Wednesday Oct 28, 2009

Setup and Configure Diameter on SailFin

Configure Diameter on SailFin 2.0

In continuation with my previous blog about Introduction to Diameter Protocol, I am adding more details about the Configuration of Diameter on SailFin 2.0 in this blog. SailFin 2.0 is supporting Diameter protocol as the standard. SailFin 2.0 is supporting Sh, Ro and Rf Interface.

How to Setup Diameter?

Diameter is available as addon for SailFin 2.0. Download the Diameter Patch( from SunSolve. This patch contains Diameter Installer jar and README file.

% Extract location of your choice.

% Go to 'bin' directory of SailFin Install location on your System.
    cd install_location_sailfin/bin

% Stop the domain if it is running.

% ./asadmin install_addon extract_location/142949-1.0/SunDiameter_installer.jar

% Accept the license to Continue.

% Restart the Domain.

These set of commands Setup Diameter on SailFin 2.0.

How to Configure Diameter?

After restarting the Domain user needs to configure Diameter on SailFin. SailFin 2.0 supports set of CLI commands or Admin GUI to configure the same.

% Go to 'bin' directory of SailFin Install location on your System.
    cd install_location_sailfin/bin

% ./asadmin create-diameter-service
    This command adds Diameter Service on SailFin 2.0

% ./asadmin create-diameter-application
    This command creates Diameter Application for Diameter Service. It requires some mandatory parameters.
    Usage: create-diameter-application --applicationsid applicationsid [--terse=false] [--echo=false] [--interactive=true] [--host localhost]
    [--port 4848] [--secure|-s=true] [--user admin_user] [--passwordfile file_name] [--authappid authappid] [--acctappid acctappid]
    [--target target(Default server)] vendorid

% ./asadmin create-peer
    This command creates Peer for Diameter Service. It requires some mandatory parameters.
    Usage: create-peer --appref appref --connectiondefinition connectiondefinition --realm realm [--terse=false] [--echo=false] [--interactive=true]
    [--host localhost] [--port 4848] [--secure|-s=true] [--user admin_user] [--passwordfile file_name] [--pool pname] [--jndiname jndiname]
    [--peerhost localhost] [--peerport 3868] [--target target(Default server)] id

These set of commands Configure Diameter on SailFin 2.0.

Can I use SailFin 1.0 to Setup Diameter?

You CAN'T use SailFin 1.0 to Setup Diameter as all configuration commands are available as part of SailFin 2.0. User needs to upgrade from SailFin 1.0 to SailFin 2.0. User can follow these instructions to upgrade SailFin.

Friday Mar 20, 2009

Introduction to Diameter Protocol

Introduction to Diameter Protocol

What is Diameter Protocol?

Well, your ISP uses the standard Authentication, Authorization, and Accounting (AAA) before allowing you to connect to the network by using their services. So what is AAA and how does it affects you as a network user? AAA is simply a process inside an application that filters information before granting any access. It is where applications are based in order to provide a secure and reliable output. This is where RADUIS gateway takes place. There are plenty of AAA applications that we are using right now. This includes the one used when connecting for a wireless network and on some mobile phone features.

Remote Authentication Dial In User Service (RADUIS) was an older protocol used in implementing AAA standards. The protocol was also named as radius gateway for a clearer and easy to remember term. Despite its popularity and availability, radius gateway had some complications and limitations that need to be addressed. Applications relying on radius gateway were immensely limited to performing a more secured and reliable process. Thus, it gave birth to a new form of protocol called DIAMETER widely used in modern applications. The name is a pun on the RADIUS protocol, which is the predecessor (a diameter is twice the radius).

Diameter protocol came as a result of developments to eliminate limitations with the radius gateway. It serves similar purpose in AAA applications however, advanced processes and operations were added to the protocol to make it reliable. This included the addition of attribute value pairs (AVPs) and error notification which was not present on older protocols. Diameter is not directly backwards compatible, but provides an upgrade path for RADIUS. As a result, older applications designed to run on older protocols including those that were designed in conformity to radius gateway had to adapt the changes brought by the newer diameter protocol. Necessary steps were done on most application to have it run with diameter protocol, without changing the entire structure of these applications.

The design of the diameter protocol was initiated by the 3rd Generation Partnership Project (3GPP) to be used for their IP Multimedia Subsystem (IMS). By using the diameter protocol, applications are able to support interfaces such as Cx, Dh, Dx, Rf, Ro, and Sh. The Diameter protocol uses a binary header format and is capable of transporting a range of data units called AVPs. The Diameter base protocol specifies the delivery mechanisms, capability negotiation, error handling, accounting and extensibility of the protocol, whereas individual Diameter applications specify service-specific functions and AVPs.

The SailFin project is going to support Diameter protocol(Sh, Ro and Rf Interface) as the standard.

Acronyms and Main concepts

3GPP - Acronym for the 3rd Generation Partnership Project. 3GPP is a user and definer of Diameter protocols as applied to 3rd Generation Wireless Networks and the IMS.

AAA - Acronym for Authentication, Authorization, and Accounting.

Accounting - The act of collecting information on resource usage for the purpose of capacity planning, auditing, billing, or cost allocation. Diameter provides an accounting capability.

Authentication - The act of verifying the identity of an entity. Diameter provides an authentication capability.

Authorization - The act of determining whether a requesting entity will be allowed access to a resource. Diameter provides an authorization capability.

RADIUS - Acronym for Remote Authentication Dial In User Service. RADIUS is a type of AAA protocol.

Diameter - A base foundation protocol that provides transfer of Diameter messages, negotiation capabilities, routing capabilities, error handling. Diameter is a type of AAA protocol.

AVP - Acronym for Attribute Value Pair. The Diameter protocol consists of a header followed by one or more Attribute Value Pairs (AVPs). An AVP includes a header and is used to encapsulate protocol-specific data (as well as AAA information).

AVP-Code - A field in the header of a Diameter AVP that uniquely identifies the object attribute. Standardized AVP-Codes are maintained by the IANA.

IANA - Acronym for the Internet Assigned Number Authority.

IMS - Acronym for the Internet Protocol Multimedia Subsystem. Through the efforts of the 3GPP, it is one of the first functional subsystems that is a user and definer of the Diameter protocol and extensions.

TCP - Acronym for Transmission Control Protocol. A reliable transport layer protocol used for the exchange of Diameter protocols.

Rf Interface - A Diameter-based interface defined in the IMS that is used for Offline Billing functions.

Ro Interface - A Diameter-based interface defined in the IMS that is used for Online Billing functions.

Sh Interface - A Diameter-based interface defined in the IMS that is used for service layer-based AAA functions. The Sh interface allows for Download and update of transparent and non-transparent user data and Request and send notifications on changes in the user data.

Cx/Dx Interface - A Diameter-based interface defined in the IMS that is used for AAA functions.

Dh Interface - A Diameter-based interface defined in the IMS that is used for service layer AAA functions.




« July 2016