Configuring Diameter Client Nodes and Relay Agents 10-5 To enable incoming Diameter connections on a server, you must configure a dedicated network channel of the appropriate protocol type: ■ diameter channels use TCP transport ■ diameters channels use TCPTLS transport ■ diameter-sctp channels use TCPSCTP transport. Servers that use a TCPTLS channel for Diameter diameters channels must also enable two-way SSL. Oracle WebLogic Communication Services may automatically upgrade Diameter TCP connections to use TLS as described in the Diameter specification RFC 3558. To configure a TCP or TCPTLS channel for use with the Diameter provider, follow these steps: 1. Access the Administration Console for the Oracle WebLogic Communication Services domain.

2. Click Lock Edit to obtain a configuration lock.

3. In the left pane, select the name of the server to configure.

4. In the right pane, select Protocols Channels to display the configured channels.

5. Click New to configure a new channel.

6. Fill in the fields of the Identity Properties page as follows: ■ Name: Enter an administrative name for this channel, such as Diameter TCPTLS Channel. ■ Protocol: Select diameter to support the TCP transport, diameters to support both TCP and TLS transports, or diameter-sctp to support TCP transport.

7. Click Next to continue.

8. Fill in the fields of the Network Channel Addressing page as follows: ■ Listen Address: Enter the IP address or DNS name for this channel. On a multi-homed machine, enter the exact IP address of the interface you want to configure, or a DNS name that maps to the exact IP address. ■ Listen Port: Enter the port number used to communication via this channel. Diameter nodes conventionally use port 3868 for incoming connections. ■ External Listen Port : Re-enter the Listen Port value.

9. Click Next to continue.

10. Chose attributes in the Network Channel Properties page as follows: ■ Enabled : Select this attribute to ensure that the new channel accepts network traffic. ■ Tunneling Enabled : Un-check this attribute for Diameter channels. ■ HTTP Enabled for this Protocol : Un-check this attribute for Diameter channels. Note: If a server configures at least one TLS channel, the server operates in TLS mode and will reject peer connections from nodes that do not support TLS as indicated in their capabilities exchange.