Per-Session Lawful Intercept - Cisco ASR 9000 Series Configuration Manual

Aggregation services router broadband network gateway

Hide thumbs Also See for ASR 9000 Series:

Command reference manual (1138 pages)

Routing configuration manual (702 pages)

Reference manual (696 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

page of 214

/ 214
Contents
Table of Contents
Bookmarks

Table of Contents

Configuring Subscriber Features

Cisco ASR 9000 Series Router supports the Cisco Service Independent Intercept (SII) architecture and

PacketCable

customer compliance with applicable regulations but rather provide tools that can be used by SPs and ISPs

to construct an Lawful Intercept compliant network.

BNG supports the

This guide does not address legal obligations for the implementation of lawful intercept. Service providers

Caution

are responsible for ensuring that network complies with applicable lawful intercept statutes and regulations.

It is recommended that legal advice be sought to determine obligations.

Note

For more information about Lawful Intercept-related router configuration, see Implementing Lawful

Intercept chapter in Cisco ASR 9000 Series Aggregation Services Router System Security Configuration

Guide.

Per-session Lawful Intercept

Lawful interception of all Layer 2 or Layer 3 traffic on a specified subscriber interface, on both ingress as

well egress directions, and sending the replicated stream to mediation device, is called the per-session Lawful

Intercept. This Lawful Intercept implements IPv4, IPv6, and multicast traffic interception using the

Cisco-defined MIBs. By default, the SNMP-based Lawful Intercept feature is enabled on the Cisco ASR 9000

Series Router, which allows you to configure the taps. For more information about disabling SNMP-based

Lawful Intercept, see

The subscriber session is identified by Account-session-ID, which acts as a key in identifying the specified

subscriber interface for the subscriber user, whose traffic is getting intercepted.

Lawful Intercept, in general, can be implemented using either SII architecture or PacketCable

The Cisco IOS-XR implementation of SNMP-based Lawful Intercept is based on service-independent intercept

(SII) architecture. SNMPv3 authenticates data origin and ensures that the connection from Cisco ASR 9000

Series Router to the mediation device is secure. This ensures that unauthorized parties cannot forge an intercept

target.

1 PacketCable

architecture addresses device interoperability and product compliance issues using the PacketCable

OL-26148-02

TM1

Lawful Intercept architecture. The Lawful Intercept components by themselves do not ensure

Per-session Lawful Intercept

Disabling SNMP-based Lawful Intercept, on page

Cisco ASR 9000 Series Aggregation Services Router Broadband Network Gateway Configuration Guide, Release

for subscribers.

134.

™

Per-session Lawful Intercept

specifications.

Specifications.

4.2.x

133

Table of Contents

Per-Session Lawful Intercept - Cisco ASR 9000 Series Configuration Manual

Per-session Lawful Intercept

Related Manuals for Cisco ASR 9000 Series

Related Content for Cisco ASR 9000 Series

Table of Contents