In this section:

Related articles:

Note

For PCSI LI configuration, refer to Configuring the SBC for Lawful Interception as it is supported only on the D-SBC.


Configuring the Call Data Channel

To configure PCSI LI:

Configuring the Node Number

As user 'Calea', use the following commands to configure LI:

% set addressContext <default> intercept  
   nodeNumber <integer>


Note
  • If the CDC is configured through RAMP, the node number is configured automatically by RAMP.
  • If the CDC is configured through the SBC, the node number must be configured along with the CDC on the SBC.

Configuring SBC Core IPsec

### create and configure IKE and IPsec protection profiles
   
set profiles security ipsecProtectionProfile PRGGSX2_IPSEC_PROT_PROF saLifetimeTime 28800
set profiles security ipsecProtectionProfile PRGGSX2_IPSEC_PROT_PROF espAlgorithms integrity hmacSha1,hmacMd5
set profiles security ipsecProtectionProfile PRGGSX2_IPSEC_PROT_PROF espAlgorithms encryption aesCbc128,_3DesCbc
  
set profiles security ikeProtectionProfile PRGGSX2_IKE_PROT_PROF saLifetimeTime 28800
set profiles security ikeProtectionProfile PRGGSX2_IKE_PROT_PROF algorithms encryption aesCbc128,_3DesCbc
set profiles security ikeProtectionProfile PRGGSX2_IKE_PROT_PROF algorithms integrity hmacSha1,hmacMd5
set profiles security ikeProtectionProfile PRGGSX2_IKE_PROT_PROF dpdInterval noDpd
  
### create IKE peer
  
set addressContext default ipsec peer PRGGSX2 ipAddress 10.220.11.8 preSharedKey 00000000000000000000000000000000 localIdentity type ipV4Addr ipAddress 10.220.41.161
set addressContext default ipsec peer PRGGSX2 remoteIdentity type ipV4Addr ipAddress 10.220.11.22
set addressContext default ipsec peer PRGGSX2 protocol ikev1 protectionProfile PRGGSX2_IKE_PROT_PROF
  
### create an SPD rule for this IKE peer
  
set addressContext default ipsec spd PRGGSX2_SPD state enabled precedence 1001
set addressContext default ipsec spd PRGGSX2_SPD localIpAddr 10.220.41.161 localIpPrefixLen 32 remoteIpAddr 10.220.11.22 remoteIpPrefixLen 32
set addressContext default ipsec spd PRGGSX2_SPD action protect
set addressContext default ipsec spd PRGGSX2_SPD protocol 0
set addressContext default ipsec spd PRGGSX2_SPD protectionProfile PRGGSX2_IPSEC_PROT_PROF
set addressContext default ipsec spd PRGGSX2_SPD mode transport
set addressContext default ipsec spd PRGGSX2_SPD peer PRGGSX2
  
### enable IPsec on the IP interface group
  
set addressContext default ipInterfaceGroup LIG1 enabled

Configuring CDC with IP Interface Group

To configure the IP Interface Group, execute the following command:

set addressContext default intercept callDataChannel CDC ipInterfaceGroupName LIG1
commit

Configuring CDC for Intercept Flavor as PCSI LI

For other options of configuring the intercept flavor as IMS LI, refer to the section Configuring SBC For Lawful Interception.

set addressContext default intercept callDataChannel CDC interceptStandard packetCable vendorId ss8
commit

Configuring CDC for Media Interception

The PCSI LI supports configuring up to 8 mediation servers under the CDC.

set addressContext default intercept callDataChannel CDC interceptStandard mediationServer MS1
commit

Configuring CDC for Media Interception over TCP

set addressContext default intercept callDataChannel CDC mediationServer MS1 media tcp ipAddress fc22:3200::230:7 portNumber 8765 dscpValue 0
commit
set addressContext default intercept callDataChannel CDC mediationServer MS1 media tcp mode inService state enabled
commit

Configuring CDC for RTCP Interception

set addressContext default intercept callDataChannel CDC rtcpInterception enabled
commit

Viewing PCSI LI Configuration

Enter the show commands to view the configurations.

Viewing the Intercept Details

To view the intercept details, execute the following command:

> show status addressContext default intercept callDataChannel
callDataChannel CDC {
    mediationServerMediaStatus MS1 {
        tcpChannelstatus inService;
        tcpPacketsSent   0;
        tcpPacketsLost   0;
        udpPacketsSent   0;
        udpPacketsLost   0;
    }
}
[ok]

Viewing the CDC Configuration

To view the CDC configuration, execute the following command:

show addressContext default intercept callDataChannel CDC
interceptStandard    packetcable;
vendorId             ss8;
ipInterfaceGroupName LIG1;
mediationServer MS1 {
    media {
        tcp {
            ipAddress  10.54.6.1;
            portNumber 8765;
            dscpValue  0;
            mode       inService;
            state      enabled;
        }
    }
}
[ok]
  • No labels