HSGW Configuration


HSGW Configuration
 
This chapter provides configuration information for the HRPD Serving Gateway (HSGW).
Important: Information about all commands in this chapter can be found in the Command Line Interface Reference.
Because each wireless network is unique, the system is designed with a variety of parameters allowing it to perform in various wireless network environments. In this chapter, only the minimum set of parameters are provided to make the system operational. Optional configuration commands specific to the HSGW product are located in the Command Line Interface Reference.
The following information is provided in this chapter:
Configuring the System to Perform as a Standalone HSGW
This section provides a high-level series of steps and the associated configuration file examples for configuring the system to perform as an HSGW in a test environment. For a more robust configuration example, refer to the Sample Configuration Files appendix. Information provided in this section includes the following:
Information Required
The following sections describe the minimum amount of information required to configure and make the HSGW operational on the network. To make the process more efficient, it is recommended that this information be available prior to configuring the system.
There are additional configuration parameters that are not described in this section. These parameters deal mostly with fine-tuning the operation of the HSGW in the network. Information on these parameters can be found in the appropriate sections of the Command Line Interface Reference.
Required Local Context Configuration Information
The following table lists the information that is required to configure the local context on an HSGW.
Required HSGW Context Configuration Information
The following table lists the information that is required to configure the HSGW context on an HSGW.
eAN/ePCF IP address:Specifies the IP address of the eAN/ePCF. The HSGW service allows the creation of a security profile associated with a particular eAN/ePCF.
SPI number:Specifies the SPI (number) which indicates a security context between the eAN/ePCF and the HSGW.
Encrypted secret:Configures the shared-secret between the HSGW service and the eAN/ePCF. This command can also be non-encrypted.
Required MAG Context Configuration Information
The following table lists the information that is required to configure the MAG context on an HSGW.
Required AAA Context Configuration Information
The following table lists the information that is required to configure the AAA context on an HSGW.
How This Configuration Works
The following figure and supporting text describe how this configuration with a single source and destination context is used by the system to process a PMIP call originating in the eHRPD network.
Step 1
Step 2
Step 3
Step 4
Step 5
Step 6
Step 7
Step 8
Step 9
Step 10
Step 11
Configuration
To configure the system to perform as a standalone HSGW in an eHRPD network environment, review the following graphic and subsequent steps.
Step 1
Step 2
Step 3
Step 4
Step 5
Step 6
Initial Configuration
Step 1
Step 2
Step 3
Step 4
Step 5
Step 6
Modifying the Local Context
Use the following example to set the default subscriber and configure remote access capability in the local context:
configure
   context local
      interface <lcl_cntxt_intrfc_name>
         ip address <ip_address> <ip_mask>
         exit
      server <server-type>
         exit
      subscriber default
         exit
      administrator <name> encrypted password <password> ftp
      ip route <ip_addr/ip_mask> <next_hop_addr> <lcl_cntxt_intrfc_name>
      exit
   port ethernet <slot#/port#>
      no shutdown
      bind interface <lcl_cntxt_intrfc_name> local
      end
Notes:
Creating and Configuring an HSGW Context
Use the following example to create an HSGW context and Ethernet interfaces, and bind the interfaces to configured Ethernet ports. The interfaces created in this configuration support the A10/A11 connection to the eAN/ePCF and the connection to the P-GW.
configure
   context <hsgw_context_name> -noconfirm
      interface <a10-a11_interface_name>
         ip address <ipv4_address>
         exit
      policy accounting <rf_acct_policy_name> -noconfirm
         accounting-level {type}
         operator-string <string>
         exit
      ip domain-lookup
      ip name-servers <ipv4_or_ipv6_address>
      dns-client <name>
      port ethernet <slot_number/port_number>
         no shutdown
         bind interface <a10-a11_interface_name> <hsgw_context_name>
         end
Notes:
Set the accounting policy for the Rf (off-line charging) interface. The accounting level types supported by the HSGW are: PDN, PDN-QCI, QCI, and subscriber. Refer to the Accounting Profile Configuration Mode Commands chapter in the Command Line Interface Reference for more information on this command.
The ip domain-lookup, ip name-servers, and dns-client commands are used during P-GW FQDN discovery.
Configuring Static IP Routes
Use the following example to configure static IP routes for data traffic between the HSGW and the eAN/ePCF and/or P-GW:
configure
   context <hsgw_context_name>
      ip route <addr/mask> next-hop <epcf_addr> <hsgw_epcf_intrfc_name>
      ipv6 route <ipv6_addr/prefix> next-hop <pgw_addr> interface <s2a_intrfc_name>
      end
Notes:
Creating an HSGW Service
Use the following configuration example to create the HSGW service:
configure
   context <hsgw_context_name> -noconfirm
      hsgw-service <hsgw_service_name> -noconfirm
         end
Creating and Configuring MAG Context
Use the following example to create a MAG context and Ethernet interface, and bind the interface to configured Ethernet ports. The interface created in this configuration supports the S2a connection to the P-GW.
configure
   context <mag_context_name> -noconfirm
      interface <s2a_interface_name>
         ip address <ipv6_address>
         exit
      exit
   port ethernet <slot_number/port_number>
      no shutdown
      bind interface <s2a_interface_name> <mag_context_name>
      end
Notes:
Creating a MAG Service
Use the following configuration example to create the MAG service:
configure
   context <mag_context_name> -noconfirm
      mag-service <mag_service_name> -noconfirm
         end
Notes:
HSGW and MAG Service Configuration
Step 1
Step 2
Configuring the HSGW Service
Use the following configuration example to set parameters including binding the HSGW-eAN/ePCF interface to this service and configuring the SPI between the HSGW and eAN/ePCF:
configure
   context <hsgw_context_name> -noconfirm
      hsgw-service <hsgw_service_name> -noconfirm
         mobile-access-gateway context <mag_context_name> mag-service <mag_service_name>
         associate accounting-policy <rf_name>
         spi remote-address <epcf_address> spi-number <num> encrypted secret <secret>
         plmn id mcc <number> mnc <number>
         fqdn <domain_name>
         gre sequence-mode recorder
         gre flow-control action resume-session timeout <msecs>
         gre segmentation
         unauthorized-flows qos-update wait-timeout <seconds>
         ip header-compression rohc
         bind address <a10-a11_interface_address>
         end
Notes:
The accounting policy is configured in the HSGW context using the policy accounting command. This is the pointer to the accounting policy configuration for the Rf (off-line charging) interface. Refer to Creating and Configuring an HSGW Context for more information.
The plmn id command configures Public Land Mobile Network identifiers used to determine if a mobile station is visiting, roaming, or belongs to this network.
The gre commands are used to configure Generic Routing Encapsulation (GRE) parameters for the A10 protocol.
The dns-pgw context command can be used if the DNS client is configured in a different context from the HSGW service.
Configuring the MAG Service
Use the following example to configure the MAG service:
configure
   context <mag_context_name> -noconfirm
      mag-servics <mag_service_name> -noconfirm
         information-element-set custom1
         bind address <s2a_interface_address>
         end
Notes:
AAA and Policy Configuration
Step 1
Step 2
Step 3
Creating and Configuring the AAA Context
Use the following example to create and configure a AAA context including diameter support and policy control, and bind ports to interfaces supporting traffic between this context and a AAA server and PCRF:
configure
   context <aaa_context_name> -noconfirm
      interface <aaa_sta_ipv4_interface_name>
         ip address <ipv4_address>
         exit
      interface <pcrf_gxa_ipv6_interface_name>
         ip address <ipv6_address>
         exit
      interface <ocs_rf_ipv4_interface_name>
         ip address <ipv4_address>
         exit
      subscriber default
         exit
      aaa group default
         diameter accounting endpoint <rf_ofcs_server>
         diameter authentication endpoint <sta_cfg_name>
         diameter accounting server <rf_ofcs_server> priority <num>
         diameter authentication server <3gpp_aaa_server> priority <num>
         exit
      ims-auth-service <gxa_ims_service_name>
         policy-control
            diameter origin endpoint <gxa_cfg_name>
            diameter dictionary <gxa_dictionry_name>
            diameter host-select table <#> algorithm round-robin
            diameter host-select row-precedence <#> table <#> host <gxa_cfg_name>
            exit
         exit
      aaa group default
         diameter authentication dictionary <name>
         diameter authentication endpoint <sta_cfg_name>
         diameter authentication server <sta_cfg_name> priority <#>
         exit
      diameter endpoint <sta_cfg_name>
         origin realm <realm_name>
         origin host <name> address <aaa_ctx_ipv4_address>
         peer <sta_cfg_name> realm <name> address <aaa_ipv4_address>
         route-entry peer <sta_cfg_name>
         exit
      diameter endpoint <gxa_cfg_name>
         origin realm <realm_name>
         origin host <name> address <aaa_ctx_ipv6_address>
         peer <gxa_cfg_name> realm <name> address <pcrf_ip_addr> port <#>
         route-entry peer <gxa_cfg_name>
         end
      diameter endpoint <rf_cfg_name>
         origin realm <realm_name>
         origin host <name> address <aaa_ctx_ipv4_address>
         peer <rf_cfg_name> realm <name> address <ocs_ip_addr> port <#>
         route-entry peer <rf_cfg_name>
         end
Modifying the Default Subscriber
Use the following example to modify the default subscriber configuration in the AAA context:
configure
   context <aaa_context_name> -noconfirm
      subscriber default
         ims-auth-service <gxa_ims_service_name>
         rohc-profile-name <name>
         end
Notes:
Configuring QCI-QoS Mapping
Use the following example to create and map QCI values to enforceable QoS parameters:
configure
   qci-qos-mapping <name>
      qci 1 user-datagram dscp-marking <hex>
      qci 3 user-datagram dscp-marking <hex>
      qci 9 user-datagram dscp-marking <hex>
      exit
Notes:
The configuration example shown above only shows one keyword example. Refer to the QCI - QOS Mapping Configuration Mode Commands chapter in the Command Line Interface Reference for more information on the qci command and other supported keywords.
Optional Header Compression Configuration
Use the following example to configure a Robust Header Compression profile:
configure
   rohc-profile profile-name <name>
      common-options
         delay-release-hc-context-timer <seconds>
         inactive-traffic-release-hc-context-timer <seconds>
Verifying and Saving the Configuration
Save your HSGW configuration to flash memory, an external memory device, and/or a network location using the Exec mode command save configuration. For additional information on how to verify and save configuration files, refer to the System Administration Guide and the Command Line Interface Reference.
Configuring Optional Features on the HSGW
The configuration examples in this section are optional and provided to cover the most common uses of the HSGW in a live network. The intent of these examples is to provide a base configuration for testing.
Configuring Network Initiated QoS
The configuration example in this section enables the ability to use network initiated QoS functionality.
In HSGW Service Configuration Mode, configure network initiated QoS as follows:
configure
   context <hsgw_context_name> -noconfirm
      hsgw-service <hsgw_service_name> -noconfirm
         network-initiated-qos
         rsvp max-retransmissions <count>
         rsvp retransmission-timeout <seconds>
         end
Notes:
The rsvp max-retransmissions command specifies the maximum retransmission count of RP control packets. <count> must be an integer value between 1 and 1000000. Default count is 5.
The rsvp retransmission-timeout command specifies the maximum amount of time, in seconds, to allow for retransmission of RP control packets. <seconds> must be an integer value between 1 and 1000000. Default is 3 seconds.
 
 

Cisco Systems Inc.
Tel: 408-526-4000
Fax: 408-527-0883