EasyManuals Logo

Cisco cBR 8 Configuration Guide

Cisco cBR 8
156 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #61 background imageLoading...
Page #61 background image
DescriptionTimer
The amount of time a cable modem must wait before
attempting to negotiate a new KEK if the CMTS
rejects its first attempt to negotiate a KEK.
Authorize Reject Wait Timeout
The amount of time a cable modem will wait for a
response from a CMTS when negotiating a TEK for
the first time.
Operational Wait Timeout
The amount of time a cable modem will wait for a
response from a CMTS when negotiating a new TEK
because the TEK lifetime is about to expire.
Rekey Wait Timeout
Downloading the DOCSIS Root Certificate to the CMTS
DOCSIS 1.1 allows cable modems to identify themselves using a manufacturers chained X.509 digital
certificate that is chained to the DOCSIS root certificate. The DOCSIS root certificate is already installed on
the bootflash of the CMTS router. However, if you want to install another root certificate, for example, the
Euro-DOCSIS certificate, download the certificate and save it on the bootflash as "euro-root-cert".
For more information about the DOCSIS root certificate provided by Verisign, see the information at the
following URL: http://www.verisign.com/products-services/index.html
Tip
You may load the DOCSIS root certificate and a EuroDOCSIS or PacketCable root certificate. Cisco
recommends that the EuroDOCSIS PacketCable root certificates be copied into bootflash.
Note
To download the DOCSIS root certificate to the Cisco CMTS, which is required if any cable modems on the
network are using chained certificates, use the following procedure:
Procedure
Step 1
Download the DOCSIS root certificate from the DOCSIS certificate signer, Verisign. At the time of this
documents printing, the DOCSIS root certificate is available for download at the following URL: http://
www.verisign.com/products-services/index.html
Step 2
Verisign distributes the DOCSIS root certificate in a compressed ZIP archive file. Extract the DOCSIS root
certificate from the archive and copy the certificate to a TFTP server that the CMTS can access.
To avoid possible confusion with other certificates, keep the files original filename of
CableLabs_DOCSIS.509 when saving it to the TFTP server.
Tip
Step 3
Log in to the Cisco CMTS using either a serial port connection or a Telnet connection. Enter the enable
command and password to enter Privileged EXEC mode:
Example:
Router> enable
Cisco cBR Series Converged Broadband Routers Quality of Services Configuration Guide for Cisco IOS XE Fuji
16.7.x
51
DOCSIS 1.1 for the Cisco CMTS Routers
Downloading the DOCSIS Root Certificate to the CMTS

Table of Contents

Other manuals for Cisco cBR 8

Preview: Configuration And Troubleshooting Guide
Configuration And Troubleshooting Guide254 pages
Preview: Installation Instructions
Installation Instructions26 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco cBR 8 and is the answer not in the manual?

Cisco cBR 8 Specifications

General IconGeneral
BrandCisco
ModelcBR 8
CategoryNetwork Router
LanguageEnglish

Related product manuals