Redirecting Services - Cisco 10000 Series Configuration Manual

Router access network control protocol

Hide thumbs Also See for 10000 Series:

Configuration manual (854 pages)

Troubleshooting manual (70 pages)

Installation manual (14 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

page of 180

/ 180
Contents
Table of Contents
Bookmarks

Table of Contents

Chapter 5

Dynamic Service Policy Modifications

Redirecting Services

To execute Layer 4 redirect actions, Cisco VSA 252 is used in CoA messages. VSA uses the following

syntax for parameterized Layer 4 (L4) redirect messages:

252 binary 0b suffix "l4redirect(parameter1=value,parameter2=value,...)"

Before using VSA 252, you must configure L4 redirection on the ISG. The ISG uses the policy-map

containing redirection as the template for parameterized L4 redirect actions. For example, the following

is an example of a policy configured on the ISG that contains L4 redirection:

policy-map type service l4redirect

5 class type traffic TC-l4redirect

redirect to ip 100.1.1.1 port 1000 duration 100 frequency 100

Redirect Example

The following example shows how to:

•

252 binary 0b suffix "l4redirect(14addr=10.1.1.1,l4port=5000,l4_dur=200,14_freq=200)"

For more information on the ISG service policy parameters for redirect actions, see

page

Parameterized QoS services echo in an ISG service accounting record and ISG services "echo" the

service name in a separate VSA 1 full string relayed as CoA or Access-Accept.

The format for a parameterized QoS service is:

VSA 251 "N<full string>"

VSA252 0b q-p-out=IPOne1-isg-acct

(1)((c-d,voip)2(200000,9216,0,1,0,0)3(5)8(8)9(1));q-p-out=((c-d,voip-control)2(112000,9216

,0,1,0,0)

3(6)5(100)8(16));q-p-in=((c-d,voip)2(200000,9216,0,1,0,0)3(5));q-p-in=((c-d,voip-control)2

(112000,9216,0,1,0,0)3(6))

VSA 251"Nq-p-out=IPOne1-isg-acct

(1)((c-d,voip)2(200000,9216,0,1,0,0)3(5)8(8)9(1));q-p-out=((c-d,voip-control)2(112000,9216

,0,1,0,0)

3(6)5(100)8(16));q-p-in=((c-d,voip)2(200000,9216,0,1,0,0)3(5));q-p-in=((c-d,voip-control)2

(112000,9216,0,1,0,0)3(6))"

COA with:vsa cisco generic 251 binary 0b suffix

"l4redirect2(l4port=7777,l4addr=77.7.7.7,l4dur=2000,l4freq=30)"

DT Request:ssg-service-info [251]

"Nl4redirect2(l4port=7777,l4addr=77.7.7.7,l4dur=2000,l4freq=30)"

OL-14660-03

Configure VSA 252 to redirect the service to IP address 10.1.1.1.

Establish the L4 port as port 5000.

Set the duration of the service to 200 seconds.

Set the time by which redirection should recur to 200 seconds.

5-7.

When a RADIUS server relays a CoA message, the following message appears:

Upon start of the ISG service, the ISG router echoes the following message:

The parameterized ISG service name is abbreviated to the shortest unique name and the ISG signals

it in a service accounting start/stop VSA 251 string as follows:

The VSA 251 string contains the exact parameterized ISG service names as shown:

Cisco 10000 Series Router Access Network Control Protocol Configuration Guide

Configuring Parameterized Services

Table 5-2 on

5-15

Table of Contents

Redirecting Services - Cisco 10000 Series Configuration Manual

Redirecting Services

Related Manuals for Cisco 10000 Series

Related Content for Cisco 10000 Series

Table of Contents