-precedence <#>
ip-address <pcrf_ipv4_adr>
policy-control
diameter
origin endpoint <gx_cfg_name>
diameter
dictionary <name>
diameter
host-select table <#>
algorithm round-robin
diameter
host-select row-precedence <#>
table <#>
host <gx_cfg_name>
exit
exit
diameter
endpoint <gx_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<gx_cfg_name>
realm <name>
address <pcrf_ip_addr>
route-entry
peer <gx_cfg_name>
exit
diameter
endpoint <gy_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<gy_cfg_name>
realm <name>
address <ocs_ip_addr>
route-entry
peer <gy_cfg_name>
exit
diameter
endpoint <s6b_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<s6b_cfg_name>
realm <name>
address <3gpp_aaa_ip_addr>
route-entry
peer <s6b_cfg_name>
exit
diameter
endpoint <rf_cfg_name>
origin
realm <realm_name>
origin
host <name>
address <aaa_context_ip_address>
peer
<rf_cfg_name>
realm <name>
address <ofcs_ip_addr>
route-entry
peer <rf_cfg_name>
exit
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <gx_interface_name> <aaa_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <gy_interface_name> <aaa_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <s6b_interface_name> <aaa_context_name>
exit
port
ethernet <slot_number/port_number>
no
shutdown
bind
interface <rf_interface_name> <aaa_context_name>
exit
# QCI-QoS
mapping
qci-qos-mapping <name>
qci
1 user-datagram dscp-marking <hex>
qci
3 user-datagram dscp-marking <hex>
qci
9 user-datagram dscp-marking <hex>
end