SC-171
Implementing Lawful Intercept on Cisco IOS XR Software
Restrictions for Implementing Lawful Intercept
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
OL-20382-01
–
MD that has been provisioned with the user login ID, mac address of the user CPE device,
or the DSLAM physical location ID—The IP address is the binding most frequently used to
identify the target in the network. However, alternative forms of information that uniquely
identify the target in the network may be used in some network architectures. Such alternatives
include the MAC address and the acct-session-id.
Restrictions for Implementing Lawful Intercept
Lawful intercept does not provide support for the following features in Cisco IOS XR Software
Release
3.8.0:
• RTP encapsulation
• MAC-based interception
• Multicast traffic
• IPv6 traffic
Information About Lawful Intercept Implementation
Cisco lawful intercept is based on service-independent intercept (SII) architecture and SNMPv3
provisioning architecture. SNMPv3 addresses the requirements to authenticate data origin and ensure
that the connection from the router to the MD is secure. This guarantees that unauthorized parties cannot
forge an intercept target.
Lawful intercept offers the following capabilities:
• Voice-over IP (VoIP) and data session intercept provisioning from the mediation device using
SNMPv3
• Delivery of intercepted VoIP and data session data to the mediation device
• SNMPv3 lawful intercept provisioning interface
• Lawful intercept MIB: CISCO-TAP2-MIB, version 2
• CISCO-IP-TAP-MIB manages the Cisco intercept feature for IP and is used along with
CISCO-TAP2-MIB to intercept IP traffic.
• User datagram protocol (UDP) encapsulation to mediation device
• Voice-over IP (VoIP) call intercept, based on any rules configured for received packets.
• Voice-over IP (VoIP) intercept with LI-enabled call agent
• Data session call intercept based on IP address
Provisioning for VoIP Calls
Lawful Intercept provisioning for VoIP occurs in the following ways:
• Security and authentication occurs as the user has defined this through SNMPv3.
• The mediation device provisions lawful intercept information using SNMPv3.
• Network management occurs through the standard MIBs.
To Next Page
Loading...
