a11-signalling-packetsip-header-dscp hexa_number
Disables the a11-signalling-packets ip-header-dscp option configuration.
Sets / Restores default value assigned for specified parameter a11-signalling-packets ip-header-dscp.
The following command configures value of DSCP to be set for all outgoing to A11 signaling message 0x3F:
Sets / Restores default value assigned for specified parameter aaa 3gpp2-service-option.
Sets / Restores default value assigned for specified parameter aaa nas-ip-address by default this is disabled.
The following command configures 1.2.3.4:
aaa as-ip-addres 1.2.3.4
If access-flow traffic-validation is enabled for the service and the subscriber then the flows are checked against the filter rules. If the packets does not match the filter rules, and N violations occur in K seconds, the rp connection is downgraded to best-effort flow, if it is not already a best-effort flow.
violations limit: Sets the parameters that determine traffic access violations. This is determined by setting the maximum number of violations within a set time period. must be an integer from 1 through 100000.
The following command enables traffic validation for the current PDSN service and sets the limit allowed to 100 violations within 5 seconds:
Disables the access-network.
realm realm_name
Configures the realm for the access-network. realm_name must be a string from 1 to 128 characters in length.
access-networkrealm realm2
airlink bad-sequence-number { accept | deny [use-deny-code { poorly-formed-request | unsupported-vendor-id}]}
It uses poorly-formed-request option by default to deny a request.
These are optional keywords that used with deny sub-command to deny the A11 RRQ messages that have either an unsupported vendor Id or A11 Requests with bad/poor formation.
unsupported-vendor-id denies request on the basis of vendor Id.
poorly-formed-request will deny the A11 request on the basis of request formation or structure. It is the default deny code for deny sub-command.
When enabled, this command causes the PDSN service to include the Always On Indicators in the Normal Vendor Specific Extension (NVSE) part of an A11 Session Update message to the PCF. The indicator will only be sent for those subscriber sessions in which Always On functionality is enabled as determined after a successful authentication: the 3GPP2-Always-On attribute is set to a value of 1 (Active) for subscribers configured on a AAA server, or the always-on parameter is set for locally configured subscribers.
qci-qos-mapping configures QCI to QoS mapping for this PDSN service.
string a string of size 1 to 63.
authentication { [ allow-noauth ] [ chap chap_priority ] [ mschap mschap_priority ] [ pap pap_priority ] } | [ msid-auth ]
Default: Disabled
chap chap_priority
A chap_priority must be specified in conjunction with this option. Priorities specify which authentication protocol should be attempted first, second, third and so on.
chap_priority must be an integer from 1 through 1000. The lower the integer, the higher the preference. CHAP is enabled by default as the highest preference.
mschap mschap_priority
A mschap_priority must be specified in conjunction with this option. Priorities specify which authentication protocol should be attempted first, second, third and so on.
mschap_priority must be an integer from 1 through 1000. The lower the integer, the higher the preference.
pap pap_priority
Default: 2
A pap_priority must be specified in conjunction with this option. Priorities specify which authentication protocol should be attempted first, second, third and so on.
pap_priority must be an integer from 1 through 1000. The lower the integer, the higher the preference. PAP is enabled by default as the second highest preference.
Important: At least one of the keywords must be used to complete the command.bcmcs { customptt | encrypted grppasswd group_passwd | flow-id value [flow-id-type { flow-id | program-id } ] | grppasswd group_password | grpusrnamegroup_name | ptt { destination-context dest_name | disconnect-dscp-label dscp_label | mtu transmission_unit | rohc-profile-name rohc_profile_name } }
no bcmcs { custom ptt | flow-id value [flow-id-type { flow-id | program-id } | grppasswd | grpusrname | ptt { destination-context | disconnect-dscp-label | mtu | rohc-profile-name } }
flow-id value
grpusrname group_name
Sets the BCMCS group name for RADIUS access requests. This value must be a string from 1 to 127 characters in length.
encrypted grppasswd group_passwd
Set the BCMCS group password for RADIUS access requests. This value must be a string from 1 to 63 characters in length.
ptt {destination-context dest_name | disconnect-dscp-label dscp_label| mtu transmission_unit | rohc-profile-name rohc_profile_name }
destination-context: Specify the intended destination context name. This value must be string of 1 to 79 characters in length.
disconnect-dscp-label: Configures the DSCP label to be present in the In Call Signalling packet based on which In Call Signalling and Media Flows will be disconnected. This value must be a Hexadecimal number between 0x0 and 0xFF.
mtu transmission_unit: Configures maximum transmission unit, This value must be ranging from 100 to 2000. Default is 1500.
rohc_profile_name rohc_profile_name: Profile name of the ROHC compressor and decompressor. This value should be a string of 1 to 63.
Specifies the IP address (address) of the interface configured as the R-P interface. address is specified in dotted decimal notation.
max-subscribers count
Default: 500000
Important: The maximum number of subscribers supported is dependant on the license key and the number of active PACs/PSCs installed in the system. A fully loaded system with 13 active PACs/PSCs can support 2500000 total subscribers. Refer to the license key command for additional information.When configuring the max-subscribers option, be sure to consider the following:
The following command would bind the logical IP interface with the address of 192.168.3.1 to the PDSN service and specifies that a maximum of 600 simultaneous subscriber sessions can be facilitated by the interface/service at any given time.
Sets / Restores default value assigned for specified parameter for data-available-indicator.
Sets / Restores default value assigned for specified parameter for data-over signaling
Important: This is a customer-specific command.defaultsubscriber profile_name
Specifies the name of the configured subscriber profile. profile_name can be between 1 and 127 alpha and/or number characters and is case sensitive.
To configure the PDSN service to apply the rules configured for a subscriber named user1 to every other subscriber session it processes, enter the following command:
Sets / Restores default value assigned for specified parameter for data-over signaling
Important: This is a customer-specific command.Disabling fragmentation may cause the sessmgr to perform outer IP fragmentation of the outgoing packet, if the resulting packet exceeds the MED MTU.
gre { checksum | checksum-verify | ip-header-dscp value { all-control-packets | setup-packets-only } | protocol-type {any | byte-stream | ppp } | reorder-timeout value | segmentation |sequence-mode { none | reorder } | sequence-numbers | threegppp2-ext-header qos-marking }
no gre { checksum | checksum-verify | ip-header-dscp | segmentation | sequence-numbers | threegppp2-ext-headers qos-marking }
default gre { checksum | checksum-verify | ip-header-dscp | protocol-type | reorder-timeout | segmentation | sequence-mode | sequence-numbers | threegppp2-ext-headers qos-marking }
Default: Disabled
|
•
|
value : Represents the DSCP setting. It represents the first six most-significant bits of the ToS field. It can be configured to any hex value from 0x0 through 0x3F.
|
|
•
|
all-control-packets : Dictates that the DSCP marking is to be provided in all GRE control packets.
|
|
•
|
setup-packets-only : Dictates that the DSCP marking is to be provided only in GRE setup packets.
|
any: Specifies that the PDSN service will accept GRE packets encapsulated using any protocol.
byte-stream: Specifies that the PDSN service will accept GRE packets only encapsulated using byte stream. Using byte stream encapsulation, PPP packets are framed at different intervals and sent.
ppp: Specifies that the PDSN service will accept GRE packets only encapsulated using the Point-to-Point Protocol (PPP). Using PPP encapsulation, PPP packets are framed at regular intervals and sent.
Default: 100
Configures max number of milliseconds to wait before processing reordered out-of-sequence GRE packets. milliseconds must be an integer from 0 through 5000.
Default: none
none: Specifies that sequence numbers in packets are ignored and all arriving packets are processed in the order they arrive.
reorder: Specifies that out of sequence packets are stored in a sequencing queue until one of the conditions is met:
The no keyword, enables qos-marking in the gre header based on the tos value in the header.
The gre protocol-type command can be used to prevent the PDSN service from servicing PCFs that use a specific form of encapsulation.
Use the no gre sequence-numbers command to disable the inclusion of GRE sequence numbers in the A10 data path.
Sets / Restores default value assigned for inter-pdsn-handoff mobility-event-indicator. By default it is disabled.
Sets / Restores default value assigned for inter-pdsn-handoff mobility-event-indicator. By default it is disabled.
Default: 699
Important: The UDP port setting on the PCF must match the local-port setting for the PDSN service on the system in order for the two devices to communicate.Use the following command to specify a UDP port of 3950 for the PDSN service to use to communicate with the PCF on the R-P interface:
iplocal-port 3950
Enables/Disables ip source-violation clear-on-valid-packet.
Configure default settings related to ip source-violation.
drop-limit num
Default: 10
Sets the number of allowed source violations within a detection period before forcing a call disconnect. If num is not specified, the value is set to the default.
period secs
Default: 120
The counters are decremented in this manner: reneg-limit counter is reduced by one (1) each time the period value is reached until the counter is zero (0); drop-limit counter is halved each time the period value is reached until the counter is zero (0). If secs is not specified, the value is set to the default.
reneg-limit num
Default: 5
Sets the number of allowed source violations within a detection period before forcing a PPP renegotiation. If num is not specified, the value is set to the default.
If the drop-limit is set to 10, the above process of receiving 5 source violations and renegotiating PPP occurs only once. After the second 5 source violations, the call is dropped. The period timer continues to count throughout this process.
If the configured source-violation period is exceeded at any time before the call is dropped, the reneg-limit counter is checked. If the reneg-limit counter is greater than zero (0), the reneg-limit is decremented by 1. If the reneg-limit counter equals zero, the drop-limit is decremented by half.
The following command sets the drop limit to 15 and leaves the other values at their defaults:
lifetime time
Sets / Restores default value assigned for lifetime as 1800.
Use the no lifetime command to delete a previously configured lifetime setting. If after deleting the lifetime setting you desire to return the lifetime parameter to its default setting, use the default lifetime command.
The following command specifies a time of 3600 seconds (1 hour) for subscriber sessions on this PDSN service:
lifetime 3600
max-retransmissions count
The chassis is shipped from the factory with the Internet maximum number of retransmissions set to 5.
Enables/Disables mobile-ip foreign-agent context
This optional keyword allows you to link the PDSN service to a particular FA service in the specified context. name is the name of the FA service to link to. name is a string of size 1 to 63
Use the no mobile-ip foreign-agent context to delete a previously configured destination context.
context_name is a string of size 1 to 79.
name is a string of size 1 to 63.
min min_length
min_length is any Integer value between 10 to 15, but should be less than max_length specified with max. Default is 10.
max max_length
max_length is any Integer value between 10 to 15, but should be more than min_length specified with min. Default is 15.
domain alias
alias represents the “domain” name that you would like to associate with the context in which AAA functionality is configured. alias can be between 1 and 79 alpha and/or numeric characters and is case-sensitive.
Important: This command should only be used if the PDSN service is configured to allow no authentication using the authentication allow-noauth command.Additionally, the aaa constructed-nai command in the Context Configuration mode can be used to configure a password for constructed NAIs.
If the configuration is no new-call conflict terminate-session-old-pcf system will not send registration update to old PCF on receiving a new call (A11-RRQ(Type1)) request for an existing active/dormant session. The default behavior is to send registration updates.
ExampleThe following command configured a system to send a registration update on receiving an A11-RRQ (Type 1) request for an existing active/dormant session:
Sets / Restores default value assigned for pcf-monitor.
interval seconds
seconds must be an integer in the range from 1 through 3600.
max-inactivity-time seconds
seconds must be an integer from 1 through 3600.
num-retry num
num must be an integer in the range from 0 through 100.
timeout seconds
seconds must be in the range from 1 through 10.
Disables pdsn type0-tft attempt-inner-match.
ip_address must be specified using the standard IPv4 dotted decimal notation or colon notation for IPv6.
ip_address/mask must be specified using the standard IPv4 dotted decimal notation or colon notation for IPv6, followed by the mask.
peer-pcf 131.2.3.4
pma-capability-indicator [ 3gpp2 ]
policy msid-match msid_with_wildcards redirect address [ weight weight_num ] [ address2 [ weight weight_num ]... address16 [ weight weight_num ] ] [ weight weight_num ]
policy overload { redirect address [ weight weight_num ] [ address2 [ weight weight_num ] ... address16 [ weight weight_num ] ] | reject [ use-reject-code { admin-prohibited | insufficient-resources } ] }
policy pcf-zone-match zone_number redirect address [ weight weight_num ] [ address2 [ weightweight_num ] ... address16 [ weight weight_num ] ]
policy msid-match msid_with_wildcards redirect address [ weight weight_num ] [ address2 [ weight weight_num ]... address16 [ weight weight_num ] ] [ weight weight_num ]
msid_with_wildcards: An MSID in which up to 16 digits have been replaced with the wildcard ‘$’. This defines the list of possible matches for incoming calls.
redirect: This option enables a redirect policy for overloading conditions. When a redirect policy is invoked, the PDSN service rejects new sessions with an A11 Registration Reply Code of 88H (unknown PDSN address) and provides the IP address of an alternate PDSN. This command can be issued multiple times.
address: The IP address of an alternate PDSN expressed in IP v4 dotted decimal notation. Up to 16 IP addresses can be specified either in one command or by issuing the redirect command multiple times. If you try to add more than 16 IP addresses to the redirect policy the CLI issues an error message. If you specify an IP address and weight that already exists in the redirect policy the new values override the existing values.
weight weight_num: When multiple addresses are specified, they are selected in a weighted round-robin scheme. Entries with higher weights are more likely to be chosen. If a weight is not specified the entry is automatically assigned a weight of 1. weight_num must be an integer from 1 through 10.
policy overload { redirect address [ weight weight_num ] [ address2 [ weight weight_num ] ... address16 [ weight weight_num ] ] | reject [ use-reject-code { admin-prohibited | insufficient-resources } ] }
redirect: This option enables a redirect policy for overloading conditions. When a redirect policy is invoked, the PDSN service rejects new sessions with an A11 Registration Reply Code of 88H (unknown PDSN address) and provides the IP address of an alternate PDSN. This command can be issued multiple times.
weight weight_num: When multiple addresses are specified, they are selected in a weighted round-robin scheme. Entries with higher weights are more likely to be chosen. If a weight is not specified the entry is automatically assigned a weight of 1. weight_num must be an integer from 1 through 10.
reject: This option will cause any overload traffic to be rejected. The PDSN will send an A11 Registration Reply Code of 82H (insufficient resources).
use-reject-codeadmin-prohibited: When this keyword is specified and traffic is rejected, the error code admin prohibited is returned instead of the error code insufficient resources. This is the default behavior.
use-reject-codeinsufficient-resources: When this keyword is specified and traffic is rejected, the error code insufficient resources is returned instead of the error code admin prohibited.
policy pcf-zone-match zone_number redirect address [ weight weight_num ] [ address2 [ weightweight_num ] ... address16 [ weight weight_num ] ]
zone_number: An integer between 1 and 32 that defines the zone incoming calls must match for redirection.
redirect: This option enables a redirect policy for overloading conditions. When a redirect policy is invoked, the PDSN service rejects new sessions with an A11 Registration Reply Code of 88H (unknown PDSN address) and provides the IP address of an alternate PDSN. This command can be issued multiple times.
address: The IP address of an alternate PDSN expressed in IP v4 dotted decimal notation. Up to 16 IP addresses can be specified either in one command or by issuing the redirect command multiple times. If you try to add more than 16 IP addresses to the redirect policy the CLI issues an error message. If you specify an IP address and weight that already exists in the redirect policy the new values override the existing values.
weight weight_num: When multiple addresses are specified, they are selected in a weighted round-robin scheme. Entries with higher weights are more likely to be chosen. If a weight is not specified the entry is automatically assigned a weight of 1. weight_num must be an integer from 1 through 10.
rrq configures policy for PPP restart after getting mei in rrq.
mei-from-current-pcf mei is received in rrq from current pcf.
suppress-ppp-restart suppresses ppp restart when mei is received in rrq from current pcf
service-option configures R-P service-option to use for specific PDSN service. Must be followed by valid service-option number, ranging from 0 to 1000.
enforce designates enforcement of R-P service-option number.
unknown-cvse configures PDSN service unknown cvse policy.
enforce enforces unknown cvse policy where unknown CVSEs in RRQs will cause Deny
Use the no policy { overload | service-option } command to delete a previously configured policy. If after deleting the policy setting you desire to return the policy parameter to its default setting, use the default policy command.
Caution: Incorrect configuration of the policy msid-match and policy pcf-zone-match keywords could result in sessions failing to be established. For example, if PDSN1 is configured to redirect sessions to PDSN2 while PDSN2 is configured to redirect sessions to PDSN1, a loop is created in which all sessions would fail to be connected. In addition, sessions will not be established if the PDSN to which the sessions are being redirected is unavailable.The following command configures the PDSN service to redirect traffic to two different destinations with weights of 1 and 10 respectively:
tunnel-context context_name
l2tp: Force all subscriber sessions in this PDSN service to use L2TP tunneling.
none: Do not force L2TP tunneling. This is the default.
Important: If the context specified by the ppp tunnel-context context_name command does not have a LAC service configured and tunnel-type is set to l2tp or the call is rejected.
Important: If the PPP tunnel context has not been set or has been cleared with the no ppp tunnel-context command and tunnel-type is set to l2tp, the context where the current PDSN service resides is used. If that context does not have a LAC service configured the call is rejected.To set the tunnel context to the context named context1 and enable forced L2TP tunneling, use the following commands;
qos-profile-id-mapping profile-idid_num { [ description desc ] | [ downlink-bw dl_bw] | [ drop-rate drop_percentage ] | [ latency latency_duration ] | [ qos-class { class-A | class-B | class-C | class-D | class-E | calss-F } ] | [ uplink-bwul_bw ] } +
profile-id id_num
Specifies the profile identifier for QoS parameters to be used as the customized profile ID or modifies the QoS parameters in a profile ID (id_num) coming from RAN.
id_num must be an integer between 0 and 65535.
description desc
desc must be an alpha and/or numeric string between 1 and 32 characters.
downlink-bw dl_bw
dl_bw must be an integer value between 0 and 100000.
drop-rate drop_percentage
drop_percentage must be an integer value between 0 and 1000.
latency latency_duration
latency_duration must be an integer value between 0 and 1000.
uplink-bw ul_bw
ul_bw must be an integer value between 0 and 100000.
The following command sets the downlink bandwidth to 32 kbps, latency duration as 1000 ms, uplink bandwidth to 32 kbps, and QoS class to Class-C for the QoS profile ID 11 in a PDSN service:
qos-update { policy-mismatch | wait-timeout seconds action { disconnect-session | downgrade-to-best-effort | drop-packets } }
Sets the wait time for A11 RRQ for QoS changes. seconds must be an integer from 1 through 1000.
action: configures the action on the wait-timeout
|
•
|
disconnect-session: Drops the call if the A11 RRQ has not been received for the QoS update. This includes all of the IP flows for the session.
|
|
•
|
downgrade-to-best-effort: Drops packets if the A11 RRQ has not been received for the QoS update. Sends the forward traffic over best effort (flow FF or FE if available).
|
|
•
|
drop-packets: Drops packets if the A11 RRQ has not been received for the QoS update.
|
The following command sets wait-timeout to 60 seconds and invokes downgrade-to-best-effort if the A11 RRQ has not been received for the QoS update:
Sets / Restores default value assigned for registration-accept handoff session-disconnect-in-progress.
registration-deny { handoff { closedrp-rp handoff-in-progress | connection-setup-record-absent [ use-deny-code { poorly-formed-request | reason-unspecified } | max-deny-reply-limit num | mismatched-coa-source-address | new-call { connection-setup-record-absent | reverse-tunnel-unavailable } | session-already-active | session-already-closed | session-already-dormant | terminate-session-on-error | use-zero-gre-key}
[ default |no ] registration-deny { handoff { closedrp-rp handoff-in-progress | connection-setup-record-absent } | mismatched-coa-source-address | new-call { connection-setup-record-absent | reverse-tunnel-unavailable } | session-already-active | session-already-closed | session-already-dormant | terminate-session-on-error | use-zero-gre-key}
Sets / Restores default value for registration-deny.
handoff { closedrp-rp handoff-in-progress | connection-setup-record-absent [ use-deny-code { poorly-formed-request | reason-unspecified }
closedrp-rp handoff-in-progress: Configures parameters related to denying handoffs from Closed-RP to RP systems. When enabled the PDSN rejects retransmitted handoff R-P requests when a handoff is already in progress from Closed RP to RP. The deny code used is 'Reason Unspecified'. The default is disabled meaning that the PDSN simply discards such requests.
connection-setup-record-absent [ use-deny-code { poorly-formed-request | reason-unspecified } ]: When enabled the PDSN denies or discards handoff R-P sessions that do not have an Airlink Connection Setup record in the A11 Registration Request. Default is disabled. Default PDSN behavior is to accept such requests.
[ use-deny-code { poorly-formed-request | reason-unspecified }: Sets the specified Registration Deny Code when denying a handoff because of a missing connection setup record.
Configures max number of retries of erroneous registration request message from PCF for a session before PDSN terminates the session. num can be from 1 to 10.
new-call { connection-setup-record-absent [ use-deny-code { poorly-formed-request | reason-unspecified } | reverse-tunnel-unavailable }
connection-setup-record-absent: Configures the PDSN to reject calls that do not have the airlink connection setup record in the RRQ.
use-deny-code { poorly-formed-request | reason-unspecified } When rejecting calls that do not have the airlink setup record, use the specified deny code.
reverse-tunnel-unavailable: Configures the PDSN to reject calls if the GRE key for a user collides with that of another user.
[ defualt | no ] registration-discard { bad-extension | gre-key-change | handoffconnection-setup-record-absent }
Sets / Restores default value assigned for registration-discard .
If this option is used with the pdsn-code-nvse keyword, then pdsn-code-nvse configuration is disabled.
If this option is used with the wait-timeout keyword, a separate A11 timer is not used. The PDSN waits for the ppp retransmit-timeout and then sends the A11 Update. If a value is provided, then the "ppp retransmit-timeout" is ignored and a separate A11 timeout is started immediately upon sending the LCP Term-Ack. The A11 Update is then sent when the timer expires.
The number of seconds to wait. secs must be an integer in the range from 0 through 16.
The wait-tiimeout keyword configures the PDSN to wait the specified amount of time before sending out a Registration-Update to clear the Session from the PCF.
Enables/Disables the retransmission-timeout.
Sets / Restores default value assigned for retransmission-timeout.
Use the retransmission timeout command in conjunction with the max-retransmissions command in order to configure the PDSN services behavior when it does not receive a response from a particular PCF.
Use the no retransmission-timeout command to delete a previously configured timeout value. If after deleting the lifetime setting you desire to return the lifetime parameter to its default setting, use the default retransmission-timeout command.
service-option number
Sets / Restores default value assigned for service-option.
Important: Option 67 is used for auxiliary connections for Rev-A calls. PPP encapsulation of data packets does not flow over this service option connection. ROHC can be performed without PPP for this service option.Use the no service-option number command to delete a previously configured service option. If after deleting the service option setting you desire to return the service option parameter to its default setting, use the default service-option command.
Sets / Restores default value assigned for setup-timeout.
The maximum amount of time, in seconds, to allow for setup of a session. seconds must be an integer from 1 through 1000000
setup-timeout 300
When a session attempts PPP authentication, it is assumed that it is a Simple-IP session and it is disconnected before the user is authenticated (RADIUS or local authentication). Also, if allow-noauth is enabled and PPP authentication is not performed, after IPCP the session is disconnected if it is discovered that it is a Simple-IP session.
spiremote-address { pcf_ip_address | ip_addr_mask_combo } spi-number number { encrypted secret enc_secret | secret secret } [ description string ] [ hash-algorithm { md5 | rfc2002-md5 } ] [ replay-protection { nonce | timestamp } ] [ timestamp-tolerance tolerance ] [ zone zone_id ]
pcf_ip_address: Specifies the IP address of the PCF. pcf_ip_address is an IP address expressed in IP v4 dotted decimal notation.
ip_addr_mask_combo: Specifies the IP address of the PCF and specifies the IP address network mask bits. ip_addr_mask_combo must be specified using the form ‘IP Address/Mask Bits’ where the IP address must either be an IPv4 address expressed in dotted decimal notation or an IPv6 address expressed in colon notation and the mask bits are a numeric value which is the number of bits in the subnet mask.
spi-number number
encrypted secret enc_secret: Specifies the encrypted shared key (enc_secret) between the PCF and the PDSN service. enc_secret must be between 1 and 254 alpha and/or numeric characters and is case sensitive.
secret secret: Specifies the shared key (secret) between the PCF and the PDSN services. secret must be between 1 and 127 alpha and/or numeric characters and is case sensitive.
The encrypted keyword is intended only for use by the chassis while saving configuration scripts. The system displays the encrypted keyword in the configuration file as a flag that the variable following the secret keyword is the encrypted version of the plain text secret key. Only the encrypted secret key is saved as part of the configuration file.
description string
This is a description for the SPI. string must be an alpha and or numeric string of from 1 through 31 characters.
md5: Configures the hash-algorithm to implement MD5 per RFC 1321.
rfc2002-md5: Configures the hash-algorithm to implement keyed-MD5 per RFC 2002.
nonce: Configures replay protection to be implemented using NONCE per RFC 2002.
timestamp: Configures replay protection to be implemented using timestamps per RFC 2002.
timestamp-tolerance tolerance
zone zone_id
Important: The SPI configuration on the PCF must match the SPI configuration for the PDSN service on the system in order for the two devices to communicate properly.Use the no version of this command to delete a previously configured SPI.
This command used with zone zone_id redirects all calls on the basis of PCF zone to the specific PDSN on the basis of parameters configured at policy pcf-zone-match command.
The following command deletes the configured SPI of 400 for an PCF with an IP address of 172.100.3.200:
The following command creates the configured SPI of 400 for an PCF with an IP address of 172.100.3.200 and zone id as 11:
Configures the TFT validation wait time value for A11 RRQ for QoS changes. seconds must be an integer from 1 through 65535.
Default: 0
clear low_thresh
Default:0
Important: This value is ignored for the Alert model. In addition, if this value is not configured for the Alarm model, the system assumes it is identical to the high threshold.|
•
|
Enter condition: Actual number of discarded PPP send packets > High Threshold
|
|
•
|
Clear condition: Actual number of discarded PPP send packets £ Low Threshold
|
The following command configures a number of discarded PPP send packets threshold of 1000 and a low threshold of 500 for a system using the Alarm thresholding model:
clear low_thresh
Important: This value is ignored for the Alert model. In addition, if this value is not configured for the Alarm model, the system assumes it is identical to the high threshold.|
•
|
Enter condition: Actual number of Discarded A11 Registration Acknowledgements > High Threshold
|
|
•
|
Clear condition: Actual number of Discarded A11 Registration Acknowledgements £ Low Threshold
|
The following command configures a number of Discarded A11 Registration Acknowledgements threshold of 1000 and a low threshold of 500 for a system using the Alarm thresholding model:
clear low_thresh
Important: This value is ignored for the Alert model. In addition, if this value is not configured for the Alarm model, the system assumes it is identical to the high threshold.|
•
|
Enter condition: Actual number of A11 Registration Response failures > High Threshold
|
|
•
|
Clear condition: Actual number of A11 Registration Response failures £ Low Threshold
|
The following command configures a number of A11 Registration Response failures threshold of 1000 and a low threshold of 500 for a system using the Alarm thresholding model:
clear low_thresh
Important: This value is ignored for the Alert model. In addition, if this value is not configured for the Alarm model, the system assumes it is identical to the high threshold.|
•
|
Enter condition: Actual number of Discarded A11 Registration Requests > High Threshold
|
|
•
|
Clear condition: Actual number of Discarded A11 Registration Requests £ Low Threshold
|
The following command configures a number of Discarded A11 Registration Requests threshold of 1000 and a low threshold of 500 for a system using the Alarm thresholding model:
clear low_thresh
Important: This value is ignored for the Alert model. In addition, if this value is not configured for the Alarm model, the system assumes it is identical to the high threshold.|
•
|
Enter condition: Actual number of calls setup per second > High Threshold
|
|
•
|
Clear condition: Actual number of calls setup per second £ Low Threshold
|
The following command configures a number of calls setup per second threshold of 1000 and a low threshold of 500 for a system using the Alarm thresholding model:
