Cisco ASR 5000 Series Small Cell Gateway

Similar documents
SPIRENT LANDSLIDE MOBILE PACKET CORE PERFORMANCE TEST SYSTEM

Overview of GPRS and UMTS

IPSec Network Applications

Cisco ASR 5500 Multimedia Core Platform

CDG Technology Forum Inter-Technology Networking

IxLoad EPC Wi-Fi Offload Testing

Enabling FMC: Airvana Universal Access Gateway

Overview of GPRS and UMTS

IPSec Transform Set Configuration Mode Commands

Table of Contents 1 IKE 1-1

ETSI CTI Plugtests Report ( ) The 1st UMTS FemtoCell Plugfest; Sophia Antipolis, France; March 2010

Overview of the Cisco Mobile Wireless Home Agent

High-Touch Delivery Learning Services

This version of the des Secure Enterprise MAC Client can be used on Mac OS X 10.7 Lion platform.

Unified Services Routers

IPSec Transform Set Configuration Mode Commands

Client Data Tunneling

Experimental Analysis of the Femtocell Location Verification Techniques

Release Notes. NCP Secure Enterprise Mac Client. 1. New Features and Enhancements. 2. Improvements / Problems Resolved. 3.

Cisco RV 120W Wireless-N VPN Firewall

Virtual Private Network

Cisco Universal Wi-Fi Solution 7.0

GTP-based S2b Interface Support on the P-GW and SAEGW

Cisco 5G Vision Series: Licensed, Unlicensed, and Access-Independent Networks

Cisco RV180 VPN Router

Configuration of an IPSec VPN Server on RV130 and RV130W

Data Sheet. NCP Secure Enterprise macos Client. Next Generation Network Access Technology

IP Services Gateway Overview

IPv6 Community Wifi. Unique IPv6 Prefix per Host. IPv6 Enhanced Subscriber Access for WLAN Access Gunter Van de Velde Public.

Status of IMS-Based Next Generation Networks for Fixed Mobile Convergence

Multi-RAT Heterogeneous Networks. Presenter: S. Vasudevan, Technical Manager, Advanced Technology Standards

This chapter includes the following sections: Overview, on page 1 How Proxy Mobile IP Works in 3GPP Network, on page 11

Overview, page 1 How Proxy Mobile IP Works in 3GPP Network, page 10

Release Notes. NCP Secure Enterprise Mac Client. 1. New Features and Enhancements. 2. Improvements / Problems Resolved. 3.

Data Sheet. NCP Secure Enterprise Linux Client. Next Generation Network Access Technology

epdg Administration Guide, StarOS Release 16

Datasheet. Intelligent WiFi AP, Router & Hotspot CableFree Gigabit Hotspot Controller & Router. Overview

DATA SHEET MODEL AXC1000 HIGHLIGHTS OVERVIEW. Redefining Enterprise Wireless Management

How to Configure Forcepoint NGFW Route-Based VPN to AWS with BGP TECHNICAL DOCUMENT

How to Configure an IPsec VPN to an AWS VPN Gateway with BGP

How to Configure an IKEv1 IPsec VPN to an AWS VPN Gateway with BGP

ETSI TS V ( )

Firepower Threat Defense Site-to-site VPNs

Cisco 5921 Embedded Services Router

Sample excerpt. Virtual Private Networks. Contents

Cisco RV110W Wireless-N VPN Firewall

Evolution to A Common Core

SECURING ULTRA-BROADBAND MOBILE ACCESS Deploying the Alcatel-Lucent Security

Cisco 5921 Embedded Services Router

Hillstone IPSec VPN Solution

3GPP TS V8.4.0 ( )

How to Configure an IKEv1 IPsec VPN to an AWS VPN Gateway with BGP

Virtual Private Network. Network User Guide. Issue 05 Date

Configuring WAN Backhaul Redundancy

Reorient or relocate the receiving antenna. Increase the separation between the equipment and receiver.

Tunneling Configuration Guide for Enterprise

Exam : Title : Security Solutions for Systems Engineers. Version : Demo

AAA Authentication: New Use Cases

How to Configure a Site-to-Site IPsec IKEv1 VPN Tunnel

Corente Cloud Services Exchange

Overview of the Cisco Mobile Wireless Home Agent

MSF Architecture for 3GPP Evolved Packet System (EPS) Access MSF-LTE-ARCH-EPS-002.FINAL

INTRODUCTION TO LTE. ECE MOBILE COMMUNICATION Monday, 25 June 2018

Virtual Private Networks

How to Configure a Site-To-Site IPsec VPN to the Amazon AWS VPN Gateway

Cisco Quantum Policy Suite for Mobile

IMS Migrations IMS Enabling Common Network Convergence. Michael Coward CTO and Co-founder

GTP-U Service Configuration Mode Commands

2. enodeb Emulator: Simulation of emtc and NB-IoT UE and enodeb conforming to 3GPP Release 13 enhancements for Cellular IoT.

Configuring WLANs CHAPTER

WiFi Integration in Evolution to 5G networks. Satish Kanugovi WiFi Knowledge Summit, Bangalore March 9, Nokia 2018

BCRAN. Section 9. Cable and DSL Technologies

Oracle Communications Mobile Security Gateway

Remote Access MPLS-VPNs

Crypto Templates. Crypto Template Parameters

VPN Routers DSR-150/250/500/1000AC. Product Highlights. Features. Overview. Comprehensive Management Capabilities. Web Authentication Capabilities

Cisco Catalyst 6500 Series/Cisco 7600 Series Wireless Services Module

The Evolution of Diameter Signaling

Cisco ASR 1000 Series Aggregation Services Routers: QoS Architecture and Solutions

How to Configure a Site-to-Site IPsec IKEv1 VPN Tunnel

The IPsec protocols. Overview

Configuring Security on the GGSN

WiMAX End-to-End Network Systems Architecture

Data Sheet. NCP Secure Entry Mac Client. Next Generation Network Access Technology

L2TP over IPsec. About L2TP over IPsec/IKEv1 VPN

Gigabit SSL VPN Security Router

Evolving IP-IP Gateways to Multi-Access Convergence Gateways for LTE/SAE Systems

Mobile WiMAX Security

2001, Cisco Systems, Inc. All rights reserved. Copyright 2001, Cisco Systems, Inc. All rights reserved. Printed in USA. Presentation_ID.

Eudemon200E-X Series Unified Security Gateway

CDMA IP. FMC WiMAX LTE L2TP Billing Policy DPI SPIRENT TEST SCENARIOS LANDSLIDE.

Session Recovery. How Session Recovery Works

Overview of GPRS and UMTS

LTE CONVERGED GATEWAY IP FLOW MOBILITY SOLUTION

Configuration Summary

FAQ about Communication

Deployment of Cisco IP Mobility Solution on Enterprise Class Teleworker Network

Carrier Solution. Carrier Solution. Carrier-class Wi Fi. Highly scalable mobile operator Wi Fi solution

IPv6 migration strategies for mobile networks

Cisco IOS IPv6. Cisco IOS IPv6 IPv6 IPv6 service provider IPv6. IPv6. data link IPv6 Cisco IOS IPv6. IPv6

Transcription:

Data Sheet Cisco ASR 5000 Series Small Cell Gateway Mobile subscribers want access to the network at home, work, hotspots, and everywhere in between. This requires mobile operators to expand their service offerings over multiple new access networks, such as broadband DSL, fiber to the home, or cable broadband networks, using small cell technologies such as femtocells and Wi-Fi. How do you cost-effectively and securely deliver the same intelligent services that your customers enjoy today over networks that use small cells? The Cisco ASR 5000 Series Small Cell Gateway is an integral element in both the Cisco SP Wi-Fi Solution and the Cisco 3G Femtocell Solution. The Cisco Small Cell Gateway gives subscribers easy access as they transparently roam between third-generation (3G), fourth-generation (4G), Wi-Fi, and femtocell networks. The gateway provides: Exceptional levels of security Seamless mobility between network types including WiFi, femtocells, 3G and 4G Market-leading IP Security/Internet Key Exchange Version 2 (IPsec/IKEv2) tunnel performance Integration of multiple network functions into a single platform for the lowest possible total cost of ownership A single platform for common services across Wi-Fi, 3G, 4G, and femtocells Real-time integrated intelligence with policy enforcement Voice-grade reliability Smooth upgrade to 4G Deployed on the Cisco ASR 5000 multimedia core platform, the Small Cell Gateway (Figure 1) supports multiple standards-based functions including: Standalone femtocells (residential and small- and medium-sized business) Indoor Wi-Fi Indoor Wi-Fi plus integrated femtocells Outdoor Wi-Fi plus integrated femtocells 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of 6

Figure 1. Cisco ASR 5000 Series Small Cell Gateway Wi-Fi Applications The Cisco ASR 5000 Series Small Cell Gateway provides full support for multiple Wi-Fi functions to supply intelligent Wi-Fi access for your subscribers. These Wi-Fi functions (shown in Figure 2) include: 3 rd Generation Partnership Project 2 (3GPP2) WLAN Packet Data Interworking Function (PDIF) for untrusted Wi-Fi networks 3GPP Interworking WLAN (iwlan) Packet Data Gateway (PDG) for untrusted Wi-Fi networks 3GPP iwlan Tunnel Terminating Gateway (TTG) for untrusted Wi-Fi networks 3GPP evolved Packet Data Gateway (epdg) for untrusted Wi-Fi networks Evolved Wireless Access Gateway (ewag) for trusted Wi-Fi networks The Cisco ASR 5000 Series Small Cell Gateway terminates and manages subscriber-initiated IPsec/IKEv2 and Secure Sockets Layer (SSL) tunnels. It also performs authentication and authorization of the subscriber equipment and data, IP address assignment, and the foreign agent function for Mobile-IP-aware devices, and provides subscriber usage accounting records. The IPsec tunnels are used to perform secure transfers of authentication information and subscriber data over the untrusted interfaces and backhauls. The gateway may optionally provide stateful firewall, Network Address Translation (NAT) Traversal, and denial-of-service (DoS) protection or any other inline service provided by the Cisco ASR 5000 Series. 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 2 of 6

Figure 2. Cisco ASR 5000 Series Small Cell Gateway Support for Wi-Fi Femtocell Solutions Cisco s platform provides a complete solution for 3G and 4G femtocells or Home Node-B (HNB) and Home enode-b (HeNB) aggregation. Figure 3 illustrates the use of the Cisco ASR 5000 Series Small Cell Gateway in 3G Femtocell architectures with the following features: HNB Gateway (HNB-GW) features: R9 standard compliance (Iuh, Iu over IP or ATM) Full idle and active mode mobility Open and closed access mode Intelligent paging Iu-Flex for multi Core Network (CN) connectivity Integrated Security Gateway (SeGW) (optional): NAT and firewall traversal Multiple authentication (X.509 and EAP-SIM/AKA) Dynamic Host Configuration Protocol (DHCP) or IP pools for IP address allocation Future capabilities: 3GPP R10 compliance Feature integration: Serving GPRS Support Node (SGSN), Gateway GPRS Support Node (GGSN), and PDG Inter-femto mobility per standard design Presence/location service API (XMPP) interface) HeNB-GW support for Long-Term Evolution (LTE) small cells 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 3 of 6

Figure 3. Cisco ASR 5000 Series Small Cell Gateway: HNB-GW (3G Femtocell) Whether used for WLAN, femtocell, or other emerging technologies, the gateway supports increasingly comprehensive and secure mobile services for subscribers while minimizing the mobile operator s capital and operational expenditures. Features and Benefits Superior performance and security, including IPsec tunnels, rapid tunnel setup rates, exceptional throughput, and deep packet inspection (DPI) Benefit: Provides an exceptional customer experience, which helps to increase revenue and foster customer loyalty Distributed architecture that enables integration of multiple access gateway functions on the same platform with Packet Data Serving Node (PDSN), SGSN, GGSN, Access Services network (ASN) Gateway, or the Proxy Call Session Control Function (P-CSCF) functions of the Cisco Session Control Manager (SCM) solution Benefit: Reduces the number of components in the network, decreasing the number of potential points of failure and promoting a lower capital and operating expense model Secure access for multiple access applications: Wi-Fi (PDIF, PDG, TTG, ewag, epdg) and femtocell (femtocell gateway, HNB-GW, and HeNB-GW) solutions for both 3GPP and 3GPP2 standards Benefit: Gives operators the security and freedom to choose the right access application for their specific needs, without the requirement to design access strategy around the limitations of multiple diverse products 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 4 of 6

Real-time integrated subscriber, service, and application intelligence with enforcement through Cisco s inline services Benefit: Provides the operator with the same transparent service experience required to deliver excellent user experiences and delivers the intelligence necessary to promote new sources of revenue Summary The Cisco ASR 5000 Series Small Cell Gateway provides a secure communications gateway between external untrusted networks and trusted networks. This solution supports multiple security standard functions, including PDIF, PDG, TTG, ewag, epdg, HNB-GW, and HeNB-GW. With superior performance, reliability, and the capability to integrate the security gateway function into existing GGSN, PDSN, SGSN, or other packet data nodes, this solution reduces both capital and operational expenditures. Whether used for Wi-Fi, femtocell, or other emerging technologies, the gateway helps you to provide an outstanding mobile experience for your subscribers. Table 1. Description Cisco ASR 5000 Series Small Cell Gateway Specifications Specification Wi-Fi functions Femtocell functions Interfaces Connectivity IPsec tunneling IKEv2/IPv4 (IPv6 with future software upgrade) Encryption and authentication algorithms ewag epdg TTG PDG PDIF HNB-GW HeNB-GW 10 Gigabit Ethernet Gigabit Ethernet Fast Ethernet Gn (TTG mode) Gi (PDG mode) Mobile IPv4 Foreign Agent (PDIF mode) Simple IP (PDIF mode) Proxy Mobile IPv4 Client Mobile IPv4 (PDIF mode) Encapsulating Security Payload (ESP) tunnel mode ESP anti-replay protection Perfect Forward Secrecy (PFS) RFC 4306-compliant Multiple Child SA support NAT Traversal (RFC 3947), NAT Keepalive, and ACL Configurable Dead Peer Detection (RFC 3706) timer support Diffie-Hellman Groups 1, 2, 5, 14 DoS protection including thresholds for control plane attacks HMAC-MD5-96 (RFC 2403) NULL Encryption (RFC 2410) HMAC-SHA1-96 (RFC 2404) AES-128-CBC (RFC 3602) DES-CBC (RFC 2405) AES-192-CBC 3DES-CBC (RFC 2451) PRF_AES-128-XCBC 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 5 of 6

Description Authentication, authorization, and accounting (AAA) IP address allocation VPN and tunneling Quality of service (QoS) Policy enforcement Routing Specification RADIUS AAA client support Dynamic authorization extensions to RADIUS EAP authenticator Single EAP, user, device, or user/device authentication EAP-AKA, EAP-SIM Fast reauthentication RADIUS accounting: per-session, per-r6 bearer connection, or per-application service flow RADIUS AAA server groups RADIUS custom dictionaries Hotlining (Dynamic RADIUS attributes: COA, DM) Diameter-based MAC address authorization to HSS (Sh interface) AAA assignment Local pools (dynamic or static) Overlapping private IP address pools Dynamic home-agent address allocation DHCP proxy server Multiple enterprise-specific contexts or resource pools IP-in-IP tunneling Generic Routing Encapsulation (GRE) tunneling IEEE 802.1q VLANs Network admission control Service flow authorization Multiflow QoS traffic classification Intelligent Traffic Control (ITC) DiffServ Code Point (DSCP) marking/re-marking Diameter Local policy decision (CLI) Dynamic policy via Gx interface support RIP OSPFv2 BGP4 Easy inter-technology mobility For More Information Please visit www.cisco.com/go/mobileinternet or www.cisco.com/go/smallcell. Printed in USA C78-712213-00 07/12 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 6 of 6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback