P-GW Sample Configuration Files

This appendix contains sample configuration files for the P-GW. The following configurations are supported:

In each configuration example, commented lines are labeled with the number symbol (#) and variables are identified using italics within brackets (<variable>).

Standalone eGTP PDN Gateway

Configuration Sample

# Configuration
file for an ASR 5000 in an eGTP P-GW role
#
# Send P-GW
licenses
configure /flash/flashconfig/<pgw_license_name>.cfg
end
#
# Set system
to not require confirmation when creating new contexts
and/or services.
Config file must end with “no autoconfirm” to
return the
CLI to its default
setting.
#
configure
   autoconfirm
#
# Configure
ASR 5000 cards
#
# Activate
the PSCs
   card <slot_number>
      mode
active psc
      exit
   card <slot_number>
      mode
active psc
      exit
# Repeat for
the number of PSCs in the system
   end
#
# Modify the
local context for local system management
config
   context
local
      interface <name>
         ip
address <address> <mask>
         exit
      server
ftpd
         exit
      ssh
key <key>
length <bytes>
      server
sshd
         subsystem
sftp
         exit
      server
telnetd
         exit
      subscriber
default
         exit
      administrator
<name>
encrypted password <password>
ftp
      aaa
group default
         exit
      administrator
<name>
encrypted password <password>
ftp
      ip
route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name>
      exit
   port
ethernet <slot#/port#>
      no
shutdown
      bind
interface <lcl_cntxt_intrfc_name>
local
      exit
   ntp
      enable
      server <ip_address>
      exit
   snmp
engine-id local <id>
   snmp
notif-threshold <count>
low <low_count>
period <seconds>
   snmp
authentication-failure-trap
   snmp
heartbeat interval <minutes>
   snmp
community <string>
read-write
   snmp
target <name> <ip_address>
   system
contact <string>
   system
location <string>
# P-GW context
configuration
   gtpp
single-source
   context <pgw_context_name>
      interface <s5s8_interface_name>
         ip
address <ipv4_address>
# note alternative
IPv6 address:
         ipv6
address <address>
         exit
      gtpp
group default
         gtpp
charging-agent address <gx_ipv4_address>
         gtpp
echo-interval <seconds>
         gtpp
attribute diagnostics
         gtpp
attribute local-record-sequence-number
         gtpp
attribute node-id-suffix <string>
         gtpp
dictionary <name>
         gtpp
trigger egcdr max-losdv
         gtpp
egcdr losdv-max-containers <number>
         gtpp
server <ipv4_address> priority
<num>
         gtpp
server <ipv4_address> priority
<num>
node-alive enable
         exit
      policy
accounting <rf_policy_name>
-noconfirm
         accounting-level {level_type}
         accounting-event-trigger
interim-timeout action stop-start
         operator-string <string>
         cc
profile <index>
         exit
      subscriber
default
         exit
      apn <rf_acct_apn_name>
         accounting-mode
radius-diameter
         associate
accounting-policy <rf_policy_name>
         ims-auth-service <gx_ims_service_name>
         aaa
group <rf-radius_group_name>
         dns
primary <ipv4_address>
         dns
secondary <ipv4_address>
         ip
access-group <name> in
         ip
access-group <name> out
         mediation-device
context-name <pgw_context_name>
         ip
context-name <pdn_context_name>
         ipv6
access-group <name> in
         ipv6
access-group <name> out
         active-charging
rulebase <name>
         exit
      aaa
group <gz_acct_apn_name>
         bearer-control-mode
mixed
         selection-mode
sent-by-ms
         accounting-mode
gtpp
         gtpp
group default accounting-context <aaa_context_name>
         ims-auth-service <gx_ims_service_name>
         ip
access-group <name> in
         ip
access-group <name> out
         ip
context-name <pdn_context_name>
         active-charging
rulebase <gz_rulebase_name>
         exit
      aaa
group default
         radius
attribute nas-ip-address address <ipv4_address>
         radius
accounting interim interval <seconds>
         diameter
authentication dictionary <name>
         diameter
accounting dictionary <name>
         diameter
authentication endpoint <s6b_cfg_name>
         diameter
accounting endpoint <rf_cfg_name>
         diameter
authentication server <s6b_cfg_name>
priority <num>
         diameter
accounting server <rf_cfg_name>
priority <num>
         exit
      egtp-service
<egtp_service_name> -noconfirm
         interface-type
interface-pgw-ingress
         validation-mode
default
         associate
gtpu-service <gtpu_service_name>
         gtpc
bind address <s5s8_interface_ip_address>
         exit
      gtpu-service <gtpu_service_name>
         bind
ipv4-address <s5s8_interface_ip_address>
# note alternative
IPv6 address:
         bind
ipv6-address <s5s8_interface_ip_address>
         exit
      pgw-servers
<pgw_service_name>
-noconfirm
         associate
egtp-service <egtp_service_name>
         associate
qci-qos-mapping <name>
         fqdn
host <domain_name>
realm <realm_name>
         plmn
id mcc <id>
mnc <id>
         exit
      ipv6
route <ipv6_addr/prefix> next-hop
<sgw_addr>
interface <pgw_sgw_intrfc_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <s5s8_interface_name> <pgw_context_name>
      exit
# PDN context
configuration
   context
<pdn_context_name>
-noconfirm
      interface <pdn_sgi_ipv4_interface_name>
         ip
address <ipv4_address>
         exit
      interface <pdn_sgi_ipv6_interface_name>
         ipv6
address <address>
         exit
      ip
pool <name>
range <start_address
end_address> public <priority>
      ipv6
pool <name>
range <start_address
end_address> public <priority>
      subscriber
default
      ip
access-list <name>
         redirect
css service <name> any
         permit
any
         exit
      ipv6
access-list <name>
         redirect
css service <name> any
         permit
any
         exit
      aaa
group default
         exit
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <pdn_ipv4_interface_name> <pdn_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <pdn_ipv6_interface_name> <pdn_context_name>
      exit
# Enabling
active charging
   require
active-charging optimized-mode
   active-charging
service <name>
      ruledef <name>
         <rule_definition>
               .
               .
         <rule_definition>
         exit
      ruledef
default
         ip
any-match = TRUE
         exit
      ruledef icmp-pkts
         icmp
any-match = TRUE
         exit
      ruledef qci3
         icmp
any-match = TRUE
         exit
      ruledef static
         icmp
any-match = TRUE
         exit
      charging-action <name>
         <action>
            .
            .
         <action>
         exit
      charging-action icmp
         billing-action
egcdr
         exit
      charging-action qci3
         content-id <id>
         billing-action
egcdr
         qos-class-identifier <id>
         allocation-retention-priority <priority>
         tft-packet-filter qci3
         exit
      charging-action static
         service-identifier <id>
         billing-action
egcdr
         qos-class-identifier <id>
         allocation-retention-priority <priority>
         tft-packet-filter qci3
         exit
      rulebase
default
         exit
      rulebase <name>
         <rule_base>
            .
            .
         <rule_base>
         exit
      rulebase <gx_rulebase_name>
         dynamic-rule
order first-if-tied
         egcdr
tariff minute <minute> hour
<hour>(optional)
         billing-records
egcdr
         action
priority 5 dynamic-only
ruledef qci3 charging-action qci3
         action
priority 100 ruledef static charging-action static
         action
priority 500 ruledef default
charging-action icmp
         action
priority 570 ruledef icmp-pkts charging-action icmp
         egcdr
threshold interval <interval>
         egcdr
threshold volume total <bytes>
         exit
      exit
# AAA and
policy
   context
<aaa_context_name>
-noconfirm
      interface <gx_interface_name>
         ipv6
address <address>
# note alternative
IPv4 address:
         ip
address <ipv4_address>
         exit
      interface <gy_interface_name>
         ipv6
address <address>
# note alternative
IPv4 address:
         ip
address <ipv4_address>
         exit
      interface <gz_interface_name>
         ip
address <ipv4_address>
         exit
      interface <rf_interface_name>
         ip
address <ipv4_address>
# note alternative
IPv6 address:
         ipv6
address <address>
         exit
      subscriber
default
         exit
      ims-auth-service <gx_ims_service_name>
         p-cscf
discovery table <#> algorithm
round-robin
         p-cscf
table <#>
row-precedence <#>
ipv6-address <pcrf_ipv6_adr>
# note alternative
IPv4 address:
         p-cscf
table <#>
row-precedence <#>
ip-address <pcrf_ipv4_adr>
         policy-control
            diameter
origin endpoint <gx_cfg_name>
            diameter
dictionary <name>
            diameter
host-select table <#>
algorithm round-robin
            diameter
host-select row-precedence <#>
table <#>
host <gx_cfg_name>
            exit
         exit
      diameter
endpoint <gx_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<gx_cfg_name>
realm <name>
address <pcrf_ip_addr>
         route-entry
peer <gx_cfg_name>
         exit
      diameter
endpoint <gy_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<gy_cfg_name>
realm <name>
address <ocs_ip_addr>
         route-entry
peer <gy_cfg_name>
         exit
      diameter
endpoint <rf_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<rf_cfg_name>
realm <name>
address <ofcs_ip_addr>
         route-entry
peer <rf_cfg_name>
         exit
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <gx_interface_name> <aaa_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <gy_interface_name> <aaa_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <gz_interface_name> <aaa_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <rf_interface_name> <aaa_context_name>
      exit
# QCI-QoS
mapping
   qci-qos-mapping <name>
      qci
1 user-datagram dscp-marking <hex>
      qci
3 user-datagram dscp-marking <hex>
      qci
9 user-datagram dscp-marking <hex>
      end

Standalone PMIPv6 PDN Gateway Supporting an eHRPD Network

Configuration Sample

# Configuration
file for an ASR 5000 in a PMIPv6 P-GW role supporting an eHRPD network
#
# Send P-GW
licenses
configure /flash/flashconfig/<pgw_license_name>.cfg
end
#
# Set system
to not require confirmation when creating new contexts
and/or services.
Config file must end with “no autoconfirm” to
return the
CLI to its default
setting.
#
configure
   autoconfirm
#
# Configure
ASR 5000 cards
#
# Activate
the PSCs
   card <slot_number>
      mode
active psc
      exit
   card <slot_number>
      mode
active psc
      exit
# Repeat for
the number of PSCs in the system
   end
#
# Modify the
local context for local system management
config
   context
local
      interface <name>
         ip
address <address> <mask>
         exit
      server
ftpd
         exit
      ssh
key <key>
length <bytes>
      server
sshd
         subsystem
sftp
         exit
      server
telnetd
         exit
      subscriber
default
         exit
      administrator
<name>
encrypted password <password>
ftp
      aaa
group default
         exit
      administrator
<name>
encrypted password <password>
ftp
      ip
route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name>
      exit
   port
ethernet <slot#/port#>
      no
shutdown
      bind
interface <lcl_cntxt_intrfc_name>
local
      exit
   ntp
      enable
      server <ip_address>
      exit
   snmp
engine-id local <id>
   snmp
notif-threshold <count>
low <low_count>
period <seconds>
   snmp
authentication-failure-trap
   snmp
heartbeat interval <minutes>
   snmp
community <string>
read-write
   snmp
target <name> <ip_address>
   system
contact <string>
   system
location <string>
# P-GW context
configuration
   context <pgw_context_name>
      interface <s2a_interface_name>
         ipv6
address <ipv6_address>
            tunnel-mode
ipv6ip
               source
interface <name>
               destination
address <ipv4_or_ipv6_address>
               exit
            exit
         exit
      policy
accounting <rf_policy_name>
-noconfirm
         accounting-level {level_type}
         accounting-event-trigger
interim-timeout action stop-start
         operator-string <string>
         exit
      subscriber
default
         exit
      apn
<name>
         accounting-mode
radius-diameter
         associate
accounting-policy <rf_policy_name>
         ims-auth-service <gx_ims_service_name>
         aaa
group <rf-radius_group_name>
         dns
primary <ipv4_address>
         dns
secondary <ipv4_address>
         ip
access-group <name> in
         ip
access-group <name> out
         mediation-device
context-name <pgw_context_name>
         ip
context-name <pdn_context_name>
         ipv6
access-group <name> in
         ipv6
access-group <name> out
         active-charging
rulebase <name>
         exit
      aaa
group <rf-radius_group_name>
         radius
attribute nas-identifier <id>
         radius
accounting interim interval <seconds>
         radius
dictionary <name>
         radius
mediation-device accounting server <address>
key <key>
         diameter
authentication dictionary <name>
         diameter
accounting dictionary <name>
         diameter
authentication endpoint <s6b_cfg_name>
         diameter
accounting endpoint <rf_cfg_name>
         diameter
authentication server <s6b_cfg_name>
priority <num>
         diameter
accounting server <rf_cfg_name>
priority <num>
         exit
      aaa
group default
         radius
attribute nas-ip-address address <ipv4_address>
         radius
accounting interim interval <seconds>
         diameter
authentication dictionary <name>
         diameter
accounting dictionary <name>
         diameter
authentication endpoint <s6b_cfg_name>
         diameter
accounting endpoint <rf_cfg_name>
         diameter
authentication server <s6b_cfg_name>
priority <num>
         diameter
accounting server <rf_cfg_name>
priority <num>
         exit
      lma-service
<lma_service_name>
-noconfirm
         no
aaa accounting
         revocation
enable
         bind
address <s2a_interface_ipv6_address>
         exit
      pgw-service <pgw_service_name>
         associate
lma-service <lma_service_name>
         associate
qci-qos-mapping <name>
         authorize
external
         plmn
id mcc <id>
mnc <id>
         exit
      ipv6
route <ipv6_addr/prefix> next-hop
<sgw_addr>
interface <pgw_sgw_intrfc_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <s2a8_interface_name> <pgw_context_name>
      exit
# PDN context
configuration
   context
<pdn_context_name>
-noconfirm
      interface <pdn_sgi_ipv4_interface_name>
         ip
address <ipv4_address>
         exit
      interface <pdn_sgi_ipv6_interface_name>
         ipv6
address <address>
         exit
      ip
pool <name>
range <start_address
end_address> public <priority>
      ipv6
pool <name>
range <start_address
end_address> public <priority>
      subscriber
default
         exit
      ip
access-list <name>
         redirect
css service <name> any
         permit
any
         exit
      ipv6
access-list <name>
         redirect
css service <name> any
         permit
any
         exit
      aaa
group default
         exit
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <pdn_ipv4_interface_name> <pdn_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <pdn_ipv6_interface_name> <pdn_context_name>
      exit
# Enabling
active charging
   require
active-charging optimized-mode
   active-charging
service <name>
      ruledef <name>
         <rule_definition>
               .
               .
         <rule_definition>
         exit
      ruledef <name>
         <rule_definition>
               .
               .
         <rule_definition>
         exit
      charging-action <name>
         <action>
            .
            .
         <action>
         exit
      charging-action <name>
         <action>
            .
            .
         <action>
         exit
      rulebase
default
         exit
      rulebase <name>
         <rule_base>
            .
            .
         <rule_base>
         exit
      exit
# AAA and
policy
   context
<aaa_context_name>
-noconfirm
      interface <gx_interface_name>
         ipv6
address <address>
# note alternative
IPv4 address:
         ip
address <ipv4_address>
         exit
      interface <gy_interface_name>
         ipv6
address <address>
# note alternative
IPv4 address:
         ip
address <ipv4_address>
         exit
      interface <s6b_interface_name>
         ip
address <ipv4_address>
# note alternative
IPv6 address:
         ipv6
address <address>
         exit
      interface <rf_interface_name>
         ip
address <ipv4_address>
# note alternative
IPv6 address:
         ipv6
address <address>
         exit
      subscriber
default
         exit
      ims-auth-service <gx_ims_service_name>
         p-cscf
discovery table <#> algorithm
round-robin
         p-cscf
table <#>
row-precedence <#>
ipv6-address <pcrf_ipv6_adr>
# note alternative
IPv4 address:
         p-cscf
table <#>
row-precedence <#>
ip-address <pcrf_ipv4_adr>
         policy-control
            diameter
origin endpoint <gx_cfg_name>
            diameter
dictionary <name>
            diameter
host-select table <#>
algorithm round-robin
            diameter
host-select row-precedence <#>
table <#>
host <gx_cfg_name>
            exit
         exit
      diameter
endpoint <gx_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<gx_cfg_name>
realm <name>
address <pcrf_ip_addr>
         route-entry
peer <gx_cfg_name>
         exit
      diameter
endpoint <gy_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<gy_cfg_name>
realm <name>
address <ocs_ip_addr>
         route-entry
peer <gy_cfg_name>
         exit
      diameter
endpoint <s6b_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<s6b_cfg_name>
realm <name>
address <3gpp_aaa_ip_addr>
         route-entry
peer <s6b_cfg_name>
         exit
      diameter
endpoint <rf_cfg_name>
         origin
realm <realm_name>
         origin
host <name>
address <aaa_context_ip_address>
         peer
<rf_cfg_name>
realm <name>
address <ofcs_ip_addr>
         route-entry
peer <rf_cfg_name>
         exit
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <gx_interface_name> <aaa_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <gy_interface_name> <aaa_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <s6b_interface_name> <aaa_context_name>
      exit
   port
ethernet <slot_number/port_number>
      no
shutdown
      bind
interface <rf_interface_name> <aaa_context_name>
      exit
# QCI-QoS
mapping
   qci-qos-mapping <name>
      qci
1 user-datagram dscp-marking <hex>
      qci
3 user-datagram dscp-marking <hex>
      qci
9 user-datagram dscp-marking <hex>
      end