Example: Using DTCP Messages to Trigger, Verify, and Remove Traffic Mirroring for Subscribers
This example shows how to create DTCP messages to do the following:
-
Trigger a drop policy if one does not already exist.
-
Remove an existing drop policy.
-
Trigger traffic mirroring for two subscribers based on interface ID.
-
Verify that subscriber traffic on the two interfaces is being mirrored.
-
Remove traffic mirroring on the two subscriber interfaces.
-
Verify that traffic mirroring was stopped on the two subscriber interfaces.
In this example, SSH is being used to communicate with the router.
Creating DTCP ENABLE Messages to Trigger a Drop Policy
This section shows the DTCP attributes used in ENABLE messages to cause the router to trigger a drop policy if one does not already exist from a prior DTCP ADD or DTCP ENABLE command.
ENABLE DTCP/0.7 Csource-ID: ft-user1 Criteria-ID: 1 X-Drop: T1 Flags: STATIC Seq: 1 Authentication-Info: c16d2d9d1679facf0c4a66683af6114d341e4033 DTCP/0.7 200 OK SEQ: 7 CRITERIA-ID: 2 TIMESTAMP: 2011-02-13 15:56:49.609
Creating DTCP DISABLE Messages to Remove a Drop Policy
This section shows the DTCP attributes used in DISABLE messages to cause the router to remove an existing a drop policy created with a prior DTCP ENABLE command.
DISABLE DTCP/0.8 Csource-ID: ft-user Criteria-ID: 8 X-Drop-Policy: drop_pol Flags: STATIC Seq: 1 Authentication-Info: 963aa01c38c531f63fb410afd058c018be4d0230 DTCP/0.8 200 OK SEQ: 1 CRITERIA-COUNT: 1 TIMESTAMP: 2022-01-24 11:58:47.927
Creating DTCP ADD Messages to Trigger Traffic Mirroring
This section shows examples of DTCP ADD messages on a mediation device that use the interface ID to trigger traffic mirroring on interfaces demux0.30010002 and demux0.30010001.
ADD DTCP/0.7 Csource-ID: dtcp1 Cdest-ID: cd1 Priority: 2 X-JTap-Cdest-Dest-Address: 192.0.2.168 X-JTap-Cdest-Dest-Port: 65535 X-JTap-Cdest-Source-Address: 198.51.100.10 X-JTap-Cdest-Source-Port: 50000 X-JTap-Cdest-TTL: 64 X-Interface-Id: demux0.30010002 /*Used as trigger*/ X-MD-Intercept-Id: 0x0101010130010002 Flags: BOTH Seq: 7 Authentication-Info: c16d2d9d1679facf0c4a66683af6114d341e4033 DTCP/0.7 200 OK SEQ: 7 CRITERIA-ID: 2 TIMESTAMP: 2011-02-13 15:56:49.609 AUTHENTICATION-INFO: 4880de4b8cead98c95813fd9b95e240b107d4693
ADD DTCP/0.7 Csource-ID: dtcp1 Cdest-ID: cd1 Priority: 2 X-JTap-Cdest-Dest-Address: 192.0.2.168 X-JTap-Cdest-Dest-Port: 65535 X-JTap-Cdest-Source-Address: 198.51.100.10 X-JTap-Cdest-Source-Port: 50000 X-JTap-Cdest-TTL: 64 X-Interface-Id: demux0.30010001 /*Used as trigger*/ X-MD-Intercept-Id: 0x0101010130010001 Flags: STATIC Seq: 8 Authentication-Info: dc3c55481a3810c7dd29fdc1b4681d978ff4e7c4 DTCP/0.7 200 OK SEQ: 8 CRITERIA-ID: 3 TIMESTAMP: 2011-02-13 15:57:20.640 AUTHENTICATION-INFO: 4b31ef1311647e5ba52d2d5d4237b9e5beaa47b7
ADD DTCP/0.7 Csource-ID: ft-user1 Cdest-ID: cd1 Priority: 2 X-JTap-Cdest-Dest-Address: 203.0.113.112 X-JTap-Cdest-Dest-Port: 7899 X-JTap-Cdest-Source-Address: 192.0.2.9 X-JTap-Cdest-Source-Port: 12321 X-Username: testuser X-MD-Intercept-Id: 55667789 Flags: STATIC DTCP/0.7 200 OK SEQ: 100 CRITERIA-ID: 1
Creating DTCP ENABLE Messages to Trigger Traffic Mirroring
This section shows the DTCP attributes used in ENABLE messages to cause the router to trigger a drop policy if one does not already exist from a prior DTCP ADD or DTCP ENABLE command.
ENABLE DTCP/0.8 Csource-ID: ft-user1 Cdest-ID: cd1 X-Drop-Policy: vod Flags: STATIC
Using LIST Messages to Verify That Subscriber Traffic Is Being Mirrored
This section shows examples of a LIST message on the mediation device. The LIST message requests information about the subscribers being mirrored. The information is returned in a LIST response. The response shows that traffic for the two interfaces—demux0.30010002 and demux0.30010001—is being mirrored.
LIST DTCP/0.7 Csource-ID: dtcp1 Cdest-ID: cd1 Seq: 9 Authentication-Info: f6dd64643021debb167ce2fb2d3c7b6622a87e09 DTCP/0.7 200 OK SEQ: 9 TIMESTAMP: 2011-02-13 15:57:47.667 CRITERIA-ID: 2 CSOURCE-ID: dtcp1 CDEST-ID: cd1 CSOURCE-ADDRESS: 203.0.113.224 FLAGS: BOTH X-JTAP-CDEST-DEST-ADDRESS: 192.0.2.168 X-JTAP-CDEST-DEST-PORT: 65535 X-JTAP-CDEST-SOURCE-ADDRESS: 198.51.100.10 X-JTAP-CDEST-SOURCE-PORT: 50000 X-JTAP-CDEST-TTL: 64 X-INTERFACE-ID: demux0.30010002 /*subscriber interface*/ X-MD-INTERCEPT-ID: 0x0101010130010002 CRITERIA-NUM: 1 CRITERIA-COUNT: 0 CRITERIA-ID: 3 CSOURCE-ID: dtcp1 CDEST-ID: cd1 CSOURCE-ADDRESS: 203.0.113.224 FLAGS: BOTH X-JTAP-CDEST-DEST-ADDRESS: 192.0.2.168 X-JTAP-CDEST-DEST-PORT: 65535 X-JTAP-CDEST-SOURCE-ADDRESS: 198.51.100.10 X-JTAP-CDEST-SOURCE-PORT: 50000 X-JTAP-CDEST-TTL: 64 X-INTERFACE-ID: demux0.30010001 /*subscriber interface*/ X-MD-INTERCEPT-ID: 0x0101010130010001 CRITERIA-NUM: 2 CRITERIA-COUNT: 2 AUTHENTICATION-INFO: 361171ccb24dde6afe8ef66021287f9b8ac16028
Using DELETE Messages to Remove Traffic Mirroring Triggers
This section shows examples of DELETE messages used to remove traffic mirroring triggers on demux0.30010001 and demux0.30010002. DTCP DELETE can use either Criteria-ID to delete only that criteria or Cdest-ID to delete everything with cdest-ID that you previously created.
DELETE DTCP/0.7 Csource-ID: dtcp1 CRITERIA-ID: 2 Flags: STATIC Seq: 10 Authentication-Info: 7e84ae871b12f2da023b038774115bb8d955f17e DTCP/0.7 200 OK SEQ: 10 CRITERIA-COUNT: 1 TIMESTAMP: 2011-02-13 16:00:02.802 AUTHENTICATION-INFO: 2834ff32ec07d84753a046cfb552e072cc27d50b DELETE DTCP/0.7 Csource-ID: dtcp1 CRITERIA-ID: 3 Flags: STATIC Seq: 12 Authentication-Info: 7653fd94659a7183a990bdea654a1b97c0895348 DTCP/0.7 200 OK SEQ: 12 CRITERIA-COUNT: 1 TIMESTAMP: 2011-02-13 16:01:35.895 AUTHENTICATION-INFO: 7cd8171057a327434e1b2d9b35f43b88305f9a74
Verifying That Traffic Mirroring Was Stopped on the Subscriber Interfaces
This section shows an example of a LIST message used to show that traffic mirroring on demux0.30010001 and demux0.30010002 is removed.
LIST DTCP/0.7 Csource-ID: dtcp1 Cdest-ID: cd1 Seq: 13 Authentication-Info: 7c9f825427cfeaecebb0d13ea3842af1021c7d26 DTCP/0.7 430 Unknown Content Destination SEQ: 13 AUTHENTICATION-INFO: 5ca2eec65106354fe59c878b4c36b7de3c511acd