manualshive.com logo in svg

Cisco ISDN GW 3241, Online Help Manual

The Cisco ISDN GW 3241 is a cutting-edge product designed for seamless integration of ISDN networks with IP-based communication systems. To help users get started with this feature-rich gateway, we offer a comprehensive user manual available for free download at manualshive.com. Access the manual today and unlock the full potential of your Cisco ISDN GW 3241.

Share
Download
background image

Configuring security settings 

Cisco TelePresence ISDN Gateways v2.0 Online help (Printable format) 

  83 of 116 

Advanced security mode  

You can configure the ISDN gateway to use advanced security mode. Advanced security mode has 
the following features:  

 

The ISDN gateway will hash passwords before storing them in the configuration.xml file (see 

Hashing passwords

 below)  

 

The ISDN gateway will demand that passwords fulfill certain criteria, using a mixture of 
alphanumeric and non-alphanumeric (special) characters (see 

Password format

 below) 

 

Passwords will expire after 60 days 

 

A new password for an account must be different from the last ten passwords used with that 
account 

 

The ISDN gateway will disable a user's account if that user incorrectly enters a password 
three times consecutively. If this is an admin account, it is disabled for 30 minutes; for any 
other account, it is disabled indefinitely (or until you, the administrator, re-enable the account 
from the 

User

 page)  

 

Non-administrator account holders are not allowed to change their password more than once 
in any 24 hour period 

 

Administrators can change any user account’s password and force any account to change its 
password by selecting 

Force user to change password on next login

 on the 

User

 page. 

Administrators can prevent any non-administrator account from changing its password by 
selecting 

Lock password

 on the 

User

 page.  

 

The ISDN gateway will disable any non-administrator account after a 30 day period of account 
inactivity. To re-enable the account, you must edit that account's settings on the 

User

 page 

If you enable advanced security, all current passwords (created when the ISDN gateway was not in 
advanced security mode) will expire and users must change them.

 

When using Advanced account security mode, it is a good idea to rename the default administrator 
account. This is especially true where the ISDN gateway is connected to the public internet because 
security attacks will often use “admin” when attempting to access a device with a public IP address. 
Even on a secure network, if the default administrator account is “admin”, it is not inconceivable that 
innocent attempts to log into the ISDN gateway will cause you to be locked out for 30 minutes. 

In advanced security mode, if a user logs in with a correct but expired password the ISDN gateway 
asks that user to change the password. If the user chooses not to change it, that user is allowed two 
more login attempts to change the password before the account gets disabled. 

Hashing passwords 

In advanced security mode, the ISDN gateway will hash passwords before storing them in the 
configuration.xml file. The configuration.xml file is used for backing up and restoring the configuration 
of the ISDN gateway (see 

Upgrading and backing up the ISDN gateway

). If you do not select to use 

advanced pasword security, all user passwords are stored in plain text in the configuration.xml; this 
might be a security issue. If you select to use advanced password security, they will not be stored 
anywhere on the ISDN gateway in plain text; instead the passwords will be stored as hash sums. Note 
that hashing user passwords is an irreversible process. 

Summary of Contents for ISDN GW 3241

Page 1: ...Cisco TelePresence ISDN Gateways Version 2 0 Online help printable format D14659 02 December 2010 ...

Page 2: ...teway as a voice only gateway 13 Dial plan configuration 14 Calling a PSTN telephone from an MCU 14 Displaying ISDN port utilization 15 Displaying the ISDN calls list 16 Disconnecting and deleting calls 16 Diagnostic controls 16 Displaying detailed call information 17 Understanding the dial plan 19 Rules 19 Using rules 20 Rule ordering 20 Displaying and testing the dial plan 21 Displaying the rule...

Page 3: ...ial plan leased line mode 39 Dial plan syntax 40 Syntax for conditions Called number matches 40 Syntax for actions Call this number 41 Displaying the built in gatekeeper registration list 42 Configuring the built in gatekeeper 42 Configuring neighboring gatekeepers 42 Gatekeeper status 44 ID view 44 Registration view 45 Displaying the user list 46 Adding and updating users 47 Adding a user 47 Upda...

Page 4: ...gs 68 ISDN multipoint settings 69 Configuring ISDN ports settings 70 Configuring ISDN ports settings non leased line mode 71 Port settings 71 Configuring ISDN ports settings in leased line mode 74 Port settings 74 Configuring H 323 gatekeeper settings 75 Gatekeeper settings 75 Gatekeeper status 78 Configuring encryption settings 80 Displaying and resetting system time 81 System time 81 NTP 81 Usin...

Page 5: ...gs 95 Audit log 95 Understanding security warnings 96 Logging using syslog 100 Syslog settings 100 Using syslog 101 Working with Call Detail Records 102 Call Detail Record log controls 102 Call Detail Record log 103 Downloading and clearing the log 103 CDR log display 104 Further information about CDR time field 104 Customizing the user interface 105 Configuring user interface settings 105 Control...

Page 6: ...e prompts 109 Voice prompt specification 110 Making the best possible recordings 110 Customization More information 111 Precedence 111 The factory default file set 111 Localization files 111 Customization files 111 Backing up and restoring the configuration using FTP 112 Configuring SSL certificates 113 License copyright and trademark information 115 ...

Page 7: ...terface you must log in so that the ISDN gateway can associate the session with your configured user and a set of access privileges The ISDN gateway has a set of configured users and each user has an ID and password that are used for logging in 1 Using a web browser enter the host name or IP address of the ISDN gateway 2 To log in as the administrator click Log in enter your assigned User name and...

Page 8: ...rator re enable the account from the User page No free sessions the maximum number of sessions allowed simultaneously on the ISDN gateway has been exceeded Your IP address does not match that of the browser cookie you supplied try deleting your cookies and log in again You do not have access rights to view this page you do not have the access rights necessary to view the page that you attempted to...

Page 9: ...ettings ISDN ports a Set low and high channels If you have a fully populated PRI this is the normal case set Low channel to 1 for all network types and High channel to Max If you have a fractional PRI where your provider offers a reduced number of B channels enter alternative values as appropriate b Set the Channel search order When making calls the ISDN gateway examines which B channels are free ...

Page 10: ...and click Add rule g For Rule name type in a name for the new rule h For Condition select Match any called number i For Action select Call this number and enter the IP address of your MCU j Leave the other values unchanged Click Add rule to add the rule to the dial plan Note for more information about dial plans refer to Understanding the dial plan ...

Page 11: ...al plan in place calls can be placed through the ISDN gateway ISDN to IP calls If you have configured the dial plan as in Getting started with the ISDN gateway endpoints calling the phone number of the ISDN gateway will after the call is completely established be forwarded to the auto attendant of the MCU From here they may use the Far End Camera Controls FECC of their endpoint to navigate the men...

Page 12: ... When you dial you can use the following Digits 0 to 9 asterisk or star which is interpreted as a dot for ISDN to IP calls interpreted as a and used as an extension separator for ISDN to IP calls hash to indicate that you have completed the number and to start dialing To call a specific extension separate the number address from the extension by typing a colon For example to call the Cisco TelePre...

Page 13: ...t to the ISDN network as a voice only call For IP to ISDN calls if the ISDN gateway receives a video conferencing call that has been restricted to being a voice only call due to the settings on the ISDN gateway the unit will forward it as a voice only call the call will not be dropped If the IP endpoint does allow the call type to be specified an IP telephone call will always be placed as such ISD...

Page 14: ...cide how to route the calls The caller is not required to additionally enter the DTMF codes manually on the telephone keypad but instead can have the call re routed automatically using the dial plan of the ISDN GW For more information about configuring the dial plan refer to Understanding the dial plan Adding dial plan rules and Example dial plan rules Calling a PSTN telephone from an MCU If you w...

Page 15: ... this channel Direction If the channel is active the direction of the call is displayed Either inbound for calls to the ISDN endpoint outbound for calls from the ISDN endpoint Calling party The identity of the endpoint that initiated the call depending on what that endpoint has provided for IP ISDN calls that is outbound calls this is the name of the H 323 device the telephone number or Cisco Tele...

Page 16: ...isplay the ISDN Calls List go to ISDN ISDN calls Field Field description Type The type of call which will either be IP to ISDN or ISDN to IP Participants The participants in the call An IP participant will be listed by IP address An ISDN participant will be listed by ISDN number Details For example the time that the call started its duration and whether encryption is used Progress Progress is indi...

Page 17: ...ing if it is allowed and where to direct it Calling out the ISDN gateway is trying to make contact with the other side of the call Connected the call is in progress between and IP and ISDN endpoints Dying Displayed briefly while a call is terminated either by one of the participants or via the web interface Call progress also lists the caller s number the number that was called and the destination...

Page 18: ...ther all or only some of the media channels are encrypted Channel bonding map Only for ISDN participants The numbers of the ISDN channels that are in use for this call Channel rate Only for ISDN participants Whether or not restricted 56k mode is in use for the received rx and or transmitted tx part of an ISDN call For unrestricted calls rx and or tx the channel rate will be 64kbps ...

Page 19: ...o where differences exist The maximum number of rules that can be added to each dial plan is 200 Note that if you have configured the ISDN gateway to use leased line mode then the options available on the dial plan are different to those available in non leased line mode Refer to the sections below for more information about the use and administration of dial plans Rules Using rules Rule ordering ...

Page 20: ... will be initiated calling a number specified by the action the auto attendant is displayed or the connection will be rejected and the incoming part terminated If a dial plan contains no rules or if no rule s condition matches the called number calls are rejected by default For more information on adding and modifying dial plan rules see Adding dial plan rules Rule ordering Rules are always checke...

Page 21: ...lan comprises a set of rules that are followed in response to the incoming part of a connection in order to determine how to proceed with the outgoing part of the connection You can view the set of rules comprising a dial plan as a list with rules checked from top to bottom Refer to the table below for details of the fields displayed Field Field description More information Name The unique number ...

Page 22: ...lled number the original called number will be used to place the outgoing part of the call Call these numbers meaning that this is a video call using N x 64kbps or N x 56kbps for legacy ISDN endpoints only The first two numbers to be called are listed here click the dial plan number to view the complete list of numbers included in this rule Call port leased line group if the ERROR is using leased ...

Page 23: ...change the order of rules drag and drop the rule that you want to move or use the up and down links To add a rule click Add rule see Adding and updating dial plan rules To remove a rule select one or more and click Delete selected rules Testing the dial plan It may take some experimentation to create the dial plan that you require The ISDN gateway provides a facility to test the dial plan to see h...

Page 24: ...ules The options that are available to you when you are configuring dial plan rules depend on whether or not the ISDN gateway is in leased line mode Leased line mode is configured on the Settings ISDN page Select the help topic that you need Adding and updating dial plan rules Adding dial plan rules in leased line mode ...

Page 25: ...DN gateway o Called number matches To match a specific number enter that specific number Example to match calls to 001234 type 001234 The condition will match that and only that number Use S to match asterisk and use P to match pound hash Examples to match calls to 234 type S234 to match calls to 0987 type P0987 To match a more general number use the wildcard character D This matches any digit as ...

Page 26: ...outgoing call placed over IP to 54321 o Call this number not valid if you are going to select Video using H 221 aggregation legacy as the Call type in the Additional parameters section the outgoing call will be placed to the number that is entered here Type a number or for ISDN to IP rules you can also type an IP address or hostname To call a specific number or for ISDN to IP calls you can also sp...

Page 27: ...select this option unless your network requires it Note that for a call matching a rule that uses 56k mode if the endpoint only supports 64k the ISDN gateway will drop the call rather than use 64k o Maximum call bandwidth optionally select a maximum bandwidth for the ISDN part of the call which will otherwise be set to the default value To view or edit the default value go to Settings ISDN The max...

Page 28: ...Port search order field in the Settings ISDN page o Receive call on ISDN to IP only select the port s to advertise to the calling endpoint These ports may be used to complete subsequent calls from the calling end The selected ports will be used in ascending or descending order as specified in the Port search order field in the Settings ISDN page 7 For Codecs allowed select an option from the drop ...

Page 29: ...t known or unavailable Generally this kind of rule should be used towards the bottom of the dial plan list to match numbers not recognized by more specific rules higher up o No called number this is only for IP to ISDN dial plan rules this condition matches when the caller uses the IP address or hostname of the ISDN gateway o Called number matches this is only for IP to ISDN dial plan rules To mat...

Page 30: ...Action that is what happens to the outgoing part of the call if this rule is invoked choose one of o Reject the call the call will be terminated and the outgoing part of the call will not be established o Call port X leased line group x this is only for IP to ISDN dial plan rules You can select the port number and leased line group number for the outgoing ISDN call You can either specify these as ...

Page 31: ... the maximum bandwidth and the global setting for maximum bandwidth for outgoing ISDN calls is 256kbps 4 x B channels the maximum bandwidth available to the call will never be more than 256kbps o Encryption settings Use transparent encryption when selected the ISDN gateway will simulate point to point encryption That is it will set the encryption state enabled disabled used on the received call as...

Page 32: ...o Safe codec choices only allows G 711 and H 261 8 Click Add rule Updating dial plan rules To update an existing dial plan rule 1 Go to Dial plan and find the rule you want to modify 2 Click on the number or name of the rule to view its details 3 Modify the rule details using the information listed above in Adding dial plan rules to help you 4 Click Update rule You may wish to create a new rule ve...

Page 33: ...any In this case set a Condition that matches calls to that specific number set the Action to call with the original called number and set the Maximum call bandwidth to use 768kbps As cost is an issue with calls to the ISDN network you may want to provide users with a list of prefixes that they can use to control the bandwidth for the calls they make In this way rules enable you to allow users to ...

Page 34: ... outgoing call allocated with eight channels to be placed to 5678 Note that in the above example in the absence of any further rules any calls that do not match the three listed conditions will be rejected because that is the default behavior of the dial plan Allocating bandwidth using rules for ISDN to IP calls Using rules it is possible to limit the bandwidth available for incoming ISDN calls Th...

Page 35: ...llowing dial plan to specify how IP telephone calls that is voice only calls will be forwarded to the ISDN network IP endpoints sometimes do not allow users to specify the type of call being made The following dial plan shows that users can be told the prefix to dial should their call be a telephone call rather than a video and voice call This dial plan also includes an example of how you can use ...

Page 36: ...when using TCS 4 TCS 4 is a protocol that only applies to H 320 video calls and is a method of signaling an extension number after an H 320 call has been established By using a TCS 4 extension to pass the extra digits to the ISDN gateway customers can dial from a predefined endpoint phone list rather than entering the extension using DTMF in the auto attendant ISDN to IP calls There is a new Actio...

Page 37: ...teway This new functionality has been implemented for the IP to ISDN dial plan on the ISDN gateway as explained below When you dial from the calling IP endpoint you need to send both the dial plan call in match parameters of the two ISDN gateways as well as the required TCS 4 extension Assume that the first ISDN gateway dial plan call in number match is 123 the second ISDN gateway TCS 4 dial plan ...

Page 38: ...e ISDN endpoint manufacturer However in this case when you are dialing from the IP endpoint to the first ISDN gateway you can either use or irrespective of the endpoint you re using For example when you dial 123456 789 from the IP endpoint you could also dial 123456 789 In the latter case simply change the Called number match of the first ISDN gateway from 123 D P D to 123 D S D S denotes Notes It...

Page 39: ... incoming on port Any leased line group Any Call this number 10 2 1 10 use default value This rule matches any call arriving from the ISDN network that has not matched either of the above two rules and forwards it to for example an operator at 10 2 1 10 IP to ISDN dial plan leased line mode The dial plan shown below is the IP to ISDN dial plan Condition Action TCS 4 extension Description 0 Called ...

Page 40: ...nd or known as an asterisk or star use the wildcard character D Example to match any number that starts with 623 followed by exactly two more digits type 623DD This condition will match 62300 62323 62355 62399 623 etc but not 623 or 623233 To match once or zero times use Example 6 means match one 6 or no 6s and is useful when used with the wildcard D where you do not know how long a number will be...

Page 41: ... separate the number address from the extension by typing a colon Example to call the Cisco TelePresence MCU with IP 10 2 1 33 and try to join a conference with numeric identifier 00000 type 10 2 1 33 00000 To call a specific extension separate the number address from the extension by typing an exclamation mark Example to call the Cisco TelePresence MCU with IP 10 2 1 33 and try to join a conferen...

Page 42: ...two neighboring gatekeepers This means that if the built in gatekeeper receives a request known as an Admission Request or ARQ to resolve an ID to an IP address and that ID is not currently registered with it then it will forward that request to its neighbor gatekeeper s as a Location Request LRQ The built in gatekeeper will then use the information received from the neighbor s to reply to the ori...

Page 43: ...LCF Enabled using received return address The ISDN gateway will put in the LRQ the address of the gatekeeper that originated the request as the return address for the LCF Use this option only if you are configuring the ISDN gateway to operate in an environment with a multiple level gatekeeper hierarchy For example the received address is required by the national gatekeepers connected to the Global...

Page 44: ...same device are not necessarily listed together in the ID view but the view can be sorted by Registrant or Index to help you identify IDs belonging to the same registrant ID view Field Field description Usage tips ID The ID which the registrant has registered with the gatekeeper IDs can be numbers H 323 IDs or prefixes Type The type of registration One of E 164 digits H 323 ID or Prefix Index This...

Page 45: ...ailability Indication mechanism that it is close to its resource limit the Registrant will be labeled as almost out of resources H 323 ID The registered H 323 ID of the device To help identify registering devices if the registrant has registered a H 323 ID which will typically be its device name that H 323 ID is shown here If the device has registered multiple H 323 IDs only the first is displayed...

Page 46: ...st go to Users Refer to the table below for assistance Field Field description User ID The log in name that the user needs to use to access the ISDN gateway web browser Click on a name for further details see Updating a user Name The full name of the user Privilege The access privileges associated with this user An administrator can change any ISDN gateway configuration and view all status informa...

Page 47: ... to the table below to determine the most appropriate settings for the user 4 After entering the settings click Update user settings Field Field description Usage tips User ID Identifies the log in name that the user will use to access the ISDN gateway web browser Although you can enter text in whichever character set you require note that some browsers and FTP clients do not support Unicode chara...

Page 48: ...e Change password control instead Re enter password Verifies the required password Disable user account Select to disable this account This can be useful if you want to keep an account s details but do not want anyone to be able to use it at the moment You cannot disable the system created admin account The system created guest account is disabled by default If you enable it and the ISDN gateway i...

Page 49: ...ccounts where Lock password is selected When the user changes his password the ISDN gateway clears this checkbox automatically Privilege level The access privileges to be granted to this user An administrator can change any ISDN gateway configuration and view all status information a user with the list only privilege may only view basic details about active calls The system created guest account i...

Page 50: ...e your new password In advanced security mode passwords must have at least fifteen characters at least two uppercase alphabetic characters at least two lowercase alphabetic characters at least two numeric characters at least two non alphanumeric special characters not more than two consecutive repeating characters That is two repeating characters are allowed three are not In advanced security mode...

Page 51: ...d must be different to the previous 10 passwords that have been used with an account In advanced security mode if a user logs in with a correct but expired password the ISDN gateway asks that user to change the password If the user chooses not to change it that user is allowed two more login attempts to change the password before the account gets disabled In advanced security mode users other than...

Page 52: ...the appropriate Ethernet port of the ISDN gateway When you have finished click Update IP configuration and then reboot the ISDN gateway Field Field description Usage tips IP configuration Specifies whether the port should be disabled or enabled and if enabled whether the ISDN gateway obtains its own IP address for this port automatically via DHCP Dynamic Host Configuration Protocol or whether or i...

Page 53: ...t returns that it does not know an address the secondary DNS server will not be queried Domain name DNS suffix Specifies an optional suffix to add when performing DNS lookups This can allow you to use non fully qualified host names when referring to a device by host name instead of IP address For example if the domain name is set to cisco com then a request to the name server to look up the IP add...

Page 54: ...automatic negotiation if a connection speed of 1000 Mbit s is required The connection speed must match that of the device to which this port is connected You only need to select this option if you have chosen manual Ethernet settings as described above Duplex Identifies the connection duplex mode Full duplex Both devices can send data to each other at the same time Half duplex Only one device can ...

Page 55: ... can help you confirm that the unit is transmitting packets into the network Packets received Displays a count of the total number of packets received by this port of the ISDN gateway This includes all TCP and UDP traffic When troubleshooting connectivity issues this information can help you confirm that the unit is receiving packets from the network Statistics The fields display further statistic...

Page 56: ...guration Therefore it only makes sense to have precisely one default gateway even though different default gateways may have been configured for Ports A and B Use this option to decide which port s default gateway configuration to use as the unit s default gateway If Ethernet Port B is disabled you cannot specify that port as the default gateway preference Selecting Port B as default gateway prefe...

Page 57: ...ields to define the type of IP addresses to which this route applies The IP address pattern must be in the dot separated IPv4 format while the mask length is chosen in the IP address mask length field The mask field specifies how many bits of the address are fixed unfixed bits must be set to zero in the address specified To route all IP addresses in the range 192 168 4 128 to 192 168 4 255 for exa...

Page 58: ...y preference field see Port preferences and cannot be deleted Any packets not covered by manually configured routes will be routed according to this route Manually configured routes may be deleted by selecting the appropriate checkbox and clicking Delete selected Routes behavior with disabled ports If the default gateway preference is set to Port B and that port is disabled the default route will ...

Page 59: ...are sent to port UDP port 162 on the destination network management station this is configurable For more information refer to Configuring SNMP settings To reset all values back to their factory default settings click Reset to default and then click Apply changes Field Field description Usage tips TCP service Web Enable disable web access on the appropriate port Web access is required to view and ...

Page 60: ...access If a port is disabled this option will be unavailable UDP service SNMP Enable disable the receiving of the SNMP protocol on this port or change the port that is used for this service If a port is disabled this option will be unavailable You must use the same port number for both Port A and Port B The number is automatically refreshed for Port B Note that by default SNMP Traps are sent to po...

Page 61: ...ption Usage tips Name Identifies the ISDN gateway in the SNMP system MIB Usually you would give every device a unique name The default setting is Cisco ISDN GW Location The location that appears in the system MIB An optional field It is useful where you have more than one ISDN gateway to identify where the unit is located The default setting is Unknown Contact The contact details that appear in th...

Page 62: ...to four devices that will receive both the general and the authentication failure traps The traps that are sent by the ISDN gateway are all SNMP v1 traps You can configure trap receivers or you can view the MIB using a MIB browser You can set the UDP port number for the trap in the format IP address port number By default the UDP port number is 162 Access control Field Field description Usage tips...

Page 63: ...Differentiated Services DiffServ Note Do not alter the QoS settings unless you need to do so To configure the QoS settings you need to enter a six bit binary value Further information about QoS including values for ToS and DiffServ can be found in the following RFCs available on the Internet Engineering Task Force web site www ietf org RFC 791 RFC 2474 RFC 2597 RFC 3246 In this section About QoS c...

Page 64: ...elay to other packets on the network For example do not set every value to 1 DiffServ configuration DiffServ uses six out of a possible eight bits to set a codepoint There are 64 possible codepoints The ISDN gateway allows you to set bits 0 to 5 and will place zeros for bits 6 and 7 The codepoint is interpreted by DiffServ nodes to determine how the packet is treated Default settings The default s...

Page 65: ...teway may have to be restarted for changes of this setting to take effect see Shutting down the ISDN gateway ISDN switch type If the ISDN interface type is T1 or J1 select the ISDN switch type Choose from National ISDN default switch type for use with the ISDN gateway 4ESS a custom switching protocol designed by AT T DMS 100 a custom protocol used with Nortel network infrastructure with T1 network...

Page 66: ... the PSTN can then be placed to IP telephones The value entered is the maximum bandwidth for an incoming ISDN call The dial plan cannot override this value with a higher maximum bandwidth However by using the dial plan you can impose a lower bandwidth for particular calls Also note that the calling ISDN endpoint may elect to establish a call at a lower bandwidth If you have selected Telephone then...

Page 67: ... in the dial plan Load balancing Use this option to forward calls to another gateway if all of this ISDN gateway s channels are full or unavailable Your ISDN network must support this functionality Select Active on its own or in combination with Use higher numbered channels only When Active is selected the ISDN gateway rejects incoming ISDN calls if not enough channels are available and sends a Re...

Page 68: ... Line impedance Line coding Transmit pulse shape National bits Sa4 Sa8 Do not change these settings unless advised to do so by Cisco customer support or if you are an experienced ISDN administrator Not all settings apply to all networks For example the National bits are relevant only for E1 networks Video NSF Telephone NSF These fields allow you to choose a value between 1 and 31 or to leave the N...

Page 69: ...te that H 263 also encompasses H 263 Content video codecs allowed Restricts the choice of content codecs that endpoints calling through the ISDN gateway may select Content allows a separate presentation stream alongside the video stream IP and ISDN endpoints between themselves negotiate which content codecs to use during a call Use these options if you wish to restrict the choices available Note T...

Page 70: ...gs The options that are available to you when you are configuring ISDN ports depend on whether or not the ISDN gateway is in leased line mode Leased line mode is configured on the Settings ISDN page Select the help topic that you need Configuring ISDN ports settings non leased line mode Configuring ISDN ports settings in leased line mode ...

Page 71: ... you do not want to use overlap receiving enter 0 to disable this feature Overlap receiving ensures that the ISDN gateway waits for all dialed digits before connecting the call To use overlap receiving it must be supported by your ISDN infrastructure When overlap receiving is enabled the ISDN gateway can collect a series of dialed digits sent from an endpoint before it starts the IP leg of the cal...

Page 72: ...arty number can then be used by an IP participant to return a call to the ISDN participant This feature should be used in conjunction with the overall dial plan mechanism Low channel The lowest numbered B channel available An ISDN PRI comprises a number of B channels A complete PRI has 30 available B channels when using E1 and 23 when using T1 or J1 Your ISDN network provider may offer a complete ...

Page 73: ... use here Allow NFAS Select to enable Non Facility Associated Signaling NFAS This setting is only visible when the ISDN gateway is configured to use T1 as the ISDN interface type To configure the ISDN interface type go to Settings ISDN NFAS allows multiple PRIs in T1 mode to use a single D channel The NFAS settings on the ISDN gateway must match the settings on the ISDN switch to which the ISDN ga...

Page 74: ... After making changes click Apply changes and then restart the ISDN gateway for the changes to leased line groups to take effect Port settings Field Field description Usage tips Enabled Whether this port may be used to make and receive ISDN calls Leased line group Indicates the number of the leased line group You can configure a maximum of five numbered leased line groups Each group is a collectio...

Page 75: ...After making any configuration changes click Apply Changes Field Field description Usage tips H 323 gatekeeper usage Enables the ISDN gateway to use an H 323 gatekeeper for registration of numeric identifiers for its conferences Choose from Disabled the gatekeeper is not consulted when determining where to direct a call No gatekeeper registrations will be attempted and existing registrations will ...

Page 76: ...on of all incoming calls and outgoing calls dialed by address rather than by E 164 phone number H 323 ID An identifier that the ISDN gateway uses to register itself with the gatekeeper You can specify a name or number If you are using a gatekeeper you must enter a registration ID Before the ISDN gateway can register any conferences with the H 323 gatekeeper it must make a unit wide registration Us...

Page 77: ...s useful in a network where there are multiple ISDN gateways or where there are several ISDN gateway blades in an MSE In an environment with multiple ISDN gateways registered with the same gatekeeper that gatekeeper should favor devices in the available state when choosing where to place new calls For example when one ISDN gateway sends the gatekeeper a message indicating that it is not available ...

Page 78: ...ress and port number that the ISDN gateway has registered with the gatekeeper This information might be useful if the ISDN gateway has more than one IP address for instance if both Ethernet interfaces are in use Alternate gatekeepers available Displays the number of alternate gatekeepers configured on the H 323 gatekeeper This figure comes from the gatekeeper itself if there are any alternate gate...

Page 79: ...re pending in progress but not fully registered or active fully registered The number of registrations can therefore be 0 1 or 2 H 323 ID registration Displays the identifier that the ISDN gateway has used to register itself with the H 323 gatekeeper For more information about the H 323 ID refer to the table above Resource availability status Displays whether the gatekeeper is configured to send r...

Page 80: ...se it the call will be disconnected configure each dial plan rule to use transparent encryption When transparent encryption is used the ISDN gateway will simulate point to point encryption That is it will set the encryption state enabled disabled used on the received call as that to be used on the outgoing call That is the ISDN gateway will attempt to match the encryption state for the outgoing ca...

Page 81: ... with the NTP server If the NTP server is not local the ISDN gateway will use the port that is configured as the default gateway to communicate with the NTP server unless a specific IP route to the NTP server s network IP address is specified To configure the default gateway or an IP route go to Network Routes Field Field description Usage tips Enable NTP If selected use of the NTP protocol is Ena...

Page 82: ...led on the Network Services page Idle web session timeout The timeout setting for idle web sessions The user must log in again if the web sessions expires The timeout value must be between 1 and 60 minutes Note that status web pages that auto refresh will keep a web session active indefinitely You can configure the ISDN gateway not to auto refresh those pages to do so go to Settings User interface...

Page 83: ...inactivity To re enable the account you must edit that account s settings on the User page If you enable advanced security all current passwords created when the ISDN gateway was not in advanced security mode will expire and users must change them When using Advanced account security mode it is a good idea to rename the default administrator account This is especially true where the ISDN gateway i...

Page 84: ...ic special characters not more than two consecutive repeating characters That is two repeating characters are allowed three are not In advanced security mode a new password must be different to the previous 10 passwords that have been used with an account Expiring passwords In advanced security mode if a user logs in with a correct but expired password the ISDN gateway asks that user to change the...

Page 85: ...eb browser interface 7 Go to Settings Upgrade 8 Click Browse to locate the unzipped file on your hard drive 9 Click Upload software image The browser begins uploading the file to the ISDN gateway and a new browser window opens to indicate the progress of the upload When finished the browser window refreshes and indicates that the Main image upgrade completed 10 The upgrade status displays in the I...

Page 86: ...fferent active ISDN gateway and there is a clash for instance both are now configured to use the same fixed IP address one or both boxes may become unreachable via IP If you check the User settings box the current user accounts and passwords will be overwritten with those in the supplied file If you overwrite the user settings and there is no user account in the restored file corresponding to your...

Page 87: ... If this is the case an expiry date will be displayed or a warning that the feature has already expired Expired activation codes remain listed but the corresponding feature will not be activated If the activation code is not valid you will be prompted to re enter it 4 It is recommended that you record the activation code in case you need to re enter it in the future Successful ISDN gateway or feat...

Page 88: ...ng power from the ISDN gateway Shutting down the ISDN gateway will disconnect all active calls To shut down the ISDN gateway follow these steps 1 Go to Settings Shutdown 2 Click the Shut down ISDN gateway button 3 Confirmation of shutdown is required the button changes to Confirm ISDN gateway shutdown 4 Click again to confirm 5 The ISDN gateway will begin to shut down The banner at the top of the ...

Page 89: ...signed to the ISDN gateway IP address The IP address assigned to the ISDN gateway CPU load The current processor utilization of the ISDN gateway System time Current time The system time on the ISDN gateway Click New time to modify this value The Time Settings page opens in which you can update the system date and time manually or refresh the time from an NTP server For more information about the T...

Page 90: ...h this information relates State Whether or not this port is enabled A port may be disabled because it is not supported by the particular model of ISDN gateway because the port is not applicable or not licensed or because it has been explicitly disabled by the user see Configuring ISDN ports settings Layer 1 Shows up when the physical layer is connected Shows down otherwise Layer 2 Shows up when t...

Page 91: ...operly Out of spec Check with your support provider component might require service If the Worst status seen column displays Out of spec but Current status is OK monitor the status regularly to verify that it was only a temporary condition Temperature Displays three possible states OK Out of spec Critical States indicate both Current status and Worst status seen conditions OK temperature of the IS...

Page 92: ...on link for the warning message relating to the issue When you fix a security issue the security warning disappears from this list on the Status Security page but it will be logged in the Audit log For more information about the audit log refer to Working with the audit logs Refer to the table below for details of the information displayed Field Field description Warning The text of the security w...

Page 93: ...displayed by editing the Display filter page Send the event log to one or more syslog servers on the network for storage or analysis The servers are defined in the Syslog page For more information refer to Logging using syslog Empty the log by clicking Clear log Event capture filter The Event capture filter allows you to change the level of detail to collect in the Event log traces You should not ...

Page 94: ... to enable it if there is a problem with a unit in your network Audit log The audit log records any user action on the ISDN gateway which might compromise the security of the unit of its functions or of the network For more information refer to Working with the audit logs Call Detail Records In addition to the logs described above the ISDN gateway can also store Call Detail Records CDR which may b...

Page 95: ...face API For configuration changes made through the API Supervisor For configuration changes made through the Supervisor Blade only applies to MSE blades System For audit messages from the ISDN gateway FTP For audit messages recording requests made to the ISDN gateway over FTP Each log also has a severity associated with it Error Severe Warning Warning Info or Status Warning You must enable the au...

Page 96: ...able hide log messages on console in serial console settings To hide log messages on the console go to Settings Security and select Hide log messages on console This will stop event messages appearing on the console Require administrator login to console is disabled Enable require administrator login in serial console settings Having to log in as administrator on the serial console increases secur...

Page 97: ... deselect the SNMP check box Auto refresh of web pages is enabled Change auto refresh interval to No auto refresh If your ISDN gateway is set to auto refresh it could mean that an unattended ISDN gateway will never have a session timeout To turn off auto refresh go to Settings User interface and change Status page auto refresh interval to No auto refresh Audit logging of configuration changes is d...

Page 98: ...ncryption When encryption status is Disabled no calls on the ISDN gateway will be able to use encryption To enable encryption go to Settings Encryption For Encryption status select Enabled Audit log above 75 capacity Download and delete audit logs The audit log has a maximum capacity of 200 000 audit events or the size limit of the compact flash card When you are nearing either of these limits the...

Page 99: ...tup Disable the serial input during startup If Disable serial input during startup isn t selected the serial console is not protected during application startup This means users will have access to debug services in the operating system To disable this go to Settings Security and select the Disable serial input during startup tick box ...

Page 100: ...level messages 2 mail system 3 system daemons 4 security authorization messages see Note 1 5 messages generated internally by syslogd 6 line printer subsystem 7 network news subsystem 8 UUCP subsystem 9 clock daemon see Note 2 10 security authorization messages see Note 1 11 FTP daemon 12 NTP subsystem 13 log audit see Note 1 14 log alert see Note 1 15 clock daemon see Note 2 16 local use 0 local0...

Page 101: ... number of packets sent to each configured host is displayed next to its IP address Note Each event will have a severity indicator as follows 0 Emergency system is unusable unused by the ISDN gateway 1 Alert action must be taken immediately unused by the ISDN gateway 2 Critical critical conditions unused by the ISDN gateway 3 Error error conditions used by ISDN gateway error events 4 Warning warni...

Page 102: ...n To view and control the CDR log go to Events CDR log Refer to the tables below for details of the options available and a description of the information displayed Call Detail Record log controls Call Detail Record log Call Detail Record log controls The CDR log can contain a lot of information The controls in this section help you to select the information for display that you find most useful W...

Page 103: ...d and display them all Note Only download CDRs when the unit is not under heavy load otherwise performance of the unit may be impaired The range of logs that you can download to the web interface works in groups Therefore you may see Download X to Y as XML and Y will not increase even though the log is filling up When a threshold is reached then Y increases However you always have the option to do...

Page 104: ...ail Record and brief details if available The display settings allow you to display more extensive details for different record types The filter string allows you to select for display only records where a particular word or string occurs Further information about CDR time field The CDR log time stamp is stored in UTC time and not local time like the Event log but converted to local time when disp...

Page 105: ...ion packages are available on the FTP site The ISDN gateway allows you to type using any character set when entering text into the web interface For example when naming endpoints or users you can use any character set you require Configuring user interface settings Controlling the auto refreshing of status pages on the ISDN gateway Some pages on the ISDN gateway auto refresh to ensure that the inf...

Page 106: ...ing the web interface Alternatively a collection of voice prompts may be uploaded in one go by means of a resource package see Uploading a customization package Some Cisco customization packages are available on the FTP site The customization of voice prompts is controlled via the web interface Go to Settings User interface Refer to the sections below for details of the options available and for a...

Page 107: ...sets to be built up using several different packages if required Viewing the available voice prompts You may review the voice prompt customizations available in the table headed Voice prompts The Voice prompts list displays all voice prompt customizations providing details for those which have alternatives uploaded Because these lists can be quite long by default they are hidden Instead the number...

Page 108: ...n your computer Voice prompt files must be in the following format o Microsoft WAVE WAV format o 16kHz 16000Hz sample rate o Mono o Uncompressed o Maximum 10 seconds long If you upload a file that is not in this format the upload may fail or the voice prompt may sound distorted when heard by users Use an audio editing package of your choice to make any conversions required See for how to obtain th...

Page 109: ...age containing all of the alternative voice prompts previously uploaded 1 Go to Settings User interface 2 Click Download package at the bottom of the Installed voice prompts list The customization package will be downloaded to your computer A package may only contain resources uploaded as separate files those uploaded as part of another package may not be included The package download option may b...

Page 110: ...d hence avoid any sample rate or resolution changes As discussed the ideal format is Microsoft Wave WAV format uncompressed mono at 16 kHz and 16 bit resolution If you are unable to make mono recordings the ISDN gateway can convert stereo recordings Background noise It is important to minimize background noise hiss as much as possible This includes ambient noises such as road noise and slamming do...

Page 111: ... package is unchecked 3 Delete any customized voice prompts 4 If there is a customized text prompt file delete it Localization files In some parts of the world units are available where the help pages the voice prompts the text messages and some of the web interface are in the local language In this case Cisco or the reseller has uploaded a package that provides localized files to replace files in...

Page 112: ...uration using FTP 1 Locate the copy of the configuration xml file that you want to restore 2 Ensure that the FTP service is enabled on the Network Services page 3 Connect to the ISDN gateway using an FTP client When asked for a user name and password use the same ones that use to log in to the unit s web interface as an administrator 4 Upload your configuration xml file to the unit overwriting the...

Page 113: ...ve uploaded your own certificate and key you can remove it later if necessary to do this click Delete custom certificate and key Field Field description Usage tips Local certificate Subject The details of the business to which the certificate has been issued C the country where the business is registered ST the state or province where the business is located L the locality or city where the busine...

Page 114: ...bought a certificate or you have your own way of generating certificates you can upload it Browse to find the certificate file Private key Browse to find the private key file that accompanies your certificate Private key encryption password If your private key is stored in an encrypted format you must enter the password here so that you can upload the key to the ISDN gateway ...

Page 115: ...isco TelePresence ISDN Gateways v2 0 Online help Printable format 115 of 116 License copyright and trademark information Please refer to the online help for details of software licenses copyright and trademark information relating to this product ...

Page 116: ... AND THE ABOVE NAMED SUPPLIERS DISCLAIM ALL WARRANTIES EXPRESSED OR IMPLIED INCLUDING WITHOUT LIMITATION THOSE OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF DEALING USAGE OR TRADE PRACTICE IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT SPECIAL CONSEQUENTIAL OR INCIDENTAL DAMAGES INCLUDING WITHOUT LIMITATION LOST PROFITS OR ...

Reviews:

No comments

Related manuals for ISDN GW 3241

2N SmartGate Quick Start preview
SmartGate
Brand: 2N Pages: 2
KE2 SmartGate Installation And Setup preview
SmartGate
Brand: KE2 Pages: 16
2Wire HomePortal Installation And Support Manual preview
HomePortal
Brand: 2Wire Pages: 14
M2M IDG500AM-0T001 User Manual preview
IDG500AM-0T001
Brand: M2M Pages: 357
Sygonix 1898921 RSL 433 MHz App Instruction Manual preview
1898921 RSL 433 MHz
Brand: Sygonix Pages: 45
Siemens SIMATIC IOT2020 Quick Install Manual preview
SIMATIC IOT2020
Brand: Siemens Pages: 2
Siemens SIMATIC IOT Gateway MQTT Installation Quick Manual preview
SIMATIC IOT Gateway MQTT
Brand: Siemens Pages: 2
Siemens MindConnect Nano Quick Start preview
MindConnect Nano
Brand: Siemens Pages: 2
Siemens Instabus/DALI Gateway N 141 Technical Product Information preview
Instabus/DALI Gateway N 141
Brand: Siemens Pages: 5
Siemens SIMATIC IOT2050 Product Information preview
SIMATIC IOT2050
Brand: Siemens Pages: 25
Siemens GAMMA 5WG1 143-1AB01 Operating And Mounting Instructions preview
GAMMA 5WG1 143-1AB01
Brand: Siemens Pages: 2
Siemens DCW1151 Installation Manual preview
DCW1151
Brand: Siemens Pages: 6
Siemens Gigaset SE567 Quick Start Manual preview
Gigaset SE567
Brand: Siemens Pages: 8
Siemens DESIGO RXC Manual preview
DESIGO RXC
Brand: Siemens Pages: 20
Siemens SIMATIC PN/M-Bus LINK Operating Instructions Manual preview
SIMATIC PN/M-Bus LINK
Brand: Siemens Pages: 62
Siemens HiPath HG 1500 Service Manual preview
HiPath HG 1500
Brand: Siemens Pages: 43
Siemens Cerberus GW-21 Technical Manual preview
Cerberus GW-21
Brand: Siemens Pages: 44
Siemens ProtoAir FPA-W44 Startup Manual preview
ProtoAir FPA-W44
Brand: Siemens Pages: 66

Brands by name

Popular brands

Load more brands