GTP-U Service Configuration Mode Commands

The GTP-U Service Configuration Mode is used to manage parameters applied to incoming GTP-U packets.

IMPORTANT:

The commands or keywords/variables that are available are dependent on platform type, product version, and installed license(s).

bind

Configures the IP address to use for GTP-U data packets.

Platform:

ASR 5000

Product:

GGSN, P-GW, S-GW


Privilege:

Administrator


Syntax
[ no ] bind { ipv4-address ipv4_address [ crypto-template crypto_template ] [ ike-bind-address { ipv4_address } ] [ ipv6-address ipv6_address ] | ipv6-address ipv6_address [ crypto-template crypto_template ] [ ike-bind-address { ipv6_address } ] [ ipv4-address ipv4_address ] }
no

removes a configured IP address from this service.

ipv4-address ipv4_address

Binds this service to the IPv4 address of a configured interface.

ipv4_address must be entered using IPv4 dotted-decimal notation.

ipv6-address ipv6_address

Binds this service to the IPv6 address of a configured interface.

ipv6_address must be entered using IPv6 colon-separated-hexadecimal notation.

crypto-template crypto_template

Configures crypto template for IPSec, which enables IPSec tunneling for this GTP-U address. Must be followed by the name of an existing crypto template.

crypto_template must be an alphanumeric string of 1 through 127 characters.

ike-bind-address ip_address

Configures an IKE bind address. Must be followed by IPv4 or IPv6 address; IP address type must be the same as the GTP-U address type.

ipv4_address must be entered using IPv4 dotted-decimal notation.

ipv6_address must be entered using IPv6 colon-separated-hexadecimal notation.

IMPORTANT:

This keyword is only applicable if a crypto template is bound to the GTP-U address.


Usage:

Use this command to bind the service to an interface for sending/receiving GTP-U packets.

IMPORTANT:

A GTP-U service can support a maximum of 12 GTP-U endpoints/interfaces.


Example:
The following command configures the IPv4 address for this GTP-U service as 10.2.3.4:
bind ipv4-address 10.2.3.4
echo-interval

Configures the rate at which GPRS Tunneling Protocol (GTP) v1-U echo packets are sent.

Platform:

ASR 5000

Product:

GGSN, P-GW, S-GW


Privilege:

Administrator


Syntax
echo-interval seconds{ default | no } echo-interval
default

Returns the command to its default settings.

no

Removes the configured echo-interval setting.

seconds

Specifies the number of seconds between the sending of a GTP-Uv1 echo packet. seconds must be an integer from 60 through 3600. Default: 60


Usage:

Use this command to configure the rate at which GTP-Uv1 echo packets are sent.


Example:
The following command sets the rate between the sending of echo packets at 120 seconds:
echo-interval 120
end

Exits the current configuration mode and returns to the Exec mode.

Product:

All


Privilege:

Security Administrator, Administrator


Syntax
end

Usage:

Use this command to return to the Exec mode.

exit

Exits the current mode and returns to the parent configuration mode.

Product:

All


Privilege:

Security Administrator, Administrator


Syntax
exit

Usage:

Use this command to return to the parent configuration mode.

extension-header

Configures the addition of an extension header in the GTP-U packet header, allowing for error indication messages.

Platform:

ASR 5000

Product:

GGSN, P-GW, S-GW


Privilege:

Administrator


Syntax
[ default | no ] extension-header
source-udp-port
default

Returns the command to its default setting of disabled.

no

Disables the feature.

source-udp-port

Configures extension header type UDP Port support in GTP-U header for GTP-U Error Indication messages.


Usage:

Use this command to configure the addition of an extension header in the GTP-U packet to allow for error indication messages


Example:
The following command enables the inclusion of an extension header to allow for error indication messages:
extension-header source-udp-port
ipsec-allow-error-ind-in-clear

Configures whether error-indication is dropped or sent without IPSec tunnel.

Platform:

ASR 5000

Product:

S-GW


Privilege:

Administrator


Syntax
[ default | no ] ipsec-allow-error-ind-in-clear
default

Error-indication is dropped if no IPSec tunnel is present for that peer.

no

Disables the feature.


Usage:

Use this command to determine whether error-indication is dropped or sent without an IPSec tunnel.

On receiving data packets for a session that does not exist, error-indication needs to be sent back to the peer. If there is no IPSec tunnel present with that peer, error-indication may be either dropped or sent without any IPSec tunnel.


Example:
The following command allows error-indication to be sent without any IPSec tunnel:
 ipsec-allow-error-ind-in-clear
ipsec-tunnel-idle-timeout

Configures the IPSec tunnel idle timeout after which IPSec tunnel deletion is triggered.

Platform:

ASR 5000

Product:

S-GW


Privilege:

Administrator


Syntax
ipsec-tunnel-idle-timeout secondsdefault ipsec-tunnel-idle-timeout 
seconds

Default: 60

Specifies the number of seconds an IPSec tunnel is idle before tunnel deletion is triggered. seconds must be an integer from 10 through 600.

default

Returns the command to its default setting of 60.


Usage:

When there are no bearers on a particular IPSec tunnel, GTPUMGR initiates the delete for that tunnel. This timer helps to avoid unnecessary IPSec tunnel deletions for an idle tunnel.


Example:
The following command sets the IPsec tunnel idle timeout to 100 seconds:
ipsec-tunnel-idle-timeout 100
max-retransmissions

Configures the maximum retry limit for GTP-U echo retransmissions.

Platform:

ASR 5000

Product:

GGSN, P-GW, S-GW


Privilege:

Administrator


Syntax
max-retransmissions numno max-retransmissions
num

Default: 4

Specifies the number of GTP-U echo message retransmissions allowed before triggering a path failure error condition. num must be an integer from 0 through 15.

no

Disables the feature.


Usage:

Use this command to set the maximum number of GTP-U echo message retransmissions in order to define a limit that triggers a path failure error.


Example:
The following command sets the maximum GTP-U echo message retransmissions for this service to 10:
max-retransmissions 10
path-failure detection-policy

Configures a path failure detection policy on GTP-U echo messages that have been retransmitted the maximum number of retry times.

Platform:

ASR 5000

Product:

GGSN, P-GW, S-GW


Privilege:

Administrator


Syntax
path-failure detection-policy
gtp echo[ default | no ] path-failure
detection-policy
gtp echo

Sets the detection policy to detect a failure upon reaching the maximum number of GTP-U echo message retransmissions.

default

Resets the command to its default setting of enabled.

no

Disables the feature.


Usage:

Use this command to set the detection policy for path failures.


Example:
The following command sets the path failure detection policy to detect failures upon reaching the maximum number of GTP-U echo message retries:
path-failure detection-policy
gtp echo
retransmission-timeout

Configures retransmission timeout for GTPU echo message retransmissions for this service.

Platform:

ASR 5000

Product:

GGSN, P-GW, S-GW


Privilege:

Administrator


Syntax
retransmission-timeout secondsdefault retransmission-timeout
default

Returns the command to its default setting of 5.

seconds

Default: 5

Specifies the number of seconds between the re-sending of GTP-U echo messages. seconds must be an integer from 1 through 20.


Usage:

Use this command to set the number of seconds between the retransmission of GTP-U echo messages.


Example:
The following command sets the number of seconds between the sending of GTP-U echo messages to 7:
retransmission-timeout 7