Important: Information about all commands in this chapter can be found in the Command Line Interface Reference.
The following table lists the information that is required to configure the HSGW context on an HSGW.
eAN/ePCF IP address:Specifies the IP address of the eAN/ePCF. The HSGW service allows the creation of a security profile associated with a particular eAN/ePCF. SPI number:Specifies the SPI (number) which indicates a security context between the eAN/ePCF and the HSGW. Encrypted secret:Configures the shared-secret between the HSGW service and the eAN/ePCF. This command can also be non-encrypted.
Step 1
Step 1 Set system configuration parameters such as activating PSCs by applying the example configurations found in the System Administration Guide.
Step 2
Step 3
Step 4
Step 5
Step 6
Step 1
Step 2
Step 3
Step 4
Step 5
Step 6 interface <lcl_cntxt_intrfc_name>server <server-type>port ethernet <slot#/port#>bind interface <lcl_cntxt_intrfc_name> local
• Remote access is configured using the command as shown in the local context above. Multiple server types are available. For more information on remote access server types, refer to the Configuring the System for Remote Access section in the Getting Started chapter of the System Administration Guide and the Context Configuration Mode Commands chapter in the Command Line Interface Reference.context <hsgw_context_name> -noconfirminterface <a10-a11_interface_name>ip address <ipv4_address>policy accounting <rf_acct_policy_name> -noconfirmaccounting-level {type}operator-string <string>ip name-servers <ipv4_or_ipv6_address>dns-client <name>
• Set the accounting policy for the Rf (off-line charging) interface. The accounting level types supported by the HSGW are: PDN, PDN-QCI, QCI, and subscriber. Refer to the Accounting Profile Configuration Mode Commands chapter in the Command Line Interface Reference for more information on this command.
• context <hsgw_context_name>context <hsgw_context_name> -noconfirmhsgw-service <hsgw_service_name> -noconfirmcontext <mag_context_name> -noconfirminterface <s2a_interface_name>ip address <ipv6_address>context <mag_context_name> -noconfirmmag-service <mag_service_name> -noconfirm
• A separate MAG context with a MAG service can be created to segregate the HSGW network from the MAG network. Refer to the Configuring the HSGW Service section for additional information on using a MAG service in a separate context.
Step 1
Step 2 context <hsgw_context_name> -noconfirmhsgw-service <hsgw_service_name> -noconfirmassociate accounting-policy <rf_name>fqdn <domain_name>bind address <a10-a11_interface_address>
• The accounting policy is configured in the HSGW context using the policy accounting command. This is the pointer to the accounting policy configuration for the Rf (off-line charging) interface. Refer to Creating and Configuring an HSGW Context for more information.
• The plmn id command configures Public Land Mobile Network identifiers used to determine if a mobile station is visiting, roaming, or belongs to this network.
• The gre commands are used to configure Generic Routing Encapsulation (GRE) parameters for the A10 protocol.
• The dns-pgw context command can be used if the DNS client is configured in a different context from the HSGW service.
•
•
• The HSGW defaults to a MAG service configured in the same context unless the mobile-access-gateway context <mag_context_name> mag-service <name> command is used as defined above.context <mag_context_name> -noconfirmmag-servics <mag_service_name> -noconfirmbind address <s2a_interface_address>
•
Step 1
Step 2
Step 3 context <aaa_context_name> -noconfirminterface <aaa_sta_ipv4_interface_name>ip address <ipv4_address>interface <pcrf_gxa_ipv6_interface_name>ip address <ipv6_address>interface <ocs_rf_ipv4_interface_name>ip address <ipv4_address>diameter accounting endpoint <rf_ofcs_server>diameter authentication endpoint <sta_cfg_name>ims-auth-service <gxa_ims_service_name>diameter origin endpoint <gxa_cfg_name>diameter dictionary <gxa_dictionry_name>diameter host-select table <#> algorithm round-robindiameter authentication endpoint <sta_cfg_name>diameter endpoint <sta_cfg_name>origin realm <realm_name>route-entry peer <sta_cfg_name>diameter endpoint <gxa_cfg_name>origin realm <realm_name>route-entry peer <gxa_cfg_name>diameter endpoint <rf_cfg_name>origin realm <realm_name>route-entry peer <rf_cfg_name>context <aaa_context_name> -noconfirmims-auth-service <gxa_ims_service_name>rohc-profile-name <name>
• A RoHC profile name is optional and dependant on if RoHC is being configured for this HSGW. RoHC profiles are configured through the Global Configuration Mode. Refer to the Optional Header Compression Configuration section for the RoHC profile configuration and the Command Line Interface Reference for detailed information about RoHC profile commands.qci-qos-mapping <name>
• The configuration example shown above only shows one keyword example. Refer to the QCI - QOS Mapping Configuration Mode Commands chapter in the Command Line Interface Reference for more information on the qci command and other supported keywords.delay-release-hc-context-timer <seconds>Save your HSGW configuration to flash memory, an external memory device, and/or a network location using the Exec mode command save configuration. For additional information on how to verify and save configuration files, refer to the System Administration Guide and the Command Line Interface Reference.context <hsgw_context_name> -noconfirmhsgw-service <hsgw_service_name> -noconfirmrsvp retransmission-timeout <seconds>
• The rsvp max-retransmissions command specifies the maximum retransmission count of RP control packets. <count> must be an integer value between 1 and 1000000. Default count is 5.
• The rsvp retransmission-timeout command specifies the maximum amount of time, in seconds, to allow for retransmission of RP control packets. <seconds> must be an integer value between 1 and 1000000. Default is 3 seconds.
|
| Cisco Systems Inc. |
| Tel: 408-526-4000 |
| Fax: 408-527-0883 |