Tekelec IP7 Secure Gateway Administration Manual page 921

Database Administration Manual - IP7 Secure
Gateway
interfaces at the remote end while the rhost parameter value with the rhostype=alternate
parameter represents an IP address that corresponds to the other network interface at the remote end.
:rhostval – The validation mode used for the association when an SCTP INIT/INIT-ACK message
is received. The value of this parameter is shown in the RHOSTVAL field of the
rtrv-assoc:aname=<association name> output. This parameter has two values.
relaxed - accept the message if the IP address for the primary or alternate remote host matches
the IP address, source IP address, or the host name in the message.
match - accept the message if the message contains the primary remote host value and the alternate
remote host value (if the alternate remote host is provisioned). If the alternate remote host is not
provisioned, then accept the message if the message contains the primary remote host value. Reject
the message if it contains any IP address other than that of the primary or alternate remote host.
Refer to the chg-assoc command description in the Commands Manual for more information about
this parameter.
If the value of the open parameter is yes, only the value of the alw and rtxthr parameters can be
changed. To change the values of other parameters, the value of the open parameter must be no.
To set the open parameter value to yes, the association specified by the aname parameter must contain
values for the lhost, lport, rhost, and rport parameters. The association must be assigned to a
signaling link.
At least one optional parameter is required.
The command input is limited to 150 characters, including the hostnames.
The value of the rmin parameter must be less than or equal to the rmax parameter value.
The m2patset and ver parameters can be specified only for IPSG M2PA associations.
Canceling the RTRV-ASSOC Command
Because the rtrv-assoc command used in this procedure can output information for a long period
of time, the rtrv-assoc command can be canceled and the output to the terminal stopped. There
are three ways that the rtrv-assoc command can be canceled.
Press the F9 function key on the keyboard at the terminal where the rtrv-assoc command was
entered.
Enter the canc-cmd without the trm parameter at the terminal where the rtrv-assoc command
was entered.
Enter the canc-cmd:trm=<xx>, where <xx> is the terminal where the rtrv-assoc command
was entered, from another terminal other that the terminal where the rtrv-assoc command was
entered. To enter the canc-cmd:trm=<xx> command, the terminal must allow Security
Administration commands to be entered from it and the user must be allowed to enter Security
Administration commands. The terminal's permissions can be verified with the rtrv-secu-trm
command. The user's permissions can be verified with the rtrv-user or rtrv-secu-user
commands.
For more information about the canc-cmd command, go to the Commands Manual.
1. Display the associations in the database using the rtrv-assoc command.
This is an example of possible output.
rlghncxa03w 06-10-28 09:12:36 GMT EAGLE5 36.0.0
910-6278-001 Revision A, January 2012
IPSG M2PA and M3UA Configuration Procedures
921