F5 Logo MyF5
Search
  1. MyF5 Home
  2. BIG-IP Policy Enforcement Manager: Implementations
  3. Usage Monitoring Over a Gx Interface
Manual Chapter : Usage Monitoring Over a Gx Interface

Applies To:

Show Versions Show Versions

BIG-IP LTM

  • 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1

BIG-IP PEM

  • 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0
Manual Chapter

Usage Monitoring Over a Gx Interface

Overview: Usage monitoring over a Gx and Sd interface

In Policy Enforcement Manager, you can create a rule within an enforcement policy that tells the system to send aggregated usage data concerning individual subscribers to a Policy and Charging Rules Function (PCRF). The rule specifies what type of traffic you are interested in, and one of the actions the system can take with the data collected is to send it for processing over a Gx interface to a PCRF.
The system sends the data in the standard Gx format. The report granularity must be set to session for Gx reporting to be available. The PCRF determines the policies for each subscriber, whether or not reporting is enabled, and how often to send the data and monitoring key that identifies the type of traffic PCRF wants to get usage for.
Similarly, the Traffic Dectection function (TDF) functionality performs applications traffic detection and reporting of detected application by using TDF application identifier. The Policy Enforcement Manager supports the Sd interface which is used by PCRF to talk to TDF. This provides the ability to apply the detection, enforce actions and apply charging parameters for the specified application traffic.
Gx and Sd are mutually exclusive.
For example, a rule might collect session-based information about all traffic destined to a particular IP address. The BIG-IP system communicates with the PCRF and sends information about the subscribers for whom reporting is enabled. You establish the connection to the PCRF by creating a listener with Gx interface enabled.

Task summary

Creating a listener for subscriber discovery and policy provisioning

You can create listeners that specify how to handle traffic for policy enforcement. Creating a listener does preliminary setup tasks on the BIG-IP system for application visibility, intelligent steering, bandwidth management, and reporting. You can also connect with a Policy and Charging Rules Function (PCRF) over a Gx interface.
  1. On the Main tab, click
    Subscriber Management
    Control Plane Listeners
    .
    The Control Plane Listeners page opens.
  2. In the Policy Provisioning and Online Charging Virtuals area, click
    Add
    .
    The New Configure Diameter Endpoint Provisioning and Online Charging screen opens.
  3. In the
    Name
     field, type a unique name for the listener.
  4. In the
    Description
     field, type a description of the listener.
  5. For the
    VLANs and Tunnels
     setting, move the VLANs and tunnels that you want to monitor from the
    Available
     list to the
    Selected
     list.
  6. To connect to a PCRF, from the
    Diameter Endpoint
     list, select
    Enabled
     and select
    Gx
     or
    Sd
    from the
    Supported Apps
     options.
  7. In the
    Product Name
     field, type the product name which is used to communicate with the PCRF.
  8. In the
    Origin Host
     field, type the fully qualified domain name of the PCRF or external policy server, for example,
    ocs.xnet.com
    .
  9. In the
    Origin Realm
     field, type the realm name or network in which the PCRF resides, for example,
    xnet.com
    .
  10. In the
    Destination Host
     field, type the destination host name of the PCRF or external policy server, for example,
    pcrfdest.net.com
    .
  11. In the
    Destination Realm
     field, type the realm name or network of the PCRF, for example,
    net.com
    .
  12. For the
    Pool Member Configuration
     setting, add the PCRF servers that are to be members of the Gx endpoint pool. Type the
    Member IP Address
     and
    Port
     number, then click
    Add
    .
  13. In the
    Message Retransmit Delay
     field, type the number of milliseconds to wait before retransmitting unanswered messages in case of failure from the BIG-IP system to the PCRF over the Gx interface. The default value is
    1500
    .
  14. In the
    Message Max Retransmit
     field, type the maximum number of times that messages can be retransmitted from the BIG-IP system to the PCRF. The default value is
    2
    .
  15. In the
    Fatal Grace Time
     field, type the time period in seconds that a diameter connection can remain disconnected before the system terminates all sessions associated with that diameter endpoint. The default value is
    500
    .
  16. Click
    Finished
    .
    The Policy Enforcement Manager creates a listener.
When you create a listener, the Policy Enforcement Manager also creates virtual servers for each type of traffic (TCP, UDP, or both), and a virtual server for HTTP traffic. The system sets up classification and assigns the appropriate policy enforcement profile to the virtual servers. The system also creates a virtual server for the Gx interface with a diameter endpoint profile. If you are connecting to a RADIUS authentication server, a virtual server for RADIUS is also added.

Creating a rule for usage monitoring

In an enforcement policy, a rule can specify that usage monitoring statistics concerning traffic affected by the rule are sent to a Gx interface.
  1. On the Main tab, click
    Policy Enforcement
    Policies
    .
    The Policies screen opens.
  2. Click the name of the enforcement policy you want to add rules to.
    The properties screen for the policy opens.
  3. In the Policy Rules area, click
    Add
    .
    The New Rule screen opens.
  4. In the
    Name
     field, type a name for the rule.
  5. In the
    Precedence
     field, type an integer that indicates the precedence for the rule in relation to the other rules. Number 1 has the highest precedence. Rules with higher precedence are evaluated before other rules with lower precedence.
    All rules in a policy are run concurrently. Precedence takes effect when there are conflicting rules. The conflict occurs when the traffic matches two rules and the policy actions from these rules differ. For example, if you have rule 1 with precedence 10 and
    Gate Status
     disabled for a search engine, and you have rule 2 with precedence 11 and
    Gate Status
     enabled, then rule 1 is processed first because it has higher precedence. Rules conflict if they have identical or overlapping classification criteria (for the traffic that matches more than one rule). In some cases, different policy actions are not conflicting, and hence, applied in parallel.
  6. Use the Classification, URL, Flow, and Custom Criteria tabs to identify the traffic that you want to be affected by this rule.
  7. From the
    Usage Reporting
     list, select
    Enabled
    .
  8. From the
    Report Granularity
     list, select
    Session
    .
    You can send only session-based reporting data over the Gx interface.
  9. For the
    Volume Threshold
     setting, specify, in octets, the amount of data to receive from the client, send to the client, and the total traffic volume before logging the information.
  10. For the
    Destination
     setting, specify these values:
    1. For
      Gx
       or
      Sd
      , select
      Enabled
      .
    2. In the
      Gx Monitoring Key
       or
      Sd Monitoring Key
      field (as selected), type a string to use for usage monitoring of the service data that the enforcement policy rule or dynamic policy and charging control (PCC) rule controls.
  11. Click
    Finished
    .
You have created a rule that sends data about the traffic to the Gx interface in the standard Gx format.
Contact Support Contact Support

Have a Question?

Support and Sales >

About F5

Education

F5 Sites

Support Tasks




©2023 F5, Inc. All rights reserved.


Trademarks Policies Privacy California Privacy Do Not Sell My Personal Information