Step 1 |
enable
Example:
|
Enables privileged EXEC mode.
- Enter your password if prompted.
|
Step 2 | configure terminal
Example:
Router# configure terminal
| Enters global configuration mode.
|
Step 3 | parameter-map type regex
parameter-map-name
Example:
Router# parameter-map type regex PARAM_REG
| Configures a parameter-map type to match a specific traffic pattern and enters parameter map configuration mode.
|
Step 4 | pattern
expression
Example:
Router(config-profile)# pattern apn.cisco.com
| Configures a matching pattern that specifies a list of domains, URL keywords, or URL metacharacters that should be allowed or blocked by local URL filtering.
|
Step 5 | exit
Example:
Router(config-profile)# exit
| Exits parameter map configuration mode and returns to global configuration mode.
|
Step 6 | parameter-map type inspect {parameter-map-name |
global}
Example:
Router(config)# parameter-map type inspect global
| Configures an inspect type parameter map for connecting thresholds, timeouts, and other parameters pertaining to the inspect action and enters parameter-map type inspect mode.
|
Step 7 | gtp {request-queue
elements | timeout
{{gsn |
pdp-context |
signaling | tunnel}
minutes |
request-queue
seconds} |
tunnel-limit
number}
Example:
Router(config-profile)# gtp tunnel-limit 100
| Configures the inspection parameters for GTP.
|
Step 8 | exit
Example:
Router(config-profile)# exit
| Exits parameter-map type inspect mode and returns to global configuration mode.
|
Step 9 | class-map type inspect
protocol-name {match-any
|
match-all} class-map-name
Example:
Router(config)# class-map type inspect gtpv0 LAYER7_CLASS_MAP
| Creates a Layer 7 (application-specific) inspect type class map and enters class-map configuration mode.
|
Step 10 | match {apn regex
parameter-name |
mcc
country-code
mnc
network-code |
message-id
id |
message-length min
min-length
max
max-length |
version
number}
Example:
Router(config-cmap)# match mcc 100 mnc 91
| Configures the classification criteria for inspect type class map for the GTP.
|
Step 11 | exit
Example:
Router(config-cmap)# exit
| Exits class-map configuration mode and returns to global configuration mode.
|
Step 12 |
policy-map type inspect
protocol-name
policy-map-name
Example:
Router(config)# policy-map type inspect gtpv0 LAYER7_POLICY_MAP
| Creates a Layer 7 (protocol-specific) inspect type policy map and enters policy-map configuration.
|
Step 13 |
class type inspect
protocol-name
class-map-name
Example:
Router(config-pmap)# class type inspect gtpv0 LAYER7_CLASS_MAP
| Specifies the traffic (class) on which an action is to be performed and enters policy-map class configuration.
|
Step 14 | log
Example:
Router(config-pmap-c)# log
| Generates a log of messages.
|
Step 15 | exit
Example:
Router(config-pmap-c)# exit
| Exits policy-map class configuration and returns to policy-map configuration mode.
|
Step 16 | exit
Example:
Router(config-pmap)# exit
| Exits policy-map configuration mode and returns to global configuration mode.
|
Step 17 | class-map type inspect
{match-any
|
match-all} class-map-name
Example:
Router(config)# class-map type inspect LAYER4_CLASS_MAP
| Creates a Layer 3 and Layer 4 inspect type class map and enters class-map configuration mode.
|
Step 18 | match
protocol
protocol-name
parameter-map
signature
Example:
Router(config-cmap)# match protocol gtpv0
| Configures the match criterion for a class map on the basis of a specified protocol.
|
Step 19 | exit
Example:
Router(config-cmap)# exit
| Exits class-map configuration and returns to global configuration mode.
|
Step 20 | policy-map type inspect
policy-map-name
Example:
Router(config)# policy-map type inspect LAYER4_POLICY_MAP
| Creates a Layer 3 and Layer 4 inspect type policy map and enters policy-map configuration mode.
|
Step 21 | class type inspect
class-map-name
Example:
Router(config-pmap)# class type inspect LAYER4_CLASS_MAP
| Specifies the traffic (class) on which an action is to be performed and enters policy-map class configuration mode.
|
Step 22 | inspect
[parameter-map-name]
Example:
Router(config-pmap-c)# inspect
| Enables Cisco IOS stateful packet inspection.
|
Step 23 | service-policy
protocol-name
policy-map
Example:
Router(config-pmap-c)# service-policy gtpv0 LAYER7_POLICY_MAP
| Attaches a Layer 7 policy map to the top-level Layer 3 or Layer 4 policy map.
|
Step 24 |
end
Example:
Router(config-pmap-c)# end
| Exits policy-map class configuration mode and returns to privileged EXEC mode.
|