To enable the URL blockedlisting feature on UPF, URL blockedlisting database should be present with a name “optblk.bin” under
flash, or SFTP or under its subdirectory. This database directory path must be configured on user-plane, after user-plane
services are brought up.
HTTP Analyzer must be enabled for URL blockedlisting. The HTTP analyzer extracts URL information from the incoming HTTP request
data packet. Extracted URL content is compared with the URL Blockedlisting database. When the URL of incoming HTTP data packet
matches with the database URL entry, that URL is treated as blockedlisted URL and one of the following actions takes place
on that HTTP packet:
-
Termination of flow
-
Packet is discarded
The URL blockedlisting configurations must be configured under Rulebase configuration in Active Charging Service. Also, two
URL blockedlisting methods – Exact and Generic, are supported at Active Charging Service-level configuration.
Important
|
Blockedlisting database(s) are provided by – Internet Watch Foundation (IWF) and National Center for Missing and Exploited
Children (NCMEC). The UPF always receives the blockedlisting database in Optimized Format.
|
URL Blockedlisting Database Upgrade
URL database upgrade is supported in following two ways:
Timer-based or Auto-upgrade
After the database is loaded on the chassis for the first time, a timer, for a duration of 5 minutes, is started. This process
is started to auto upgrade the database.
If at the expiry of the timer, a valid database with higher version is available at the directory path, then database upgrade
procedure is initiated, and a newer version of the database is loaded on the UPF.
To upgrade a URL blockedlisting database, a higher version of valid URL Blockedlisting database with name “optblk_f.bin” should
be present at same directory as that of current database “optblk.bin”.
After the database is upgraded successfully, the earlier “optblk.bin” file gets renamed as “optblk_0.bin” and “optblk_f.bin”
file gets renamed as “optblk.bin”. Here, “optblk_0.bin” file is treated as a backup file of older database.
If an additional upgrade is performed, then “optblk_0.bin” file will be renamed as “optblk_1.bin” file and current “optblk.bin”
will get renamed as “optblk_0.bin”, and so on.
See the Loading URL Blockedlisting Database on UPF section to configure the number of backup files to be stored in the database.
CLI-based or Manual Upgrade
See the Upgrading the URL Blockedlisting Database section to upgrade the current database to a newer version.