Configuring Topology Hiding for the Gx Application

When topology hiding is enabled, Gx CCA and RAR messages forwarded by the MRA to the network are modified to include the MRA Origin-Host instead of the MPE Origin-Host. Route-Record in RARs are not removed.

If a Gx CCR-U/T message does not contain a Destination-Host, or contains a Destination-Host set to the MRA identity, a binding lookup is performed based on the available and indexed keys to find the corresponding MPE device. The message is then forwarded to the MPE device with no Destination-Host. If the message contains a Destination-Host set to an identity other than the MRA, the message is routed based on the Destination-Host only.

When the Origin-Host is replaced on a forwarded message, the original Origin-Host is logged at the end of a message when logging the message details.

Use this procedure when you want to improve internal security by hiding internal IP addresses and domain names in a Diameter-enabled network.

To configure topology hiding for the Gx application:

  1. From the MRA section of the navigation pane, select Configuration.

    The content tree displays a list of MRA groups; the initial group is ALL.

  2. From the content tree, select an MRA device.

    The MRA Administration page opens.

  3. Select the MRA tab.

    The current MRA configuration settings are displayed.

  4. Click Modify.

    The Modify MRA page opens.

  5. In the Subscriber Indexing section, ensure that the Index by Session ID option is enabled if there are no other indexed subscriber keys available in update/terminate messages.
  6. Click Save.
  7. From the MRA tab, click Advanced.
  8. Click Modify to edit the Service Overrides table.
  9. In the Service Overrides section, click Add.
  10. In the Add Configuration Key Value dialogue, enter the following information:
    1. Enter DIAMETERDRA.TopologyHiding.Apps in the Configuration Key field.
    2. Enter Gx in the Value field.
    3. (Optional) Enter information for this configuration in the Comments field.
  11. Click OK.
  12. In the Service Overrides section, click Add.
  13. In the Add Configuration Key Value dialogue, enter the following information:
    1. Enter DIAMETERDRA.TopologyHiding.Enabled in the Configuration Key field.
    2. Enter true in the Value field.
    3. (Optional) Enter information for this configuration in the Comments field.
  14. Add the following configuration keys to the Add Configuration Key Value window:
  15. Click OK.
  16. Click Save.
Topology hiding for the Gx application has been configured.
Parent topic: About Configuring a CMP System, MRA and MPE Devices