Cisco Systems ASR 1000 manual Flexible Address Prefix Provisioning

Page 68

Chapter 7 H.248 Services—Signaling and Control

Flexible Address Prefix Provisioning

Partial wildcards which omit one or more tiers of the termination name are not supported. For example, “operator/sip/*” is not supported, but “operator/sip/*/*/*/*/*/*/*” is. The exception is the full wildcard, which is simply “*”.

You can construct transactions with multiple overlapping wildcarded commands, and when a single transaction contains multiple commands referencing the same terminations, the commands operate in order. However, when a termination is subtracted, any other commands affecting it are ignored.

For example, suppose a media gateway (MG) has a single termination a/b/1. The following are examples of overlapping wildcarded commands and their returns:

“audit value a/*/*, audit value */b/*” returns a/b/1 in the response twice.

“modify a/*/*, modify */b/*” modifies termination a/b/1, with the second modify overwriting the first, and return success to both commands.

“subtract a/*/*, subtract */b/*” subtracts a/b/1 as part of the first subtract and ignores the second subtract.

“subtract a/*/*, modify */b/*” subtracts termination a/b/1 and ignores the modify.

“modify a/*/*, subtract */b/*” does the same as above.

When a wildcard command is ignored under these circumstances, the response to that command is error 431 “No Termination ID matched a wildcard.”

When a non-wildcarded command is ignored, the response is error 430 “Unknown Termination ID.”

Flexible Address Prefix Provisioning

When the Remote Source Address Mask (rsam) property of the ETSI TS 102 333 Gate Management (GM) package is not involved in the flow entry hash key construction, there are no limits to the network mask length, because the mask specific to each flow is used to validate the SBC packets after the flow entry is retrieved (that is, the expected gm/rsam information is obtained from the flow entry that is stored during the signaling/call setup process). However, when features such as Local Source Properties (Address and Port) or Remote Source Address Mask Filtering are used, where flows from various source IPs can connect to the same service destination IP address and port, the source IP network mask (gm/rsam network mask) must be used in the hash key construction in addition to the destination IP and port in order to identify and retrieve a unique flow entry.

Because there is no way to know about the existence of the multiple terminations when the data border element (DBE) tries to construct the hash key for retrieving the flow entry, support has been added for the Flexible Address Prefix Provisioning feature. This feature creates a dummy entry using the service IP and port to construct a hash key when the first termination with this service IP and port combination is established. This dummy entry is shared among all the terminations sharing the same service IP and port for storing network masks, and supports three different lengths of network masks on a given shared address at one time or different shared addresses. Any length of network masks is allowed.

This feature is applicable to both IPv4 and IPv6 flows.

If there is only one network mask in a dummy entry, the DBE uses this network mask to mask out the source IP of the incoming packet and, together with the destination IP/port, constructs a new hash key to locate the corresponding termination flow entry from the flow table.

If multiple network masks are configured in the dummy entry, the DBE masks the source IP of the incoming packets using the multiple network masks stored in the dummy entry sequentially from longest to shortest. If a flow entry is located, then the DBE stops the flow retrieval operation and continues the rest of SBC processing. When a termination is subtracted, its network mask length is removed from the dummy entry if the termination is the last one with that gm/sam network mask length.

Cisco IOS XE Integrated Session Border Controller Configuration Guide for the Cisco ASR 1000 Series Aggregation Services Routers

7-4

OL-15421-01

 

 

Page 67 Page 69
Image 68
Page 67 Page 69
Contents Americas Headquarters Page N T E N T S IiiQoS Bandwidth Allocation Traffic Management Package Support Local Source Properties Address and Port IPv6 Support ViiEvents Storage Until Event Acknowledgment Preface Document Revision HistoryObjectives OL-15421-01 May 5 This document was first publishedIntended Audience OrganizationRelated Documentation Document ConventionsCisco ASR 1000 Series Router Documentation Cisco IOS Release 12.2SR Software PublicationsXii Obtaining Documentation and Submitting a Service Request XiiiXiv General Overview ContentsCisco ASR 1000 Series Routers Overview Distributed and Unified Models Example of SBC High Level ArchitectureOn page 1-3illustrates the unified model Supported Integrated Session Border Controller Features Release Feature Name Related SBC Commands DocumentedPackage segment Cisco IOS Logging Level in Configuring Cisco IOSNone XE ReleaseMedia-address ipv4 Transaction-pending command Deployment of the Integrated Session Border ControllerIntegrated SBC Used for VoIP Interworking Integrated Session Border Controller DBE Deployment Scenario Restrictions for Integrated Session Border Controller Configuring Integrated Session Border ControllerPrerequisites for Integrated Session Border Controller Prerequisites Summary StepsEnables privileged Exec mode Enter your password if promptedEnters global configuration mode Enters into interface configuration modeConfigures the DBE to use a specific IPv4 H.248 control Own address when connecting to the SBEConfigures the H.248 controller for the DBE and enters into Controller H.248 configuration modeExamples Troubleshooting TipsWhat To Do Next Configuring H.248 Logging Level Creates the DBE service on the SBC and enters into SBC-DBE configuration modeSets a specified logging level to generate detailed logs Messages sent and received. Turns on consoleEnabling H.248 Logging Requests and Responses Example H.248 Log Output Configuration ExamplesThis section provides the following configuration examples SBC DBE Configuration Steps Example Making Global Changes to Controllers Example Following example shows the initial SBC configuration == Make change to local portMaking Changes to Individual Controller Settings Example Control-address h248 ipv4 172.25.2.26 controller h248Topology Priority Indicator Yes Emergency Indicator Ieps Indicator YesCisco H.248 Profile Overview of ProfileProfile Packages Package ID VersionPackage ID Version Support Dependent On Dtmf Interworking Information About Dtmf InterworkingSIP to RTP Interworking Configuring Default Duration of a Dtmf EventRTP to SIP Interworking Enters the mode of a DBE service and enters into SBC-DBE Configuration mode. Use the sbc-name argument to specifyName of the DBE service Configures the default duration of a Dtmf eventPage Prerequisites for Implementing Media Address Pools Restrictions for Configuring Media Address PoolsMedia Address Pools Configuring Media Address Pools Information About Media Address PoolsIs configured Enters into SBC-DBE configuration modeConfiguration mode Creates a port range for the configured mediaConfiguring Media Address Pools Example Quality of Service and Bandwidth Management Traffic Management Package SupportPage Parameters on AC and per SDP on Dscp Marking and IP Precedence MarkingDscp Re-Markings Rtcp Policing Using Tman Package Rtcp Policing Not Using Tman PackageQoS Bandwidth Allocation Rtcp PolicingImplementing Two-Rate Three-Color Policing and Marking Two-Rate Three-Color Policing and MarkingEnabling Two-Rate Three-Color Policing and Marking DBE Restrictions Related Commands Page Packages-Signaling and Control Enabling Optional H.248 PackagesAddress Reporting Package Segmentation Package SupportSession Failure Reaction Package Tsc-quiesce Feature Termination State Control PackageTsc-suspend Feature 248.1v3 Support Vlan Package Syntax-Level SupportMGC-Controlled Gateway-Wide Properties Page Services-Signaling and Control DBE Signaling Pinhole Support Extension to H.248 Audit Support Extension to H.248 Termination Wildcarding SupportFlexible Address Prefix Provisioning Local Source Properties Address and Port Locally Hairpinned SessionsTwice Napt Pinhole Hairpinning No Napt Pinhole HairpinningMGC-Specified Local Addresses or Ports Restrictions for Nine-Tier Termination Name Hierarchy Multi-Stream TerminationsNine-Tier Termination Name Hierarchy Information About Nine-Tier Termination Name Hierarchy Displaying the Nine-Tier Termination Name HierarchyDisplaying the Nine-Tier Termination Name Hierarchy Example Abc/voice/gn/0/1/0/1/ac/3Optional Local and Remote Descriptors RTP Specific Behavior Support ServiceChange Notification for Interface Status ChangeRemote Source Address Mask Filtering Sbc interface-id value End Configuration Example Output MAX Timer Tsc-Delay TimerTmax-timercommand configures the value of the T-MAX timer Video on Demand VOD SupportServices-Signaling and Control Video on Demand VOD Support Services-Signaling and Control Video on Demand VOD Support Integrated Session Border Controller Security Firewall Media Pinhole Control Interim Authentication Header Support Latch and Relatch SupportLocal Source Properties Address and Port Napt and NAT Traversal Etsi TS 102 333 version 1.1.2 Gate Management PackageTopology Hiding Traffic Management PolicingTopology Hiding IPv4 Twice Napt IPv6 Inter-Subscriber BlockingQoS Policy-Map-Based Inter-Subscriber Blocking Method Router# show run interface gigabitEthernet 0/1.1101Router# show class-map IPv6intersubscriber IPv6 Support ACL-Based Inter-Subscriber Blocking MethodIPv6 Pinholes IPv6 No Napt Support for Media FlowsIPv6 Single Napt for Signaling Send RecvSingle Napt Signaling Flow No Napt Pinholes Topology Hiding No Napt Pinholes 10-1 High Availability SupportIntegrated Session Border Controller High Availability Hardware Redundancy Software RedundancyRoute Processor Redundancy RPR 10-210-3 SSO SupportIssu Support 10-4 High Availability Support Issu SupportQuality Monitoring and Statistics Gathering 11-1Congestion-threshold Command Billing and Call Detail RecordsDBE Status Notification Enhanced Event Notification and AuditingRetention and Returning of H.248 Event Information 11-3Association Reset Resetting the Media Timeout TimersSilent Gate Deletion 11-411-5 Middlebox Pinhole Timer Expired EventNetwork Package Quality Alert Event 11-6 Provisioned Inactivity TimerRelated Command IN-1 IN-2 IN-3 Pinhole Pinhole timeout Policing Asymmetric policing Ipv6 packetsRTP specific behavior support SBE IN-4IN-5 IN-6
Top Page Image Contents