1. Essentials Guide
  2. Subscriber-Aware Load Balancer Configuration
  3. IMS-AKA and TLS Support
  4. Displaying Encrypted Traffic Detail on the SBC

Displaying Encrypted Traffic Detail on the SBC

The syntax of the show sipd ACLI command allows for the tunnel parameter, which displays Oracle Communications Subscriber-Aware Load Balancer (Subscriber-Aware Load Balancer) tunnel statistics on the SBC. Sample output, which shows static operational information at the top and specific port statistics at the bottom, is shown below. 

ORACLE# show sipd tunnel

|Tunnel       : 11|182.16.209.48|182.16.209.1
---------------------------------------------------------------
|Conf Name    : M01:11/one                    
|State        : InService      Cur Ping TMOs   : 0/5  
|LB           : hermes         Total Ping TMOs : 0         
|SBC Atoms    : 0              Service Ports   : 20/20 
|SP Atoms     : 0              Application     : SIP       
|Last Event   : srcAddrAware   Purge Timer     : 
|Timer Event  : Heartbeat      Timer           : 1604ms         
|IPT Handle   : 0x3f           Network Intf    : 0|1.11
|ActiveLbId   : 3              Waiting On      : 
|LostCtlCount : 0              Last Lost Cntrl : Never
|NextCfgCheck :                CCP Version     : 7/7
|Source Key   : src-addr
|
|Service Port                              Prev| Cur|Next lbStat Handle Atoms
|------------                              ----|----|---- ------ ------ ------
|Realm192p1:192.168.209.1:4060<6>          CRng IS   -    200    513    0     
|Realm192p1:192.168.209.1:4060<17>         CRng IS   -    200    518    0     
|Realm192p1:192.168.209.1:4061<6>          CRng IS   -    200    514    0     
|Realm192p1:192.168.209.1:4061<17>         CRng IS   -    200    519    0     
|Realm192p1:192.168.209.1:4062<6>          CRng IS   -    200    515    0     
|Realm192p1:192.168.209.1:4062<17>         CRng IS   -    200    520    0     
|Realm192p1:192.168.209.1:4063<6>          CRng IS   -    200    516    0     
|Realm192p1:192.168.209.1:4063<17>         CRng IS   -    200    521    0     
|Realm192p1:192.168.209.1:5060<6>          CRng IS   -    200    517    0     
|Realm192p1:192.168.209.1:5060<17>         CRng IS   -    200    522    0

To understand the command's service port output, consider the scenario where the user configures the SBC as shown in the section titled SBC Configuration for IMS-AKA Traffic. This configuration defines the protected port range over which IMS-AKA traffic moves between the SBC and the Subscriber-Aware Load Balancer.

The user also typically configures two sip-ports on the SBC to accommodate IMS-AKA. (This is true regardless of whether the SBC supports IMS-AKA behind an Subscriber-Aware Load Balancer or directly.) When configured in conjunction with the protected port range configured in SBC Configuration for IMS-AKA Traffic, the SBC creates Subscriber-Aware Load Balancer service ports for IMS-AKA in addition to the two ports listening on 5060. The show sipd tunnel , therefore, displays statistics for all TCP and UDP ports. In the command output below, <6> indicates a TCP port and <17> indicates a UDP port. Ports using IPv6 can exist simultaneously, and would also be displayed by the command.