ACLI Configuration Element Changes
This section summarizes the ACLI configuration element changes that first appear in release Oracle Communications Session Border ControllerS-CZ8.1.0
Security Features
| New Parameters | Description |
|---|---|
| security, authentication, tacacs-authentication-only | Adds the tacacs-authentication-only parameter to restrict login authentication to TACACS if it is available. |
| security, ssh-config | Element that provides access to global SSH configuration settings. |
| security, ssh-config, keyex-algorithms | Allows you to specify which key exchange algorithms are offered during SSH session negotiation |
| security, ssh-config, hostkey-algorithms | Allows you to specify which host key algorithms are offered during SSH session negotiation |
| security, ssh-config, encr-algorithms | Allows you to specify which encryption algorithms are offered during SSH session negotiation |
| security, ssh-config, hmac-algorithms | Allows you to specify which HMAC algorithms are offered during SSH session negotiation |
| security, tls-profile, cipher-list | The default value has changed from all to default. |
| security, tls-profile, tls-version | The SSLv3 option is no longer supported. |
| security, ike, tls-config, ike-version |
The parameter now accepts version 2 as a value. Although version 2 is available for configuration, it is supported only for LI interfaces.Available in S-CZ8.1.0M1 |
ENUM Features
| New Parameters | Description |
|---|---|
| session-router, enum-config, remote-recursion | Adds the remote-recursion parameter to allow the user to disable ENUM server |
VoLTE Features
| New Parameters | Description |
|---|---|
| session-router, sip-interface, charging-vector-mode | Adds the conditional-insert parameter to specify header insertion behavior based on original message content. |
| session-router, sip-interface, charging-function-address-mode | Adds the conditional-insert parameter to specify header insertion behavior based on original message content. |
| session-router, sip-feature-caps | Adds the
pre-alerting
parameter to enable SRVCC support during the pre-alerting phase.
Released with S-CZ8.1.0M1 |
External Policy Server Features
| New Parameters | Description |
|---|---|
| media-manage, policy-group | Defines a group of policy
servers for load balancing. Parameters include:
|
| media-manager, policy-group, policy-agent | Defines the policy servers for
load balancing within the context of the policy group. Parameters include:
|
| media-manager, ext-policy-server, transport-protocol |
Select a specified protocol or the special value all that specifies transport-protocol based matching criteria for inbound and outbound traffic. • Default: TCP • Values: SCTP | TCP |
| media-manager, ext-policy-server, local-multi-homing | if the remote primary address
is not reachable, the SCTP association fails even if an alternate path is
possible.
Assigns the local address that the remote station can use for multi-homing redundancy. |
| media-manager, ext-policy-server, remote-multi-homing |
Assigns the remote address that the local station can use for multi-homing redundancy. |
| media-manager, ext-policy-server, sctp-send-mode |
Leave this parameter set to its default (unordered) so data delivery can occur without regard to stream sequence numbering. If data delivery must follow stream sequence number, change this parameter to ordered. • Default: unordered • Values: ordered | unordered |
Transcoding Features
| New Parameters | Description |
|---|---|
| media-manager, codec-policy, fax-single-m-line | Set this parameter to the preferred FAX media type for Re-INVITEs to endstations that do not support multiple m-lines. The system issues Re-INVITEs using the configured media type only. Should the negotiation fail, the system issues another Re-INVITE that offers the other media type. |
Message Counter Features
The following new components appear within the following session-router elements, using the listed order to define configuration precedence:
- session-agent
- sip-interface
- realm-config
| New Parameters | Description |
|---|---|
| sm-icsi-match-for-invite |
<pattern> (i.e. Large Message Mode Standalone message). E.g: urn:urn-7:3gpp-service.ims.icsi.oma.cpm.largemsg (as per ABNF mentioned in RFC-6050) match icsi value for INVITE |
| sm-icsi-match-for-message |
<pattern> (i.e. Pager mode Standalone message). E.g: urn:urn-7:3gpp-service.ims.icsi.oma.cpm.msg (as per ABNF mentioned in RFC-6050) match icsi value for MESSAGE |
HDR Features
| New Parameters | Description |
|---|---|
| system, system-config, collect, group-settings, group-name | Adds new collection groups, including
traffic counters for:
Single radio voice call continuity counter
External policy server counter:
Security related counters, including:
Transcoding related counters, including:
SIP traffic counters, including:
|
TLS Features
| New Parameters | Description |
|---|---|
| security, tls-profile, cipher-list | The default value for this parameter is
changed to
Default in this
software version.
This prevents the former default of All from including ciphers that Oracle has deemed weak. In addition, the cipher list has been updated to the following (for tlsv1, tlsv11, tlsv12 and compatibility):
|
