About the SCE-Sniffer RADIUS Login Event Generator
Revised: November 8, 2010, OL-21081-02
The Service Control Management Suite (SCMS) Subscriber Manager (SM) SCE-Sniffer RADIUS Login Event Generator (LEG) is a software module that receives Raw Data Record (RDR) messages containing RADIUS information from Service Control Engine (SCE) devices configured with a RADIUS sniffer service. The SCE-Sniffer RADIUS LEG is an extension of the SM software and runs as part of the SM process.
Information About the SCE-Sniffer RADIUS LEG
The SCE device analyzes RADIUS traffic that traverses it (1) and reports the RADIUS transactions to the LEG using the RDR protocol (2). The LEG associates the RDR data to subscriber properties (name, subscriber IP, domain, and policies) and triggers a login or logout operation to the SM (3) as shown in Figure 20-1.
Figure 20-1 SCE-Sniffer RADIUS LEG Operation
RADIUS Integration Overview
This implementation of the SCE-Sniffer RADIUS LEG supports RFC 2865 (RADIUS Protocol) and RFC 2866 (RADIUS Accounting).
The LEG uses the following packet types:
•Accounting-Start—Initiates login operations (with subscriber IP, domain, and policies).
•Accounting-Interim-Update—Initiates login operations (with subscriber IP, domain, and policies).
•Accounting-Stop—Initiates logout operations.
•Access-Request—Initiates domain and policies associations.
•Access-Accept—Initiates login operations (with subscriber IP and policies).
The LEG uses the following attributes:
•User Name (Attribute no. 1)—Default attribute for subscriber ID.
•NAS-IP-Address (Attribute no. 4)—Associates the NAS IP address as the subscriber's domain (optional).
•Framed-IP-Address (Attribute no. 8)—Associates an IP address to the subscriber.
•Framed-IP-Netmask (Attribute no. 9)—Associates an IP netmask to the subscriber.
•Framed-Route (Attribute no. 22)—Associates an IP/IP-range to the subscriber.
•NAS-Identifier (Attribute no. 32)—Associates the NAS identifier as the subscriber's domain (optional).
•Acct-Status-Type (Attribute no. 40)—Distinguishes between the different accounting transactions.
To associate policies to the subscribers, configure the LEG with the attribute that contains the policy information. The Vendor Specific attribute (Attribute no. 26) can be used to associate policies to the subscribers in addition to all other RADIUS attributes of type string or integer.
To determine the subscriber ID, configure the LEG with the attribute that contains the subscriber ID information. The Vendor Specific attribute (Attribute no. 26) can be used to determine the subscriber ID in addition to all other RADIUS attributes of type string. By default, the User-Name (Attribute no. 1) is configured to hold the subscriber ID.