Canonical URL: ; File formats: Plain Text PDF; Status: PROPOSED STANDARD; Obsoleted by: RFC ; Updated by. Diameter is an authentication, authorization, and accounting protocol for computer networks. The Diameter base protocol is defined by RFC ( Obsoletes: RFC ) and defines the minimum requirements for an AAA protocol. Diameter. Diameter is the protocol used within EPS/IMS architectures for AAA ( Authentication, Diameter is specified primarily as a base protocol by the IETF in RFC

Author: Kigagar Kagazshura
Country: Bahrain
Language: English (Spanish)
Genre: Art
Published (Last): 25 December 2015
Pages: 406
PDF File Size: 15.82 Mb
ePub File Size: 4.62 Mb
ISBN: 728-7-68745-975-2
Downloads: 66959
Price: Free* [*Free Regsitration Required]
Uploader: Dilmaran

It can be set only in cases where no answer has been received from the server for a request and the request is sent again. For IPv4, a typical first rule is often “deny rff ip!

An access device that is unable to interpret or apply a deny rule MUST terminate the session. Relay Agents Relay Agents are Diameter agents that accept requests and route messages to other Diameter nodes based on information found in the messages e. If cleared, the message MUST be locally processed. Diameter Command Naming Conventions Diameter command names typically includes one or more English words followed by the verb Request or Answer.

These Diameter agents are useful for several reasons: The format of the Data field MUST be one of the following base data types or a data type derived from the base data types.

The supported IP options are: As ofthe only value supported is 1. The absence of a particular option may be denoted with a ‘! The Diameter protocol was initially developed by Pat R. The End-to-End Identifier is an unsigned bit integer field in network byte order that is used to detect duplicate messages along with the combination of the Origin-Host AVP. The following is a definition of a fictitious command code: The AVP contains the identity of the peer the request was received from.


Messages with the “E” bit set are commonly referred to as error messages. End-to-End Identifier The End-to-End Identifier is an unsigned bit integer field in network byte order and is used to detect duplicate messages.

Here there are two: By using this site, you agree to the Terms of Use and Privacy Policy. Likewise, this reduces the configuration load on Diameter servers that would otherwise be necessary when NASes are added, changed or deleted.

Diameter (protocol)

An access device that is unable to interpret or apply a permit rule MAY apply a more restrictive rule. It MAY do this in one of the following ways: Messages with the ‘E’. Fragmented packets that have a non-zero offset i.

A rule that contains a tcpflags specification can never match a fragmented packet that has a non-zero offset. Diameter is used for many different interfaces defined by the 3GPP standards, with diameer interface typically defining new commands and attributes.

It is set when resending requests not yet acknowledged as an indication of a possible duplicate due to a link failure. AVPs containing keys and passwords should be considered sensitive.


Diameter implementations are required to support all Mandatory AVPs which are allowed by the message’s formal syntax and defined either in diameted base Diameter standard or in one of the Diameter Application specifications governing the message. A three-letter acronym for both the request and answer is also normally provided. The ” T ” Potentially re-transmitted message bit — This flag is set after a link failover procedure, to aid the removal of duplicate requests.

There is one kind of packet that the access device MUST always discard, that is an IP fragment with a fragment offset of one. Application-ID Application-ID is four octets and is used to identify to which application the message is applicable for. It belongs to the application layer protocols in the internet protocol suite.

Diameter Base Protocol Support

The first two octets of the Address. This scenario is advantageous since it does not require that the consortium provide routing updates to its members when changes are made to a member’s infrastructure.

If no rule matches, the packet is dropped if the last rule evaluated was a permit, and passed if the last rule was a deny. From Wikipedia, the free encyclopedia.

The metering options MUST be included.