NOE ALG Configuration
Except on the first page, right running head:
Heading1 or Heading1NewPage text (automatic)
723
Alcatel-Lucent
Beta
Beta
CLI Configuration Guide
NOE ALG C
ONFIGURATION
Alcatel-Lucent uses its proprietary protocols New Office Environmentl (NOE) for
IP phone signaling.
NOE provides rich graphical display facilities in the IP phones. Since NOE is
similar to other voice protocols like SIP for voice services, it carries dynamic data
port information in the control packets. ALG needs to be developed to open up
ports for data traffic.
The NOE ALG processing involves:
•
Register NOE ALG Constructor (based on packet type classification filter/DOS/
NAT/IDS policy)
•
Install NOE ALG vectors
•
Create pinhole and monitor NOE data traffic
•
ALG inspection and translation
•
Release of pinhole and call ALG destructor.
NOE ALG also gives user an option to configure
policies (filter/DOS/NAT/IDS
policy) to precisely classify, permit only NOE/RTP/RTCP traffic between phones,
Call Server, Media Gateway, and drop other types of traffic between these
devices. These features will prevent attacks coming from internal networks
through VPN. Another benefit from NOE ALG is to precisely identify RTP and
RTCP traffic so that user can apply QoS on the voice traffic.
P
ERSISTENT
M
EMORY
When NOE phone request passes through OA-700, ALG assigns a unique sub
address to phone. This sub address is used to tell the call server about the
existence of multiple phone terminal behind NAT box. If ALG restarts, ALG may
not be able to give the same sub address to the phones as it would have lost all
the mappings. In this case, call server sees different sub address for the same
phone and it rejects the new request. This means that phone can never come up.
User may need to do some mapping cleanup on the server. With OmniAccess
device architecture, it is possible that during some package installation ALG may
get restarted, or there is possibility of data plane getting restarted. So its
necessary for ALG to keep this mapping in some kind of persistent storage. And
this persistent storage will be used after every restart to get the mapped sub
address information. This way there is no need to do any kind of cleanup on the
server.
A
LCATEL
-L
UCENT
S
PECIFIC
O
VERVIEW
•
NOE ALG works with filter/DOS/NAT/IDS to adjust the data packets on-the-fly.
•
Provides NAT support for NOE ALG.
Summary of Contents for OmniAccess 700
Page 38: ...Left running head Chapter name automatic 12 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 176: ...Left running head Chapter name automatic 150 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 260: ...Left running head Chapter name automatic 234 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 434: ...Left running head Chapter name automatic 408 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 464: ...Left running head Chapter name automatic 438 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 638: ...Left running head Chapter name automatic 612 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 940: ...Left running head Chapter name automatic 914 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 1002: ...Left running head Chapter name automatic 976 Beta Beta CLI Configuration Guide Alcatel Lucent ...
Page 1120: ...Left running head Chapter name automatic 2 Beta Beta CLI Configuration Guide Alcatel Lucent ...