Guest

Preview Tool

Cisco Bug: CSCup42634 - Inbound ACL not getting applied for "subscriber-capability" as video

Last Modified

Dec 25, 2016

Products (1)

  • Cisco ASR 5000 Series

Known Affected Releases

14.0(108)

Description (partial)

Symptom:
Selection of Inbound/Outbound ACL , HSS and Peer-server  are impacted if combined with subscriber capability as "video" and user sends "video" param in contact or Accept-Contact header. 

Below are the scenarios which are associated to subscriber-capability will be impacted cause of this PR - 

1)  Inbound/outbound ACL selection based on subscriber capability 

 [local]rtpbngasr5kch89# configure
[local]rtpbngasr5kch89(config)# context scscf
[scscf]rtpbngasr5kch89(config-ctx)# cscf acl name inbound
[scscf]rtpbngasr5kch89(config-cscf-acl)# redirect address 192.168.60.1 port 6074 subscriber-capability video


[local]rtpbngasr5kch89# configure
[local]rtpbngasr5kch89(config)# context scscf
[scscf]rtpbngasr5kch89(config-ctx)# cscf acl name outbound
[scscf]rtpbngasr5kch89(config-cscf-acl)# deny subscriber-capability video


2)   Peer Server selection based on subscriber capability 

[local]rtpbngasr5kch89# configure
[local]rtpbngasr5kch89(config)# context scscf
[scscf]rtpbngasr5kch89(config-cscf-route)# route peer-servers mgcf123 base-criteria subscriber-capability video

3)  HSS selection based on subscriber capability

[local]rtpbngasr5kch89# conf
[local]rtpbngasr5kch89(config)# context scscf
[scscf]rtpbngasr5kch89(config-ctx)# cscf diameter-selection type hss
[scscf]rtpbngasr5kch89(config-cscf-diameter-selection)# aaa-group group1 criteria aor 010244411811$. subscriber-capability video

Conditions:
All below possible selection criteria of ACL are impacted -

  after                - Set the insert position after the specified element
  before               - Set the insert position before the specified element
  deny                 - Deny access to cscf
  permit               - Allow access to cscf
  redirect             - Redirect access to cscf

Similar workaround can be applied to these also.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.