configure mobile-gateway profile authentication-database command descriptions
authentication-database
Syntax
- [no] authentication-database db-name
Context
- [Tree] configure mobile-gateway profile authentication-database
Description
This command configures a new authentication database or enables the context to configure an existing authentication-database.
The no form of this command removes the authentication database name.
Parameters
- db-name
- specifies the name of the authentication database, up to 32 characters
description
Syntax
- description description-string
- no description
Context
- [Tree] configure mobile-gateway profile authentication-database description
Description
This command associates a text string with a configuration context to help identify the content in the configuration file.
The no form of this command removes the description from the configuration.
Parameters
- description-string
- Specifies the description string, up to 80 characters, composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
entry
Syntax
- [no] entry name
Context
- [Tree] configure mobile-gateway profile authentication-database entry
Description
This command configures a new authentication database entry or enables the context to configure an existing authentication-database entry.
The no form of this command removes the selected entry from the authentication database.
Parameters
- name
- Specifies the entry name, up to 32 characters.
access-loop-encapsulation
Syntax
- access-loop-encapsulation
Context
- [Tree] configure mobile-gateway profile authentication-database entry access-loop-encapsulation
Description
This command enables the context to configure parameters for access loop encapsulation.
actual-rate-down
Syntax
- actual-rate-down discard
- actual-rate-down rate
- no actual-rate-down
Context
- [Tree] configure mobile-gateway profile authentication-database entry access-loop-encapsulation actual-rate-down
Description
This command configures the actual downstream rate for the last link mile in the access loop. For LAC, the rate overrides the actual downstream rate received in the PPPoE tags to send to the BNG-UP. The BNG-UP reflects this configuration in the L2TP signaling.
The no form of this command removes the configuration.
Default
no actual-rate-down
Parameters
- discard
- Specifies that the actual downstream rates from previous ADB lookups are discarded.
- rate
- Specifies the actual downstream rate.
action
Syntax
- action action-type [radius-authentication-profile profile-name]
- no action
Context
- [Tree] configure mobile-gateway profile authentication-database entry action
Description
This command enables the context to configure the action to apply to a match of the authentication database entry.
The no form of this command disables the context.
Default
no action
Parameters
- action-type
- specifies the action that is applied to a match
Values accept the system uses the configurations in the entry to create the session reject the system fails the session authentication radius the system does a RADIUS authentication with the specified radius-authentication-profile; if RADIUS authentication succeeds, the system uses what the RADIUS server returns and the configurations in the entry to create the session, and if RADIUS authentication fails, the system fails the session authentication - profile-name
- specifies the RADIUS authentication profile name, up to 32 characters (required if action-type is radius)
address-assignment
Syntax
- address-assignment
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment
Description
This command enables the context for configuring a session address assignment.
Default
address-assignment
delegated-prefix-length
Syntax
- delegated-prefix-length length
- no delegated-prefix-length
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment delegated-prefix-length
Description
This command configures the length of the delegated prefix requested from ODSA.
The no form of this command removes the configuration.
Default
no delegated-prefix-length
Parameters
- length
- specifies the length
lifetimes
Syntax
- lifetimes
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment lifetimes
Description
This command enables the context for configuring lifetime timers for the session.
dhcpv6-rebind
Syntax
- no dhcpv6-rebind
- dhcpv6-rebind seconds
- dhcpv6-rebind [days days] [hrs hours] [min mins] [sec secs]
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment lifetimes dhcpv6-rebind
Description
This command configures the DHCPv6 rebind (T2) timer. If the timer expires and renew failed, the client must send a rebind message. If unspecified, the default value of the rebind timer is 80% of the preferred lifetime. A value equal to zero means that the timer is unspecified and that the client can choose the value.
The no form of this command removes the configuration.
Default
no dhcpv6-rebind
Parameters
- seconds
- specifies the lifetime in seconds
- days
- specifies the number of days
- hours
- specifies the number of hours
- mins
- specifies the number of minutes
- secs
- specifies the number of seconds
dhcpv6-renew
Syntax
- no dhcpv6-renew
- dhcpv6-renew seconds
- dhcpv6-renew [days days] [hrs hours] [min mins] [sec secs]
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment lifetimes dhcpv6-renew
Description
This command configures the DHCPv6 renew (T1) timer. If the timer expires, the client must send a renew message. If unspecified, the default value of the renew timer is half of the preferred lifetime. A value equal to zero means that the timer is unspecified and that the client can choose the value.
The no form of this command removes the configuration.
Default
no dhcpv6-renew
Parameters
- seconds
- specifies the lifetime in seconds
- days
- specifies the number of days
- hours
- specifies the number of hours
- mins
- specifies the number of minutes
- secs
- specifies the number of seconds
preferred
Syntax
- no preferred
- preferred seconds
- preferred [days days] [hrs hours] [min mins] [sec secs]
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment lifetimes preferred
Description
This command configures the lifetime for an IPv6 address to be preferred. The preferred address can be used to forward traffic for existing flows and to set up new flows. If unspecified, the default value of the preferred lifetime is seven days.
The no form of this command removes the configuration.
Default
no preferred
Parameters
- seconds
- specifies the lifetime in seconds
- days
- specifies the number of days
- hours
- specifies the number of hours
- mins
- specifies the number of minutes
- secs
- specifies the number of seconds
valid
Syntax
- no valid
- valid seconds
- valid [days days] [hrs hours] [min mins] [sec secs]
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment lifetimes valid
Description
This command configures the lifetime for an IPv6 address to remain valid. The valid address can be used to forward traffic for existing flows. If unspecified, the default valid lifetime is 30 days.
The no form of this command removes the configuration.
Default
no valid
Parameters
- seconds
- specifies the lifetime in seconds
- days
- specifies the number of days
- hours
- specifies the number of hours
- mins
- specifies the number of minutes
- secs
- specifies the number of seconds
local-dynamic
Syntax
- local-dynamic
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment local-dynamic
Description
This command enables the context for configuring local IP address pool assignment for the session.
ipv4-pool
Syntax
- ipv4-pool discard
- ipv4-pool pool-name
- no ipv4-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment local-dynamic ipv4-pool
Description
This command configures the pool name for the local IPv4 address assignment or specifies the pool name previously returned by the AAA server or an ADB in the flow to be discarded
The no form of this command removes the configuration.
Default
no ipv4-pool
Parameters
- discard
- Specifies that the previous pool is discarded.
- pool-name
- Specifies the pool name for the local IPv4 address, up to 32 characters.
ipv6-na-pool
Syntax
- ipv6-na-pool discard
- ipv6-na-pool pool-name
- no ipv6-na-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment local-dynamic ipv6-na-pool
Description
This command configures the IPv6 NA pool name for local address assignment or specifies that the previous pool is discarded.
The no form of this command removes the configuration.
Default
no ipv6-na-pool
Parameters
- discard
- Specifies that the previous pool is discarded.
- pool-name
- Specifies the pool name, up to 32 characters.
ipv6-pd-pool
Syntax
- ipv6-pd-pool discard
- ipv6-pd-pool pool-name
- no ipv6-pd-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment local-dynamic ipv6-pd-pool
Description
This command configures the IPv6 PD pool name for local address assignment or specifies that the previous pool is discarded.
The no form of this command removes the configuration.
Default
no ipv6-pd-pool
Parameters
- discard
- Specifies that the previous pool is discarded.
- pool-name
- Specifies the pool name, up to 32 characters.
ipv6-slaac-pool
Syntax
- ipv6-slaac-pool discard
- ipv6-slaac-pool pool-name
- no ipv6-slaac-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment local-dynamic ipv6-slaac-pool
Description
This command configures the IPv6 SLAAC pool name for local address assignment or specifies if the previous pool is discarded.
The no form of this command removes the configuration.
Default
no ipv6-slaac-pool
Parameters
- discard
- Specifies that the previous pool is discarded.
- pool-name
- Specifies the pool name, up to 32 characters.
pd-as-framed-route
Syntax
- pd-as-framed-route boolean-value
- no pd-as-framed-route
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment pd-as-framed-route
Description
This command specifies whether to signal an allocated PD prefix to the UPF as a framed route or as a direct session prefix in the UE IP address IE. By default, a PD is sent as a direct session prefix.
The no form of this command removes the configuration.
Default
no pd-as-framed-route
Parameters
- boolean-value
- specifies whether to enable (true) or disable (false) the sending of a PD prefix as framed route
unmanaged
Syntax
- unmanaged
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged
Description
Commands in this context configure IP address pool information that is not managed by ODSA or external DHCP; for example, IP address pool information for AAA address assignment or static address assignment.
ipv4-address
Syntax
- ipv4-address discard
- ipv4-address ip-address
- no ipv4-address
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv4-address
Description
This command configures the static assigned IPv4 address.
The no form of this command removes the configuration.
Default
no ipv4-address
Parameters
- ip-address
- Specifies the IPv4 address.
- discard
-
Keyword to discard the previous IPv4 address.
ipv4-pool
Syntax
- ipv4-pool discard
- ipv4-pool pool-name
- no ipv4-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv4-pool
Description
This command configures the name of the ODSA pool that contains the assigned IPv4 address, If not specified, the assigned address is treated as a non-provisioned address assignment.
The no form of this command removes the configuration.
Default
no ipv4-pool
Parameters
- pool-name
- Specifies the pool name, up to 32 characters.
- discard
-
Keyword to discard the previous pool name.
ipv6-na-address
Syntax
- ipv6-na-address discard
- ipv6-na-addressip-address
- no ipv6-na-address
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv6-na-address
Description
This command specifies the static assigned IPv6 IANA address.
The no form of this command removes the configuration.
Default
no ipv6-na-address
Parameters
- ipv6-address
-
Specifies the IPv6 NA address.
- discard
-
Keyword that discards the previous IPv6 NA address.
ipv6-na-pool
Syntax
- ipv6-na-pool discard
- ipv6-na-pool pool-name
- no ipv6-na-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv6-na-pool
Description
This command configures the ODSA pool name that contains the assigned IPv6 NA address. If not specified, the assigned address is treated as a non-provisioned address assignment.
The no form of this command removes the configuration.
Default
no ipv6-na-pool
Parameters
- pool-name
- Specifies the pool name, up to 32 characters.
- discard
-
Keyword to discard the previous pool name.
ipv6-pd-pool
Syntax
- ipv6-pd-pool discard
- ipv6-pd-pool pool-name
- no ipv6-pd-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv6-pd-pool
Description
This command configures the name of the ODSA pool that contains the assigned IPv6 PD prefix. If not specified, the assigned prefix is treated as a non-provisioned address assignment.
The no form of this command removes the configuration.
Default
no ipv6-pd-pool
Parameters
- pool-name
- Specifies the pool name, up to 32 characters.
- discard
-
Keyword to discard the previous pool name.
ipv6-pd-prefix
Syntax
- ipv6-pd-prefix discard
- ipv6-pd-prefix ipv6-prefix/length
- no ipv6-pd-prefix
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv6-pd-prefix
Description
This command specifies the static assigned IPv6 prefix for prefix-delegation.
The no form of this command removes the configuration.
Default
no ipv6-pd-prefix
Parameters
- ipv6-prefix/length
-
Specifies the IPv6 prefix length.
- prefix-length
- Specifies the prefix length.
- discard
-
Keyword that discards the previous IPv6 PD prefix.
ipv6-slaac-pool
Syntax
- ipv6-slaac-pool discard
- ipv6-slaac-pool name
- no ipv6-slaac-pool
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv6-slaac-pool
Description
This command configures the ODSA pool name that contains the assigned SLAAC prefix. If not specified, the assigned prefix is treated as a non-provisioned address assignment.
The no form of this command removes the configuration.
Default
no ipv6-slaac-pool
Parameters
- name
- Specifies the pool name, up to 32 characters.
- discard
-
Keyword to discard the previous pool name.
ipv6-slaac-prefix
Syntax
- ipv6-slaac-prefix discard
- ipv6-slaac-prefix ipv6-prefix/length
- no ipv6-slaac-prefix
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmanaged ipv6-slaac-prefix
Description
This command specifies the static assigned IPv6 prefix for SLAAC.
The no form of this command removes the configuration.
Default
no ipv6-slaac-prefix
Parameters
- ipv6-prefix/length
-
Specifies the IPv6 prefix length.
- prefix-length
- Specifies the prefix length.
- discard
-
Keyword that discards the previous IPv6 SLAAC prefix.
unmatching-prefix
Syntax
- unmatching-prefix allow [ipv4] [ipv6-na] [ipv6-pd] [ipv6-slaac]
- unmatching-prefix disallow
- unmatching-prefix discard
- no unmatching-prefix
Context
- [Tree] configure mobile-gateway profile authentication-database entry address-assignment unmatching-prefix
Description
This command configures the support for unmatching prefixes. It allows an external source (for example, a RADIUS server) to assign an address to a BNG session without pre-provisioning the prefix on the BNG CPF or UPF.
The no form of this command removes the configuration but does not change the configuration that is returned by the previous ADB.
Default
no unmatching-prefix
Parameters
- allow [ipv4] [ipv6-na] [ipv6-pd] [ipv6-slaac]
- enables the support for unmatching prefixes with one or multiple allowed address types
- disallow
- disables the support for unmatching prefixes
- discard
- specifies that the configuration that is returned by the previous ADB is discarded
apn
Syntax
- apn discard
- apn apn-name
- no apn
Context
- [Tree] configure mobile-gateway profile authentication-database entry apn
Description
This command configures the APN name for the session and specifies if the previous APN is discarded.
The no form of this command removes the configuration.
Default
no apn
Parameters
- discard
- specifies that the previous APN is discarded
- apn-name
- specifies the APN name, up to 80 characters
charging
Syntax
- charging
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging
Description
This command enables the context for configuring charging information for the session.
Default
charging
bng-charging-profile
Syntax
- bng-charging-profile [profile-name profile-name...(up to 5 max)]
- bng-charging-profile discard
- no bng-charging-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging bng-charging-profile
Description
This command configures BNG charging profiles for the session or specifies that the previously returned BNG charging profile in the authentication flow is discarded.
The no form of this command removes the configuration.
Default
no bng-charging-profile
Parameters
- profile-name
- specifies the BNG profile name, up to 32 characters; more than one profile name, with a maximum of five, can be entered for the same ADB entry
- discard
- specifies that the previously returned BNG charging profile in the authentication flow is discarded; for more information, see Authentication database section, in the CMG BNG CUPS Control Plane Function Guide
cp-volume-tracking
Syntax
- cp-volume-tracking
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging cp-volume-tracking
Description
This command enables the context for configuring CPF-based traffic volume tracking.
Default
cp-volume-tracking
downstream
Syntax
- downstream discard
- downstream megabytes
- no downstream
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging cp-volume-tracking downstream
Description
This command configures the downstream traffic volume limit for the session and specifies if the previous downstream traffic limit is discarded.
The no form of this command removes the configuration.
Default
no downstream
Parameters
- discard
- specifies a force removal of volume tracking
- megabytes
- specifies the downstream traffic volume limit, in megabytes
total
Syntax
- total discard
- total megabytes
- no total
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging cp-volume-tracking total
Description
This command configures the total traffic volume limit that contains both upstream and downstream and specifies if the previous total traffic volume limit is discarded.
The no form of this command removes the configuration.
Default
no total
Parameters
- discard
- specifies a force removal of volume tracking
- megabytes
- specifies the total traffic volume limit, in megabytes
upstream
Syntax
- upstream discard
- upstream megabytes
- no upstream
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging cp-volume-tracking upstream
Description
This command configures the upstream traffic volume limit for the session.
The no form of this command removes the configuration.
Default
no upstream
Parameters
- discard
- specifies a force removal of volume tracking
- megabytes
- specifies the upstream traffic volume limit, in megabytes
detailed-statistics
Syntax
- detailed-statistics boolean-value
- [no] detailed-statistics
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging detailed-statistics
Description
This command enables the collection of detailed statistics. When enabled, a Nokia BNG UPF sends detailed per queue and per policer statistics. The content of the statistics depends on the BNG UPF QoS stat-mode configuration.
The no form of this command keeps the previous value of detailed-statistics.
To explicitly disable the collection of detailed statistics, this command must be set to false. The initial value for detailed-statistics is false.
Default
no detailed-statistics
Parameters
- boolean-value
- specifies to enable or disable the detailed statistics collection
statistics-collection-interval
Syntax
- statistics-collection-interval seconds
- [no] statistics-collection-interval
Context
- [Tree] configure mobile-gateway profile authentication-database entry charging statistics-collection-interval
Description
This command enables a BNG UPF to periodically send unsolicited statistics to the BNG CPF using the configured time interval (accounting push mode).
The no form of this command disables the unsolicited periodic BNG UPF statistics reporting.
Default
no statistics-collection-interval
Parameters
- seconds
- specifies the interval in seconds
cp-nat-profile
Syntax
- cp-nat-profile discard
- cp-nat-profile name
- no cp-nat-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry cp-nat-profile
Description
This command configures a BNG CUPS CP NAT profile. A CP NAT profile is a container for NAT specific parameters and is used to associate IPoE and PPPoE sessions with NAT.
The no form of this command removes the configuration.
Default
no cp-nat-profile
Parameters
- discard
- Keyword to remove the previous cp-nat-profile.
- name
- Specifies the CP NAT profile name, up to 32 characters.
description
Syntax
- description description-string
- no description
Context
- [Tree] configure mobile-gateway profile authentication-database entry description
Description
This command enables a text description stored in the configuration file for a configuration context.
The description command associates a text string with a configuration context to help identify the content in the configuration file.
The no form of this command removes the string from the configuration.
Parameters
- description-string
- Specifies the description character string. Allowed values are any string up to 80 characters long composed of printable, 7-bit ASCII characters. If the string contains special characters (#, $, spaces, and so on), the entire string must be enclosed within double quotes.
dhcp-profile
Syntax
- dhcp-profile discard
- dhcp-profile name
- no dhcp-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry dhcp-profile
Description
This command configures the DHCP profile for the session.
The no form of this command removes the configuration.
Default
no dhcp-profile
Parameters
- discard
- Specifies that the previous DHCP profile is discarded.
- name
- Specifies the DHCP profile name, up to 32 characters.
dhcpv6-profile
Syntax
- dhcpv6-profile discard
- dhcpv6-profile name
- no dhcpv6-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry dhcpv6-profile
Description
This command specifies the DHCPv6 profile for the DHCPv6 messages sent in the context of this session. The DHCPv6 profiles are configured using the dhcpv6-profile command in the configure mobile-gateway profile bng context. See dhcpv6-profile.
The no form of this command removes the configuration.
Default
no dhcpv6-profile
Parameters
- discard
- specifies that the DHCPv6 profile from previous ADB lookups is discarded
- name
- specifies the DHCPv6 profile name, up to 32 characters
fixed-wireless-access
Syntax
- fixed-wireless-access
Context
- [Tree] configure mobile-gateway profile authentication-database entry fixed-wireless-access
Description
Commands in this context configure parameters specific to fixed wireless access (FWA) sessions.
address-hold-time
Syntax
- address-hold-time max-lifetime
- address-hold-time minutes
- no address-hold-time
Context
- [Tree] configure mobile-gateway profile authentication-database entry fixed-wireless-access address-hold-time
Description
This command holds the allocated addresses after session deletion for the configured amount of time or for the maximum remaining session lifetime after deletion. The maximum remaining session lifetime is based on the longest running session timer; for example, the DHCP or DHCPv6 lease time. The hold time cannot exceed the maximum configurable value. If the maximum remaining session lifetime exceeds the maximum configurable value, the hold time equals the maximum configurable value.
All allocated addresses use the same hold time, independent of the origin of allocation (for example, ODSA versus AAA), or the individual stack lifetimes. If the value configured with the per-session address-hold-time command is greater than the per-pool configured ODSA hold time, the per-session hold time is used also in ODSA.
The no form of this command removes the configuration.
Default
no address-hold-time
Parameters
- max-lifetime
- Keyword to base the hold time on the maximum remaining session lifetime at the moment of deletion.
- minutes
- Specifies the hold time in minutes.
ipv4-signaling-method
Syntax
- ipv4-signaling-method signaling-method
- no ipv4-signaling-method
Context
- [Tree] configure mobile-gateway profile authentication-database entry fixed-wireless-access ipv4-signaling-method
Description
This command configures the method to signal an allocated IPv4 address to the FWA RG. The options are NAS or DHCP (deferred allocation) messaging. This value overrides any preference signaled via PCO IEs.
The no form of this command removes the configuration.
Default
no ipv4-signaling-method
Parameters
- signaling-method
- Specifies the method to signal allocated IPv4 addresses.
qos-profile
Syntax
- qos-profile discard
- qos-profile name
- no qos-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry fixed-wireless-access qos-profile
Description
configure mobile-gateway profile qos-profileThe no form of this command removes the configuration.
Default
no qos-profile
Parameters
- discard
- Keyword to discard the QoS profile from the previous ADB lookups.
- name
- Specifies the QoS profile name, up to 32 characters.
http-redirect
Syntax
- http-redirect
Context
- [Tree] configure mobile-gateway profile authentication-database entry http-redirect
Description
This command enables the context for configuring the HTTP redirect parameters for the WPP authentication.
Default
http-redirect
url
Syntax
- url url-string
- no url
Context
- [Tree] configure mobile-gateway profile authentication-database entry http-redirect url
Description
This command configures the HTTP redirection URL of this session.
The no form of this command removes the configuration.
Default
no url
Parameters
- url-string
- specifies the URL, up to 255 characters
interface
Syntax
- interface
Context
- [Tree] configure mobile-gateway profile authentication-database entry interface
Description
This command enables the context for configuring interface-related parameters for the session.
Default
interface
group-interface-template
Syntax
- group-interface-template name
- no group-interface-template
Context
- [Tree] configure mobile-gateway profile authentication-database entry interface group-interface-template
Description
This command configures the group interface template that is used on the UPF for the session. The no form of this command removes the configuration.
Default
no group-interface-template
Parameters
- name
- specifies the group interface template name, up to 32 characters
link-local-address
Syntax
- link-local-address ipv6-address
- no link-local-address
Context
- [Tree] configure mobile-gateway profile authentication-database entry interface link-local-address
Description
This command configures the IPv6 LLA to be used as a source address when sending control plane messages such as ICMPv6 or DHCPv6. Additionally, the LLA is installed on the BNG UPF to answer neighbor discovery messages.
The no form of this command removes the configuration.
Default
no link-local-address
Parameters
- ipv6-address
- specifies a valid IPv6 link local address
sap-template
Syntax
- sap-template name
- no sap-template
Context
- [Tree] configure mobile-gateway profile authentication-database entry interface sap-template
Description
This command configures the subscriber SAP template that is used on the UPF for the session.
The no form of this command removes the configuration.
Default
no sap-template
Parameters
- name
- specifies the SAP template name, up to 32 characters
ip-anti-spoof
Syntax
- ip-anti-spoof boolean-value
- no ip-anti-spoof
Context
- [Tree] configure mobile-gateway profile authentication-database entry ip-anti-spoof
Description
This command enables IP address-based anti-spoofing functionality.
The no form of this command keeps the previous value of ip-anti-spoofing.
To explicitly disable ip-anti-spoofing, this command must be set to false. The initial value of ip-anti-spoofing is true.
Default
no ip-anti-spoof
Parameters
- boolean-value
- specifies a true or false value
l2tp
Syntax
- l2tp
Context
- [Tree] configure mobile-gateway profile authentication-database entry l2tp
Description
This command enables the context to configure L2TP parameters.
group
Syntax
- group discard
- group name
- no group
Context
- [Tree] configure mobile-gateway profile authentication-database entry l2tp group
Description
This command configures the L2TP tunnel group to use when setting up a LAC session.
The no form of this command removes the configuration.
Parameters
- discard
- Specifies that the L2TP groups from the previous ADB lookups are discarded.
- name
- References the name of an L2TP tunnel group that is configured in the following context,
up to 32
characters.
configure mobile-gateway profile bng l2tp-group
match
Syntax
- match
Context
- [Tree] configure mobile-gateway profile authentication-database entry match
Description
Commands in this context configure the match criteria of the authentication database entry. If there is no match, the entry is considered as a default entry.
Default
match
apn
Syntax
- apn apn-name
- no apn
Context
- [Tree] configure mobile-gateway profile authentication-database entry match apn
Description
This command configures the APN name that the system uses to match the session to the entry. This is either the APN name as returned by a previous auth-flow step, or for FWA sessions, the APN or DNN as signaled during session setup.
The no form of this command removes the configuration.
Default
no apn
Parameters
- apn-name
- Specifies the APN name, up to 80 characters.
circuit-id
Syntax
- circuit-id string cid-string
- circuit-id hex binary cid
- no circuit-id
Context
- [Tree] configure mobile-gateway profile authentication-database entry match circuit-id
Description
This command configures the value of the circuit ID (CID) that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no circuit-id
Parameters
- cid-string
- Specifies the CID name, up to 255 characters.
- binary cid
- Specifies the binary CID value.
client-id
Syntax
- client-id string id-string
- client-id hex binary id
- no client-id
Context
- [Tree] configure mobile-gateway profile authentication-database entry match client-id
Description
This command configures the value of the client ID that the system uses to match the session to the entry. For DHCPv4, the matching uses the option 61 and excludes the byte of the type field. For DHCPv6, the matching uses the option 1 and excludes the 2 bytes of the UUID type field.
The no form of this command removes the configuration.
Default
no client-id
Parameters
- id-string
- Specifies the client ID name, up to 255 characters.
- binary id
- Specifies the binary client ID value.
imei-tac
Syntax
- imei-tac tac value
- no imei-tac
Context
- [Tree] configure mobile-gateway profile authentication-database entry match imei-tac
Description
This command configures the value of the IMEI-based TAC value that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no imei-tac
Parameters
- tac value
- Specifies the IMEI-based TAC value.
imsi-mcc
Syntax
- imsi-mcc mcc value
- no imsi-mcc
Context
- [Tree] configure mobile-gateway profile authentication-database entry match imsi-mcc
Description
This command configures the IMSI-based MCC value that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no imsi-mcc
Parameters
- mcc value
- Specifies the IMSI-based MCC value.
imsi-mnc
Syntax
- imsi-mnc mnc value
- no imsi-mnc
Context
- [Tree] configure mobile-gateway profile authentication-database entry match imsi-mnc
Description
This command configures the IMSI-based MNC value that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no imsi-mnc
Parameters
- mnc value
- Specifies the IMSI-based MNC value.
l2-access-id
Syntax
- l2-access-id string
- no l2-access-id
Context
- [Tree] configure mobile-gateway profile authentication-database entry match l2-access-id
Description
string-mask noDefault
no l2-access-id
Parameters
- string
- Specifies the Layer 2 access ID name, up to 64 characters.
mac
Syntax
- mac ieee-address
- no mac
Context
- [Tree] configure mobile-gateway profile authentication-database entry match mac
Description
This command configures the value of the MAC address that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no mac
Parameters
- ieee-address
- Specifies the MAC address.
remote-id
Syntax
- remote-id string rid-string
- remote-id hex binary rid
- no remote-id
Context
- [Tree] configure mobile-gateway profile authentication-database entry match remote-id
Description
This command configures the value of the remote ID that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no remote-id
Parameters
- rid-string
- Specifies the remote ID name, up to 255 characters.
- binary rid
- Specifies the binary remote ID.
up-group
Syntax
- up-group name
- no up-group
Context
- [Tree] configure mobile-gateway profile authentication-database entry match up-group
Description
configure mobile-gateway profile authentication-database match string-maskconfigure mobile-gateway pdn bng up-groupThe no form of this commands removes the configuration.
Default
no up-group
Parameters
- name
- Specifies the UP group name, up to 32 characters.
up-ip
Syntax
- up-ip ip-address
- no up-ip
Context
- [Tree] configure mobile-gateway profile authentication-database entry match up-ip
Description
This command configures the UPF IP address that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no up-ip
Parameters
- ip-address
- Specifies the UP IP address.
up-node-id
Syntax
- up-node-id node-id
- no up-node-id
Context
- [Tree] configure mobile-gateway profile authentication-database entry match up-node-id
Description
configure mobile-gateway profile bng entry-point match string-maskThe no form of this command removes the configuration.
Default
no up-node-id
Parameters
- node-id
- Specifies the UP node ID as an IP address or a name, up to 255 characters.
username
Syntax
- username name
Context
- [Tree] configure mobile-gateway profile authentication-database entry match username
Description
This command configures the PPPoE username that the system uses to match the session to the entry.
The value specified can be either an exact match or a partial match, if the string-mask is configured in the authentication database match configuration.
The no form of this command removes the configuration.
Default
no username
Parameters
- name
- Specifies the username, up to 253 characters.
username-domain
Syntax
- username-domain domain
- no username-domain
Context
- [Tree] configure mobile-gateway profile authentication-database entry match username-domain
Description
This command configures the domain name of the PPPoE username that the system uses to match the session to the entry.
The no form of this command removes the configuration.
Default
no username-domain
Parameters
- domain
- Specifies the domain name, up to 253 characters.
vendor-class
Syntax
- vendor-class string vendor-class-string
- vendor-class hex binary vendor-class
- no vendor-class
Context
- [Tree] configure mobile-gateway profile authentication-database entry match vendor-class
Description
TBD
Parameters
- vendor-class-string
- Specifies the domain name, up to 255 characters.
- binary vendor-class
- Specifies the domain name.
vlan
Syntax
- [no] vlan
Context
- [Tree] configure mobile-gateway profile authentication-database entry match vlan
Description
This command enables the VLAN configuration context that the system uses to match the session to the entry. The no form of this command disables the VLAN configuration context.
Default
vlan
c-vlan
Syntax
- c-vlan start tag end tag
- no c-vlan
Context
- [Tree] configure mobile-gateway profile authentication-database entry match vlan c-vlan
Description
- q-in-q: The trigger packet contains two VLANs that are called service VLAN (s-vlan) and customer VLAN (c-vlan).
- dot1q: The trigger packet contains one VLAN. In this case, this is matched to the s-vlan range, if configured. However, if the c-vlan range is configured, the packet does not match because it has no customer VLAN values.
- no vlans: The trigger packet contains no VLANs. In this case, the packet only matches entries that have neither service VLAN or customer VLAN range values configured.
The no form of this command removes the configuration.
Default
no c-vlan
Parameters
- start tag
- Specifies the start of the inner VLAN range.
- end tag
- Specifies the end of the inner VLAN range.
s-vlan
Syntax
- s-vlan start tag end tag
- no s-vlan
Context
- [Tree] configure mobile-gateway profile authentication-database entry match vlan s-vlan
Description
This command configures a service VLAN (outer VLAN) range for matching the entry. If the service VLAN of a trigger packet falls within the specified range, a match occurs.
The no form of this command removes the configuration.
Default
no s-vlan
Parameters
- start tag
- Specifies the start of the outer VLAN range.
- end tag
- Specifies the end of the outer VLAN range.
pfcp
Syntax
- pfcp
Context
- [Tree] configure mobile-gateway profile authentication-database entry pfcp
Description
Commands in this context configure PFCP parameters.
include-attributes
Syntax
- [no] include-attributes
Context
- [Tree] configure mobile-gateway profile authentication-database entry pfcp include-attributes
Description
TBD
acct-session-id
Syntax
- acct-session-id origin
- no acct-session-id
Context
- [Tree] configure mobile-gateway profile authentication-database entry pfcp include-attributes acct-session-id
Description
TBD
Parameters
- origin
- Specifies the origin.
pppoe
Syntax
- pppoe
Context
- [Tree] configure mobile-gateway profile authentication-database entry pppoe
Description
This command enables the context for configuring PPPoE session parameters.
Default
pppoe
pado-delay
Syntax
- pado-delay deci-seconds
- no pado-delay
Context
- [Tree] configure mobile-gateway profile authentication-database entry pppoe pado-delay
Description
This command configures the delay before the system returns a PPPoE Active Discovery Offer (PADO) packet, in deciseconds.
The no form of this command keeps the previous value of pado-delay.
To explicitly disable this command, the deci-seconds value must be set to zero. The initial value for pado-delay is zero.
Default
no pado-delay
Parameters
- deci-seconds
- specifies the delay, in deciseconds.
ra-profile
Syntax
- ra-profile discard
- ra-profile name
- no ra-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry ra-profile
Description
This command specifies the RA profile for DHCPv6 messages sent in the session. The RA profiles are configured using the ra-profile command in the configure mobile-gateway profile bng context.
The no form of this command removes the configuration.
Default
no ra-profile
Parameters
- discard
- specifies that the RA profile from previous ADB lookups is discarded
- name
- specifies the RA profile name, up to 32 characters
resiliency
Syntax
- resiliency
Context
- [Tree] configure mobile-gateway profile authentication-database entry resiliency
Description
Commands in this context configure resiliency parameters for the session.
standby-mode
Syntax
- standby-mode {warm | hot}
- no standby-mode
Context
- [Tree] configure mobile-gateway profile authentication-database entry resiliency standby-mode
Description
This command configures the standby mode for the session. The MAG-c ignores this configuration if the session is not part of an FSG.
configure mobile-gateway profile bng fsg-profile default-standby-modeSee "Warm and hot standby" in the MAG-c Control Plane Function Guide for more information.
The no form of this commands reverts to the default.
Default
no standby-mode
Parameters
- warm | hot
- Specifies the standby mode.
session-timeout
Syntax
- session-timeout seconds
- no session-timeout
Context
- [Tree] configure mobile-gateway profile authentication-database entry session-timeout
Description
This command configures the amount of time before the system removes a session.
The no form of this command disables this capability.
Default
no session-timeout
Parameters
- seconds
- specifies the session timeout interval, in seconds
shutdown
Syntax
- [no] shutdown
Context
- [Tree] configure mobile-gateway profile authentication-database entry shutdown
Description
This command administratively disables the entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics. Many entities must be explicitly enabled using the no shutdown command.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.
subscriber-mgmt
Syntax
- subscriber-mgmt
Context
- [Tree] configure mobile-gateway profile authentication-database entry subscriber-mgmt
Description
This command enables the context for configuring subscriber management.
Default
subscriber-mgmt
sla-profile
Syntax
- sla-profile name
- no sla-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry subscriber-mgmt sla-profile
Description
This command configures the UPF SLA profile that is used for the session.
The no form of this command removes the configuration.
Default
no sla-profile
Parameters
- name
- specifies the SLA profile name, up to 32 characters
sub-profile
Syntax
- sub-profile name
- no sub-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry subscriber-mgmt sub-profile
Description
This command configures the UPF subscriber profile that is used for the session.
The no form of this command removes the configuration.
Default
no sub-profile
Parameters
- name
- specifies the subscriber profile name, up to 32 characters
wpp
Syntax
- wpp
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp
Description
This command enables the context to configure WPP.
initial-profiles
Syntax
- initial-profiles
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp initial-profiles
Description
This command enables the context to configure the initial profiles. The initial profiles are used for a WPP session before WPP authentication.
sla-profile
Syntax
- sla-profile name
- no sla-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp initial-profiles sla-profile
Description
This command configures the initial SLA profile for a WPP session.
The no form of this command removes the configuration.
Default
no sla-profile
Parameters
- name
- specifies the SLA profile name, up to 32 characters
sub-profile
Syntax
- sub-profile name
- no sub-profile
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp initial-profiles sub-profile
Description
This command configures the initial subscriber profile for a WPP session.
The no form of this command removes the configuration.
Default
no sub-profile
Parameters
- name
- specifies the subscriber profile name, up to 32 characters
portal-group
Syntax
- portal-group name
- no portal-group
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp portal-group
Description
This command configures a reference to the portal group that authenticates the WPP session. The portal group is defined using the portal-group command in the configure mobile-gateway profile bng wpp context (see portal-group).
The no form of this command removes the configuration.
Default
no portal-group
Parameters
- name
- specifies the portal group name, up to 32 characters
restore-disconnected
Syntax
- [no] restore-disconnected
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp restore-disconnected
Description
This command restores the initial profiles (initial SLA profile and initial subscriber profile) when a WPP session disconnects.
The no form of this command specifies that a disconnected session is removed.
Default
no restore-disconnected
shutdown
Syntax
- shutdown
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp shutdown
Description
This command administratively disables the entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics. Many entities must be explicitly enabled using the no shutdown command.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.
wpp-radius-authentication
Syntax
- wpp-radius-authentication name
- no wpp-radius-authentication
Context
- [Tree] configure mobile-gateway profile authentication-database entry wpp wpp-radius-authentication
Description
This command configures a reference to the RADIUS authentication profile that is used for the RADIUS authentication triggered by the WPP portal. The RADIUS authentication profile is defined using the radius-authentication-profile command in the configure mobile-gateway profile bng context (see radius-authentication-profile).
The no form of this command removes the configuration.
Default
no wpp-radius-authentication
Parameters
- name
- specifies the RADIUS authentication profile name, up to 32 characters
match
Syntax
- match match-id [attribute attr]
- no match match-id
Context
- [Tree] configure mobile-gateway profile authentication-database match
Description
This command configures one or more match attributes in the authentication database match configuration. An entry configuration must contain configurations for all non-optional match attributes to be a matched entry. Match attributes that are optional may be included or not in the matched entry configuration.
The MAG-c performs a lookup in all authentication database entries. To authenticate and create a session, the MAG-c uses a session's corresponding match attribute values to match against the entry configurations. If there are multiple matched entries, the system chooses the entry that has the highest number of configured match values. If the number of match values is the same, the system chooses the entry based on the match criteria order.
Example:
- match 1 attribute c1 (optional)
- match 2 attribute c2 (optional)
- match 3 attribute c3 (optional)
- entry e1 with match criteria “c1 v1; c2 v2; c3 v3”
- entry e2 with match criteria “c1 v1; c2 v2”
- entry e3 with match criteria “c2 v2; c3 v3”
- entry e4 with match criteria “c3 v3”
The no form of this command removes the specified match configuration.
Parameters
- match-id
- Specifies the match ID.
- attr
- Specifies a matching attribute.
apn-format
Syntax
- apn-format form
- no apn-format
Context
- [Tree] configure mobile-gateway profile authentication-database match apn-format
Description
This command specifies the format to match APNs.
The no form of this command reverts to the default.
Default
apn-format selected
Parameters
- form
- Specifies the APN format.
optional
Syntax
- [no] optional
Context
- [Tree] configure mobile-gateway profile authentication-database match optional
Description
This command enables the match criteria as optional, so that entries are not required to specify it as a match criterion.
The no form of this command removes the optional match configuration.
Default
no optional
string-mask
Syntax
- [no] string-mask
Context
- [Tree] configure mobile-gateway profile authentication-database match string-mask
Description
This command enables an optional string mask for masking the Layer 2 access ID.
The no form of this command disables the string-mask configuration for the match.
Default
string-mask
prefix
Syntax
- prefix length mask-length
- prefix string mask-string
- no prefix
Context
- [Tree] configure mobile-gateway profile authentication-database match string-mask prefix
Description
This command configures a prefix mask for the Layer 2 access ID.
The no form of this command removes the configuration.
Default
no prefix
Parameters
- mask-length
- specifies to remove the specified number of bytes from beginning of the session's Layer 2 access ID
- mask-string
- specifies to remove the specified string if the beginning of the session's Layer 2 access
ID matches, up to 127 characters Note: For a string match, the wildcard character "*" can be used as a match criteria.
suffix
Syntax
- suffix length mask-length
- suffix string mask-string
- no suffix
Context
- [Tree] configure mobile-gateway profile authentication-database match string-mask suffix
Description
This command configures a suffix mask for the Layer 2 access ID.
The no form of this command removes the configuration.
Default
no suffix
Parameters
- mask-length
- specifies to remove the specified number of bytes from end of the session's Layer 2 access ID
- mask-string
- specifies to remove the specified string if the end of the session's Layer 2 access ID
matches, up to 127 characters Note: For a string match, the wildcard character "*" can be used as a match criteria.
shutdown
Syntax
- shutdown
Context
- [Tree] configure mobile-gateway profile authentication-database shutdown
Description
This command administratively disables the entity. When disabled, an entity does not change, reset, or remove any configuration settings or statistics. Many entities must be explicitly enabled using the no shutdown command.
The operational state of the entity is disabled as well as the operational state of any entities contained within. Many objects must be shut down before they may be deleted.