EasyManuals Logo

Cisco cBR 8 Configuration Guide

Cisco cBR 8
156 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #59 background imageLoading...
Page #59 background image
PurposeCommand or Action
(Optional) Enables BPI+ 56-bit DES encryption on the
cable interface (default).
cable privacy
Example:
Router(config-if)# cable privacy
Step 4
Router(config-if)#
(Optional) Allows cable modems to register using
self-signed manufacturer certificates, as opposed to the
cable
privacyaccept-self-signed-certificate
Step 5
default of allowing only manufacturer’s certificates that
are chained to the DOCSIS root certificate.
Example:
Router(config-if)# cable privacy
Use the above command sparingly, as it
bypasses DOCSIS BPI+ certificates. Otherwise,
self-signed certificates provide workaround
registration for cable modems that are not
compliant with DOCSIS BPI+ certificates. This
functionality is strictly intended for
troubleshooting of a short duration or in the
context of additional security measures.
Caution
By default, the CMTS does not accept self-signed
certificates. In the default configuration, if a cable
modem attempts to register with self-signed
certificates, the CMTS will refuse to allow the
cable modem to register.
Note
accept-self-signed-certificate
Router(config-if)#
(Optional) Enables BPI+ encryption on the cable interface
and uses AAA protocols to authorize all multicast stream
(IGMP) join requests.
cable privacy authorize-multicast
Example:
Router(config-if)# cable privacy
Step 6
If you use this command to authorize multicast
streams, you must also use the cable privacy
authenticate-modem command to enable AAA
services on the cable interface.
Note
authorize-multicast
Router(config-if)#
(Optional) Requires baseline privacy be active for all CMs
with BPI/BPI+ enabled in the DOCSIS configuration files,
else the CMs are forced to go offline.
cable privacy mandatory
Example:
Router(config-if)# cable privacy
Step 7
If a CM does not have BPI enabled in its DOCSIS
configuration file, it will be allowed to come online without
BPI.
mandatory
Router(config-if)#
(Optional) Enables BPI+ encryption on the cable interface
and enables Optimal Asymmetric Encryption Padding
cable privacy oaep-support
Example:
Router(config-if)# cable privacy
Step 8
(OAEP). This option is enabled by default. Disabling this
option could have a performance impact.
oaep-support
Router(config-if)#
Cisco cBR Series Converged Broadband Routers Quality of Services Configuration Guide for Cisco IOS XE Fuji
16.7.x
49
DOCSIS 1.1 for the Cisco CMTS Routers
Configuring Baseline Privacy Interface

Table of Contents

Other manuals for Cisco cBR 8

Preview: Configuration And Troubleshooting Guide
Configuration And Troubleshooting Guide254 pages
Preview: Installation Instructions
Installation Instructions26 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco cBR 8 and is the answer not in the manual?

Cisco cBR 8 Specifications

General IconGeneral
BrandCisco
ModelcBR 8
CategoryNetwork Router
LanguageEnglish

Related product manuals