cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

what ports Prognosis is configured for auth-port & acct-port?

Venkatesh
10 Guide
‎02-19-2020 08:45 AM
‎02-19-2020 08:45 AM

what ports Prognosis is configured for auth-port & acct-port?

Hello Team,

 

We have configured a radius in the Cisco CUBE router to monitor the CDR records in prognosis recently.

After that, some cube router displaying the voice quality data and some are not displaying. 

 

I just want to make sure for the below config is okay because the same server is configured with different ports for the same services or we need to give either 1812 acct-port 1813 or 1645 acct-port 1646 only?

 

 

CWL01vRT01#sho run | se in aaa group server radius
aaa group server radius prognosisradiusgroup
server name prognosis
server 10.1.6.214 auth-port 1812 acct-port 1813

CWL01vRT01#sho run | se in radius server
radius server prognosis
address ipv4 10.1.6.214 auth-port 1645 acct-port 1646
key xxxxxxxxxxxxxxxxxxxxxxxx

 

 

 

 

Thanks,

Venkatesh

0 Likes
Reply
3 REPLIES 3
SCOTT_BALDWIN
Community Manager
Community Manager
‎02-19-2020 09:59 AM
‎02-19-2020 09:59 AM

Re: what ports Prognosis is configured for auth-port & acct-port?

Hello Venkatesh,

 

The Cisco CUBE router ports for CDR delivery via RADIUS typically use ports 1812 & 1813 if TACACS+ is NOT configured on the CUBE

 

If TACACS+ is configured, TACACS+ usually uses the 1812 & 1813 ports. This requires RADIUS to use different ports which are usually 1845 & 1846.

 

The ports configured in a CUBE and the Prognosis SBC configuration for the CUBE must use the same ports for communication to work correctly.

 

Prognosis Online Help has references for CUBE CDR configurations for RADIUS with and without TACACS+.
  - See: RADIUS Accounting Servers.

 

Thank you,

Scott Baldwin

 

0 Likes
Reply
Venkatesh
10 Guide
‎02-19-2020 10:22 AM
‎02-19-2020 10:22 AM

Re: what ports Prognosis is configured for auth-port & acct-port?

Hello Scott,

Thanks for your response.

 

Could you please confirm us the below configuration is fine if Tacacs+ is enabled right?

 

Router> enable
Router# configure terminal
Router (config)# aaa group server radius <groupname>
Router (config-sg-radius)# server 10.1.6.214 auth-port 1812 acct-port 1813
Router (config-sg-radius)# exit
Router (config)# aaa authentication login default group <groupname> local
Router (config)# aaa authorization exec default group <groupname> none
Router (config)# aaa accounting exec default start-stop group <groupname>
Router (config)# radius-server host 10.1.6.214 auth-port 1645 acct-port 1646 key <shared-secret>
Router (config)# exit

 

And the group is any name we can give?

 

 

Thanks,

Venkatesh

Tags (1)
0 Likes
Reply
SCOTT_BALDWIN
Community Manager
Community Manager
‎02-19-2020 11:43 AM
‎02-19-2020 11:43 AM

Re: what ports Prognosis is configured for auth-port & acct-port?

Hello Venkatesh,

 

Based on port pairs 1812 & 1813 and 1645 & 1646 being present in the configuration, I suspect TACACS+ is used.

 

The IP addresses for the 2 port pairs are the same, but Prognosis does not use TACACS+, so the 2 IP addresses are usually different. The TACACS+ group and Prognosis group will also likely be different.

 

It appears the configuration will need to be updated to work correctly.

 

If there are difficulties with configuring the CUBE to send CDRs to Prognosis via RADIUS when TACACS+ is also used, the Account Manager should be contacted for a Professional Services engagement to help with the CUBE and Prognosis configurations.

 

Thank you,

Scott Baldwin

 

0 Likes
Reply

IR Forums

 General Collaborate Transact & Infrastructure COVID-19 Updates IR Connect