1. Feature Guide
  2. DSR Features and Functions
  3. Routing and Transaction Related Parameters in the DSR
  4. Signaling Firewall

2.6.13 Signaling Firewall

Signaling Firewall feature is the network security feature of DSR which configures native Linux ‘iptable’ rules in the Linux firewall on each DA-MP server to allow only essential network traffic pertaining to the active signaling configuration. The in-bound signaling traffic is accepted by the DSR application only over the administratively enabled Diameter and Radius connections configured at DSR SOAM.

Signaling Firewall feature provides the following capabilities at DSR:

  • Capability to automatically configure the Linux firewall to allow desired signaling network traffic on DA-MPs.
  • Capability to dynamically update the Linux firewall configuration on DA-MPs to allow or disallow signaling traffic.
  • Capability to administer (Enable and Disable) the DSR Signaling Firewall on the Signaling Node via System OAM configuration user interfaces.

Figure 2-15 DSR Signaling Firewall


DSR Signaling Firewall

Note:

This feature does not apply to IPFE servers and hence there is no impact on the IPFE function.