You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Back to Table of Contents

Back to CLI Configure Mode

Back to Address Context - CLI

In this section:

Note

Not applicable to the SBC Software Edition.

When configuring LI through EMA/ERE, you must be 'Calea' user. See "Default Accounts and Passwords" for descriptions of users and permissions.


The

Unable to show "metadata-from": No such page "_space_variables"
provides Lawful Intercept (LI) support using one of two methods:

  • Using ERE with provisioning support from EMA (license required).
  • Using centralized PSX with provisioning support from EMS (license required).

The 

Unable to show "metadata-from": No such page "_space_variables"
supports up to 500 simultaneous LI sessions. 
Unable to show "metadata-from": No such page "_space_variables"
works in coordination with an Intercept Server (IS) to provide call data and call content to law enforcement agencies for calls involving identified intercept subjects. When it receives matching LI criteria in a policy response from ERE (or external PSX in centralized PSX solution), the 
Unable to show "metadata-from": No such page "_space_variables"
routes the call as directed and additionally reports call events to the IS.

The 

Unable to show "metadata-from": No such page "_space_variables"
also sends an RTP copy of the call's voice streams (call content) to an IP address provided by the IS. LI is configured by EMA (or EMS in centralized PSX solution). The target number is uploaded to LI table of ERE (or PSX, with the help of EMS).

You can configure the LI using only the default AddressContext.

See Lawful Intercept page for an in-depth explanation of LI functionality.

Note

The SBC 52x0 and SBC 7000 systems support creating IP Interface Groups containing sets of IP interfaces that are not "processor friendly" (i.e. carried on physical Ethernet ports served by separate processors). However, restrictions exist regarding the usage of such Interface Groups.

(This ability does not apply to the SBC 51x0 and SBC 5400 systems which have only two physical media ports. IP interfaces from the two physical ports may be configured within the same IP Interface Groups without restriction.)

For complete details, refer to Configuring IP Interface Groups and Interfaces.

Command Syntax

As user 'Calea', use the following commands to configure LI:

% set addressContext <default> intercept 
   callDataChannel <callDataChannel> 
   nodeNumber <integer>

As user 'Calea', use the following command to establish the LI call data channel configuration:

The parameter mediaTypeIntercepted must be set to "multimedia" in order to access TCPMediaTransport and UDPMediaTransport parameters.

% set addressContext <default> intercept callDataChannel <callDataChannel_name>
	TCPMediaTransport
		tcpMediaIpAddress <tcp media ip address>
		tcpMediaPort <0-65535>
	UDPMediaTransport
		udpMediaIpAddress <udp media ip address>
		udpMediaPort <0-65535>
	dsrTcpPort <0-65535>
	ipInterfaceGroupName <ipInterfaceGroup_Name> 
	kaTimer <kaTimer_name>
	liPolDipForRegdOodMsgs <disabled | enabled>
	mediaTypeIntercepted <default | multimedia>
	priIpAddress <value> 
	priMode <outofservice | standby> 
	priPort <priPort_name> 
	priState <disabled | enabled> 
	retries <value> 
	secIpAddress <IP_Address> 
	secMode <active | outofservice | standby> 
	secState <disabled | enabled>

As user 'Calea', use the following command in System-level mode to retrieve the LI statistics:

> show status addressContext <addressContext name> intercept

Command Parameters

Intercept Parameters

Parameter

Length/Range

Description

CallDataChannel

1-23

The user-configurable LI Call Data Control Channel name.

(See Intercept CallDataChannel Parameters table below for parameter details)

nodeNumber

0-9999999

The unique global node number to assign to the 

Unable to show "metadata-from": No such page "_space_variables"
which is used by the LI server for identification purposes.

Intercept CallDataChannel Parameters

Parameter

Length/Range

Description

TCPMediaTransport N/A

Specifies the media details of LI Server using TCP mode of transport.

  • tcpMediaIpAddress <ip address> – The LI Server's TCP media IP address where the media is sent.
  • tcpMediaPort <port #> – The LI Server's TCP port where the media is sent. (range: 0-65535)

The parameter mediaTypeIntercepted must be set to "multimedia" to view/configure this parameter.

UDPMediaTransport N/A

Specifies the media details of LI Server using UDP mode of transport.

  • udpMediaIpAddress <ip address> – The LI Server's UDP media IP address where the media is sent.
  • udpMediaPort <port #> – The LI Server's UDP port where the media is sent. (range: 0-65535)

The parameter mediaTypeIntercepted must be set to "multimedia" to view/configure this parameter.

dsrTcpPort  0-65535 <port#> – The LI Server's TCP port where DSR messages are sent. This value is set when mediaTypeIntercepted is set to multimedia.

ipInterfaceGroupName

0-23

<IPIG name> – Name of the IP interface group used to stream to the LI Server.

kaTimer

0-65535

<# seconds> (default = 5) – The keep-alive timer value, in seconds.

liPolDipForRegdOodMsgs N/A

 Use this flag to control the sending of the policy dip to PSX for registered user's Out-Of-Dialog messages.

  • disabled (default) – SBC does not send policy request to PSX for registered out-of-dialog requests (messages).
  • enabled – SBC sends policy request to PSX for registered out-of-dialog requests for interception.
mediaTypeIntercepted N/A

Specifies the type of media interception.

  • default (default) – audio, fax

  • multimedia – audio, fax, clearmode streams in Encapsulation mode.

Direct Signaling Report (DSR) messages are also supported. DSR messages are signaling messages generated by SBC, when a call is intercepted. The DSR message contains extra information in the header along with the actual signaling message PDUs.

priIpAddress

N/A

The primary LI Server's IPv4 address where Call Data Channel messages are sent. (default = 0.0.0.0)

priMode

N/A

Mode of the primary server. Options are:

  • active (default)
  • outOfService
  • standby

priPort

0-65535

The primary LI Server's UDP port where Call Data Channel messages are sent. (default = 0)

pristate

N/A

Use this flag to enable/disable communication to the primary LI Server.

  • enabled (default)
  • disabled

retries

N/A

Number of retries before the LI Call Data Channel is considered as failed. (default = 3)

secIpAddress

N/A

Secondary LI Server's IPv4 address where Call Data Channel messages are sent. (default == 0.0.0.0)

secMode

N/A

Mode of the secondary server. Options are:

  • active
  • outOfService (default)
  • standby

secState

N/A

Use this flag to enable/disable communication to secondary LI Server.

  • enabled (default)
  • disabled

Command Example

calea@SBC01a> show status addressContext default intercept
callDataChannel CDC;
interceptCallDataChannelStatistics default {
    primaryChannelStatus      outOfService;
    secondaryChannelStatus    outOfService;
    StartSuccess              7967;
    StartFailures             0;
    StopSuccess               7967;
    StopFailures              0;
    CallAnswerSuccess         7929;
    CallAnswerFailures        0;
    CallDisconnectSuccess     7965;
    CallDisconnectFailures    0;
    ServiceInstanceSuccess    0;
    ServiceInstanceFailures   0;
    IndicationSuccess         185;
    IndicationFailures        0;
    KeepAliveSuccess          665;
    KeepAliveFailures         0;
    RestartSuccess            1;
    RestartFailures           0;
    RadiusAckReceived         53064;
    StartResponsesReceived    7967;
    primaryTCPChannelStatus   outOfService;
    secondaryTCPChannelStatus outOfService;
    DSRSuccess                0;
    DSRFailures               0;
}


 

  • No labels