Disabling Snmp-Based Lawful Intercept - Cisco ASR 9000 Series Configuration Manual
Aggregation services router broadband
network gateway
Hide thumbs
Also See for ASR 9000 Series:
- Command reference manual (1138 pages) ,
- Routing configuration manual (702 pages) ,
- Reference manual (696 pages)
Table of Contents
Advertisement
Per-session Lawful Intercept
To implement lawful intercept, you must understand how the SNMP server functions. For this reason,
Note
carefully review the information described in the module Implementing SNMP in Cisco ASR 9000 Series
Aggregation Services Router System Management Configuration Guide.
Lawful intercept must be explicitly disabled. It is automatically enabled on a provisioned router after
installing and activating the asr9k-li-px.pie. However, you should not disable LI if there is an active tap
in progress, because this deletes the tap.
Management plane must be configured to enable SNMPv3. Allows the management plane to accept SNMP
commands, so that the commands go to the interface (preferably, a loopback) on the router. This allows
the mediation device (MD) to communicate with a physical interface. For more information about
Management Plane Protection feature, see
on page 223
Device to Intercept VoIP and Data Sessions, on page
Lawful Intercept MIBs
An external mediation device also known as collectors can create IPv4 or IPv6 address based TAPs using
IP-TAP-MIB. The SNMPv3 protocol is used to provision the mediation device (defined by CISCO-TAP2-MIB)
and the Taps(defined by CISCO-USER-CONNECTION-TAP-MIB). The Cisco ASR 9000 Series Router
supports a total of 511 concurrent taps that includes both SNMP and Radius.
Lawful intercept uses these MIBs for interception:
• CISCO-TAP2-MIB—Used for lawful intercept processing. It contains SNMP management objects that
control lawful intercepts on a Cisco ASR 9000 Series Router. The mediation device uses the MIB to
configure and run lawful intercepts on targets sending traffic through the Cisco ASR 9000 Series Router.
The CISCO-TAP2-MIB supports the SII feature and defines the provisioning of the mediation devices
and generic Taps. It primarily consists of the mediation device table and a stream table. The mediation
device table contains information about mediation devices with which the Cisco ASR 9000 Series Router
communicates; for example, the device's address, the interfaces to send intercepted traffic over, and the
protocol to use to transmit the intercepted traffic. The stream table contains a list of generic Taps that
are provisioned by the MD table entries.
• CISCO-USER-CONNECTION-TAP-MIB—Used for intercepting traffic for individual subscribers.
The MIB contains SNMP management objects to configure and execute wiretaps on individual user
connections on the Cisco ASR 9000 Series Router. This MIB contains information about the user
connections, each identified by a unique session ID. The CISCO-USER-CONNECTION-TAP-MIB
cannot be configured without configuring the CISCO-TAP2-MIB.
It is not possible to configure an SNMP tap and a Radius tap at the same time. Also, the same session
Note
cannot be tapped more than once at a time.
Disabling SNMP-based Lawful Intercept
Lawful Intercept is enabled by default on the Cisco ASR 9000 Series Router after installing and activating
the asr9k-li-px.pie.
Cisco ASR 9000 Series Aggregation Services Router Broadband Network Gateway Configuration Guide,
Release 4.3.x
222
and for more information about enabling the mediation device, see
Configuring the Inband Management Plane Protection Feature,
223.
Configuring Subscriber Features
Enabling the Mediation
OL-28375-03
Advertisement
Chapters
Table of Contents
