Manualshelf

Installation guide

ManualsBrandsCisco ManualsComputer equipmentUBR924 - uBR 924 Router
81828384858687888990
3-27
Cisco uBR7100 Series Universal Broadband Router Software Configuration Guide
OL-2238-03
Chapter 3 Configuring the Cisco Cable Interface
Enabling and Configuring Baseline Privacy
Verifying KEK Privacy
To verify the KEK lifetime or gracetime values that are set, enter the show cable privacy kek command:
CMTS01# show cable privacy kek
Configured KEK life time value = 750000
Configured KEK grace time value = 800
Tip If you are having difficulty with verification, make sure you have entered a valid value for gracetime or
lifetime.
Configuring Traffic Encryption Key (TEK) Privacy
A gracetime TEK can be set from 300 to 1800 seconds. A lifetime TEK can be set from 1800 to 604800
seconds. If you do not set a TEK value, the defaults are used.
To configure TEK data privacy on the HFC network, use the following commands in cable interface
configuration mode.
Verifying TEK Privacy
To verify the TEK lifetime or gracetime values that are set, enter the show cable privacy tek command:
CMTS01# show cable privacy tek
Configured TEK life time value = 56000
Configured TEK grace time value = 900
Activating Baseline Privacy
BPI is activated by default when using an image that supports baseline privacy. Commands in the cable
interface configuration mode are as follows:
Verifying Baseline Privacy
To determine if baseline privacy is activated, enter the show interface privacy command. When using
a Cisco uBR7100 series “k1” image, cable privacy is enabled by default and can only be disabled with
the no cable privacy command. The cable modem must also be configured to support baseline privacy.
Command Purpose
CMTS01(config-if)# cable privacy tek grace-time seconds
or
CMTS01(config-if)# cable privacy tek life-time seconds
Set the cable privacy TEK grace time in seconds. Valid
values are from 300 to 1800 seconds. Default = 600.
Set the cable privacy TEK life time in seconds. Valid
values are from 1800 to 604800 seconds.
Default = 43200 seconds.
Command Purpose
CMTS01(config-if)# cable privacy enable
Activate cable privacy. This is the default.
CMTS01(config-if)# cable privacy mandatory
Activate cable privacy and do not allow access
for any unencrypted cable modem connections.