Access Control List And Access Control List-Based Forwarding - Cisco ASR 9000 Series Configuration Manual

Aggregation services router broadband network gateway

Hide thumbs Also See for ASR 9000 Series:

Command reference manual (1138 pages)

Routing configuration manual (702 pages)

Reference manual (696 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

page of 214

/ 214
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring Subscriber Features

Subscriber features that are configured on BNG enable service providers to deploy certain specific

functionalities like restricting the use of certain network resources, allowing Law Enforcement Agencies

(LEAs) to conduct electronic surveillance, providing multicast services to the subscriber, and so on. The

subscriber features covered in this chapter are:

•

Access Control List and Access Control List-based Forwarding

An Access Control List (ACL) is used to define access rights for a subscriber. It is also used for filtering

content, blocking access to various network resources, and so on.

Certain service providers need to route certain traffic be routed through specific paths, instead of using the

path computed by routing protocols. For example, a service provider may require that voice traffic traverse

through certain expensive routes, but data traffic to use the regular routing path. This is achieved by specifying

the next-hop address in the ACL configuration, which is then used for forwarding packet towards its destination.

This feature of using ACL for packet forwarding is called ACL-based Forwarding (ABF).

The ACL is defined through CLI or XML; however, it can be applied to a subscriber session either through

a dynamic-template, or through VSAs from RADIUS. Deploying ABF (using ACL) involves these stages:

• Defining an ACL, see

• Applying the ACL to an access-interface, see

OL-26148-02

Access Control List and Access Control List-based Forwarding, page 129

Support for Lawful Intercept, page 132

Subscriber Session on Ambiguous VLANs , page 138

uRPF, page 140

Multicast Services, page 141

DAPS Support, page 153

HTTP Redirect Using PBR, page 154

Additional References, page 167

Configuring Access-Control Lists, on page

Cisco ASR 9000 Series Aggregation Services Router Broadband Network Gateway Configuration Guide, Release

C H A P T E R

130.

Activating ACL, on page

131.

4.2.x

129

Table of Contents

Access Control List And Access Control List-Based Forwarding - Cisco ASR 9000 Series Configuration Manual

Access Control List and Access Control List-based Forwarding

Related Manuals for Cisco ASR 9000 Series

Related Content for Cisco ASR 9000 Series

Table of Contents